Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???

$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???


Plagegeister aller Art und deren Bekämpfung: $Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 07.07.2014, 10:22   #1
mSpockm
 
$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ??? - Standard

$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???


Hallo liebe Community,
gestern Abend, am 6.7.2014, habe ich mir Open Office Apache heruntergeladen. Als ich die exe im Downloadorder ausgeführt habe um es zu installieren, hat sich mein Browser ein paarmal aufgehängt. Nach der Installation, waren in jedem Ordner Desktop.ini Dateien und $Recycle.Bin Ordner, in denen wieder desktop.ini , eine Verknüpfung meines Papierkorbes und S-1-5-18 Ordner. Die Verknüpfungen der angegeben Dateien waren leicht durchsichtig, heißt das, dass sie versteckt sind ?was genau muss ich machen ?

Alt 07.07.2014, 10:44   #2
schrauber
/// the machine
/// TB-Ausbilder
 
$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ??? - Standard

$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 07.07.2014, 12:04   #3
mSpockm
 
$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ??? - Standard

$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???


hier die FRST.txt
FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-07-2014 01
Ran by Michael (administrator) on Laptop on 07-07-2014 12:56:34
Running from C:\Users\Michael\Downloads
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7546072 2014-03-10] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2198872 2014-03-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-03-28] (NVIDIA Corporation)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811120 2014-03-13] (Synaptics Incorporated)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-02-13] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Development Company, L.P.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
ShellIconOverlayIdentifiers: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\System32\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\System32\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

