Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   PUP.Optional.SearchCertifiedTB.A / search.certified-toolbar (https://www.trojaner-board.de/149837-pup-optional-searchcertifiedtb-a-search-certified-toolbar.html)

schrauber 25.02.2014 13:01
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

hope_13 25.02.2014 17:03
hallo schrauber,

ein weiterer versuch, das notebook mit malewarebytes scannen zu lassen, ist fehlgeschlagen.

malewarebytes stürzt nach 30 min. ab & friert ein.
was nun?

beste grüße
hope13

schrauber 26.02.2014 14:21
Lass MBAM erstmal weg.

hope_13 03.03.2014 09:01
hallo schrauber,

nun die ergebnisse meiner scans:



jrt

[HTML]~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Microsoft Windows XP x86
Ran by vian on 28.02.2014 at 10:11:17,29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 28.02.2014 at 10:15:53,62
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[HTML]

das protokoll von adwarecleaner kann ich dummerweise nicht mehr finden, die software hatte 3 objekte gefunden.

malewarebytes brach wieder ab, ich hoffe, die übersandten infos nutzen dir .

danke für deinen support
hope13

hier das letzte frst:

danke! hope13


FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-03-2014
Ran by vian (administrator) on SYLVIANOTEBOOK on 03-03-2014 08:59:35
Running from C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temporary Internet Files\Content.IE5\VI38HLTR
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avfwsvc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(GEAR Software) C:\WINDOWS\System32\GEARSec.exe
(Hewlett-Packard Company) C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE
(Symantec Corporation) C:\Programme\Symantec\Norton Ghost\Agent\PQV2iSvc.exe
() C:\Programme\1&1 Surf-Stick\AssistantServices.exe
(Google Inc.) C:\Programme\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Hewlett-Packard Development Company, L.P.) C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
(ATI Technologies, Inc.) C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
(Hewlett-Packard Co.) C:\Programme\Hp\HP Software Update\HPWuSchd2.exe
(Synaptics, Inc.) C:\Programme\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard ) C:\Programme\HPQ\Quick Launch Buttons\EabServr.exe
(Hewlett-Packard Development Company, L.P.) C:\Programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
(HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
() C:\Programme\1&1 Surf-Stick\UIExec.exe
() C:\Programme\HPQ\shared\HpqToaster.exe
(Adobe Systems Incorporated) C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Programme\Internet Explorer\iexplore.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe
(Farbar) C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temporary Internet Files\Content.IE5\VI38HLTR\FRST[1].exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ATIPTA] - C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064 2005-11-10] (ATI Technologies, Inc.)
HKLM\...\Run: [HP Software Update] - C:\Programme\Hp\HP Software Update\HPWuSchd2.exe [49152 2005-02-16] (Hewlett-Packard Co.)
HKLM\...\Run: [SynTPEnh] - C:\Programme\Synaptics\SynTP\SynTPEnh.exe [729178 2005-06-19] (Synaptics, Inc.)
HKLM\...\Run: [eabconfg.cpl] - C:\Programme\HPQ\Quick Launch Buttons\EabServr.exe [405504 2005-12-22] (Hewlett-Packard )
HKLM\...\Run: [Cpqset] - C:\Programme\HPQ\Default Settings\cpqset.exe [233534 2005-08-01] ()
HKLM\...\Run: [RecGuard] - C:\Windows\SMINST\RecGuard.exe [1187840 2005-10-11] ()
HKLM\...\Run: [hpWirelessAssistant] - C:\Programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [507904 2005-12-13] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [HPDJ Taskbar Utility] - C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe [188416 2002-06-04] (HP)
HKLM\...\Run: [UIExec] - C:\Programme\1&1 Surf-Stick\UIExec.exe [139088 2010-09-30] ()
HKLM\...\Run: [Adobe ARM] - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Programme\Avira\AntiVir Desktop\avgnt.exe [684600 2014-02-03] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\.DEFAULT\...\Run: [Nokia.PCSync] - C:\Programme\Nokia\Nokia PC Suite 6\PcSync2.exe [1241088 2007-06-19] (Time Information Services Ltd.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - DefaultScope value is missing.
BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar3.dll No File
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll No File
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {C4069E3A-68F1-403E-B40E-20066696354B} -  No File
Toolbar: HKCU - &Google - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll No File
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Winsock: Catalog9 01 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 22 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Programme\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Programme\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Programme\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Programme\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.5.5) - C:\Programme\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Programme\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Programme\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft® DRM) - C:\Programme\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Updater) - C:\Programme\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
CHR Plugin: (Google Update) - C:\Programme\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (MetaStream 3 Plugin) - C:\Programme\Viewpoint\Viewpoint Media Player\npViewpoint.dll No File
CHR Plugin: (iTunes Application Detector) - C:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Extension: (Google Wallet) - C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-28]

========================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe [69632 2006-06-27] (Adobe Systems)
R2 AntiVirFirewallService; C:\Programme\Avira\AntiVir Desktop\avfwsvc.exe [1012280 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirMailService; C:\Programme\Avira\AntiVir Desktop\avmailc.exe [896056 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [440376 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [440376 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 GEARSecurity; C:\WINDOWS\System32\GEARSec.exe [53248 2004-07-29] (GEAR Software)
S2 gupdate1ca2ecfa4bb1534; C:\Programme\Google\Update\GoogleUpdate.exe [133104 2009-09-06] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [133104 2009-09-06] (Google Inc.)
S2 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [194104 2011-09-12] (Google)
R2 hpqwmiex; C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe [98304 2005-12-21] (Hewlett-Packard Development Company, L.P.)
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation)
S3 iPod Service; C:\Programme\iPod\bin\iPodService.exe [820008 2010-11-11] (Apple Inc.)
R2 LightScribeService; C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe [73728 2005-11-15] (Hewlett-Packard Company)
R2 MBAMScheduler; C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MDM; C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE [322120 2003-06-19] (Microsoft Corporation)
S4 NetFxUpdate_v1.1.4322; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe [73728 2007-01-15] (Microsoft)
R2 Norton Ghost; C:\Programme\Symantec\Norton Ghost\Agent\PQV2iSvc.exe [1269760 2004-07-29] (Symantec Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [300544 2007-06-15] (Nokia.)
S3 SNDSrvc; c:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe [214720 2006-06-08] (Symantec Corporation)
R2 UI Assistant Service; C:\Programme\1&1 Surf-Stick\AssistantServices.exe [253264 2010-09-30] ()
S3 Ab90seccbdii; No ImagePath

