Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde

Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde


Log-Analyse und Auswertung: Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 21.05.2014, 21:40   #9
Fl!tsche
 
Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde - Standard

Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde


Entschuldige das ich jetzt erst antworte!!!!

hier die neuen Logs von FRST


FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-05-2014
Ran by Andrea 2 (administrator) on PRECISION_M6400 on 21-05-2014 22:17:24
Running from C:\Users\Andrea 2\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x540D1C111C75CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

==================== Services (Whitelisted) =================

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
U5 BTHPORT; C:\Windows\System32\Drivers\BTHPORT.sys [552960 2013-10-09] (Microsoft Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 tifm21; C:\Windows\System32\drivers\tifm21.sys [319488 2009-06-19] (Texas Instruments)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-21 22:17 - 2014-05-21 22:17 - 00003984 _____ () C:\Users\Andrea 2\Desktop\FRST.txt
2014-05-21 22:14 - 2014-05-21 22:14 - 02067456 _____ (Farbar) C:\Users\Andrea 2\Desktop\FRST64.exe
2014-05-20 19:48 - 2014-05-20 19:48 - 00001989 _____ () C:\Users\Andrea\Desktop\nt.search-ms
2014-05-20 19:31 - 2014-05-20 19:31 - 00328672 _____ () C:\Windows\Minidump\052014-19968-01.dmp
2014-05-20 17:25 - 2014-05-20 17:26 - 00053330 _____ () C:\Users\Andrea\Desktop\FRST.txt
2014-05-20 17:20 - 2014-05-20 17:20 - 02067456 _____ (Farbar) C:\Users\Andrea\Desktop\FRST64.exe
2014-05-20 17:09 - 2014-05-20 17:09 - 00000628 _____ () C:\Users\Andrea 2\Desktop\JRT.txt
2014-05-20 17:03 - 2014-05-20 17:03 - 00000000 ____D () C:\Windows\ERUNT
2014-05-20 16:59 - 2014-05-20 16:59 - 01016261 _____ (Thisisu) C:\Users\Andrea\Desktop\JRT.exe
2014-05-20 16:20 - 2014-05-20 16:29 - 00000000 ____D () C:\AdwCleaner
2014-05-20 16:19 - 2014-05-20 16:19 - 01326389 _____ () C:\Users\Andrea\Desktop\adwcleaner_3.210.exe
2014-05-20 14:18 - 2014-05-20 14:18 - 00015040 _____ () C:\ComboFix.txt
2014-05-20 14:12 - 2014-05-20 14:18 - 00000000 ____D () C:\Qoobox
2014-05-20 14:12 - 2014-05-20 14:17 - 00000000 ____D () C:\Windows\erdnt
2014-05-20 14:12 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-05-20 14:12 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-05-20 14:12 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-05-20 14:12 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-05-20 13:51 - 2014-05-20 13:51 - 05200426 ____R (Swearware) C:\Users\Andrea\Desktop\ComboFix.exe
2014-05-20 00:18 - 2014-05-20 00:18 - 00000000 ____D () C:\Users\Andrea\AppData\Local\Apps\2.0
2014-05-19 18:10 - 2014-05-19 18:10 - 00001421 _____ () C:\Users\Andrea\Desktop\Internet Explorer.lnk
2014-05-19 17:33 - 2014-05-19 17:33 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Microsoft Help
2014-05-19 12:35 - 2014-05-19 12:35 - 00000000 ____D () C:\Users\Andrea\AppData\Roaming\Apple Computer
2014-05-18 23:31 - 2014-05-21 21:47 - 00000442 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-05-18 23:31 - 2014-05-11 23:54 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-05-18 23:31 - 2014-04-01 04:04 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf
2014-05-18 23:31 - 2014-04-01 04:04 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf
2014-05-18 23:31 - 2014-04-01 04:00 - 00027760 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggsemc.sys
2014-05-18 23:31 - 2014-04-01 04:00 - 00014448 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggflt.sys
2014-05-18 23:31 - 2014-02-07 01:59 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_netaapl64_01009.Wdf
2014-05-18 23:31 - 2014-02-06 21:26 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-18 23:31 - 2014-02-01 21:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_cvusbdrv_01005.Wdf
2014-05-18 23:31 - 2014-02-01 17:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2014-05-18 23:31 - 2014-02-01 17:19 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-18 23:31 - 2013-10-09 21:35 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-05-18 23:31 - 2013-10-09 21:34 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-05-18 23:31 - 2013-10-09 21:34 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-05-18 23:31 - 2013-10-09 20:41 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-05-18 23:31 - 2013-10-09 19:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-05-18 23:31 - 2013-10-09 19:44 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-05-18 23:31 - 2013-10-09 19:44 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-05-18 23:31 - 2013-10-09 19:44 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-05-18 23:31 - 2013-10-09 19:44 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-05-18 23:31 - 2013-10-09 19:44 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00239320 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00239296 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00220232 _____ (ESET) C:\Windows\system32\Drivers\epfw.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00168256 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00062136 _____ (ESET) C:\Windows\system32\Drivers\epfwwfp.sys
2014-05-18 23:31 - 2013-09-17 15:17 - 00044120 _____ (ESET) C:\Windows\system32\Drivers\EpfwLWF.sys
2014-05-18 23:31 - 2013-08-06 16:13 - 00023040 _____ (Apple Inc.) C:\Windows\system32\Drivers\netaapl64.sys
2014-05-18 23:31 - 2013-03-18 17:51 - 00054784 _____ (Apple, Inc.) C:\Windows\system32\Drivers\usbaapl64.sys
2014-05-18 23:31 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-05-18 23:31 - 2011-02-16 16:53 - 00014464 _____ (Western Digital Technologies) C:\Windows\system32\Drivers\wdcsam64.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00215936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00155008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00140672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00103808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00078720 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpSAMD.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00031104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2014-05-18 23:31 - 2010-11-21 05:23 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys
2014-05-18 23:31 - 2010-07-25 02:35 - 06858240 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-18 23:31 - 2010-07-25 00:55 - 00264192 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-18 23:31 - 2010-07-25 00:54 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-18 23:31 - 2010-07-22 04:19 - 00515584 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-05-18 23:31 - 2010-07-15 10:47 - 00116240 _____ (ATI Technologies, Inc.) C:\Windows\system32\Drivers\AtihdW76.sys
2014-05-18 23:31 - 2010-02-01 23:21 - 00047632 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys
2014-05-18 23:31 - 2010-02-01 23:20 - 03058168 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL664.SYS
2014-05-18 23:31 - 2010-02-01 23:20 - 00022520 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bcm42rly.sys
