| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Werbe-Pop-ups (World of Tanks)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
16.07.2013, 20:00
| #1 |
 |  Werbe-Pop-ups (World of Tanks) Hallo, ich habe ein Problem. Vor einer Woche musste ich mein Betriebssystem Windows Vista neu installieren, inklusive Firefox. Nun poppen seit gestern ständig Werbefenster auf. IN der Tabzeile öffnet sich alle paar Minuten eine Werbung für WORLD OF TANKS und wenn ich selbst kleine Fenster öffne, werden diese oft von Werbungen überlagert. Wer weiß, was ich dagegen tun kann? |
|
16.07.2013, 20:10
| #2 |
| | Werbe-Pop-ups (World of Tanks) In den anderen Foren habe ich gelesen, dass ich meine LOG-Dateien posten soll. Hier wäre die FRST:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-07-2013 03
Ran by Christian Rietz (administrator) on 16-07-2013 21:06:18
Running from C:\Users\Christian Rietz\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe
() C:\Windows\system32\PSIService.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
(X10) C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Cyberlink Corp.) C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(ACD Systems, Ltd.) C:\Program Files\Common Files\ACD Systems\DE\DevDetect.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\wsqmcons.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512 2008-01-04] (Synaptics, Inc.)
HKLM\...\Run: [BullGuard] - C:\Program Files\BullGuard Ltd\BullGuard\bullguard.exe [304456 2008-08-05] (BullGuard Ltd.)
HKLM\...\Run: [UpdatePDRShortCut] - C:\Program Files\HomeCinema\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [RemoteControl] - C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe [71216 2007-02-09] (Cyberlink Corp.)
HKLM\...\Run: [LanguageShortcut] - C:\Program Files\HomeCinema\PowerDVD\Language\Language.exe [52256 2007-01-08] ()
HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-02-21] (CyberLink Corp.)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\HomeCinema\YouCam\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13560352 2008-09-29] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] - C:\Windows\system32\NvMcTray.dll [92704 2008-09-29] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - RtHDVCpl.exe [x]
HKLM\...\Run: [Google Desktop Search] - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [220160 2008-10-26] (Google)
HKLM\...\Run: [toolbar_eula_launcher] - C:\Program Files\GoogleEULA\EULALauncher.exe [16896 2007-02-09] ( )
HKLM\...\Run: [TkBellExe] - C:\program files\real\realplayer\Update\realsched.exe [295512 2013-07-11] (RealNetworks, Inc.)
HKLM\...\Run: [Device Detector] - DevDetect.exe -autorun [x]
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [BullGuard] - C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [304456 2008-08-05] (BullGuard Ltd.)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-07-11] (Google Inc.)
HKCU\...\Run: [SCheck] - C:\Users\Christian Rietz\AppData\Roaming\SCheck\SCheck.exe [36864 2013-04-10] ()
HKCU\...\Run: [SSync] - C:\Users\Christian Rietz\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10] ()
HKCU\...\Run: [DataMgr] - C:\Users\Christian Rietz\AppData\Roaming\DataMgr\DataMgr.exe [168848 2013-06-26] (HTTO Group, Ltd.)
HKCU\...\Run: [Intermediate] - C:\Users\Christian Rietz\AppData\Roaming\Intermediate\Intermediate.exe [36864 2013-04-10] ()
Startup: C:\ProgramData\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.fbdownloader.com/?channel=sfde203fbdgy21
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=5450002220030F1A&affID=121563&tsp=4940
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q={searchTerms}
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: PiccShare BHO - {553318DA-D010-469E-84B1-496563CAE1C0} - C:\Users\Christian Rietz\AppData\Local\ext_piccshare\ext_piccshare.dll (HTTO Group, Ltd)
BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: No Name - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default
FF user.js: detected! => C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\user.js
FF SelectedSearchEngine: Search the web
FF Homepage: hxxp://search.fbdownloader.com/?channel=sfde203fbdgy21
FF Keyword.URL: hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\2.0.31005.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\searchplugins\search_the_web.xml
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}
FF Extension: DownloadHelper - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: om - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\om@offermosquito.com.xpi
FF Extension: No Name - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: No Name - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
Chrome:
=======
CHR HomePage: http:\/\/search.fbdownloader.com\/?channel=sfde203fbdgy21
CHR RestoreOnStartup: "http:\/\/search.fbdownloader.com\/?channel=sfde203fbdgy21"],"restore_on_startup_migrated":true,"restore_on_startup":4},"default_search_provider":{"enabled":true,"encodings":"UTF-8","id":1,"keyword":"Search the web","suggest_url":null,"name":"Search the web","icon_url":"http:\/\/search.fbdownloader.com\/search.ico","search_url":"http:\/\/search.fbdownloader.com\/search.php?channel=sfde203fbdgy21&q={searchTerms}","prepopulate_id":0,"instant_url"
CHR Extension: (PiccShare) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\docfnddcclkgokdfpnmngpiliiachclb\2.0_0
CHR Extension: (OfferMosquito) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.4.1_0
========================== Services (Whitelisted) =================
S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [68096 2013-07-12] ()
R2 BgLiveSvc; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [718152 2008-08-05] (BullGuard Ltd.)
