Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Interpol Virus - FRST.exe

Interpol Virus - FRST.exe


Plagegeister aller Art und deren Bekämpfung: Interpol Virus - FRST.exe

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 18.03.2014, 12:16   #1
VonDrecken
 
Interpol Virus - FRST.exe - Standard

Interpol Virus - FRST.exe


Hallo!

Hab mir den Interpol Virus eingefangen.
Hab mich durch das Forum geklickt und nach euren Anweisungen den FRST Scan durchgeführt.
Anbei die FRST.txt Datei. Bitte um Unterstützung.

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by SYSTEM on MININT-5F0G2E1 on 18-03-2014 12:02:50
Running from I:\
Windows 7 Home Premium (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Recovery

The current controlset is ControlSet002
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.


The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2480936 2010-12-16] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-04-01] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [HPConnectionManager] - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [94264 2011-02-15] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336 2010-02-02] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2011-01-25] (cyberlink)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [586296 2010-11-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Photo Downloader] - C:\Program Files (x86)\Adobe\Adobe Photoshop Lightroom 1.1\apdproxy.exe [61440 2007-06-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2539544 2014-03-02] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1564872 2012-06-06] (Ask)
HKLM-x32\...\Run: [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [UIExec] - C:\Program Files (x86)\tele.ring Internet Manager\UIExec.exe [132608 2009-07-27] ()
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-20] (Apple Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-03-11] (Hewlett-Packard)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
Startup: C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\8zwlvwlmqa.lnk
ShortcutTarget: 8zwlvwlmqa.lnk -> C:\ProgramData\aqmlwvlwz8.cpp ()
Startup: C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
ShortcutTarget: Facebook Messenger.lnk ->  (No File)
Startup: C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 3520 series (Netzwerk).lnk -> C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Services (Whitelisted) =================