==================== Drivers (Whitelisted) ====================

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2011-02-11] (Cisco Systems, Inc.)
S3 AlcrFilt; C:\WINDOWS\System32\Drivers\AlcrFilt.sys [22860 2002-09-18] (AlcorMicro)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2005-03-09] (Advanced Micro Devices)
R3 avfwim; C:\WINDOWS\System32\DRIVERS\avfwim.sys [92448 2013-08-05] (Avira GmbH)
R1 avfwot; C:\WINDOWS\System32\DRIVERS\avfwot.sys [113024 2013-08-05] (Avira GmbH)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2014-02-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2014-02-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2014-02-03] (Avira Operations GmbH & Co. KG)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [424320 2005-11-28] (Broadcom Corporation)
R0 BsStor; C:\WINDOWS\System32\DRIVERS\bsstor.sys [9344 2002-06-06] (B.H.A Co.,Ltd.)
R2 BsUDF; C:\WINDOWS\system32\Drivers\BsUDF.sys [459776 2002-12-12] (ahead software)
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [56648 2005-08-18] (Broadcom Corporation.)
R2 CB90Dev1; C:\WINDOWS\system32\Drivers\CB90Dev1.sys [13952 2008-03-29] (Microsoft Corporation)
R2 CB90Dev2; C:\WINDOWS\system32\Drivers\CB90Dev2.sys [13952 2008-03-29] (Microsoft Corporation)
R2 CB90Dev3; C:\WINDOWS\system32\Drivers\CB90Dev3.sys [13952 2008-03-29] (Microsoft Corporation)
R1 eabfiltr; C:\WINDOWS\system32\drivers\EABFiltr.sys [7936 2005-05-05] (Hewlett-Packard Development Company, L.P.)
S3 eabusb; C:\WINDOWS\system32\drivers\eabusb.sys [5760 2005-05-05] (Hewlett-Packard Development Company, L.P.)
R2 Hardlock; C:\WINDOWS\system32\drivers\HARDLOCK.SYS [27648 2008-03-29] (///FAST Software Security)
R3 HSFHWATI; C:\WINDOWS\System32\DRIVERS\HSFHWATI.sys [231424 2005-08-22] (Conexant Systems, Inc.)
R1 incdrm; C:\WINDOWS\system32\Drivers\incdrm.sys [7582 2002-10-08] (Ahead Software AG)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\mbamswissarmy.sys [40776 2014-02-28] (Malwarebytes Corporation)
R1 PQIMount; C:\WINDOWS\system32\Drivers\PQIMount.sys [46779 2004-07-29] (PowerQuest Corporation)
R0 PQV2i; C:\WINDOWS\system32\Drivers\PQV2i.sys [138780 2004-07-29] (StorageCraft)
S3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [35913 2001-08-18] (SMC)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2013-08-05] (Avira GmbH)
S3 SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [12992 2006-06-08] (Symantec Corporation)
R3 SymEvent; C:\Programme\Symantec\SYMEVENT.SYS [107696 2006-05-16] (Symantec Corporation)
S3 SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [110784 2006-06-08] (Symantec Corporation)
S3 SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [31936 2006-06-08] (Symantec Corporation)
S3 SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [28352 2006-06-08] (Symantec Corporation)
S3 SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [24768 2006-06-08] (Symantec Corporation)
R1 SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [195776 2006-06-08] (Symantec Corporation)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-28 10:44 - 2014-02-28 10:44 - 00040776 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-02-28 10:44 - 2014-02-28 10:44 - 00000768 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-28 10:44 - 2014-02-28 10:44 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2014-02-28 10:44 - 2014-02-28 10:44 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
2014-02-28 10:44 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-02-28 10:15 - 2014-02-28 10:15 - 00000580 _____ () C:\Dokumente und Einstellungen\vian\Desktop\JRT.txt
2014-02-28 10:11 - 2014-02-28 10:11 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-25 17:08 - 2014-03-03 08:38 - 00000000 ____D () C:\AdwCleaner
2014-02-25 13:45 - 2014-02-25 13:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2014-02-25 13:45 - 2014-02-25 13:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2909212$
2014-02-24 14:11 - 2014-03-03 08:42 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Desktop\scans
2014-02-24 13:59 - 2014-03-03 08:59 - 00000000 ____D () C:\FRST
2014-02-24 12:52 - 2014-02-25 13:45 - 00024433 _____ () C:\WINDOWS\KB2909212.log
2014-02-24 12:52 - 2014-02-25 13:45 - 00024344 _____ () C:\WINDOWS\KB2916036.log
2014-02-24 12:50 - 2014-02-25 13:45 - 00117019 _____ () C:\WINDOWS\KB2909921-IE7.log
2014-02-03 15:30 - 2014-02-03 15:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-02-03 15:29 - 2014-02-03 15:30 - 00017781 _____ () C:\WINDOWS\KB2900986.log
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-02-03 15:28 - 2014-02-03 15:28 - 00018641 _____ () C:\WINDOWS\KB2862335.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00017174 _____ () C:\WINDOWS\KB2904266.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-02-03 15:28 - 2014-02-03 15:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-02-03 15:26 - 2014-02-03 15:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-02-03 15:26 - 2014-02-03 15:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-02-03 15:25 - 2014-02-03 15:26 - 00016759 _____ () C:\WINDOWS\KB2868038.log
2014-02-03 15:25 - 2014-02-03 15:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893984$
2014-02-03 15:25 - 2014-02-03 15:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-02-03 15:24 - 2014-02-03 15:24 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-02-03 15:21 - 2014-02-03 15:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-02-03 15:01 - 2014-02-03 15:01 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-02-03 14:51 - 2014-02-03 15:02 - 00005078 _____ () C:\WINDOWS\KB2914368.log
2014-02-03 14:43 - 2014-02-03 14:43 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Anwendungsdaten\Malwarebytes
2014-02-03 14:43 - 2014-02-03 14:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-02-03 13:05 - 2014-02-03 13:05 - 00001899 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Google Earth.lnk
2014-02-03 13:05 - 2014-02-03 13:05 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Earth
2014-02-03 12:55 - 2014-02-03 15:30 - 00024605 _____ () C:\WINDOWS\KB2868626.log
2014-02-03 12:55 - 2014-02-03 15:29 - 00023924 _____ () C:\WINDOWS\KB2898715.log
2014-02-03 12:55 - 2014-02-03 15:29 - 00023629 _____ () C:\WINDOWS\KB2847311.log
2014-02-03 12:55 - 2014-02-03 15:28 - 00022915 _____ () C:\WINDOWS\KB2876217.log
2014-02-03 12:55 - 2014-02-03 15:27 - 00022398 _____ () C:\WINDOWS\KB2864063.log
2014-02-03 12:55 - 2014-02-03 15:27 - 00021878 _____ () C:\WINDOWS\KB2862152.log
2014-02-03 12:55 - 2014-02-03 15:26 - 00021362 _____ () C:\WINDOWS\KB2876331.log
2014-02-03 12:55 - 2014-02-03 15:25 - 00020679 _____ () C:\WINDOWS\KB2893294.log
2014-02-03 12:55 - 2013-07-17 01:58 - 00123008 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2014-02-03 12:55 - 2013-07-03 03:12 - 00025088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2014-02-03 12:54 - 2014-02-03 15:25 - 00021093 _____ () C:\WINDOWS\KB2893984.log
2014-02-03 12:54 - 2014-02-03 15:24 - 00019802 _____ () C:\WINDOWS\KB2892075.log
2014-02-03 12:54 - 2013-08-09 01:55 - 00144128 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2014-02-03 12:54 - 2013-08-09 01:55 - 00005376 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2014-02-03 12:54 - 2009-03-18 12:02 - 00030336 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2014-02-03 12:52 - 2014-02-03 15:24 - 00111866 _____ () C:\WINDOWS\KB2898785-IE7.log

