ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=3a3c9b62707ca045b8c8db5101b3a08a
# engine=16979
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-07 12:47:38
# local_time=2014-02-07 01:47:38 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=3590 16777213 100 84 2428049 210766644 0 0
# compatibility_mode=5893 16776574 100 94 18289574 143407108 0 0
# scanned=99421
# found=0
# cleaned=0
# scan_time=7372
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=3a3c9b62707ca045b8c8db5101b3a08a
# engine=16982
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-07 04:27:46
# local_time=2014-02-07 05:27:46 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=3590 16777213 100 84 2444857 210779852 0 0
# compatibility_mode=5893 16776574 100 94 18302782 143420316 0 0
# scanned=208539
# found=0
# cleaned=0
# scan_time=13087
Results of screen317's Security Check version 0.99.79
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Norton AntiVirus
WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware Version 1.75.0.1300
Java 7 Update 51
Adobe Flash Player 10
Flash Player out of Date!
Adobe Flash Player 12.0.0.43
Flash Player out of Date!
Adobe Reader XI
Mozilla Firefox (27.0)
Google Chrome 32.0.1700.102
Google Chrome 32.0.1700.107
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Norton AntiVirus Engine 21.1.0.18 NAV.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````
FRST Logfile:
FRST Logfile:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-02-2014
Ran by Mercan (administrator) on MERCAN-VAIO on 07-02-2014 17:49:49
Running from C:\Users\Mercan\Desktop\pc schutz
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvservice.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\21.1.0.18\nav.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\NST.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\21.1.0.18\nav.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\NST.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(Dropbox, Inc.) C:\Users\Mercan\Desktop\Sicherung\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe
(ALPS) C:\Program Files\Apoint\Apvfb.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Sony of America Corporation) C:\Program Files\Sony\VAIO Care\listener.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\Admload.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
(Trimble Navigation Limited) C:\Program Files (x86)\SketchUp\SketchUp 2013\SketchUp.exe
(Trimble Navigation Limited) C:\Program Files (x86)\SketchUp\SketchUp 2013\SketchUp.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-06-21] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-06-21] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint\Apoint.exe [212480 2010-05-14] (Alps Electric Co., Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [673136 2010-05-31] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] - c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [600928 2010-06-01] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\Users\Mercan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Mercan\Desktop\Sicherung\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Sign In
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {5A0189A9-824C-4AA6-AF94-5AFDFE95C2BD} URL = Shopping.com Deutschland - der große Produkt- und Preisvergleich
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {99A05E9D-C5D8-471D-B607-A1354210667F} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-9/4?satitle={searchTerms}
SearchScopes: HKCU - {D1F5EFA7-3B2C-496E-B8CB-50E4B91FE886} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.6.0.27\coIEPlg.dll (Symantec Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton AntiVirus\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\coIEPlg.dll (Symantec Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.6.0.27\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\coIEPlg.dll (Symantec Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Mercan\AppData\Roaming\Mozilla\Firefox\Profiles\pqje31fi.default