S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-04-01] (Advanced Micro Devices, Inc.)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2011-01-25] (CyberLink)
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [339456 2010-11-16] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-15] (McAfee, Inc.)
S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [218624 2012-01-01] ()
S2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [130008 2011-04-16] (Symantec Corporation)
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2143072 2012-05-29] (TuneUp Software)
S2 UI Assistant Service; C:\Program Files (x86)\tele.ring Internet Manager\AssistantServices.exe [241664 2009-07-27] ()
S2 vToolbarUpdater18.0.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe [1759768 2014-03-02] (AVG Secure Search)
S3 Winmgmt; C:\ProgramData\8zwlvwlmqa.zvv [332536 2014-03-17] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-03-02] (AVG Technologies)
S1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20121130.005\BHDrvx64.sys [1384608 2012-10-23] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2012-08-09] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2012-08-09] (Symantec Corporation)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [256000 2012-01-01] (Huawei Technologies Co., Ltd.)
S1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20121221.001\IDSvia64.sys [513184 2012-11-02] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20121222.025\ENG64.SYS [126112 2012-11-06] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20121222.025\EX64.SYS [2084000 2012-11-06] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [744568 2011-03-30] (Symantec Corporation)
S1 SRTSPX; C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [40568 2011-03-30] (Symantec Corporation)
S0 SymDS; C:\Windows\System32\drivers\NISx64\1207020.003\SYMDS64.SYS [450680 2011-01-26] (Symantec Corporation)
S0 SymEFA; C:\Windows\System32\drivers\NISx64\1207020.003\SYMEFA64.SYS [912504 2011-03-14] (Symantec Corporation)
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2011-12-25] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [171128 2011-01-26] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [386168 2011-04-20] (Symantec Corporation)
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2012-03-29] (TuneUp Software)
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-19] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-19] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-19] (LG Electronics Inc.)
S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-18 12:02 - 2014-03-18 12:02 - 00000000 ____D () C:\FRST
2014-03-17 08:50 - 2014-03-17 08:50 - 00332536 ____T (Microsoft Corporation) C:\ProgramData\8zwlvwlmqa.zvv
2014-03-17 08:49 - 2014-03-17 13:57 - 95027928 ____T () C:\ProgramData\8zwlvwlmqa.fee
2014-03-17 08:49 - 2014-03-17 08:49 - 00114688 _____ () C:\ProgramData\aqmlwvlwz8.cpp
2014-03-16 06:05 - 2014-03-16 06:06 - 00000145 _____ () C:\Users\Raphael\Desktop\To-Do-Liste.txt
2014-03-16 05:09 - 2014-03-16 09:05 - 00000000 ____D () C:\Users\Raphael\Desktop\Personalentwicklung
2014-03-12 11:56 - 2014-03-12 11:56 - 00001745 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-03-12 11:54 - 2014-03-12 11:56 - 00000000 ____D () C:\Program Files\iTunes
2014-03-12 11:54 - 2014-03-12 11:54 - 00000000 ____D () C:\Program Files\iPod
2014-03-12 11:48 - 2014-03-12 11:48 - 00001807 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-03-12 11:47 - 2014-03-12 11:48 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-03-12 10:09 - 2014-02-28 22:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-03-12 10:09 - 2014-02-28 21:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2014-03-12 10:09 - 2014-02-28 21:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2014-03-12 10:09 - 2014-02-28 20:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-03-12 10:09 - 2014-02-28 20:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2014-03-12 10:09 - 2014-02-28 20:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2014-03-12 10:09 - 2014-02-28 20:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2014-03-12 10:09 - 2014-02-28 20:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2014-03-12 10:09 - 2014-02-28 20:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2014-03-12 10:09 - 2014-02-28 20:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2014-03-12 10:09 - 2014-02-28 20:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2014-03-12 10:09 - 2014-02-28 20:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2014-03-12 10:09 - 2014-02-28 20:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-12 10:09 - 2014-02-28 20:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2014-03-12 10:09 - 2014-02-28 20:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2014-03-12 10:09 - 2014-02-28 20:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-12 10:09 - 2014-02-28 20:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2014-03-12 10:09 - 2014-02-28 19:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2014-03-12 10:09 - 2014-02-28 19:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-12 10:09 - 2014-02-28 19:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-12 10:09 - 2014-02-28 19:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-12 10:09 - 2014-02-28 19:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-12 10:09 - 2014-02-28 19:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-12 10:09 - 2014-02-28 19:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-03-12 10:09 - 2014-02-28 19:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-12 10:09 - 2014-02-28 19:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-12 10:09 - 2014-02-28 19:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-12 10:09 - 2014-02-28 19:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2014-03-12 10:09 - 2014-02-28 19:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-03-12 10:09 - 2014-02-28 19:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-12 10:09 - 2014-02-28 19:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-12 10:09 - 2014-02-28 19:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-03-12 10:09 - 2014-02-28 19:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-12 10:09 - 2014-02-28 19:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-12 10:09 - 2014-02-28 18:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-12 10:09 - 2014-02-28 18:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-03-12 10:09 - 2014-02-28 18:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-12 10:09 - 2014-02-28 18:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-12 10:09 - 2014-02-28 18:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2014-03-12 10:09 - 2014-02-28 18:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-12 10:09 - 2014-02-06 17:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2014-03-12 10:09 - 2014-02-03 18:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2014-03-12 10:09 - 2014-02-03 18:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\System32\qedit.dll
