Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Windows7 64bit - Seriöse Programme laden Spam herunter?

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 01.11.2013, 00:05   #1
MrXxx
 
Windows7 64bit - Seriöse Programme laden Spam herunter? - Standard

Windows7 64bit - Seriöse Programme laden Spam herunter?



So. Ich sitze gerade an meinen neuaufgesetzten PC und bin etwas verwundert,
habe eben zwei Programme von Chip.de heruntergeladen (Youtubedownloader und Glary tool zum Temporäre Datein löschen), peinlichst darauf geachtet keine Ask Toolbar etc. mitzuinstallieren und troztdem zeigt mir Malewarebytes Funde an, erst einen und nach dem Löschen und erneuten Suchen, plötzlich zwei infizierte Datein.


Ist wahrscheinlich nichts Ernstes, aber ich möchte das lieber die Profis abchecken lassen, also hier die Logs (auch von Malewarebytes)

EDIT: Da das Forum meckert, sende ich die Logs als Anhang.

Vielen Dank schonmal für eure Mühe!

Alt 01.11.2013, 09:20   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Windows7 64bit - Seriöse Programme laden Spam herunter? - Standard

Windows7 64bit - Seriöse Programme laden Spam herunter?



Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 01.11.2013, 10:47   #3
MrXxx
 
Windows7 64bit - Seriöse Programme laden Spam herunter? - Standard

Windows7 64bit - Seriöse Programme laden Spam herunter?



Hatte ich versusucht, aber sie waren zu lang, ich probiers jetzt nochmal:

Defogger
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 00:41 on 01/11/2013 (Bene)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         
Addition
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by ***** at 2013-11-01 00:42:48
Running from C:\Users\*****\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Adobe AIR (x32 Version: 3.9.0.1030)
Adobe Community Help (x32 Version: 3.5.23)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Photoshop Elements 10 (x32 Version: 10.0)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
avast! Free Antivirus (x32 Version: 8.0.1497.0)
Brother MFL-Pro Suite MFC-J430W (x32 Version: 1.1.6.0)
CCleaner (Version: 4.05)
CDBurnerXP (x32 Version: 4.5.2.4291)
Elements 10 Organizer (x32 Version: 10.0)
Free YouTube to MP3 Converter version 3.12.16.1028 (x32 Version: 3.12.16.1028)
GameRanger (HKCU)
Glary Utilities 2.56.0.1822 (x32 Version: 2.56.0.1822)
Google Chrome (HKCU Version: 30.0.1599.101)
Intel PROSet Wireless
Intel(R) Network Connections 18.5.54.0 (Version: 18.5.54.0)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (Version: 15.2.0.0284)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 2.0.0.100)
Intel® PROSet/Wireless WiFi-Software (Version: 15.02.0000.1258)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Age of Empires II (x32)
Microsoft Age of Empires II: The Conquerors Expansion (x32)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
NVIDIA 3D Vision Controller-Treiber 320.49 (Version: 320.49)
NVIDIA 3D Vision Treiber 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.5 (Version: 1.5)
NVIDIA Grafiktreiber 320.49 (Version: 320.49)
NVIDIA HD-Audiotreiber 1.3.24.2 (Version: 1.3.24.2)
NVIDIA Install Application (Version: 2.1002.124.810)
NVIDIA PhysX (x32 Version: 9.13.0604)
NVIDIA PhysX-Systemsoftware 9.13.0604 (Version: 9.13.0604)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2049)
NVIDIA Systemsteuerung 320.49 (Version: 320.49)
NVIDIA Update 4.11.9 (Version: 4.11.9)
NVIDIA Update Components (Version: 4.11.9)
ON_OFF Charge 2 B13.0403.1 (x32 Version: 1.00.0000)
ON_OFF Charge B13.0403.1 (x32 Version: 1.00.0001)
PSE10 STI Installer (x32 Version: 10.0)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.21)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7037)
Saal Design Software (x32 Version: 3.2.18)
Sandboxie 4.04 (64-bit) (Version: 4.04)
Skype™ 6.9 (x32 Version: 6.9.106)
SRWare Iron Version SRWare Iron 29.0.1600.0 (x32 Version: SRWare Iron 29.0.1600.0)
StarCraft II (x32 Version: 2.0.11.26825)
TeamViewer 8 (x32 Version: 8.0.22298)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2827325) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
VC_CRT_x64 (Version: 1.02.0000)

==================== Restore Points  =========================

23-10-2013 11:45:32 Windows Update
24-10-2013 21:50:31 Windows Update
25-10-2013 05:25:27 Windows Update
25-10-2013 11:36:21 Windows Update
25-10-2013 23:31:15 Windows Update
26-10-2013 15:09:13 Windows Update
27-10-2013 01:00:14 Windows Update
27-10-2013 01:38:54 Windows Update
27-10-2013 12:40:45 Windows Update
28-10-2013 12:39:22 Windows Update
29-10-2013 14:47:12 Windows Update
31-10-2013 00:45:35 Windows Update
31-10-2013 14:06:23 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1F2FA111-6701-43C4-BA05-ED5E1F0F7D38} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000UA => C:\Users\*****\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-15] (Google Inc.)
Task: {3974A8F8-EF11-438C-839D-C046756D0EF5} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [2013-05-27] (Glarysoft Ltd)
Task: {546A5154-9A70-43B0-9839-DD162CC554A1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software)
Task: {A7F577E9-B502-47B6-B7BD-E30198545396} - System32\Tasks\AdobeAAMUpdater-1.0-*****-PC-***** => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2011-06-16] (Adobe Systems Incorporated)
Task: {C1AD5DA8-19D9-4ED3-9C01-8F36A74C7C9E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {D5649897-4820-4FD9-8526-C9F5DC25A22D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-15] (Adobe Systems Incorporated)
Task: {FF9F5C88-2F71-4891-9B01-6EAE2CB1E56F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000Core => C:\Users\*****\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-15] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000Core.job => C:\Users\*****\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000UA.job => C:\Users\*****\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-01 00:12 - 2013-10-31 19:35 - 02107392 _____ () C:\Program Files\AVAST Software\Avast\defs\13103101\algo.dll
2013-09-26 13:38 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bluetooth-Gerät (PAN) #2
Description: Bluetooth-Gerät (PAN)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Qualcomm Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Description: Qualcomm Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros
Service: L1C
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Standard-VGA-Grafikkarte
Description: Standard-VGA-Grafikkarte
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardgrafikkartentypen)
Service: vga
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/01/2013 00:40:03 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2013 00:12:08 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2013 04:18:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2013 03:17:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2013 09:04:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/30/2013 08:26:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/29/2013 01:56:47 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 00:41:26 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 01:21:35 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/26/2013 04:15:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (11/01/2013 00:40:01 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UsbCharger