==================== One Month Modified Files and Folders =======

2014-03-03 08:59 - 2014-02-24 13:59 - 00000000 ____D () C:\FRST
2014-03-03 08:59 - 2013-02-10 11:09 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-03-03 08:53 - 2009-09-06 11:07 - 00001090 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-03 08:42 - 2014-02-24 14:11 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Desktop\scans
2014-03-03 08:38 - 2014-02-25 17:08 - 00000000 ____D () C:\AdwCleaner
2014-03-03 08:12 - 2004-08-07 06:32 - 01334848 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-03 08:12 - 2004-08-07 06:27 - 00906376 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-03 08:11 - 2004-08-07 06:32 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2014-03-03 08:08 - 2009-09-06 11:07 - 00001086 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-03 08:07 - 2004-08-07 07:07 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-03-03 08:07 - 2004-08-07 07:07 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-03-03 08:07 - 2004-08-07 06:32 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-28 21:42 - 2004-08-07 06:32 - 00032478 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-28 21:41 - 2006-06-21 15:23 - 00000300 ___SH () C:\Dokumente und Einstellungen\vian\ntuser.ini
2014-02-28 21:41 - 2006-06-21 15:23 - 00000000 ____D () C:\Dokumente und Einstellungen\vian
2014-02-28 14:13 - 2009-09-06 09:51 - 00001014 _____ () C:\WINDOWS\Tasks\Google Software Updater.job
2014-02-28 11:00 - 2013-02-10 11:09 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-28 11:00 - 2013-02-10 11:09 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-02-28 10:44 - 2014-02-28 10:44 - 00040776 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-02-28 10:44 - 2014-02-28 10:44 - 00000768 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-28 10:44 - 2014-02-28 10:44 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2014-02-28 10:44 - 2014-02-28 10:44 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
2014-02-28 10:44 - 2006-04-12 04:40 - 00000000 ___RD () C:\Programme
2014-02-28 10:44 - 2006-04-12 04:40 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-02-28 10:15 - 2014-02-28 10:15 - 00000580 _____ () C:\Dokumente und Einstellungen\vian\Desktop\JRT.txt
2014-02-28 10:11 - 2014-02-28 10:11 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-25 13:45 - 2014-02-25 13:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2014-02-25 13:45 - 2014-02-25 13:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2909212$
2014-02-25 13:45 - 2014-02-24 12:52 - 00024433 _____ () C:\WINDOWS\KB2909212.log
2014-02-25 13:45 - 2014-02-24 12:52 - 00024344 _____ () C:\WINDOWS\KB2916036.log
2014-02-25 13:45 - 2014-02-24 12:50 - 00117019 _____ () C:\WINDOWS\KB2909921-IE7.log
2014-02-25 13:45 - 2006-04-11 20:51 - 00402601 _____ () C:\WINDOWS\updspapi.log
2014-02-25 13:45 - 2004-08-07 06:32 - 01012056 _____ () C:\WINDOWS\setupapi.log
2014-02-25 13:45 - 2004-08-07 06:31 - 01195674 _____ () C:\WINDOWS\tsoc.log
2014-02-25 13:45 - 2004-08-07 06:31 - 00496927 _____ () C:\WINDOWS\iis6.log
2014-02-25 13:45 - 2004-08-07 06:18 - 01007789 _____ () C:\WINDOWS\comsetup.log
2014-02-25 13:45 - 2004-08-07 06:18 - 00609635 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-25 13:45 - 2004-08-07 06:18 - 00166508 _____ () C:\WINDOWS\ocmsn.log
2014-02-25 13:45 - 2004-08-07 06:18 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-02-25 13:45 - 2004-08-07 06:18 - 00001374 _____ () C:\WINDOWS\imsins.BAK
2014-02-25 13:45 - 2004-08-07 06:10 - 03113948 _____ () C:\WINDOWS\FaxSetup.log
2014-02-25 13:45 - 2004-08-07 06:10 - 01499849 _____ () C:\WINDOWS\ocgen.log
2014-02-25 13:45 - 2004-08-07 06:10 - 00155236 _____ () C:\WINDOWS\msgsocm.log
2014-02-25 13:44 - 2007-02-05 09:24 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-02-25 13:44 - 2006-12-15 08:57 - 00000000 ____D () C:\WINDOWS\system32\de-de
2014-02-25 13:40 - 2013-08-06 07:23 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-25 13:31 - 2006-06-27 16:23 - 85946576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-24 13:01 - 2006-06-28 09:36 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-02-24 12:49 - 2006-04-12 04:40 - 00000000 ____D () C:\WINDOWS\Registration
2014-02-06 03:49 - 2006-11-07 21:03 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\webcheck.dll
2014-02-06 03:49 - 2006-10-17 12:05 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\url.dll
2014-02-06 03:49 - 2006-10-17 12:04 - 00102912 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\occache.dll
2014-02-06 03:49 - 2006-09-18 15:14 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vgx.dll
2014-02-06 03:49 - 2006-05-10 06:23 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wininet.dll
2014-02-06 03:49 - 2006-05-10 06:22 - 01172992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\urlmon.dll
2014-02-06 03:49 - 2006-05-10 06:22 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pngfilt.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 01172992 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-02-06 03:48 - 2007-05-10 20:37 - 06108672 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2014-02-06 03:48 - 2007-05-10 20:37 - 00496128 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2014-02-06 03:48 - 2007-05-10 20:37 - 00268288 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2014-02-06 03:48 - 2007-05-10 20:37 - 00052224 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2014-02-06 03:48 - 2006-11-07 21:03 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-06 03:48 - 2006-11-07 21:03 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-06 03:48 - 2006-11-07 21:03 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-02-06 03:48 - 2006-11-07 03:26 - 00044544 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iernonce.dll
2014-02-06 03:48 - 2006-10-17 12:05 - 01830912 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcpl.cpl
2014-02-06 03:48 - 2006-10-17 11:57 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-06 03:48 - 2006-05-19 16:09 - 03627520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstime.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtmled.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msrating.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsproxy.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 03627520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 01830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-06 03:48 - 2004-08-04 09:00 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstime.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-06 03:47 - 2009-06-29 16:55 - 00017408 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\corpol.dll
2014-02-06 03:47 - 2009-02-20 17:49 - 00078336 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieencode.dll
2014-02-06 03:47 - 2007-08-20 10:55 - 00063488 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icardie.dll
2014-02-06 03:47 - 2007-05-10 20:37 - 00380928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieapfltr.dll
2014-02-06 03:47 - 2006-11-07 03:27 - 00388608 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedkcs32.dll
2014-02-06 03:47 - 2006-11-07 03:27 - 00230400 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieaksie.dll
2014-02-06 03:47 - 2006-11-07 03:26 - 00153088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieakeng.dll
2014-02-06 03:47 - 2006-11-07 03:26 - 00124928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advpack.dll
2014-02-06 03:47 - 2006-10-17 11:58 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icardie.dll
2014-02-06 03:47 - 2006-10-17 11:27 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-06 03:47 - 2006-05-10 06:22 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxtmsft.dll
2014-02-06 03:47 - 2006-05-10 06:22 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxtrans.dll
2014-02-06 03:47 - 2006-05-10 06:22 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\extmgr.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieaksie.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieakeng.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\extmgr.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\advpack.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieencode.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\corpol.dll
2014-02-06 02:47 - 2007-05-10 20:37 - 00013824 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieudinit.exe
2014-02-06 02:47 - 2006-11-07 03:26 - 00070656 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ie4uinit.exe
2014-02-06 02:47 - 2006-11-07 03:26 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieudinit.exe
2014-02-06 02:47 - 2004-08-04 09:00 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-06 02:43 - 2006-10-17 12:04 - 00643312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe
2014-02-06 02:41 - 2006-11-07 03:25 - 00161792 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieakui.dll
2014-02-06 02:41 - 2004-08-04 09:00 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieakui.dll
2014-02-03 19:30 - 2011-06-06 19:14 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Desktop\privat
2014-02-03 19:24 - 2004-08-07 06:19 - 00245512 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-03 15:30 - 2014-02-03 15:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-02-03 15:30 - 2014-02-03 15:29 - 00017781 _____ () C:\WINDOWS\KB2900986.log
2014-02-03 15:30 - 2014-02-03 12:55 - 00024605 _____ () C:\WINDOWS\KB2868626.log
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-02-03 15:29 - 2014-02-03 12:55 - 00023924 _____ () C:\WINDOWS\KB2898715.log
2014-02-03 15:29 - 2014-02-03 12:55 - 00023629 _____ () C:\WINDOWS\KB2847311.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00018641 _____ () C:\WINDOWS\KB2862335.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00017174 _____ () C:\WINDOWS\KB2904266.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-02-03 15:28 - 2014-02-03 15:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-02-03 15:28 - 2014-02-03 12:55 - 00022915 _____ () C:\WINDOWS\KB2876217.log
2014-02-03 15:28 - 2007-03-24 16:52 - 00894454 _____ () C:\WINDOWS\system32\TZLog.log
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-02-03 15:27 - 2014-02-03 12:55 - 00022398 _____ () C:\WINDOWS\KB2864063.log
2014-02-03 15:27 - 2014-02-03 12:55 - 00021878 _____ () C:\WINDOWS\KB2862152.log
2014-02-03 15:26 - 2014-02-03 15:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-02-03 15:26 - 2014-02-03 15:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-02-03 15:26 - 2014-02-03 15:25 - 00016759 _____ () C:\WINDOWS\KB2868038.log
2014-02-03 15:26 - 2014-02-03 12:55 - 00021362 _____ () C:\WINDOWS\KB2876331.log
2014-02-03 15:25 - 2014-02-03 15:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893984$
2014-02-03 15:25 - 2014-02-03 15:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-02-03 15:25 - 2014-02-03 12:55 - 00020679 _____ () C:\WINDOWS\KB2893294.log
2014-02-03 15:25 - 2014-02-03 12:54 - 00021093 _____ () C:\WINDOWS\KB2893984.log
2014-02-03 15:24 - 2014-02-03 15:24 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-02-03 15:24 - 2014-02-03 12:54 - 00019802 _____ () C:\WINDOWS\KB2892075.log
2014-02-03 15:24 - 2014-02-03 12:52 - 00111866 _____ () C:\WINDOWS\KB2898785-IE7.log
2014-02-03 15:21 - 2014-02-03 15:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-02-03 15:02 - 2014-02-03 14:51 - 00005078 _____ () C:\WINDOWS\KB2914368.log
2014-02-03 15:01 - 2014-02-03 15:01 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-02-03 14:43 - 2014-02-03 14:43 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Anwendungsdaten\Malwarebytes
2014-02-03 14:43 - 2014-02-03 14:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-02-03 14:42 - 2008-03-28 12:38 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Eigene Dateien\tools
2014-02-03 14:08 - 2013-08-05 21:56 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-02-03 14:08 - 2013-08-05 21:56 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-02-03 14:08 - 2013-08-05 21:56 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-02-03 13:05 - 2014-02-03 13:05 - 00001899 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Google Earth.lnk
2014-02-03 13:05 - 2014-02-03 13:05 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Earth
2014-02-03 13:03 - 2009-09-06 09:51 - 00000000 ____D () C:\Programme\Google
2014-02-03 12:49 - 2011-09-06 12:38 - 00002347 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader X.lnk