R2 BgMainSvc; C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll [83272 2008-08-05] (BullGuard Ltd.)
R2 BsFileScan; C:\Program Files\BullGuard Ltd\BullGuard\BsFileScan.dll [128328 2008-08-05] (BullGuard Ltd.)
R2 BsFire; C:\Program Files\BullGuard Ltd\BullGuard\BsFire.dll [315392 2008-08-05] (BullGuard Ltd.)
R2 BsMailProxy; C:\Program Files\BullGuard Ltd\BullGuard\BsMailProxy.dll [83272 2008-08-05] (BullGuard Ltd.)
S3 GoogleDesktopManager; C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe [69120 2008-10-26] (Google)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-06-28] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1724192 2013-01-28] (TuneUp Software)
S3 usnjsvc; C:\Program Files\Windows Live\Messenger\usnsvc.exe [98328 2007-10-18] (Microsoft Corporation)
S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)
R2 x10nets; C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe [20480 2001-11-12] (X10)
==================== Drivers (Whitelisted) ====================
R1 afw; C:\Windows\System32\DRIVERS\afw.sys [207888 2007-11-28] (Agnitum Ltd.)
R2 BdFileSpy; C:\Windows\system32\drivers\BdFileSpy.sys [52560 2008-06-12] (BullGuard Ltd.)
S3 NxpCap; C:\Windows\System32\DRIVERS\NxpCap.sys [1332576 2008-09-25] (NXP Semiconductors Germany GmbH)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2013-07-12] (Padus, Inc.)
S3 PhilCap; C:\Windows\System32\DRIVERS\PhilCap.sys [908896 2007-07-31] (NXP Semiconductors Germany GmbH)
R3 Reconn; C:\Program Files\BullGuard Ltd\BullGuard\Reconn.sys [16984 2007-10-29] (BullGuard Ltd.)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-11-16] (TuneUp Software)
R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [13976 2006-11-17] (X10 Wireless Technology, Inc.)
R3 XUIF; C:\Windows\System32\Drivers\x10ufx2.sys [27416 2006-11-30] (X10 Wireless Technology, Inc.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
U4 Msetapxe_n; No ImagePath
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-16 21:05 - 2013-07-16 21:05 - 00000000 ____D C:\FRST
2013-07-16 21:04 - 2013-07-16 21:04 - 01218614 _____ (Farbar) C:\Users\Christian Rietz\Downloads\FRST.exe
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\Public\CyberLink
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\CyberLink
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\CyberLink
2013-07-15 21:22 - 2013-07-15 21:22 - 00002687 _____ C:\Users\Christian Rietz\Desktop\Microsoft Office Excel 2007.lnk
2013-07-15 21:22 - 2013-07-15 21:22 - 00002681 _____ C:\Users\Christian Rietz\Desktop\Microsoft Office Word 2007.lnk
2013-07-15 21:19 - 2013-07-15 21:19 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2013-07-15 21:13 - 2013-07-15 21:13 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Microsoft Help
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SSync
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SCheck
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Intermediate
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\DataMgr
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\ext_piccshare
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\Documents\MAGIX
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\PiccShare
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\MAGIX
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Common
2013-07-15 00:49 - 2013-07-15 00:55 - 00000000 ____D C:\Program Files\MAGIX
2013-07-15 00:48 - 2013-07-15 00:49 - 00000000 ____D C:\ProgramData\MAGIX
2013-07-15 00:40 - 2013-07-15 00:43 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Apple Computer
2013-07-15 00:40 - 2013-07-15 00:40 - 00001668 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-07-15 00:40 - 2013-07-15 00:40 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Apple Computer
2013-07-15 00:40 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2013-07-15 00:39 - 2013-07-15 00:40 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-07-15 00:39 - 2013-07-15 00:40 - 00000000 ____D C:\Program Files\iTunes