2014-05-18 23:31 - 2009-11-03 18:40 - 00038440 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\cvusbdrv.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00491088 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00339536 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00194128 _____ (AMD Technologies Inc.) C:\Windows\system32\Drivers\amdsbs.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00182864 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00097856 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00087632 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00061008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00021584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00017488 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00015440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys
2014-05-18 23:31 - 2009-07-14 03:52 - 00015440 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00284736 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00122960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS
2014-05-18 23:31 - 2009-07-14 03:48 - 00115776 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_scsi.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00114752 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_fc.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00106560 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00065600 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas2.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00051264 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00044112 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00035392 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00020544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys
2014-05-18 23:31 - 2009-07-14 03:48 - 00016960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys
2014-05-18 23:31 - 2009-07-14 03:47 - 00530496 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys
2014-05-18 23:31 - 2009-07-14 03:47 - 00065088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS
2014-05-18 23:31 - 2009-07-14 03:47 - 00024144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 01524816 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00161872 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00128592 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00080464 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00064592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS
2014-05-18 23:31 - 2009-07-14 03:45 - 00064080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS
2014-05-18 23:31 - 2009-07-14 03:45 - 00043584 _____ (Silicon Integrated Systems Corp.) C:\Windows\system32\Drivers\sisraid2.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00024656 _____ (Promise Technology) C:\Windows\system32\Drivers\stexstor.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00021056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00017488 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00012496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2014-05-18 23:31 - 2009-07-14 03:45 - 00012352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2014-05-18 23:31 - 2009-07-14 03:19 - 00286720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys
2014-05-18 23:31 - 2009-07-14 02:38 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2014-05-18 23:31 - 2009-07-14 02:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpbus.sys
2014-05-18 23:31 - 2009-07-14 02:07 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00072832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2014-05-18 23:31 - 2009-07-14 02:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys
2014-05-18 23:31 - 2009-07-14 02:02 - 00027776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys
2014-05-18 23:31 - 2009-07-14 02:02 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MTConfig.sys
2014-05-18 23:31 - 2009-07-14 02:01 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys
2014-05-18 23:31 - 2009-07-14 02:01 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys
2014-05-18 23:31 - 2009-07-14 02:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys
2014-05-18 23:31 - 2009-07-14 02:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys
2014-05-18 23:31 - 2009-07-14 01:35 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys
2014-05-18 23:31 - 2009-07-14 01:31 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbatt.sys
2014-05-18 23:31 - 2009-07-14 01:31 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys
2014-05-18 23:31 - 2009-07-14 01:19 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2014-05-18 23:31 - 2009-07-14 01:19 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2014-05-18 23:31 - 2009-07-14 01:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2014-05-18 23:31 - 2009-07-01 12:46 - 00132648 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2014-05-18 23:31 - 2009-07-01 12:46 - 00098344 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2014-05-18 23:31 - 2009-07-01 12:46 - 00021160 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2014-05-18 23:31 - 2009-06-19 17:44 - 00319488 _____ (Texas Instruments) C:\Windows\system32\Drivers\tifm21.sys
2014-05-18 23:31 - 2009-06-10 23:00 - 00017463 _____ () C:\Windows\system32\Drivers\etc\services
2014-05-18 23:31 - 2009-06-10 23:00 - 00003683 _____ () C:\Windows\system32\Drivers\etc\lmhosts.sam
2014-05-18 23:31 - 2009-06-10 23:00 - 00001358 _____ () C:\Windows\system32\Drivers\etc\protocol
2014-05-18 23:31 - 2009-06-10 23:00 - 00000407 _____ () C:\Windows\system32\Drivers\etc\networks
2014-05-18 23:31 - 2009-06-10 22:41 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys
2014-05-18 23:31 - 2009-06-10 22:41 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys
2014-05-18 23:31 - 2009-06-10 22:41 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys
2014-05-18 23:31 - 2009-06-10 22:41 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys
2014-05-18 23:31 - 2009-06-10 22:41 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys
2014-05-18 23:31 - 2009-06-10 22:37 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys
2014-05-18 23:31 - 2009-06-10 22:34 - 03286016 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys
2014-05-18 23:31 - 2009-06-10 22:34 - 00468480 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys
2014-05-18 23:31 - 2009-06-10 22:34 - 00270848 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\b57nd60a.sys
2014-05-18 23:31 - 2009-06-10 22:31 - 00031232 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw85cir.sys
2014-05-18 23:31 - 2009-04-07 15:33 - 00035104 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2014-05-18 23:31 - 2008-06-04 15:14 - 00032240 _____ (Dell Inc) C:\Windows\system32\Drivers\PBADRV.SYS
2014-05-18 23:30 - 2014-02-01 17:01 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-05-18 23:30 - 2014-02-01 17:01 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-05-18 23:30 - 2013-10-10 17:04 - 00134656 _____ (Legolash2o) C:\Windows\system32\WinToolkitRunOnce.exe
2014-05-18 23:30 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-05-18 23:30 - 2013-03-18 17:51 - 06112864 _____ (Apple, Inc.) C:\Windows\system32\usbaaplrc.dll
2014-05-18 23:30 - 2012-09-11 14:39 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01009.dll
2014-05-18 23:30 - 2010-11-21 05:58 - 00018432 _____ () C:\Windows\system32\umstartup.etl
2014-05-18 23:30 - 2010-11-21 05:40 - 00046080 _____ () C:\Windows\system32\umstartup000.etl
2014-05-18 23:30 - 2010-07-22 04:19 - 01952256 _____ (IDT, Inc.) C:\Windows\system32\stlang64.dll
2014-05-18 23:30 - 2010-07-22 04:19 - 00431616 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-05-18 23:30 - 2010-07-22 04:19 - 00209920 _____ (IDT, Inc.) C:\Windows\system32\st646292.dll
