| |
| |||||||
Log-Analyse und Auswertung: Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine AnmeldemaskeWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
18.11.2014, 16:17
| #1 |
| |  Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske Hallo zusammen, ich habe nach dem WE keinen Zugriff ,mehr auf meinen Laptop. Windows startet, aber anstelle der Anmeldemaske kommt nur ein schwarzer Bildschirm mit Mauszeiger, Maus läßt sich bewegen hat aber keine Funktion. Bei allen Bootvarianten der selbe Effekt. Die Platte ist eine SSD, auf der ich ein zweite Betriebssystem installiert habe. Vorher konnte ich auch vom anderen System auf den Inhalt der Platte zugreifen, jetzt kommt die Meldung Zugriff verweigert. Ich hänge mal das Ergebnis vom FRST an. Viele Grüße Ralf FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-11-2014
Ran by SYSTEM on MININT-SEB1RH3 on 18-11-2014 16:00:16
Running from e:\
Platform: Windows 7 Ultimate (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Recovery
The current controlset is ControlSet002
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [1138783 2011-05-27] (IDT, Inc.)
HKLM\...\Run: [NUSB3MON] => c:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM\...\Run: [ConnectionCenter] => C:\Program Files\Citrix\ICA Client\concentr.exe [305088 2011-04-25] (Citrix Systems, Inc.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3653136 2014-11-09] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2444016 2013-10-30] (Synaptics Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.)
HKLM\...\RunOnce: [*WerKernelReporting] => C:\Windows\SYSTEM32\WerFault.exe [360448 2009-07-14] (Microsoft Corporation)
HKLM\...\Winlogon: [Userinit] d:\Windows\system32\userinit.exe,
HKU\Ralf\...\Run: [gStart] => C:\Program Files\Garmin\Training Center\gStart.exe [1891416 2008-08-13] (GARMIN Corp.)
HKU\Ralf\...\Run: [Google Update] => C:\Users\Ralf\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-10] (Google Inc.)
HKU\Ralf\...\Run: [GoogleChromeAutoLaunch_41A14711F994142C0CBF0BA254561EA4] => C:\Users\Ralf\AppData\Local\Google\Chrome\Application\chrome.exe [859976 2014-03-15] (Google Inc.)
HKU\Ralf\...\Run: [TrueCrypt] => C:\Program Files\TrueCrypt\TrueCrypt.exe [1516496 2012-02-15] (TrueCrypt Foundation)
HKU\Ralf\...\Run: [1&1_1&1 Upload-Manager] => C:\Program Files\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\Ralf\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\Ralf\...\Run: [NETGEARGenie] => C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe [602880 2013-11-14] (NETGEAR Inc.)
HKU\Ralf\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\Ralf\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\Ralf.old\...\Run: [gStart] => C:\Program Files\Garmin\Training Center\gStart.exe [1891416 2008-08-13] (GARMIN Corp.)
HKU\Ralf.old\...\Run: [Google Update] => C:\Users\Ralf\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-10] (Google Inc.)
HKU\Ralf.old\...\Run: [GoogleChromeAutoLaunch_41A14711F994142C0CBF0BA254561EA4] => C:\Users\Ralf\AppData\Local\Google\Chrome\Application\chrome.exe [859976 2014-03-15] (Google Inc.)
HKU\Ralf.old\...\Run: [TrueCrypt] => C:\Program Files\TrueCrypt\TrueCrypt.exe [1516496 2012-02-15] (TrueCrypt Foundation)
HKU\Ralf.old\...\Run: [1&1_1&1 Upload-Manager] => C:\Program Files\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\Ralf.old\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\Ralf.old\...\Run: [NETGEARGenie] => C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe [602880 2013-11-14] (NETGEAR Inc.)
HKU\Ralf.old\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\Ralf.old\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\TEMP\...\Run: [TrueCrypt] => C:\Program Files\TrueCrypt\TrueCrypt.exe [1516496 2012-02-15] (TrueCrypt Foundation)
HKU\TEMP\...\Run: [1&1_1&1 Upload-Manager] => C:\Program Files\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\TEMP\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [688984 2014-09-18] (Garmin Ltd or its subsidiaries)
HKU\TEMP\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\TEMP\...\RunOnce: [Application Restart #0] => C:\Program Files\Google\Chrome\Application\chrome.exe [854344 2014-10-22] (Google Inc.)
Startup: C:\Users\Ralf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk
ShortcutTarget: Samsung Magician.lnk -> C:\Program Files\Samsung\Samsung Magician\Samsung Magician.exe (Samsung Electronics.)