Error: (11/01/2013 00:12:07 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UsbCharger

Error: (10/31/2013 04:18:53 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UsbCharger

Error: (10/31/2013 03:17:07 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UsbCharger

Error: (10/31/2013 03:07:42 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Internet Explorer 10 für Windows 7 für x64-basierte Systeme

Error: (10/31/2013 09:04:11 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UsbCharger

Error: (10/31/2013 01:46:52 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Internet Explorer 10 für Windows 7 für x64-basierte Systeme

Error: (10/30/2013 08:26:45 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UsbCharger

Error: (10/29/2013 03:48:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Internet Explorer 10 für Windows 7 für x64-basierte Systeme

Error: (10/29/2013 01:56:46 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UsbCharger


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 14%
Total physical RAM: 16264.88 MB
Available physical RAM: 13939.54 MB
Total Pagefile: 32527.93 MB
Available Pagefile: 30257.89 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:851.01 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: F140D2C6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
FRST

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by ***** (administrator) on *****-PC on 01-11-2013 00:42:15
Running from C:\Users\*****\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\system32\IProsetMonitor.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1012000 2013-05-16] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13651672 2013-09-03] (Realtek Semiconductor)
HKCU\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [759384 2013-07-08] (Sandboxie Holdings, LLC)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ControlCenter4] - C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll [266448 2013-06-21] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [214448 2013-06-21] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x8D2D5D3488C5CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\pqreaw43.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\*****\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\*****\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WOT - C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\pqreaw43.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: Adblock Plus - C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\pqreaw43.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272688 2012-06-25] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [183896 2013-07-08] (Sandboxie Holdings, LLC)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3325232 2012-06-25] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [495376 2013-05-30] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
S3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [129224 2013-07-18] (Qualcomm Atheros Co., Ltd.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [199384 2013-07-08] (Sandboxie Holdings, LLC)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21072 2013-03-27] ()
S3 gdrv; \??\C:\Windows\gdrv.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-01 00:42 - 2013-11-01 00:42 - 00000000 ____D C:\FRST
2013-11-01 00:41 - 2013-11-01 00:41 - 00000470 _____ C:\Users\*****\Desktop\defogger_disable.log
2013-11-01 00:41 - 2013-11-01 00:41 - 00000000 _____ C:\Users\*****\defogger_reenable
2013-11-01 00:33 - 2013-11-01 00:33 - 00000000 ____D C:\Users\*****\Desktop\Trojaner Board
2013-11-01 00:30 - 2013-11-01 00:30 - 01957098 _____ (Farbar) C:\Users\*****\Desktop\FRST64.exe
2013-11-01 00:30 - 2013-11-01 00:30 - 00377856 _____ C:\Users\*****\Desktop\gmer_2.1.19163.exe
2013-11-01 00:30 - 2013-11-01 00:29 - 00050477 _____ C:\Users\*****\Desktop\Defogger.exe
2013-11-01 00:17 - 2013-11-01 00:17 - 00000000 ____D C:\Users\*****\AppData\Roaming\GlarySoft
2013-11-01 00:15 - 2013-11-01 00:39 - 00000324 _____ C:\Windows\Tasks\GlaryInitialize.job
2013-11-01 00:15 - 2013-11-01 00:15 - 00002600 _____ C:\Windows\System32\Tasks\GlaryInitialize
2013-11-01 00:15 - 2013-11-01 00:15 - 00001070 _____ C:\Users\*****\Desktop\Glary Utilities.lnk
2013-11-01 00:15 - 2013-11-01 00:15 - 00000000 ____D C:\Program Files (x86)\Glary Utilities
2013-11-01 00:05 - 2013-11-01 00:06 - 00000000 ___RD C:\Users\*****\Desktop\Uni
2013-10-31 23:48 - 2013-10-31 23:48 - 40357124 _____ C:\Users\*****\Desktop\Michael Buble - Close Your Eyes.wav
2013-10-31 23:48 - 2013-10-31 23:48 - 00001953 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2013-10-31 23:48 - 2013-10-31 23:48 - 00000000 ____D C:\Users\*****\AppData\Roaming\Canneverbe Limited
2013-10-31 23:48 - 2013-10-31 23:48 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2013-10-31 23:48 - 2013-10-31 23:48 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP
2013-10-31 23:45 - 2013-10-31 23:46 - 00000000 ____D C:\Users\*****\AppData\Roaming\DVDVideoSoft
2013-10-31 23:45 - 2013-10-31 23:45 - 00001536 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2013-10-31 23:45 - 2013-10-31 23:45 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-10-31 23:44 - 2013-10-31 23:44 - 04985608 _____ (Canneverbe Limited                                          ) C:\Users\*****\Downloads\cdbxp_setup_4.5.2.4291_minimal.exe
2013-10-31 23:41 - 2013-10-31 23:41 - 32132232 _____ (DVDVideoSoft Ltd.                                           ) C:\Users\*****\Downloads\FreeYouTubeToMP3Converter3.2.16.1028.exe
2013-10-31 18:05 - 2013-10-31 18:05 - 00001360 _____ C:\Users\*****\Downloads\banks endof.zip
2013-10-30 22:11 - 2013-10-31 18:08 - 00000191 _____ C:\Users\*****\Desktop\Good Lieder.txt
2013-10-24 17:21 - 2013-10-24 17:21 - 00000000 ____D C:\Users\*****\Desktop\Neuer Ordner
2013-10-21 19:46 - 2013-10-21 19:46 - 02821402 _____ C:\Users\*****\Desktop\Chemie 21.10.2013.zip
2013-10-20 17:36 - 2013-10-20 17:36 - 00114352 _____ (GameRanger Technologies) C:\Users\*****\Downloads\GameRangerSetup.exe
2013-10-20 17:36 - 2013-10-20 17:36 - 00001068 _____ C:\Users\*****\Desktop\GameRanger.lnk
2013-10-20 17:36 - 2013-10-20 17:36 - 00001054 _____ C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2013-10-20 17:36 - 2013-10-20 17:36 - 00000000 ____D C:\Users\*****\AppData\Roaming\GameRanger
