Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich

Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich


Log-Analyse und Auswertung: Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 08.12.2013, 14:40   #1
raclawa
 
Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich - Standard

Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich


Hallo Schrauber,

vielen Dank übrigens für Deine Mühe!!!

Hier das Ergebnis von Farbar's Recovery Scan Tool:



FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-12-2013 01
Ran by SYSTEM on MININT-JANER11 on 08-12-2013 14:15:57
Running from H:\
Windows 7 Home Premium (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2009-10-02] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7703072 2009-08-04] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] - C:\Program Files\Logitech\Gaming Software\LWEMon.exe [153672 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [ApnUpdater] - C:\Program Files\Ask.com\Updater\Updater.exe [1398440 2011-12-14] (Ask)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [718688 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5ServiceManager] - C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
HKLM\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.)
HKU\Default\...\RunOnce: [HKCU] - C:\Windows\System32\oobe\info\HKCU.vbs [ 2009-11-12] ()
HKU\Default\...\RunOnce: [Screensaver] - C:\Windows\Web\Wallpaper\MEDION\start.vbs [ 2009-10-23] ()
HKU\Default User\...\RunOnce: [HKCU] - C:\Windows\System32\oobe\info\HKCU.vbs [ 2009-11-12] ()
HKU\Default User\...\RunOnce: [Screensaver] - C:\Windows\Web\Wallpaper\MEDION\start.vbs [ 2009-10-23] ()
HKU\marvin walter\...\Run: [Steam] - C:\Program Files\Steam\Steam.exe [ 2013-12-04] (Valve Corporation)
HKU\marvin walter\...\Run: [EADM] - C:\Program Files\Origin\Origin.exe [ 2013-11-23] (Electronic Arts)
HKU\marvin walter\...\Run: [Clownfish] - C:\Program Files\Clownfish\Clownfish.exe [ 2013-07-02] (Bogdan Sharkov)
HKU\marvin walter\...\Run: [Google Update] - C:\Users\marvin walter\AppData\Local\Google\Update\GoogleUpdate.exe [ 2011-10-10] (Google Inc.)
HKU\UpdatusUser\...\RunOnce: [HKCU] - C:\Windows\System32\oobe\info\HKCU.vbs [ 2009-11-12] ()
HKU\UpdatusUser\...\RunOnce: [Screensaver] - C:\Windows\Web\Wallpaper\MEDION\start.vbs [ 2009-10-23] ()
AppInit_DLLs: C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [ 2013-07-27] (NVIDIA Corporation)
Startup: C:\Users\marvin walter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk ->  (No File)
Startup: C:\Users\marvin walter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
ShortcutTarget: GamersFirst LIVE!.lnk ->  (No File)
Startup: C:\Users\marvin walter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()

========================== Services (Whitelisted) =================

S2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
S2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [395416 2012-07-23] (BlueStack Systems, Inc.)
S2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [383128 2012-07-23] (BlueStack Systems, Inc.)
S2 Fabs; C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG)
S2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
S3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
S3 FirebirdServerMAGIXInstance; C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®)
S2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1664336 2013-11-29] (LogMeIn Inc.)
S2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1156400 2013-04-07] ()
S2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [375056 2013-10-11] (LogMeIn, Inc.)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14592288 2013-07-27] (NVIDIA Corporation)
S4 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] ()
S2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1528672 2012-05-29] (TuneUp Software)
S2 Web Assistant; C:\Program Files\Web Assistant\ExtensionUpdaterService.exe [188760 2013-01-29] ()
S2 NitroReaderDriverReadSpool3; 