Startup: C:\Users\Ralf.old\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk
ShortcutTarget: Samsung Magician.lnk -> C:\Program Files\Samsung\Samsung Magician\Samsung Magician.exe (Samsung Electronics.)
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [813576 2012-08-23] (Acronis)
S2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3729400 2012-10-08] (Acronis)
S2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
S2 AMPPALR3; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [948736 2011-08-31] (Intel Corporation)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3488784 2014-11-09] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080 2014-11-09] (AVG Technologies CZ, s.r.o.)
S2 BTHSSecurityMgr; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [102672 2011-06-03] (Intel(R) Corporation)
S3 FileZilla Server; C:\Program Files\FileZilla Server\FileZilla Server.exe [639488 2014-08-03] (FileZilla Project)
S2 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [450904 2014-09-18] (Garmin Ltd or its subsidiaries)
S2 KMService; C:\Windows\system32\srvany.exe [8192 2003-04-18] ()
S2 NETGEARGenieDaemon; C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [195840 2013-11-14] (NETGEAR)
S2 OTFSDMS; C:\Program Files\AddinForUNCFAT\UNCFATDMS.exe [129024 2008-06-19] (Microsoft Corp.)
S2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [282709 2011-05-27] (IDT, Inc.)
S4 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7027752 2012-08-18] (Acronis)
S2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2011-12-15] (Logitech Inc.)
S2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [9216 2011-04-19] (Vodafone)
S2 vToolbarUpdater18.1.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\ToolbarUpdater.exe [1793536 2014-04-28] (AVG Secure Search)
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [243712 2011-08-08] (Windows (R) Win 7 DDK provider)
S3 AMPPALP; C:\Windows\System32\DRIVERS\amppal.sys [243712 2011-08-08] (Windows (R) Win 7 DDK provider)
S1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [213784 2014-10-29] (AVG Technologies CZ, s.r.o.)
S0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147736 2014-06-18] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
S1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
S0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
S0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [98584 2014-10-05] (AVG Technologies CZ, s.r.o.)
S0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
S1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [200984 2014-10-10] (AVG Technologies CZ, s.r.o.)
S1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [42272 2014-04-28] (AVG Technologies)
S3 BTWAMPFL; C:\Windows\System32\DRIVERS\btwampfl.sys [302120 2011-03-25] (Broadcom Corporation.)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-12-31] (Disc Soft Ltd)
S3 e1cexpress; C:\Windows\System32\DRIVERS\e1c6232.sys [368392 2013-02-21] (Intel Corporation)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [60104 2010-07-12] (FTDI Ltd.)
S3 GigasetGenericUSB; C:\Windows\System32\DRIVERS\GigasetGenericUSB.sys [44032 2013-04-25] (Siemens Home and Office Communication Devices GmbH & Co. KG)
S2 Hardlock; C:\Windows\system32\drivers\hardlock.sys [693760 2006-11-22] (Aladdin Knowledge Systems Ltd.)
S3 MosIrUsb; C:\Windows\System32\DRIVERS\MosIrUsb.sys [22016 2007-10-11] ()
S3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7517696 2011-08-03] (Intel Corporation)
S2 NPF; C:\WINDOWS\system32\drivers\npf.sys [35088 2014-02-14] (CACE Technologies, Inc.)
S3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [62336 2010-12-10] (Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [141440 2010-12-10] (Renesas Electronics Corporation)
S3 PolarUSB; C:\Windows\System32\DRIVERS\PolarUSB.sys [17343 2001-07-12] (Polar Electro)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [104744 2009-03-25] (MCCI Corporation)
S3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [139776 2013-10-25] (Prolific Technology Inc.)
