Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Interpol bundeskriminalpolizei hp computer

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 12.06.2014, 13:27   #1
Joel14
 
Interpol bundeskriminalpolizei hp computer - Standard

Interpol bundeskriminalpolizei hp computer



Hallo miteinander
Habe ein übles problem. Mein freund war letztens surfen und dann ist der computer heruntergefahren und diese interpol seite kommt. Habe schon versucht mit hitman pro kickstarter zu starten doch leider crasht der computer. Was kann ich noch tun?

Alt 12.06.2014, 13:50   #2
aharonov
/// TB-Ausbilder
 
Interpol bundeskriminalpolizei hp computer - Standard

Interpol bundeskriminalpolizei hp computer



hi,


Scan mit Farbar's Recovery Scan Tool (Recovery Mode - Windows Vista, 7, 8)
Hinweise für Windows 8-Nutzer: Anleitung 1 (FRST-Variante) und Anleitung 2 (zweiter Teil)
  • Downloade dir bitte die passende Version des Tools (im Zweifel beide) und speichere diese auf einen USB Stick: FRST Download FRST 64-Bit
  • Schließe den USB Stick an das infizierte System an und boote das System in die System Reparatur Option.
  • Scanne jetzt nach der bebilderten Anleitung oder verwende die folgende Kurzanleitung:
Über den Boot Manager:
  • Starte den Rechner neu.
  • Während dem Hochfahren drücke mehrmals die F8 Taste
  • Wähle nun Computer reparieren.
  • Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".
Mit Windows CD/DVD (auch bei Windows 8 möglich):
  • Lege die Windows CD in dein Laufwerk.
  • Starte den Rechner neu und starte von der CD.
  • Wähle die Spracheinstellungen und klicke "Weiter".
  • Klicke auf Computerreparaturoptionen !
  • Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".
Wähle in den Reparaturoptionen: Eingabeaufforderung
  • Gib nun bitte notepad ein und drücke Enter.
  • Im öffnenden Textdokument: Datei > Speichern unter... und wähle Computer.
    Hier wird dir der Laufwerksbuchstabe deines USB Sticks angezeigt, merke ihn dir.
  • Schließe Notepad wieder
  • Gib nun bitte folgenden Befehl ein.
    e:\frst.exe bzw. e:\frst64.exe
    Hinweis: e steht für den Laufwerksbuchstaben deines USB Sticks, den du dir gemerkt hast. Gegebenfalls anpassen.
  • Akzeptiere den Disclaimer mit Ja und klicke Untersuchen
Das Tool erstellt eine FRST.txt auf deinem USB Stick. Poste den Inhalt bitte hier nach Möglichkeit in Code-Tags (Anleitung).

__________________

__________________

Alt 12.06.2014, 14:47   #3
Joel14
 
Interpol bundeskriminalpolizei hp computer - Standard

Interpol bundeskriminalpolizei hp computer




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-06-2014 01
Ran by SYSTEM on MININT-UJI408B on 12-06-2014 15:42:31
Running from K:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.



==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2010-10-20] (Hewlett-Packard )
HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-04-24] (IDT, Inc.)
HKLM-x32\...\Run: [HP Software Update] => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP Remote Solution] => C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe [656896 2009-08-24] (Hewlett-Packard)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-02-10] (EasyBits Software AS)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [656920 2011-02-01] (PDF Complete Inc)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [737872 2014-05-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-20] (Apple Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-02-13] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-09] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-01] (Oracle Corporation)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [135536 2010-12-13] (Microsoft Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-05-27] (Hewlett-Packard)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\Joël\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-07] (Skype Technologies S.A.)
HKU\Joël\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\Joël\...\Run: [AirMediaServer] => C:\Program Files (x86)\AirMediaServer\AirMediaServer.exe [774032 2012-04-12] (App Dynamic)
HKU\Joël\...\Run: [FLV Player] => C:\Users\Joël\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [202752 2012-10-25] ()
HKU\Joël\...\Run: [uTorrent] => C:\Users\Joël\AppData\Roaming\uTorrent\uTorrent.exe [1267536 2014-06-11] (BitTorrent Inc.)
HKU\Joël\...\Run: [BitTorrent] => C:\Users\Joël\AppData\Roaming\BitTorrent\BitTorrent.exe [1643344 2014-06-11] (BitTorrent Inc.)
HKU\Joël\...\Policies\Explorer: [DisallowRun] 1
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll File Not Found
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => "C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll" File Not Found
Startup: C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk ->  (No File)
Startup: C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\explorer.lnk
ShortcutTarget: explorer.lnk -> C:\ProgramData\61EFD731ECB3D499D2C15ED0B09B7B80\eflhfloz8.cpp ()

==================== Services (Whitelisted) =================

S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-05-20] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-05-20] (Avira Operations GmbH & Co. KG)
S2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
S2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
S2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2014-03-11] (Ellora Assets Corp.)
S2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-16] (Hewlett-Packard)
S2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1127448 2011-02-01] (PDF Complete Inc)
S2 Winmgmt; C:\ProgramData\61EFD731ECB3D499D2C15ED0B09B7B80\8zolfhlfe.dot [332008 2014-06-11] (Microsoft Corporation)
S2 WSWNA3100; C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe [303360 2011-12-07] ()