==================== Services (Whitelisted) =================

S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-13] (Broadcom Corporation.)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [File not signed]
R2 HPRegistrationSvc; C:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe [219936 2014-02-12] (Hewlett-Packard)
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-08] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-03-18] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1615192 2014-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20539168 2014-03-28] (NVIDIA Corporation)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-09] (Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190704 2014-03-13] (Synaptics Incorporated)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2013-08-26] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-13] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7517872 2014-07-07] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 BtwSerialBus; C:\Windows\System32\drivers\BtwSerialBus.sys [150744 2013-09-09] (Broadcom Corporation.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-28] (NVIDIA Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [466136 2014-01-15] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-03-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-03-13] (Synaptics Incorporated)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-07 21:42 - 2013-08-22 08:51 - 00035851 _____ () C:\Windows\Core.xml
2014-07-07 12:56 - 2014-07-07 12:56 - 02084352 _____ (Farbar) C:\Users\Michael\Downloads\FRST64.exe
2014-07-07 12:56 - 2014-07-07 12:56 - 00012311 _____ () C:\Users\Michael\Downloads\FRST.txt
2014-07-07 12:56 - 2014-07-07 12:56 - 00000000 ____D () C:\FRST
2014-07-07 12:54 - 2014-07-07 12:54 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DEEB772C-0E4D-4021-A52A-8ED348C0BC44}
2014-07-07 12:54 - 2014-07-07 12:54 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2447464338-600999714-1801945945-1001
2014-07-07 12:53 - 2014-07-07 12:53 - 00000000 ___RD () C:\Users\Michael\SkyDrive
2014-07-07 12:52 - 2014-07-07 12:52 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Hewlett-Packard
2014-07-07 12:50 - 2014-07-07 12:50 - 00000000 ____D () C:\Users\Michael\Documents\Youcam
2014-07-07 12:50 - 2014-07-07 12:50 - 00000000 ____D () C:\Users\Michael\AppData\Local\CyberLink
2014-07-07 12:49 - 2014-07-07 12:49 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-07-07 12:49 - 2014-07-07 12:49 - 00000000 ____D () C:\Users\Michael\AppData\Local\PackageStaging
2014-07-07 12:49 - 2014-07-07 12:49 - 00000000 ____D () C:\Users\Michael\AppData\Local\Hewlett-Packard
2014-07-07 12:48 - 2014-07-07 12:54 - 00000000 ____D () C:\Users\Michael\AppData\Local\Packages
2014-07-07 12:48 - 2014-07-07 12:53 - 00000000 ____D () C:\Users\Michael
2014-07-07 12:48 - 2014-07-07 12:49 - 00000000 ____D () C:\Users\Michael\AppData\Local\NVIDIA Corporation
2014-07-07 12:48 - 2014-07-07 12:48 - 00001457 _____ () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-07 12:48 - 2014-07-07 12:48 - 00000180 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-07 12:48 - 2014-07-07 12:48 - 00000020 ___SH () C:\Users\Michael\ntuser.ini
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Vorlagen
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Startmenü
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Netzwerkumgebung
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Lokale Einstellungen
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Eigene Dateien
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Druckumgebung
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Documents\Eigene Musik
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Documents\Eigene Bilder
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\AppData\Local\Verlauf
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\AppData\Local\Anwendungsdaten
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Anwendungsdaten
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Synaptics
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Adobe
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Local\VirtualStore
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Local\NVIDIA
2014-07-07 12:48 - 2014-07-07 12:39 - 00000000 ___HD () C:\Users\Michael\Documents\hp.system.package.metadata
2014-07-07 12:48 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-07 12:48 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-07 12:48 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-07 12:48 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-07-07 12:45 - 2014-07-07 12:48 - 00159489 _____ () C:\Windows\WindowsUpdate.log
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Programme
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-07-07 12:42 - 2014-07-07 12:42 - 00002324 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2447464338-600999714-1801945945-500
2014-07-07 12:39 - 2014-07-07 12:39 - 00000000 ___HD () C:\Users\Default\Documents\hp.system.package.metadata
2014-07-07 12:39 - 2014-07-07 12:39 - 00000000 ___HD () C:\Users\Default User\Documents\hp.system.package.metadata
2014-07-07 12:32 - 2014-07-07 12:32 - 00000058 _____ () C:\Windows\system32\ndCPrepLog
2014-07-07 12:28 - 2014-07-07 12:28 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-07-07 12:06 - 2014-07-07 12:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2014-07-07 12:05 - 2014-07-07 12:09 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2014-07-07 12:05 - 2014-07-07 12:05 - 00000000 __RSH () C:\Windows\SysWOW64\Drivers\103C_HP_cNB_Pavilion 15 Notebook PC_Y5335KV_0U_Q5CD4210XRR_E758211-041_4A_I2281_SHP_V77.11_BF.03_T140506_W8101-0_L407_M8123_J1000_7Intel_8651_92.60_#140707_N14E44365;10EC8136_(J1Y48EA#ABD)_XMOBILE_CN10_Z.MRK
2014-07-07 12:05 - 2014-07-07 12:05 - 00000000 __RSH () C:\Windows\system32\Drivers\103C_HP_cNB_Pavilion 15 Notebook PC_Y5335KV_0U_Q5CD4210XRR_E758211-041_4A_I2281_SHP_V77.11_BF.03_T140506_W8101-0_L407_M8123_J1000_7Intel_8651_92.60_#140707_N14E44365;10EC8136_(J1Y48EA#ABD)_XMOBILE_CN10_Z.MRK