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [16128 2014-04-11] (Silicon Laboratories)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [67968 2014-04-11] (Silicon Laboratories)
S3 SzCCID; C:\Windows\System32\DRIVERS\SzCCID.sys [26112 2011-11-21] (Generic)
S0 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [806184 2012-10-08] (Acronis)
S0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [689672 2012-10-08] (Acronis)
S1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [144896 2011-11-21] (1&1 Internet AG)
S0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [139336 2012-10-08] (Acronis)
S0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [99720 2012-10-08] (Acronis)
S3 vodafone_K3805-z_dc_enum; C:\Windows\System32\DRIVERS\vodafone_K3805-z_dc_enum.sys [61952 2010-09-01] (Vodafone)
S3 ZTEusbnet; C:\Windows\System32\DRIVERS\ZTEusbnet.sys [114688 2009-12-01] (ZTE Corporation)
S3 ZTEusbvoice; C:\Windows\System32\DRIVERS\ZTEusbvoice.sys [105856 2011-04-18] (ZTE Incorporated)
S3 ZTEusbwwan; C:\Windows\System32\DRIVERS\ZTEusbwwan.sys [194048 2011-04-18] (ZTE Incorporated)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-18 15:42 - 2014-06-28 01:21 - 00391640 __RSH () C:\bootmgr
2014-11-17 11:13 - 2014-11-17 11:13 - 00003312 _____ () C:\bootsqm.dat
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ___RD () C:\Users\Ralf\Sync
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Logitech
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Downloads\Update
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Downloads\Rittal-CMC_Config
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Downloads\Podolski, Lukas - Dranbleiben! - Warum Talent nur der Anfang ist
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Downloads\PL2303_Prolific_DriverInstaller_v1_6_0
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Downloads\ois.exe
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Downloads\Fotos
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Downloads\Der Circle - Eggers, Dave
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Downloads\Arnd Stein Im Zauberschloss - Entspannung F�r Kinder
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Documents\Symantec
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Documents\Steuer-Sparbuch
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Documents\SpiritON TV Software
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Documents\Sony
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\Documents\Mein Garmin
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\BikeXperience
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Wireshark
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\WindSolutions
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Vodafone Mobile Broadband
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Vodafone
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\vlc
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\TuneUp Software
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\TrueCrypt
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Thunderbird
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\TeamViewer
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Synaptics
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\SpiritON TV Software
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\redsn0w
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\OpenCandy
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\newnext.me
2014-11-17 09:52 - 2014-11-17 09:52 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Mp3tag
2014-11-17 09:52 - 2014-11-06 21:01 - 01194133 _____ () C:\Users\Ralf\Downloads\OneStep Cam Feed Installer.rar
2014-11-17 09:52 - 2014-10-16 18:58 - 00000000 ____D () C:\Users\Ralf\Downloads\hoh-davdercir
2014-11-17 09:52 - 2014-10-16 18:49 - 00000000 ____D () C:\Users\Ralf\Downloads\Entspannungsmusik für die Schwangerschaft (2014)
2014-11-17 09:52 - 2014-07-29 15:44 - 00002436 _____ () C:\Users\Ralf\Downloads\Navigon_Blitzer-ymx5jomej15h.dlc
2014-11-17 09:52 - 2014-07-21 22:30 - 12774681 _____ () C:\Users\Ralf\Downloads\PDWTndAi.rar
2014-11-17 09:52 - 2014-05-18 18:06 - 54758195 _____ () C:\Users\Ralf\Downloads\Arnd Stein Im Zauberschloss - Entspannung F�r Kinder.rar
2014-11-17 09:52 - 2014-05-02 21:44 - 00000000 ____D () C:\Users\Ralf\Downloads\Sample
2014-11-17 09:52 - 2014-05-02 01:10 - 00006554 _____ () C:\Users\Ralf\Downloads\sov-monuments.1080p.nfo
2014-11-17 09:52 - 2014-04-29 02:08 - 00000617 _____ () C:\Users\Ralf\Downloads\Uploader Unterstützen!.txt
2014-11-17 09:52 - 2014-04-29 02:06 - 00000130 _____ () C:\Users\Ralf\Downloads\Premium @ oboom.com.url
2014-11-17 09:52 - 2014-04-28 21:07 - 04520580 _____ () C:\Users\Ralf\Downloads\robo.web.72md-ps.part21.rar