2014-03-12 10:09 - 2014-02-03 18:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-12 10:09 - 2014-02-03 18:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-12 10:09 - 2014-01-28 18:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\System32\wer.dll
2014-03-12 10:09 - 2014-01-28 18:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-12 10:09 - 2014-01-27 18:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\System32\wwansvc.dll
2014-03-11 03:09 - 2014-03-11 03:11 - 00018190 ____H () C:\Users\Raphael\Desktop\~WRL0005.tmp
2014-03-09 03:49 - 2014-03-10 02:40 - 00000000 ____D () C:\Users\Raphael\Desktop\Abbildungen Persm
2014-03-08 10:45 - 2014-03-17 10:07 - 00000000 ___RD () C:\ONEDRIVE
2014-03-08 10:44 - 2014-03-08 10:44 - 00000000 ___RD () C:\Users\Raphael\OneDrive
2014-03-08 10:44 - 2014-03-08 10:44 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-03-08 10:44 - 2014-03-08 10:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft OneDrive
2014-03-08 10:44 - 2014-03-08 10:43 - 06072008 _____ (Microsoft Corporation) C:\Users\Raphael\Downloads\OneDriveSetup.exe
2014-03-04 13:14 - 2014-03-04 13:14 - 00000000 ____D () C:\Users\Raphael\Desktop\ipod
2014-03-03 04:14 - 2014-03-03 04:14 - 00000000 ____D () C:\Users\Raphael\AppData\Local\{E128DEC8-FAAD-499C-8E96-8396A770E06D}
2014-03-03 04:12 - 2014-03-03 04:12 - 00000000 ____D () C:\Users\Raphael\AppData\Local\{6024E33D-4F77-4B44-AA0B-1460E1F0B957}
2014-03-02 12:47 - 2014-03-02 12:47 - 00000000 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2014-03-02 12:46 - 2014-03-02 12:47 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-03-02 12:45 - 2014-03-02 12:45 - 00001933 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-03-02 12:44 - 2014-03-02 12:44 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-02-28 12:06 - 2014-02-28 12:06 - 00000000 ____D () C:\Users\Raphael\Documents\Command & Conquer 3 Tiberium Wars
2014-02-28 11:44 - 2014-02-28 11:44 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-02-28 10:33 - 2014-02-28 12:04 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\Command & Conquer 3 Tiberium Wars
2014-02-28 10:33 - 2014-02-28 10:33 - 00000000 __RHD () C:\Users\Raphael\AppData\Roaming\SecuROM
2014-02-28 09:08 - 2014-02-28 09:08 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-02-28 02:05 - 2014-03-06 11:28 - 00013743 _____ () C:\Users\Raphael\Desktop\März 2013.xlsx
2014-02-28 01:08 - 2014-02-28 01:08 - 02150984 _____ () C:\Users\Raphael\Downloads\VideoPerformerSetup.exe
2014-02-28 00:37 - 2014-02-28 00:37 - 00000000 ____D () C:\Users\Raphael\AppData\Local\{7D4CD2D3-7FFA-4B30-845D-52B060E772AA}
2014-02-27 12:10 - 2014-02-27 12:10 - 00001982 _____ () C:\Users\Raphael\Desktop\Windows Phone-Desktopanwendung.lnk
2014-02-27 12:09 - 2014-02-27 12:10 - 00000000 ____D () C:\Program Files (x86)\Windows Phone
2014-02-27 12:09 - 2014-02-27 12:09 - 00000000 ____D () C:\ProgramData\Applications
2014-02-27 12:02 - 2014-02-27 12:03 - 00000000 ____D () C:\Users\Raphael\AppData\Local\{5BB5F4E2-340C-4E57-8675-D963C81660E5}
2014-02-27 05:25 - 2014-02-27 05:25 - 00000221 _____ () C:\Users\Raphael\Desktop\R.U.S.E.url
2014-02-27 04:21 - 2014-03-17 13:58 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-27 04:21 - 2014-02-27 05:07 - 00000879 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-02-27 04:19 - 2009-09-04 08:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2014-02-27 04:19 - 2009-09-04 08:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-02-27 04:19 - 2009-09-04 08:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-02-27 04:19 - 2009-09-04 08:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2014-02-27 04:19 - 2009-09-04 08:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2014-02-27 04:19 - 2009-09-04 08:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2014-02-27 04:19 - 2009-09-04 08:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-02-27 04:19 - 2009-03-16 05:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2014-02-27 04:19 - 2009-03-16 05:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-02-27 04:19 - 2009-03-16 05:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-02-27 04:19 - 2009-03-16 05:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2014-02-27 04:19 - 2009-03-16 05:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2014-02-27 04:19 - 2009-03-16 05:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-02-27 04:19 - 2009-03-09 06:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2014-02-27 04:19 - 2009-03-09 06:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-02-27 04:19 - 2009-03-09 06:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2014-02-27 04:19 - 2009-03-09 06:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2014-02-27 04:19 - 2008-10-27 01:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2014-02-27 04:19 - 2008-10-27 01:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-02-27 04:19 - 2008-10-27 01:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-02-27 04:19 - 2008-10-27 01:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2014-02-27 04:19 - 2008-10-27 01:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2014-02-27 04:19 - 2008-10-27 01:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-02-27 04:19 - 2008-10-27 01:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2014-02-27 04:19 - 2008-10-27 01:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-02-27 04:19 - 2008-10-14 21:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2014-02-27 04:19 - 2008-10-14 21:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-02-27 04:19 - 2008-10-14 21:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2014-02-27 04:19 - 2008-10-14 21:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-02-27 04:19 - 2008-10-14 21:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2014-02-27 04:19 - 2008-10-14 21:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-02-27 04:19 - 2008-07-31 01:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-02-27 04:19 - 2008-07-31 01:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2014-02-27 04:19 - 2008-07-31 01:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2014-02-27 04:19 - 2008-07-31 01:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-02-27 04:19 - 2008-07-31 01:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2014-02-27 04:19 - 2008-07-31 01:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-02-27 04:19 - 2008-07-10 02:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-02-27 04:19 - 2008-07-10 02:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_39.dll