2014-07-07 12:05 - 2014-07-07 12:05 - 00000000 ____D () C:\Users\Public\CyberLink
2014-07-07 12:05 - 2013-11-12 14:25 - 00091912 _____ (CyberLink) C:\Windows\system32\Drivers\CLVirtualDrive.sys
2014-07-07 12:03 - 2014-07-07 12:03 - 00003156 _____ () C:\Windows\System32\Tasks\YCMServiceAgent
2014-07-07 12:03 - 2014-07-07 12:03 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2014-07-07 12:03 - 2014-01-28 05:58 - 00041704 _____ (CyberLink Corporation) C:\Windows\system32\Drivers\clwvd.sys
2014-07-07 12:02 - 2014-07-07 12:09 - 00000000 ____D () C:\ProgramData\Temp
2014-07-07 12:02 - 2014-07-07 12:09 - 00000000 ____D () C:\ProgramData\install_clap
2014-07-07 12:02 - 2014-07-07 12:09 - 00000000 ____D () C:\ProgramData\CyberLink
2014-07-07 12:02 - 2014-07-07 12:09 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-07-07 12:02 - 2014-07-07 12:09 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-07-07 12:01 - 2014-07-07 12:01 - 00000000 ____D () C:\Windows\System32\Tasks\Hewlett-Packard
2014-07-07 12:01 - 2014-07-07 12:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2014-07-07 12:00 - 2014-07-07 12:00 - 00000000 ____D () C:\ProgramData\{C19CA186-4F06-4E22-A1E6-6BAB4723A0DE}
2014-07-07 11:59 - 2014-07-07 11:59 - 00015924 _____ () C:\Windows\system32\results.xml
2014-07-07 11:59 - 2014-07-07 11:59 - 00000244 _____ () C:\Windows\system32\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat
2014-07-07 11:59 - 2014-07-07 11:59 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2014-07-07 11:59 - 2014-07-07 11:59 - 00000000 ____D () C:\ProgramData\Synaptics
2014-07-07 11:59 - 2013-08-13 16:02 - 00029088 _____ () C:\Windows\system32\Drivers\INETMON.sys
2014-07-07 11:58 - 2014-07-07 11:58 - 00000000 ____D () C:\ProgramData\Apple
2014-07-07 11:58 - 2014-07-07 11:58 - 00000000 ____D () C:\Program Files\Bonjour
2014-07-07 11:58 - 2014-07-07 11:58 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-07-07 11:58 - 2013-08-10 08:44 - 00226816 _____ (Hewlett-Packard) C:\Windows\system32\hpbprtmonui.dll
2014-07-07 11:58 - 2013-08-10 08:43 - 00424960 _____ (Hewlett-Packard) C:\Windows\system32\hpbrprtmon.dll
2014-07-07 11:58 - 2013-08-10 08:42 - 00404992 _____ (Hewlett-Packard) C:\Windows\system32\hpbprtmon.dll
2014-07-07 11:57 - 2014-07-07 12:10 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-07-07 11:57 - 2014-07-07 11:57 - 00000000 ____D () C:\Windows\Hewlett-Packard
2014-07-07 11:57 - 2014-07-07 11:57 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-07 11:56 - 2014-07-07 12:09 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-07-07 11:56 - 2014-07-07 11:58 - 00000000 ____D () C:\Program Files\Broadcom
2014-07-07 11:56 - 2014-07-07 11:56 - 07517872 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL63a.SYS
2014-07-07 11:56 - 2014-07-07 11:56 - 04136960 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv64.dll
2014-07-07 11:56 - 2014-07-07 11:56 - 03781632 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui64.dll
2014-07-07 11:56 - 2014-07-07 11:56 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-07-07 11:55 - 2014-07-07 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-07 11:55 - 2014-07-07 11:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-07-07 11:55 - 2014-07-07 11:55 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-07 11:55 - 2014-07-07 11:55 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-07-07 11:55 - 2014-03-28 19:53 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-07-07 11:55 - 2014-03-28 19:53 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-07-07 11:55 - 2014-03-13 21:26 - 06681032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-07-07 11:55 - 2014-03-13 21:26 - 03670269 _____ () C:\Windows\system32\nvcoproc.bin
2014-07-07 11:55 - 2014-03-13 21:26 - 03496280 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-07-07 11:55 - 2014-03-13 21:26 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-07-07 11:55 - 2014-03-13 21:26 - 01072072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2014-07-07 11:55 - 2014-03-13 21:26 - 00925128 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-07-07 11:55 - 2014-03-13 21:26 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-07-07 11:55 - 2014-03-13 21:26 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2014-07-07 11:55 - 2014-03-13 21:26 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-07-07 11:55 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-07-07 11:55 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-07-07 11:55 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-07-07 11:55 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-07-07 11:55 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-07-07 11:55 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-07-07 11:54 - 2014-07-07 11:56 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-07-07 11:54 - 2014-07-07 11:55 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-07 11:54 - 2014-03-28 19:53 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-07-07 11:54 - 2014-03-28 19:53 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-07-07 11:54 - 2014-03-28 19:53 - 00033568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 30389536 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 22975944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 18313184 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 15879264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 12682016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-07-07 11:54 - 2014-03-28 19:52 - 11588248 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 09688888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00887640 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00885024 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00478552 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00404312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00356184 _____ () C:\Windows\system32\NvIFROpenGL.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00315848 _____ () C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-07-07 11:54 - 2014-03-28 19:52 - 00023754 _____ () C:\Windows\system32\nvinfo.pb