2014-05-18 23:30 - 2010-02-01 23:21 - 03161088 _____ (Microsoft Corporation) C:\Windows\system32\vcredist_x64.exe
2014-05-18 23:30 - 2010-02-01 23:21 - 00073728 _____ (Broadcom Corporation) C:\Windows\system32\wltrynt.dll
2014-05-18 23:30 - 2010-02-01 23:21 - 00000457 _____ () C:\Windows\system32\vcredist_x64.bat
2014-05-18 23:30 - 2009-11-03 18:40 - 01919968 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01005.dll
2014-05-18 23:30 - 2009-07-14 03:45 - 00024144 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll
2014-05-18 23:30 - 2009-06-10 22:31 - 00001988 _____ () C:\Windows\system32\ticrf.rat
2014-05-18 23:30 - 2008-01-17 19:25 - 02520064 _____ (UPEK, Inc.) C:\Windows\system32\tfmessbsp.dll
2014-05-18 23:29 - 2014-05-21 21:47 - 01527552 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-18 23:29 - 2014-05-21 21:47 - 00661436 _____ () C:\Windows\system32\perfh007.dat
2014-05-18 23:29 - 2014-05-21 21:47 - 00141416 _____ () C:\Windows\system32\perfc007.dat
2014-05-18 23:29 - 2014-05-20 13:43 - 00412616 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-18 23:29 - 2014-05-17 02:08 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-18 23:29 - 2014-03-31 09:35 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-05-18 23:29 - 2013-10-14 19:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-05-18 23:29 - 2013-09-11 20:39 - 00855664 _____ (Microsoft Corporation) C:\Windows\system32\msvcr110_clr0400.dll
2014-05-18 23:29 - 2013-09-11 20:39 - 00614000 _____ (Microsoft Corporation) C:\Windows\system32\msvcp110_clr0400.dll
2014-05-18 23:29 - 2013-09-11 20:39 - 00018000 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2014-05-18 23:29 - 2011-04-12 09:43 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-05-18 23:29 - 2011-04-12 09:43 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-05-18 23:29 - 2011-02-20 06:51 - 00608080 _____ (Microsoft Corporation) C:\Windows\system32\msvcp100.dll
2014-05-18 23:29 - 2011-02-19 08:52 - 00829264 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100.dll
2014-05-18 23:29 - 2010-11-21 05:28 - 00029815 _____ () C:\Windows\system32\InstallPackage_ETW.Log
2014-05-18 23:29 - 2010-11-21 05:26 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2014-05-18 23:29 - 2010-11-21 05:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2014-05-18 23:29 - 2010-11-21 04:52 - 00000050 _____ () C:\Windows\system32\Local_LLU.log
2014-05-18 23:29 - 2010-11-21 04:52 - 00000040 _____ () C:\Windows\system32\Network_LLU.log
2014-05-18 23:29 - 2010-11-21 04:52 - 00000015 _____ () C:\Windows\system32\LocalGroupAdminAdd.log
2014-05-18 23:29 - 2010-07-25 00:43 - 00055296 _____ (AMD) C:\Windows\system32\coinst.dll
2014-05-18 23:29 - 2010-07-22 04:19 - 11941376 _____ (IDT, Inc.) C:\Windows\system32\idtsg64.cpl
2014-05-18 23:29 - 2010-03-22 16:21 - 00283016 _____ () C:\Windows\system32\bipbsp.dll
2014-05-18 23:29 - 2010-03-22 16:16 - 00105864 _____ (Broadcom Corporation) C:\Windows\system32\lms.dll
2014-05-18 23:29 - 2010-03-22 16:15 - 00305544 _____ (Broadcom Corporation) C:\Windows\system32\bipdll.dll
2014-05-18 23:29 - 2010-03-22 16:15 - 00018320 _____ (Broadcom Corporation) C:\Windows\system32\CVUsrIfc.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 08075776 _____ (Dell Inc.) C:\Windows\system32\BCMWLCPL.CPL
2014-05-18 23:29 - 2010-02-01 23:20 - 04750848 _____ (Dell Inc.) C:\Windows\system32\bcmttls.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 01089024 _____ (Dell Inc.) C:\Windows\system32\BCMLogon.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 00095472 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 00060928 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlrmt.dll
2014-05-18 23:29 - 2010-02-01 23:20 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2014-05-18 23:29 - 2010-02-01 23:19 - 03891200 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv64.dll
2014-05-18 23:29 - 2010-02-01 23:19 - 03555840 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui64.dll
2014-05-18 23:29 - 2009-11-04 12:02 - 00440208 _____ () C:\Windows\system32\brcmbsp.dll
2014-05-18 23:29 - 2009-07-14 06:57 - 00001244 _____ () C:\Windows\system32\migwiz.lnk
2014-05-18 23:29 - 2009-07-14 03:40 - 00019456 _____ (Brother Industries Ltd.) C:\Windows\system32\brcoinst.dll
2014-05-18 23:29 - 2009-07-14 03:40 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\CIRCoInst.dll
2014-05-18 23:29 - 2009-06-10 22:53 - 00215943 _____ () C:\Windows\system32\dssec.dat
2014-05-18 23:29 - 2009-06-10 22:50 - 00000741 _____ () C:\Windows\system32\NOISE.DAT
2014-05-18 23:29 - 2009-06-10 22:47 - 11967524 _____ () C:\Windows\system32\korwbrkr.lex
2014-05-18 23:29 - 2009-06-10 22:47 - 00001696 _____ () C:\Windows\system32\NOISE.CHT
2014-05-18 23:29 - 2009-06-10 22:47 - 00001696 _____ () C:\Windows\system32\NOISE.CHS
2014-05-18 23:29 - 2009-06-10 22:47 - 00001486 _____ () C:\Windows\system32\noise.kor
2014-05-18 23:29 - 2009-06-10 22:47 - 00000697 _____ () C:\Windows\system32\NOISE.THA
2014-05-18 23:29 - 2009-06-10 22:31 - 00008798 _____ () C:\Windows\system32\icrav03.rat
2014-05-18 23:29 - 2008-12-09 19:46 - 00239104 _____ () C:\Windows\system32\bioapi_mds300.dll
2014-05-18 23:29 - 2008-12-09 19:46 - 00155136 _____ () C:\Windows\system32\bioapi100.dll
2014-05-18 23:29 - 2008-06-04 15:14 - 00081904 _____ () C:\Windows\system32\pbadrvdll.dll
2014-05-18 23:28 - 2014-05-21 21:50 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-18 23:28 - 2014-05-21 21:50 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-18 23:28 - 2013-09-11 20:39 - 00030312 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2014-05-18 23:28 - 2010-07-25 02:20 - 20017152 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-18 23:28 - 2010-07-25 01:32 - 00057816 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-18 23:28 - 2010-07-25 01:31 - 00143360 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-18 23:28 - 2010-07-25 01:29 - 00458752 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-18 23:28 - 2010-07-25 01:29 - 00446464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-05-18 23:28 - 2010-07-25 01:28 - 00203264 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-18 23:28 - 2010-07-25 01:27 - 00421376 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll
2014-05-18 23:28 - 2010-07-25 01:27 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-18 23:28 - 2010-07-25 01:27 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2014-05-18 23:28 - 2010-07-25 01:27 - 00012288 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-18 23:28 - 2010-07-25 01:02 - 04930560 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-18 23:28 - 2010-07-25 00:56 - 00336384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-18 23:28 - 2010-07-25 00:55 - 00018432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-18 23:28 - 2010-07-25 00:55 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-18 23:28 - 2010-07-25 00:55 - 00012800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-18 23:28 - 2010-07-25 00:54 - 00030208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-18 23:28 - 2010-07-25 00:41 - 05265408 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-18 23:28 - 2010-07-25 00:41 - 00043008 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-18 23:28 - 2010-07-25 00:41 - 00039936 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-18 23:28 - 2010-07-25 00:15 - 02752512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-18 23:28 - 2010-07-25 00:13 - 00534960 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-18 23:28 - 2010-07-24 23:59 - 00054272 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-18 23:28 - 2010-07-24 23:59 - 00054272 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-18 23:28 - 2010-06-02 19:28 - 00002189 _____ () C:\Windows\system32\atipblag.dat
