| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
02.07.2013, 22:02
| #1 |
| |  Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? Hallo, Mein Rechner ist in letzter Zeit ziemlich langsam und träge, ich habe ihn 2 Jahre für meine Schule genutzt und habe daher ziemlich viel Schulsoftware auf dem Rechner. Dieser war am Anfang sehr schnell ist und nun von Zeit zu Zeit langsamer geworden. Vor allem merkt man dies an meiner Internetverbindung per Kabel. 100 Mbit soll die max. Geschwindigkeit sein. Dies erreiche ich auf anderen Rechnern einfach, der Laptop hier jedoch erreicht diese Geschwindigkeit nie. Außerdem habe ich mir vor kurzem Delta Search eingefangen (falls man das so nennen darf) und hab nur die Teile in dem mir wichtigen Browser entfernt. Trotzdem bin ich mir nicht sicher ob die Delta Search nicht irgendwie schädlich ist. |
|
03.07.2013, 06:12
| #2 |
| /// the machine /// TB-Ausbilder    | Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? Hi,
__________________Systemscan mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)
 So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
03.07.2013, 10:24
| #3 |
| | Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? Hier die beiden Logs:
__________________FRST: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-07-2013
Ran by *** (administrator) on 03-07-2013 11:07:40
Running from C:\Users\***\Desktop
Windows 8 Pro (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apache Software Foundation) C:\Program Files (x86)\Zend\Apache2\bin\httpd.exe
(Ryan Conrad) C:\Program Files\Droid Explorer\DroidExplorer.Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Apache Software Foundation) C:\Program Files (x86)\Zend\Apache2\bin\httpd.exe
(The PHP Group) C:\Program Files (x86)\Zend\ZendServer\bin\php-cgi.exe
(The PHP Group) C:\Program Files (x86)\Zend\ZendServer\bin\php-cgi.exe
() C:\Program Files\Droid Explorer\android-sdk-windows\platform-tools\adb.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
(Oracle Corporation) c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE
(Oracle Corporation) C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(VMware, Inc.) C:\WINDOWS\SysWOW64\vmnat.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Zend Technologies Ltd.) C:\Program Files (x86)\Zend\ZendServer\bin\zdd.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\WINDOWS\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\WINDOWS\System32\alg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\TOASTER.EXE
() C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Apache Software Foundation) C:\Program Files (x86)\Zend\Apache2\bin\ApacheMonitor.exe
(LOL Replay) C:\Program Files (x86)\LOLReplay\LOLRecorder.exe
() C:\Program Files (x86)\Zend\ZendServer\bin\zendcontroller.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Integrated Webcam\Live! Central\WebcamInt.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Alienware Corp) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Alienware Corporation) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
() C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\sftservice.EXE
(Oracle Corporation) C:\Program Files\Java\jre7\bin\javaw.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\***\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\calc.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2392872 2010-11-29] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-17] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [Command Center Controllers] "C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe" [13256 2011-04-14] (Microsoft)
HKLM\...\Run: [Stage Remote] C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe -Quiet [2034752 2011-08-08] ()
HKCU\...\Run: [Adobe Acrobat Synchronizer] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe" [1261472 2012-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [ISUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler [213936 2006-03-20] (Macrovision Corporation)
HKCU\...\Run: [Spotify Web Helper] "C:\Users\***\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1104384 2013-06-29] (Spotify Ltd)
HKCU\...\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844168 2013-05-12] (Samsung)
HKCU\...\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup [578560 2013-04-18] (Samsung Electronics)
HKCU\...\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload [1561968 2013-04-23] (Samsung)
HKCU\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18705664 2013-01-08] (Skype Technologies S.A.)
HKCU\...\Run: [AdobeBridge] [x]
HKCU\...\Run: [Google Update] "C:\Users\***\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2012-03-05] (Google Inc.)
HKCU\...\Run: [Spotify] "C:\Users\***\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart [4643328 2013-06-29] (Spotify Ltd)
HKCU\...\Run: [DellSystemDetect] C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms [x]
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [35736 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [1636208 2011-09-03] ()
HKLM-x32\...\Run: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe [75048 2011-08-12] (cyberlink)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [Integrated Webcam Live! Central] "C:\Program Files (x86)\Integrated Webcam\Live! Central\WebcamInt.exe" /mode2 [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] "c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe" [50472 2010-09-18] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl9] "c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [87336 2010-10-02] (CyberLink Corp.)
HKLM-x32\...\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [815512 2012-04-04] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [36760 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-03] (Adobe Systems Incorporated)
HKU\UpdatusUser\...\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade [516096 2012-07-26] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL [21864 2012-10-12] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll [20328 2012-10-12] (NVIDIA Corporation)
Startup: C:\ProgramData\Start Menu\Programs\Startup\Apache Web Server Monitor.lnk
ShortcutTarget: Apache Web Server Monitor.lnk -> C:\Program Files (x86)\Zend\Apache2\bin\ApacheMonitor.exe (Apache Software Foundation)
Startup: C:\ProgramData\Start Menu\Programs\Startup\LOLRecorder.lnk
ShortcutTarget: LOLRecorder.lnk -> C:\Program Files (x86)\LOLReplay\LOLRecorder.exe (LOL Replay)
Startup: C:\ProgramData\Start Menu\Programs\Startup\Zend Controller.lnk
ShortcutTarget: Zend Controller.lnk -> C:\Program Files (x86)\Zend\ZendServer\bin\zendcontroller.exe ()
Startup: C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www1.delta-search.com/?affID=119816&tt=gc_&babsrc=HP_ss&mntrId=76410022431207FF
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.de/alienware
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Webtestaufzeichnung 10.0-Hilfsprogramm - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler: msdaipp - No CLSID Value -
Handler-x32: msdaipp - No CLSID Value -
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.9.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\***\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\***\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Users\***\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\Extensions\ich@maltegoetz.de
FF Extension: DownloadHelper - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: No Name - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: No Name - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: Adobe Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
Chrome:
=======
CHR HomePage: hxxp://www.dell.de/alienware
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\***\AppData\Local\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\***\AppData\Local\Google\Chrome\Application\27.0.1453.116\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\***\AppData\Local\Google\Chrome\Application\27.0.1453.116\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U3) - C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.30.255) - C:\Windows\system32\npDeployJava1.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Google Update) - C:\Users\***\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Extension: (Raindrops) - C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcipapbfhdnmgihoimbjiadmhpcgcnil\1.0.0.2_0
CHR Extension: (AdBlock) - C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (ProxMate - Improve your Internet!) - C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\2.3.6_0
CHR Extension: (Auto Refresh Plus) - C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\1.8.9.21_0
==================== Services (Whitelisted) =================
R2 Apache2.2-Zend; C:\Program Files (x86)\Zend\Apache2\bin\httpd.exe [27688 2012-09-05] (Apache Software Foundation)
S2 CLKMSVC10_9EC60124; c:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [248304 2011-08-12] (CyberLink)
R2 DroidExplorerService; C:\Program Files\Droid Explorer\DroidExplorer.Service.exe [253952 2012-05-03] (Ryan Conrad)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184 2012-12-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [682344 2012-12-14] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25088 2012-07-26] (Microsoft Corporation)
S4 OracleJobSchedulerXE; c:\oraclexe\app\oracle\product\11.2.0\server\Bin\extjob.exe [49152 2011-08-27] ()
S3 OracleMTSRecoveryService; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\omtsreco.exe [69632 2011-08-27] (Oracle Corporation)
R2 OracleServiceXE; c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE [115773440 2011-08-27] (Oracle Corporation)
S3 OracleXEClrAgent; C:\oraclexe\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe [12800 2011-08-27] (Oracle Corporation)
R2 OracleXETNSListener; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe [512000 2011-08-27] (Oracle Corporation)
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [143024 2012-10-09] (Stardock Software, Inc)
S2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [471552 2012-07-26] (Microsoft Corporation)
S3 wampapache; c:\wamp\bin\apache\apache2.2.21\bin\httpd.exe [18432 2011-09-26] (Apache Software Foundation)
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.5.16\bin\mysqld.exe [8158720 2011-09-26] ()
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
R2 ZendDeployment; C:\Program Files (x86)\Zend\ZendServer\bin\zdd.exe [707504 2012-09-05] (Zend Technologies Ltd.)
S4 ZendJobQueue; C:\Program Files (x86)\Zend\ZendServer\bin\jqd.exe [795056 2012-09-05] ()
S4 ZendMonitor; C:\Program Files (x86)\Zend\ZendServer\bin\MonitorNode.exe [468912 2012-09-05] (Zend Technologies Ltd.)
S4 ZendSessionClustering; C:\Program Files (x86)\Zend\ZendServer\bin\ZendSessionManager.exe [777648 2012-09-05] ()
==================== Drivers (Whitelisted) ====================
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [29672 2012-12-23] (REALiX(tm))
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24176 2012-12-14] (Malwarebytes Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24176 2012-12-14] (Malwarebytes Corporation)
S3 MEMSWEEP2; C:\Windows\system32\920A.tmp [6144 2009-06-18] (Sophos Plc)
S3 MEMSWEEP2; C:\Windows\system32\920A.tmp [6144 2009-06-18] (Sophos Plc)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [185856 2012-07-26] (Microsoft Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [70256 2012-07-06] (VMware, Inc.)
S3 VSPerfDrv100; C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [68440 2011-01-18] (Microsoft Corporation)
S3 VSPerfDrv100; C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [68440 2011-01-18] (Microsoft Corporation)
U3 idsvc;
U3 kgloikog; \??\C:\Users\***\AppData\Local\Temp\kgloikog.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-03 11:07 - 2013-07-03 11:07 - 00000000 ____D C:\FRST
2013-07-03 11:05 - 2013-07-03 11:06 - 01933556 ____A (Farbar) C:\Users\***\Desktop\FRST64.exe
2013-07-02 23:01 - 2013-07-02 23:01 - 00041378 ____A C:\Users\***\Desktop\logs.zip
2013-07-02 22:55 - 2013-07-02 23:01 - 00016114 ____A C:\Users\***\Desktop\gmer.log
2013-07-02 22:25 - 2013-07-02 23:00 - 00106298 ____A C:\Users\***\Desktop\Extras.Txt
2013-07-02 22:23 - 2013-07-02 23:00 - 00166730 ____A C:\Users\***\Desktop\OTL.Txt
2013-07-02 22:14 - 2013-07-02 22:14 - 00000478 ____A C:\Users\***\Desktop\defogger_disable.log
2013-07-02 22:14 - 2013-07-02 22:14 - 00000000 ____A C:\Users\***\defogger_reenable
2013-07-02 22:13 - 2013-07-02 22:13 - 00377856 ____A C:\Users\***\Desktop\gmer_2.1.19163.exe
2013-07-02 22:12 - 2013-07-02 22:12 - 00050477 ____A C:\Users\***\Desktop\Defogger.exe
2013-07-02 22:11 - 2013-07-02 22:11 - 00602112 ____A (OldTimer Tools) C:\Users\***\Desktop\OTL.exe
2013-07-01 20:18 - 2013-07-01 20:18 - 00035888 ____A C:\Users\***\Downloads\c2ea010dd675aa4998d306f7e1ab6f29.dlc
2013-06-30 23:38 - 2011-08-27 05:03 - 00885124 ____A C:\Users\***\Desktop\Clare, Cassandra - Die Chroniken der Schattenja¨ger 1 - Clockwork Angel.mobi
2013-06-30 23:37 - 2011-08-27 17:14 - 04064157 ____A C:\Users\***\Desktop\Clare, Cassandra - Die Chroniken der Schattenja¨ger 01 - Clockwork Angel.[pdf.epub.mobi.jpg].rar
2013-06-28 12:34 - 2013-06-28 12:34 - 01376768 ____A C:\Users\***\Downloads\7z920-x64.msi
2013-06-28 12:34 - 2013-06-28 12:34 - 00000000 ____D C:\Program Files\7-Zip
2013-06-28 12:23 - 2013-06-28 12:23 - 02871808 ____A (Microsoft Corporation) C:\Users\***\Downloads\explorer_seven_sp1.exe
2013-06-25 10:42 - 2013-06-25 10:53 - 1722418647 ____A C:\Users\***\Downloads\fernsehkritik116.mov
2013-06-24 22:35 - 2013-06-24 22:36 - 05066240 ____A (Geza Kovacs) C:\Users\***\Downloads\unetbootin-windows-584.exe
2013-06-24 21:42 - 2013-06-24 21:57 - 00000000 ____D C:\img
2013-06-24 21:40 - 2013-06-24 21:40 - 00000000 ____D C:\WIM
2013-06-24 21:05 - 2013-06-24 21:07 - 00000000 ____D C:\Win7PESE
2013-06-24 21:01 - 2013-06-24 21:58 - 00000000 ____D C:\winpe
2013-06-24 20:55 - 2011-05-17 03:09 - 3268147200 ____A C:\Users\***\Desktop\de_windows_7_professional_with_sp1_x64_dvd_u_676919.iso
2013-06-24 20:44 - 2013-06-24 21:08 - 00000965 ____A C:\Users\***\Downloads\WinBuilder.ini
2013-06-24 20:44 - 2013-06-24 20:45 - 00000000 ____D C:\Users\***\Downloads\Projects