2013-07-15 00:39 - 2013-07-15 00:39 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-15 00:39 - 2013-07-15 00:39 - 00000000 ____D C:\Program Files\iPod
2013-07-15 00:37 - 2013-07-15 00:37 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Apple
2013-07-15 00:37 - 2013-07-15 00:37 - 00000000 ____D C:\Program Files\Apple Software Update
2013-07-15 00:32 - 2013-07-15 00:39 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-07-15 00:32 - 2013-07-15 00:36 - 00000000 ____D C:\ProgramData\Apple
2013-07-15 00:32 - 2013-07-15 00:32 - 00000000 ____D C:\Program Files\Bonjour
2013-07-15 00:30 - 2013-07-15 00:30 - 00393072 _____ (Softonic ) C:\Users\Christian Rietz\Downloads\SoftonicDownloader_fuer_samplitude-music-studio-mx.exe
2013-07-15 00:26 - 2013-07-15 00:31 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup(2).exe
2013-07-12 01:22 - 2013-07-12 01:22 - 00000943 _____ C:\Users\Christian Rietz\Desktop\Photoshop - Verknüpfung.lnk
2013-07-12 01:18 - 2013-07-12 01:18 - 00000000 ____D C:\ProgramData\Macrovision
2013-07-12 01:18 - 2013-07-12 01:18 - 00000000 ____D C:\Program Files\Common Files\Adobe Systems Shared
2013-07-12 01:10 - 2013-07-12 01:10 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\ACD Systems
2013-07-12 01:10 - 2013-07-12 01:10 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00002080 _____ C:\Users\Public\Desktop\ACDSee 9 Foto-Manager.lnk
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\ProgramData\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\Program Files\Common Files\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\Program Files\ACD Systems
2013-07-12 01:06 - 2013-07-12 01:06 - 00010368 _____ (Padus, Inc.) C:\Windows\system32\Drivers\pfc.sys
2013-07-12 01:04 - 2013-07-12 01:04 - 00000000 ____D C:\Windows\Downloaded Installations
2013-07-12 01:02 - 2013-07-12 01:02 - 00000000 ____D C:\Program Files\7-Zip
2013-07-12 01:00 - 2013-07-12 01:05 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup(1).exe
2013-07-12 00:21 - 2013-07-12 00:26 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup.exe
2013-07-11 23:48 - 2013-07-14 20:23 - 00001975 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-07-11 23:25 - 2013-07-11 23:25 - 00000937 _____ C:\Users\Public\Desktop\RealPlayer.lnk
2013-07-11 23:24 - 2013-07-11 23:24 - 00201872 _____ (RealNetworks, Inc.) C:\Windows\system32\rmoc3260.dll
2013-07-11 23:24 - 2013-07-11 23:24 - 00000000 ____D C:\Program Files\Common Files\xing shared
2013-07-11 23:23 - 2013-07-11 23:23 - 00272896 _____ (Progressive Networks) C:\Windows\system32\pncrt.dll
2013-07-11 23:23 - 2013-07-11 23:23 - 00006656 _____ (RealNetworks, Inc.) C:\Windows\system32\pndx5016.dll
2013-07-11 23:23 - 2013-07-11 23:23 - 00005632 _____ (RealNetworks, Inc.) C:\Windows\system32\pndx5032.dll
2013-07-11 23:21 - 2013-07-11 23:21 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\vlc
2013-07-11 23:19 - 2013-07-11 23:19 - 00000863 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-07-11 23:18 - 2013-07-11 23:18 - 00000000 ____D C:\Program Files\VideoLAN
2013-07-11 23:16 - 2013-07-11 23:18 - 22937227 _____ C:\Users\Christian Rietz\Downloads\vlc-2.0.7-win32.exe
2013-07-11 23:16 - 2013-07-11 23:16 - 00774320 _____ (RealNetworks, Inc.) C:\Users\Christian Rietz\Downloads\RealPlayer_de(1).exe
2013-07-11 23:14 - 2013-07-11 23:14 - 00000918 _____ C:\Users\Christian Rietz\Desktop\Windows Media Player.lnk
2013-07-11 22:59 - 2013-01-28 15:19 - 00029984 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2013-07-11 22:59 - 2013-01-28 15:19 - 00021792 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-07-11 22:56 - 2013-07-11 22:56 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\DVDVideoSoftIEHelpers
2013-07-11 22:55 - 2013-07-11 22:55 - 00001873 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-07-11 22:55 - 2013-07-11 22:55 - 00001869 _____ C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
2013-07-11 22:55 - 2013-07-11 22:55 - 00001036 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-07-11 22:55 - 2013-01-28 15:19 - 00032032 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-07-11 22:54 - 2013-07-11 22:59 - 00000000 ____D C:\Program Files\TuneUp Utilities 2013