2014-05-18 23:28 - 2010-04-06 15:54 - 00203336 _____ () C:\Windows\system32\atiicdxx.dat
2014-05-18 23:28 - 2010-01-27 04:30 - 00162816 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAC64.dll
2014-05-18 23:28 - 2009-10-10 02:45 - 00442368 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTEC64.dll
2014-05-18 23:28 - 2009-05-11 19:35 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2014-05-18 23:28 - 2009-03-03 03:58 - 00068608 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAR64.dll
2014-05-18 23:28 - 2009-02-18 15:55 - 00332288 _____ () C:\Windows\system32\ATIODE.exe
2014-05-18 23:28 - 2009-02-03 18:52 - 00051200 _____ () C:\Windows\system32\ATIODCLI.exe
2014-05-18 23:27 - 2014-05-19 21:40 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-18 23:27 - 2014-05-18 05:58 - 00328672 _____ () C:\Windows\Minidump\051814-16629-01.dmp
2014-05-18 23:27 - 2014-05-17 17:26 - 00328672 _____ () C:\Windows\Minidump\051714-16052-01.dmp
2014-05-18 23:27 - 2014-05-17 04:38 - 00328672 _____ () C:\Windows\Minidump\051714-24367-01.dmp
2014-05-18 23:27 - 2014-05-11 23:50 - 00328672 _____ () C:\Windows\Minidump\051114-18361-01.dmp
2014-05-18 23:27 - 2014-04-29 16:06 - 00884960 _____ () C:\Windows\Minidump\042914-13868-01.dmp
2014-05-18 23:27 - 2014-04-09 02:33 - 00328672 _____ () C:\Windows\Minidump\040914-14461-01.dmp
2014-05-18 23:27 - 2014-04-06 20:14 - 00328672 _____ () C:\Windows\Minidump\040614-14976-01.dmp
2014-05-18 23:27 - 2014-04-04 18:59 - 00328672 _____ () C:\Windows\Minidump\040414-15163-01.dmp
2014-05-18 23:27 - 2014-03-22 23:18 - 00374088 _____ () C:\Windows\Minidump\032214-16161-01.dmp
2014-05-18 23:27 - 2014-02-16 02:05 - 00328672 _____ () C:\Windows\Minidump\021614-14804-01.dmp
2014-05-18 23:27 - 2014-02-15 14:32 - 01702232 _____ () C:\Windows\Minidump\021514-21013-01.dmp
2014-05-18 23:27 - 2014-02-09 16:46 - 00328672 _____ () C:\Windows\Minidump\020914-17082-01.dmp
2014-05-18 23:27 - 2014-02-08 19:14 - 00328672 _____ () C:\Windows\Minidump\020814-14430-01.dmp
2014-05-18 23:21 - 2014-05-21 22:17 - 01206823 _____ () C:\Windows\WindowsUpdate.log
2014-05-18 23:21 - 2014-05-21 21:43 - 00021217 _____ () C:\Windows\setupact.log
2014-05-18 23:21 - 2014-05-20 19:30 - 677465861 _____ () C:\Windows\MEMORY.DMP
2014-05-18 23:21 - 2014-05-20 16:31 - 00034810 _____ () C:\Windows\PFRO.log
2014-05-18 23:21 - 2014-05-20 14:16 - 00000215 _____ () C:\Windows\system.ini
2014-05-18 23:21 - 2014-05-18 19:38 - 00000658 _____ () C:\Windows\TIPCI.log
2014-05-18 23:21 - 2014-05-18 13:38 - 00009752 _____ () C:\Windows\DPINST.LOG
2014-05-18 23:21 - 2014-05-17 02:31 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-05-18 23:21 - 2014-04-09 19:26 - 00000000 ___HT () C:\Windows\wusa.lock
2014-05-18 23:21 - 2014-02-14 21:32 - 00000478 _____ () C:\Windows\win.ini
2014-05-18 23:21 - 2014-02-02 20:43 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-18 23:21 - 2014-02-01 18:05 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-18 23:21 - 2010-07-19 05:55 - 00021591 _____ () C:\Windows\atiogl.xml
2014-05-18 23:21 - 2009-07-14 06:54 - 00000749 ___RH () C:\Windows\WindowsShell.Manifest
2014-05-18 23:21 - 2009-06-10 22:36 - 00001405 _____ () C:\Windows\msdfmap.ini
2014-05-18 23:21 - 2009-06-10 22:31 - 00048201 _____ () C:\Windows\Starter.xml
2014-05-18 23:21 - 2009-06-10 22:30 - 00048265 _____ () C:\Windows\HomePremium.xml
2014-05-18 23:12 - 2014-05-21 22:17 - 00000000 ____D () C:\FRST
2014-05-18 23:12 - 2014-05-19 21:16 - 00000000 ____D () C:\IDE
2014-05-18 19:32 - 2014-05-18 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEC Electronics
2014-05-18 17:38 - 2014-05-18 17:38 - 00000000 ____D () C:\Intel
2014-05-18 14:09 - 2014-05-18 21:17 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Deployment
2014-05-18 14:09 - 2014-05-18 14:09 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Apps\2.0
2014-05-18 13:58 - 2014-05-18 13:58 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Dell
2014-05-18 13:58 - 2014-05-18 13:58 - 00000000 ____D () C:\ProgramData\Dell
2014-05-18 13:43 - 2014-05-18 13:43 - 00000000 ____D () C:\Users\Andrea 2\Documents\Bluetooth-Exchange-Ordner
2014-05-18 13:43 - 2014-05-18 13:43 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Broadcom
2014-05-18 13:40 - 2014-05-18 13:40 - 00000000 ____D () C:\Program Files\WIDCOMM
2014-05-18 12:55 - 2014-05-18 12:55 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-05-18 12:53 - 2014-05-19 13:24 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
2014-05-18 12:53 - 2014-05-18 13:59 - 00000000 ____D () C:\Program Files\Dell
2014-05-18 11:03 - 2014-05-18 11:03 - 00000000 ____D () C:\Users\Andrea 2\AppData\Roaming\ESET
2014-05-18 11:03 - 2014-05-18 11:03 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\ESET
2014-05-18 06:01 - 2014-05-18 06:01 - 00000000 __SHD () C:\Users\Andrea 2\AppData\Local\EmieUserList
2014-05-18 06:01 - 2014-05-18 06:01 - 00000000 __SHD () C:\Users\Andrea 2\AppData\Local\EmieSiteList
2014-05-18 05:12 - 2014-05-18 05:14 - 00000000 ____D () C:\Dell
2014-05-18 03:27 - 2014-05-19 13:24 - 00000000 ____D () C:\Users\Andrea\Desktop\DriverView
2014-05-17 22:24 - 2014-05-19 13:24 - 00000000 ____D () C:\Program Files\7-Zip
2014-05-17 21:53 - 2014-05-17 21:53 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-05-17 07:29 - 2014-05-17 07:33 - 00023735 _____ () C:\Users\Andrea\Desktop\Eset Scan 17-05-14.txt
2014-05-17 07:12 - 2014-05-17 04:20 - 00050935 _____ () C:\Users\Andrea\Documents\ndl19844.dat
2014-05-17 05:44 - 2014-05-17 05:44 - 00001191 _____ () C:\Users\Andrea\Desktop\Gmer.txt
2014-05-17 05:26 - 2014-05-17 05:27 - 00027345 _____ () C:\Users\Andrea\Desktop\FRST (2).txt
2014-05-17 05:26 - 2014-05-17 05:27 - 00026097 _____ () C:\Users\Andrea\Desktop\Addition.txt
2014-05-17 05:21 - 2014-05-17 05:21 - 00000478 _____ () C:\Users\Andrea\Desktop\defogger_disable.log
2014-05-17 05:21 - 2014-05-17 05:21 - 00000000 _____ () C:\Users\Andrea 2\defogger_reenable
2014-05-17 03:36 - 2014-05-19 13:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-05-17 03:36 - 2014-05-17 03:36 - 00000000 ____D () C:\ProgramData\ESET
2014-05-17 03:36 - 2014-05-17 03:36 - 00000000 ____D () C:\Program Files\ESET
2014-05-17 03:27 - 2014-05-17 03:27 - 00000000 ____D () C:\Users\Andrea\AppData\Roaming\ESET
2014-05-17 03:27 - 2014-05-17 03:27 - 00000000 ____D () C:\Users\Andrea\AppData\Local\ESET
2014-05-17 02:08 - 2014-05-17 02:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-05-17 02:08 - 2014-05-17 02:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-05-10 22:25 - 2014-05-10 22:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 02:24 - 2014-05-10 02:25 - 00000000 ____D () C:\Users\Andrea\Desktop\Gruber
2014-05-07 01:28 - 2014-05-19 13:33 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-06 17:48 - 2014-04-14 04:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-06 17:48 - 2014-04-14 04:19 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-06 01:59 - 2014-04-29 16:01 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 01:59 - 2014-04-29 15:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 01:59 - 2014-04-29 14:48 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 01:59 - 2014-04-29 14:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