2013-10-20 17:27 - 2013-10-20 17:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2013-10-20 12:31 - 2013-10-20 12:31 - 00000000 ____D C:\Users\*****\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2013-10-20 12:31 - 2013-10-20 12:31 - 00000000 ____D C:\Users\*****\AppData\Roaming\chc
2013-10-20 01:51 - 2013-10-31 15:07 - 00175097 _____ C:\Windows\IE10_main.log
2013-10-19 17:22 - 2013-10-19 17:22 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-10-19 17:22 - 2013-10-19 17:22 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-10-19 17:22 - 2013-10-19 17:22 - 00000000 ____D C:\Program Files\Realtek
2013-10-19 17:22 - 2013-09-10 14:40 - 03640024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2013-10-19 17:22 - 2013-09-10 12:56 - 00644705 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-10-19 17:22 - 2013-09-10 09:16 - 00148696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2013-10-19 17:22 - 2013-09-10 04:02 - 32861696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2013-10-19 17:22 - 2013-09-09 08:32 - 05681192 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-10-19 17:22 - 2013-09-05 10:23 - 04933328 _____ (ASUSTeKcomputer.Inc Inc) C:\Windows\system32\RTKSMlfx.dll
2013-10-19 17:22 - 2013-09-05 10:22 - 00848184 _____ (ASUSTeKcomputer.Inc Inc) C:\Windows\system32\RTKSMSettingsIPC.dll
2013-10-19 17:22 - 2013-09-05 08:52 - 02586328 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2013-10-19 17:22 - 2013-08-23 20:14 - 01014016 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2013-10-19 17:22 - 2013-08-23 20:14 - 00897792 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2013-10-19 17:22 - 2013-08-23 20:14 - 00722688 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2013-10-19 17:22 - 2013-08-23 20:14 - 00244480 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2013-10-19 17:22 - 2013-08-20 13:17 - 02809048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2013-10-19 17:22 - 2013-08-20 10:37 - 00605496 _____ C:\Windows\system32\audioLibVc.dll
2013-10-19 17:22 - 2013-08-14 09:36 - 01325312 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2013-10-19 17:22 - 2013-08-14 09:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-10-19 17:22 - 2013-08-14 09:35 - 01084160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2013-10-19 17:22 - 2013-08-14 09:35 - 00907008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2013-10-19 17:22 - 2013-08-14 09:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-10-19 17:22 - 2013-08-07 10:41 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-10-19 17:22 - 2013-08-07 10:34 - 00765184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2013-10-19 17:22 - 2013-08-06 02:47 - 00947248 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-10-19 17:22 - 2013-08-05 21:56 - 06219096 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2013-10-19 17:22 - 2013-08-05 21:56 - 01908568 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2013-10-19 17:22 - 2013-08-05 21:56 - 00312152 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2013-10-19 17:22 - 2013-08-05 21:56 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2013-10-19 17:22 - 2013-08-05 11:11 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2013-10-19 17:22 - 2013-08-02 13:16 - 01005784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2013-10-19 17:22 - 2013-07-28 03:48 - 27518208 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2013-10-19 17:22 - 2013-07-26 07:05 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2013-10-19 17:22 - 2013-07-24 03:07 - 02032896 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2013-10-19 17:22 - 2013-07-23 08:40 - 03610880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2013-10-19 17:22 - 2013-07-23 08:40 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2013-10-19 17:22 - 2013-07-23 08:39 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2013-10-19 17:22 - 2013-07-23 08:39 - 01916672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2013-10-19 17:22 - 2013-07-23 08:39 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-10-19 17:22 - 2013-07-23 08:39 - 00790272 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2013-10-19 17:22 - 2013-06-25 05:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2013-10-19 17:22 - 2013-06-25 05:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2013-10-19 17:22 - 2013-06-25 05:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2013-10-19 17:22 - 2013-06-21 04:01 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2013-10-19 17:22 - 2013-06-05 14:42 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2013-10-19 17:22 - 2013-04-24 10:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2013-10-19 17:22 - 2013-04-03 07:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-10-19 17:22 - 2013-02-20 11:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2013-10-19 17:22 - 2012-10-02 07:41 - 00501192 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2013-10-19 17:22 - 2012-10-02 07:41 - 00487368 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2013-10-19 17:22 - 2012-10-02 07:41 - 00415688 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2013-10-19 17:22 - 2012-08-31 12:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2013-10-19 17:22 - 2012-08-31 12:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2013-10-19 17:22 - 2012-08-31 12:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2013-10-19 17:22 - 2012-08-31 12:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2013-10-19 17:22 - 2012-08-31 12:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2013-10-19 17:22 - 2012-03-08 04:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2013-10-19 17:22 - 2012-01-30 04:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2013-10-19 17:22 - 2012-01-10 03:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2013-10-19 17:22 - 2011-12-20 08:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2013-10-19 17:22 - 2011-11-22 09:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2013-10-19 17:22 - 2011-09-02 07:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2013-10-19 17:22 - 2011-09-02 07:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2013-10-19 17:22 - 2011-09-02 07:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2013-10-19 17:22 - 2011-08-23 10:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2013-10-19 17:22 - 2011-05-31 02:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2013-10-19 17:22 - 2011-03-17 05:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2013-10-19 17:22 - 2011-03-07 10:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2013-10-19 17:22 - 2010-11-08 00:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2013-10-19 17:22 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2013-10-19 17:22 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2013-10-19 17:22 - 2010-11-08 00:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2013-10-19 17:22 - 2010-11-08 00:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2013-10-19 17:22 - 2010-11-08 00:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2013-10-19 17:22 - 2010-11-03 11:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2013-10-19 17:22 - 2010-09-27 02:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-10-19 17:22 - 2010-07-22 09:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2013-10-19 17:22 - 2009-11-24 02:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2013-10-19 17:22 - 2009-11-24 02:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2013-10-19 17:22 - 2009-11-24 02:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2013-10-19 17:22 - 2009-11-24 02:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2013-10-19 17:21 - 2013-09-03 04:16 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2013-10-19 17:20 - 2013-10-19 17:20 - 00000000 ____D C:\Windows\SysWOW64\Atheros_L1e
2013-10-19 17:19 - 2013-07-03 19:05 - 00552760 _____ (Intel Corporation) C:\Windows\system32\PROUnstl.exe
2013-10-19 17:19 - 2006-01-12 08:52 - 00001904 ____N C:\Windows\system32\SetupBD.din
2013-10-19 17:13 - 2013-11-01 00:39 - 00003292 _____ C:\Windows\PFRO.log
2013-10-19 16:37 - 2013-11-01 00:39 - 00004686 _____ C:\Windows\setupact.log
2013-10-19 16:37 - 2013-10-19 16:37 - 00000000 _____ C:\Windows\setuperr.log
2013-10-19 16:20 - 2013-07-18 06:54 - 00129224 _____ (Qualcomm Atheros Co., Ltd.) C:\Windows\system32\Drivers\L1C62x64.sys
2013-10-19 16:20 - 2013-05-30 01:54 - 00495376 _____ (Intel Corporation) C:\Windows\system32\Drivers\e1d62x64.sys
2013-10-19 16:20 - 2013-05-10 20:48 - 00073480 _____ (Intel Corporation) C:\Windows\system32\e1dmsg.dll
2013-10-19 16:20 - 2013-03-01 21:42 - 00101152 _____ (Intel Corporation) C:\Windows\system32\NicInstD.dll
2013-10-19 16:20 - 2012-01-06 07:03 - 00003114 _____ C:\Windows\system32\e1d62x64.din
2013-10-19 16:20 - 2009-05-26 03:05 - 00036472 _____ (Intel Corporation) C:\Windows\system32\NicCo36.dll
2013-10-19 15:56 - 2013-10-19 17:16 - 00000000 ____D C:\Users\*****\Downloads\Treiber
2013-10-19 15:48 - 2013-10-19 15:48 - 00001166 _____ C:\Users\Public\Desktop\TeamViewer 8.lnk
2013-10-19 15:48 - 2013-10-19 15:48 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2013-10-19 15:47 - 2013-10-19 15:47 - 05831344 _____ (TeamViewer GmbH) C:\Users\*****\Downloads\TeamViewer_Setup_de.exe
2013-10-19 15:12 - 2013-10-19 15:12 - 00003498 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-*****-PC-*****
2013-10-18 17:56 - 2013-10-18 17:56 - 00000971 _____ C:\Users\Public\Desktop\Saal - Nur kleine Fotos.lnk
2013-10-18 17:56 - 2013-10-18 17:56 - 00000000 ____D C:\Users\*****\AppData\Roaming\SaalDesignSoftware
2013-10-18 17:56 - 2013-10-18 17:56 - 00000000 ____D C:\Program Files (x86)\SaalDesignSoftware
2013-10-18 17:55 - 2013-10-18 17:55 - 06946488 _____ C:\Users\*****\Downloads\SaalDesignSoftware3.2.18.exe
2013-10-15 19:17 - 2013-11-01 00:34 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000UA.job
2013-10-15 19:17 - 2013-10-31 14:34 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000Core.job
2013-10-15 19:17 - 2013-10-18 13:29 - 00004084 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000UA
2013-10-15 19:17 - 2013-10-18 13:29 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000Core
2013-10-15 19:17 - 2013-10-15 19:17 - 00739856 _____ (Google Inc.) C:\Users\*****\Downloads\chrome_installer_30.0.1599.66.exe
2013-10-15 19:17 - 2013-10-15 19:17 - 00002362 _____ C:\Users\*****\Desktop\Google Chrome.lnk
2013-10-15 19:17 - 2013-10-15 19:17 - 00000000 ____D C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-15 19:17 - 2013-10-15 19:17 - 00000000 ____D C:\Users\*****\AppData\Local\Google
2013-10-15 19:14 - 2013-10-28 12:43 - 00001412 _____ C:\Windows\Sandboxie.ini
2013-10-15 19:14 - 2013-10-15 19:14 - 02590808 _____ (Sandboxie Holdings, LLC) C:\Users\*****\Downloads\Sandboxie404Install(1).exe
2013-10-15 19:14 - 2013-10-15 19:14 - 00000000 ____D C:\Program Files\Sandboxie
2013-10-15 18:56 - 2013-10-15 18:56 - 00000000 ___RD C:\Sandbox
2013-10-15 18:23 - 2013-10-15 18:23 - 02590808 _____ (Sandboxie Holdings, LLC) C:\Users\*****\Downloads\Sandboxie404Install.exe
2013-10-15 18:16 - 2013-10-15 18:16 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-10-15 18:14 - 2013-11-01 00:10 - 00000000 ___RD C:\Users\*****\Desktop\Kunst
2013-10-15 15:15 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-15 15:15 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-15 15:15 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-15 15:15 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-15 15:15 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-15 15:15 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-15 15:15 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-15 15:09 - 2013-10-15 15:09 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-10-15 15:09 - 2013-10-15 15:09 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-10-15 15:09 - 2013-10-15 15:09 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-10-15 15:05 - 2013-10-15 15:05 - 00001896 _____ C:\Users\Public\Desktop\Adobe Photoshop Elements 10.lnk
2013-10-15 15:05 - 2010-03-19 02:00 - 00055856 ____N (Sonic Solutions) C:\Windows\system32\Drivers\PxHlpa64.sys
2013-10-15 15:05 - 2009-10-20 02:00 - 00010224 ____N (Sonic Solutions) C:\Windows\system32\Drivers\cdralw2k.sys
2013-10-15 15:05 - 2009-10-20 02:00 - 00010224 ____N (Sonic Solutions) C:\Windows\system32\Drivers\cdr4_xp.sys