2013-06-24 20:33 - 2013-06-24 20:33 - 00000000 ____D C:\pebuilder3110a
2013-06-24 20:32 - 2013-06-24 20:32 - 03306678 ____A (Bart Lagerweij ) C:\Users\***\Downloads\pebuilder3110a.exe
2013-06-24 15:09 - 2013-06-24 15:09 - 51638070 ____A (Igor Pavlov) C:\Users\***\Downloads\nforce_1557-vista-w7-64(www.station-drivers.com).exe
2013-06-24 14:59 - 2013-06-24 15:10 - 00000000 ____D C:\Users\***\Desktop\del
2013-06-24 14:58 - 2013-06-24 14:58 - 66271488 ____A C:\Users\***\Downloads\R273039.exe
2013-06-24 14:46 - 2010-03-03 16:36 - 00657512 ____A (NVIDIA Corporation) C:\Windows\System32\NVUNINST.EXE-nv2792
2013-06-24 14:19 - 2013-06-24 14:22 - 169547776 ____A C:\Users\***\Downloads\vista_recover_x64.iso
2013-06-24 14:00 - 2013-06-24 14:03 - 169547776 ____A C:\Users\***\Downloads\vista-recovery-disc_14758.iso
2013-06-24 13:57 - 2013-06-11 22:36 - 725458632 ____A C:\Users\***\Desktop\Nintendo Direct@E3 2013.mp4
2013-06-24 13:56 - 2013-06-24 13:56 - 01142695 ____A (pendrivelinux.com) C:\Users\***\Downloads\Universal-USB-Installer-1.9.3.5.exe
2013-06-24 13:49 - 2013-06-24 13:50 - 330301440 ____A C:\Users\***\Downloads\pmagic_2013_06_15.iso
2013-06-24 12:51 - 2013-06-24 12:51 - 00000183 ____A C:\Users\***\Downloads\100198868622.sdx
2013-06-15 00:00 - 2013-05-31 01:24 - 01257472 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2013-06-15 00:00 - 2013-05-31 01:08 - 00974848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-06-15 00:00 - 2013-05-24 01:01 - 01300992 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2013-06-15 00:00 - 2013-05-24 00:27 - 01022464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-06-15 00:00 - 2013-05-15 04:25 - 00888320 ____A (Microsoft Corporation) C:\Windows\System32\autochk.exe
2013-06-15 00:00 - 2013-05-15 04:25 - 00542208 ____A (Microsoft Corporation) C:\Windows\System32\untfs.dll
2013-06-15 00:00 - 2013-05-15 04:24 - 00793088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2013-06-15 00:00 - 2013-05-15 04:24 - 00482816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2013-06-15 00:00 - 2013-05-04 09:58 - 00120736 ____A (Microsoft Corporation) C:\Windows\System32\AuthHost.exe
2013-06-15 00:00 - 2013-05-04 09:34 - 00446720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBHUB3.SYS
2013-06-15 00:00 - 2013-05-04 09:34 - 00284416 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\spaceport.sys
2013-06-15 00:00 - 2013-05-04 09:34 - 00213248 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\UCX01000.SYS
2013-06-15 00:00 - 2013-05-04 09:30 - 00058312 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2013-06-15 00:00 - 2013-05-04 08:59 - 13644288 ____A (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 03241472 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 01619968 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 01483776 ____A (Microsoft Corporation) C:\Windows\System32\VSSVC.exe
2013-06-15 00:00 - 2013-05-04 08:59 - 00812544 ____A (Microsoft Corporation) C:\Windows\System32\Magnify.exe
2013-06-15 00:00 - 2013-05-04 08:59 - 00760320 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 00251904 ____A (Microsoft Corporation) C:\Windows\System32\WUSettingsProvider.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 00141824 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 00098304 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 00039424 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2013-06-15 00:00 - 2013-05-04 08:58 - 10116096 ____A (Microsoft Corporation) C:\Windows\System32\twinui.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 01332736 ____A (Microsoft Corporation) C:\Windows\System32\sysmain.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00470528 ____A (Microsoft Corporation) C:\Windows\System32\netprofmsvc.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00330240 ____A (Microsoft Corporation) C:\Windows\System32\stobject.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00328192 ____A (Microsoft Corporation) C:\Windows\System32\ubpm.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\storewuauth.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00169984 ____A (Microsoft Corporation) C:\Windows\System32\netplwiz.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00151552 ____A (Microsoft Corporation) C:\Windows\System32\netprofm.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00093696 ____A (Microsoft Corporation) C:\Windows\System32\psmsrv.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 02305024 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 01131520 ____A (Microsoft Corporation) C:\Windows\System32\AppXDeploymentServer.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00820736 ____A (Microsoft Corporation) C:\Windows\System32\gpprefcl.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00708096 ____A (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00560640 ____A (Microsoft Corporation) C:\Windows\System32\mfmp4srcsnk.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00501760 ____A (Microsoft Corporation) C:\Windows\System32\DevicePairing.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00389120 ____A (Microsoft Corporation) C:\Windows\System32\BCP47Langs.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00179712 ____A (Microsoft Corporation) C:\Windows\System32\bisrv.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00122368 ____A (Microsoft Corporation) C:\Windows\System32\biwinrt.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00017408 ____A (Microsoft Corporation) C:\Windows\System32\muifontsetup.dll
2013-06-15 00:00 - 2013-05-04 08:56 - 00419840 ____A (Microsoft Corporation) C:\Windows\System32\intl.cpl
2013-06-15 00:00 - 2013-05-04 06:58 - 00758784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2013-06-15 00:00 - 2013-05-04 06:58 - 00621056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-06-15 00:00 - 2013-05-04 06:58 - 00125952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-06-15 00:00 - 2013-05-04 06:58 - 00083968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-06-15 00:00 - 2013-05-04 06:58 - 00034304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-06-15 00:00 - 2013-05-04 06:57 - 10788864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 08857088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00303616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00247296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00151040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00115712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00018432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 02035712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00582144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00449536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00411136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00309760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00092160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2013-06-15 00:00 - 2013-05-04 06:55 - 00389632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2013-06-15 00:00 - 2013-05-04 06:51 - 00014848 ____A (Microsoft) C:\Windows\System32\rars.rs
2013-06-15 00:00 - 2013-05-04 06:48 - 00083968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2013-06-15 00:00 - 2013-05-04 06:48 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidusb.sys
2013-06-15 00:00 - 2013-05-04 06:47 - 00427520 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdbss.sys
2013-06-15 00:00 - 2013-05-04 06:10 - 00014848 ____A (Microsoft) C:\Windows\SysWOW64\rars.rs
2013-06-15 00:00 - 2013-05-03 00:04 - 00386646 ____A C:\Windows\System32\ApnDatabase.xml
2013-06-14 23:33 - 2013-07-02 22:11 - 00000000 ____D C:\Users\***\Desktop\mac
2013-06-14 19:26 - 2013-06-14 19:26 - 00591320 ____A C:\Users\***\Downloads\eB0083.zip
2013-06-14 19:23 - 2013-06-14 19:23 - 00001432 ____A C:\Users\***\Downloads\Die_Tribute_von_Panem-sv7ssslds48lf.dlc
2013-06-14 19:20 - 2013-06-14 19:20 - 00000466 ____A C:\Users\***\Downloads\mv21165ju2ic961.rsdf
2013-06-12 08:54 - 2013-05-16 00:37 - 00044032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2013-06-12 08:54 - 2013-05-16 00:36 - 14320640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-12 08:54 - 2013-05-16 00:35 - 19230720 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-12 08:54 - 2013-05-16 00:35 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\UXInit.dll
2013-06-12 08:54 - 2013-05-14 15:14 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-12 08:54 - 2013-05-14 11:23 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-12 08:54 - 2013-05-04 09:45 - 02233600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 08:54 - 2013-04-29 00:30 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 00915968 ____A (Microsoft Corporation) C:\Windows\System32\uxtheme.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-12 08:54 - 2013-04-29 00:27 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-12 08:54 - 2013-04-29 00:27 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-12 08:54 - 2013-04-29 00:27 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-12 08:54 - 2013-04-27 07:20 - 00733184 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 08:54 - 2013-04-24 01:13 - 01013248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 08:54 - 2013-04-24 01:12 - 01569792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 08:54 - 2013-04-24 01:12 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 08:54 - 2013-04-24 00:56 - 01255936 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 08:54 - 2013-04-24 00:55 - 01889280 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 08:54 - 2013-04-24 00:55 - 00141312 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 08:54 - 2013-04-24 00:55 - 00068096 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 08:54 - 2013-04-03 01:37 - 00025088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 08:54 - 2013-04-03 01:12 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 00:35 - 2013-06-12 00:35 - 00000000 ____D C:\dell
2013-06-12 00:35 - 2011-03-03 17:42 - 08507392 ____A (Intel Corporation) C:\Windows\System32\Drivers\NETwNs64.sys
2013-06-12 00:34 - 2013-06-12 00:34 - 59938200 ____A C:\Users\***\Downloads\INTEL_INTEL-R--WIFI-LINK-630_A01_R304458.exe
2013-06-12 00:33 - 2013-06-12 00:33 - 08843264 ____A C:\Users\***\Downloads\GTX580M_Vbios_A01.iso
2013-06-12 00:28 - 2013-06-12 00:28 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (3).application
2013-06-12 00:18 - 2013-06-12 00:18 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (2).application
2013-06-12 00:11 - 2013-06-12 00:11 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (1).application
2013-06-11 22:10 - 2013-06-11 22:16 - 42415262 ____A C:\Users\***\Downloads\Super Smash Bros. for 3DS_Wii U 1st Trailer.mp4
2013-06-09 19:23 - 2013-06-09 19:23 - 02876394 ____A C:\Users\***\Downloads\savegamemanagerr127.zip
2013-06-09 16:39 - 2013-06-09 16:39 - 00776748 ____A (HDDGURU ) C:\Users\***\Downloads\HDDLLFsetup.4.30.exe
2013-06-09 16:39 - 2013-06-09 16:39 - 00001058 ____A C:\Users\***\Desktop\Hard Disk Low Level Format Tool.lnk
2013-06-09 16:39 - 2013-06-09 16:39 - 00000001 ____A C:\Users\***\AppData\Local\llftool.4.30.agreement
2013-06-09 16:39 - 2013-06-09 16:39 - 00000000 ____D C:\Program Files (x86)\HDDGURU LLF Tool
2013-06-06 23:05 - 2013-06-06 23:05 - 00770677 ____A C:\Users\***\Desktop\studien-gummersbach-alle-daten.zip
2013-06-05 10:32 - 2013-06-05 10:32 - 00001894 ____A C:\Users\***\Desktop\highlight.reg
2013-06-05 10:31 - 2013-06-05 10:31 - 00001894 ____A C:\Users\***\Desktop\hottrackcolor.reg
2013-06-03 05:17 - 2013-06-03 05:20 - 513248772 ____A C:\Users\***\Downloads\MINECRAFT [HD ] #1021 - Mach' die Schläuche leer! ? Let's Play Minecraft.mp4
==================== One Month Modified Files and Folders =======
2013-07-03 11:07 - 2013-07-03 11:07 - 00000000 ____D C:\FRST
2013-07-03 11:06 - 2013-07-03 11:05 - 01933556 ____A (Farbar) C:\Users\***\Desktop\FRST64.exe
2013-07-03 11:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\System32\sru
2013-07-03 10:51 - 2012-03-05 18:42 - 00001132 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1875048427-4287691625-677518087-1000UA.job
2013-07-03 10:09 - 2012-03-31 02:33 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-03 09:42 - 2012-11-11 00:10 - 01657721 ____A C:\Windows\WindowsUpdate.log
2013-07-03 03:00 - 2012-07-26 09:21 - 00015887 ____A C:\Windows\setupact.log
2013-07-03 03:00 - 2012-07-26 09:21 - 00003916 ____A C:\Windows\setuperr.log
2013-07-03 02:00 - 2012-03-06 09:58 - 00000000 ____D C:\Users\***\AppData\Local\Adobe
2013-07-02 23:01 - 2013-07-02 23:01 - 00041378 ____A C:\Users\***\Desktop\logs.zip
2013-07-02 23:01 - 2013-07-02 22:55 - 00016114 ____A C:\Users\***\Desktop\gmer.log
2013-07-02 23:00 - 2013-07-02 22:25 - 00106298 ____A C:\Users\***\Desktop\Extras.Txt
2013-07-02 23:00 - 2013-07-02 22:23 - 00166730 ____A C:\Users\***\Desktop\OTL.Txt
2013-07-02 22:14 - 2013-07-02 22:14 - 00000478 ____A C:\Users\***\Desktop\defogger_disable.log
2013-07-02 22:14 - 2013-07-02 22:14 - 00000000 ____A C:\Users\***\defogger_reenable
2013-07-02 22:14 - 2012-11-10 23:51 - 00000000 ____D C:\users\***
2013-07-02 22:13 - 2013-07-02 22:13 - 00377856 ____A C:\Users\***\Desktop\gmer_2.1.19163.exe
2013-07-02 22:13 - 2012-09-29 13:29 - 00000000 ____D C:\Users\***\AppData\Roaming\Spotify
2013-07-02 22:12 - 2013-07-02 22:12 - 00050477 ____A C:\Users\***\Desktop\Defogger.exe
2013-07-02 22:11 - 2013-07-02 22:11 - 00602112 ____A (OldTimer Tools) C:\Users\***\Desktop\OTL.exe
2013-07-02 22:11 - 2013-06-14 23:33 - 00000000 ____D C:\Users\***\Desktop\mac
2013-07-02 16:59 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-07-02 16:58 - 2012-03-05 23:54 - 00000000 ____D C:\Users\***\AppData\Roaming\vlc
2013-07-02 00:02 - 2012-03-06 00:24 - 00000000 ____D C:\Users\***\AppData\Roaming\Skype
2013-07-01 20:25 - 2012-09-29 13:29 - 00000000 ____D C:\Users\***\AppData\Local\Spotify
2013-07-01 20:20 - 2013-05-15 15:27 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-07-01 20:18 - 2013-07-01 20:18 - 00035888 ____A C:\Users\***\Downloads\c2ea010dd675aa4998d306f7e1ab6f29.dlc
2013-07-01 19:51 - 2012-07-26 12:27 - 00880444 ____A C:\Windows\System32\perfh007.dat