==================== Drivers (Whitelisted) ====================

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [46976 2009-07-14] (Microsoft Corporation)
S1 9094670drv; C:\Windows\System32\DRIVERS\9094670drv.sys [489048 2013-12-03] ()
S2 acedrv11; C:\Windows\system32\drivers\acedrv11.sys [185472 2010-02-24] (Protect Software GmbH)
S2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [64664 2012-07-23] (BlueStack Systems)
S3 FCA202AudioSrv; C:\Windows\System32\drivers\fca202.sys [125184 2008-10-27] (Behringer)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-10-10] (Kaspersky Lab ZAO)
S1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [595552 2013-12-05] (Kaspersky Lab ZAO)
S1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [24408 2012-08-02] (Kaspersky Lab ZAO)
S3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
S3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
S1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-07-08] (Kaspersky Lab ZAO)
S1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-26] (Kaspersky Lab ZAO)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34592 2013-05-14] (NVIDIA Corporation)
S3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2012-02-01] (TuneUp Software)
S3 WmBEnum; C:\Windows\System32\drivers\WmBEnum.sys [22856 2010-04-27] (Logitech Inc.)
S3 WmFilter; C:\Windows\System32\drivers\WmFilter.sys [37704 2010-04-27] (Logitech Inc.)
S3 WmHidLo; C:\Windows\System32\drivers\WmHidLo.sys [31816 2010-04-27] (Logitech Inc.)
S3 WmVirHid; C:\Windows\System32\drivers\WmVirHid.sys [15048 2010-04-27] (Logitech Inc.)
S3 WmXlCore; C:\Windows\System32\drivers\WmXlCore.sys [66632 2010-04-27] (Logitech Inc.)
S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [465408 2009-07-14] (Microsoft Corporation)
S5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-12-05] (Kaspersky Lab ZAO)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-08 14:14 - 2013-12-08 14:14 - 00000000 ____D C:\FRST
2013-12-08 01:55 - 2013-12-08 02:54 - 00043434 _____ C:\Extras.Txt
2013-12-08 01:55 - 2013-12-08 02:53 - 00151992 _____ C:\OTL.Txt
2013-12-07 10:47 - 2013-12-07 16:29 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-12-06 18:11 - 2013-12-06 18:12 - 00000000 ____D C:\Windows\LastGood
2013-12-06 18:02 - 2013-12-06 18:02 - 00262144 _____ C:\Windows\System32\config\elam
2013-12-05 18:32 - 2013-12-05 18:38 - 00595552 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\klif.sys
2013-12-05 18:32 - 2013-12-05 18:38 - 00074848 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\klflt.sys
2013-12-04 15:32 - 2013-12-04 15:32 - 05886237 _____ C:\Users\marvin walter\Downloads\BukkitForge-1.5.2-301.jar
2013-12-04 15:26 - 2013-12-04 15:27 - 32299870 _____ C:\Users\marvin walter\Downloads\mcpc-plus-1.5.2-R1.1-forge738-B652.jar
2013-12-04 15:20 - 2013-12-04 15:20 - 00000753 _____ C:\Users\marvin walter\Downloads\startbat.rar
2013-12-04 15:07 - 2013-12-04 15:09 - 48168194 _____ C:\Users\marvin walter\Downloads\Hexxit_Server_v1.0.10.zip
2013-12-04 12:58 - 2013-12-04 12:58 - 00000000 ____D C:\Program Files\LogMeIn Hamachi
2013-12-03 15:33 - 2013-12-03 15:33 - 00550993 _____ C:\Users\marvin walter\Downloads\Tanki Online Crystal Hack v2.0.rar
2013-12-03 15:05 - 2013-12-03 15:06 - 00168912 _____ C:\Windows\Minidump\120313-20498-01.dmp
2013-12-03 15:05 - 2013-12-03 15:05 - 417734393 _____ C:\Windows\MEMORY.DMP
2013-12-03 15:04 - 2013-12-03 15:34 - 00489048 _____ C:\Windows\System32\Drivers\9094670drv.sys
2013-12-03 14:11 - 2013-12-03 14:11 - 00000414 _____ C:\Windows\PFRO.log
2013-12-03 14:00 - 2013-12-03 15:01 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2013-12-03 13:21 - 2013-12-06 18:12 - 00002007 _____ C:\Windows\setupact.log
2013-12-03 13:21 - 2013-12-03 13:21 - 00000000 _____ C:\Windows\setuperr.log
2013-12-02 18:06 - 2013-12-02 18:06 - 00000000 ____D C:\Users\marvin walter\AppData\Local\WinZip
2013-12-02 16:01 - 2013-12-02 16:04 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\Windows Net Data
2013-12-02 15:46 - 2013-12-02 16:01 - 00000000 ____D C:\Users\marvin walter\AppData\Local\DownloadGuide
2013-12-02 15:45 - 2013-12-02 15:46 - 00567144 _____ C:\Users\marvin walter\Downloads\shoppinglist-Downloader.exe
2013-11-30 13:00 - 2013-11-30 13:00 - 00000000 ____D C:\Users\marvin walter\AppData\Local\Babylon
2013-11-29 15:29 - 2013-11-29 15:29 - 00076907 _____ C:\Users\marvin walter\Downloads\APB G1C Hack - Updated!(2).zip
2013-11-26 16:59 - 2013-11-26 16:59 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-11-25 13:46 - 2013-12-03 13:21 - 00000000 ____D C:\ProgramData\McAfee
2013-11-25 13:46 - 2013-11-25 13:46 - 00000000 ____D C:\Program Files\GamersFirst
2013-11-25 13:45 - 2013-11-25 13:45 - 00000000 ____D C:\Program Files\Better-Surf
2013-11-24 19:12 - 2013-12-05 16:26 - 00000459 _____ C:\Users\marvin walter\Desktop\pgbot.settings
2013-11-24 19:12 - 2013-11-24 19:12 - 00000000 ____D C:\Users\marvin walter\AppData\Local\PC_Jones
2013-11-24 17:43 - 2013-11-25 14:00 - 00000000 ____D C:\Users\marvin walter\AppData\Local\GamersFirst LIVE!
2013-11-24 17:42 - 2013-11-24 17:42 - 00000000 ____D C:\Users\marvin walter\AppData\Local\GamersFirst
2013-11-24 17:41 - 2013-11-24 17:42 - 12844984 _____ (GamersFirst) C:\Users\marvin walter\Downloads\GamersFirst_LIVE!_Setup_EN.exe
2013-11-24 12:23 - 2013-11-24 12:23 - 00691712 _____ (PC Jones) C:\Users\marvin walter\Desktop\Pennergame Bot by PC Jones.exe