Files to move or delete:
====================
C:\Dokumente und Einstellungen\vian\db.dat


Some content of TEMP:
====================
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\avgnt.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\contentDATs.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\hpzmsi01.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\hpzscr01.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\Nokia_PC_Suite_7_1_40_1_ger.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\Quarantine.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\SecurityScan_Release.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\setup_wm.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\SkypeSetup.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\VisusClient.dll


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2004-08-04 09:00] - [2008-04-14 03:22] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e

C:\WINDOWS\system32\winlogon.exe
[2004-08-04 09:00] - [2008-04-14 03:23] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a

C:\WINDOWS\system32\svchost.exe
[2004-08-04 09:00] - [2008-04-14 03:23] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366

C:\WINDOWS\system32\services.exe
[2004-08-04 09:00] - [2009-02-09 12:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc

C:\WINDOWS\system32\User32.dll
[2004-08-04 09:00] - [2008-04-14 03:22] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd

C:\WINDOWS\system32\userinit.exe
[2004-08-04 09:00] - [2008-04-14 03:23] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106

C:\WINDOWS\system32\rpcss.dll
[2004-08-04 09:00] - [2009-02-09 11:51] - 0401408 ____A (Microsoft Corporation) 3127afbf2c1ed0ab14a1bbb7aaecb85b

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-04 09:00] - [2008-04-14 02:52] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d


==================== End Of Log ============================
--- --- ---

--- --- ---

schrauber 04.03.2014 09:30

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

hope_13 04.03.2014 14:55
hallo schrauber,

da bin ich wieder.

hier das eset:

HTML-Code:
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=b566e44a7b46a14aa13095d48a7e4065
# engine=17304
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-03-04 10:18:18
# local_time=2014-03-04 11:18:18 (+0100, Westeuropäische Normalzeit)
# country="Germany"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# scanned=59025
# found=0
# cleaned=0
# scan_time=4002
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=b566e44a7b46a14aa13095d48a7e4065
# engine=17307
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-03-04 12:44:34
# local_time=2014-03-04 01:44:34 (+0100, Westeuropäische Normalzeit)
# country="Germany"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# scanned=131849
# found=0
# cleaned=0
# scan_time=8635
security check:

nichts gefunden.