2014-11-17 09:52 - 2014-04-10 21:50 - 00001071 _____ () C:\Users\Ralf\Downloads\Reade ME pls.txt
2014-11-17 09:52 - 2014-03-21 02:05 - 00000185 _____ () C:\Users\Ralf\Downloads\Premium @ share-online.biz.url
2014-11-17 09:52 - 2014-03-21 02:04 - 00000123 _____ () C:\Users\Ralf\Downloads\Premium @ uploaded.net.url
2014-11-17 09:52 - 2014-03-20 10:49 - 00001409 _____ () C:\Users\Ralf\Downloads\Info.txt
2014-11-17 09:52 - 2014-03-19 23:43 - 51718656 _____ () C:\Users\Ralf\Downloads\Microsoft Toolkit.exe
2014-11-17 09:52 - 2014-03-05 13:38 - 00016279 _____ () C:\Users\Ralf\Downloads\316.txt
2014-11-17 09:52 - 2014-02-26 22:12 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Tobit
2014-11-17 09:52 - 2014-02-15 16:27 - 30518160 _____ () C:\Users\Ralf\Downloads\durametric6.3.2.5.exe
2014-11-17 09:52 - 2014-02-14 22:06 - 24797984 _____ (NETGEAR Inc.) C:\Users\Ralf\Downloads\NETGEARGenie231install.exe
2014-11-17 09:52 - 2014-02-09 22:50 - 00000134 _____ () C:\Users\Ralf\Downloads\ts (1).m3u
2014-11-17 09:52 - 2014-02-09 21:37 - 00000134 _____ () C:\Users\Ralf\Downloads\ts.m3u
2014-11-17 09:52 - 2014-02-09 21:34 - 00000099 _____ () C:\Users\Ralf\Downloads\stream.m3u
2014-11-17 09:52 - 2014-02-05 19:10 - 00005016 _____ () C:\Users\Ralf\Downloads\Prisoners.German.DL.1080p.BluRay.x264-EXQUiSiTE-6o2bj0nsfuirf.dlc
2014-11-17 09:52 - 2014-01-20 23:09 - 00259960 _____ (Microsoft Corporation) C:\Users\Ralf\Downloads\oisgraph.dll
2014-11-17 09:52 - 2014-01-20 23:09 - 00133488 _____ (Корпорация Майкрософт) C:\Users\Ralf\Downloads\oisintl.dll
2014-11-17 09:52 - 2014-01-20 23:08 - 00022920 _____ (Microsoft Corporation) C:\Users\Ralf\Downloads\oisctrl.dll
2014-11-17 09:52 - 2014-01-19 22:51 - 00007408 _____ () C:\Users\Ralf\Downloads\8115cedfc6de206eb184f5fb2d8dc50d.dlc
2014-11-17 09:52 - 2014-01-19 18:31 - 00006680 _____ () C:\Users\Ralf\Downloads\Europa.Report-le4nnzmxua9t.dlc
2014-11-17 09:52 - 2014-01-19 11:45 - 00001112 _____ () C:\Users\Ralf\Downloads\2441afde254d9a94b3d12b002701116e.dlc
2014-11-17 09:52 - 2014-01-15 17:42 - 00003012 _____ () C:\Users\Ralf\Downloads\Homefront_TS_MD_NSane-obq8dzm9soie.dlc
2014-11-17 09:52 - 2013-12-29 20:38 - 00000000 ____D () C:\Users\Ralf\Documents\Mobogenie
2014-11-17 09:52 - 2013-11-01 20:49 - 00035328 _____ () C:\Users\Ralf\Documents\Jährliche Kosten Haus.xls
2014-11-17 09:52 - 2012-09-18 06:21 - 00000000 ____D () C:\Users\Ralf\Documents\Bluetooth-Exchange-Ordner
2014-11-17 09:52 - 2012-07-23 15:47 - 00000000 ____D () C:\Users\Ralf\temp
2014-11-17 09:52 - 2012-04-21 13:25 - 00119896 _____ () C:\Users\Ralf\Documents\21.04.2012.800
2014-11-17 09:52 - 2012-02-16 11:24 - 00001994 ____H () C:\Users\Ralf\Documents\Default.rdp
2014-11-17 09:52 - 2012-02-15 18:10 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\WinRAR
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Mozilla
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\mkvtoolnix
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Macromedia
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\InstallShield
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\ImgBurn
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\iFunbox_UserCache
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\ICAClient
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\hpqLog
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Hewlett-Packard Company
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\GHISLER
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Garmin
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Foxit Software
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\FLEXnet
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\FileZilla
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\DVDVideoSoftIEHelpers
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\DVDVideoSoft
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\DiskAid
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\DAEMON Tools Lite
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Canneverbe Limited
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Buhl Data Service GmbH
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Buhl Data Service
2014-11-17 09:51 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Babylon
2014-11-17 09:51 - 2012-09-24 09:04 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\GABIP
2014-11-17 09:51 - 2012-02-15 09:55 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Hewlett-Packard
2014-11-17 09:50 - 2014-11-17 09:51 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Apple Computer
2014-11-17 09:50 - 2014-11-17 09:50 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Adobe
2014-11-17 09:50 - 2014-11-17 09:50 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\Acronis
2014-11-17 09:50 - 2014-11-17 09:50 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\1&1