2013-07-01 19:51 - 2012-07-26 12:27 - 00204078 ____A C:\Windows\System32\perfc007.dat
2013-07-01 19:51 - 2012-07-26 09:28 - 02073902 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-01 14:51 - 2012-03-05 18:42 - 00001080 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1875048427-4287691625-677518087-1000Core.job
2013-06-30 23:33 - 2013-06-30 23:32 - 42495724 ____A C:\Users\***\Downloads\ClCa.7z
2013-06-30 23:03 - 2012-11-13 19:01 - 00025898 ____A C:\Windows\RPSETUP.EXE.LOG
2013-06-30 23:03 - 2012-02-29 06:06 - 00000000 ____D C:\Program Files (x86)\AlienRespawn
2013-06-30 19:04 - 2012-04-08 19:31 - 00000000 ____D C:\Users\***\AppData\Roaming\foobar2000
2013-06-28 17:02 - 2012-11-10 23:51 - 00002823 ____A C:\Windows\diagwrn.xml
2013-06-28 17:02 - 2012-11-10 23:51 - 00001908 ____A C:\Windows\diagerr.xml
2013-06-28 12:34 - 2013-06-28 12:34 - 01376768 ____A C:\Users\***\Downloads\7z920-x64.msi
2013-06-28 12:34 - 2013-06-28 12:34 - 00000000 ____D C:\Program Files\7-Zip
2013-06-28 12:23 - 2013-06-28 12:23 - 02871808 ____A (Microsoft Corporation) C:\Users\***\Downloads\explorer_seven_sp1.exe
2013-06-28 11:49 - 2013-06-28 11:49 - 05083661 ____A (Swearware) C:\Users\***\Downloads\ComboFix (1).exe
2013-06-28 09:15 - 2012-03-10 16:00 - 00000000 ____D C:\ProgramData\PCDr
2013-06-25 10:53 - 2013-06-25 10:42 - 1722418647 ____A C:\Users\***\Downloads\fernsehkritik116.mov
2013-06-24 23:05 - 2012-05-02 10:44 - 00000000 ____D C:\Users\***\AppData\Local\VMware
2013-06-24 23:04 - 2012-05-02 10:06 - 00000000 ____D C:\ProgramData\VMware
2013-06-24 23:03 - 2012-05-02 10:16 - 00000000 ____D C:\Users\***\AppData\Roaming\VMware
2013-06-24 22:36 - 2013-06-24 22:35 - 05066240 ____A (Geza Kovacs) C:\Users\***\Downloads\unetbootin-windows-584.exe
2013-06-24 21:58 - 2013-06-24 21:01 - 00000000 ____D C:\winpe
2013-06-24 21:57 - 2013-06-24 21:42 - 00000000 ____D C:\img
2013-06-24 21:40 - 2013-06-24 21:40 - 00000000 ____D C:\WIM
2013-06-24 21:08 - 2013-06-24 20:44 - 00000965 ____A C:\Users\***\Downloads\WinBuilder.ini
2013-06-24 21:07 - 2013-06-24 21:05 - 00000000 ____D C:\Win7PESE
2013-06-24 20:45 - 2013-06-24 20:44 - 00000000 ____D C:\Users\***\Downloads\Projects
2013-06-24 20:33 - 2013-06-24 20:33 - 00000000 ____D C:\pebuilder3110a
2013-06-24 20:32 - 2013-06-24 20:32 - 03306678 ____A (Bart Lagerweij ) C:\Users\***\Downloads\pebuilder3110a.exe
2013-06-24 15:10 - 2013-06-24 14:59 - 00000000 ____D C:\Users\***\Desktop\del
2013-06-24 15:09 - 2013-06-24 15:09 - 51638070 ____A (Igor Pavlov) C:\Users\***\Downloads\nforce_1557-vista-w7-64(www.station-drivers.com).exe
2013-06-24 14:58 - 2013-06-24 14:58 - 66271488 ____A C:\Users\***\Downloads\R273039.exe
2013-06-24 14:22 - 2013-06-24 14:19 - 169547776 ____A C:\Users\***\Downloads\vista_recover_x64.iso
2013-06-24 14:03 - 2013-06-24 14:00 - 169547776 ____A C:\Users\***\Downloads\vista-recovery-disc_14758.iso
2013-06-24 13:56 - 2013-06-24 13:56 - 01142695 ____A (pendrivelinux.com) C:\Users\***\Downloads\Universal-USB-Installer-1.9.3.5.exe
2013-06-24 13:50 - 2013-06-24 13:49 - 330301440 ____A C:\Users\***\Downloads\pmagic_2013_06_15.iso
2013-06-24 12:51 - 2013-06-24 12:51 - 00000183 ____A C:\Users\***\Downloads\100198868622.sdx
2013-06-24 12:51 - 2012-03-05 02:25 - 00000000 ____A C:\Users\***\Downloads\SecureDownloadManager.log
2013-06-23 10:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-06-23 09:52 - 2013-02-20 21:53 - 00002386 ____A C:\Users\***\Desktop\Google Chrome.lnk
2013-06-23 09:24 - 2012-11-11 00:01 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-06-23 09:24 - 2012-11-11 00:01 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-06-23 09:21 - 2012-07-26 09:22 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-23 09:20 - 2012-07-26 07:26 - 00262144 __ASH C:\Windows\System32\config\BBI
2013-06-23 09:20 - 2012-02-28 22:20 - 00000000 ____D C:\ProgramData\NVIDIA
2013-06-23 09:19 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ToastData
2013-06-23 09:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-06-23 09:19 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-06-23 09:19 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-06-23 09:19 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-06-23 09:19 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\System32\Dism
2013-06-14 19:31 - 2013-06-14 19:31 - 01718498 ____A C:\Users\***\Downloads\Suzanne Collins - Die Tribute von Panem Bd. 3 - Flammender Zorn.mobi
2013-06-14 19:26 - 2013-06-14 19:26 - 00591320 ____A C:\Users\***\Downloads\eB0083.zip
2013-06-14 19:23 - 2013-06-14 19:23 - 00001432 ____A C:\Users\***\Downloads\Die_Tribute_von_Panem-sv7ssslds48lf.dlc
2013-06-14 19:20 - 2013-06-14 19:20 - 00000466 ____A C:\Users\***\Downloads\mv21165ju2ic961.rsdf
2013-06-13 05:04 - 2012-03-11 15:32 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 00:38 - 2012-11-10 22:29 - 00012982 ____A C:\Windows\DPINST.LOG
2013-06-12 00:35 - 2013-06-12 00:35 - 00000000 ____D C:\dell
2013-06-12 00:34 - 2013-06-12 00:34 - 59938200 ____A C:\Users\***\Downloads\INTEL_INTEL-R--WIFI-LINK-630_A01_R304458.exe
2013-06-12 00:33 - 2013-06-12 00:33 - 08843264 ____A C:\Users\***\Downloads\GTX580M_Vbios_A01.iso
2013-06-12 00:29 - 2013-04-01 06:52 - 00000000 ____D C:\Users\***\AppData\Local\Deployment
2013-06-12 00:28 - 2013-06-12 00:28 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (3).application
2013-06-12 00:18 - 2013-06-12 00:18 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (2).application
2013-06-12 00:11 - 2013-06-12 00:11 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (1).application
2013-06-11 22:36 - 2013-06-24 13:57 - 725458632 ____A C:\Users\***\Desktop\Nintendo Direct@E3 2013.mp4
2013-06-11 22:16 - 2013-06-11 22:10 - 42415262 ____A C:\Users\***\Downloads\Super Smash Bros. for 3DS_Wii U 1st Trailer.mp4
2013-06-09 19:23 - 2013-06-09 19:23 - 02876394 ____A C:\Users\***\Downloads\savegamemanagerr127.zip
2013-06-09 16:39 - 2013-06-09 16:39 - 00776748 ____A (HDDGURU ) C:\Users\***\Downloads\HDDLLFsetup.4.30.exe
2013-06-09 16:39 - 2013-06-09 16:39 - 00001058 ____A C:\Users\***\Desktop\Hard Disk Low Level Format Tool.lnk
2013-06-09 16:39 - 2013-06-09 16:39 - 00000001 ____A C:\Users\***\AppData\Local\llftool.4.30.agreement
2013-06-09 16:39 - 2013-06-09 16:39 - 00000000 ____D C:\Program Files (x86)\HDDGURU LLF Tool
2013-06-07 14:37 - 2013-02-26 18:19 - 00001903 ____A C:\Users\Public\Desktop\LOL Recorder.lnk
2013-06-07 14:37 - 2013-01-16 10:48 - 00000000 ____D C:\Program Files (x86)\LOLReplay
2013-06-06 23:05 - 2013-06-06 23:05 - 00770677 ____A C:\Users\***\Desktop\studien-gummersbach-alle-daten.zip
2013-06-05 10:32 - 2013-06-05 10:32 - 00001894 ____A C:\Users\***\Desktop\highlight.reg
2013-06-05 10:31 - 2013-06-05 10:31 - 00001894 ____A C:\Users\***\Desktop\hottrackcolor.reg
2013-06-05 00:09 - 2012-11-11 23:05 - 00693112 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-05 00:09 - 2012-11-11 23:05 - 00078200 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-03 05:20 - 2013-06-03 05:17 - 513248772 ____A C:\Users\***\Downloads\MINECRAFT [HD ] #1021 - Mach' die Schläuche leer! ? Let's Play Minecraft.mp4
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-03 03:00
==================== End Of Log ============================
--- --- --- Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-07-2013 Ran by *** at 2013-07-03 11:08:24 Running from C:\Users\***\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) Adobe Acrobat X Pro - English, Français, Deutsch (x32 Version: 10.1.3) Adobe AIR (x32 Version: 3.6.0.5920) Adobe Content Viewer (x32 Version: 1.4.0) Adobe Creative Suite 5.5 Master Collection (x32 Version: 5.5) Adobe Creative Suite 6 Master Collection (x32 Version: 6) Adobe Download Assistant (x32 Version: 1.2.3) Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Adobe Help Manager (x32 Version: 4.0.244) Adobe Reader X MUI (x32 Version: 10.0.0) Adobe Story (x32 Version: 1.0.571) Adobe Widget Browser (x32 Version: 2.0 Build 230) Adobe Widget Browser (x32 Version: 2.0.230) Advanced Audio FX Engine (x32 Version: 1.12.05) AION Free-To-Play (x32 Version: v0.1) AlienAutopsy (Version: 3.3.6261.27) AlienRespawn - Support Software (x32 Version: 9.4.61) AlienRespawn (x32 Version: 9.4.61) Alienware M17x Manual (Version: 1.0.0.1) Alienware M17x Manual (x32 Version: 1.0.0.1) Alienware On-Screen Display (x32 Version: 0.31.0.15C) ALLBenchmark 1.0 (Version: 1.0) Banking Browser 2011 -Testversion- (x32) BitTorrent (x32 Version: 7.8.0.29676) bl (x32 Version: 1.0.0) CCleaner (Version: 3.06) Cisco Packet Tracer 5.3.3 (x32) Color Efex Pro 3.0 Complete (x32 Version: 3.1.0.0) Command Center (Version: 2.6.14.0) Command Center (x32 Version: 2.6.14.0) Crystal Reports for Visual Studio (x32 Version: 12.51.0.240) CyberLink PowerDVD 9.6 (x32 Version: 9.6.1.4418) Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition Dell Stage Remote (x32 Version: 2.0.0.50) Dell System Detect (HKCU Version: 4.1.2.11) DirectX 9 Runtime (x32 Version: 1.00.0000) Dotfuscator Software Services - Community Edition - DEU (x32 Version: 5.0.2300.0) Dotfuscator Software Services - Community Edition (x32 Version: 5.0.2500.0) Droid Explorer 0.8.8.3 (x64) (Version: 0.8.8.3) Edna Bricht Aus 1.1 (x32) EMSC (x32 Version: 0.0.0.22C) EPSON Scan (x32) FileZilla Client 3.5.3 (x32 Version: 3.5.3) foobar2000 v1.1.6 (x32 Version: 1.1.6) Free YouTube to MP3 Converter version 3.11.25.627 (x32 Version: 3.11.25.627) Google Chrome (HKCU Version: 27.0.1453.116) Hard Disk Low Level Format Tool 4.30 (x32) Hotfix für Microsoft Team Foundation Server 2010-Objektmodell - DEU (KB2736182) (x32 Version: 1) Hotfix für Microsoft Team Foundation Server 2010-Objektmodell - DEU (KB2813041) (x32 Version: 1) Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2529927) (x32 Version: 1) Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2548139) (x32 Version: 1) Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2549864) (x32 Version: 1) Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2635973) (x32 Version: 1) Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2736182) (x32 Version: 1) Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2813041) (x32 Version: 1) IDT Audio (x32 Version: 1.0.6330.0) ImgBurn (x32 Version: 2.5.7.0) Integrated Webcam Live! Central (x32 Version: 2.00.44) Intel(R) Rapid Storage Technology (x32 Version: 10.0.0.1046) Java 7 Update 9 (x32 Version: 7.0.90) Java Auto Updater (x32 Version: 2.1.9.0) Java(TM) 7 Update 1 (64-bit) (Version: 7.0.10) JavaFX 2.0.3 (x32 Version: 2.0.3) JDownloader 0.9 (x32 Version: 0.9) Jumli (x32) Knowledge Xpert (x32 Version: 10.1.0.188) Knowledge Xpert for Oracle Administration (x32 Version: 10.1.0.188) Knowledge Xpert for PLSQL (x32 Version: 10.1.0.188) Knowledge Xpert Oracle Common (x32 Version: 10.1.0.188) League of Legends (x32 Version: 1.3) LOLReplay (x32 Version: 0.8.2.1) Malwarebytes Anti-Malware Version 1.70.0.1100 (x32 Version: 1.70.0.1100) Metro 2033 (x32) Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000) Microsoft ASP.NET MVC 2 - DEU (x32 Version: 2.0.50331.0) Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools - DEU (x32 Version: 2.0.50331.0) Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (x32 Version: 2.0.50217.0) Microsoft ASP.NET MVC 2 (x32 Version: 2.0.50217.0) Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319) Microsoft Help Viewer 1.1 (Version: 1.1.40219) Microsoft Help Viewer 1.1 Language Pack - DEU (Version: 1.1.40219) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Groove MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000) Microsoft Office Project Professional 2003 (x32 Version: 11.0.8173.0) Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000) Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft Silverlight 3 SDK - Deutsch (x32 Version: 3.0.40818.0) Microsoft Silverlight 4 SDK - Deutsch (x32 Version: 4.0.50826.0) Microsoft SQL Server 2008 (64-bit) Microsoft SQL Server 2008 Browser (x32 Version: 10.3.5500.0) Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0) Microsoft SQL Server 2008 R2 Management Objects (x32 Version: 10.50.1750.9) Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1750.9) Microsoft SQL Server 2008 R2 Transact-SQL-Sprachdienst (x32 Version: 10.50.1752.9) Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Framework (x32 Version: 10.50.1750.9) Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Projekt (x32 Version: 10.50.1750.9) Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0) Microsoft SQL Server Compact 3.5 SP2 DEU (x32 Version: 3.5.8080.0) Microsoft SQL Server Compact 3.5 SP2 x64 DEU (Version: 3.5.8080.0) Microsoft SQL Server Database Publishing Wizard 1.4 (x32 Version: 10.1.2512.8) Microsoft SQL Server System CLR Types (x32 Version: 10.50.1750.9) Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1750.9) Microsoft Sync Framework Runtime v1.0 SP1 (x64) de (Version: 1.0.3010.0) Microsoft Sync Framework SDK v1.0 SP1 de (x32 Version: 1.0.3010.0) Microsoft Sync Framework Services v1.0 SP1 (x64) de (Version: 1.0.3010.0) Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) de (Version: 2.0.3010.0) Microsoft Team Foundation Server 2010 Object Model - DEU (Version: 10.0.40219) Microsoft Team Foundation Server 2010-Objektmodell - DEU (Version: 10.0.40219) Microsoft Visual C++ Compilers 2010 Standard - enu - x64 (Version: 10.0.40219) Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (x32 Version: 10.0.40219) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (x32 Version: 9.0.30729.4974) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (Version: 10.0.30319) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (x32 Version: 10.0.40219) Microsoft Visual F# 2.0 Runtime (x32 Version: 10.0.40219) Microsoft Visual F# 2.0 Runtime Language Pack - DEU (x32 Version: 10.0.30319) Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (x32 Version: 10.0.40219) Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (Version: 10.0.40219) Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219) Microsoft Visual Studio 2010 Office Developer Tools (x64) Language Pack - DEU (Version: 10.0.40219) Microsoft Visual Studio 2010 Performance Collection Tools SP1 - DEU (Version: 10.0.40219) Microsoft Visual Studio 2010 Service Pack 1 (x32 Version: 10.0.40219) Microsoft Visual Studio 2010 SharePoint Developer Tools (x32 Version: 