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Mercan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_21.0.0.100\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_21.0.0.100\IPSFF [2013-12-25]
FF HKLM-x32\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.6.0.27\coFFPlgn\
FF Extension: Norton Identity Safe Toolbar - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.6.0.27\coFFPlgn\ []
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "hxxp://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE"
CHR DefaultSearchProvider: Ask.com Deutschland
CHR DefaultSearchURL: Google
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\Mercan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Norton Identity Protection) - C:\Users\Mercan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2013-02-06]
CHR Extension: (Google Wallet) - C:\Users\Mercan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-13]
CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\Exts\Chrome.crx [2014-01-21]
==================== Services (Whitelisted) =================
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NAV; C:\Program Files (x86)\Norton AntiVirus\Engine\21.1.0.18\NAV.exe [262288 2013-10-08] (Symantec Corporation)
R2 NCO; C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\NST.exe [129424 2013-10-06] (Symantec Corporation)
R2 nvservice; C:\Windows\system32\nvservice.exe [192800 2013-02-04] (NVIDIA Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [259192 2011-01-29] (Sony Corporation)
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [887000 2011-01-20] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
==================== Drivers (Whitelisted) ====================
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R1 BHDrvx64; C:\Program Files (x86)\Norton AntiVirus\NortonData\21.0.0.100\Definitions\BASHDefs\20140121.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
R1 ccSet_NAV; C:\Windows\system32\drivers\NAVx64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\7DE06000.01B\ccSetx64.sys [162392 2013-09-27] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-12-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-12-25] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton AntiVirus\NortonData\21.0.0.100\Definitions\IPSDefs\20140205.002\IDSvia64.sys [521944 2014-01-21] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton AntiVirus\NortonData\21.0.0.100\Definitions\VirusDefs\20140206.003\ENG64.SYS [126040 2013-12-25] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton AntiVirus\NortonData\21.0.0.100\Definitions\VirusDefs\20140206.003\EX64.SYS [2099288 2013-12-25] (Symantec Corporation)
R3 SRTSP; C:\Windows\system32\drivers\NAVx64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NAVx64\1501000.012\SRTSPX64.SYS [36952 2013-07-31] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NAVx64\1501000.012\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NAVx64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-12-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NAVx64\1501000.012\Ironx64.SYS [264280 2013-07-31] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\NAVx64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-07 17:44 - 2014-02-07 17:44 - 00987425 _____ () C:\Users\Mercan\Downloads\SecurityCheck.exe
2014-02-07 14:35 - 2014-02-07 15:24 - 00000000 ____D () C:\ProgramData\ASGVIS
2014-02-07 14:14 - 2014-02-07 14:14 - 00410230 _____ () C:\Users\Mercan\Desktop\serie 1 breite ränder.dwg
2014-02-07 14:14 - 2014-02-07 14:14 - 00000000 _____ () C:\Users\Mercan\Desktop\Audit report.txt
2014-02-07 14:00 - 2014-02-07 14:00 - 00046839 _____ () C:\Users\Mercan\Desktop\serie 1 breite ränder.3ds
2014-02-07 13:57 - 2014-02-07 14:14 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Abvent
2014-02-07 13:57 - 2014-02-07 13:57 - 00000000 ____D () C:\Users\Mercan\Documents\Abvent
2014-02-07 13:55 - 2014-02-07 13:55 - 00000000 ____D () C:\Users\Mercan\Documents\Artlantis_Studio126_Demo_DE
2014-02-07 13:48 - 2014-02-07 13:48 - 02347384 _____ (ESET) C:\Users\Mercan\Downloads\esetsmartinstaller_enu(1).exe