2014-11-17 09:50 - 2014-11-17 09:50 - 00000000 ____D () C:\Users\Ralf\AppData\Local\VirtualStore
2014-11-17 09:50 - 2014-11-17 09:50 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Thunderbird
2014-11-17 09:50 - 2014-11-17 09:50 - 00000000 ____D () C:\Users\Ralf\AppData\Local\T-Home
2014-11-17 09:50 - 2014-11-17 09:50 - 00000000 ____D () C:\Users\Ralf\AppData\Local\NETGEARGenie
2014-11-17 09:50 - 2013-12-21 22:37 - 00000600 _____ () C:\Users\Ralf\AppData\Roaming\winscp.rnd
2014-11-17 09:50 - 2012-10-08 07:44 - 00000000 ____D () C:\Users\Ralf\AppData\Roaming\9C697D95-AF6C-4E95-9C34-04C57328D862
2014-11-17 09:49 - 2014-11-17 09:50 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Mozilla
2014-11-17 09:49 - 2014-11-17 09:49 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Mobogenie
2014-11-17 09:49 - 2014-11-17 09:49 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Microsoft Help
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\MFAData
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Macromedia
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Google
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Gigaset_Communications_Gm
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\GARMIN_Corp
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Garmin
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Durametric_Software_Inc
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Durametric_Software,_Inc
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Downloaded Installations
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\CrashDumps
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Citrix
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\cache
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Buhl Data Service
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Buhl
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Broadcom
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Babylon
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Axis_Communications
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Axis Communications
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\AVG Nation toolbar
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Apps\2.0
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Apple Computer
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Apple
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Adobe
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\AppData\Local\1&1
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\.weasis
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\.imibrowser
2014-11-17 09:48 - 2014-11-17 09:48 - 00000000 ____D () C:\Users\Ralf\.android
2014-11-17 09:48 - 2014-11-02 14:19 - 00000000 ____D () C:\Users\Ralf\AppData\Local\genienext
2014-11-17 09:48 - 2014-01-26 00:17 - 00000600 _____ () C:\Users\Ralf\AppData\Local\PUTTY.RND
2014-11-17 09:48 - 2014-01-06 21:54 - 00000000 ____D () C:\Users\Ralf\.MakeMKV
2014-11-17 09:48 - 2014-01-01 22:18 - 00000000 ____D () C:\Users\Ralf\AppData\Local\BVRP Software
2014-11-17 09:48 - 2014-01-01 18:23 - 00113168 _____ () C:\Users\Ralf\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-17 09:48 - 2013-12-25 22:58 - 00005120 _____ () C:\Users\Ralf\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-17 09:48 - 2012-07-21 17:16 - 00000393 _____ () C:\Users\Ralf\AppData\Local\HamsterVideoConverterSettings.cfg
2014-11-17 09:48 - 2012-07-10 20:50 - 00000000 ____D () C:\Users\Ralf\AppData\Local\Deployment
2014-11-17 09:48 - 2012-03-10 10:05 - 00000000 ____D () C:\Users\Ralf\AppData\Local\GHISLER
2014-11-17 09:44 - 2014-11-17 09:52 - 00000000 ____D () C:\users\Ralf
2014-11-17 09:44 - 2014-02-26 19:12 - 00116995 _____ () C:\Users\Ralf\bikeXperience.log
2014-11-17 09:44 - 2014-01-21 23:13 - 00000161 _____ () C:\Users\Ralf\security.txt
2014-11-17 09:44 - 2014-01-14 17:34 - 00000000 _____ () C:\Users\Ralf\Starmoney
2014-11-17 09:44 - 2013-12-30 17:17 - 00000529 _____ () C:\Users\Ralf\daemonprocess.txt
2014-11-17 09:44 - 2012-02-14 13:47 - 00000020 ___SH () C:\Users\Ralf\ntuser.ini
2014-11-16 18:48 - 2014-11-16 18:48 - 00222024 _____ () C:\Windows\Minidump\111614-5132-01.dmp
2014-11-16 18:22 - 2014-11-16 18:22 - 00222024 _____ () C:\Windows\Minidump\111614-9344-01.dmp
2014-11-16 17:55 - 2014-11-16 17:55 - 00222024 _____ () C:\Windows\Minidump\111614-8736-01.dmp
2014-11-16 13:05 - 2014-11-18 16:00 - 00000000 ____D () C:\FRST
2014-11-16 02:42 - 2014-11-16 02:42 - 00000000 __SHD () C:\found.001
2014-11-13 14:21 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
2014-11-13 14:20 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\System32\msi.dll
2014-11-13 14:20 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2014-11-13 14:20 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\msxml3r.dll