2013-11-24 12:22 - 2013-11-24 12:22 - 00197387 _____ C:\Users\marvin walter\Downloads\Pennergame Bot by PC Jones.zip
2013-11-23 14:23 - 2013-11-23 14:23 - 17142784 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 11220992 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 04240384 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-11-23 14:23 - 2013-11-23 14:23 - 02166272 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 01926656 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-11-23 14:23 - 2013-11-23 14:23 - 01818112 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 01156608 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 01051136 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00703488 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00646144 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00645120 _____ (Microsoft Corporation) C:\Windows\System32\jsIntl.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00616104 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-11-23 14:23 - 2013-11-23 14:23 - 00610304 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00553472 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00523776 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00454656 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00440832 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00367104 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00337408 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-11-23 14:23 - 2013-11-23 14:23 - 00244736 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00238288 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00233472 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00208896 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00208384 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00194048 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00182272 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00164864 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00151552 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00127488 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00116736 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00108032 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00086016 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00083456 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00071680 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00069632 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00069120 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00062464 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-11-23 14:23 - 2013-11-23 14:23 - 00061952 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00061952 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00056832 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00043008 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00043008 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00036352 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00034816 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00032768 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00024576 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00012800 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2013-11-13 16:44 - 2013-11-13 16:44 - 00000000 ____D C:\Program Files\Adobe Media Player
2013-11-13 15:51 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\System32\SmartcardCredentialProvider.dll
2013-11-13 15:51 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\System32\authui.dll
2013-11-13 15:51 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\System32\credui.dll
2013-11-13 15:50 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2013-11-13 15:50 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2013-11-13 15:50 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2013-11-13 15:50 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2013-11-13 15:50 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\System32\secur32.dll
2013-11-13 15:50 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2013-11-13 15:50 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2013-11-13 15:50 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\System32\lsass.exe
2013-11-13 15:50 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
2013-11-13 15:50 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2013-11-13 15:49 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\System32\nshwfp.dll
2013-11-13 15:49 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\System32\IKEEXT.DLL
2013-11-13 15:49 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\System32\FWPUCLNT.DLL
2013-11-13 15:49 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-11-13 15:49 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2013-11-08 13:06 - 2013-11-24 16:03 - 00000000 ____D C:\ProgramData\firebird
2013-11-08 13:06 - 2013-11-08 13:06 - 00000000 ____D C:\Users\marvin walter\AppData\Local\SpacialAudio
2013-11-08 13:04 - 2013-11-08 13:04 - 00000000 ____D C:\Program Files\Firebird
2013-11-08 13:04 - 2010-09-17 11:13 - 00548864 _____ (Firebird Project) C:\Windows\System32\GDS32.DLL
2013-11-08 13:03 - 2013-11-08 13:03 - 00001982 _____ C:\Users\marvin walter\Desktop\SAM Broadcaster.lnk
2013-11-08 13:03 - 2013-11-08 13:03 - 00000000 ____D C:\Program Files\SpacialAudio
2013-11-08 12:55 - 2012-01-22 13:30 - 00000000 ____D C:\Users\marvin walter\Downloads\SAM Broadcaster