10.0.40219) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.40303) Microsoft Visual Studio 2010 Ultimate - DEU (x32 Version: 10.0.30319) Microsoft Visual Studio 2010 Ultimate - DEU (x32 Version: 10.0.40219) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (Version: 10.0.40303) Microsoft Visual Studio Macro Tools - DEU Language Pack (x32 Version: 9.0.30729) Microsoft Visual Studio Macro Tools (x32 Version: 9.0.30729) Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053) Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053) Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000) Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000) Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000) Mozilla Firefox 13.0.1 (x86 de) (x32 Version: 13.0.1) Mozilla Maintenance Service (x32 Version: 13.0.1) Mozilla Thunderbird (3.1.10) (x32 Version: 3.1.10 (de)) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0) MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0) MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0) MyFreeCodec (HKCU) NC Launcher (GameForge) (x32) NewsLeecher v5.0 Beta 19 (x32) Notepad++ (x32 Version: 6.1.5) NVIDIA 3D Vision Controller-Treiber 296.10 (Version: 296.10) NVIDIA 3D Vision Treiber 307.17 (Version: 307.17) NVIDIA 3D Vision Video Player (x32 Version: 1.6.4) NVIDIA Grafiktreiber 307.17 (Version: 307.17) NVIDIA HD-Audiotreiber 1.3.12.0 (Version: 1.3.12.0) NVIDIA Install Application (Version: 2.1002.85.551) NVIDIA PhysX (x32 Version: 9.12.0213) NVIDIA PhysX-Systemsoftware 9.12.0213 (Version: 9.12.0213) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.0717) NVIDIA Systemsteuerung 307.17 (Version: 307.17) NVIDIA Update 1.10.8 (Version: 1.10.8) NVIDIA Update Components (Version: 1.10.8) Oracle Database 11g Express Edition (x32 Version: 11.2.0) PDF Settings CS5 (x32 Version: 10.0) PDF Settings CS6 (x32 Version: 11.0) pdfsam (HKCU Version: 2.2.1) PE Builder 3.1.10a (x32) ph (x32 Version: 1.0.0) PhotoShowExpress (x32 Version: 2.0.063) Portal (x32) Prezi Desktop (x32 Version: 4.1.1) PxMergeModule (x32 Version: 1.00.0000) Quest Installer (x32) Quest Software Toad Data Modeler (x32 Version: 4.3.3.6) Quest SQL Optimizer for Oracle Trial (x32 Version: 8.7.0.2431) RBVirtualFolder64Inst (Version: 1.00.0000) Roxio Activation Module (x32 Version: 1.0) Roxio BackOnTrack (x32 Version: 1.3.3) Roxio Burn (x32 Version: 1.8) Roxio Creator Starter (x32 Version: 1.0.439) Roxio Creator Starter (x32 Version: 12.1.77.0) Roxio Creator Starter (x32 Version: 5.0.0) Roxio Express Labeler 3 (x32 Version: 3.2.2) Roxio File Backup (Version: 1.3.2) Samsung Kies (x32 Version: 2.3.0.12035_16) SAMSUNG USB Driver for Mobile Phones (Version: 1.5.23.0) Secure Download Manager (x32 Version: 3.1.0) Service Pack 3 für SQL Server 2008 (KB2546951) (64-bit) (Version: 10.3.5500.0) SES Driver (Version: 1.0.0) Sicherheitsupdate für Microsoft Visual Studio 2010 Ultimate - DEU (KB2645410) (x32 Version: 1) Skype™ 6.1 (x32 Version: 6.1.129) Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0) Sophos Anti-Rootkit 1.5.0 (x32 Version: 1.5.0) Spotify (HKCU Version: 0.9.1.53.g876fa9df) Sql Server Customer Experience Improvement Program (Version: 10.3.5500.0) SQLyog 9.51 (x32 Version: 9.51) Start8 (x32 Version: 1.03) Steam (x32 Version: 1.0.0.0) Synaptics Pointing Device Driver (Version: 15.1.19.0) System Requirements Lab CYRI (x32 Version: 5.0.6.0) SYSTRAN (x32 Version: 6.00.10.17) TeamSpeak 3 Client (Version: 3.0.8.1) TeamViewer 7 (x32 Version: 7.0.12979) Toad for Oracle 11.6 Trial (x32 Version: 11.6.0.43) tools-linux (x32 Version: 9.2.0.812388) UltraISO Premium V9.53 (x32) Unterstützungsdateien für Microsoft SQL Server 2008-Setup (Version: 10.3.5500.0) Update for Microsoft Office 2010 (KB2553065) Update for Microsoft Office 2010 (KB2553092) Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition Update for Microsoft Office 2010 (KB2553270) 64-Bit Edition Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition Update for Microsoft Office 2010 (KB2553378) 64-Bit Edition Update for Microsoft Office 2010 (KB2566458) Update for Microsoft Office 2010 (KB2598242) 64-Bit Edition Update for Microsoft Office 2010 (KB2687509) 64-Bit Edition Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition Update for Microsoft Office 2010 (KB2767886) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2597090) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2687623) 64-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition Update for Microsoft PowerPoint 2010 (KB2598240) 64-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2589371) 64-Bit Edition VirtualCloneDrive (x32) Visual Studio 2010 Prerequisites - English (Version: 10.0.40219) Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (x32 Version: 4.0.8080.0) VLC media player 2.0.0 (x32 Version: 2.0.0) VMware Player (x32 Version: 5.0.0) VMwarePlayer_x64 (Version: 5.0.0) WampServer 2.2 (x32) WCF RIA Services V1.0 SP1 (x32 Version: 4.1.60114.0) Web Deployment Tool (Version: 1.1.0618) WiFi HotSpot Creator (x32 Version: 2.0.0) Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (03/06/2009 1.0.0008.0) (Version: 03/06/2009 1.0.0008.0) WinRAR 4.20 (64-bit) (Version: 4.20.0) You Don't Know Jack 4 1.00 (x32 Version: 1.00) Zend Server Community Edition (x32 Version: 5.6.0) ==================== Restore Points ========================= 27-06-2013 15:18:35 Windows Update 01-07-2013 01:00:03 Windows Update ==================== Hosts content: ========================== 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {07F120F2-1E4D-4EB6-A296-E5DFB097FBF0} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe No File Task: {0BE14C2B-72BB-41DF-9755-9ED5B53ABA78} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1875048427-4287691625-677518087-1000 Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation) Task: {124F0FC8-7430-4360-A634-91803F7CFC86} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe No File Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {1B63AD5F-3F8D-4A32-9383-E224E543AC1A} - System32\Tasks\{E2DC1AED-D28D-4C7F-8B98-518DED1E1CD8} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {1D548BBA-39F0-4686-8B8D-B1FE379316C7} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe No File Task: {1D7A1D2D-0091-4D48-9F9B-804E00A62156} - System32\Tasks\{A44F96ED-3CA2-47F9-8D73-D41CCDFD414C} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents Task: {1E7A007C-2818-42AC-8712-C9766F678FD6} - System32\Tasks\{57355D8F-63B1-4EDB-86B9-A5E310B574CB} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance Task: {21D38147-F23A-4AD7-9E44-D7321C34C912} - System32\Tasks\{89A0EF03-ADF4-4CBD-94AF-B410CD1405E5} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy Task: {237AC957-6496-42F0-AE84-EC157B1B5CA9} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {27AF4423-1884-49E4-AA14-5BAF5FE80556} - System32\Tasks\{CB382CB0-B537-41C5-9E5C-CE82A6EF880C} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {281F5729-EF3B-4F8D-98C7-7049B0156DFA} - System32\Tasks\{CBA84963-3C15-4782-9751-913213B898E9} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {28B4FB2F-1EE7-4494-BC03-1ADDA4BFC955} - System32\Tasks\{7F26FA28-F1AD-4AB9-9D8C-FCAE38707B82} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {28EFF4FE-57C3-4B15-BB3C-B3C6C9C1691A} - System32\Tasks\{7C46C7A9-A02B-4D95-9DF7-3F9230EF5F1E} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {298EC31C-E887-4A4D-B568-7FC9FE0380D6} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2013-01-29] (Microsoft Corporation) Task: {29B8DF24-BB8A-4C4E-B570-6AFADB7EB409} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-11] (Adobe Systems Incorporated) Task: {2A47F4CD-91C2-4715-B893-24918ED4FCC6} - System32\Tasks\{52754000-8CFF-49AD-B01F-C0C93C43928F} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh Task: {2CA1291E-ABC9-4CC4-9DFA-E4F0425FAB0F} - System32\Tasks\{E3D3B328-28F5-4091-BCB4-35E177863ACC} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks Task: {2E03800C-69A8-4231-83B6-4FFC6D3C591B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe No File Task: {2FA82E7A-111E-475D-AB2C-71AE9B2ADC8A} - System32\Tasks\{1E7117A5-8B20-4D11-BF09-FFB82009B166} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {2FE6D8F4-8AC5-47E6-B1EB-944147011D4A} - System32\Tasks\{DB45DE47-B114-4D8C-9DF5-D8765115C6C8} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update Task: {30DDB8BA-075E-4440-9E49-7DF15C980888} - System32\Tasks\{558F9EAD-C4D6-4FBD-915D-C6823EAEF641} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {33099AE9-DC68-438C-9633-EF00D5F11B93} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall Task: {34ABD6E4-B5DD-43E1-A431-9B620EE3C7D1} - System32\Tasks\{0FD7B54B-3E8D-4152-855B-14687E15D57C} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator Task: {37AB2E59-0605-4964-8188-863193C52D25} - System32\Tasks\{20D155CC-4E78-41BF-925C-A35E7D9BE815} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance Task: {432494C3-1704-4B7B-AFCB-C2E3B7700880} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\MpCmdRun.exe [2013-01-29] (Microsoft Corporation) Task: {441685A6-20CF-410E-802A-D139E9341D69} - System32\Tasks\{91C5B1F4-57C5-4A54-AC53-B2FD6D084142} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage Task: {45A22260-E814-415C-B7ED-D18EB95E55B1} - System32\Tasks\{FE69EF43-252D-40B5-8511-2AD6235000D6} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2012-07-26] (Microsoft Corporation) Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon Task: {4E5128D5-E628-4061-91B1-F39698F8B558} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe No File Task: {4F3CA97E-5FE2-4161-9093-55811E2FDAB6} - System32\Tasks\{A8DB6D5E-B94E-4573-83D0-E05F6235EFFB} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {55763D64-C1F4-4E26-A817-44B7CB0125A7} - System32\Tasks\{DEB5BA3A-B463-48CC-A256-9B954D14C989} => C:\users\***\appdata\local\google\chrome\application\chrome.exe [2013-06-15] (Google Inc.) Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance Task: {5AEF52A9-278D-4A61-9145-1A06E5C03F2A} - System32\Tasks\{AB7E403D-D082-4EE9-9678-24DC081F43DE} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required Task: {5E8ED08B-3899-4C41-A74A-85F81B57D11E} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\AlienAutopsy\sessionchecker.exe [2013-05-07] (PC-Doctor, Inc.) Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation) Task: {63DCB071-1EDC-4BBC-9BDF-980F13EC86DD} - System32\Tasks\{C46F6FC4-0999-4974-A89C-CAD714CCA426} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {66DD26F3-257F-4CA8-BF9D-6C45A5F5DE0F} - System32\Tasks\{3614A893-DEE0-457D-BAC4-B84DFDC79071} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {67403302-9027-4152-8915-958CB0B7BC8D} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\AlienAutopsy\uaclauncher.exe [2013-05-07] (PC-Doctor, Inc.) Task: {6CD5ECD2-99F9-4F86-964C-60372021CE39} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe No File Task: {6D483747-8919-43DC-940E-CBB7A763168D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe No File Task: {6E452092-C80C-4049-95AA-7BF51B780074} - System32\Tasks\{580BF6DE-D50D-43E6-A331-5CAD2CB91DD7} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {6E8A4B1B-4FF8-4370-A9C0-1F5C2215EDD0} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe No File Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-09-20] (Microsoft Corporation) Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Task: {719A5D54-126F-48A1-8360-6C6918350A44} - System32\Tasks\{A0ACB64F-1988-49C4-A8B2-C40FBA0B8FA4} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update Task: {746E9680-28E7-4312-B0EA-2FDFB8256C8B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe No File Task: {748D01CD-4664-47EA-8ACF-072722229E47} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\WINDOWS\system32\sc.exe [2012-07-26] (Microsoft Corporation) Task: {74C446EB-7827-487C-8E52-EA4428E3B61A} - System32\Tasks\{20AB7404-9AF6-47D6-8716-FF2AFC334C91} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {772FA9E0-E929-49B4-8690-0BD457CADE71} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall Task: {784BE19E-7B50-497A-9A19-8471FBF67F6E} - System32\Tasks\{820F17B1-23B9-471C-BA89-88471DEE8919} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {78BB9AFF-F3AF-419B-9DF6-6E34B6939272} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe No File Task: {794337CE-510C-4F86-97B4-6F12657D741B} - System32\Tasks\{AE14F41D-7F19-48A0-8268-6720AF926BD3} => C:\users\***\appdata\local\google\chrome\application\chrome.exe [2013-06-15] (Google Inc.) Task: {7981C177-1187-4A8F-B10D-460166FDFFB8} - System32\Tasks\{CA7E9531-C412-47CE-B581-D610CC9400C0} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {7A54511D-6FE5-4CFB-B114-26D4438E5576} - System32\Tasks\{4D7FD32F-59AD-41BD-8313-BBE8289079B1} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance Task: {7E57EB2C-12D6-4B7C-847D-2BFED0D351D4} - System32\Tasks\{FE3DF932-D746-45FB-87CD-BD3261F0B6A1} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {7FD9110F-31DC-45C4-8415-9BC5C473E741} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe No File Task: {82D53D9C-7261-44FB-A69E-1DBB15D33599} - System32\Tasks\{BE62B898-14BB-4435-9514-4FAE07CE2A49} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {82DD2F97-C1FD-4D4F-966F-091B50547659} - System32\Tasks\{3721E547-4C17-4104-8BCD-422794CD718A} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {8410232F-67D3-4EAB-B61D-3546B9238899} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe No File Task: {84310F5A-C7E3-4A5A-891A-04A841649196} - System32\Tasks\{75EDA01F-EF84-4268-9876-3F9B56D5631B} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) Task: {87510294-849F-498B-91AB-45D2DD8F6B54} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe No File Task: {8B86B129-A3D0-4795-BBFB-B69DC215F816} - System32\Tasks\{D380B2DD-2CA8-41BE-A37A-576C8B9FE5AF} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {8EE16B3C-90BC-4818-9509-4422D0BBA880} - System32\Tasks\{AD253C8F-10BD-48C2-BDDB-C491AA8C38A9} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {919C0F98-EA9B-46E4-930F-CE163FE55269} - System32\Tasks\{E3359E8A-976F-4B42-A6A9-81C161EDF4E1} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses Task: {921A55A1-5F8C-4AE3-B7B8-D54D5DD8223B} - System32\Tasks\{E50B328C-5E8C-4AF5-9E0B-5F4F072F9B6C} => C:\users\***\appdata\local\google\chrome\application\chrome.exe [2013-06-15] (Google Inc.) Task: {92CC6E8E-9180-4310-A51B-606BBA7FBD52} - System32\Tasks\{EFFE6516-B877-401D-97D2-8C120823E332} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {930BE474-1CE3-43CE-9E7E-6A68C4D9FF32} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe No File Task: {935BA21D-0FA7-46D9-B964-BCED7C931935} - System32\Tasks\{09473D47-C98C-483B-9827-0A0646175D10} => C:\users\***\appdata\local\google\chrome\application\chrome.exe [2013-06-15] (Google Inc.) Task: {943A0771-84E3-4EEB-9543-B11B8C2BE429} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe No File Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Task: {94E93F29-C6A8-47F2-A902-A41FBE33453B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe No File Task: {96DEB21B-9F67-41CC-B2E7-2FB7D474ED50} - System32\Tasks\{6393882A-EF1F-4DC2-A44B-DAC94F8CD906} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic Task: {9D61511E-B5D0-4AF9-B40A-99F8C86DED8A} - System32\Tasks\{ADD35870-AF27-4154-9FD8-08DBCD8ACBFE} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {A317BAAB-A3B6-42C0-9D03-3D00A84ACEF2} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe No File Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask Task: {A8A0A0C6-F751-40E8-8FAC-559AA83024B7} - System32\Tasks\{BF75F21D-3B1E-4ECB-8429-FC1AD81C7992} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {A8CF5AA7-9A33-43D0-8D14-C0D2DA4AEF64} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\MpCmdRun.exe [2013-01-29] (Microsoft Corporation) Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh Task: {AB96B97B-39C2-46A2-876A-EEB6AE199033} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\Windows\System32\dism.exe [2012-07-26] (Microsoft Corporation) Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan Task: {AFCFAF91-2C59-4437-817C-CD4FFE2CE304} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1875048427-4287691625-677518087-1000Core => C:\Users\***\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-05] (Google Inc.) Task: {B0183657-E9A1-44A6-9AAD-EEC4FC89717A} - System32\Tasks\{D326C3DB-0D7A-4756-9D8D-6FB07A226AD8} => C:\users\***\appdata\local\google\chrome\application\chrome.exe [2013-06-15] (Google Inc.) Task: {B2E2F5BB-1D56-4A8E-BAC2-EEA14866E318} - System32\Tasks\{516161A0-1B9F-4BB5-B837-E989A87ADE00} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {B6D0FE08-11C3-45D9-8D4C-2A558977164B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1875048427-4287691625-677518087-1000UA => C:\Users\***\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-05] (Google Inc.) Task: {B7CFCCB1-298E-4B28-8A50-AC736AA2610E} - System32\Tasks\{EB89E32C-7FD2-4D94-BA6C-2AE3591906BA} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {B949BBC4-D22F-4B39-9482-2F460F3CA57E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe No File Task: {BBAD7C10-5B62-4DD4-B3C4-8DE705265FAE} - System32\Tasks\{7FB1275E-9771-46E6-9A0C-E5ADD001031F} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {BC3E835E-0D8E-4618-AB2D-52A7FB7AEBDB} - System32\Tasks\{E0F3EA1F-3C5A-46E2-AB05-C4F57F58154F} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific Task: {BE731925-79A0-4794-BFF5-75AB6EEBFF38} - System32\Tasks\{79649739-DF36-44B5-A379-8829887D89BC} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {C0A7DEC8-5A47-4929-9BA2-B6E3785B86AD} - System32\Tasks\{2B091127-7646-4BCC-B28F-A69EE31D7CC6} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {C15F6903-E9B2-4BBF-BA3F-30738323FDF4} - System32\Tasks\AdobeAAMUpdater-1.0-***-PC-*** => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated) Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan Task: {C385B047-E6D6-4F5F-845E-E997841B8DA8} - System32\Tasks\SystemToolsDailyTest => C:\Windows\System32\uaclauncher.exe No File Task: {C391A8D1-7229-4E06-A074-47DE6094FE89} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\MpCmdRun.exe [2013-01-29] (Microsoft Corporation) Task: {C3C22889-18E2-4138-92F7-A5CCCFDD60D7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\MpCmdRun.exe [2013-01-29] (Microsoft Corporation) Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender Task: {C498C282-4AD3-4574-970D-8C36AC3CF9BF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe No File Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {CB2FEDBA-981C-4BEC-B224-1675A3BDEA88} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe No File Task: {CCE1FC78-4485-4C03-8660-7670B5B640AB} - System32\Tasks\{E83C0B26-6375-46C7-B1E3-6FA5CEEA1B8F} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork Task: {D1F0B71F-A66D-4940-8BB0-F54AA54CD58A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe No File Task: {D36E7C9A-759F-4842-B256-E190F3127CE7} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe No File Task: {D536BF7D-0BBA-419F-BF54-0B0261BA18E3} - System32\Tasks\{12C8F5BD-7F1E-4A98-877E-2B73BB5CD69B} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {D6B64ABE-51F2-4C7F-950A-15B822FC4CB5} - System32\Tasks\{5568130F-6662-44EC-BD24-E8B41A470319} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {DB1ADF6C-D203-4A3E-B71A-31C1C5AA8EEB} - System32\Tasks\{92BC4BD6-E19C-409B-9ED4-E856867F5DB6} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical Task: {DBE46063-B818-44C2-A8CF-B53D5777F1FB} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe No File Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery Task: {E162D7A2-2CEC-47D4-BCDC-851F1CE42FF5} - System32\Tasks\{F80FC7D1-4053-4657-9271-8E2BD92785A5} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {E1F5AAC8-1443-4198-96E4-C4F9F025B0D1} - System32\Tasks\{E786270C-C100-456F-BA6F-27749B2C89A9} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-09-20] (Microsoft Corporation) Task: {EB89F479-50E1-48B1-A0FB-5871BC3EE232} - System32\Tasks\{83CF81B0-D70E-418D-B1B8-964B6648E053} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM Task: {EE8E899A-8E82-4E42-B8BB-9F8E117569E2} - System32\Tasks\{CA32BB10-6682-41E5-8382-3A736A3D6D2C} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {F2E62392-31A1-42ED-9541-497EB22FEC73} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe No File Task: {F7D7B0D2-5567-413E-8C98-4D8873085984} - System32\Tasks\{0D9BD8A7-4E65-43C2-916C-91F5B0CC3D23} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {F7DB9325-27EF-4484-92FE-E75EF0D8AF89} - System32\Tasks\{B996E7C6-4E9B-4B10-8A03-88C9A995149E} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {FECA429C-A27D-475E-83E2-A32AD369882A} - System32\Tasks\{E763EEC5-84FF-4E5B-AE34-D4F9FFD2D86B} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {FF5204A8-CB09-4B4F-852F-9024BB0E558C} - System32\Tasks\{B908E465-7DE1-4BF8-8567-BA3AA79084BC} => C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013-02-21] (Microsoft Corporation) Task: {FFE3FD50-646E-4A64-913B-23C4187E6025} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1875048427-4287691625-677518087-1000Core.job => C:\Users\***\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1875048427-4287691625-677518087-1000UA.job => C:\Users\***\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Faulty Device Manager Devices ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (07/02/2013 07:27:20 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1". Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (07/02/2013 07:27:19 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1". Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (07/02/2013 07:27:19 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1". Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (07/02/2013 07:27:17 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1". Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (07/02/2013 07:20:01 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3. Der Wert "*" des "language"-Attributs im assemblyIdentity-Element ist ungültig. Error: (07/02/2013 07:00:19 PM) (Source: Perflib) (User: ) Description: C:\Windows\System32\winspool.drvSpooler8 Error: (07/01/2013 11:01:02 AM) (Source: Perflib) (User: ) Description: C:\Windows\System32\winspool.drvSpooler8 Error: (06/30/2013 10:52:23 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1". Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (06/30/2013 10:52:21 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1". Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (06/30/2013 10:52:21 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1". Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". System errors: ============= Error: (07/03/2013 11:07:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 10:57:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 10:47:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 10:37:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 10:27:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 10:17:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 10:07:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 09:57:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 09:47:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Error: (07/03/2013 09:37:49 AM) (Source: DCOM) (User: ***-PC) Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6} Microsoft Office Sessions: ========================= Error: (07/02/2013 07:27:20 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"c:\program files (x86)\Adobe\adobe onlocation cs5.1\Setup\resources\libraries\ARKCmdFS.dll Error: (07/02/2013 07:27:19 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"c:\program files (x86)\Adobe\adobe onlocation cs5.1\Setup\resources\libraries\ARKCmdDefrag.dll Error: (07/02/2013 07:27:19 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"c:\program files (x86)\Adobe\adobe onlocation cs5.1\Setup\resources\libraries\ARKCmdCaps.dll Error: (07/02/2013 07:27:17 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"c:\program files (x86)\Adobe\adobe onlocation cs5.1\Setup\resources\libraries\ARKEngine.dll Error: (07/02/2013 07:20:01 PM) (Source: SideBySide)(User: ) Description: assemblyIdentitylanguage*C:\Program Files (x86)\Quest Software\Quest Installer\DelZip179.dllC:\Program Files (x86)\Quest Software\Quest Installer\DelZip179.dll8 Error: (07/02/2013 07:00:19 PM) (Source: Perflib)(User: ) Description: C:\Windows\System32\winspool.drvSpooler8 Error: (07/01/2013 11:01:02 AM) (Source: Perflib)(User: ) Description: C:\Windows\System32\winspool.drvSpooler8 Error: (06/30/2013 10:52:23 AM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"c:\program files (x86)\Adobe\adobe onlocation cs5.1\Setup\resources\libraries\ARKCmdDefrag.dll Error: (06/30/2013 10:52:21 AM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"c:\program files (x86)\Adobe\adobe onlocation cs5.1\Setup\resources\libraries\ARKCmdFS.dll Error: (06/30/2013 10:52:21 AM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"c:\program files (x86)\Adobe\adobe onlocation cs5.1\Setup\resources\libraries\ARKCmdCaps.dll CodeIntegrity Errors: =================================== Date: 2013-06-23 10:57:18.814 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-06-23 10:57:18.720 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-06-23 10:44:10.184 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-06-23 10:44:10.040 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\repository\Microsoft.VisualBas#\59b793b04e8a7adeac7f1f8376c970fa\Microsoft.VisualBasic.Compatibility.Data.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-06-23 10:44:09.819 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-05-19 14:11:21.027 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-05-19 14:11:20.966 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\repository\Microsoft.VisualBas#\59b793b04e8a7adeac7f1f8376c970fa\Microsoft.VisualBasic.Compatibility.Data.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-05-19 14:11:20.710 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-05-19 03:49:06.696 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. Date: 2013-05-19 03:49:06.537 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll with signing level Unsigned while the system requires signing level Microsoft or better to load. ==================== Memory info =========================== Percentage of memory in use: 36% Total physical RAM: 16365.82 MB Available physical RAM: 10406.79 MB Total Pagefile: 16365.82 MB Available Pagefile: 9090.64 MB Total Virtual: 8192 MB Available Virtual: 8191.75 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:688.86 GB) (Free:17.48 GB) NTFS (Disk=0 Partition=3) Drive z: () (Fixed) (Total:0.04 GB) (Free:0.04 GB) FAT (Disk=0 Partition=1) ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 699 GB) (Disk ID: B12D72AF) Partition 1: (Not Active) - (Size=39 MB) - (Type=DE) Partition 2: (Active) - (Size=10 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=689 GB) - (Type=07 NTFS) ==================== End Of Log ============================ |
|
03.07.2013, 10:44
| #4 |
| /// the machine /// TB-Ausbilder | Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.07.2013, 11:58
| #5 |
| | Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? Hier die Logs, nach den beiden Scans funktioniert mein Chrome nicht mehr weil die Chrome.exe nichtmehr als Klasse registriert ist. Ist aber nicht so schlimm (zumindest für mich, neu installation hilft kenne das problem). AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v2.303 - Datei am 03/07/2013 um 12:31:47 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows 8 Pro (64 bits)
# Benutzer : *** - ***-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\***\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Datei Gelöscht : C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\foxydeal.sqlite
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\ProgramData\APN
Ordner Gelöscht : C:\Users\***\AppData\Roaming\dvdvideosoftiehelpers
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gelöscht : HKLM\Software\Freeze.com
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16537
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www1.delta-search.com/?affID=119816&tt=gc_&babsrc=HP_ss&mntrId=76410022431207FF --> hxxp://www.google.com
-\\ Mozilla Firefox v13.0.1 (de)
Datei : C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\prefs.js
[OK] Die Datei ist sauber.