HTML-Code:
Results of screen317's Security Check version 0.99.79 
 Windows XP Service Pack 3 x86 
 Internet Explorer 7 [color=red][b]Out of date![/b][/color]
[b][u]``````````````Antivirus/Firewall Check:``````````````[/u][/b][u][/u]
 Avira Internet Security   
 ESET Online Scanner v3 
 Avira successfully updated!
[b][u]`````````Anti-malware/Other Utilities Check:`````````[/u][/b][u][/u]
 Norton Ghost 9.0 
 Malwarebytes Anti-Malware Version 1.75.0.1300 
 Java(TM) 6 Update 2 
 Java(TM) 6 Update 3 
 [color=red][b]Java version out of Date![/b][/color]
 Adobe Flash Player        12.0.0.70 
 Adobe Reader 10.1.9 [color=red][b]Adobe Reader out of Date![/b][/color] 
 Google Chrome 33.0.1750.117 
 Google Chrome 33.0.1750.146 
[b][u]````````Process Check: objlist.exe by Laurent````````[/u][/b][u][/u] 
 Malwarebytes Anti-Malware mbamservice.exe 
 Malwarebytes Anti-Malware mbamgui.exe 
 Avira Antivir avgnt.exe
 Avira Antivir avguard.exe
 Malwarebytes' Anti-Malware mbamscheduler.exe 
[b][u]`````````````````System Health check`````````````````[/u][/b][u][/u]
 Total Fragmentation on Drive C:: 
[b][u]````````````````````End of Log``````````````````````[/u][/b][u][/u]
frisches frst:


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-03-2014 01
Ran by vian (administrator) on SYLVIANOTEBOOK on 04-03-2014 14:48:58
Running from C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temporary Internet Files\Content.IE5\FEC7RNDI
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avfwsvc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(GEAR Software) C:\WINDOWS\System32\GEARSec.exe
(Hewlett-Packard Company) C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE
(Google Inc.) C:\Programme\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
() C:\Programme\1&1 Surf-Stick\AssistantServices.exe
(Hewlett-Packard Development Company, L.P.) C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE
(ATI Technologies, Inc.) C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
(Hewlett-Packard Co.) C:\Programme\Hp\HP Software Update\HPWuSchd2.exe
(Synaptics, Inc.) C:\Programme\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard ) C:\Programme\HPQ\Quick Launch Buttons\EabServr.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avcenter.exe
(Hewlett-Packard Development Company, L.P.) C:\Programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
(HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
() C:\Programme\1&1 Surf-Stick\UIExec.exe
() C:\Programme\HPQ\shared\HpqToaster.exe
(Microsoft Corporation) C:\Programme\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(Farbar) C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temporary Internet Files\Content.IE5\FEC7RNDI\FRST[1].exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ATIPTA] - C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064 2005-11-10] (ATI Technologies, Inc.)
HKLM\...\Run: [HP Software Update] - C:\Programme\Hp\HP Software Update\HPWuSchd2.exe [49152 2005-02-16] (Hewlett-Packard Co.)
HKLM\...\Run: [SynTPEnh] - C:\Programme\Synaptics\SynTP\SynTPEnh.exe [729178 2005-06-19] (Synaptics, Inc.)
HKLM\...\Run: [eabconfg.cpl] - C:\Programme\HPQ\Quick Launch Buttons\EabServr.exe [405504 2005-12-22] (Hewlett-Packard )
HKLM\...\Run: [Cpqset] - C:\Programme\HPQ\Default Settings\cpqset.exe [233534 2005-08-01] ()
HKLM\...\Run: [RecGuard] - C:\Windows\SMINST\RecGuard.exe [1187840 2005-10-11] ()
HKLM\...\Run: [hpWirelessAssistant] - C:\Programme\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [507904 2005-12-13] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [HPDJ Taskbar Utility] - C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe [188416 2002-06-04] (HP)
HKLM\...\Run: [UIExec] - C:\Programme\1&1 Surf-Stick\UIExec.exe [139088 2010-09-30] ()
HKLM\...\Run: [Adobe ARM] - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Programme\Avira\AntiVir Desktop\avgnt.exe [684600 2014-02-03] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\.DEFAULT\...\Run: [Nokia.PCSync] - C:\Programme\Nokia\Nokia PC Suite 6\PcSync2.exe [1241088 2007-06-19] (Time Information Services Ltd.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - DefaultScope value is missing.
BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar3.dll No File
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll No File
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {C4069E3A-68F1-403E-B40E-20066696354B} -  No File
Toolbar: HKCU - &Google - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll No File
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Winsock: Catalog9 01 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 22 C:\Programme\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Programme\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Programme\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Programme\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Programme\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.5.5) - C:\Programme\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Programme\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Programme\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Programme\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft® DRM) - C:\Programme\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Updater) - C:\Programme\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
CHR Plugin: (Google Update) - C:\Programme\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (MetaStream 3 Plugin) - C:\Programme\Viewpoint\Viewpoint Media Player\npViewpoint.dll No File
CHR Plugin: (iTunes Application Detector) - C:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Extension: (Google Wallet) - C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-28]

========================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe [69632 2006-06-27] (Adobe Systems)
R2 AntiVirFirewallService; C:\Programme\Avira\AntiVir Desktop\avfwsvc.exe [1012280 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirMailService; C:\Programme\Avira\AntiVir Desktop\avmailc.exe [896056 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [440376 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [440376 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Programme\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2014-02-03] (Avira Operations GmbH & Co. KG)
R2 GEARSecurity; C:\WINDOWS\System32\GEARSec.exe [53248 2004-07-29] (GEAR Software)
S2 gupdate1ca2ecfa4bb1534; C:\Programme\Google\Update\GoogleUpdate.exe [133104 2009-09-06] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [133104 2009-09-06] (Google Inc.)
S2 gusvc; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [194104 2011-09-12] (Google)
R2 hpqwmiex; C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe [98304 2005-12-21] (Hewlett-Packard Development Company, L.P.)
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation)
S3 iPod Service; C:\Programme\iPod\bin\iPodService.exe [820008 2010-11-11] (Apple Inc.)
R2 LightScribeService; C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe [73728 2005-11-15] (Hewlett-Packard Company)
R2 MBAMScheduler; C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MDM; C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE [322120 2003-06-19] (Microsoft Corporation)
S4 NetFxUpdate_v1.1.4322; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe [73728 2007-01-15] (Microsoft)
S2 Norton Ghost; C:\Programme\Symantec\Norton Ghost\Agent\PQV2iSvc.exe [1269760 2004-07-29] (Symantec Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [300544 2007-06-15] (Nokia.)
S3 SNDSrvc; c:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe [214720 2006-06-08] (Symantec Corporation)
R2 UI Assistant Service; C:\Programme\1&1 Surf-Stick\AssistantServices.exe [253264 2010-09-30] ()
S3 Ab90seccbdii; No ImagePath