2013-10-13 17:39 - 2013-10-13 17:39 - 00000000 ____D C:\Users\*****\AppData\Local\Macromedia
2013-10-12 20:02 - 2011-02-19 13:04 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-12 20:02 - 2011-02-19 07:30 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-10 10:33 - 2013-09-22 16:43 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-10 10:33 - 2013-09-22 16:01 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-10 10:33 - 2013-09-22 15:42 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-10 10:33 - 2013-09-22 15:36 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-10 10:33 - 2013-09-22 15:33 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-10 10:33 - 2013-09-22 15:33 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-10 10:33 - 2013-09-22 15:30 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-10 10:33 - 2013-09-22 15:27 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-10 10:33 - 2013-09-22 15:23 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-10 10:33 - 2013-09-22 15:22 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-10 10:33 - 2013-09-22 15:21 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-10 10:33 - 2013-09-22 15:19 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-10 10:33 - 2013-09-22 15:19 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-10 10:33 - 2013-09-22 15:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-10 10:33 - 2013-09-22 15:15 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-10 10:33 - 2013-09-22 15:07 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-10 10:33 - 2013-09-22 11:29 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 10:33 - 2013-09-22 11:22 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-10 10:33 - 2013-09-22 11:22 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-10 10:33 - 2013-09-22 11:14 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-10 10:33 - 2013-09-22 11:13 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-10 10:33 - 2013-09-22 11:13 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-10 10:33 - 2013-09-22 11:12 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-10 10:33 - 2013-09-22 11:09 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-10 10:33 - 2013-09-22 11:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-10 10:33 - 2013-09-22 11:07 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-10 10:33 - 2013-09-22 11:06 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-10 10:33 - 2013-09-22 11:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-10 10:33 - 2013-09-22 11:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-10 10:33 - 2013-09-22 11:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-10 10:33 - 2013-09-22 11:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-10 10:33 - 2013-09-22 10:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 08:16 - 2013-10-10 08:16 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\Users\*****\AppData\Roaming\Mozilla
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\Users\*****\AppData\Local\Mozilla
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-10 08:15 - 2013-10-10 08:15 - 22537616 _____ (Mozilla) C:\Users\*****\Downloads\Firefox_Setup_de24.0.exe
2013-10-10 07:07 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 07:07 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 07:07 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 07:07 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 07:07 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 07:07 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 07:07 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 07:07 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 07:07 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 07:07 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 07:07 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 07:07 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 07:07 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 07:07 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 07:07 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 07:07 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 07:07 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 07:07 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 07:07 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 07:07 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 07:07 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 07:07 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 07:07 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 07:07 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-10 07:07 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 07:07 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 07:07 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 07:07 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 07:07 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 07:07 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 07:07 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 07:07 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 07:07 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 07:07 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 07:07 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 07:07 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 07:07 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 07:06 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 07:06 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 07:06 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 07:06 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 07:06 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 07:06 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 07:06 - 2013-08-27 10:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-10 07:06 - 2013-08-27 10:01 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-10 07:06 - 2013-08-27 09:21 - 01077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-10 07:06 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 07:06 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 07:06 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