2014-11-13 14:20 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\System32\IMJP10K.DLL
2014-11-13 14:19 - 2014-11-05 18:50 - 00254464 _____ (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2014-11-13 14:19 - 2014-11-05 18:50 - 00203776 _____ (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2014-11-13 14:19 - 2014-11-05 18:47 - 00302592 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2014-11-13 14:19 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\System32\packager.dll
2014-11-13 14:19 - 2014-10-10 01:45 - 02379264 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2014-11-13 14:19 - 2014-10-03 02:44 - 00475136 _____ (Microsoft Corporation) C:\Windows\System32\audiosrv.dll
2014-11-13 14:19 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\System32\AUDIOKSE.dll
2014-11-13 14:19 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\System32\AudioEng.dll
2014-11-13 14:19 - 2014-10-03 02:44 - 00275968 _____ (Microsoft Corporation) C:\Windows\System32\EncDump.dll
2014-11-13 14:19 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\AudioSes.dll
2014-11-13 14:19 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2014-11-13 14:19 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
2014-11-13 14:19 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2014-11-13 14:19 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2014-11-13 14:19 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\System32\wdigest.dll
2014-11-13 14:19 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\System32\TSpkg.dll
2014-11-13 14:19 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\System32\credssp.dll
2014-11-13 14:18 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2014-11-13 14:18 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2014-11-13 14:18 - 2014-11-06 04:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2014-11-13 14:18 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2014-11-13 14:18 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2014-11-13 14:18 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2014-11-13 14:18 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-11-13 14:18 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2014-11-13 14:18 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-11-13 14:18 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2014-11-13 14:18 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2014-11-13 14:18 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2014-11-13 14:18 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2014-11-13 14:18 - 2014-11-06 03:59 - 00102912 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2014-11-13 14:18 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2014-11-13 14:18 - 2014-11-06 03:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2014-11-13 14:18 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2014-11-13 14:18 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-11-13 14:18 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2014-11-13 14:18 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2014-11-13 14:18 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2014-11-13 14:18 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-11-13 14:18 - 2014-11-06 03:22 - 00683008 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2014-11-13 14:18 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2014-11-13 14:18 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2014-11-13 14:18 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2014-11-13 14:18 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-11-13 14:18 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-11-13 14:18 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-11-13 14:18 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2014-11-13 14:18 - 2014-10-14 02:56 - 00136632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2014-11-13 14:18 - 2014-10-14 02:50 - 01059840 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2014-11-13 14:18 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\System32\termsrv.dll
2014-11-13 14:18 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\System32\msaudite.dll
2014-11-13 14:18 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\System32\adtschema.dll
2014-11-11 22:12 - 2014-11-11 22:13 - 00000000 ____D () C:\Program Files\WinMerge
2014-11-11 22:12 - 2014-11-11 22:12 - 00000978 _____ () C:\Users\Public\Desktop\WinMerge.lnk
2014-11-11 22:12 - 2014-11-11 22:12 - 00000978 _____ () C:\ProgramData\Desktop\WinMerge.lnk
2014-11-10 20:15 - 2014-11-10 20:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-11-09 14:02 - 2014-11-09 14:02 - 00000000 ____D () C:\Program Files\dreamboxEDIT
2014-11-06 21:01 - 2014-11-06 21:01 - 01194133 _____ () C:\Users\Ralf.old\Downloads\OneStep Cam Feed Installer.rar