==================== Drivers (Whitelisted) ====================

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2011-02-11] (Cisco Systems, Inc.)
S3 AlcrFilt; C:\WINDOWS\System32\Drivers\AlcrFilt.sys [22860 2002-09-18] (AlcorMicro)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2005-03-09] (Advanced Micro Devices)
R3 avfwim; C:\WINDOWS\System32\DRIVERS\avfwim.sys [92448 2013-08-05] (Avira GmbH)
R1 avfwot; C:\WINDOWS\System32\DRIVERS\avfwot.sys [113024 2013-08-05] (Avira GmbH)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2014-02-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2014-02-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2014-02-03] (Avira Operations GmbH & Co. KG)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [424320 2005-11-28] (Broadcom Corporation)
R0 BsStor; C:\WINDOWS\System32\DRIVERS\bsstor.sys [9344 2002-06-06] (B.H.A Co.,Ltd.)
R2 BsUDF; C:\WINDOWS\system32\Drivers\BsUDF.sys [459776 2002-12-12] (ahead software)
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [56648 2005-08-18] (Broadcom Corporation.)
R2 CB90Dev1; C:\WINDOWS\system32\Drivers\CB90Dev1.sys [13952 2008-03-29] (Microsoft Corporation)
R2 CB90Dev2; C:\WINDOWS\system32\Drivers\CB90Dev2.sys [13952 2008-03-29] (Microsoft Corporation)
R2 CB90Dev3; C:\WINDOWS\system32\Drivers\CB90Dev3.sys [13952 2008-03-29] (Microsoft Corporation)
R1 eabfiltr; C:\WINDOWS\system32\drivers\EABFiltr.sys [7936 2005-05-05] (Hewlett-Packard Development Company, L.P.)
S3 eabusb; C:\WINDOWS\system32\drivers\eabusb.sys [5760 2005-05-05] (Hewlett-Packard Development Company, L.P.)
R2 Hardlock; C:\WINDOWS\system32\drivers\HARDLOCK.SYS [27648 2008-03-29] (///FAST Software Security)
R3 HSFHWATI; C:\WINDOWS\System32\DRIVERS\HSFHWATI.sys [231424 2005-08-22] (Conexant Systems, Inc.)
R1 incdrm; C:\WINDOWS\system32\Drivers\incdrm.sys [7582 2002-10-08] (Ahead Software AG)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\mbamswissarmy.sys [40776 2014-02-28] (Malwarebytes Corporation)
R1 PQIMount; C:\WINDOWS\system32\Drivers\PQIMount.sys [46779 2004-07-29] (PowerQuest Corporation)
R0 PQV2i; C:\WINDOWS\system32\Drivers\PQV2i.sys [138780 2004-07-29] (StorageCraft)
S3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [35913 2001-08-18] (SMC)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2013-08-05] (Avira GmbH)
S3 SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [12992 2006-06-08] (Symantec Corporation)
R3 SymEvent; C:\Programme\Symantec\SYMEVENT.SYS [107696 2006-05-16] (Symantec Corporation)
S3 SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [110784 2006-06-08] (Symantec Corporation)
S3 SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [31936 2006-06-08] (Symantec Corporation)
S3 SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [28352 2006-06-08] (Symantec Corporation)
S3 SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [24768 2006-06-08] (Symantec Corporation)
R1 SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [195776 2006-06-08] (Symantec Corporation)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-04 10:09 - 2014-03-04 10:09 - 00000000 ____D () C:\Programme\ESET
2014-02-28 10:44 - 2014-02-28 10:44 - 00040776 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-02-28 10:44 - 2014-02-28 10:44 - 00000768 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-28 10:44 - 2014-02-28 10:44 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2014-02-28 10:44 - 2014-02-28 10:44 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
2014-02-28 10:44 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-02-28 10:11 - 2014-02-28 10:11 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-25 17:08 - 2014-03-04 14:47 - 00000000 ____D () C:\AdwCleaner
2014-02-25 13:45 - 2014-02-25 13:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2014-02-25 13:45 - 2014-02-25 13:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2909212$
2014-02-24 14:11 - 2014-03-04 13:58 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Desktop\scans
2014-02-24 13:59 - 2014-03-04 14:48 - 00000000 ____D () C:\FRST
2014-02-24 12:52 - 2014-02-25 13:45 - 00024433 _____ () C:\WINDOWS\KB2909212.log
2014-02-24 12:52 - 2014-02-25 13:45 - 00024344 _____ () C:\WINDOWS\KB2916036.log
2014-02-24 12:50 - 2014-02-25 13:45 - 00117019 _____ () C:\WINDOWS\KB2909921-IE7.log
2014-02-03 15:30 - 2014-02-03 15:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-02-03 15:29 - 2014-02-03 15:30 - 00017781 _____ () C:\WINDOWS\KB2900986.log
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-02-03 15:28 - 2014-02-03 15:28 - 00018641 _____ () C:\WINDOWS\KB2862335.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00017174 _____ () C:\WINDOWS\KB2904266.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-02-03 15:28 - 2014-02-03 15:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-02-03 15:26 - 2014-02-03 15:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-02-03 15:26 - 2014-02-03 15:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-02-03 15:25 - 2014-02-03 15:26 - 00016759 _____ () C:\WINDOWS\KB2868038.log
2014-02-03 15:25 - 2014-02-03 15:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893984$
2014-02-03 15:25 - 2014-02-03 15:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-02-03 15:24 - 2014-02-03 15:24 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-02-03 15:21 - 2014-02-03 15:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-02-03 15:01 - 2014-02-03 15:01 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-02-03 14:51 - 2014-02-03 15:02 - 00005078 _____ () C:\WINDOWS\KB2914368.log
2014-02-03 14:43 - 2014-02-03 14:43 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Anwendungsdaten\Malwarebytes
2014-02-03 14:43 - 2014-02-03 14:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-02-03 13:05 - 2014-02-03 13:05 - 00001899 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Google Earth.lnk
2014-02-03 13:05 - 2014-02-03 13:05 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Earth
2014-02-03 12:55 - 2014-02-03 15:30 - 00024605 _____ () C:\WINDOWS\KB2868626.log
2014-02-03 12:55 - 2014-02-03 15:29 - 00023924 _____ () C:\WINDOWS\KB2898715.log
2014-02-03 12:55 - 2014-02-03 15:29 - 00023629 _____ () C:\WINDOWS\KB2847311.log
2014-02-03 12:55 - 2014-02-03 15:28 - 00022915 _____ () C:\WINDOWS\KB2876217.log
2014-02-03 12:55 - 2014-02-03 15:27 - 00022398 _____ () C:\WINDOWS\KB2864063.log
2014-02-03 12:55 - 2014-02-03 15:27 - 00021878 _____ () C:\WINDOWS\KB2862152.log
2014-02-03 12:55 - 2014-02-03 15:26 - 00021362 _____ () C:\WINDOWS\KB2876331.log
2014-02-03 12:55 - 2014-02-03 15:25 - 00020679 _____ () C:\WINDOWS\KB2893294.log
2014-02-03 12:55 - 2013-07-17 01:58 - 00123008 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2014-02-03 12:55 - 2013-07-03 03:12 - 00025088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2014-02-03 12:54 - 2014-02-03 15:25 - 00021093 _____ () C:\WINDOWS\KB2893984.log
2014-02-03 12:54 - 2014-02-03 15:24 - 00019802 _____ () C:\WINDOWS\KB2892075.log
2014-02-03 12:54 - 2013-08-09 01:55 - 00144128 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2014-02-03 12:54 - 2013-08-09 01:55 - 00005376 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2014-02-03 12:54 - 2009-03-18 12:02 - 00030336 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2014-02-03 12:52 - 2014-02-03 15:24 - 00111866 _____ () C:\WINDOWS\KB2898785-IE7.log