2014-02-07 12:17 - 2014-02-07 12:18 - 00000000 ____D () C:\Users\Mercan\Desktop\stipendium
2014-02-07 11:39 - 2014-02-07 11:40 - 02347384 _____ (ESET) C:\Users\Mercan\Downloads\esetsmartinstaller_enu.exe
2014-02-06 21:24 - 2014-02-06 21:25 - 79510936 _____ (Trimble Navigation Limited) C:\Users\Mercan\Downloads\SketchUpWDE(1).exe
2014-02-06 12:40 - 2014-02-06 12:40 - 00052490 _____ () C:\Users\Mercan\Desktop\wanne2.dae
2014-02-06 12:23 - 2014-02-06 12:24 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Abvent_Artlantis5
2014-02-06 12:21 - 2014-02-07 14:42 - 00000000 ____D () C:\ProgramData\Abvent
2014-02-06 12:21 - 2014-02-06 12:33 - 00000000 ____D () C:\Users\Public\Documents\Abvent
2014-02-06 12:07 - 2014-02-06 12:07 - 00370587 _____ () C:\Users\Mercan\Downloads\Artlantis_5_Exporter_for_SketchUp_Pro_2013-Win(1).zip
2014-02-06 11:39 - 2014-02-07 17:49 - 00000000 ____D () C:\Users\Mercan\Desktop\pc schutz
2014-02-06 11:24 - 2014-02-06 11:24 - 00000000 ____D () C:\Windows\ERUNT
2014-02-06 11:23 - 2014-02-06 11:23 - 01037530 _____ (Thisisu) C:\Users\Mercan\Downloads\JRT.exe
2014-02-06 11:13 - 2014-02-06 11:13 - 01166132 _____ () C:\Users\Mercan\Downloads\adwcleaner.exe
2014-02-06 10:59 - 2014-02-06 10:59 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Malwarebytes
2014-02-06 10:58 - 2014-02-06 10:58 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-06 10:58 - 2014-02-06 10:58 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-06 10:58 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-06 10:57 - 2014-02-06 10:57 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Mercan\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-05 22:36 - 2014-02-05 22:36 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Blender Foundation
2014-02-05 21:53 - 2014-02-05 22:52 - 00000000 ____D () C:\tmp
2014-02-05 21:30 - 2014-02-05 21:30 - 00000000 ____D () C:\Users\Mercan\.thumbnails
2014-02-05 21:29 - 2014-02-07 13:54 - 00000000 ____D () C:\Program Files\Blender Foundation
2014-02-05 21:26 - 2014-02-05 21:26 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\SketchUp
2014-02-05 21:25 - 2014-02-06 21:27 - 00002188 _____ () C:\Users\Public\Desktop\Style Builder 2013.lnk
2014-02-05 21:25 - 2014-02-06 21:27 - 00002102 _____ () C:\Users\Public\Desktop\LayOut 2013.lnk
2014-02-05 21:25 - 2014-02-06 21:27 - 00002017 _____ () C:\Users\Public\Desktop\SketchUp 2013.lnk
2014-02-05 21:25 - 2014-02-05 21:25 - 00003120 _____ () C:\Windows\SysWOW64\ALLFSAF13a.ocx
2014-02-05 21:25 - 2014-02-05 21:25 - 00000000 ____D () C:\ProgramData\SketchUp
2014-02-05 21:25 - 2014-02-05 21:25 - 00000000 ____D () C:\Program Files (x86)\SketchUp
2014-02-05 21:18 - 2014-02-05 21:19 - 79510936 _____ (Trimble Navigation Limited) C:\Users\Mercan\Downloads\SketchUpWDE.exe
2014-02-05 21:12 - 2014-02-05 21:12 - 00370587 _____ () C:\Users\Mercan\Downloads\Artlantis_5_Exporter_for_SketchUp_Pro_2013-Win.zip
2014-02-05 18:55 - 2014-02-05 18:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-05 11:32 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-05 11:32 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-05 11:32 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-05 11:32 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-05 11:32 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-05 11:32 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-05 11:32 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-05 11:32 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-05 11:27 - 2014-02-05 11:45 - 00000000 ____D () C:\Qoobox
2014-02-05 11:27 - 2014-02-05 11:41 - 00000000 ____D () C:\Windows\erdnt
2014-02-05 11:23 - 2014-02-05 11:23 - 05180173 ____R (Swearware) C:\Users\Mercan\Downloads\ComboFix.exe
2014-02-04 11:28 - 2014-02-07 17:49 - 00000000 ____D () C:\FRST
2014-02-01 12:24 - 2014-02-01 12:24 - 00000000 ____D () C:\Users\Mercan\AppData\Local\3dmouse
2014-02-01 12:06 - 2014-02-01 12:06 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\McNeel
2014-02-01 12:06 - 2014-02-01 12:06 - 00000000 ____D () C:\Users\Mercan\AppData\Local\McNeel