2014-02-27 04:19 - 2008-07-10 02:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-02-27 04:19 - 2008-07-10 02:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_39.dll
2014-02-27 04:19 - 2008-07-10 02:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-02-27 04:19 - 2008-07-10 02:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_39.dll
2014-02-27 04:19 - 2008-05-30 05:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_1.dll
2014-02-27 04:19 - 2008-05-30 05:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-02-27 04:19 - 2008-05-30 05:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-02-27 04:19 - 2008-05-30 05:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_1.dll
2014-02-27 04:19 - 2008-05-30 05:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_0.dll
2014-02-27 04:19 - 2008-05-30 05:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-02-27 04:19 - 2008-05-30 05:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-02-27 04:19 - 2008-05-30 05:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_4.dll
2014-02-27 04:19 - 2008-05-30 05:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_38.dll
2014-02-27 04:19 - 2008-05-30 05:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-02-27 04:19 - 2008-05-30 05:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_38.dll
2014-02-27 04:19 - 2008-05-30 05:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-02-27 04:19 - 2008-05-30 05:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_38.dll
2014-02-27 04:19 - 2008-05-30 05:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-02-27 04:19 - 2008-03-05 07:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_0.dll
2014-02-27 04:19 - 2008-03-05 07:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-02-27 04:19 - 2008-03-05 07:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-02-27 04:19 - 2008-03-05 07:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_0.dll
2014-02-27 04:19 - 2008-03-05 07:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_3.dll
2014-02-27 04:19 - 2008-03-05 07:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-02-27 04:19 - 2008-03-05 06:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_37.dll
2014-02-27 04:19 - 2008-03-05 06:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-02-27 04:19 - 2008-03-05 06:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_37.dll
2014-02-27 04:19 - 2008-03-05 06:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-02-27 04:19 - 2008-02-05 14:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_37.dll
2014-02-27 04:19 - 2008-02-05 14:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-02-27 04:19 - 2007-10-21 18:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_10.dll
2014-02-27 04:19 - 2007-10-21 18:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-02-27 04:19 - 2007-10-21 18:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_2.dll
2014-02-27 03:59 - 2014-02-27 03:59 - 00005120 _____ () C:\Users\Raphael\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-27 03:07 - 2014-02-28 02:23 - 00012527 _____ () C:\Users\Raphael\Desktop\Schuldentilgungsplan.xlsx
2014-02-25 04:38 - 2014-02-25 04:38 - 02790572 _____ ( ) C:\Users\Raphael\Downloads\pdftkb36_setup.exe
2014-02-25 04:38 - 2014-02-25 04:38 - 00000000 ____D () C:\Program Files (x86)\PDFTK Builder
2014-02-23 04:32 - 2014-03-17 09:55 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-23 04:32 - 2014-03-12 10:55 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-23 04:32 - 2014-02-23 04:32 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-02-23 04:32 - 2014-02-23 04:32 - 00000000 ____D () C:\ProgramData\McAfee
2014-02-20 00:40 - 2014-02-20 00:40 - 00000000 ____D () C:\Users\Raphael\Desktop\Drucker
2014-02-20 00:38 - 2014-02-27 03:06 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\HpUpdate
2014-02-20 00:38 - 2014-02-20 00:38 - 00003626 _____ () C:\Windows\System32\Tasks\HPCustParticipation HP Deskjet 3520 series
2014-02-20 00:38 - 2014-02-20 00:38 - 00000000 ____D () C:\ProgramData\Visan
2014-02-20 00:38 - 2014-02-20 00:38 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-02-20 00:38 - 2014-02-20 00:38 - 00000000 ____D () C:\Program Files (x86)\HP Photo Creations
2014-02-20 00:37 - 2012-10-16 19:31 - 00741480 ____N (Hewlett-Packard Co.) C:\Windows\System32\HPDiscoPMB011.dll
2014-02-20 00:36 - 2014-02-20 00:36 - 00000057 _____ () C:\ProgramData\Ament.ini
2014-02-20 00:36 - 2014-02-20 00:36 - 00000000 ____D () C:\ProgramData\HP
2014-02-20 00:36 - 2014-02-20 00:36 - 00000000 ____D () C:\Program Files\HP
2014-02-20 00:32 - 2014-02-20 00:34 - 70107920 _____ () C:\Users\Raphael\Downloads\DJ3520_1315.exe
2014-02-18 04:32 - 2014-02-18 04:45 - 00000000 ____D () C:\ProgramData\VirtualizedApplications
2014-02-18 03:24 - 2014-02-18 04:38 - 00000000 ____D () C:\Windows\System32\MRT
2014-02-18 03:24 - 2014-02-04 10:09 - 88567024 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2014-02-18 03:01 - 2014-02-18 03:01 - 00001981 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-02-18 02:52 - 2014-03-08 10:45 - 00000000 ____D () C:\Users\Raphael\Desktop\Manuel
2014-02-18 01:41 - 2014-02-18 01:41 - 00000000 __RHD () C:\MSOCache
2014-02-18 01:35 - 2014-03-17 08:50 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\SoftGrid Client
2014-02-18 01:35 - 2014-02-18 01:35 - 00000000 ____D () C:\Users\Raphael\AppData\Local\SoftGrid Client
2014-02-18 01:34 - 2014-02-21 01:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-02-18 01:34 - 2014-02-18 01:34 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-02-18 01:34 - 2014-02-18 01:34 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-18 01:33 - 2014-02-18 01:35 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\TP
2014-02-18 01:32 - 2014-02-18 01:33 - 00000000 ____D () C:\Users\Raphael\Desktop\Bilder