2014-07-07 11:54 - 2014-03-28 19:51 - 25259976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 18234880 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 17559384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 15241712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 11639248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 09731624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 03132360 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 03079896 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 02936664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 02755016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 02703952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 01885640 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433285.dll
2014-07-07 11:54 - 2014-03-28 19:51 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433285.dll
2014-07-07 11:54 - 2014-03-18 19:29 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2014-07-07 11:54 - 2014-03-18 19:29 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2014-07-07 11:53 - 2013-12-18 21:35 - 00839896 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys
2014-07-07 11:53 - 2013-12-18 21:35 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-07-07 11:52 - 2014-07-07 11:52 - 00005680 _____ () C:\Windows\system32\Drivers\rtkhdasetting.zip
2014-07-07 11:52 - 2014-07-07 11:52 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-07 11:52 - 2014-07-07 11:52 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-07-07 11:52 - 2014-07-07 11:52 - 00000000 ____D () C:\Program Files\Realtek
2014-07-07 11:51 - 2014-07-07 12:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-07 11:51 - 2014-07-07 11:53 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-07-07 11:51 - 2014-07-07 11:52 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-07-07 11:51 - 2014-07-07 11:51 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-07-07 11:51 - 2014-07-07 11:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-07-07 11:51 - 2014-03-12 07:50 - 00853784 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-07-07 11:51 - 2014-03-12 07:00 - 03891800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-07-07 11:51 - 2014-03-12 03:37 - 57362432 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-07-07 11:51 - 2014-03-11 03:09 - 00947928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-07-07 11:51 - 2014-03-07 20:57 - 02794200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-07-07 11:51 - 2014-03-07 02:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-07-07 11:51 - 2014-03-05 06:27 - 02831576 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-07-07 11:51 - 2014-03-05 03:19 - 00627928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-07-07 11:51 - 2014-03-04 06:21 - 01019608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-07-07 11:51 - 2014-02-27 01:16 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-07-07 11:51 - 2014-01-28 21:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-07-07 11:51 - 2014-01-15 00:17 - 00466136 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsPer.sys
2014-07-07 11:51 - 2014-01-08 00:24 - 00359128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2014-07-07 11:51 - 2014-01-08 00:10 - 00313048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsBaStor.sys
2014-07-07 11:51 - 2014-01-04 02:08 - 00291544 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsP2Stor.sys
2014-07-07 11:51 - 2014-01-03 23:33 - 00271064 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2014-07-07 11:51 - 2014-01-03 21:14 - 00331992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUVStor.sys
2014-07-07 11:51 - 2013-10-16 13:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-07-07 11:51 - 2013-10-11 22:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-07-07 11:51 - 2013-04-26 04:12 - 09889352 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2014-07-07 11:51 - 2012-03-08 21:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-07-07 11:51 - 2011-12-21 01:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-07-07 11:51 - 2011-11-23 02:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-07-07 11:51 - 2010-11-08 17:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-07-07 11:51 - 2010-11-08 17:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-07-07 11:51 - 2010-11-08 17:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-07-07 11:51 - 2010-11-08 17:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-07-07 11:51 - 2010-11-08 17:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-07-07 11:51 - 2010-11-08 17:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-07-07 11:51 - 2010-11-04 04:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-07-07 11:51 - 2009-11-24 19:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-07-07 11:51 - 2009-11-24 19:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-07-07 11:49 - 2014-07-07 11:59 - 00000000 ____D () C:\ProgramData\Intel
2014-07-07 11:49 - 2014-07-07 11:58 - 00022776 _____ () C:\Windows\DPINST.LOG
2014-07-07 11:49 - 2014-07-07 11:55 - 00000000 ____D () C:\Program Files\Intel
2014-07-07 11:49 - 2014-07-07 11:49 - 00001344 _____ () C:\Windows\Synaptics.log
2014-07-07 11:49 - 2014-07-07 11:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-07-07 11:49 - 2014-07-07 11:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-07-07 11:49 - 2014-07-07 11:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-07-07 11:49 - 2014-07-07 11:49 - 00000000 ____D () C:\Program Files\Synaptics
2014-07-07 11:49 - 2013-12-10 17:27 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-07-07 11:47 - 2014-07-07 11:54 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-07-07 11:47 - 2014-07-07 11:53 - 00000000 ____D () C:\Intel
2014-07-07 11:47 - 2013-08-05 21:50 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-07-07 11:44 - 2014-07-07 11:44 - 00002324 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4203686491-286020052-2401668508-500