2014-02-01 12:00 - 2014-02-01 12:06 - 00000000 ____D () C:\ProgramData\McNeel
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\SysWOW64\Drivers\iczgzv_413.set
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\SysWOW64\Drivers\gczgzv_292.set
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\SysWOW64\Drivers\feqordi269.dat
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\SysWOW64\Drivers\deqordi185.dat
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\i_kenkpm410.ini
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\d_kenkpm162.ini
2014-02-01 11:59 - 2014-02-05 21:23 - 01594964 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-25 18:21 - 2014-01-25 18:21 - 04538368 _____ () C:\Users\Mercan\Downloads\SkypeWebPlugin-2.2.12059.16911.msi
2014-01-20 18:44 - 2014-01-20 18:44 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-20 18:44 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-20 18:44 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-20 18:44 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-20 18:44 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-18 19:45 - 2014-01-18 19:45 - 00003140 _____ () C:\Windows\System32\Tasks\{49CBD931-D25E-4E0F-9E09-9FE4501EC7F3}
2014-01-18 19:44 - 2014-01-18 19:44 - 01551008 _____ (Skype Technologies S.A.) C:\Users\Mercan\Downloads\SkypeSetup.exe
2014-01-15 11:59 - 2014-01-17 19:21 - 00000000 ____D () C:\Users\Mercan\Desktop\condé nast bewerbungen
2014-01-15 11:59 - 2014-01-15 12:10 - 00000000 ____D () C:\Users\Mercan\Desktop\boss bewerbungen
2014-01-15 10:49 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 10:49 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 10:49 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 10:49 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 10:49 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 10:49 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 10:49 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 10:49 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 10:49 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-14 20:31 - 2014-02-07 17:33 - 00000000 ____D () C:\Users\Mercan\Desktop\bad wettbewerb
==================== One Month Modified Files and Folders =======
2014-02-07 17:49 - 2014-02-06 11:39 - 00000000 ____D () C:\Users\Mercan\Desktop\pc schutz
2014-02-07 17:49 - 2014-02-04 11:28 - 00000000 ____D () C:\FRST
2014-02-07 17:48 - 2013-01-28 16:19 - 00000000 ____D () C:\Users\Mercan\Desktop\Mercans VIPs
2014-02-07 17:44 - 2014-02-07 17:44 - 00987425 _____ () C:\Users\Mercan\Downloads\SecurityCheck.exe
2014-02-07 17:36 - 2013-12-10 21:31 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cef5e6ca123916.job
2014-02-07 17:34 - 2013-01-28 12:19 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-07 17:33 - 2014-01-14 20:31 - 00000000 ____D () C:\Users\Mercan\Desktop\bad wettbewerb
2014-02-07 16:43 - 2013-01-28 10:44 - 01870024 _____ () C:\Windows\WindowsUpdate.log
2014-02-07 15:24 - 2014-02-07 14:35 - 00000000 ____D () C:\ProgramData\ASGVIS
2014-02-07 15:07 - 2013-01-28 11:48 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6DDFA760-132B-433C-983F-0F3482C45783}
2014-02-07 14:42 - 2014-02-06 12:21 - 00000000 ____D () C:\ProgramData\Abvent
2014-02-07 14:14 - 2014-02-07 14:14 - 00410230 _____ () C:\Users\Mercan\Desktop\serie 1 breite ränder.dwg
2014-02-07 14:14 - 2014-02-07 14:14 - 00000000 _____ () C:\Users\Mercan\Desktop\Audit report.txt
2014-02-07 14:14 - 2014-02-07 13:57 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Abvent
2014-02-07 14:00 - 2014-02-07 14:00 - 00046839 _____ () C:\Users\Mercan\Desktop\serie 1 breite ränder.3ds
2014-02-07 13:59 - 2013-01-28 11:41 - 00000000 ____D () C:\Users\Mercan\AppData\Local\VirtualStore
2014-02-07 13:57 - 2014-02-07 13:57 - 00000000 ____D () C:\Users\Mercan\Documents\Abvent
2014-02-07 13:55 - 2014-02-07 13:55 - 00000000 ____D () C:\Users\Mercan\Documents\Artlantis_Studio126_Demo_DE
2014-02-07 13:54 - 2014-02-05 21:29 - 00000000 ____D () C:\Program Files\Blender Foundation