==================== One Month Modified Files and Folders =======

2014-05-21 22:17 - 2014-05-21 22:17 - 00003984 _____ () C:\Users\Andrea 2\Desktop\FRST.txt
2014-05-21 22:17 - 2014-05-18 23:21 - 01206823 _____ () C:\Windows\WindowsUpdate.log
2014-05-21 22:17 - 2014-05-18 23:12 - 00000000 ____D () C:\FRST
2014-05-21 22:14 - 2014-05-21 22:14 - 02067456 _____ (Farbar) C:\Users\Andrea 2\Desktop\FRST64.exe
2014-05-21 22:06 - 2014-02-01 19:37 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-21 21:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-21 21:50 - 2014-05-18 23:28 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-21 21:50 - 2014-05-18 23:28 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-21 21:47 - 2014-05-18 23:31 - 00000442 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-05-21 21:47 - 2014-05-18 23:29 - 01527552 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-21 21:47 - 2014-05-18 23:29 - 00661436 _____ () C:\Windows\system32\perfh007.dat
2014-05-21 21:47 - 2014-05-18 23:29 - 00141416 _____ () C:\Windows\system32\perfc007.dat
2014-05-21 21:43 - 2014-05-18 23:21 - 00021217 _____ () C:\Windows\setupact.log
2014-05-21 21:43 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-21 19:40 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-20 22:32 - 2014-02-06 20:54 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-05-20 22:13 - 2014-04-09 19:20 - 00106808 _____ () C:\Users\Andrea 2\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-20 19:48 - 2014-05-20 19:48 - 00001989 _____ () C:\Users\Andrea\Desktop\nt.search-ms
2014-05-20 19:31 - 2014-05-20 19:31 - 00328672 _____ () C:\Windows\Minidump\052014-19968-01.dmp
2014-05-20 19:31 - 2014-02-08 19:14 - 00000000 ____D () C:\Windows\Minidump
2014-05-20 19:30 - 2014-05-18 23:21 - 677465861 _____ () C:\Windows\MEMORY.DMP
2014-05-20 18:44 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-20 17:26 - 2014-05-20 17:25 - 00053330 _____ () C:\Users\Andrea\Desktop\FRST.txt
2014-05-20 17:20 - 2014-05-20 17:20 - 02067456 _____ (Farbar) C:\Users\Andrea\Desktop\FRST64.exe
2014-05-20 17:09 - 2014-05-20 17:09 - 00000628 _____ () C:\Users\Andrea 2\Desktop\JRT.txt
2014-05-20 17:03 - 2014-05-20 17:03 - 00000000 ____D () C:\Windows\ERUNT
2014-05-20 16:59 - 2014-05-20 16:59 - 01016261 _____ (Thisisu) C:\Users\Andrea\Desktop\JRT.exe
2014-05-20 16:31 - 2014-05-18 23:21 - 00034810 _____ () C:\Windows\PFRO.log
2014-05-20 16:29 - 2014-05-20 16:20 - 00000000 ____D () C:\AdwCleaner
2014-05-20 16:19 - 2014-05-20 16:19 - 01326389 _____ () C:\Users\Andrea\Desktop\adwcleaner_3.210.exe
2014-05-20 14:18 - 2014-05-20 14:18 - 00015040 _____ () C:\ComboFix.txt
2014-05-20 14:18 - 2014-05-20 14:12 - 00000000 ____D () C:\Qoobox
2014-05-20 14:17 - 2014-05-20 14:12 - 00000000 ____D () C:\Windows\erdnt
2014-05-20 14:16 - 2014-05-18 23:21 - 00000215 _____ () C:\Windows\system.ini
2014-05-20 14:07 - 2014-04-09 19:19 - 00000000 ____D () C:\Users\Andrea 2
2014-05-20 13:51 - 2014-05-20 13:51 - 05200426 ____R (Swearware) C:\Users\Andrea\Desktop\ComboFix.exe
2014-05-20 13:43 - 2014-05-18 23:29 - 00412616 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-20 01:15 - 2014-02-01 18:05 - 00106808 _____ () C:\Users\Andrea\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-20 00:18 - 2014-05-20 00:18 - 00000000 ____D () C:\Users\Andrea\AppData\Local\Apps\2.0
2014-05-19 21:42 - 2011-04-12 09:54 - 00000000 ____D () C:\Windows\ShellNew
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\he-IL
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\et-EE
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-05-19 21:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-05-19 21:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-05-19 21:40 - 2014-05-18 23:27 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-19 21:16 - 2014-05-18 23:12 - 00000000 ____D () C:\IDE
2014-05-19 18:10 - 2014-05-19 18:10 - 00001421 _____ () C:\Users\Andrea\Desktop\Internet Explorer.lnk
2014-05-19 17:39 - 2014-02-01 19:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-19 17:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-05-19 17:33 - 2014-05-19 17:33 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Microsoft Help
2014-05-19 13:33 - 2014-05-07 01:28 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-19 13:33 - 2014-04-09 19:20 - 00000000 ___RD () C:\Users\Andrea 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-19 13:33 - 2014-04-09 19:20 - 00000000 ___RD () C:\Users\Andrea 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-19 13:33 - 2014-02-27 19:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-19 13:33 - 2014-02-27 19:36 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-19 13:33 - 2014-02-27 19:36 - 00000000 ____D () C:\Program Files\iTunes
2014-05-19 13:33 - 2014-02-27 19:36 - 00000000 ____D () C:\Program Files\iPod
2014-05-19 13:33 - 2014-02-27 19:36 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-19 13:33 - 2014-02-06 20:54 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-19 13:33 - 2014-02-06 20:54 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-05-19 13:33 - 2014-02-06 20:53 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-19 13:33 - 2014-02-06 20:53 - 00000000 ____D () C:\Program Files\Bonjour
2014-05-19 13:33 - 2014-02-06 20:53 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-05-19 13:33 - 2014-02-01 19:55 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-05-19 13:33 - 2014-02-01 19:55 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-05-19 13:33 - 2014-02-01 19:49 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-05-19 13:33 - 2014-02-01 19:37 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-19 13:33 - 2014-02-01 18:01 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-05-19 13:33 - 2014-02-01 18:00 - 00000000 ____D () C:\Windows\tiinst