==================== One Month Modified Files and Folders =======

2014-07-07 21:43 - 2013-08-22 17:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2014-07-07 21:43 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-07 21:42 - 2014-04-15 03:26 - 00000012 _____ () C:\Windows\CSUP.txt
2014-07-07 12:56 - 2014-07-07 12:56 - 02084352 _____ (Farbar) C:\Users\Michael\Downloads\FRST64.exe
2014-07-07 12:56 - 2014-07-07 12:56 - 00012311 _____ () C:\Users\Michael\Downloads\FRST.txt
2014-07-07 12:56 - 2014-07-07 12:56 - 00000000 ____D () C:\FRST
2014-07-07 12:54 - 2014-07-07 12:54 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DEEB772C-0E4D-4021-A52A-8ED348C0BC44}
2014-07-07 12:54 - 2014-07-07 12:54 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2447464338-600999714-1801945945-1001
2014-07-07 12:54 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Local\Packages
2014-07-07 12:54 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-07-07 12:53 - 2014-07-07 12:53 - 00000000 ___RD () C:\Users\Michael\SkyDrive
2014-07-07 12:53 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael
2014-07-07 12:52 - 2014-07-07 12:52 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Hewlett-Packard
2014-07-07 12:52 - 2014-04-15 03:31 - 00801992 _____ () C:\Windows\system32\perfh007.dat
2014-07-07 12:52 - 2014-04-15 03:31 - 00174994 _____ () C:\Windows\system32\perfc007.dat
2014-07-07 12:52 - 2013-08-26 08:09 - 01924512 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-07 12:50 - 2014-07-07 12:50 - 00000000 ____D () C:\Users\Michael\Documents\Youcam
2014-07-07 12:50 - 2014-07-07 12:50 - 00000000 ____D () C:\Users\Michael\AppData\Local\CyberLink
2014-07-07 12:49 - 2014-07-07 12:49 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-07-07 12:49 - 2014-07-07 12:49 - 00000000 ____D () C:\Users\Michael\AppData\Local\PackageStaging
2014-07-07 12:49 - 2014-07-07 12:49 - 00000000 ____D () C:\Users\Michael\AppData\Local\Hewlett-Packard
2014-07-07 12:49 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Local\NVIDIA Corporation
2014-07-07 12:48 - 2014-07-07 12:48 - 00001457 _____ () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-07 12:48 - 2014-07-07 12:48 - 00000180 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-07 12:48 - 2014-07-07 12:48 - 00000020 ___SH () C:\Users\Michael\ntuser.ini
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Vorlagen
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Startmenü
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Netzwerkumgebung
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Lokale Einstellungen
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Eigene Dateien
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Druckumgebung
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Documents\Eigene Musik
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Documents\Eigene Bilder
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\AppData\Local\Verlauf
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\AppData\Local\Anwendungsdaten
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 _SHDL () C:\Users\Michael\Anwendungsdaten
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Synaptics
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Roaming\Adobe
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Local\VirtualStore
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____D () C:\Users\Michael\AppData\Local\NVIDIA
2014-07-07 12:48 - 2014-07-07 12:45 - 00159489 _____ () C:\Windows\WindowsUpdate.log
2014-07-07 12:48 - 2013-09-01 04:03 - 00000000 ___HD () C:\SYSTEM.SAV
2014-07-07 12:48 - 2013-08-26 08:57 - 00000000 ____D () C:\Windows\Panther
2014-07-07 12:45 - 2013-08-22 16:46 - 00020991 _____ () C:\Windows\setupact.log
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Programme
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-07-07 12:44 - 2014-07-07 12:44 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-07-07 12:44 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2014-07-07 12:44 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-07-07 12:44 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-07 12:44 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default
2014-07-07 12:43 - 2013-09-01 05:49 - 00000000 ____D () C:\SWSetup
2014-07-07 12:43 - 2013-08-26 08:13 - 00010342 _____ () C:\Windows\iis.log
2014-07-07 12:43 - 2013-08-22 17:37 - 00004552 _____ () C:\Windows\DtcInstall.log
2014-07-07 12:43 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\Recovery
2014-07-07 12:43 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-07 12:42 - 2014-07-07 12:42 - 00002324 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2447464338-600999714-1801945945-500
2014-07-07 12:39 - 2014-07-07 12:48 - 00000000 ___HD () C:\Users\Michael\Documents\hp.system.package.metadata
2014-07-07 12:39 - 2014-07-07 12:39 - 00000000 ___HD () C:\Users\Default\Documents\hp.system.package.metadata
2014-07-07 12:39 - 2014-07-07 12:39 - 00000000 ___HD () C:\Users\Default User\Documents\hp.system.package.metadata
2014-07-07 12:39 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\Sysprep
2014-07-07 12:38 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2014-07-07 12:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore
2014-07-07 12:32 - 2014-07-07 12:32 - 00000058 _____ () C:\Windows\system32\ndCPrepLog