==================== One Month Modified Files and Folders =======

2013-11-01 00:42 - 2013-11-01 00:42 - 00000000 ____D C:\FRST
2013-11-01 00:41 - 2013-11-01 00:41 - 00000470 _____ C:\Users\*****\Desktop\defogger_disable.log
2013-11-01 00:41 - 2013-11-01 00:41 - 00000000 _____ C:\Users\*****\defogger_reenable
2013-11-01 00:41 - 2013-09-07 14:11 - 00000000 ____D C:\Users\*****
2013-11-01 00:40 - 2013-09-07 15:23 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-01 00:39 - 2013-11-01 00:15 - 00000324 _____ C:\Windows\Tasks\GlaryInitialize.job
2013-11-01 00:39 - 2013-10-19 17:13 - 00003292 _____ C:\Windows\PFRO.log
2013-11-01 00:39 - 2013-10-19 16:37 - 00004686 _____ C:\Windows\setupact.log
2013-11-01 00:39 - 2013-09-07 14:51 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-01 00:39 - 2013-09-07 14:11 - 01460498 _____ C:\Windows\WindowsUpdate.log
2013-11-01 00:39 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-01 00:34 - 2013-10-15 19:17 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000UA.job
2013-11-01 00:33 - 2013-11-01 00:33 - 00000000 ____D C:\Users\*****\Desktop\Trojaner Board
2013-11-01 00:30 - 2013-11-01 00:30 - 01957098 _____ (Farbar) C:\Users\*****\Desktop\FRST64.exe
2013-11-01 00:30 - 2013-11-01 00:30 - 00377856 _____ C:\Users\*****\Desktop\gmer_2.1.19163.exe
2013-11-01 00:29 - 2013-11-01 00:30 - 00050477 _____ C:\Users\*****\Desktop\Defogger.exe
2013-11-01 00:19 - 2009-07-14 05:45 - 00022672 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-01 00:19 - 2009-07-14 05:45 - 00022672 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-01 00:17 - 2013-11-01 00:17 - 00000000 ____D C:\Users\*****\AppData\Roaming\GlarySoft
2013-11-01 00:16 - 2011-04-12 08:43 - 00697658 _____ C:\Windows\system32\perfh007.dat
2013-11-01 00:16 - 2011-04-12 08:43 - 00148452 _____ C:\Windows\system32\perfc007.dat
2013-11-01 00:16 - 2009-07-14 06:13 - 01615906 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-01 00:15 - 2013-11-01 00:15 - 00002600 _____ C:\Windows\System32\Tasks\GlaryInitialize
2013-11-01 00:15 - 2013-11-01 00:15 - 00001070 _____ C:\Users\*****\Desktop\Glary Utilities.lnk
2013-11-01 00:15 - 2013-11-01 00:15 - 00000000 ____D C:\Program Files (x86)\Glary Utilities
2013-11-01 00:10 - 2013-10-15 18:14 - 00000000 ___RD C:\Users\*****\Desktop\Kunst
2013-11-01 00:08 - 2013-09-26 14:08 - 00000000 ___RD C:\Users\*****\Desktop\Links für Wohnung
2013-11-01 00:06 - 2013-11-01 00:05 - 00000000 ___RD C:\Users\*****\Desktop\Uni
2013-10-31 23:53 - 2013-09-07 15:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-31 23:48 - 2013-10-31 23:48 - 40357124 _____ C:\Users\*****\Desktop\Michael Buble - Close Your Eyes.wav
2013-10-31 23:48 - 2013-10-31 23:48 - 00001953 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2013-10-31 23:48 - 2013-10-31 23:48 - 00000000 ____D C:\Users\*****\AppData\Roaming\Canneverbe Limited
2013-10-31 23:48 - 2013-10-31 23:48 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2013-10-31 23:48 - 2013-10-31 23:48 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP
2013-10-31 23:46 - 2013-10-31 23:45 - 00000000 ____D C:\Users\*****\AppData\Roaming\DVDVideoSoft
2013-10-31 23:45 - 2013-10-31 23:45 - 00001536 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2013-10-31 23:45 - 2013-10-31 23:45 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-10-31 23:44 - 2013-10-31 23:44 - 04985608 _____ (Canneverbe Limited                                          ) C:\Users\*****\Downloads\cdbxp_setup_4.5.2.4291_minimal.exe
2013-10-31 23:41 - 2013-10-31 23:41 - 32132232 _____ (DVDVideoSoft Ltd.                                           ) C:\Users\*****\Downloads\FreeYouTubeToMP3Converter3.2.16.1028.exe
2013-10-31 23:33 - 2013-09-07 15:37 - 00000000 ____D C:\Users\*****\AppData\Roaming\Skype
2013-10-31 18:08 - 2013-10-30 22:11 - 00000191 _____ C:\Users\*****\Desktop\Good Lieder.txt
2013-10-31 18:05 - 2013-10-31 18:05 - 00001360 _____ C:\Users\*****\Downloads\banks endof.zip
2013-10-31 15:07 - 2013-10-20 01:51 - 00175097 _____ C:\Windows\IE10_main.log
2013-10-31 14:34 - 2013-10-15 19:17 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000Core.job
2013-10-28 12:43 - 2013-10-15 19:14 - 00001412 _____ C:\Windows\Sandboxie.ini
2013-10-26 16:24 - 2013-09-07 15:37 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-26 16:24 - 2013-09-07 15:37 - 00000000 ____D C:\ProgramData\Skype
2013-10-24 17:21 - 2013-10-24 17:21 - 00000000 ____D C:\Users\*****\Desktop\Neuer Ordner
2013-10-21 19:46 - 2013-10-21 19:46 - 02821402 _____ C:\Users\*****\Desktop\Chemie 21.10.2013.zip
2013-10-21 03:37 - 2009-07-14 05:45 - 00422352 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-20 17:54 - 2013-09-07 14:11 - 00000000 ____D C:\Users\*****\AppData\Local\VirtualStore
2013-10-20 17:36 - 2013-10-20 17:36 - 00114352 _____ (GameRanger Technologies) C:\Users\*****\Downloads\GameRangerSetup.exe
2013-10-20 17:36 - 2013-10-20 17:36 - 00001068 _____ C:\Users\*****\Desktop\GameRanger.lnk
2013-10-20 17:36 - 2013-10-20 17:36 - 00001054 _____ C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2013-10-20 17:36 - 2013-10-20 17:36 - 00000000 ____D C:\Users\*****\AppData\Roaming\GameRanger