==================== Drivers (Whitelisted) ====================

S3 AVer7231_x64; C:\Windows\System32\DRIVERS\AVer7231_x64.sys [1873024 2012-06-26] (AVerMedia TECHNOLOGIES, Inc.)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [112080 2014-04-29] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-04-29] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-04-08] (Disc Soft Ltd)
S2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-12 15:42 - 2014-06-12 15:42 - 00000000 ____D () C:\FRST
2014-06-12 04:15 - 2014-06-12 04:28 - 00002516 _____ () C:\ProgramData\RUNDLL32.EXE-2936-F.txt
2014-06-12 04:08 - 2014-06-12 04:10 - 00001207 _____ () C:\ProgramData\RUNDLL32.EXE-2872-F.txt
2014-06-12 03:25 - 2014-06-12 03:25 - 00000236 _____ () C:\ProgramData\RUNDLL32.EXE-2296-F.txt
2014-06-12 03:22 - 2014-06-12 03:23 - 00000477 _____ () C:\ProgramData\RUNDLL32.EXE-2932-F.txt
2014-06-12 03:11 - 2014-06-12 03:20 - 00005554 _____ () C:\ProgramData\RUNDLL32.EXE-2912-F.txt
2014-06-12 00:44 - 2014-06-12 00:44 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2904-F.txt
2014-06-11 14:34 - 2014-06-11 14:34 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2792-F.txt
2014-06-11 14:22 - 2014-06-11 14:23 - 00000490 _____ () C:\ProgramData\RUNDLL32.EXE-2992-F.txt
2014-06-11 14:20 - 2014-06-11 14:21 - 00000689 _____ () C:\ProgramData\RUNDLL32.EXE-2916-F.txt
2014-06-11 14:11 - 2014-06-11 14:18 - 00003911 _____ () C:\ProgramData\RUNDLL32.EXE-2900-F.txt
2014-06-11 13:59 - 2014-06-11 14:08 - 00005624 _____ () C:\ProgramData\RUNDLL32.EXE-2204-F.txt
2014-06-11 13:51 - 2014-06-11 13:57 - 00003435 _____ () C:\ProgramData\RUNDLL32.EXE-3064-F.txt
2014-06-11 13:48 - 2014-06-11 13:49 - 00000494 _____ () C:\ProgramData\RUNDLL32.EXE-2144-F.txt
2014-06-11 13:44 - 2014-06-11 13:46 - 00001220 _____ () C:\ProgramData\RUNDLL32.EXE-2892-F.txt
2014-06-11 13:41 - 2014-06-11 13:41 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-3056-F.txt
2014-06-11 13:38 - 2014-06-11 13:38 - 00000246 _____ () C:\ProgramData\RUNDLL32.EXE-2096-F.txt
2014-06-11 13:35 - 2014-06-11 13:35 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2108-F.txt
2014-06-11 13:33 - 2014-06-11 13:34 - 00000734 _____ () C:\ProgramData\RUNDLL32.EXE-2908-F.txt
2014-06-11 13:30 - 2014-06-12 04:08 - 00000000 ____D () C:\Windows\Minidump
2014-06-11 13:30 - 2014-06-11 13:30 - 00000245 _____ () C:\ProgramData\RUNDLL32.EXE-3028-F.txt
2014-06-11 13:27 - 2014-06-11 13:27 - 00000246 _____ () C:\ProgramData\RUNDLL32.EXE-2180-F.txt
2014-06-11 13:27 - 2014-06-11 13:27 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-11 13:24 - 2014-06-11 13:25 - 00000783 _____ () C:\ProgramData\RUNDLL32.EXE-3032-F.txt
2014-06-11 13:21 - 2014-06-11 13:22 - 00000986 _____ () C:\ProgramData\RUNDLL32.EXE-3016-F.txt
2014-06-11 13:13 - 2014-06-12 05:24 - 00007375 _____ () C:\ProgramData\RUNDLL32.EXE-3024-F.txt
2014-06-11 11:17 - 2014-06-11 13:04 - 00061255 _____ () C:\ProgramData\RUNDLL32.EXE-2068-F.txt
2014-06-11 11:12 - 2014-06-11 11:15 - 00002057 _____ () C:\ProgramData\RUNDLL32.EXE-3488-F.txt
2014-06-11 11:05 - 2014-06-11 11:12 - 00000000 ____D () C:\ProgramData\61EFD731ECB3D499D2C15ED0B09B7B80
2014-06-11 06:03 - 2014-06-11 06:39 - 00000000 ____D () C:\Users\Joël\Downloads\www.torrent.to...X-Men.3.2006.German.AC3.5.1.HDRip.XviD-TMP
2014-06-11 05:58 - 2014-06-12 05:24 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\BitTorrent
2014-06-11 05:58 - 2014-06-11 05:58 - 01643344 _____ (BitTorrent Inc.) C:\Users\Joël\Downloads\BitTorrent.exe
2014-06-11 03:23 - 2014-06-11 03:23 - 00000000 ____D () C:\Users\Joël\Downloads\Cypress Hill - Rise Up (2010)
2014-06-10 05:54 - 2014-06-10 06:08 - 00000000 ____D () C:\Users\Joël\Downloads\Snoop Dogg - The Blue Carpet Treatment.(pixie09)
2014-06-10 05:11 - 2014-06-10 06:44 - 00000000 ____D () C:\Users\Joël\Downloads\www.torrent.to...Planet.der.Affen.40.Year.Evolution.01-.05.COMPLETE.German.AC3.HDRip.XViD-FuN
2014-06-10 05:08 - 2014-06-10 05:21 - 00000000 ____D () C:\Users\Joël\Downloads\X-Men. Days of Future Past 2014 HD x264 AC3-R33M
2014-06-10 05:06 - 2014-06-10 05:14 - 1109624150 _____ () C:\Users\Joël\Downloads\xcite-the.cute.little.babysitter.3.mp4
2014-06-04 17:16 - 2014-06-05 11:21 - 00000000 ____D () C:\Users\Joël\Downloads\www.torrent.to...Star.Wars.The.Complete.Saga.German.AC3.BDRip.XviD-iNCEPTiON
2014-06-03 04:17 - 2014-06-03 04:19 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\WindSolutions
2014-06-03 04:17 - 2014-06-03 04:19 - 00000000 ____D () C:\ProgramData\WindSolutions
2014-06-03 04:17 - 2014-06-03 04:17 - 05102256 _____ (WindSolutions) C:\Users\Joël\Downloads\Install_CopyTransControlCenter.exe
2014-06-03 04:17 - 2014-06-03 04:17 - 00001373 _____ () C:\Users\Joël\Desktop\CopyTrans Control Center.lnk
2014-06-02 02:14 - 2014-06-02 02:14 - 00001198 _____ () C:\Users\Joël\Desktop\Free YouTube to MP3 Converter Installation fortsetzen.lnk