==================== One Month Modified Files and Folders =======

2013-12-08 14:14 - 2013-12-08 14:14 - 00000000 ____D C:\FRST
2013-12-08 02:54 - 2013-12-08 01:55 - 00043434 _____ C:\Extras.Txt
2013-12-08 02:53 - 2013-12-08 01:55 - 00151992 _____ C:\OTL.Txt
2013-12-08 01:49 - 2011-10-10 10:48 - 00000000 ____D C:\users\marvin walter
2013-12-07 16:29 - 2013-12-07 10:47 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-12-07 09:26 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\System32\LogFiles
2013-12-06 18:12 - 2013-12-06 18:11 - 00000000 ____D C:\Windows\LastGood
2013-12-06 18:12 - 2013-12-03 13:21 - 00002007 _____ C:\Windows\setupact.log
2013-12-06 18:12 - 2012-12-27 16:31 - 00000000 ____D C:\Program Files\Origin
2013-12-06 18:12 - 2012-12-06 17:54 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-06 18:12 - 2012-09-10 15:15 - 00000000 ____D C:\Program Files\Steam
2013-12-06 18:12 - 2011-10-17 17:17 - 00000000 ____D C:\Users\marvin walter\AppData\Local\LogMeIn Hamachi
2013-12-06 18:11 - 2010-01-11 13:54 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-06 18:10 - 2012-01-02 15:07 - 01457504 _____ C:\Windows\WindowsUpdate.log
2013-12-06 18:02 - 2013-12-06 18:02 - 00262144 _____ C:\Windows\System32\config\elam
2013-12-06 16:21 - 2013-08-26 14:35 - 00000000 ____D C:\Users\marvin walter\Desktop\Restliche JPG & PNG
2013-12-06 16:21 - 2011-12-24 12:53 - 00000000 ____D C:\Users\marvin walter\Desktop\Rest
2013-12-06 15:34 - 2013-05-30 16:01 - 00000000 ____D C:\Users\marvin walter\Desktop\FTB
2013-12-06 14:17 - 2009-07-14 05:34 - 00018784 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-06 14:17 - 2009-07-14 05:34 - 00018784 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-05 18:38 - 2013-12-05 18:32 - 00595552 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\klif.sys
2013-12-05 18:38 - 2013-12-05 18:32 - 00074848 _____ (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\klflt.sys
2013-12-05 18:15 - 2013-09-06 12:51 - 00000076 _____ C:\Users\marvin walter\Desktop\More Klicks-Vorlage.txt
2013-12-05 16:26 - 2013-11-24 19:12 - 00000459 _____ C:\Users\marvin walter\Desktop\pgbot.settings
2013-12-05 15:29 - 2012-09-10 15:15 - 00000000 ____D C:\Program Files\Common Files\Steam
2013-12-04 20:14 - 2009-11-16 12:14 - 00000000 ____D C:\Program Files\Adobe
2013-12-04 19:22 - 2013-08-31 12:59 - 00000275 _____ C:\Users\marvin walter\Desktop\Notizen.txt
2013-12-04 16:02 - 2012-03-19 12:43 - 00000000 ____D C:\Users\marvin walter\AppData\Local\Windows Live
2013-12-04 16:01 - 2011-10-10 14:20 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\Audacity
2013-12-04 15:32 - 2013-12-04 15:32 - 05886237 _____ C:\Users\marvin walter\Downloads\BukkitForge-1.5.2-301.jar
2013-12-04 15:27 - 2013-12-04 15:26 - 32299870 _____ C:\Users\marvin walter\Downloads\mcpc-plus-1.5.2-R1.1-forge738-B652.jar
2013-12-04 15:20 - 2013-12-04 15:20 - 00000753 _____ C:\Users\marvin walter\Downloads\startbat.rar
2013-12-04 15:18 - 2009-11-16 12:38 - 00000000 ____D C:\Program Files\Java
2013-12-04 15:09 - 2013-12-04 15:07 - 48168194 _____ C:\Users\marvin walter\Downloads\Hexxit_Server_v1.0.10.zip
2013-12-04 12:58 - 2013-12-04 12:58 - 00000000 ____D C:\Program Files\LogMeIn Hamachi
2013-12-04 12:58 - 2012-11-28 14:19 - 00000900 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-12-03 15:34 - 2013-12-03 15:04 - 00489048 _____ C:\Windows\System32\Drivers\9094670drv.sys
2013-12-03 15:33 - 2013-12-03 15:33 - 00550993 _____ C:\Users\marvin walter\Downloads\Tanki Online Crystal Hack v2.0.rar
2013-12-03 15:06 - 2013-12-03 15:05 - 00168912 _____ C:\Windows\Minidump\120313-20498-01.dmp
2013-12-03 15:05 - 2013-12-03 15:05 - 417734393 _____ C:\Windows\MEMORY.DMP
2013-12-03 15:05 - 2013-07-08 12:20 - 00000000 ____D C:\Windows\Minidump
2013-12-03 15:01 - 2013-12-03 14:00 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2013-12-03 14:11 - 2013-12-03 14:11 - 00000414 _____ C:\Windows\PFRO.log