2013-10-20 17:32 - 2013-09-07 14:39 - 00110760 _____ C:\Users\*****\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-20 17:27 - 2013-10-20 17:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2013-10-20 12:31 - 2013-10-20 12:31 - 00000000 ____D C:\Users\*****\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2013-10-20 12:31 - 2013-10-20 12:31 - 00000000 ____D C:\Users\*****\AppData\Roaming\chc
2013-10-20 01:00 - 2013-09-07 15:43 - 00000000 ____D C:\ProgramData\Adobe
2013-10-19 20:16 - 2013-09-07 15:13 - 00000000 ____D C:\Users\*****\AppData\Roaming\Adobe
2013-10-19 17:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-19 17:22 - 2013-10-19 17:22 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-10-19 17:22 - 2013-10-19 17:22 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-10-19 17:22 - 2013-10-19 17:22 - 00000000 ____D C:\Program Files\Realtek
2013-10-19 17:22 - 2013-09-07 14:24 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-10-19 17:20 - 2013-10-19 17:20 - 00000000 ____D C:\Windows\SysWOW64\Atheros_L1e
2013-10-19 17:19 - 2013-09-07 14:17 - 00000000 ____D C:\Program Files\Intel
2013-10-19 17:16 - 2013-10-19 15:56 - 00000000 ____D C:\Users\*****\Downloads\Treiber
2013-10-19 16:37 - 2013-10-19 16:37 - 00000000 _____ C:\Windows\setuperr.log
2013-10-19 15:48 - 2013-10-19 15:48 - 00001166 _____ C:\Users\Public\Desktop\TeamViewer 8.lnk
2013-10-19 15:48 - 2013-10-19 15:48 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2013-10-19 15:47 - 2013-10-19 15:47 - 05831344 _____ (TeamViewer GmbH) C:\Users\*****\Downloads\TeamViewer_Setup_de.exe
2013-10-19 15:12 - 2013-10-19 15:12 - 00003498 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-*****-PC-*****
2013-10-18 17:56 - 2013-10-18 17:56 - 00000971 _____ C:\Users\Public\Desktop\Saal - Nur kleine Fotos.lnk
2013-10-18 17:56 - 2013-10-18 17:56 - 00000000 ____D C:\Users\*****\AppData\Roaming\SaalDesignSoftware
2013-10-18 17:56 - 2013-10-18 17:56 - 00000000 ____D C:\Program Files (x86)\SaalDesignSoftware
2013-10-18 17:55 - 2013-10-18 17:55 - 06946488 _____ C:\Users\*****\Downloads\SaalDesignSoftware3.2.18.exe
2013-10-18 13:29 - 2013-10-15 19:17 - 00004084 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000UA
2013-10-18 13:29 - 2013-10-15 19:17 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3887911213-2195480286-3553274884-1000Core
2013-10-17 18:19 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-15 19:17 - 2013-10-15 19:17 - 00739856 _____ (Google Inc.) C:\Users\*****\Downloads\chrome_installer_30.0.1599.66.exe
2013-10-15 19:17 - 2013-10-15 19:17 - 00002362 _____ C:\Users\*****\Desktop\Google Chrome.lnk
2013-10-15 19:17 - 2013-10-15 19:17 - 00000000 ____D C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-15 19:17 - 2013-10-15 19:17 - 00000000 ____D C:\Users\*****\AppData\Local\Google
2013-10-15 19:14 - 2013-10-15 19:14 - 02590808 _____ (Sandboxie Holdings, LLC) C:\Users\*****\Downloads\Sandboxie404Install(1).exe
2013-10-15 19:14 - 2013-10-15 19:14 - 00000000 ____D C:\Program Files\Sandboxie
2013-10-15 19:01 - 2013-09-07 15:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-15 19:01 - 2013-09-07 15:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-15 19:01 - 2013-09-07 15:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-15 19:00 - 2013-09-07 15:10 - 00000000 ____D C:\Users\*****\AppData\Local\Adobe
2013-10-15 18:56 - 2013-10-15 18:56 - 00000000 ___RD C:\Sandbox
2013-10-15 18:23 - 2013-10-15 18:23 - 02590808 _____ (Sandboxie Holdings, LLC) C:\Users\*****\Downloads\Sandboxie404Install.exe
2013-10-15 18:16 - 2013-10-15 18:16 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-10-15 15:09 - 2013-10-15 15:09 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-10-15 15:09 - 2013-10-15 15:09 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-10-15 15:09 - 2013-10-15 15:09 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-10-15 15:09 - 2013-09-07 15:43 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-15 15:05 - 2013-10-15 15:05 - 00001896 _____ C:\Users\Public\Desktop\Adobe Photoshop Elements 10.lnk
2013-10-13 17:39 - 2013-10-13 17:39 - 00000000 ____D C:\Users\*****\AppData\Local\Macromedia
2013-10-12 19:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-10 10:35 - 2013-09-07 14:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-10 10:33 - 2013-09-07 14:24 - 01592864 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-10 10:30 - 2013-09-15 15:42 - 00000000 ____D C:\Windows\system32\MRT
2013-10-10 10:29 - 2013-09-15 15:42 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 08:16 - 2013-10-10 08:16 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\Users\*****\AppData\Roaming\Mozilla
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\Users\*****\AppData\Local\Mozilla
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-10 08:16 - 2013-10-10 08:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-10 08:15 - 2013-10-10 08:15 - 22537616 _____ (Mozilla) C:\Users\*****\Downloads\Firefox_Setup_de24.0.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-31 14:49