2014-06-02 02:02 - 2014-05-12 23:02 - 00000000 ____D () C:\Users\Joël\Downloads\30+ Perverse Milchkühe
2014-06-01 03:13 - 2014-06-01 03:13 - 00001116 _____ () C:\Users\Public\Desktop\Debut Videorekorder.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 22315066 _____ () C:\Users\Joël\Downloads\IDTv087.zip
2014-05-28 15:25 - 2014-05-28 15:25 - 00000000 ____D () C:\Program Files (x86)\IDT
2014-05-28 15:25 - 2008-05-13 01:18 - 00246272 _____ (IDT, Inc.) C:\Windows\System32\stacsv64.exe
2014-05-28 15:25 - 2008-05-13 01:16 - 00164352 _____ (IDT, Inc.) C:\Windows\SysWOW64\staco.dll
2014-05-28 15:24 - 2014-05-28 15:24 - 00929416 _____ (CNET Download.com) C:\Users\Joël\Downloads\cbsidlm-cbsi188-IDT_High_Definition_Audio_CODEC-ORG-197119.exe
2014-05-28 13:44 - 2014-05-28 13:44 - 00034512 _____ () C:\Windows\System32\Drivers\debutfilterx64.sys
2014-05-28 13:43 - 2014-05-28 13:43 - 01581592 _____ (NCH Software) C:\Users\Joël\Downloads\debutpsetup(2).exe
2014-05-23 05:11 - 2014-05-23 05:11 - 00068165 _____ () C:\Users\Joël\Downloads\ZA 6  x 56.10 = 336.60 Jan. - Juni 2014_Valuta_23.05.14_20140523_20140522_UBS e-banking.html
2014-05-23 01:35 - 2014-06-10 09:45 - 00003180 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForJoël
2014-05-23 01:35 - 2014-06-10 09:45 - 00000328 _____ () C:\Windows\Tasks\HPCeeScheduleForJoël.job
2014-05-22 02:00 - 2014-05-22 02:00 - 00087464 _____ () C:\Users\Joël\Downloads\melodiesoflife(1).zip
2014-05-22 01:45 - 2014-05-22 01:45 - 00077987 _____ () C:\Users\Joël\Downloads\Frontier Village Dali(1).zip
2014-05-21 06:35 - 2014-05-21 06:49 - 729334015 ____R () C:\Users\Joël\Downloads\30+ Perverse Milchkühe.rar
2014-05-21 06:34 - 2014-05-21 07:04 - 729218976 _____ () C:\Users\Joël\Downloads\18+ Junge Ficksäue starten durch.rar
2014-05-20 07:54 - 2014-05-20 07:56 - 36131135 _____ () C:\Users\Joël\Desktop\Eminem-Infinite.rar
2014-05-20 06:14 - 2014-05-20 06:15 - 69469742 _____ () C:\Users\Joël\Downloads\Eminem-The_Marshall_Mathers_Lp_Cd1.zip
2014-05-19 00:48 - 2014-05-19 00:55 - 00000000 ____D () C:\Users\Joël\Desktop\Pornos
2014-05-18 07:42 - 2014-05-18 07:52 - 00000000 ____D () C:\Users\Joël\Downloads\300.Rise.Of.An.Empire.2014.BLURRED.WEBRip.XviD-ViP3R
2014-05-18 07:24 - 2014-05-18 07:39 - 00000000 ____D () C:\Users\Joël\Downloads\Godzilla.2014.CAM.GloTorrents
2014-05-18 07:22 - 2014-05-18 07:22 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\dvdcss
2014-05-18 05:18 - 2014-05-18 06:00 - 00000000 ____D () C:\Users\Joël\Downloads\300.Rise.of.an.Empire.WEBRiP.LD.German.x264-Pleaders
2014-05-16 09:59 - 2014-05-16 09:59 - 00000320 _____ () C:\Users\Joël\Desktop\Magic The Gathering Online .appref-ms
2014-05-16 09:59 - 2014-05-16 09:59 - 00000000 ____D () C:\Users\Joël\AppData\Local\Wizards of the Coast
2014-05-16 09:59 - 2014-05-16 09:59 - 00000000 ____D () C:\ProgramData\Gibraltar
2014-05-14 06:37 - 2012-06-02 14:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2014-05-14 06:37 - 2012-06-02 14:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2014-05-14 06:37 - 2012-06-02 14:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2014-05-14 06:37 - 2012-06-02 14:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\System32\wups2.dll
2014-05-14 06:37 - 2012-06-02 14:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\System32\wups.dll
2014-05-14 06:37 - 2012-06-02 14:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2014-05-14 06:37 - 2012-06-02 14:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2014-05-14 06:37 - 2012-06-02 05:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2014-05-14 06:37 - 2012-06-02 05:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2014-05-14 05:00 - 2014-05-14 05:00 - 00001337 _____ () C:\Users\Public\Desktop\Age of Empires 3 The WarChiefs.lnk
2014-05-14 05:00 - 2014-05-14 05:00 - 00001337 _____ () C:\Users\Public\Desktop\Age of Empires 3 The Asian Dynasties.lnk
2014-05-14 05:00 - 2014-05-14 05:00 - 00001332 _____ () C:\Users\Public\Desktop\Age Of Empires 3.lnk
2014-05-14 04:54 - 2014-05-14 04:54 - 00000000 ____D () C:\Program Files (x86)\Strogino CS Portal
2014-05-14 04:13 - 2014-05-14 04:19 - 00000000 ____D () C:\Users\Joël\Downloads\Age Of Empires 3
2014-05-14 04:09 - 2014-05-14 04:10 - 04277423 ____R () C:\Users\Joël\Downloads\age3y.rar
2014-05-14 04:06 - 2014-05-14 04:07 - 04278508 ____R () C:\Users\Joël\Downloads\age3y-dtn.rar
2014-05-14 03:58 - 2014-05-14 03:58 - 00000000 ____D () C:\Users\Joël\AppData\Local\Windows Live
2014-05-14 03:58 - 2014-05-14 03:58 - 00000000 ____D () C:\Users\Joël\AppData\Local\{179B3CE8-A404-41CA-81BB-A95D48F6E5EA}
2014-05-14 03:47 - 2014-05-14 03:47 - 00000000 ____D () C:\Users\Joël\Downloads\Rio 2 (2014) DD2.0 NL Subs HDTS-2-DVD-NLU002
2014-05-14 01:09 - 2014-05-14 01:10 - 13132096 _____ () C:\Users\Joël\Downloads\aoe3y-103-german.exe
2014-05-14 00:54 - 2014-05-14 00:55 - 00000000 ____D () C:\Users\Joël\Documents\Outlook Files