==================== One Month Modified Files and Folders =======

2014-03-04 14:48 - 2014-02-24 13:59 - 00000000 ____D () C:\FRST
2014-03-04 14:47 - 2014-02-25 17:08 - 00000000 ____D () C:\AdwCleaner
2014-03-04 14:13 - 2009-09-06 09:51 - 00001014 _____ () C:\WINDOWS\Tasks\Google Software Updater.job
2014-03-04 13:59 - 2013-02-10 11:09 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-03-04 13:58 - 2014-02-24 14:11 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Desktop\scans
2014-03-04 13:53 - 2009-09-06 11:07 - 00001090 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-04 12:53 - 2009-09-06 11:07 - 00001086 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-04 10:09 - 2014-03-04 10:09 - 00000000 ____D () C:\Programme\ESET
2014-03-04 10:09 - 2006-04-12 04:40 - 00000000 ___RD () C:\Programme
2014-03-04 10:08 - 2004-08-07 06:32 - 01346431 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-04 10:06 - 2004-08-07 06:32 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2014-03-04 10:04 - 2004-08-07 07:07 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2014-03-04 10:04 - 2004-08-07 07:07 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-03-04 10:03 - 2004-08-07 06:32 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-03-04 10:02 - 2004-08-07 06:32 - 00032478 _____ () C:\WINDOWS\SchedLgU.Txt
2014-03-04 10:01 - 2006-06-21 15:23 - 00000300 ___SH () C:\Dokumente und Einstellungen\vian\ntuser.ini
2014-03-04 10:01 - 2006-06-21 15:23 - 00000000 ____D () C:\Dokumente und Einstellungen\vian
2014-03-03 08:12 - 2004-08-07 06:27 - 00906376 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-28 11:00 - 2013-02-10 11:09 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-28 11:00 - 2013-02-10 11:09 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-02-28 10:44 - 2014-02-28 10:44 - 00040776 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2014-02-28 10:44 - 2014-02-28 10:44 - 00000768 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-28 10:44 - 2014-02-28 10:44 - 00000000 ____D () C:\Programme\Malwarebytes' Anti-Malware
2014-02-28 10:44 - 2014-02-28 10:44 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
2014-02-28 10:44 - 2006-04-12 04:40 - 00000000 ___RD () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-02-28 10:11 - 2014-02-28 10:11 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-25 13:45 - 2014-02-25 13:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2014-02-25 13:45 - 2014-02-25 13:45 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2909212$
2014-02-25 13:45 - 2014-02-24 12:52 - 00024433 _____ () C:\WINDOWS\KB2909212.log
2014-02-25 13:45 - 2014-02-24 12:52 - 00024344 _____ () C:\WINDOWS\KB2916036.log
2014-02-25 13:45 - 2014-02-24 12:50 - 00117019 _____ () C:\WINDOWS\KB2909921-IE7.log
2014-02-25 13:45 - 2006-04-11 20:51 - 00402601 _____ () C:\WINDOWS\updspapi.log
2014-02-25 13:45 - 2004-08-07 06:32 - 01012056 _____ () C:\WINDOWS\setupapi.log
2014-02-25 13:45 - 2004-08-07 06:31 - 01195674 _____ () C:\WINDOWS\tsoc.log
2014-02-25 13:45 - 2004-08-07 06:31 - 00496927 _____ () C:\WINDOWS\iis6.log
2014-02-25 13:45 - 2004-08-07 06:18 - 01007789 _____ () C:\WINDOWS\comsetup.log
2014-02-25 13:45 - 2004-08-07 06:18 - 00609635 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-25 13:45 - 2004-08-07 06:18 - 00166508 _____ () C:\WINDOWS\ocmsn.log
2014-02-25 13:45 - 2004-08-07 06:18 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-02-25 13:45 - 2004-08-07 06:18 - 00001374 _____ () C:\WINDOWS\imsins.BAK
2014-02-25 13:45 - 2004-08-07 06:10 - 03113948 _____ () C:\WINDOWS\FaxSetup.log
2014-02-25 13:45 - 2004-08-07 06:10 - 01499849 _____ () C:\WINDOWS\ocgen.log
2014-02-25 13:45 - 2004-08-07 06:10 - 00155236 _____ () C:\WINDOWS\msgsocm.log
2014-02-25 13:44 - 2007-02-05 09:24 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-02-25 13:44 - 2006-12-15 08:57 - 00000000 ____D () C:\WINDOWS\system32\de-de
2014-02-25 13:40 - 2013-08-06 07:23 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-25 13:31 - 2006-06-27 16:23 - 85946576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-24 13:01 - 2006-06-28 09:36 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-02-24 12:49 - 2006-04-12 04:40 - 00000000 ____D () C:\WINDOWS\Registration
2014-02-06 03:49 - 2006-11-07 21:03 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\webcheck.dll
2014-02-06 03:49 - 2006-10-17 12:05 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\url.dll
2014-02-06 03:49 - 2006-10-17 12:04 - 00102912 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\occache.dll
2014-02-06 03:49 - 2006-09-18 15:14 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vgx.dll
2014-02-06 03:49 - 2006-05-10 06:23 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wininet.dll
2014-02-06 03:49 - 2006-05-10 06:22 - 01172992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\urlmon.dll
2014-02-06 03:49 - 2006-05-10 06:22 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pngfilt.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 01172992 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-02-06 03:49 - 2004-08-04 09:00 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-02-06 03:48 - 2007-05-10 20:37 - 06108672 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2014-02-06 03:48 - 2007-05-10 20:37 - 00496128 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2014-02-06 03:48 - 2007-05-10 20:37 - 00268288 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2014-02-06 03:48 - 2007-05-10 20:37 - 00052224 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2014-02-06 03:48 - 2006-11-07 21:03 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-06 03:48 - 2006-11-07 21:03 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-06 03:48 - 2006-11-07 21:03 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-02-06 03:48 - 2006-11-07 03:26 - 00044544 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iernonce.dll
2014-02-06 03:48 - 2006-10-17 12:05 - 01830912 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcpl.cpl
2014-02-06 03:48 - 2006-10-17 11:57 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-06 03:48 - 2006-05-19 16:09 - 03627520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstime.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtmled.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msrating.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll
2014-02-06 03:48 - 2006-05-10 06:22 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsproxy.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 03627520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 01830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-06 03:48 - 2004-08-04 09:00 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstime.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-06 03:48 - 2004-08-04 09:00 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-06 03:47 - 2009-06-29 16:55 - 00017408 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\corpol.dll
2014-02-06 03:47 - 2009-02-20 17:49 - 00078336 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieencode.dll
2014-02-06 03:47 - 2007-08-20 10:55 - 00063488 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icardie.dll
2014-02-06 03:47 - 2007-05-10 20:37 - 00380928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieapfltr.dll
2014-02-06 03:47 - 2006-11-07 03:27 - 00388608 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedkcs32.dll
2014-02-06 03:47 - 2006-11-07 03:27 - 00230400 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieaksie.dll
2014-02-06 03:47 - 2006-11-07 03:26 - 00153088 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieakeng.dll
2014-02-06 03:47 - 2006-11-07 03:26 - 00124928 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advpack.dll
2014-02-06 03:47 - 2006-10-17 11:58 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icardie.dll
2014-02-06 03:47 - 2006-10-17 11:27 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-06 03:47 - 2006-05-10 06:22 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxtmsft.dll
2014-02-06 03:47 - 2006-05-10 06:22 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxtrans.dll
2014-02-06 03:47 - 2006-05-10 06:22 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\extmgr.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieaksie.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieakeng.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\extmgr.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\advpack.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieencode.dll
2014-02-06 03:47 - 2004-08-04 09:00 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\corpol.dll
2014-02-06 02:47 - 2007-05-10 20:37 - 00013824 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieudinit.exe
2014-02-06 02:47 - 2006-11-07 03:26 - 00070656 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ie4uinit.exe
2014-02-06 02:47 - 2006-11-07 03:26 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieudinit.exe
2014-02-06 02:47 - 2004-08-04 09:00 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-06 02:43 - 2006-10-17 12:04 - 00643312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe
2014-02-06 02:41 - 2006-11-07 03:25 - 00161792 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieakui.dll
2014-02-06 02:41 - 2004-08-04 09:00 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieakui.dll
2014-02-03 19:30 - 2011-06-06 19:14 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Desktop\privat
2014-02-03 19:24 - 2004-08-07 06:19 - 00245512 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-03 15:30 - 2014-02-03 15:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-02-03 15:30 - 2014-02-03 15:29 - 00017781 _____ () C:\WINDOWS\KB2900986.log
2014-02-03 15:30 - 2014-02-03 12:55 - 00024605 _____ () C:\WINDOWS\KB2868626.log
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-02-03 15:29 - 2014-02-03 15:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-02-03 15:29 - 2014-02-03 12:55 - 00023924 _____ () C:\WINDOWS\KB2898715.log
2014-02-03 15:29 - 2014-02-03 12:55 - 00023629 _____ () C:\WINDOWS\KB2847311.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00018641 _____ () C:\WINDOWS\KB2862335.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00017174 _____ () C:\WINDOWS\KB2904266.log
2014-02-03 15:28 - 2014-02-03 15:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-02-03 15:28 - 2014-02-03 15:28 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-02-03 15:28 - 2014-02-03 12:55 - 00022915 _____ () C:\WINDOWS\KB2876217.log
2014-02-03 15:28 - 2007-03-24 16:52 - 00894454 _____ () C:\WINDOWS\system32\TZLog.log
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-02-03 15:27 - 2014-02-03 12:55 - 00022398 _____ () C:\WINDOWS\KB2864063.log
2014-02-03 15:27 - 2014-02-03 12:55 - 00021878 _____ () C:\WINDOWS\KB2862152.log
2014-02-03 15:26 - 2014-02-03 15:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-02-03 15:26 - 2014-02-03 15:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-02-03 15:26 - 2014-02-03 15:25 - 00016759 _____ () C:\WINDOWS\KB2868038.log
2014-02-03 15:26 - 2014-02-03 12:55 - 00021362 _____ () C:\WINDOWS\KB2876331.log
2014-02-03 15:25 - 2014-02-03 15:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893984$
2014-02-03 15:25 - 2014-02-03 15:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-02-03 15:25 - 2014-02-03 12:55 - 00020679 _____ () C:\WINDOWS\KB2893294.log
2014-02-03 15:25 - 2014-02-03 12:54 - 00021093 _____ () C:\WINDOWS\KB2893984.log
2014-02-03 15:24 - 2014-02-03 15:24 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-02-03 15:24 - 2014-02-03 12:54 - 00019802 _____ () C:\WINDOWS\KB2892075.log
2014-02-03 15:24 - 2014-02-03 12:52 - 00111866 _____ () C:\WINDOWS\KB2898785-IE7.log
2014-02-03 15:21 - 2014-02-03 15:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-02-03 15:02 - 2014-02-03 14:51 - 00005078 _____ () C:\WINDOWS\KB2914368.log
2014-02-03 15:01 - 2014-02-03 15:01 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-02-03 14:43 - 2014-02-03 14:43 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Anwendungsdaten\Malwarebytes
2014-02-03 14:43 - 2014-02-03 14:43 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2014-02-03 14:42 - 2008-03-28 12:38 - 00000000 ____D () C:\Dokumente und Einstellungen\vian\Eigene Dateien\tools
2014-02-03 14:08 - 2013-08-05 21:56 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-02-03 14:08 - 2013-08-05 21:56 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-02-03 14:08 - 2013-08-05 21:56 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-02-03 13:05 - 2014-02-03 13:05 - 00001899 _____ () C:\Dokumente und Einstellungen\All Users\Desktop\Google Earth.lnk
2014-02-03 13:05 - 2014-02-03 13:05 - 00000000 ____D () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Earth
2014-02-03 13:03 - 2009-09-06 09:51 - 00000000 ____D () C:\Programme\Google
2014-02-03 12:49 - 2011-09-06 12:38 - 00002347 _____ () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader X.lnk