2014-02-07 13:48 - 2014-02-07 13:48 - 02347384 _____ (ESET) C:\Users\Mercan\Downloads\esetsmartinstaller_enu(1).exe
2014-02-07 13:00 - 2013-06-01 10:59 - 00000000 ____D () C:\Users\Mercan\AppData\Local\CrashDumps
2014-02-07 12:18 - 2014-02-07 12:17 - 00000000 ____D () C:\Users\Mercan\Desktop\stipendium
2014-02-07 11:40 - 2014-02-07 11:39 - 02347384 _____ (ESET) C:\Users\Mercan\Downloads\esetsmartinstaller_enu.exe
2014-02-07 11:33 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-07 11:33 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-07 11:32 - 2013-01-28 10:39 - 00699682 _____ () C:\Windows\system32\perfh007.dat
2014-02-07 11:32 - 2013-01-28 10:39 - 00149790 _____ () C:\Windows\system32\perfc007.dat
2014-02-07 11:32 - 2009-07-14 06:13 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-07 11:27 - 2013-01-31 16:51 - 00000000 ___RD () C:\Users\Mercan\Dropbox
2014-02-07 11:27 - 2013-01-29 19:58 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Dropbox
2014-02-07 11:26 - 2013-07-18 10:33 - 00024976 _____ () C:\Windows\setupact.log
2014-02-07 11:26 - 2013-01-28 10:59 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-07 11:26 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-06 21:27 - 2014-02-05 21:25 - 00002188 _____ () C:\Users\Public\Desktop\Style Builder 2013.lnk
2014-02-06 21:27 - 2014-02-05 21:25 - 00002102 _____ () C:\Users\Public\Desktop\LayOut 2013.lnk
2014-02-06 21:27 - 2014-02-05 21:25 - 00002017 _____ () C:\Users\Public\Desktop\SketchUp 2013.lnk
2014-02-06 21:25 - 2014-02-06 21:24 - 79510936 _____ (Trimble Navigation Limited) C:\Users\Mercan\Downloads\SketchUpWDE(1).exe
2014-02-06 12:40 - 2014-02-06 12:40 - 00052490 _____ () C:\Users\Mercan\Desktop\wanne2.dae
2014-02-06 12:33 - 2014-02-06 12:21 - 00000000 ____D () C:\Users\Public\Documents\Abvent
2014-02-06 12:24 - 2014-02-06 12:23 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Abvent_Artlantis5
2014-02-06 12:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-02-06 12:07 - 2014-02-06 12:07 - 00370587 _____ () C:\Users\Mercan\Downloads\Artlantis_5_Exporter_for_SketchUp_Pro_2013-Win(1).zip
2014-02-06 11:24 - 2014-02-06 11:24 - 00000000 ____D () C:\Windows\ERUNT
2014-02-06 11:23 - 2014-02-06 11:23 - 01037530 _____ (Thisisu) C:\Users\Mercan\Downloads\JRT.exe
2014-02-06 11:13 - 2014-02-06 11:13 - 01166132 _____ () C:\Users\Mercan\Downloads\adwcleaner.exe
2014-02-06 10:59 - 2014-02-06 10:59 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Malwarebytes
2014-02-06 10:58 - 2014-02-06 10:58 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-06 10:58 - 2014-02-06 10:58 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-06 10:57 - 2014-02-06 10:57 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Mercan\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-06 10:50 - 2013-05-17 17:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-05 22:52 - 2014-02-05 21:53 - 00000000 ____D () C:\tmp
2014-02-05 22:36 - 2014-02-05 22:36 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Blender Foundation
2014-02-05 21:30 - 2014-02-05 21:30 - 00000000 ____D () C:\Users\Mercan\.thumbnails
2014-02-05 21:30 - 2013-01-28 11:41 - 00000000 ____D () C:\Users\Mercan
2014-02-05 21:26 - 2014-02-05 21:26 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\SketchUp
2014-02-05 21:25 - 2014-02-05 21:25 - 00003120 _____ () C:\Windows\SysWOW64\ALLFSAF13a.ocx
2014-02-05 21:25 - 2014-02-05 21:25 - 00000000 ____D () C:\ProgramData\SketchUp
2014-02-05 21:25 - 2014-02-05 21:25 - 00000000 ____D () C:\Program Files (x86)\SketchUp
2014-02-05 21:23 - 2014-02-01 11:59 - 01594964 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-05 21:19 - 2014-02-05 21:18 - 79510936 _____ (Trimble Navigation Limited) C:\Users\Mercan\Downloads\SketchUpWDE.exe
2014-02-05 21:12 - 2014-02-05 21:12 - 00370587 _____ () C:\Users\Mercan\Downloads\Artlantis_5_Exporter_for_SketchUp_Pro_2013-Win.zip
2014-02-05 18:55 - 2014-02-05 18:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-05 18:17 - 2013-01-28 12:19 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 18:17 - 2013-01-28 12:19 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 18:17 - 2013-01-28 12:19 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-05 11:55 - 2013-08-07 12:17 - 00862490 _____ () C:\Windows\PFRO.log