==================== One Month Modified Files and Folders =======

2014-03-18 12:02 - 2014-03-18 12:02 - 00000000 ____D () C:\FRST
2014-03-18 02:53 - 2011-12-22 10:16 - 00000000 ____D () C:\users\Raphael
2014-03-18 02:53 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-18 02:53 - 2009-07-13 20:51 - 00096382 _____ () C:\Windows\setupact.log
2014-03-17 14:00 - 2012-11-11 10:09 - 00000344 _____ () C:\Windows\Tasks\DriverScanner.job
2014-03-17 13:59 - 2013-01-03 23:32 - 00003118 _____ () C:\Windows\System32\Tasks\PC Performer
2014-03-17 13:58 - 2014-02-27 04:21 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-17 13:57 - 2014-03-17 08:49 - 95027928 ____T () C:\ProgramData\8zwlvwlmqa.fee
2014-03-17 13:57 - 2013-06-12 22:54 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2014-03-17 13:33 - 2011-09-02 14:00 - 01244167 _____ () C:\Windows\WindowsUpdate.log
2014-03-17 11:46 - 2009-07-13 20:45 - 00032064 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-17 11:46 - 2009-07-13 20:45 - 00032064 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-17 11:41 - 2010-11-20 19:47 - 00229374 _____ () C:\Windows\PFRO.log
2014-03-17 10:07 - 2014-03-08 10:45 - 00000000 ___RD () C:\ONEDRIVE
2014-03-17 09:55 - 2014-02-23 04:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-17 08:52 - 2014-02-11 12:51 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForRaphael.job
2014-03-17 08:50 - 2014-03-17 08:50 - 00332536 ____T (Microsoft Corporation) C:\ProgramData\8zwlvwlmqa.zvv
2014-03-17 08:50 - 2014-02-18 01:35 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\SoftGrid Client
2014-03-17 08:49 - 2014-03-17 08:49 - 00114688 _____ () C:\ProgramData\aqmlwvlwz8.cpp
2014-03-17 07:14 - 2012-03-02 13:44 - 00001146 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-215696962-2090878713-1119302306-1001UA.job
2014-03-17 06:04 - 2012-07-12 11:36 - 00000280 _____ () C:\Windows\Tasks\PC Performer_DEFAULT.job
2014-03-17 06:03 - 2011-12-25 14:20 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\Skype
2014-03-17 05:30 - 2013-07-12 11:46 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{9471D58D-5AC4-41EA-8E98-1A8C0C2D74D1}
2014-03-17 05:04 - 2011-12-30 03:53 - 00000000 ____D () C:\Users\Raphael\AppData\Local\CrashDumps
2014-03-16 09:05 - 2014-03-16 05:09 - 00000000 ____D () C:\Users\Raphael\Desktop\Personalentwicklung
2014-03-16 06:06 - 2014-03-16 06:05 - 00000145 _____ () C:\Users\Raphael\Desktop\To-Do-Liste.txt
2014-03-16 05:21 - 2014-02-11 12:51 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForRaphael
2014-03-16 05:21 - 2012-02-01 12:45 - 00000000 _____ () C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-03-16 05:21 - 2011-12-25 13:20 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-03-15 00:24 - 2012-03-02 13:44 - 00001124 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-215696962-2090878713-1119302306-1001Core.job
2014-03-14 13:50 - 2011-08-21 11:22 - 00700118 _____ () C:\Windows\System32\perfh007.dat
2014-03-14 13:50 - 2011-08-21 11:22 - 00149968 _____ () C:\Windows\System32\perfc007.dat
2014-03-14 13:50 - 2009-07-13 21:13 - 01622164 _____ () C:\Windows\System32\PerfStringBackup.INI
2014-03-14 11:53 - 2009-07-13 20:45 - 00276904 _____ () C:\Windows\System32\FNTCACHE.DAT
2014-03-14 11:52 - 2013-03-30 10:26 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-14 11:51 - 2013-03-30 10:26 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-12 12:36 - 2012-07-12 11:36 - 00000288 _____ () C:\Windows\Tasks\PC Performer_UPDATES.job
2014-03-12 11:56 - 2014-03-12 11:56 - 00001745 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-03-12 11:56 - 2014-03-12 11:54 - 00000000 ____D () C:\Program Files\iTunes
2014-03-12 11:56 - 2012-09-16 10:03 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-12 11:56 - 2012-07-22 03:03 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-03-12 11:54 - 2014-03-12 11:54 - 00000000 ____D () C:\Program Files\iPod
2014-03-12 11:48 - 2014-03-12 11:48 - 00001807 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-03-12 11:48 - 2014-03-12 11:47 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-03-12 10:55 - 2014-02-23 04:32 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-12 10:55 - 2012-11-11 09:37 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 10:55 - 2011-12-29 13:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-11 03:11 - 2014-03-11 03:09 - 00018190 ____H () C:\Users\Raphael\Desktop\~WRL0005.tmp
2014-03-10 02:40 - 2014-03-09 03:49 - 00000000 ____D () C:\Users\Raphael\Desktop\Abbildungen Persm
2014-03-09 10:48 - 2011-12-22 10:22 - 00058016 _____ () C:\Users\Raphael\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-08 10:45 - 2014-02-18 02:52 - 00000000 ____D () C:\Users\Raphael\Desktop\Manuel
2014-03-08 10:44 - 2014-03-08 10:44 - 00000000 ___RD () C:\Users\Raphael\OneDrive
2014-03-08 10:44 - 2014-03-08 10:44 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-03-08 10:44 - 2014-03-08 10:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft OneDrive
2014-03-08 10:43 - 2014-03-08 10:44 - 06072008 _____ (Microsoft Corporation) C:\Users\Raphael\Downloads\OneDriveSetup.exe
2014-03-06 11:28 - 2014-02-28 02:05 - 00013743 _____ () C:\Users\Raphael\Desktop\März 2013.xlsx
2014-03-04 13:14 - 2014-03-04 13:14 - 00000000 ____D () C:\Users\Raphael\Desktop\ipod
2014-03-03 04:14 - 2014-03-03 04:14 - 00000000 ____D () C:\Users\Raphael\AppData\Local\{E128DEC8-FAAD-499C-8E96-8396A770E06D}
2014-03-03 04:12 - 2014-03-03 04:12 - 00000000 ____D () C:\Users\Raphael\AppData\Local\{6024E33D-4F77-4B44-AA0B-1460E1F0B957}
2014-03-02 12:47 - 2014-03-02 12:47 - 00000000 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2014-03-02 12:47 - 2014-03-02 12:46 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-03-02 12:45 - 2014-03-02 12:45 - 00001933 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-03-02 12:44 - 2014-03-02 12:44 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-03-02 12:43 - 2012-07-03 08:35 - 00000000 ____D () C:\Program Files (x86)\AVG Secure Search
2014-03-02 12:42 - 2012-08-29 05:17 - 00050976 _____ (AVG Technologies) C:\Windows\System32\Drivers\avgtpx64.sys