-\\ Google Chrome v27.0.1453.116
Datei : C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R1].txt - [1602 octets] - [11/10/2012 06:47:59]
AdwCleaner[S1].txt - [2026 octets] - [11/10/2012 06:48:48]
AdwCleaner[S2].txt - [1716 octets] - [03/07/2013 12:31:47]
########## EOF - C:\AdwCleaner[S2].txt - [1776 octets] ##########
[/CODE] Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 8 Pro x64
Ran by Benny-AW on 03.07.2013 at 12:42:02,77
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ FireFox
Emptied folder: C:\Users\Benny-AW\AppData\Roaming\mozilla\firefox\profiles\u5i4akpk.default\minidumps [2 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.07.2013 at 12:45:44,43
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-07-2013
Ran by *** (administrator) on 03-07-2013 12:50:33
Running from C:\Users\***\Desktop
Windows 8 Pro (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apache Software Foundation) C:\Program Files (x86)\Zend\Apache2\bin\httpd.exe
(Ryan Conrad) C:\Program Files\Droid Explorer\DroidExplorer.Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Apache Software Foundation) C:\Program Files (x86)\Zend\Apache2\bin\httpd.exe
(The PHP Group) C:\Program Files (x86)\Zend\ZendServer\bin\php-cgi.exe
(The PHP Group) C:\Program Files (x86)\Zend\ZendServer\bin\php-cgi.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\Droid Explorer\android-sdk-windows\platform-tools\adb.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Oracle Corporation) c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE
(Oracle Corporation) C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\sftservice.EXE
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(VMware, Inc.) C:\WINDOWS\SysWOW64\vmnat.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\TOASTER.EXE
(Zend Technologies Ltd.) C:\Program Files (x86)\Zend\ZendServer\bin\zdd.exe
() C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\WINDOWS\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\WINDOWS\System32\alg.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe
(Apache Software Foundation) C:\Program Files (x86)\Zend\Apache2\bin\ApacheMonitor.exe
(LOL Replay) C:\Program Files (x86)\LOLReplay\LOLRecorder.exe
() C:\Program Files (x86)\Zend\ZendServer\bin\zendcontroller.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Integrated Webcam\Live! Central\WebcamInt.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Alienware Corp) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Dell) C:\Users\***\AppData\Local\Apps\2.0\22RHLVTY.HMY\MA5V4Q4T.36O\dell..tion_0f612f649c4a10af_0004.0001_c31aa52bcc853aac\DellSystemDetect.exe
(Alienware Corporation) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
() C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2392872 2010-11-29] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-17] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [Command Center Controllers] "C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe" [13256 2011-04-14] (Microsoft)
HKLM\...\Run: [Stage Remote] C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe -Quiet [2034752 2011-08-08] ()
HKCU\...\Run: [Adobe Acrobat Synchronizer] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe" [1261472 2012-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [ISUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler [213936 2006-03-20] (Macrovision Corporation)
HKCU\...\Run: [Spotify Web Helper] "C:\Users\***\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1104384 2013-06-29] (Spotify Ltd)
HKCU\...\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844168 2013-05-12] (Samsung)
HKCU\...\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup [578560 2013-04-18] (Samsung Electronics)
HKCU\...\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload [1561968 2013-04-23] (Samsung)
HKCU\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18705664 2013-01-08] (Skype Technologies S.A.)
HKCU\...\Run: [AdobeBridge] [x]
HKCU\...\Run: [Google Update] "C:\Users\***\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2012-03-05] (Google Inc.)
HKCU\...\Run: [Spotify] "C:\Users\***\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart [4643328 2013-06-29] (Spotify Ltd)
HKCU\...\Run: [DellSystemDetect] C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms [x]
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [35736 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [1636208 2011-09-03] ()
HKLM-x32\...\Run: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe [75048 2011-08-12] (cyberlink)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [Integrated Webcam Live! Central] "C:\Program Files (x86)\Integrated Webcam\Live! Central\WebcamInt.exe" /mode2 [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] "c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe" [50472 2010-09-18] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl9] "c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [87336 2010-10-02] (CyberLink Corp.)
HKLM-x32\...\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [815512 2012-04-04] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [36760 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-03] (Adobe Systems Incorporated)
HKU\UpdatusUser\...\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade [516096 2012-07-26] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL [21864 2012-10-12] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll [20328 2012-10-12] (NVIDIA Corporation)
Startup: C:\ProgramData\Start Menu\Programs\Startup\Apache Web Server Monitor.lnk
ShortcutTarget: Apache Web Server Monitor.lnk -> C:\Program Files (x86)\Zend\Apache2\bin\ApacheMonitor.exe (Apache Software Foundation)
Startup: C:\ProgramData\Start Menu\Programs\Startup\LOLRecorder.lnk
ShortcutTarget: LOLRecorder.lnk -> C:\Program Files (x86)\LOLReplay\LOLRecorder.exe (LOL Replay)
Startup: C:\ProgramData\Start Menu\Programs\Startup\Zend Controller.lnk
ShortcutTarget: Zend Controller.lnk -> C:\Program Files (x86)\Zend\ZendServer\bin\zendcontroller.exe ()
Startup: C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.de/alienware
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Webtestaufzeichnung 10.0-Hilfsprogramm - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler: msdaipp - No CLSID Value -
Handler-x32: msdaipp - No CLSID Value -
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.9.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\***\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\***\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Users\***\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\Extensions\ich@maltegoetz.de
FF Extension: DownloadHelper - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: No Name - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: No Name - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\u5i4akpk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: Adobe Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
Chrome:
=======
CHR HomePage: hxxp://www.dell.de/alienware
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\***\AppData\Local\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\***\AppData\Local\Google\Chrome\Application\27.0.1453.116\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\***\AppData\Local\Google\Chrome\Application\27.0.1453.116\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U3) - C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.30.255) - C:\Windows\system32\npDeployJava1.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Google Update) - C:\Users\***\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Extension: (Raindrops) - C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcipapbfhdnmgihoimbjiadmhpcgcnil\1.0.0.2_0
CHR Extension: (AdBlock) - C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (ProxMate - Improve your Internet!) - C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\2.3.6_0
CHR Extension: (Auto Refresh Plus) - C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\1.8.9.21_0
==================== Services (Whitelisted) =================
R2 Apache2.2-Zend; C:\Program Files (x86)\Zend\Apache2\bin\httpd.exe [27688 2012-09-05] (Apache Software Foundation)
S2 CLKMSVC10_9EC60124; c:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [248304 2011-08-12] (CyberLink)
R2 DroidExplorerService; C:\Program Files\Droid Explorer\DroidExplorer.Service.exe [253952 2012-05-03] (Ryan Conrad)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184 2012-12-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [682344 2012-12-14] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25088 2012-07-26] (Microsoft Corporation)
S4 OracleJobSchedulerXE; c:\oraclexe\app\oracle\product\11.2.0\server\Bin\extjob.exe [49152 2011-08-27] ()
S3 OracleMTSRecoveryService; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\omtsreco.exe [69632 2011-08-27] (Oracle Corporation)
R2 OracleServiceXE; c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE [115773440 2011-08-27] (Oracle Corporation)
S3 OracleXEClrAgent; C:\oraclexe\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe [12800 2011-08-27] (Oracle Corporation)
R2 OracleXETNSListener; C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe [512000 2011-08-27] (Oracle Corporation)
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [143024 2012-10-09] (Stardock Software, Inc)
S2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [471552 2012-07-26] (Microsoft Corporation)
S3 wampapache; c:\wamp\bin\apache\apache2.2.21\bin\httpd.exe [18432 2011-09-26] (Apache Software Foundation)
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.5.16\bin\mysqld.exe [8158720 2011-09-26] ()
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
R2 ZendDeployment; C:\Program Files (x86)\Zend\ZendServer\bin\zdd.exe [707504 2012-09-05] (Zend Technologies Ltd.)
S4 ZendJobQueue; C:\Program Files (x86)\Zend\ZendServer\bin\jqd.exe [795056 2012-09-05] ()
S4 ZendMonitor; C:\Program Files (x86)\Zend\ZendServer\bin\MonitorNode.exe [468912 2012-09-05] (Zend Technologies Ltd.)
S4 ZendSessionClustering; C:\Program Files (x86)\Zend\ZendServer\bin\ZendSessionManager.exe [777648 2012-09-05] ()
==================== Drivers (Whitelisted) ====================
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [29672 2012-12-23] (REALiX(tm))
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24176 2012-12-14] (Malwarebytes Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24176 2012-12-14] (Malwarebytes Corporation)
S3 MEMSWEEP2; C:\Windows\system32\920A.tmp [6144 2009-06-18] (Sophos Plc)
S3 MEMSWEEP2; C:\Windows\system32\920A.tmp [6144 2009-06-18] (Sophos Plc)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [185856 2012-07-26] (Microsoft Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [70256 2012-07-06] (VMware, Inc.)