==================== One Month Modified Files and Folders =======

2014-06-12 15:42 - 2014-06-12 15:42 - 00000000 ____D () C:\FRST
2014-06-12 15:11 - 2014-04-01 18:47 - 00000000 ____D () C:\ProgramData\Recovery
2014-06-12 05:24 - 2014-06-11 13:13 - 00007375 _____ () C:\ProgramData\RUNDLL32.EXE-3024-F.txt
2014-06-12 05:24 - 2014-06-11 05:58 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\BitTorrent
2014-06-12 05:24 - 2014-04-09 14:58 - 00000000 ___RD () C:\Users\Joël\Dropbox
2014-06-12 05:24 - 2014-04-08 14:49 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\uTorrent
2014-06-12 05:24 - 2014-04-01 10:32 - 01658453 _____ () C:\Windows\WindowsUpdate.log
2014-06-12 05:23 - 2014-04-01 14:07 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\Skype
2014-06-12 05:19 - 2009-07-13 20:45 - 00024400 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-12 05:19 - 2009-07-13 20:45 - 00024400 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-12 05:14 - 2014-04-09 14:47 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\DropboxMaster
2014-06-12 05:14 - 2014-04-09 14:46 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\Dropbox
2014-06-12 05:14 - 2014-04-01 10:31 - 00000000 ____D () C:\Users\Joël\AppData\Local\Temp
2014-06-12 05:13 - 2014-04-09 17:18 - 00000000 ____D () C:\ProgramData\UMS
2014-06-12 05:12 - 2014-04-09 18:56 - 00003138 _____ () C:\Windows\Tasks\ea727281-8281-467f-bafd-cf5fb6f1777a-3.job
2014-06-12 05:12 - 2014-04-09 18:56 - 00002350 _____ () C:\Windows\Tasks\ea727281-8281-467f-bafd-cf5fb6f1777a-4.job
2014-06-12 05:12 - 2014-04-09 18:56 - 00001516 _____ () C:\Windows\Tasks\ea727281-8281-467f-bafd-cf5fb6f1777a-5.job
2014-06-12 05:12 - 2014-04-09 18:56 - 00001462 _____ () C:\Windows\Tasks\ea727281-8281-467f-bafd-cf5fb6f1777a-1.job
2014-06-12 05:12 - 2014-04-09 18:56 - 00001424 _____ () C:\Windows\Tasks\ea727281-8281-467f-bafd-cf5fb6f1777a-2.job
2014-06-12 05:12 - 2011-07-17 16:26 - 00000000 ____D () C:\ProgramData\PDFC
2014-06-12 05:12 - 2011-07-17 16:09 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-12 05:12 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-12 05:12 - 2009-07-13 20:51 - 00060587 _____ () C:\Windows\setupact.log
2014-06-12 04:28 - 2014-06-12 04:15 - 00002516 _____ () C:\ProgramData\RUNDLL32.EXE-2936-F.txt
2014-06-12 04:10 - 2014-06-12 04:08 - 00001207 _____ () C:\ProgramData\RUNDLL32.EXE-2872-F.txt
2014-06-12 04:08 - 2014-06-11 13:30 - 00000000 ____D () C:\Windows\Minidump
2014-06-12 04:08 - 2014-04-01 17:55 - 00303760 ____N () C:\Windows\Minidump\061214-20904-01.dmp
2014-06-12 04:06 - 2014-04-01 17:55 - 00303760 ____N () C:\Windows\Minidump\061214-20217-01.dmp
2014-06-12 03:52 - 2014-04-01 17:55 - 00303760 ____N () C:\Windows\Minidump\061214-20607-01.dmp
2014-06-12 03:39 - 2009-07-13 21:08 - 00032616 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-12 03:38 - 2014-04-01 17:55 - 00303760 ____N () C:\Windows\Minidump\061214-20420-01.dmp
2014-06-12 03:35 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061214-15178-01.dmp
2014-06-12 03:26 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061214-16879-01.dmp
2014-06-12 03:25 - 2014-06-12 03:25 - 00000236 _____ () C:\ProgramData\RUNDLL32.EXE-2296-F.txt
2014-06-12 03:23 - 2014-06-12 03:22 - 00000477 _____ () C:\ProgramData\RUNDLL32.EXE-2932-F.txt
2014-06-12 03:20 - 2014-06-12 03:11 - 00005554 _____ () C:\ProgramData\RUNDLL32.EXE-2912-F.txt
2014-06-12 03:11 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061214-15615-02.dmp
2014-06-12 00:44 - 2014-06-12 00:44 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2904-F.txt
2014-06-12 00:44 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061214-15600-01.dmp
2014-06-11 14:34 - 2014-06-11 14:34 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2792-F.txt
2014-06-11 14:23 - 2014-06-11 14:22 - 00000490 _____ () C:\ProgramData\RUNDLL32.EXE-2992-F.txt
2014-06-11 14:21 - 2014-06-11 14:20 - 00000689 _____ () C:\ProgramData\RUNDLL32.EXE-2916-F.txt
2014-06-11 14:18 - 2014-06-11 14:11 - 00003911 _____ () C:\ProgramData\RUNDLL32.EXE-2900-F.txt
2014-06-11 14:08 - 2014-06-11 13:59 - 00005624 _____ () C:\ProgramData\RUNDLL32.EXE-2204-F.txt
2014-06-11 13:57 - 2014-06-11 13:51 - 00003435 _____ () C:\ProgramData\RUNDLL32.EXE-3064-F.txt
2014-06-11 13:49 - 2014-06-11 13:48 - 00000494 _____ () C:\ProgramData\RUNDLL32.EXE-2144-F.txt
2014-06-11 13:46 - 2014-06-11 13:44 - 00001220 _____ () C:\ProgramData\RUNDLL32.EXE-2892-F.txt
2014-06-11 13:43 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061114-15615-01.dmp
2014-06-11 13:41 - 2014-06-11 13:41 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-3056-F.txt
2014-06-11 13:40 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061114-16504-01.dmp
2014-06-11 13:38 - 2014-06-11 13:38 - 00000246 _____ () C:\ProgramData\RUNDLL32.EXE-2096-F.txt
2014-06-11 13:38 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061114-16863-01.dmp
2014-06-11 13:35 - 2014-06-11 13:35 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2108-F.txt
2014-06-11 13:34 - 2014-06-11 13:33 - 00000734 _____ () C:\ProgramData\RUNDLL32.EXE-2908-F.txt
2014-06-11 13:32 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061114-16395-01.dmp
2014-06-11 13:30 - 2014-06-11 13:30 - 00000245 _____ () C:\ProgramData\RUNDLL32.EXE-3028-F.txt
2014-06-11 13:30 - 2014-04-01 17:55 - 00303816 ____N () C:\Windows\Minidump\061114-16426-01.dmp
2014-06-11 13:27 - 2014-06-11 13:27 - 00000246 _____ () C:\ProgramData\RUNDLL32.EXE-2180-F.txt
2014-06-11 13:27 - 2014-06-11 13:27 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-11 13:25 - 2014-06-11 13:24 - 00000783 _____ () C:\ProgramData\RUNDLL32.EXE-3032-F.txt
2014-06-11 13:22 - 2014-06-11 13:21 - 00000986 _____ () C:\ProgramData\RUNDLL32.EXE-3016-F.txt
2014-06-11 13:04 - 2014-06-11 11:17 - 00061255 _____ () C:\ProgramData\RUNDLL32.EXE-2068-F.txt
2014-06-11 11:15 - 2014-06-11 11:12 - 00002057 _____ () C:\ProgramData\RUNDLL32.EXE-3488-F.txt
2014-06-11 11:12 - 2014-06-11 11:05 - 00000000 ____D () C:\ProgramData\61EFD731ECB3D499D2C15ED0B09B7B80
2014-06-11 11:11 - 2010-11-20 19:47 - 00321448 _____ () C:\Windows\PFRO.log
2014-06-11 06:39 - 2014-06-11 06:03 - 00000000 ____D () C:\Users\Joël\Downloads\www.torrent.to...X-Men.3.2006.German.AC3.5.1.HDRip.XviD-TMP
2014-06-11 05:58 - 2014-06-11 05:58 - 01643344 _____ (BitTorrent Inc.) C:\Users\Joël\Downloads\BitTorrent.exe
2014-06-11 03:32 - 2014-04-08 14:08 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\vlc
2014-06-11 03:27 - 2014-04-08 14:50 - 00000814 _____ () C:\Users\Joël\Desktop\µTorrent.lnk
2014-06-11 03:25 - 2011-07-17 15:54 - 00696132 _____ () C:\Windows\System32\perfh007.dat
2014-06-11 03:25 - 2011-07-17 15:54 - 00147428 _____ () C:\Windows\System32\perfc007.dat
2014-06-11 03:25 - 2009-07-13 21:13 - 01611160 _____ () C:\Windows\System32\PerfStringBackup.INI
2014-06-11 03:23 - 2014-06-11 03:23 - 00000000 ____D () C:\Users\Joël\Downloads\Cypress Hill - Rise Up (2010)
2014-06-11 03:19 - 2014-04-08 09:07 - 00003490 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-06-10 16:18 - 2009-07-13 20:45 - 00445600 _____ () C:\Windows\System32\FNTCACHE.DAT
2014-06-10 09:45 - 2014-05-23 01:35 - 00003180 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForJoël
2014-06-10 09:45 - 2014-05-23 01:35 - 00000328 _____ () C:\Windows\Tasks\HPCeeScheduleForJoël.job
2014-06-10 06:44 - 2014-06-10 05:11 - 00000000 ____D () C:\Users\Joël\Downloads\www.torrent.to...Planet.der.Affen.40.Year.Evolution.01-.05.COMPLETE.German.AC3.HDRip.XViD-FuN
2014-06-10 06:08 - 2014-06-10 05:54 - 00000000 ____D () C:\Users\Joël\Downloads\Snoop Dogg - The Blue Carpet Treatment.(pixie09)
2014-06-10 05:21 - 2014-06-10 05:08 - 00000000 ____D () C:\Users\Joël\Downloads\X-Men. Days of Future Past 2014 HD x264 AC3-R33M
2014-06-10 05:14 - 2014-06-10 05:06 - 1109624150 _____ () C:\Users\Joël\Downloads\xcite-the.cute.little.babysitter.3.mp4
2014-06-10 04:04 - 2014-04-24 12:34 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-06-05 11:21 - 2014-06-04 17:16 - 00000000 ____D () C:\Users\Joël\Downloads\www.torrent.to...Star.Wars.The.Complete.Saga.German.AC3.BDRip.XviD-iNCEPTiON
2014-06-05 09:30 - 2014-04-01 13:24 - 00000000 ____D () C:\Users\Joël\AppData\Local\PDFC
2014-06-05 03:39 - 2014-04-03 07:56 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-06-05 03:38 - 2014-04-03 07:54 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\HP Support Assistant
2014-06-05 03:38 - 2014-04-02 14:19 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\HpUpdate
2014-06-03 04:19 - 2014-06-03 04:17 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\WindSolutions
2014-06-03 04:19 - 2014-06-03 04:17 - 00000000 ____D () C:\ProgramData\WindSolutions
2014-06-03 04:17 - 2014-06-03 04:17 - 05102256 _____ (WindSolutions) C:\Users\Joël\Downloads\Install_CopyTransControlCenter.exe
2014-06-03 04:17 - 2014-06-03 04:17 - 00001373 _____ () C:\Users\Joël\Desktop\CopyTrans Control Center.lnk
2014-06-03 04:10 - 2014-04-28 16:41 - 00006656 _____ () C:\Users\Joël\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-02 02:14 - 2014-06-02 02:14 - 00001198 _____ () C:\Users\Joël\Desktop\Free YouTube to MP3 Converter Installation fortsetzen.lnk
2014-06-02 02:01 - 2014-04-01 14:11 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-02 02:01 - 2014-04-01 14:07 - 00000000 ____D () C:\ProgramData\Skype
2014-06-01 03:32 - 2014-04-01 13:24 - 00003704 _____ () C:\Windows\System32\Tasks\Registration
2014-06-01 03:13 - 2014-06-01 03:13 - 00001116 _____ () C:\Users\Public\Desktop\Debut Videorekorder.lnk
2014-06-01 03:13 - 2014-04-24 12:35 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\NCH Software
2014-06-01 03:13 - 2014-04-24 12:34 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-05-28 15:30 - 2011-07-17 16:15 - 00000000 ____D () C:\Program Files\IDT
2014-05-28 15:30 - 2011-07-17 16:10 - 00000000 ____D () C:\ProgramData\SonicFocus
2014-05-28 15:25 - 2014-05-28 15:25 - 22315066 _____ () C:\Users\Joël\Downloads\IDTv087.zip
2014-05-28 15:25 - 2014-05-28 15:25 - 00000000 ____D () C:\Program Files (x86)\IDT
2014-05-28 15:24 - 2014-05-28 15:24 - 00929416 _____ (CNET Download.com) C:\Users\Joël\Downloads\cbsidlm-cbsi188-IDT_High_Definition_Audio_CODEC-ORG-197119.exe
2014-05-28 13:44 - 2014-05-28 13:44 - 00034512 _____ () C:\Windows\System32\Drivers\debutfilterx64.sys
2014-05-28 13:44 - 2014-04-24 14:50 - 00001181 _____ () C:\Users\Joël\AppData\Roaming\trace_FilterInstaller.txt
2014-05-28 13:44 - 2014-04-24 14:50 - 00001181 _____ () C:\Users\Joël\AppData\Roaming\trace_FilterInstaller.1.txt
2014-05-28 13:44 - 2014-04-24 14:50 - 00000919 _____ () C:\Users\Joël\AppData\Roaming\trace_FilterInstaller.2.txt
2014-05-28 13:44 - 2014-04-24 14:50 - 00000000 _____ () C:\Users\Joël\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2014-05-28 13:43 - 2014-05-28 13:43 - 01581592 _____ (NCH Software) C:\Users\Joël\Downloads\debutpsetup(2).exe
2014-05-27 05:26 - 2014-04-02 06:46 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-23 05:11 - 2014-05-23 05:11 - 00068165 _____ () C:\Users\Joël\Downloads\ZA 6  x 56.10 = 336.60 Jan. - Juni 2014_Valuta_23.05.14_20140523_20140522_UBS e-banking.html
2014-05-23 01:45 - 2014-04-09 14:58 - 00000978 _____ () C:\Users\Joël\Desktop\Dropbox.lnk
2014-05-23 01:34 - 2014-04-01 10:31 - 00000000 ____D () C:\users\Joël
2014-05-22 02:00 - 2014-05-22 02:00 - 00087464 _____ () C:\Users\Joël\Downloads\melodiesoflife(1).zip
2014-05-22 01:45 - 2014-05-22 01:45 - 00077987 _____ () C:\Users\Joël\Downloads\Frontier Village Dali(1).zip
2014-05-21 07:04 - 2014-05-21 06:34 - 729218976 _____ () C:\Users\Joël\Downloads\18+ Junge Ficksäue starten durch.rar
2014-05-21 06:49 - 2014-05-21 06:35 - 729334015 ____R () C:\Users\Joël\Downloads\30+ Perverse Milchkühe.rar
2014-05-20 07:56 - 2014-05-20 07:54 - 36131135 _____ () C:\Users\Joël\Desktop\Eminem-Infinite.rar
2014-05-20 06:15 - 2014-05-20 06:14 - 69469742 _____ () C:\Users\Joël\Downloads\Eminem-The_Marshall_Mathers_Lp_Cd1.zip
2014-05-20 00:19 - 2014-04-01 10:31 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\Hewlett-Packard
2014-05-19 00:55 - 2014-05-19 00:48 - 00000000 ____D () C:\Users\Joël\Desktop\Pornos
2014-05-18 07:52 - 2014-05-18 07:42 - 00000000 ____D () C:\Users\Joël\Downloads\300.Rise.Of.An.Empire.2014.BLURRED.WEBRip.XviD-ViP3R
2014-05-18 07:39 - 2014-05-18 07:24 - 00000000 ____D () C:\Users\Joël\Downloads\Godzilla.2014.CAM.GloTorrents
2014-05-18 07:22 - 2014-05-18 07:22 - 00000000 ____D () C:\Users\Joël\AppData\Roaming\dvdcss
2014-05-18 06:00 - 2014-05-18 05:18 - 00000000 ____D () C:\Users\Joël\Downloads\300.Rise.of.an.Empire.WEBRiP.LD.German.x264-Pleaders
2014-05-17 10:38 - 2014-04-08 13:32 - 00000000 ____D () C:\Users\Joël\AppData\Local\PokerStars
2014-05-16 09:59 - 2014-05-16 09:59 - 00000320 _____ () C:\Users\Joël\Desktop\Magic The Gathering Online .appref-ms
2014-05-16 09:59 - 2014-05-16 09:59 - 00000000 ____D () C:\Users\Joël\AppData\Local\Wizards of the Coast
2014-05-16 09:59 - 2014-05-16 09:59 - 00000000 ____D () C:\ProgramData\Gibraltar
2014-05-16 09:59 - 2014-05-10 21:27 - 00000000 ____D () C:\Users\Joël\AppData\Local\Deployment
2014-05-15 22:55 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache
2014-05-14 05:00 - 2014-05-14 05:00 - 00001337 _____ () C:\Users\Public\Desktop\Age of Empires 3 The WarChiefs.lnk
2014-05-14 05:00 - 2014-05-14 05:00 - 00001337 _____ () C:\Users\Public\Desktop\Age of Empires 3 The Asian Dynasties.lnk
2014-05-14 05:00 - 2014-05-14 05:00 - 00001332 _____ () C:\Users\Public\Desktop\Age Of Empires 3.lnk
2014-05-14 04:54 - 2014-05-14 04:54 - 00000000 ____D () C:\Program Files (x86)\Strogino CS Portal
2014-05-14 04:19 - 2014-05-14 04:13 - 00000000 ____D () C:\Users\Joël\Downloads\Age Of Empires 3
2014-05-14 04:10 - 2014-05-14 04:09 - 04277423 ____R () C:\Users\Joël\Downloads\age3y.rar
2014-05-14 04:07 - 2014-05-14 04:06 - 04278508 ____R () C:\Users\Joël\Downloads\age3y-dtn.rar
2014-05-14 03:58 - 2014-05-14 03:58 - 00000000 ____D () C:\Users\Joël\AppData\Local\Windows Live
2014-05-14 03:58 - 2014-05-14 03:58 - 00000000 ____D () C:\Users\Joël\AppData\Local\{179B3CE8-A404-41CA-81BB-A95D48F6E5EA}
2014-05-14 03:47 - 2014-05-14 03:47 - 00000000 ____D () C:\Users\Joël\Downloads\Rio 2 (2014) DD2.0 NL Subs HDTS-2-DVD-NLU002
2014-05-14 03:11 - 2014-04-01 13:24 - 00000000 ____D () C:\Users\Joël\AppData\Local\VirtualStore
2014-05-14 01:10 - 2014-05-14 01:09 - 13132096 _____ () C:\Users\Joël\Downloads\aoe3y-103-german.exe
2014-05-14 00:55 - 2014-05-14 00:54 - 00000000 ____D () C:\Users\Joël\Documents\Outlook Files