2014-05-19 13:33 - 2014-02-01 18:00 - 00000000 ____D () C:\Program Files\IDT
2014-05-19 13:33 - 2014-02-01 17:56 - 00000000 ____D () C:\Program Files\WinRAR
2014-05-19 13:33 - 2014-02-01 17:49 - 00000000 ___RD () C:\Users\Andrea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-19 13:33 - 2014-02-01 17:49 - 00000000 ___RD () C:\Users\Andrea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\security
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\schemas
2014-05-19 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-05-19 13:30 - 2014-02-01 17:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-19 13:30 - 2014-02-01 17:58 - 00000000 ____D () C:\Program Files (x86)\NEC Electronics
2014-05-19 13:26 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-05-19 13:24 - 2014-05-18 12:53 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
2014-05-19 13:24 - 2014-05-18 03:27 - 00000000 ____D () C:\Users\Andrea\Desktop\DriverView
2014-05-19 13:24 - 2014-05-17 22:24 - 00000000 ____D () C:\Program Files\7-Zip
2014-05-19 13:24 - 2014-05-17 03:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-05-19 12:35 - 2014-05-19 12:35 - 00000000 ____D () C:\Users\Andrea\AppData\Roaming\Apple Computer
2014-05-19 12:35 - 2014-02-01 17:49 - 00000000 ____D () C:\Users\Andrea
2014-05-19 12:34 - 2014-02-06 20:53 - 00000000 ____D () C:\ProgramData\Apple
2014-05-18 21:17 - 2014-05-18 14:09 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Deployment
2014-05-18 19:38 - 2014-05-18 23:21 - 00000658 _____ () C:\Windows\TIPCI.log
2014-05-18 19:32 - 2014-05-18 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEC Electronics
2014-05-18 17:38 - 2014-05-18 17:38 - 00000000 ____D () C:\Intel
2014-05-18 14:09 - 2014-05-18 14:09 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Apps\2.0
2014-05-18 13:59 - 2014-05-18 12:53 - 00000000 ____D () C:\Program Files\Dell
2014-05-18 13:58 - 2014-05-18 13:58 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Dell
2014-05-18 13:58 - 2014-05-18 13:58 - 00000000 ____D () C:\ProgramData\Dell
2014-05-18 13:43 - 2014-05-18 13:43 - 00000000 ____D () C:\Users\Andrea 2\Documents\Bluetooth-Exchange-Ordner
2014-05-18 13:43 - 2014-05-18 13:43 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\Broadcom
2014-05-18 13:40 - 2014-05-18 13:40 - 00000000 ____D () C:\Program Files\WIDCOMM
2014-05-18 13:38 - 2014-05-18 23:21 - 00009752 _____ () C:\Windows\DPINST.LOG
2014-05-18 12:55 - 2014-05-18 12:55 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-05-18 11:03 - 2014-05-18 11:03 - 00000000 ____D () C:\Users\Andrea 2\AppData\Roaming\ESET
2014-05-18 11:03 - 2014-05-18 11:03 - 00000000 ____D () C:\Users\Andrea 2\AppData\Local\ESET
2014-05-18 06:01 - 2014-05-18 06:01 - 00000000 __SHD () C:\Users\Andrea 2\AppData\Local\EmieUserList
2014-05-18 06:01 - 2014-05-18 06:01 - 00000000 __SHD () C:\Users\Andrea 2\AppData\Local\EmieSiteList
2014-05-18 05:58 - 2014-05-18 23:27 - 00328672 _____ () C:\Windows\Minidump\051814-16629-01.dmp
2014-05-18 05:14 - 2014-05-18 05:12 - 00000000 ____D () C:\Dell
2014-05-17 21:53 - 2014-05-17 21:53 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-05-17 17:26 - 2014-05-18 23:27 - 00328672 _____ () C:\Windows\Minidump\051714-16052-01.dmp
2014-05-17 07:33 - 2014-05-17 07:29 - 00023735 _____ () C:\Users\Andrea\Desktop\Eset Scan 17-05-14.txt
2014-05-17 05:44 - 2014-05-17 05:44 - 00001191 _____ () C:\Users\Andrea\Desktop\Gmer.txt
2014-05-17 05:27 - 2014-05-17 05:26 - 00027345 _____ () C:\Users\Andrea\Desktop\FRST (2).txt
2014-05-17 05:27 - 2014-05-17 05:26 - 00026097 _____ () C:\Users\Andrea\Desktop\Addition.txt
2014-05-17 05:21 - 2014-05-17 05:21 - 00000478 _____ () C:\Users\Andrea\Desktop\defogger_disable.log
2014-05-17 05:21 - 2014-05-17 05:21 - 00000000 _____ () C:\Users\Andrea 2\defogger_reenable
2014-05-17 04:38 - 2014-05-18 23:27 - 00328672 _____ () C:\Windows\Minidump\051714-24367-01.dmp
2014-05-17 04:20 - 2014-05-17 07:12 - 00050935 _____ () C:\Users\Andrea\Documents\ndl19844.dat
2014-05-17 03:36 - 2014-05-17 03:36 - 00000000 ____D () C:\ProgramData\ESET
2014-05-17 03:36 - 2014-05-17 03:36 - 00000000 ____D () C:\Program Files\ESET
2014-05-17 03:27 - 2014-05-17 03:27 - 00000000 ____D () C:\Users\Andrea\AppData\Roaming\ESET
2014-05-17 03:27 - 2014-05-17 03:27 - 00000000 ____D () C:\Users\Andrea\AppData\Local\ESET
2014-05-17 02:31 - 2014-05-18 23:21 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-05-17 02:09 - 2014-02-01 19:22 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-17 02:08 - 2014-05-18 23:29 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-17 02:08 - 2014-05-17 02:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-05-17 02:08 - 2014-05-17 02:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-05-16 22:06 - 2014-02-01 19:37 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-16 22:06 - 2014-02-01 19:37 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-16 22:06 - 2014-02-01 19:37 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-11 23:54 - 2014-05-18 23:31 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-05-11 23:50 - 2014-05-18 23:27 - 00328672 _____ () C:\Windows\Minidump\051114-18361-01.dmp
2014-05-11 23:49 - 2014-02-01 19:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-10 22:25 - 2014-05-10 22:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 02:25 - 2014-05-10 02:24 - 00000000 ____D () C:\Users\Andrea\Desktop\Gruber
2014-04-30 19:22 - 2014-02-17 18:13 - 00000000 ____D () C:\Users\Andrea\Desktop\Musiik
2014-04-29 16:06 - 2014-05-18 23:27 - 00884960 _____ () C:\Windows\Minidump\042914-13868-01.dmp
2014-04-29 16:01 - 2014-05-06 01:59 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-29 15:40 - 2014-05-06 01:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-29 14:48 - 2014-05-06 01:59 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-29 14:34 - 2014-05-06 01:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