2013-12-03 13:21 - 2013-12-03 13:21 - 00000000 _____ C:\Windows\setuperr.log
2013-12-03 13:21 - 2013-11-25 13:46 - 00000000 ____D C:\ProgramData\McAfee
2013-12-02 18:06 - 2013-12-02 18:06 - 00000000 ____D C:\Users\marvin walter\AppData\Local\WinZip
2013-12-02 17:39 - 2011-10-10 11:55 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\Skype
2013-12-02 16:04 - 2013-12-02 16:01 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\Windows Net Data
2013-12-02 16:01 - 2013-12-02 15:46 - 00000000 ____D C:\Users\marvin walter\AppData\Local\DownloadGuide
2013-12-02 15:46 - 2013-12-02 15:45 - 00567144 _____ C:\Users\marvin walter\Downloads\shoppinglist-Downloader.exe
2013-11-30 13:00 - 2013-11-30 13:00 - 00000000 ____D C:\Users\marvin walter\AppData\Local\Babylon
2013-11-30 12:53 - 2012-12-27 16:59 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\Origin
2013-11-29 16:14 - 2013-10-13 14:25 - 00290776 _____ C:\Windows\System32\PnkBstrB.xtr
2013-11-29 15:57 - 2013-10-13 14:12 - 00281288 _____ C:\Windows\System32\PnkBstrB.ex0
2013-11-29 15:29 - 2013-11-29 15:29 - 00076907 _____ C:\Users\marvin walter\Downloads\APB G1C Hack - Updated!(2).zip
2013-11-28 17:33 - 2012-03-13 17:18 - 00000000 ____D C:\Users\marvin walter\Documents\Camtasia Studio
2013-11-27 15:23 - 2009-11-16 12:14 - 00000000 ____D C:\ProgramData\Adobe
2013-11-26 20:00 - 2012-11-24 14:46 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\vlc
2013-11-26 16:59 - 2013-11-26 16:59 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-11-26 16:59 - 2011-10-10 11:19 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\Adobe
2013-11-26 16:01 - 2009-11-16 19:39 - 00000000 ____D C:\Windows\Panther
2013-11-25 14:10 - 2013-10-13 14:12 - 00138904 _____ C:\Users\marvin walter\AppData\Roaming\PnkBstrK.sys
2013-11-25 14:00 - 2013-11-24 17:43 - 00000000 ____D C:\Users\marvin walter\AppData\Local\GamersFirst LIVE!
2013-11-25 13:46 - 2013-11-25 13:46 - 00000000 ____D C:\Program Files\GamersFirst
2013-11-25 13:46 - 2013-06-19 15:50 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\OpenCandy
2013-11-25 13:45 - 2013-11-25 13:45 - 00000000 ____D C:\Program Files\Better-Surf
2013-11-24 19:12 - 2013-11-24 19:12 - 00000000 ____D C:\Users\marvin walter\AppData\Local\PC_Jones
2013-11-24 17:42 - 2013-11-24 17:42 - 00000000 ____D C:\Users\marvin walter\AppData\Local\GamersFirst
2013-11-24 17:42 - 2013-11-24 17:41 - 12844984 _____ (GamersFirst) C:\Users\marvin walter\Downloads\GamersFirst_LIVE!_Setup_EN.exe
2013-11-24 17:09 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-11-24 16:27 - 2013-09-26 12:51 - 00000000 ____D C:\Users\marvin walter\Documents\FIFA 14
2013-11-24 16:03 - 2013-11-08 13:06 - 00000000 ____D C:\ProgramData\firebird
2013-11-24 12:23 - 2013-11-24 12:23 - 00691712 _____ (PC Jones) C:\Users\marvin walter\Desktop\Pennergame Bot by PC Jones.exe
2013-11-24 12:22 - 2013-11-24 12:22 - 00197387 _____ C:\Users\marvin walter\Downloads\Pennergame Bot by PC Jones.zip
2013-11-24 11:42 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\System32\de-DE
2013-11-23 14:23 - 2013-11-23 14:23 - 17142784 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 11220992 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 04240384 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-11-23 14:23 - 2013-11-23 14:23 - 02166272 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 01926656 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-11-23 14:23 - 2013-11-23 14:23 - 01818112 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 01156608 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 01051136 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00703488 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00646144 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00645120 _____ (Microsoft Corporation) C:\Windows\System32\jsIntl.