2014-11-05 16:51 - 2014-11-05 16:51 - 00000000 ____D () C:\Program Files\Silabs
2014-11-05 16:50 - 2014-11-05 16:50 - 00000000 ____D () C:\SiLabs
2014-11-05 16:19 - 2014-11-05 16:19 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_Kernel_silabser_01009.Wdf
2014-11-05 16:18 - 2014-04-11 16:56 - 00067968 _____ (Silicon Laboratories) C:\Windows\System32\Drivers\silabser.sys
2014-11-05 16:18 - 2014-04-11 16:56 - 00016128 _____ (Silicon Laboratories) C:\Windows\System32\Drivers\silabenm.sys
2014-11-04 21:18 - 2014-11-04 21:18 - 00000945 _____ () C:\Users\Public\Desktop\Mp3tag.lnk
2014-11-04 21:18 - 2014-11-04 21:18 - 00000945 _____ () C:\ProgramData\Desktop\Mp3tag.lnk
2014-11-04 18:45 - 2014-11-04 18:45 - 00000938 _____ () C:\Users\Public\Desktop\calibre - E-book management.lnk
2014-11-04 18:45 - 2014-11-04 18:45 - 00000938 _____ () C:\ProgramData\Desktop\calibre - E-book management.lnk
2014-10-30 15:47 - 2014-10-30 15:47 - 00000000 ____D () C:\Users\TEMP\AppData\Roaming\AVG2015
2014-10-30 15:46 - 2014-11-14 08:39 - 00000959 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2014-10-30 15:46 - 2014-11-14 08:39 - 00000959 _____ () C:\ProgramData\Desktop\AVG 2015.lnk
2014-10-30 15:45 - 2014-11-04 18:34 - 00000000 ____D () C:\ProgramData\AVG2015
2014-10-30 15:45 - 2014-10-30 15:45 - 00000000 ____D () C:\Users\TEMP\AppData\Local\Avg
2014-10-30 15:44 - 2014-11-02 14:13 - 00000000 ____D () C:\Users\TEMP\AppData\Local\Avg2015
2014-10-29 21:34 - 2014-10-29 21:34 - 00213784 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgidsdriverx.sys
2014-10-29 20:33 - 2014-10-29 20:33 - 00000000 ____D () C:\FwUpdate_5.21
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-17 15:27 - 2013-11-01 19:31 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-17 09:05 - 2009-07-14 05:34 - 00003072 _____ () C:\Windows\System32\umstartup.etl
2014-11-16 20:58 - 2013-12-20 13:01 - 3160780800 ___SH () C:\pagefile.sys.old
2014-11-16 20:58 - 2013-12-20 13:01 - 2370584576 ___SH () C:\hiberfil.sys.old
2014-11-16 18:48 - 2012-02-18 14:33 - 00000000 ____D () C:\Windows\Minidump
2014-11-15 16:44 - 2014-09-08 18:51 - 01114112 _____ () C:\Windows\System32\Ikeext.etl
2014-11-15 16:44 - 2012-02-14 13:41 - 01168478 _____ () C:\Windows\WindowsUpdate.log
2014-11-15 16:44 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\tracing
2014-11-15 16:29 - 2012-02-14 13:54 - 01759460 _____ () C:\Windows\System32\PerfStringBackup.INI
2014-11-15 03:01 - 2012-02-16 09:58 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-14 22:47 - 2009-07-14 05:34 - 00028240 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-14 22:47 - 2009-07-14 05:34 - 00028240 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-14 21:54 - 2013-12-29 20:08 - 00000000 ____D () C:\Users\Ralf.old\Downloads\Fotos
2014-11-14 16:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-11-14 08:43 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-14 08:33 - 2014-07-03 13:15 - 00000374 _____ () C:\Windows\System32\Drivers\etc\hosts.ics
2014-11-14 08:33 - 2009-07-14 05:39 - 00119020 _____ () C:\Windows\setupact.log
2014-11-14 08:33 - 2009-07-14 05:33 - 00438408 _____ () C:\Windows\System32\FNTCACHE.DAT
2014-11-14 03:19 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\System32\de-DE
2014-11-14 03:01 - 2014-05-06 19:30 - 00000000 ___SD () C:\Windows\System32\CompatTel
2014-11-14 03:01 - 2009-07-14 03:04 - 00000547 _____ () C:\Windows\win.ini
2014-11-12 23:50 - 2013-08-22 08:08 - 00000000 ____D () C:\Windows\System32\MRT
2014-11-12 23:47 - 2012-02-15 11:04 - 100445232 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2014-11-12 17:10 - 2014-04-04 19:02 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2014-11-12 17:10 - 2014-04-04 19:02 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2014-11-12 15:22 - 2012-05-15 21:03 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-11-12 15:22 - 2012-02-15 13:55 - 01349104 _____ () C:\Windows\PFRO.log
2014-11-11 15:13 - 2013-11-01 19:35 - 00000000 ___HD () C:\$AVG
2014-11-09 15:54 - 2014-09-29 19:29 - 00001954 _____ () C:\Users\Public\Desktop\FileZilla Client.lnk
2014-11-09 15:54 - 2014-09-29 19:29 - 00001954 _____ () C:\ProgramData\Desktop\FileZilla Client.lnk
2014-11-09 15:54 - 2014-09-29 19:29 - 00000000 ____D () C:\Program Files\FileZilla FTP Client
2014-11-08 22:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\System32\NDF
2014-11-07 00:05 - 2014-02-24 22:37 - 00000000 ____D () C:\Program Files\CDCoverFixPrint
2014-11-06 20:51 - 2014-03-20 15:37 - 00000000 ____D () C:\Users\TEMP\AppData\Local\CrashDumps
2014-11-05 16:50 - 2012-02-15 09:19 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-11-05 14:59 - 2014-02-24 19:01 - 00000000 ____D () C:\Program Files\CDBurnerXP
2014-11-04 22:00 - 2014-02-24 19:01 - 00001903 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-11-04 22:00 - 2014-02-24 19:01 - 00001903 _____ () C:\ProgramData\Desktop\CDBurnerXP.lnk