Some content of TEMP:
====================
C:\Users\Andrea 2\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-20 04:12

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-05-2014
Ran by Andrea 2 at 2014-05-21 22:17:47
Running from C:\Users\Andrea 2\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Disabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Disabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{47938B5E-5D52-7A4B-2D5C-432B7B24AB2C}) (Version: 3.0.778.0 - ATI Technologies, Inc.)
BioAPI Framework (Version: 1.0.1 - Dell Inc.) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0724.2243.38944 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0724.2243.38944 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0724.2243.38944 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0724.2243.38944 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help English (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help French (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help German (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0724.2242.38944 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0724.2243.38944 - Ihr Firmenname) Hidden
ccc-utility64 (Version: 2010.0724.2243.38944 - ATI) Hidden
Dell ControlVault Host Components Installer 64Bit (Version: 1.7.459.360 - Broadcom Corporation) Hidden
Dell Security Device Driver Pack (HKLM-x32\...\{FF1DDCF4-3A28-4F7F-96D8-E3F4BD1C1702}) (Version: 1.4.056 - Dell Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6292.0 - IDT)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
K-Lite Codec Pack 10.2.0 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.2.0 - )
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.18.0 - NEC Electronics Corporation) Hidden
Nero 7.11.10.0 Lite (HKLM-x32\...\Nero7Lite_is1) (Version: 7.11.10.0 - Nero AG)
Texas Instruments PCIxx21/x515/xx12 drivers. (HKLM-x32\...\InstallShield_{B54B8CD3-E12B-4C29-AF5A-2101E2FF5F53}) (Version: 2.00.0005 - Texas Instruments Inc.)
TIPCI (x32 Version: 2.00.0005 - Texas Instruments Inc.) Hidden
UPEK TouchChip Fingerprint Reader (Version: 1.2.0 - Dell Inc.) Hidden
Windows-Treiberpaket - Dell Inc. PBADRV System  (09/11/2009 1.0.1.6) (HKLM\...\9512AA21B791B05A54E27065C45BBC417AB282DF) (Version: 09/11/2009 1.0.1.6 - Dell Inc.)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Restore Points  =========================

05-05-2014 16:32:44 Windows Update
05-05-2014 23:59:25 Windows Update
06-05-2014 23:28:36 Windows Update
10-05-2014 20:14:18 Windows Update
16-05-2014 19:28:01 Windows Update
17-05-2014 00:07:13 Windows Update
17-05-2014 00:32:57 Removed Bonjour
17-05-2014 00:33:24 Removed iTunes
17-05-2014 00:37:14 Removed Apple Application Support
17-05-2014 00:38:29 Removed Apple Mobile Device Support
17-05-2014 00:39:08 Removed Apple Software Update
17-05-2014 01:19:02 ESET Smart Security wurde installiert
17-05-2014 01:22:33 ESET Smart Security wurde installiert
17-05-2014 01:35:17 ESET Smart Security wurde installiert
17-05-2014 20:24:19 Installed 7-Zip 9.20 (x64 edition)
18-05-2014 03:15:14 Konfiguriert IDT Audio
18-05-2014 04:27:57 Windows Update
18-05-2014 06:21:38 Windows Update
18-05-2014 11:40:34 Installed Bluetooth Software
18-05-2014 11:46:13 Installed BtwMfcMM
18-05-2014 11:58:46 Installed Dell System Manager.
18-05-2014 13:44:34 Windows-Sicherung
18-05-2014 15:25:52 Installed Dell Latitude ON Configuration Utility Installer.
18-05-2014 17:27:46 Entfernt NEC Electronics USB 3.0 Host Controller Driver
18-05-2014 17:32:30 Installiert NEC Electronics USB 3.0 Host Controller Driver
18-05-2014 17:35:54 Entfernt TIPCI
18-05-2014 17:37:33 Installiert TIPCI
18-05-2014 19:19:17 Removed Dell Precision ON Configuration Utility.
18-05-2014 19:48:42 Windows-Sicherung
19-05-2014 15:32:31 Removed Microsoft Office Professional Plus 2010
19-05-2014 23:41:37 Windows Modules Installer
20-05-2014 11:53:59 Windows Update
20-05-2014 20:42:14 Removed Java 7 Update 51

==================== Hosts content: ==========================

2014-05-18 23:31 - 2013-01-03 11:25 - 00646495 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 serial.alcohol-soft.com
127.0.0.1 www.alcohol-soft.com
127.0.0.1 serial.alcohol-soft.com
127.0.0.1 images.alcohol-soft.com
127.0.0.1 trial.alcohol-soft.com
127.0.0.1 forum.alcohol-soft.com
127.0.0.1 support.alcohol-soft.com
127.0.0.1 users.alcohol-soft.com
127.0.0.1 shop.alcohol-soft.com
127.0.0.1 vodka.alcohol-soft.com
127.0.0.1 *.alcohol-soft.com
127.0.0.1 *.alcohol-soft.*
127.0.0.1 iw2.slysoft.com
127.0.0.1 h3.slysoft.com
127.0.0.1 update.slysoft.com
127.0.0.1 slysoft.com
127.0.0.1 sb2slysoft.com
127.0.0.1 ns6.gandi.net
127.0.0.1 ev1slysoft.com
127.0.0.1 reverse.privatedns.com
127.0.0.1 update.slysoft.com
127.0.0.1 ev1slysoft.com
127.0.0.1 flashfxp.com
127.0.0.1 flashfxp.org
127.0.0.1 flashfxp.ws
127.0.0.1 www.flashfxp.com
127.0.0.1 www.flashfxp.org
127.0.0.1 www.flashfxp.ws
127.0.0.1 liveupdate.inicom.net/verify.php