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00616104 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-11-23 14:23 - 2013-11-23 14:23 - 00610304 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00553472 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00523776 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00454656 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00440832 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00367104 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00337408 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-11-23 14:23 - 2013-11-23 14:23 - 00244736 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00238288 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00233472 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00208896 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00208384 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00194048 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00182272 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00164864 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00151552 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00127488 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00116736 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00108032 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00086016 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00083456 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00071680 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00069632 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00069120 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00062464 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-11-23 14:23 - 2013-11-23 14:23 - 00061952 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00061952 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00056832 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00043008 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00043008 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00036352 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00034816 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00032768 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00024576 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-11-23 14:23 - 2013-11-23 14:23 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00012800 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-11-23 14:23 - 2013-11-23 14:23 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2013-11-23 09:57 - 2013-07-16 14:38 - 00000000 ____D C:\Users\marvin walter\AppData\Roaming\.minecraft
2013-11-23 09:42 - 2009-11-16 10:59 - 01613340 _____ C:\Windows\System32\PerfStringBackup.INI
2013-11-14 15:16 - 2011-11-12 17:04 - 00000000 ____D C:\Users\marvin walter\AppData\Local\Adobe
2013-11-14 15:14 - 2009-07-14 05:33 - 03806896 _____ C:\Windows\System32\FNTCACHE.DAT
2013-11-13 19:54 - 2009-11-16 12:26 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 19:53 - 2013-08-15 17:07 - 00000000 ____D C:\Windows\System32\MRT
2013-11-13 19:51 - 2009-11-16 11:03 - 80340640 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-11-13 16:49 - 2011-10-10 10:49 - 00133520 _____ C:\Users\marvin walter\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-13 16:45 - 2009-11-16 12:14 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-11-13 16:44 - 2013-11-13 16:44 - 00000000 ____D C:\Program Files\Adobe Media Player
2013-11-11 05:50 - 2009-11-16 11:03 - 00230048 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2013-11-08 13:06 - 2013-11-08 13:06 - 00000000 ____D C:\Users\marvin walter\AppData\Local\SpacialAudio
2013-11-08 13:04 - 2013-11-08 13:04 - 00000000 ____D C:\Program Files\Firebird
2013-11-08 13:03 - 2013-11-08 13:03 - 00001982 _____ C:\Users\marvin walter\Desktop\SAM Broadcaster.lnk
2013-11-08 13:03 - 2013-11-08 13:03 - 00000000 ____D C:\Program Files\SpacialAudio
2013-11-08 12:55 - 2013-11-07 19:23 - 50198750 _____ C:\Users\marvin walter\Downloads\SAM Broadcaster.rar
2013-11-08 12:34 - 2012-02-03 15:51 - 00000000 ____D C:\Program Files\JDownloader