2014-11-04 21:18 - 2012-04-17 20:42 - 00000000 ____D () C:\Program Files\Mp3tag
2014-11-04 18:45 - 2014-04-22 20:39 - 00000000 ____D () C:\Program Files\Calibre2
2014-11-02 14:19 - 2013-12-29 20:38 - 00000000 ____D () C:\Users\Ralf.old\AppData\Local\genienext
2014-10-31 16:19 - 2013-11-01 19:35 - 00000000 ____D () C:\ProgramData\AVG2014
2014-10-30 15:47 - 2013-11-01 19:34 - 00000000 ____D () C:\Program Files\AVG
2014-10-29 20:48 - 2014-04-11 14:14 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-29 20:48 - 2014-04-11 14:14 - 00002129 _____ () C:\ProgramData\Desktop\Google Chrome.lnk
2014-10-23 19:39 - 2012-05-02 21:17 - 00000000 ____D () C:\Program Files\JDownloader
==================== Known DLLs (Whitelisted) ============
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe
[2014-10-15 14:11] - [2014-07-17 02:39] - 0304128 ____A (Microsoft Corporation) 52449FD429D6053B78AE564DEF303870
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== Restore Points =========================
==================== Memory info ===========================
Percentage of memory in use: 13%
Total physical RAM: 4006.36 MB
Available physical RAM: 3457.3 MB
Total Pagefile: 4004.63 MB
Available Pagefile: 3468.3 MB
Total Virtual: 2047.88 MB
Available Virtual: 1952.57 MB
==================== Drives ================================
Drive c: (Windows7) (Fixed) (Total:232.59 GB) (Free:81.12 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:0.29 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (FOTOS) (Removable) (Total:28.85 GB) (Free:23.34 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 94EB6F82)
Partition 1: (Active) - (Size=232.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=299 MB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 28.9 GB) (Disk ID: 37B32B30)
Partition 1: (Not Active) - (Size=28.9 GB) - (Type=0C)
LastRegBack: 2014-11-15 00:04
==================== End Of Log ============================
|
|
18.11.2014, 16:22
| #2 |
| /// the machine /// TB-Ausbilder    | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske Hi,
__________________kommt der schwarze Screen also erst nach dem blauen Windows Bildschirm mit Logo?
__________________ |
|
18.11.2014, 16:30
| #3 |
| | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske Hi, ja erst kommt der Startbildschirm Windows wird gestartet und dann wird es schwarz mit dem weißen Zeiger.
__________________Momentan komme ich bis zum blauen Bildschirm(Windows Hintergrund) mit Maus. Flackert aber alle 10sec. |
|
19.11.2014, 15:31
| #4 |
| /// the machine /// TB-Ausbilder | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske Drücke bitte die  + R Taste und schreibe notepad in das Ausführen Fenster.Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter LastRegBack: 2014-11-15 00:04
Das Tool erstellt eine Fixlog.txt auf deinem USB Stick. Poste den Inhalt bitte hier.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.11.2014, 15:45
| #5 |
| | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske Hi schrauber, ich habe die Partition wieder am Laufen. Es waren alle Berechtigungen verloren gegangen. Zur Zeit habe ich nur noch das Problem, dass : "Desktop wird vorbereitet" erscheint und nichts mehr passiert. Ich starte dan den Task Manager und dann darüber den Explorer. Danach läuft das System eigendlich normal. Vorab schon mal Danke für die Hilfe |
|
20.11.2014, 05:56
| #6 |
| /// the machine /// TB-Ausbilder | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske
__________________ --> Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske |
|
20.11.2014, 06:50
| #7 |
| | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske Hi, danke. Werde es heute Abend mal testen.  |
|
20.11.2014, 19:01
| #8 |
| /// the machine /// TB-Ausbilder | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske ok 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
22.11.2014, 17:02
| #9 |
| | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske Hi Schrauber, sieht soweit wieder gut aus, bleibt nicht mehr hängen beim Starten! Vielen Dank für die schnelle Hilfe! Gruß Ralf |
|
23.11.2014, 14:43
| #10 |
| /// the machine /// TB-Ausbilder | Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske Supi, dann jetzt vom Desktop aus: Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Windows 7 , Bildschirm bleibt schwarz Maus vorhanden aber keine Funktion, keine Anmeldemaske |
| andere, anderen, avg2015, betriebssystem, bildschirm, ergebnis, funktion, hallo zusammen, inhalt, installiert, maus, mauszeiger, meldung, platte, schwarz, schwarzer bildschirm, secure search, starte, startet, stelle, sttray.exe, variante, vorhanden, vtoolbarupdater, warum, windows, windows 7, zugreifen, zugriff, zusammen |
Linear-Darstellung