2014-02-28 22:05 - 2014-03-12 10:09 - 23133696 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-02-28 21:17 - 2014-03-12 10:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2014-02-28 21:16 - 2014-03-12 10:09 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2014-02-28 20:58 - 2014-03-12 10:09 - 02765824 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-02-28 20:52 - 2014-03-12 10:09 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2014-02-28 20:51 - 2014-03-12 10:09 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2014-02-28 20:42 - 2014-03-12 10:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2014-02-28 20:40 - 2014-03-12 10:09 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2014-02-28 20:37 - 2014-03-12 10:09 - 00574976 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2014-02-28 20:33 - 2014-03-12 10:09 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2014-02-28 20:33 - 2014-03-12 10:09 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2014-02-28 20:32 - 2014-03-12 10:09 - 00708608 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2014-02-28 20:30 - 2014-03-12 10:09 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-28 20:23 - 2014-03-12 10:09 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2014-02-28 20:17 - 2014-03-12 10:09 - 00218624 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2014-02-28 20:11 - 2014-03-12 10:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-28 20:02 - 2014-03-12 10:09 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2014-02-28 19:54 - 2014-03-12 10:09 - 05768704 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2014-02-28 19:52 - 2014-03-12 10:09 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-28 19:51 - 2014-03-12 10:09 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-28 19:47 - 2014-03-12 10:09 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-28 19:43 - 2014-03-12 10:09 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-28 19:43 - 2014-03-12 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-28 19:42 - 2014-03-12 10:09 - 00627200 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-02-28 19:40 - 2014-03-12 10:09 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-28 19:38 - 2014-03-12 10:09 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-28 19:37 - 2014-03-12 10:09 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-28 19:35 - 2014-03-12 10:09 - 02041856 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2014-02-28 19:18 - 2014-03-12 10:09 - 13051904 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-02-28 19:16 - 2014-03-12 10:09 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-28 19:14 - 2014-03-12 10:09 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-28 19:10 - 2014-03-12 10:09 - 02334208 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-02-28 19:03 - 2014-03-12 10:09 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-28 19:00 - 2014-03-12 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-28 18:57 - 2014-03-12 10:09 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-28 18:38 - 2014-03-12 10:09 - 01393664 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-02-28 18:32 - 2014-03-12 10:09 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-28 18:27 - 2014-03-12 10:09 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-28 18:25 - 2014-03-12 10:09 - 00817664 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2014-02-28 18:25 - 2014-03-12 10:09 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-28 12:06 - 2014-02-28 12:06 - 00000000 ____D () C:\Users\Raphael\Documents\Command & Conquer 3 Tiberium Wars
2014-02-28 12:04 - 2014-02-28 10:33 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\Command & Conquer 3 Tiberium Wars
2014-02-28 11:44 - 2014-02-28 11:44 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-02-28 10:33 - 2014-02-28 10:33 - 00000000 __RHD () C:\Users\Raphael\AppData\Roaming\SecuROM
2014-02-28 09:32 - 2011-08-21 02:01 - 00058392 _____ () C:\Windows\DirectX.log
2014-02-28 09:08 - 2014-02-28 09:08 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-02-28 02:23 - 2014-02-27 03:07 - 00012527 _____ () C:\Users\Raphael\Desktop\Schuldentilgungsplan.xlsx
2014-02-28 01:08 - 2014-02-28 01:08 - 02150984 _____ () C:\Users\Raphael\Downloads\VideoPerformerSetup.exe
2014-02-28 00:37 - 2014-02-28 00:37 - 00000000 ____D () C:\Users\Raphael\AppData\Local\{7D4CD2D3-7FFA-4B30-845D-52B060E772AA}
2014-02-27 18:01 - 2011-09-02 14:12 - 01596444 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-27 12:10 - 2014-02-27 12:10 - 00001982 _____ () C:\Users\Raphael\Desktop\Windows Phone-Desktopanwendung.lnk
2014-02-27 12:10 - 2014-02-27 12:09 - 00000000 ____D () C:\Program Files (x86)\Windows Phone
2014-02-27 12:09 - 2014-02-27 12:09 - 00000000 ____D () C:\ProgramData\Applications
2014-02-27 12:03 - 2014-02-27 12:02 - 00000000 ____D () C:\Users\Raphael\AppData\Local\{5BB5F4E2-340C-4E57-8675-D963C81660E5}
2014-02-27 12:03 - 2011-12-22 14:51 - 00000000 ____D () C:\Users\Raphael\AppData\Local\Windows Live
2014-02-27 05:25 - 2014-02-27 05:25 - 00000221 _____ () C:\Users\Raphael\Desktop\R.U.S.E.url
2014-02-27 05:07 - 2014-02-27 04:21 - 00000879 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-02-27 03:59 - 2014-02-27 03:59 - 00005120 _____ () C:\Users\Raphael\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-27 03:06 - 2014-02-20 00:38 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\HpUpdate
2014-02-25 04:38 - 2014-02-25 04:38 - 02790572 _____ ( ) C:\Users\Raphael\Downloads\pdftkb36_setup.exe
2014-02-25 04:38 - 2014-02-25 04:38 - 00000000 ____D () C:\Program Files (x86)\PDFTK Builder
2014-02-23 04:32 - 2014-02-23 04:32 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-02-23 04:32 - 2014-02-23 04:32 - 00000000 ____D () C:\ProgramData\McAfee
2014-02-23 04:32 - 2012-01-11 12:58 - 00000000 ____D () C:\Users\Raphael\AppData\Local\Adobe
2014-02-21 02:09 - 2012-07-13 11:15 - 00517120 ___SH () C:\Users\Raphael\Desktop\Thumbs.db
2014-02-21 01:05 - 2014-02-18 01:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-02-20 00:40 - 2014-02-20 00:40 - 00000000 ____D () C:\Users\Raphael\Desktop\Drucker
2014-02-20 00:40 - 2011-12-22 10:25 - 00000000 ____D () C:\Users\Raphael\AppData\Local\HP
2014-02-20 00:38 - 2014-02-20 00:38 - 00003626 _____ () C:\Windows\System32\Tasks\HPCustParticipation HP Deskjet 3520 series
2014-02-20 00:38 - 2014-02-20 00:38 - 00000000 ____D () C:\ProgramData\Visan
2014-02-20 00:38 - 2014-02-20 00:38 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-02-20 00:38 - 2014-02-20 00:38 - 00000000 ____D () C:\Program Files (x86)\HP Photo Creations
2014-02-20 00:38 - 2011-09-02 14:16 - 00000000 ____D () C:\Program Files (x86)\HP
2014-02-20 00:38 - 2011-08-21 01:50 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-02-20 00:36 - 2014-02-20 00:36 - 00000057 _____ () C:\ProgramData\Ament.ini
2014-02-20 00:36 - 2014-02-20 00:36 - 00000000 ____D () C:\ProgramData\HP
2014-02-20 00:36 - 2014-02-20 00:36 - 00000000 ____D () C:\Program Files\HP
2014-02-20 00:34 - 2014-02-20 00:32 - 70107920 _____ () C:\Users\Raphael\Downloads\DJ3520_1315.exe
2014-02-18 11:14 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache
2014-02-18 04:45 - 2014-02-18 04:32 - 00000000 ____D () C:\ProgramData\VirtualizedApplications
2014-02-18 04:38 - 2014-02-18 03:24 - 00000000 ____D () C:\Windows\System32\MRT
2014-02-18 03:01 - 2014-02-18 03:01 - 00001981 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-02-18 01:41 - 2014-02-18 01:41 - 00000000 __RHD () C:\MSOCache
2014-02-18 01:35 - 2014-02-18 01:35 - 00000000 ____D () C:\Users\Raphael\AppData\Local\SoftGrid Client
2014-02-18 01:35 - 2014-02-18 01:33 - 00000000 ____D () C:\Users\Raphael\AppData\Roaming\TP
2014-02-18 01:34 - 2014-02-18 01:34 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-02-18 01:34 - 2014-02-18 01:34 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-18 01:34 - 2011-08-21 02:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-02-18 01:34 - 2009-07-13 19:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-02-18 01:33 - 2014-02-18 01:32 - 00000000 ____D () C:\Users\Raphael\Desktop\Bilder
2014-02-17 10:46 - 2011-12-22 13:41 - 00000000 ____D () C:\Users\Raphael\Documents\Youcam