Some content of TEMP:
====================
C:\Users\marvin walter\AppData\Local\Temp\autorun.dll
C:\Users\marvin walter\AppData\Local\Temp\jansi-32-git-MCPC-Plus-jenkins-MCPC-Plus-Legacy-652.dll


==================== Known DLLs (Whitelisted) ============


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================


==================== Memory info =========================== 

Percentage of memory in use: 13%
Total physical RAM: 4023.12 MB
Available physical RAM: 3496.93 MB
Total Pagefile: 4021.39 MB
Available Pagefile: 3508.15 MB
Total Virtual: 2047.88 MB
Available Virtual: 1937.98 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:910.41 GB) (Free:712.27 GB) NTFS
Drive e: (Recover) (Fixed) (Total:20 GB) (Free:11.69 GB) NTFS
Drive h: (STICK) (Removable) (Total:1.95 GB) (Free:0.92 GB) FAT
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 8D9E96FE)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=910 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1 GB) - (Type=12)

========================================================
Disk: 1 (Size: 2 GB) (Disk ID: 91F72D24)
Partition 1: (Active) - (Size=2 GB) - (Type=06)


LastRegBack: 2013-11-30 10:28

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

Hallo Schrauber,

kurze Nebenfrage: In einem anderen Thread habe ich gelesen, dass du (oder ein Kollege) generell folgende Programme NICHT empfiehlst bzw. davon abrätst: ccleaner, TuneUp etc. Warum eigentlich?