2014-07-07 12:28 - 2014-07-07 12:28 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-07-07 12:28 - 2013-08-22 16:44 - 00352120 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-07 12:10 - 2014-07-07 11:57 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-07-07 12:09 - 2014-07-07 12:05 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2014-07-07 12:09 - 2014-07-07 12:02 - 00000000 ____D () C:\ProgramData\Temp
2014-07-07 12:09 - 2014-07-07 12:02 - 00000000 ____D () C:\ProgramData\install_clap
2014-07-07 12:09 - 2014-07-07 12:02 - 00000000 ____D () C:\ProgramData\CyberLink
2014-07-07 12:09 - 2014-07-07 12:02 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-07-07 12:09 - 2014-07-07 12:02 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-07-07 12:09 - 2014-07-07 11:56 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-07-07 12:09 - 2014-07-07 11:51 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-07 12:06 - 2014-07-07 12:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2014-07-07 12:05 - 2014-07-07 12:05 - 00000000 __RSH () C:\Windows\SysWOW64\Drivers\103C_HP_cNB_Pavilion 15 Notebook PC_Y5335KV_0U_Q5CD4210XRR_E758211-041_4A_I2281_SHP_V77.11_BF.03_T140506_W8101-0_L407_M8123_J1000_7Intel_8651_92.60_#140707_N14E44365;10EC8136_(J1Y48EA#ABD)_XMOBILE_CN10_Z.MRK
2014-07-07 12:05 - 2014-07-07 12:05 - 00000000 __RSH () C:\Windows\system32\Drivers\103C_HP_cNB_Pavilion 15 Notebook PC_Y5335KV_0U_Q5CD4210XRR_E758211-041_4A_I2281_SHP_V77.11_BF.03_T140506_W8101-0_L407_M8123_J1000_7Intel_8651_92.60_#140707_N14E44365;10EC8136_(J1Y48EA#ABD)_XMOBILE_CN10_Z.MRK
2014-07-07 12:05 - 2014-07-07 12:05 - 00000000 ____D () C:\Users\Public\CyberLink
2014-07-07 12:03 - 2014-07-07 12:03 - 00003156 _____ () C:\Windows\System32\Tasks\YCMServiceAgent
2014-07-07 12:03 - 2014-07-07 12:03 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2014-07-07 12:01 - 2014-07-07 12:01 - 00000000 ____D () C:\Windows\System32\Tasks\Hewlett-Packard
2014-07-07 12:01 - 2014-07-07 12:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2014-07-07 12:00 - 2014-07-07 12:00 - 00000000 ____D () C:\ProgramData\{C19CA186-4F06-4E22-A1E6-6BAB4723A0DE}
2014-07-07 11:59 - 2014-07-07 11:59 - 00015924 _____ () C:\Windows\system32\results.xml
2014-07-07 11:59 - 2014-07-07 11:59 - 00000244 _____ () C:\Windows\system32\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat
2014-07-07 11:59 - 2014-07-07 11:59 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2014-07-07 11:59 - 2014-07-07 11:59 - 00000000 ____D () C:\ProgramData\Synaptics
2014-07-07 11:59 - 2014-07-07 11:49 - 00000000 ____D () C:\ProgramData\Intel
2014-07-07 11:58 - 2014-07-07 11:58 - 00000000 ____D () C:\ProgramData\Apple
2014-07-07 11:58 - 2014-07-07 11:58 - 00000000 ____D () C:\Program Files\Bonjour
2014-07-07 11:58 - 2014-07-07 11:58 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-07-07 11:58 - 2014-07-07 11:56 - 00000000 ____D () C:\Program Files\Broadcom
2014-07-07 11:58 - 2014-07-07 11:49 - 00022776 _____ () C:\Windows\DPINST.LOG
2014-07-07 11:57 - 2014-07-07 11:57 - 00000000 ____D () C:\Windows\Hewlett-Packard
2014-07-07 11:57 - 2014-07-07 11:57 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-07 11:56 - 2014-07-07 11:56 - 07517872 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL63a.SYS
2014-07-07 11:56 - 2014-07-07 11:56 - 04136960 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv64.dll
2014-07-07 11:56 - 2014-07-07 11:56 - 03781632 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui64.dll
2014-07-07 11:56 - 2014-07-07 11:56 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-07-07 11:56 - 2014-07-07 11:54 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-07-07 11:56 - 2013-08-26 08:13 - 01950536 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-07 11:55 - 2014-07-07 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-07 11:55 - 2014-07-07 11:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-07-07 11:55 - 2014-07-07 11:55 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-07 11:55 - 2014-07-07 11:55 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-07-07 11:55 - 2014-07-07 11:54 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-07 11:55 - 2014-07-07 11:49 - 00000000 ____D () C:\Program Files\Intel
2014-07-07 11:54 - 2014-07-07 11:47 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-07-07 11:54 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help
2014-07-07 11:53 - 2014-07-07 11:51 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-07-07 11:53 - 2014-07-07 11:47 - 00000000 ____D () C:\Intel
2014-07-07 11:52 - 2014-07-07 11:52 - 00005680 _____ () C:\Windows\system32\Drivers\rtkhdasetting.zip
2014-07-07 11:52 - 2014-07-07 11:52 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-07 11:52 - 2014-07-07 11:52 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-07-07 11:52 - 2014-07-07 11:52 - 00000000 ____D () C:\Program Files\Realtek
2014-07-07 11:52 - 2014-07-07 11:51 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-07-07 11:51 - 2014-07-07 11:51 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-07-07 11:51 - 2014-07-07 11:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-07-07 11:49 - 2014-07-07 11:49 - 00001344 _____ () C:\Windows\Synaptics.log
2014-07-07 11:49 - 2014-07-07 11:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-07-07 11:49 - 2014-07-07 11:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-07-07 11:49 - 2014-07-07 11:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-07-07 11:49 - 2014-07-07 11:49 - 00000000 ____D () C:\Program Files\Synaptics
2014-07-07 11:49 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-07-07 11:44 - 2014-07-07 11:44 - 00002324 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4203686491-286020052-2401668508-500