2014-02-05 11:45 - 2014-02-05 11:27 - 00000000 ____D () C:\Qoobox
2014-02-05 11:45 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-05 11:41 - 2014-02-05 11:27 - 00000000 ____D () C:\Windows\erdnt
2014-02-05 11:40 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-05 11:23 - 2014-02-05 11:23 - 05180173 ____R (Swearware) C:\Users\Mercan\Downloads\ComboFix.exe
2014-02-02 20:49 - 2013-01-29 19:56 - 00000000 ____D () C:\Users\Mercan\AppData\Local\Sony Corporation
2014-02-02 14:59 - 2013-02-01 12:48 - 00000000 ____D () C:\Update
2014-02-02 14:12 - 2013-02-01 13:22 - 00000000 ____D () C:\Windows\System32\Tasks\Sony Corporation
2014-02-02 14:12 - 2013-01-28 10:51 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-02-02 14:12 - 2010-07-29 19:01 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-01 12:24 - 2014-02-01 12:24 - 00000000 ____D () C:\Users\Mercan\AppData\Local\3dmouse
2014-02-01 12:06 - 2014-02-01 12:06 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\McNeel
2014-02-01 12:06 - 2014-02-01 12:06 - 00000000 ____D () C:\Users\Mercan\AppData\Local\McNeel
2014-02-01 12:06 - 2014-02-01 12:00 - 00000000 ____D () C:\ProgramData\McNeel
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\SysWOW64\Drivers\iczgzv_413.set
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\SysWOW64\Drivers\gczgzv_292.set
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\SysWOW64\Drivers\feqordi269.dat
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\SysWOW64\Drivers\deqordi185.dat
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\i_kenkpm410.ini
2014-02-01 12:00 - 2014-02-01 12:00 - 00000400 _____ () C:\Windows\d_kenkpm162.ini
2014-01-29 11:14 - 2013-02-02 19:21 - 00452294 _____ () C:\test.xml
2014-01-25 19:44 - 2013-01-31 15:55 - 00000000 ____D () C:\Users\Mercan\AppData\Roaming\Skype
2014-01-25 18:21 - 2014-01-25 18:21 - 04538368 _____ () C:\Users\Mercan\Downloads\SkypeWebPlugin-2.2.12059.16911.msi
2014-01-22 15:40 - 2013-01-28 17:03 - 00000000 ____D () C:\Users\Mercan\AppData\Local\Adobe
2014-01-20 19:07 - 2013-10-27 17:31 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-20 18:44 - 2014-01-20 18:44 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-20 18:44 - 2013-06-23 12:57 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-18 19:45 - 2014-01-18 19:45 - 00003140 _____ () C:\Windows\System32\Tasks\{49CBD931-D25E-4E0F-9E09-9FE4501EC7F3}
2014-01-18 19:44 - 2014-01-18 19:44 - 01551008 _____ (Skype Technologies S.A.) C:\Users\Mercan\Downloads\SkypeSetup.exe
2014-01-18 19:37 - 2013-01-29 20:35 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-01-18 19:37 - 2013-01-28 11:08 - 00000000 ____D () C:\ProgramData\Skype
2014-01-17 19:21 - 2014-01-15 11:59 - 00000000 ____D () C:\Users\Mercan\Desktop\condé nast bewerbungen
2014-01-16 12:09 - 2009-07-14 05:45 - 05007088 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-15 17:30 - 2013-01-29 20:03 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-15 17:28 - 2013-08-15 13:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-15 17:23 - 2013-01-29 20:43 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 12:10 - 2014-01-15 11:59 - 00000000 ____D () C:\Users\Mercan\Desktop\boss bewerbungen
2014-01-12 14:58 - 2013-05-11 10:44 - 00000000 ____D () C:\Users\Mercan\Desktop\WS 2014-15
Some content of TEMP:
====================
C:\Users\Mercan\AppData\Local\Temp\Quarantine.exe
C:\Users\Mercan\AppData\Local\Temp\vcredist_x86_KB2538242.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-05 11:11
==================== End Of Log ============================
--- --- ---
--- --- ---
--- --- ---
Ich seh schon, mein flash player ist nicht aktuell :)
War das alles?
Kannst du mir vielleicht sagen, was mein PC eigentlich hatte?
Ich hoffe, ich hab alles richtig gemacht.
Ich danke dir sehr. Was hätte ich nur ohne dich gemacht? :)
Wie geht da mit der Spende an Trojaner-Board?
Liebe Grüße