GLG raclawa

Antwort

Themen zu Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich
booten, desinfektion, desinfizieren, erstell, erstellt, hoffe, ide, inter, interne, internet, internet security, kaspersky, kein booten, logfiles, nicht mehr, nichts, otlpe, programm, schädliches, security, selbständig, stehe, upgrade, windows, windows 7


« Plugin Start! Poppt auf, nach wh. Spam-Mail | Troj/ZbotMem-B fund von Sophos, manuelle Reinigung erforderlich / Windows 7 »


Ähnliche Themen: Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich


  1. Nach Neustart von Windows 7 keine Aktionen (Maus+Tastatur) mehr möglich! Allerdings kein Freeze!
    Plagegeister aller Art und deren Bekämpfung - 04.06.2014 (5)
  2. Es werden keine Windows-DVDs mehr gelesen/ kein Booten möglich
    Alles rund um Windows - 23.04.2014 (4)
  3. GVU Trojaner bei Windows 7, kein booten mehr möglich
    Log-Analyse und Auswertung - 20.11.2013 (9)
  4. Antivirenprogramm findet 18 Viren - nach Upgrade des Programms wird jedoch kein Virus mehr gefunden
    Plagegeister aller Art und deren Bekämpfung - 10.10.2013 (13)
  5. nach Interpol Virus kein starten mehr möglich
    Plagegeister aller Art und deren Bekämpfung - 02.09.2013 (9)
  6. Kaspersky 2014: mehr Schutz, mehr Soziales
    Nachrichten - 27.08.2013 (0)
  7. Kein Boot mehr möglich nach GVU Sperrbildschirm
    Plagegeister aller Art und deren Bekämpfung - 22.08.2013 (3)
  8. Bundestrojaner mit Aufforderung 100 Euro zu zahlen, kein booten mehr möglich
    Plagegeister aller Art und deren Bekämpfung - 24.05.2013 (13)
  9. Keine Anmeldung bei Windows mehr möglich. Passwort feld fehlt. Kein Internet mehr. Kein Admin mehr.
    Plagegeister aller Art und deren Bekämpfung - 15.02.2012 (5)
  10. WinXP_nach Bootvirusscan kein Booten mehr möglich
    Plagegeister aller Art und deren Bekämpfung - 11.01.2012 (2)
  11. Verdacht auf Virus/Malware nach Upgrade auf Windows 7 Kaspersky Untersuchung bleibt hängen!
    Plagegeister aller Art und deren Bekämpfung - 05.04.2011 (3)
  12. Kein booten mehr möglich. Ohne Fehlermeldung.
    Alles rund um Windows - 28.10.2010 (9)
  13. Kein Booten von XP (CD, HD, DISK) möglich
    Plagegeister aller Art und deren Bekämpfung - 06.10.2010 (10)
  14. Nach Virus löschen kein Doppelklick mehr möglich Windows findes Skript dat nicht.
    Plagegeister aller Art und deren Bekämpfung - 26.02.2010 (3)
  15. Kein booten von xp nach installation von sp3 möglich!
    Alles rund um Windows - 01.05.2008 (17)
  16. Desinfektion von Trojaner mit Kaspersky nicht möglich. Was soll ich tun=
    Antiviren-, Firewall- und andere Schutzprogramme - 27.06.2007 (1)
  17. kein booten von CD möglich...
    Alles rund um Windows - 30.01.2005 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich - Hallo Schrauber, vielen Dank übrigens für Deine Mühe!!! Hier das Ergebnis von Farbar's Recovery Scan Tool: FRST Logfile: FRST Logfile: FRST Logfile: Code: Alles auswählen Aufklappen ATTFilter Scan result of - Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich...
Archiv
Du betrachtest: Windows 7 / nach Kaspersky 2014 upgrade und anschl. Desinfektion kein Booten mehr möglich auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131