Files to move or delete:
====================
C:\ProgramData\8zwlvwlmqa.fee
C:\ProgramData\8zwlvwlmqa.zvv


Some content of TEMP:
====================
C:\Users\Raphael\AppData\Local\Temp\38388-38389-adobe-photoshop-lightroom.exe
C:\Users\Raphael\AppData\Local\Temp\ApnStub.exe
C:\Users\Raphael\AppData\Local\Temp\avguidx.dll
C:\Users\Raphael\AppData\Local\Temp\AVG_Security_Toolbar.exe
C:\Users\Raphael\AppData\Local\Temp\CommonInstaller.exe
C:\Users\Raphael\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Raphael\AppData\Local\Temp\drm_dyndata_7290008.dll
C:\Users\Raphael\AppData\Local\Temp\drm_dyndata_7330017.dll
C:\Users\Raphael\AppData\Local\Temp\Extract.exe
C:\Users\Raphael\AppData\Local\Temp\HPHelpUpdater.exe
C:\Users\Raphael\AppData\Local\Temp\iGearedHelper.dll
C:\Users\Raphael\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Raphael\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Raphael\AppData\Local\Temp\MachineIdCreator.exe
C:\Users\Raphael\AppData\Local\Temp\mgsqlite3.dll
C:\Users\Raphael\AppData\Local\Temp\oi_{6A2D16C6-566F-4235-95C8-B30C9463D9B9}.exe
C:\Users\Raphael\AppData\Local\Temp\patchw32.dll
C:\Users\Raphael\AppData\Local\Temp\px.dll
C:\Users\Raphael\AppData\Local\Temp\pxafs.dll
C:\Users\Raphael\AppData\Local\Temp\PxCpyA64.exe
C:\Users\Raphael\AppData\Local\Temp\PxCpyI64.exe
C:\Users\Raphael\AppData\Local\Temp\pxdrv.dll
C:\Users\Raphael\AppData\Local\Temp\pxhpinst.exe
C:\Users\Raphael\AppData\Local\Temp\PxInsA64.exe
C:\Users\Raphael\AppData\Local\Temp\PxInsI64.exe
C:\Users\Raphael\AppData\Local\Temp\pxmas.dll
C:\Users\Raphael\AppData\Local\Temp\pxsetup.exe
C:\Users\Raphael\AppData\Local\Temp\pxsfs.dll
C:\Users\Raphael\AppData\Local\Temp\pxwave.dll
C:\Users\Raphael\AppData\Local\Temp\ResetDevice.exe
C:\Users\Raphael\AppData\Local\Temp\Resource.exe
C:\Users\Raphael\AppData\Local\Temp\setup.exe
C:\Users\Raphael\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Raphael\AppData\Local\Temp\Shortcut_BundleSweetIMSetup.exe
C:\Users\Raphael\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\Raphael\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Raphael\AppData\Local\Temp\SP53462.exe
C:\Users\Raphael\AppData\Local\Temp\SP54127.exe
C:\Users\Raphael\AppData\Local\Temp\sp54373.exe
C:\Users\Raphael\AppData\Local\Temp\sp54620.exe
C:\Users\Raphael\AppData\Local\Temp\SP54714.exe
C:\Users\Raphael\AppData\Local\Temp\SP55151.exe
C:\Users\Raphael\AppData\Local\Temp\SP55152.exe
C:\Users\Raphael\AppData\Local\Temp\sp58915.exe
C:\Users\Raphael\AppData\Local\Temp\sp64126.exe
C:\Users\Raphael\AppData\Local\Temp\toolbar.exe
C:\Users\Raphael\AppData\Local\Temp\ToolbarInstaller.exe
C:\Users\Raphael\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\Raphael\AppData\Local\Temp\UninstallHPTCA.exe
C:\Users\Raphael\AppData\Local\Temp\vxblock.dll
C:\Users\Raphael\AppData\Local\Temp\~+JF7535120033070364367.dll