S3 VSPerfDrv100; C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [68440 2011-01-18] (Microsoft Corporation)
S3 VSPerfDrv100; C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [68440 2011-01-18] (Microsoft Corporation)
U3 idsvc;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-03 12:45 - 2013-07-03 12:45 - 00000753 ____A C:\Users\***\Desktop\JRT.txt
2013-07-03 12:41 - 2013-07-03 12:41 - 00000000 ____D C:\Windows\ERUNT
2013-07-03 12:41 - 2013-07-03 12:41 - 00000000 ____D C:\JRT
2013-07-03 12:40 - 2013-07-03 12:40 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\***\Desktop\JRT.exe
2013-07-03 12:33 - 2013-07-03 12:33 - 05100936 ____A C:\Windows\System32\FNTCACHE.DAT
2013-07-03 12:31 - 2013-07-03 12:32 - 00001843 ____A C:\AdwCleaner[S2].txt
2013-07-03 12:31 - 2013-07-03 12:31 - 00648201 ____A C:\Users\***\Desktop\adwcleaner.exe
2013-07-03 11:08 - 2013-07-03 11:08 - 00056819 ____A C:\Users\***\Desktop\Addition.txt
2013-07-03 11:07 - 2013-07-03 11:07 - 00000000 ____D C:\FRST
2013-07-03 11:05 - 2013-07-03 11:06 - 01933556 ____A (Farbar) C:\Users\***\Desktop\FRST64.exe
2013-07-02 23:01 - 2013-07-02 23:01 - 00041378 ____A C:\Users\***\Desktop\logs.zip
2013-07-02 22:55 - 2013-07-02 23:01 - 00016114 ____A C:\Users\***\Desktop\gmer.log
2013-07-02 22:25 - 2013-07-02 23:00 - 00106298 ____A C:\Users\***\Desktop\Extras.Txt
2013-07-02 22:23 - 2013-07-02 23:00 - 00166730 ____A C:\Users\***\Desktop\OTL.Txt
2013-07-02 22:14 - 2013-07-02 22:14 - 00000478 ____A C:\Users\***\Desktop\defogger_disable.log
2013-07-02 22:14 - 2013-07-02 22:14 - 00000000 ____A C:\Users\***\defogger_reenable
2013-07-02 22:13 - 2013-07-02 22:13 - 00377856 ____A C:\Users\***\Desktop\gmer_2.1.19163.exe
2013-07-02 22:12 - 2013-07-02 22:12 - 00050477 ____A C:\Users\***\Desktop\Defogger.exe
2013-07-02 22:11 - 2013-07-02 22:11 - 00602112 ____A (OldTimer Tools) C:\Users\***\Desktop\OTL.exe
2013-07-01 20:18 - 2013-07-01 20:18 - 00035888 ____A C:\Users\***\Downloads\c2ea010dd675aa4998d306f7e1ab6f29.dlc
2013-06-28 12:34 - 2013-06-28 12:34 - 01376768 ____A C:\Users\***\Downloads\7z920-x64.msi
2013-06-28 12:34 - 2013-06-28 12:34 - 00000000 ____D C:\Program Files\7-Zip
2013-06-28 12:23 - 2013-06-28 12:23 - 02871808 ____A (Microsoft Corporation) C:\Users\***\Downloads\explorer_seven_sp1.exe
2013-06-25 10:42 - 2013-06-25 10:53 - 1722418647 ____A C:\Users\***\Downloads\fernsehkritik116.mov
2013-06-24 22:35 - 2013-06-24 22:36 - 05066240 ____A (Geza Kovacs) C:\Users\***\Downloads\unetbootin-windows-584.exe
2013-06-24 21:42 - 2013-06-24 21:57 - 00000000 ____D C:\img
2013-06-24 21:40 - 2013-06-24 21:40 - 00000000 ____D C:\WIM
2013-06-24 21:05 - 2013-06-24 21:07 - 00000000 ____D C:\Win7PESE
2013-06-24 21:01 - 2013-06-24 21:58 - 00000000 ____D C:\winpe
2013-06-24 20:55 - 2011-05-17 03:09 - 3268147200 ____A C:\Users\***\Desktop\de_windows_7_professional_with_sp1_x64_dvd_u_676919.iso
2013-06-24 20:44 - 2013-06-24 21:08 - 00000965 ____A C:\Users\***\Downloads\WinBuilder.ini
2013-06-24 20:44 - 2013-06-24 20:45 - 00000000 ____D C:\Users\***\Downloads\Projects
2013-06-24 20:33 - 2013-06-24 20:33 - 00000000 ____D C:\pebuilder3110a
2013-06-24 20:32 - 2013-06-24 20:32 - 03306678 ____A (Bart Lagerweij ) C:\Users\***\Downloads\pebuilder3110a.exe
2013-06-24 15:09 - 2013-06-24 15:09 - 51638070 ____A (Igor Pavlov) C:\Users\***\Downloads\nforce_1557-vista-w7-64(www.station-drivers.com).exe
2013-06-24 14:59 - 2013-06-24 15:10 - 00000000 ____D C:\Users\***\Desktop\del
2013-06-24 14:58 - 2013-06-24 14:58 - 66271488 ____A C:\Users\***\Downloads\R273039.exe
2013-06-24 14:19 - 2013-06-24 14:22 - 169547776 ____A C:\Users\***\Downloads\vista_recover_x64.iso
2013-06-24 14:00 - 2013-06-24 14:03 - 169547776 ____A C:\Users\***\Downloads\vista-recovery-disc_14758.iso
2013-06-24 13:57 - 2013-06-11 22:36 - 725458632 ____A C:\Users\***\Desktop\Nintendo Direct@E3 2013.mp4
2013-06-24 13:56 - 2013-06-24 13:56 - 01142695 ____A (pendrivelinux.com) C:\Users\***\Downloads\Universal-USB-Installer-1.9.3.5.exe
2013-06-24 13:49 - 2013-06-24 13:50 - 330301440 ____A C:\Users\***\Downloads\pmagic_2013_06_15.iso
2013-06-24 12:51 - 2013-06-24 12:51 - 00000183 ____A C:\Users\***\Downloads\100198868622.sdx
2013-06-15 00:00 - 2013-05-31 01:24 - 01257472 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2013-06-15 00:00 - 2013-05-31 01:08 - 00974848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-06-15 00:00 - 2013-05-24 01:01 - 01300992 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2013-06-15 00:00 - 2013-05-24 00:27 - 01022464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-06-15 00:00 - 2013-05-15 04:25 - 00888320 ____A (Microsoft Corporation) C:\Windows\System32\autochk.exe
2013-06-15 00:00 - 2013-05-15 04:25 - 00542208 ____A (Microsoft Corporation) C:\Windows\System32\untfs.dll
2013-06-15 00:00 - 2013-05-15 04:24 - 00793088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2013-06-15 00:00 - 2013-05-15 04:24 - 00482816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2013-06-15 00:00 - 2013-05-04 09:58 - 00120736 ____A (Microsoft Corporation) C:\Windows\System32\AuthHost.exe
2013-06-15 00:00 - 2013-05-04 09:34 - 00446720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBHUB3.SYS
2013-06-15 00:00 - 2013-05-04 09:34 - 00284416 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\spaceport.sys
2013-06-15 00:00 - 2013-05-04 09:34 - 00213248 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\UCX01000.SYS
2013-06-15 00:00 - 2013-05-04 09:30 - 00058312 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2013-06-15 00:00 - 2013-05-04 08:59 - 13644288 ____A (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 03241472 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 01619968 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 01483776 ____A (Microsoft Corporation) C:\Windows\System32\VSSVC.exe
2013-06-15 00:00 - 2013-05-04 08:59 - 00812544 ____A (Microsoft Corporation) C:\Windows\System32\Magnify.exe
2013-06-15 00:00 - 2013-05-04 08:59 - 00760320 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 00251904 ____A (Microsoft Corporation) C:\Windows\System32\WUSettingsProvider.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 00141824 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 00098304 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2013-06-15 00:00 - 2013-05-04 08:59 - 00039424 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2013-06-15 00:00 - 2013-05-04 08:58 - 10116096 ____A (Microsoft Corporation) C:\Windows\System32\twinui.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 01332736 ____A (Microsoft Corporation) C:\Windows\System32\sysmain.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00470528 ____A (Microsoft Corporation) C:\Windows\System32\netprofmsvc.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00330240 ____A (Microsoft Corporation) C:\Windows\System32\stobject.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00328192 ____A (Microsoft Corporation) C:\Windows\System32\ubpm.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\storewuauth.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00169984 ____A (Microsoft Corporation) C:\Windows\System32\netplwiz.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00151552 ____A (Microsoft Corporation) C:\Windows\System32\netprofm.dll
2013-06-15 00:00 - 2013-05-04 08:58 - 00093696 ____A (Microsoft Corporation) C:\Windows\System32\psmsrv.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 02305024 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 01131520 ____A (Microsoft Corporation) C:\Windows\System32\AppXDeploymentServer.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00820736 ____A (Microsoft Corporation) C:\Windows\System32\gpprefcl.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00708096 ____A (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00560640 ____A (Microsoft Corporation) C:\Windows\System32\mfmp4srcsnk.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00501760 ____A (Microsoft Corporation) C:\Windows\System32\DevicePairing.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00389120 ____A (Microsoft Corporation) C:\Windows\System32\BCP47Langs.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00179712 ____A (Microsoft Corporation) C:\Windows\System32\bisrv.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00122368 ____A (Microsoft Corporation) C:\Windows\System32\biwinrt.dll
2013-06-15 00:00 - 2013-05-04 08:57 - 00017408 ____A (Microsoft Corporation) C:\Windows\System32\muifontsetup.dll
2013-06-15 00:00 - 2013-05-04 08:56 - 00419840 ____A (Microsoft Corporation) C:\Windows\System32\intl.cpl
2013-06-15 00:00 - 2013-05-04 06:58 - 00758784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2013-06-15 00:00 - 2013-05-04 06:58 - 00621056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-06-15 00:00 - 2013-05-04 06:58 - 00125952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-06-15 00:00 - 2013-05-04 06:58 - 00083968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-06-15 00:00 - 2013-05-04 06:58 - 00034304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-06-15 00:00 - 2013-05-04 06:57 - 10788864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 08857088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00303616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00247296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00151040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00115712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00018432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2013-06-15 00:00 - 2013-05-04 06:57 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 02035712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00582144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00449536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00411136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00309760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2013-06-15 00:00 - 2013-05-04 06:56 - 00092160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2013-06-15 00:00 - 2013-05-04 06:55 - 00389632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2013-06-15 00:00 - 2013-05-04 06:51 - 00014848 ____A (Microsoft) C:\Windows\System32\rars.rs
2013-06-15 00:00 - 2013-05-04 06:48 - 00083968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2013-06-15 00:00 - 2013-05-04 06:48 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidusb.sys
2013-06-15 00:00 - 2013-05-04 06:47 - 00427520 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdbss.sys
2013-06-15 00:00 - 2013-05-04 06:10 - 00014848 ____A (Microsoft) C:\Windows\SysWOW64\rars.rs
2013-06-15 00:00 - 2013-05-03 00:04 - 00386646 ____A C:\Windows\System32\ApnDatabase.xml
2013-06-14 23:33 - 2013-07-02 22:11 - 00000000 ____D C:\Users\***\Desktop\mac
2013-06-14 19:26 - 2013-06-14 19:26 - 00591320 ____A C:\Users\***\Downloads\eB0083.zip
2013-06-14 19:20 - 2013-06-14 19:20 - 00000466 ____A C:\Users\***\Downloads\mv21165ju2ic961.rsdf
2013-06-12 08:54 - 2013-05-16 00:37 - 00044032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2013-06-12 08:54 - 2013-05-16 00:36 - 14320640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-12 08:54 - 2013-05-16 00:35 - 19230720 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-12 08:54 - 2013-05-16 00:35 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\UXInit.dll
2013-06-12 08:54 - 2013-05-14 15:14 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-12 08:54 - 2013-05-14 11:23 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-12 08:54 - 2013-05-04 09:45 - 02233600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 08:54 - 2013-04-29 00:30 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-12 08:54 - 2013-04-29 00:30 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 00915968 ____A (Microsoft Corporation) C:\Windows\System32\uxtheme.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 08:54 - 2013-04-29 00:28 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-12 08:54 - 2013-04-29 00:27 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-12 08:54 - 2013-04-29 00:27 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-12 08:54 - 2013-04-29 00:27 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-12 08:54 - 2013-04-27 07:20 - 00733184 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 08:54 - 2013-04-24 01:13 - 01013248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 08:54 - 2013-04-24 01:12 - 01569792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 08:54 - 2013-04-24 01:12 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 08:54 - 2013-04-24 00:56 - 01255936 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 08:54 - 2013-04-24 00:55 - 01889280 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 08:54 - 2013-04-24 00:55 - 00141312 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 08:54 - 2013-04-24 00:55 - 00068096 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 08:54 - 2013-04-03 01:37 - 00025088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 08:54 - 2013-04-03 01:12 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 00:35 - 2013-06-12 00:35 - 00000000 ____D C:\dell
2013-06-12 00:35 - 2011-03-03 17:42 - 08507392 ____A (Intel Corporation) C:\Windows\System32\Drivers\NETwNs64.sys