==================== End Of Log ============================
         
--- --- ---


Malewarebytes
Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.31.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
***** :: *****-PC [Administrator]

31.10.2013 23:50:35
mbam-log-2013-10-31 (23-50-35).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 340598
Laufzeit: 19 Minute(n), 41 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1
C:\Users\*****\AppData\Local\Temp\is-1PSER.tmp\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
Malewarebytes 2
Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.31.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
***** :: *****-PC [Administrator]

01.11.2013 00:17:54
mbam-log-2013-11-01 (00-17-54).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 340131
Laufzeit: 20 Minute(n), 30 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 2
C:\Users\*****\AppData\Local\Temp\OCS\ocs_v7f.exe (PUP.Optional.DownloadSponsor.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\*****\Downloads\Glary Utilities - CHIP-Downloader.exe (PUP.Optional.DownloadSponsor.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
Mal sehen ob Gamer in den nächsten Post passt (ist sehr groß)
__________________

Alt 01.11.2013, 10:50   #4
MrXxx
 
Windows7 64bit - Seriöse Programme laden Spam herunter? - Standard

Windows7 64bit - Seriöse Programme laden Spam herunter?



Okay,
Gmer muss ich als Anhang posten, weil er 512643 Zeichen enthält und das Forum nur 120000 Zeichen erlaubt.... (krass wieso ist GMER diesmal so lang?)

Vielen Dank!

Alt 01.11.2013, 17:58   #5
schrauber
/// the machine
/// TB-Ausbilder
 

Windows7 64bit - Seriöse Programme laden Spam herunter? - Standard

Windows7 64bit - Seriöse Programme laden Spam herunter?



Hi,

alles gut. MBAm meckert nur den Installer an, weil du dort Toolbars mit installieren könntest. Du hast die abgewählt, also alles gut

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Windows7 64bit - Seriöse Programme laden Spam herunter?
64bit, chip.de, datei, datein, erneute, ernstes, forum, funde, herunter, laden, lieber, loader, löschen, meckert, nichts, plötzlich, profis, programme, schonmal, spam, suche, temporäre, tool, toolbar, wahrscheinlich, windows



Ähnliche Themen: Windows7 64bit - Seriöse Programme laden Spam herunter?


  1. Windows7 unerwünschte Programme SlimCleanerPlus
    Plagegeister aller Art und deren Bekämpfung - 16.07.2015 (11)
  2. Windows7: Fehlermeldung RegSvr32 Fehler beim Laden des Moduls/ Antivir-Programm wird blockiert
    Mülltonne - 16.10.2014 (1)
  3. Laptop läd Programme sehr langsam, Programme-Fehlermeldung (keine Rückmeldung) & im Chrome Seiten laden nicht
    Plagegeister aller Art und deren Bekämpfung - 06.10.2014 (5)
  4. Windows7-64bit, u.a. Trojan.Agent, C:\Windows\SysWOW64\svchosptd.exe
    Log-Analyse und Auswertung - 23.09.2014 (18)
  5. Windows7 64bit, Virus:JS/GFilter.ba, Firefox Startseite Problem
    Log-Analyse und Auswertung - 12.09.2014 (18)
  6. Trojan.ADH.2 unter Windows7-64Bit Log-Analyse fehlgeschlagen wegen NortonAntiVirus
    Log-Analyse und Auswertung - 10.08.2014 (3)
  7. Windows7/64bit: extrem langsam
    Log-Analyse und Auswertung - 15.07.2014 (11)
  8. Windows7 64bit / Avira findet Trojaner TR/Mediyes.Gen6 und TR/Kryptik.avp.20
    Log-Analyse und Auswertung - 28.12.2013 (8)
  9. Programme laden extrem lange
    Plagegeister aller Art und deren Bekämpfung - 05.11.2013 (7)
  10. Trojaner windows7 64bit, 100€Mahnung wegen angeblicher Urheberrechtsverletzung, sperrbildschirm
    Log-Analyse und Auswertung - 09.10.2013 (3)
  11. Programme laden verzögert / Internet sehr langsam
    Log-Analyse und Auswertung - 05.07.2013 (7)
  12. Softwareupdater.ui.exe lädt unerwünscht Programme herunter
    Plagegeister aller Art und deren Bekämpfung - 04.07.2013 (28)
  13. GVU Trojaner auf Windows7 64bit
    Log-Analyse und Auswertung - 17.06.2013 (48)
  14. GVU-Trojaner entfernen Windows7 64bit
    Plagegeister aller Art und deren Bekämpfung - 27.07.2012 (7)
  15. GVU Trojaner mit Webcam - Windows7 Pro. 64bit
    Plagegeister aller Art und deren Bekämpfung - 18.07.2012 (23)
  16. PC fährt nicht herunter,Programme hängen sich auf etc.
    Log-Analyse und Auswertung - 17.10.2010 (60)
  17. Laden Trojaner auch illegale Bilder herunter?
    Plagegeister aller Art und deren Bekämpfung - 27.01.2005 (27)

Zum Thema Windows7 64bit - Seriöse Programme laden Spam herunter? - So. Ich sitze gerade an meinen neuaufgesetzten PC und bin etwas verwundert, habe eben zwei Programme von Chip.de heruntergeladen (Youtubedownloader und Glary tool zum Temporäre Datein löschen), peinlichst darauf geachtet - Windows7 64bit - Seriöse Programme laden Spam herunter?...
Archiv
Du betrachtest: Windows7 64bit - Seriöse Programme laden Spam herunter? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.