==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2014-02-27 18:00:18
Restore point made on: 2014-02-28 09:07:58
Restore point made on: 2014-03-08 10:18:07
Restore point made on: 2014-03-13 00:06:53

==================== Memory info =========================== 

Percentage of memory in use: 12%
Total physical RAM: 7658.9 MB
Available physical RAM: 6735.27 MB
Total Pagefile: 7657.05 MB
Available Pagefile: 6734.64 MB
Total Virtual: 8192 MB
Available Virtual: 8191.87 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:449.7 GB) (Free:316.37 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: () (Fixed) (Total:465.76 GB) (Free:465.66 GB) NTFS
Drive f: (RECOVERY) (Fixed) (Total:15.77 GB) (Free:1.71 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive g: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
Drive h: (CNC3) (CDROM) (Total:6.2 GB) (Free:0 GB) UDF
Drive i: () (Removable) (Total:1.87 GB) (Free:1.86 GB) FAT
Drive x: (Boot) (Fixed) (Total:0.25 GB) (Free:0.25 GB) NTFS
Drive y: (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: C843E555)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 11D8B398)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 2 GB) (Disk ID: 0055E3F9)
Partition 1: (Active) - (Size=2 GB) - (Type=06)


LastRegBack: 2014-03-10 07:02

==================== End Of Log ============================
Vielen Dank und liebe Grüße

 

Themen zu Interpol Virus - FRST.exe
adobe, adobe flash player, association, avg, desktop, download, downloader, explorer, flash player, home, launch, microsoft, mozilla, netzwerk, pdf, photoshop, registry, scan, secure search, security, services.exe, software, svchost.exe, symantec, system, temp, virus, vtoolbarupdater, winlogon.exe


« Asprire-Notebook wurde mit der Zeit immer langsamer - Verdacht auf Schadsoftware | "Der Anzeigetreiber wurde nach einem Fehler..." bei Treiber Update und darauffolgend BSODs. »


Ähnliche Themen: Interpol Virus - FRST.exe


  1. ich habe einen Virus eingefangen der aus FRST.txt ein FRST.txt!___prosschiff@gmail.com_ macht
    Log-Analyse und Auswertung - 27.09.2015 (3)
  2. Interpol Virus
    Plagegeister aller Art und deren Bekämpfung - 25.01.2015 (3)
  3. Interpol Virus
    Log-Analyse und Auswertung - 17.12.2014 (9)
  4. FRST.exe (Farbar) -> probably unknown NewHeur_PE virus [7] ?
    Log-Analyse und Auswertung - 13.04.2014 (5)
  5. Windows 7: Interpol-Trojaner, FRST-Scan angefügt
    Log-Analyse und Auswertung - 02.04.2014 (10)
  6. Interpol hat zugeschlagen! Interpol Troyaner/Virus legt Rechner Lahm!
    Log-Analyse und Auswertung - 30.03.2014 (7)
  7. Interpol Virus
    Plagegeister aller Art und deren Bekämpfung - 21.02.2014 (18)
  8. Interpol Virus
    Plagegeister aller Art und deren Bekämpfung - 08.02.2014 (3)
  9. FRST Scan bei Bka Virus
    Plagegeister aller Art und deren Bekämpfung - 09.12.2013 (14)
  10. Interpol Trojaner Windows 7 Statusfenster von frst erscheint nicht
    Log-Analyse und Auswertung - 08.12.2013 (3)
  11. FRST.txt nach Interpol-Polizei Trojaner/Virus
    Plagegeister aller Art und deren Bekämpfung - 28.11.2013 (3)
  12. Interpol BKA virus Win 7
    Log-Analyse und Auswertung - 03.11.2013 (3)
  13. WIN 7 / Sperrbildschirm(interpol trojaner) / FRST-Scan
    Log-Analyse und Auswertung - 10.10.2013 (14)
  14. Interpol Trojaner hat PC gesperrt - frst Scan bereits durchgeführt
    Plagegeister aller Art und deren Bekämpfung - 14.08.2013 (7)
  15. Interpol Trojaner - FRST Logfile includiert
    Plagegeister aller Art und deren Bekämpfung - 13.08.2013 (13)
  16. Interpol Trojaner - Sperschirm//FRST.Log schon angehängt
    Plagegeister aller Art und deren Bekämpfung - 12.08.2013 (9)
  17. Weißer Bildschirm nach Neustart, scan via FRST.exe --> FRST.txt
    Log-Analyse und Auswertung - 06.08.2013 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Interpol Virus - FRST.exe - Hallo! Hab mir den Interpol Virus eingefangen. Hab mich durch das Forum geklickt und nach euren Anweisungen den FRST Scan durchgeführt. Anbei die FRST.txt Datei. Bitte um Unterstützung. Code: Alles - Interpol Virus - FRST.exe...
Archiv
Du betrachtest: Interpol Virus - FRST.exe auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130