Some content of TEMP:
====================
C:\Users\Joël\AppData\Local\Temp\1396331452_the_wedownload_manager.exe
C:\Users\Joël\AppData\Local\Temp\3mh1hiyx.dll
C:\Users\Joël\AppData\Local\Temp\aoe3y-103-german.exe
C:\Users\Joël\AppData\Local\Temp\avgnt.exe
C:\Users\Joël\AppData\Local\Temp\BI_RunOnce.exe
C:\Users\Joël\AppData\Local\Temp\burnsetup.exe
C:\Users\Joël\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpkzh62y.dll
C:\Users\Joël\AppData\Local\Temp\FLVPlayerSetup.exe
C:\Users\Joël\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\Joël\AppData\Local\Temp\FreemakeVideoConverter_4.1.3.15.exe
C:\Users\Joël\AppData\Local\Temp\FreemakeVideoDownloader_3.6.4.1.exe
C:\Users\Joël\AppData\Local\Temp\jna4674133819387396301.dll
C:\Users\Joël\AppData\Local\Temp\MSNAFA4.exe
C:\Users\Joël\AppData\Local\Temp\nsb8062.exe
C:\Users\Joël\AppData\Local\Temp\nsg9A1D.exe
C:\Users\Joël\AppData\Local\Temp\nsg9DCE.exe
C:\Users\Joël\AppData\Local\Temp\nsgA03F.exe
C:\Users\Joël\AppData\Local\Temp\nsgC659.exe
C:\Users\Joël\AppData\Local\Temp\nsl7DE1.exe
C:\Users\Joël\AppData\Local\Temp\nsl977D.exe
C:\Users\Joël\AppData\Local\Temp\nsqB670.exe
C:\Users\Joël\AppData\Local\Temp\PidGenX.dll
C:\Users\Joël\AppData\Local\Temp\pms-1.90.0-setup-full.exe
C:\Users\Joël\AppData\Local\Temp\prismsetup.exe
C:\Users\Joël\AppData\Local\Temp\Quarantine.exe
C:\Users\Joël\AppData\Local\Temp\sdanircmdc.exe
C:\Users\Joël\AppData\Local\Temp\sdapskill.exe
C:\Users\Joël\AppData\Local\Temp\sdaspwn.exe
C:\Users\Joël\AppData\Local\Temp\sp-downloader.exe
C:\Users\Joël\AppData\Local\Temp\standalonepatcherY.exe
C:\Users\Joël\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\Joël\AppData\Local\Temp\vpsetup.exe