Files to move or delete:
====================
C:\Dokumente und Einstellungen\vian\db.dat


Some content of TEMP:
====================
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\avgnt.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\contentDATs.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\hpzmsi01.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\hpzscr01.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\Nokia_PC_Suite_7_1_40_1_ger.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\Quarantine.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\SecurityScan_Release.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\setup_wm.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\SkypeSetup.exe
C:\Dokumente und Einstellungen\vian\Lokale Einstellungen\Temp\VisusClient.dll


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2004-08-04 09:00] - [2008-04-14 03:22] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e

C:\WINDOWS\system32\winlogon.exe
[2004-08-04 09:00] - [2008-04-14 03:23] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a

C:\WINDOWS\system32\svchost.exe
[2004-08-04 09:00] - [2008-04-14 03:23] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366

C:\WINDOWS\system32\services.exe
[2004-08-04 09:00] - [2009-02-09 12:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc

C:\WINDOWS\system32\User32.dll
[2004-08-04 09:00] - [2008-04-14 03:22] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd

C:\WINDOWS\system32\userinit.exe
[2004-08-04 09:00] - [2008-04-14 03:23] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106

C:\WINDOWS\system32\rpcss.dll
[2004-08-04 09:00] - [2009-02-09 11:51] - 0401408 ____A (Microsoft Corporation) 3127afbf2c1ed0ab14a1bbb7aaecb85b

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-04 09:00] - [2008-04-14 02:52] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d


==================== End Of Log ============================
--- --- ---



was meinst du?

und warum stürzt das gute malewarebytes immer ab?

herzliche grüße & einen großen dank an dich!
hope13

schrauber 05.03.2014 13:45
Hast Du MBAM schon mal neu installiert?

hope_13 05.03.2014 13:57
hallo schrauber,

ja neu installiert & mehrfach probiert, es bricht immer nach 1,5 std. ab, allerdings nicht an derselben stelle.

noch mal neu installieren? man weiß ja nie ...

grundsätzlich läuft es doch auf dem alten windows xp, oder?

und noch eine frage:
was meinst du war der grund für den befall des neuen (zuerst behandelten) systems.
ich bin der meinung, dass ich wirklich vorsichtig bin und alle hinweise berücksichtige.
kann es sein, dass ein befall mit maleware, den wir hier schon zusammen durchgearbeitet haben, wieder "aufersteht", also irgendwo noch ein rest schlummerte?

danke für deine unterstützung
hope13

schrauber 06.03.2014 10:40
Nö. Du musst einfach am Meisten aufpassen was Du an Software installierst, wo du es lädst und wie Du installierst.


Für MBAM benutz mal das:
Malwarebytes Anti-Malware Cleanup Tool Download


Alle Zeitangaben in WEZ +1. Es ist jetzt 05:27 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131