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {62BA4D3D-253B-44BB-A506-B1463FC234C7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-16] (Adobe Systems Incorporated)
Task: {F8DC6DA2-523A-492D-B7A5-067558DF3F16} - \AutoKMS No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============


==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AESTFilters => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: Credential Vault Host Control Service => 2
MSCONFIG\Services: Credential Vault Host Storage => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: STacSV => 2
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: NUSB3MON => "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe

==================== Faulty Device Manager Devices =============

Name: Broadcom NetXtreme-Gigabit-Ethernet
Description: Broadcom NetXtreme-Gigabit-Ethernet
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Broadcom
Service: b57nd60a
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/21/2014 09:44:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2014 07:41:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2014 07:38:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2014 00:12:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/20/2014 10:51:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/20/2014 07:32:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/20/2014 05:14:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (05/21/2014 10:08:53 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 10:08:53 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 10:03:05 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 10:03:05 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 10:02:55 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 10:02:06 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 10:00:54 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 10:00:53 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 09:58:34 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (05/21/2014 09:43:27 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: 


Microsoft Office Sessions:
=========================
Error: (05/21/2014 09:44:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2014 07:41:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2014 07:38:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2014 00:12:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/20/2014 10:51:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/20/2014 07:32:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/20/2014 05:14:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info =========================== 

Percentage of memory in use: 10%
Total physical RAM: 16308.19 MB
Available physical RAM: 14637.14 MB
Total Pagefile: 16306.37 MB
Available Pagefile: 14549.28 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.76 GB) (Free:398.29 GB) NTFS
Drive z: (Volume) (Fixed) (Total:148.95 GB) (Free:132.3 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 3017E1C1)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 466 GB) (Disk ID: 000C1EAF)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================
ach ja, keine Ahnung ob des relevant für das Problem ist:
nach dem Post gestern mit der ersten FRST-Logfile ist der Laptop mit BSOD abgestürzt!

Dump-File wurde wohl erstellt. aber wo find ich die?

 

Themen zu Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde
association, branding, cpu, device driver, explorer, flash player, install.exe, installation, js/toolbar.crossrider.b, problem, pup.optional.1clickdownload.a, pup.optional.crossrider.a, pup.optional.hdvidcodec.a, pup.optional.iminent.a, security, services.exe, svchost.exe, vista, win32/browsefox.c, win32/browsefox.f, win32/browsefox.h, win32/toolbar.escort.a, win32/toolbar.montiera.a, win32/toolbar.montiera.b, win32/toolbar.montiera.e, win32/toolbar.montiera.f, win32/toolbar.montiera.i, windows


« Windows 7 64 bit: TR/Injector.bsy.2 | Windows 7 und 8: Statt des Link Zieles kommt Werbung (Erneuern Sie Ihren ...) »


Ähnliche Themen: Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde


  1. Eset findet "Win32/Bundled.Toolbar.Google.D" und "Win32/OpenCandy.C"
    Plagegeister aller Art und deren Bekämpfung - 22.09.2015 (10)
  2. Windows 8.1 "Telekom-Trojaner" Avira meldet "Emotet.A.43"
    Log-Analyse und Auswertung - 24.11.2014 (9)
  3. Windows 8.1: Avast meldet Fund "Win32:Dropper-gen[Drp]"
    Log-Analyse und Auswertung - 26.07.2014 (19)
  4. Avira meldet TR/Crypt.XPACK.Gen" in Datei "mjcrosoft-windows-hal-events.exe"
    Plagegeister aller Art und deren Bekämpfung - 09.04.2014 (13)
  5. MALWAREBYTES meldet 2 Funde, als Anbieter "PUP.Optional.Conduit.A" und "PUP.Optional.DataMngr.A"
    Log-Analyse und Auswertung - 10.03.2014 (7)
  6. Win 7 64: Avira meldet diverse Funde, regelmäßige Floodings, geblockte Websiteaufrufe von "SYSTEM"
    Log-Analyse und Auswertung - 04.11.2013 (6)
  7. Variante von Win32/Bundled.Toolbar.Ask Anwendung - von Eset erkannte "Bedrohungen"
    Plagegeister aller Art und deren Bekämpfung - 02.11.2013 (3)
  8. Windows 7 "PUP Babylon Toolbar" und "a variant of Win32/Bundled.Toolbar.Ask.D" gefunden
    Log-Analyse und Auswertung - 26.09.2013 (9)
  9. Win 8 (64bit): Avast meldet "FileRepMalware" & "Win32:evo-gen [Susp]"
    Plagegeister aller Art und deren Bekämpfung - 11.09.2013 (20)
  10. Browser/Werbe popup, "AppsHat", MBAM Funde, nach "Schrift-Download"
    Plagegeister aller Art und deren Bekämpfung - 26.08.2013 (31)
  11. ZoneAlarm meldet Fund: "Trojan-Spy.Win32.Zbot.nesk"
    Log-Analyse und Auswertung - 18.07.2013 (11)
  12. "Licensevalidator.exe" u.A.: ESET meldet "Win32/Kryptik.ADPW trojan" sowie "Win32/Gataka.A trojan"
    Log-Analyse und Auswertung - 12.04.2012 (21)
  13. Fifa10.exe meldet Problem "not-a-virus:PSWTool.Win32.NetPass.yp"
    Plagegeister aller Art und deren Bekämpfung - 30.12.2011 (5)
  14. Mögliche Funde wie "Win32/InstallCore.A" / Suspect "npqtplugin5.dll" u.s.w
    Plagegeister aller Art und deren Bekämpfung - 19.12.2011 (23)
  15. "Trojan.Vundo-Variant/F" in Datei "C:\Windows\Syswow64\avsredirect.dll" + vorher weitere Schädlinge
    Plagegeister aller Art und deren Bekämpfung - 19.12.2010 (15)
  16. TROJANER meldet ständig über Pop-Up "rootkit win32 Agent pp"
    Log-Analyse und Auswertung - 08.12.2009 (1)
  17. "Security Toolbar" und Trojan-Downloader.Win32.
    Plagegeister aller Art und deren Bekämpfung - 26.11.2007 (10)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde - Entschuldige das ich jetzt erst antworte!!!! hier die neuen Logs von FRST FRST Logfile: FRST Logfile: FRST Logfile: Code: Alles auswählen Aufklappen ATTFilter Scan result of Farbar Recovery Scan Tool - Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde...
Archiv
Du betrachtest: Windows 7 EsetScan meldet "Win32/Toolbar.Montiera" und weitere Funde auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55