==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== Restore Points  =========================

Restore point made on: 2014-05-28 15:26:10
Restore point made on: 2014-06-04 14:32:43
Restore point made on: 2014-06-04 18:45:00
Restore point made on: 2014-06-05 04:49:09

==================== Memory info =========================== 

Percentage of memory in use: 12%
Total physical RAM: 8174.49 MB
Available physical RAM: 7127.48 MB
Total Pagefile: 8172.69 MB
Available Pagefile: 7107.63 MB
Total Virtual: 8192 MB
Available Virtual: 8191.88 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:1848.86 GB) (Free:1436.78 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_RECOVERY) (Fixed) (Total:14.05 GB) (Free:1.73 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive k: (HITMANPRO) (Removable) (Total:7.35 GB) (Free:7.35 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
Drive y: (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: D0FBDB0A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=-213822472192) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14 GB) - (Type=07 NTFS)

========================================================
Disk: 5 (Size: 7 GB) (Disk ID: 07EB6886)
Partition 1: (Active) - (Size=7 GB) - (Type=0B)


LastRegBack: 2014-06-07 23:21

==================== End Of Log ============================
         
--- --- ---
__________________

Alt 12.06.2014, 15:16   #4
aharonov
/// TB-Ausbilder
 
Interpol bundeskriminalpolizei hp computer - Standard

Interpol bundeskriminalpolizei hp computer



Hoi,

startet der Rechner nach diesem Fix wieder normal?