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2013-08-26 08:01

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

und hier die Addition.txtFRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-07-2014 01
Ran by Michael at 2014-07-07 12:56:58
Running from C:\Users\Michael\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 6.223.215.5 - Broadcom Corporation)
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.0.9130 - Broadcom Corporation)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.)
CyberLink Media Suite 10 (x32 Version: 10.0.6.3728 - CyberLink Corp.) Hidden
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4.4824 - CyberLink Corp.)
Cyberlink PhotoDirector (x32 Version: 3.0.4.4824 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.6.3821 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.6.3821 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.6.3604 - CyberLink Corp.)
CyberLink PowerDirector 10 (x32 Version: 10.0.6.3604 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
CyberLink PowerDVD 12 (x32 Version: 12.0.3.3709 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 5.0.3.3907 - CyberLink Corp.) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{F90A86C9-7779-47DD-AC06-8EE832C55F55}) (Version: 6.0.18.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{E2C8D0C2-1C97-4C05-939A-5B13A0FE655C}) (Version: 2.20.31 - Hewlett-Packard Company)
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Postscript Converter (Version: 4.5.12202 - Hewlett-Packard) Hidden
HP Recovery Manager (x32 Version: 1.16.1420 - Hewlett-Packard) Hidden
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7493.4758 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP SimplePass (Version: 8.01.11 - Hewlett-Packard) Hidden
HP Support Assistant (HKLM-x32\...\{8C696B4B-6AB1-44BC-9416-96EAC474CABE}) (Version: 7.5.2.12 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{DEF23826-DB71-4654-BC00-D5D6C20802EA}) (Version: 1.1.4 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{36F80C5F-DC0D-4DF4-AF09-DC1867F0EB0A}) (Version: 2.4.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.9.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.9.1000 - Intel Corporation) Hidden
Intel(R) Smart Connect Technology (HKLM\...\{8B4EA042-9E21-46FB-8286-225F4D51CC52}) (Version: 4.2.41.2710 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
NVIDIA GeForce Experience 2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0 - NVIDIA Corporation)
NVIDIA Grafiktreiber 332.85 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.85 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 12.4.46 (Version: 12.4.46 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0927 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0927 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0927 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.46 (Version: 12.4.46 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 332.85 (Version: 332.85 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.46 (Version: 12.4.46 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.46 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.22 - NVIDIA Corporation)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.273.40 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 1.8.315 - NVIDIA Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.5.2 - Synaptics Incorporated)

==================== Restore Points  =========================


==================== Hosts content: ==========================

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0614242A-292A-4684-8CE2-9C79DFC7F848} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\SYSTEM32\OOBE\SETUPSQM.EXE [2013-08-22] (Microsoft Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3D30595A-F472-4B0B-B280-A44FC53D22A5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2014-01-13] (Hewlett-Packard Company)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A9D72C0F-A735-400A-9736-F15BC88F2CB5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2014-01-13] (Hewlett-Packard Company)
Task: {B634FCB8-B0A6-4EFA-BDC7-25E49D5A701C} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2013-11-01] (Hewlett-Packard Development Company, L.P.)
Task: {C196794C-8CAE-4ADE-AF37-FD0525D1E504} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D83D6048-C7D8-42C1-9102-1CDAB1E4073F} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE

==================== Loaded Modules (whitelisted) =============

2014-07-07 11:55 - 2014-03-13 21:26 - 00117536 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-03-28 13:31 - 2014-03-28 13:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 13:27 - 2014-03-28 13:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 13:27 - 2014-03-28 13:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 13:27 - 2014-03-28 13:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 13:48 - 2014-03-28 13:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 13:48 - 2014-03-28 13:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2013-12-04 08:44 - 2013-12-04 08:44 - 00200168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2013-12-04 08:44 - 2013-12-04 08:44 - 00054760 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2013-12-04 08:44 - 2013-12-04 08:44 - 00034792 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2014-03-28 13:36 - 2014-03-28 13:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2014-07-07 11:49 - 2013-12-10 17:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Michael\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (07/07/2014 00:42:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "IP-Hilfsdienst" wurde mit folgendem Fehler beendet: 
%%1058

Error: (07/07/2014 00:41:41 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (07/07/2014 00:38:04 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 26%
Total physical RAM: 8122.14 MB
Available physical RAM: 5938.68 MB
Total Pagefile: 10042.14 MB
Available Pagefile: 7741.71 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:909.3 GB) (Free:881.94 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:21.19 GB) (Free:2.09 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: EDBD96DB)

Partition: GPT Partition Type.