2013-06-12 00:34 - 2013-06-12 00:34 - 59938200 ____A C:\Users\***\Downloads\INTEL_INTEL-R--WIFI-LINK-630_A01_R304458.exe
2013-06-12 00:33 - 2013-06-12 00:33 - 08843264 ____A C:\Users\***\Downloads\GTX580M_Vbios_A01.iso
2013-06-12 00:28 - 2013-06-12 00:28 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (3).application
2013-06-12 00:18 - 2013-06-12 00:18 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (2).application
2013-06-12 00:11 - 2013-06-12 00:11 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (1).application
2013-06-11 22:10 - 2013-06-11 22:16 - 42415262 ____A C:\Users\***\Downloads\Super Smash Bros. for 3DS_Wii U 1st Trailer.mp4
2013-06-09 19:23 - 2013-06-09 19:23 - 02876394 ____A C:\Users\***\Downloads\savegamemanagerr127.zip
2013-06-09 16:39 - 2013-06-09 16:39 - 00776748 ____A (HDDGURU ) C:\Users\***\Downloads\HDDLLFsetup.4.30.exe
2013-06-09 16:39 - 2013-06-09 16:39 - 00001058 ____A C:\Users\***\Desktop\Hard Disk Low Level Format Tool.lnk
2013-06-09 16:39 - 2013-06-09 16:39 - 00000001 ____A C:\Users\***\AppData\Local\llftool.4.30.agreement
2013-06-09 16:39 - 2013-06-09 16:39 - 00000000 ____D C:\Program Files (x86)\HDDGURU LLF Tool
2013-06-06 23:05 - 2013-06-06 23:05 - 00770677 ____A C:\Users\***\Desktop\studien-gummersbach-alle-daten.zip
2013-06-05 10:32 - 2013-06-05 10:32 - 00001894 ____A C:\Users\***\Desktop\highlight.reg
2013-06-05 10:31 - 2013-06-05 10:31 - 00001894 ____A C:\Users\***\Desktop\hottrackcolor.reg
2013-06-03 05:17 - 2013-06-03 05:20 - 513248772 ____A C:\Users\***\Downloads\MINECRAFT [HD ] #1021 - Mach' die Schläuche leer! ? Let's Play Minecraft.mp4
==================== One Month Modified Files and Folders =======
2013-07-03 12:51 - 2012-03-05 18:42 - 00001132 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1875048427-4287691625-677518087-1000UA.job
2013-07-03 12:45 - 2013-07-03 12:45 - 00000753 ____A C:\Users\***\Desktop\JRT.txt
2013-07-03 12:41 - 2013-07-03 12:41 - 00000000 ____D C:\Windows\ERUNT
2013-07-03 12:41 - 2013-07-03 12:41 - 00000000 ____D C:\JRT
2013-07-03 12:41 - 2012-07-26 12:27 - 00880444 ____A C:\Windows\System32\perfh007.dat
2013-07-03 12:41 - 2012-07-26 12:27 - 00204078 ____A C:\Windows\System32\perfc007.dat
2013-07-03 12:41 - 2012-07-26 09:28 - 02073902 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-03 12:40 - 2013-07-03 12:40 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\***\Desktop\JRT.exe
2013-07-03 12:39 - 2012-03-06 00:24 - 00000000 ____D C:\Users\***\AppData\Roaming\Skype
2013-07-03 12:39 - 2012-02-29 06:18 - 00000000 ____D C:\ProgramData\Sonic
2013-07-03 12:38 - 2013-04-01 06:52 - 00000000 ____D C:\Users\***\AppData\Local\Deployment
2013-07-03 12:35 - 2012-11-11 00:01 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-07-03 12:35 - 2012-11-11 00:01 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-07-03 12:35 - 2012-05-02 10:06 - 00000000 ____D C:\ProgramData\VMware
2013-07-03 12:35 - 2012-02-29 06:06 - 00000000 ____D C:\Program Files (x86)\AlienRespawn
2013-07-03 12:34 - 2012-07-26 09:22 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-03 12:34 - 2012-07-26 09:21 - 00025559 ____A C:\Windows\setupact.log
2013-07-03 12:34 - 2012-02-28 22:20 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-03 12:33 - 2013-07-03 12:33 - 05100936 ____A C:\Windows\System32\FNTCACHE.DAT
2013-07-03 12:33 - 2012-11-10 23:45 - 00016152 ____A C:\Windows\PFRO.log
2013-07-03 12:32 - 2013-07-03 12:31 - 00001843 ____A C:\AdwCleaner[S2].txt
2013-07-03 12:32 - 2012-07-26 07:26 - 00262144 __ASH C:\Windows\System32\config\BBI
2013-07-03 12:31 - 2013-07-03 12:31 - 00648201 ____A C:\Users\***\Desktop\adwcleaner.exe
2013-07-03 12:21 - 2012-11-11 00:10 - 01753271 ____A C:\Windows\WindowsUpdate.log
2013-07-03 12:09 - 2012-03-31 02:33 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-03 12:02 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\System32\sru
2013-07-03 11:08 - 2013-07-03 11:08 - 00056819 ____A C:\Users\***\Desktop\Addition.txt
2013-07-03 11:07 - 2013-07-03 11:07 - 00000000 ____D C:\FRST
2013-07-03 11:06 - 2013-07-03 11:05 - 01933556 ____A (Farbar) C:\Users\***\Desktop\FRST64.exe
2013-07-03 06:20 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-07-03 03:00 - 2012-07-26 09:21 - 00003916 ____A C:\Windows\setuperr.log
2013-07-03 02:00 - 2012-03-06 09:58 - 00000000 ____D C:\Users\***\AppData\Local\Adobe
2013-07-02 23:01 - 2013-07-02 23:01 - 00041378 ____A C:\Users\***\Desktop\logs.zip
2013-07-02 23:01 - 2013-07-02 22:55 - 00016114 ____A C:\Users\***\Desktop\gmer.log
2013-07-02 23:00 - 2013-07-02 22:25 - 00106298 ____A C:\Users\***\Desktop\Extras.Txt
2013-07-02 23:00 - 2013-07-02 22:23 - 00166730 ____A C:\Users\***\Desktop\OTL.Txt
2013-07-02 22:14 - 2013-07-02 22:14 - 00000478 ____A C:\Users\***\Desktop\defogger_disable.log
2013-07-02 22:14 - 2013-07-02 22:14 - 00000000 ____A C:\Users\***\defogger_reenable
2013-07-02 22:14 - 2012-11-10 23:51 - 00000000 ____D C:\users\***
2013-07-02 22:13 - 2013-07-02 22:13 - 00377856 ____A C:\Users\***\Desktop\gmer_2.1.19163.exe
2013-07-02 22:13 - 2012-09-29 13:29 - 00000000 ____D C:\Users\***\AppData\Roaming\Spotify
2013-07-02 22:12 - 2013-07-02 22:12 - 00050477 ____A C:\Users\***\Desktop\Defogger.exe
2013-07-02 22:11 - 2013-07-02 22:11 - 00602112 ____A (OldTimer Tools) C:\Users\***\Desktop\OTL.exe
2013-07-02 22:11 - 2013-06-14 23:33 - 00000000 ____D C:\Users\***\Desktop\mac
2013-07-02 16:58 - 2012-03-05 23:54 - 00000000 ____D C:\Users\***\AppData\Roaming\vlc
2013-07-01 20:25 - 2012-09-29 13:29 - 00000000 ____D C:\Users\***\AppData\Local\Spotify
2013-07-01 20:20 - 2013-05-15 15:27 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-07-01 20:18 - 2013-07-01 20:18 - 00035888 ____A C:\Users\***\Downloads\c2ea010dd675aa4998d306f7e1ab6f29.dlc
2013-07-01 14:51 - 2012-03-05 18:42 - 00001080 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1875048427-4287691625-677518087-1000Core.job
2013-06-30 23:33 - 2013-06-30 23:32 - 42495724 ____A C:\Users\***\Downloads\ClCa.7z
2013-06-30 23:03 - 2012-11-13 19:01 - 00025898 ____A C:\Windows\RPSETUP.EXE.LOG
2013-06-30 19:04 - 2012-04-08 19:31 - 00000000 ____D C:\Users\***\AppData\Roaming\foobar2000
2013-06-28 17:02 - 2012-11-10 23:51 - 00002823 ____A C:\Windows\diagwrn.xml
2013-06-28 17:02 - 2012-11-10 23:51 - 00001908 ____A C:\Windows\diagerr.xml
2013-06-28 12:34 - 2013-06-28 12:34 - 01376768 ____A C:\Users\***\Downloads\7z920-x64.msi
2013-06-28 12:34 - 2013-06-28 12:34 - 00000000 ____D C:\Program Files\7-Zip
2013-06-28 12:23 - 2013-06-28 12:23 - 02871808 ____A (Microsoft Corporation) C:\Users\***\Downloads\explorer_seven_sp1.exe
2013-06-28 09:15 - 2012-03-10 16:00 - 00000000 ____D C:\ProgramData\PCDr
2013-06-25 10:53 - 2013-06-25 10:42 - 1722418647 ____A C:\Users\***\Downloads\fernsehkritik116.mov
2013-06-24 23:05 - 2012-05-02 10:44 - 00000000 ____D C:\Users\***\AppData\Local\VMware
2013-06-24 23:03 - 2012-05-02 10:16 - 00000000 ____D C:\Users\***\AppData\Roaming\VMware
2013-06-24 22:36 - 2013-06-24 22:35 - 05066240 ____A (Geza Kovacs) C:\Users\***\Downloads\unetbootin-windows-584.exe
2013-06-24 21:58 - 2013-06-24 21:01 - 00000000 ____D C:\winpe
2013-06-24 21:57 - 2013-06-24 21:42 - 00000000 ____D C:\img
2013-06-24 21:40 - 2013-06-24 21:40 - 00000000 ____D C:\WIM
2013-06-24 21:08 - 2013-06-24 20:44 - 00000965 ____A C:\Users\***\Downloads\WinBuilder.ini
2013-06-24 21:07 - 2013-06-24 21:05 - 00000000 ____D C:\Win7PESE
2013-06-24 20:45 - 2013-06-24 20:44 - 00000000 ____D C:\Users\***\Downloads\Projects
2013-06-24 20:33 - 2013-06-24 20:33 - 00000000 ____D C:\pebuilder3110a
2013-06-24 20:32 - 2013-06-24 20:32 - 03306678 ____A (Bart Lagerweij ) C:\Users\***\Downloads\pebuilder3110a.exe
2013-06-24 15:10 - 2013-06-24 14:59 - 00000000 ____D C:\Users\***\Desktop\del
2013-06-24 15:09 - 2013-06-24 15:09 - 51638070 ____A (Igor Pavlov) C:\Users\***\Downloads\nforce_1557-vista-w7-64(www.station-drivers.com).exe
2013-06-24 14:58 - 2013-06-24 14:58 - 66271488 ____A C:\Users\***\Downloads\R273039.exe
2013-06-24 14:22 - 2013-06-24 14:19 - 169547776 ____A C:\Users\***\Downloads\vista_recover_x64.iso
2013-06-24 14:03 - 2013-06-24 14:00 - 169547776 ____A C:\Users\***\Downloads\vista-recovery-disc_14758.iso
2013-06-24 13:56 - 2013-06-24 13:56 - 01142695 ____A (pendrivelinux.com) C:\Users\***\Downloads\Universal-USB-Installer-1.9.3.5.exe
2013-06-24 13:50 - 2013-06-24 13:49 - 330301440 ____A C:\Users\***\Downloads\pmagic_2013_06_15.iso
2013-06-24 12:51 - 2013-06-24 12:51 - 00000183 ____A C:\Users\***\Downloads\100198868622.sdx
2013-06-24 12:51 - 2012-03-05 02:25 - 00000000 ____A C:\Users\***\Downloads\SecureDownloadManager.log
2013-06-23 10:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-06-23 09:52 - 2013-02-20 21:53 - 00002386 ____A C:\Users\***\Desktop\Google Chrome.lnk
2013-06-23 09:19 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ToastData
2013-06-23 09:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-06-23 09:19 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-06-23 09:19 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-06-23 09:19 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-06-23 09:19 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\System32\Dism
2013-06-14 19:20 - 2013-06-14 19:20 - 00000466 ____A C:\Users\***\Downloads\mv21165ju2ic961.rsdf
2013-06-13 05:04 - 2012-03-11 15:32 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 00:38 - 2012-11-10 22:29 - 00012982 ____A C:\Windows\DPINST.LOG
2013-06-12 00:35 - 2013-06-12 00:35 - 00000000 ____D C:\dell
2013-06-12 00:34 - 2013-06-12 00:34 - 59938200 ____A C:\Users\***\Downloads\INTEL_INTEL-R--WIFI-LINK-630_A01_R304458.exe
2013-06-12 00:33 - 2013-06-12 00:33 - 08843264 ____A C:\Users\***\Downloads\GTX580M_Vbios_A01.iso
2013-06-12 00:28 - 2013-06-12 00:28 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (3).application
2013-06-12 00:18 - 2013-06-12 00:18 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (2).application
2013-06-12 00:11 - 2013-06-12 00:11 - 00010778 ____A C:\Users\***\Downloads\dellsystemdetect (1).application
2013-06-11 22:36 - 2013-06-24 13:57 - 725458632 ____A C:\Users\***\Desktop\Nintendo Direct@E3 2013.mp4
2013-06-11 22:16 - 2013-06-11 22:10 - 42415262 ____A C:\Users\***\Downloads\Super Smash Bros. for 3DS_Wii U 1st Trailer.mp4
2013-06-09 19:23 - 2013-06-09 19:23 - 02876394 ____A C:\Users\***\Downloads\savegamemanagerr127.zip
2013-06-09 16:39 - 2013-06-09 16:39 - 00776748 ____A (HDDGURU ) C:\Users\***\Downloads\HDDLLFsetup.4.30.exe
2013-06-09 16:39 - 2013-06-09 16:39 - 00001058 ____A C:\Users\***\Desktop\Hard Disk Low Level Format Tool.lnk
2013-06-09 16:39 - 2013-06-09 16:39 - 00000001 ____A C:\Users\***\AppData\Local\llftool.4.30.agreement
2013-06-09 16:39 - 2013-06-09 16:39 - 00000000 ____D C:\Program Files (x86)\HDDGURU LLF Tool
2013-06-07 14:37 - 2013-02-26 18:19 - 00001903 ____A C:\Users\Public\Desktop\LOL Recorder.lnk
2013-06-07 14:37 - 2013-01-16 10:48 - 00000000 ____D C:\Program Files (x86)\LOLReplay
2013-06-06 23:05 - 2013-06-06 23:05 - 00770677 ____A C:\Users\***\Desktop\studien-gummersbach-alle-daten.zip
2013-06-05 10:32 - 2013-06-05 10:32 - 00001894 ____A C:\Users\***\Desktop\highlight.reg
2013-06-05 10:31 - 2013-06-05 10:31 - 00001894 ____A C:\Users\***\Desktop\hottrackcolor.reg
2013-06-05 00:09 - 2012-11-11 23:05 - 00693112 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-05 00:09 - 2012-11-11 23:05 - 00078200 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-03 05:20 - 2013-06-03 05:17 - 513248772 ____A C:\Users\***\Downloads\MINECRAFT [HD ] #1021 - Mach' die Schläuche leer! ? Let's Play Minecraft.mp4
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-03 03:00
==================== End Of Log ============================
|
|
03.07.2013, 12:43
| #6 |
| /// the machine /// TB-Ausbilder | Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch?ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch PRobleme`?
__________________ --> Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? |
|
03.07.2013, 17:20
| #7 |
| | Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? Der Eset Scan lief jetzt 3 Stunden und hat 8 Threats gefunden (leider gibt es keine Logdatei, ist einfach nicht vorhanden im Ordner von Eset egal ob x86 oder x64). Jedenfalls waren die Threats wie folgt (aus dem Gedächtnis) 6 Mal Exploits für Android (die sind von mir zum rooten von Android Handys, weil ich dafür Apps entwickle. 1 Mal mein alter WLAN Client von meiner Schule der mit Windows 8 unnütz geworden ist (der ist 100% sauber und wurde schon immer erkannt, ist ein typisches false positive) 1 Threat den ich nun nicht mehr auswendig kenne da dieser definitiv nicht mir gehört. Soll ich nun weitere 3 Stunden in kauf nehmen oder etwas anderes machen? |
|
03.07.2013, 18:23
| #8 |
| /// the machine /// TB-Ausbilder | Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? Mach nen Vollscan mit deinem AV, dann den Rest 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Computer ist langsam für die verbaute Hardware und den CPU/Speicher Last - Deltasearch? |
| andere, anderen, browser, computer, delta, delta search, einfach, eingefangen, erreiche, geschwindigkeit, geschwindigkeitsverlust, hardware, interne, internetverbindung, jahre, lan-verbindung, langsam, langsamer, laptop, merkt, nenne, rechner, rechnern, schnell, schule, search, verbindung, wichtige |
Linear-Darstellung