Drücke bitte die + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
Startup: C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\explorer.lnk
ShortcutTarget: explorer.lnk -> C:\ProgramData\61EFD731ECB3D499D2C15ED0B09B7B80\eflhfloz8.cpp ()
S2 Winmgmt; C:\ProgramData\61EFD731ECB3D499D2C15ED0B09B7B80\8zolfhlfe.dot [332008 2014-06-11] (Microsoft Corporation)
2014-06-12 04:15 - 2014-06-12 04:28 - 00002516 _____ () C:\ProgramData\RUNDLL32.EXE-2936-F.txt
2014-06-12 04:08 - 2014-06-12 04:10 - 00001207 _____ () C:\ProgramData\RUNDLL32.EXE-2872-F.txt
2014-06-12 03:25 - 2014-06-12 03:25 - 00000236 _____ () C:\ProgramData\RUNDLL32.EXE-2296-F.txt
2014-06-12 03:22 - 2014-06-12 03:23 - 00000477 _____ () C:\ProgramData\RUNDLL32.EXE-2932-F.txt
2014-06-12 03:11 - 2014-06-12 03:20 - 00005554 _____ () C:\ProgramData\RUNDLL32.EXE-2912-F.txt
2014-06-12 00:44 - 2014-06-12 00:44 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2904-F.txt
2014-06-11 14:34 - 2014-06-11 14:34 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2792-F.txt
2014-06-11 14:22 - 2014-06-11 14:23 - 00000490 _____ () C:\ProgramData\RUNDLL32.EXE-2992-F.txt
2014-06-11 14:20 - 2014-06-11 14:21 - 00000689 _____ () C:\ProgramData\RUNDLL32.EXE-2916-F.txt
2014-06-11 14:11 - 2014-06-11 14:18 - 00003911 _____ () C:\ProgramData\RUNDLL32.EXE-2900-F.txt
2014-06-11 13:59 - 2014-06-11 14:08 - 00005624 _____ () C:\ProgramData\RUNDLL32.EXE-2204-F.txt
2014-06-11 13:51 - 2014-06-11 13:57 - 00003435 _____ () C:\ProgramData\RUNDLL32.EXE-3064-F.txt
2014-06-11 13:48 - 2014-06-11 13:49 - 00000494 _____ () C:\ProgramData\RUNDLL32.EXE-2144-F.txt
2014-06-11 13:44 - 2014-06-11 13:46 - 00001220 _____ () C:\ProgramData\RUNDLL32.EXE-2892-F.txt
2014-06-11 13:41 - 2014-06-11 13:41 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-3056-F.txt
2014-06-11 13:38 - 2014-06-11 13:38 - 00000246 _____ () C:\ProgramData\RUNDLL32.EXE-2096-F.txt
2014-06-11 13:35 - 2014-06-11 13:35 - 00000249 _____ () C:\ProgramData\RUNDLL32.EXE-2108-F.txt
2014-06-11 13:33 - 2014-06-11 13:34 - 00000734 _____ () C:\ProgramData\RUNDLL32.EXE-2908-F.txt
2014-06-11 13:30 - 2014-06-11 13:30 - 00000245 _____ () C:\ProgramData\RUNDLL32.EXE-3028-F.txt
2014-06-11 13:27 - 2014-06-11 13:27 - 00000246 _____ () C:\ProgramData\RUNDLL32.EXE-2180-F.txt
2014-06-11 13:24 - 2014-06-11 13:25 - 00000783 _____ () C:\ProgramData\RUNDLL32.EXE-3032-F.txt
2014-06-11 13:21 - 2014-06-11 13:22 - 00000986 _____ () C:\ProgramData\RUNDLL32.EXE-3016-F.txt
2014-06-11 13:13 - 2014-06-12 05:24 - 00007375 _____ () C:\ProgramData\RUNDLL32.EXE-3024-F.txt
2014-06-11 11:17 - 2014-06-11 13:04 - 00061255 _____ () C:\ProgramData\RUNDLL32.EXE-2068-F.txt
2014-06-11 11:12 - 2014-06-11 11:15 - 00002057 _____ () C:\ProgramData\RUNDLL32.EXE-3488-F.txt
2014-06-11 11:05 - 2014-06-11 11:12 - 00000000 ____D () C:\ProgramData\61EFD731ECB3D499D2C15ED0B09B7B80
C:\Users\Joël\AppData\Local\Temp\*.dll
C:\Users\Joël\AppData\Local\Temp\*.exe
         
Speichere diese bitte als Fixlist.txt auf deinem USB Stick.
  • Starte deinen Rechner erneut in die Reparaturoptionen
  • Starte nun die FRST.exe erneut und klicke den Entfernen Button.

Das Tool erstellt eine Fixlog.txt auf deinem USB Stick. Poste den Inhalt bitte hier.
__________________
cheers,
Leo

Alt 12.06.2014, 15:43   #5
Joel14
 
Interpol bundeskriminalpolizei hp computer - Standard

Interpol bundeskriminalpolizei hp computer



Danke hat gköappt


Antwort

Themen zu Interpol bundeskriminalpolizei hp computer
arten, bundeskriminalpolizei, compu, computer, crash, crasht, freund, hitman, interpol, seite, starten, surfe, surfen, versuch, versucht



Ähnliche Themen: Interpol bundeskriminalpolizei hp computer


  1. Interpol Trojaner sperrt den Computer
    Log-Analyse und Auswertung - 19.11.2014 (11)
  2. hp computer durch interpol Trojaner gesperrt
    Log-Analyse und Auswertung - 20.09.2014 (1)
  3. Computer gesperrt durch Interpol Trojaner
    Log-Analyse und Auswertung - 01.04.2014 (1)
  4. Interpol hat zugeschlagen! Interpol Troyaner/Virus legt Rechner Lahm!
    Log-Analyse und Auswertung - 30.03.2014 (7)
  5. Computer wurde gesperrt laut interpol soll ich 100 Euro strafe zahlen
    Log-Analyse und Auswertung - 08.02.2014 (7)
  6. Interpol-Virus sperrt Computer
    Plagegeister aller Art und deren Bekämpfung - 07.01.2014 (8)
  7. Windows 8: FedPol BundesKriminalPolizei Virus auf meinem PC
    Log-Analyse und Auswertung - 29.10.2013 (3)
  8. Computer gesperrt durch Trojaner - Interpol
    Log-Analyse und Auswertung - 07.10.2013 (15)
  9. Trojaner Bundeskriminalpolizei (Schweizer Version) auf Win 7 Pro
    Log-Analyse und Auswertung - 05.07.2013 (11)
  10. Ihr Computer wurde von Interpol gesperrt da sich illegale Dateien darauf befinden sollen!
    Plagegeister aller Art und deren Bekämpfung - 18.10.2012 (20)
  11. Trojaner Bundeskriminalpolizei
    Log-Analyse und Auswertung - 27.09.2012 (6)
  12. Bundeskriminalpolizei Virus
    Plagegeister aller Art und deren Bekämpfung - 21.05.2012 (1)
  13. Bundeskriminalpolizei, 100 Euro Ucash Überweisung
    Plagegeister aller Art und deren Bekämpfung - 06.04.2012 (19)
  14. Bundeskriminalpolizei 100 Euro Trojaner
    Log-Analyse und Auswertung - 01.11.2011 (1)
  15. Bundeskriminalpolizei(Ukash)- und Sparkassen(TANs)-Trojaner/Virus
    Log-Analyse und Auswertung - 12.08.2011 (1)
  16. Bundeskriminalpolizei Trojaner
    Plagegeister aller Art und deren Bekämpfung - 08.08.2011 (1)
  17. Bundeskriminalpolizei 100 Euro Trojaner
    Plagegeister aller Art und deren Bekämpfung - 18.04.2011 (7)

Zum Thema Interpol bundeskriminalpolizei hp computer - Hallo miteinander Habe ein übles problem. Mein freund war letztens surfen und dann ist der computer heruntergefahren und diese interpol seite kommt. Habe schon versucht mit hitman pro kickstarter zu - Interpol bundeskriminalpolizei hp computer...
Archiv
Du betrachtest: Interpol bundeskriminalpolizei hp computer auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.