==================== End Of Log ============================
--- --- ---
__________________
Alt 08.07.2014, 06:23   #4
schrauber
/// the machine
/// TB-Ausbilder
 
$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ??? - Standard

$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???


Systemsteuerung > Ordneroptionen > Umstellen auf versteckte Dateien ausblenden.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 08.07.2014, 16:43   #5
mSpockm
 
$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ??? - Standard

$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???


Heißt das, dass mein betriebssystem in ordnung ist und es auch kein virus ist ?


Alt 09.07.2014, 12:18   #6
schrauber
/// the machine
/// TB-Ausbilder
 
$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ??? - Standard

$Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???


Also ich seh nix
__________________
--> $Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???

Antwort

Themen zu $Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???
$recycle.bin, abend, angegeben, apache, ausgeführt, browser, community, dateien, desktop.ini, exe, gen, installation, installiere, installieren, leicht, liebe, office, open office, ordner, papierkorb, recycle.bin, s-1-5-18, verknüpfung, verknüpfungen, versteckt, virus, virus ?


« Nach einem Firefox-Update geht hier alles drunter und drüber | Unter Win 7 HomePremium mehrfacher Trojaner-Befall »


Ähnliche Themen: $Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???


  1. $Recycle.Bin, System Volume Information u.Ä. auf allen Laufwerken ... Virus? Was tun?
    Plagegeister aller Art und deren Bekämpfung - 21.07.2014 (13)
  2. Recycle.Bin virus auf externer Festplatte, Daten unsichtbar
    Log-Analyse und Auswertung - 30.09.2013 (6)
  3. $recycle.bin Der virus geht nicht weg
    Log-Analyse und Auswertung - 25.07.2013 (12)
  4. AVIRA Sicherheitshinweis; Datei: 'C\$Recycle.Bin\...\n'; Virus: 'BDS/ZeroAccess.Gen'
    Plagegeister aller Art und deren Bekämpfung - 27.06.2013 (29)
  5. Virus, $Recycle.Bin ZeroAccess-Rootkit
    Log-Analyse und Auswertung - 21.05.2013 (14)
  6. TR/ATRAPS.Gen2 in C:\$Recycle.Bin\...\U\80000032.@ und TR/Sirefef.abx in C:\$Recycle.Bin\...\U\000000
    Log-Analyse und Auswertung - 05.04.2013 (19)
  7. 'TR/ATRAPS.Gen' in 'C:\$Recycle.Bin\...\80000000.@'
    Plagegeister aller Art und deren Bekämpfung - 29.09.2012 (3)
  8. $RECYCLE.BIN in C:?? Trojaner??
    Plagegeister aller Art und deren Bekämpfung - 16.04.2012 (9)
  9. Trojaner in C:\$recycle.bin
    Plagegeister aller Art und deren Bekämpfung - 16.10.2011 (1)
  10. Trojaner in $recycle.bin
    Plagegeister aller Art und deren Bekämpfung - 27.09.2011 (11)
  11. Trojaner 'PWS-Zbot.gen.gm' in 'C:\Recycle.Bin\Recycle.Bin.exe' - evtl. für Phishing verantwortlich?
    Plagegeister aller Art und deren Bekämpfung - 06.07.2011 (1)
  12. Ursprünge von recycle.bin/recycle.bin.exe
    Plagegeister aller Art und deren Bekämpfung - 01.07.2011 (6)
  13. TR/Kazy.24828 [trojan] in file 'C:\Recycle.Bin\Recycle.Bin.exe. gefunden.
    Plagegeister aller Art und deren Bekämpfung - 16.06.2011 (18)
  14. Trojanerbefall TR/Agent.ar.55 und TR/Jorik.SpyEyes.no; C:\Recycle.Bin\Recycle.Bin.exe
    Log-Analyse und Auswertung - 09.06.2011 (31)
  15. Recycle.Bin.exe
    Log-Analyse und Auswertung - 01.06.2011 (64)
  16. Antivirus: zeigt alle 10 Sekunden Virus an (Recycle.Bin\...)
    Plagegeister aller Art und deren Bekämpfung - 07.05.2011 (1)
  17. Virus in C:\$recycle.bin?????
    Log-Analyse und Auswertung - 25.01.2011 (11)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema $Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ??? - Hallo liebe Community, gestern Abend, am 6.7.2014, habe ich mir Open Office Apache heruntergeladen. Als ich die exe im Downloadorder ausgeführt habe um es zu installieren, hat sich mein Browser - $Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ???...
Archiv
Du betrachtest: $Recycle.Bin , desktop.ini und S-1-5-18 VIRUS ??? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131