2013-07-11 22:54 - 2013-07-11 22:54 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\TuneUp Software
2013-07-11 22:54 - 2013-07-11 22:54 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-07-11 22:53 - 2013-07-11 22:53 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-07-11 22:51 - 2013-07-11 22:55 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\DVDVideoSoft
2013-07-11 22:51 - 2013-07-11 22:55 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-07-11 22:51 - 2013-07-11 22:55 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-07-11 22:51 - 2013-07-11 22:51 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\OpenCandy
2013-07-11 22:51 - 2013-07-11 22:51 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Babylon
2013-07-11 22:51 - 2013-07-11 22:51 - 00000000 ____D C:\ProgramData\Babylon
2013-07-11 22:45 - 2013-07-11 22:49 - 70505984 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio(2).exe
2013-07-11 22:05 - 2013-07-11 22:05 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Macromedia
2013-07-11 22:03 - 2013-07-16 20:52 - 00001915 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-07-11 22:03 - 2013-07-16 20:52 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-07-11 22:03 - 2013-07-11 23:47 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-11 22:03 - 2013-07-11 23:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-11 22:03 - 2013-07-11 22:03 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-07-11 22:03 - 2013-07-11 22:03 - 00000000 ____D C:\ProgramData\McAfee
2013-07-11 22:02 - 2013-07-15 21:01 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Adobe
2013-07-11 19:04 - 2008-06-20 03:14 - 00781344 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2013-07-11 19:04 - 2008-06-20 03:14 - 00622080 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2013-07-11 19:04 - 2008-06-20 03:14 - 00326160 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2013-07-11 19:04 - 2008-06-20 03:14 - 00105016 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-07-11 19:04 - 2008-06-20 03:14 - 00097800 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2013-07-11 19:04 - 2008-06-20 03:14 - 00043544 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2013-07-11 19:04 - 2008-06-20 03:14 - 00037384 _____ (Microsoft Corporation) C:\Windows\system32\infocardcpl.cpl
2013-07-11 19:04 - 2008-06-20 03:14 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2013-07-11 19:02 - 2013-07-11 19:07 - 00196608 _____ C:\Windows\SPInstall.etl
2013-07-11 18:59 - 2013-07-11 18:59 - 00000000 ____D C:\Windows\system32\EventProviders
2013-07-11 18:57 - 2008-07-27 20:03 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2013-07-11 18:57 - 2008-07-27 20:03 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2013-07-11 18:57 - 2008-07-27 20:03 - 00096760 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2013-07-11 18:57 - 2008-07-27 20:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2013-07-11 18:57 - 2008-07-27 20:03 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2013-07-11 18:54 - 2013-07-11 18:59 - 365230920 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\Windows6.0-KB948465-X86.exe
2013-07-11 18:53 - 2013-07-11 19:01 - 455611504 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\Windows6.0-KB936330-X86-wave0.exe
2013-07-11 18:51 - 2013-07-11 18:51 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86(2).exe
2013-07-11 18:49 - 2013-07-11 18:50 - 70614552 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio(1).exe
2013-07-11 18:49 - 2013-07-11 18:49 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\RealNetworks
2013-07-11 18:45 - 2013-07-11 18:45 - 00000000 ____D C:\ProgramData\RealNetworks
2013-07-11 18:45 - 2013-07-11 18:45 - 00000000 ____D C:\Program Files\RealNetworks
2013-07-11 18:44 - 2013-07-11 23:38 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Real
2013-07-11 18:44 - 2013-07-11 23:24 - 00000000 ____D C:\Program Files\Real
2013-07-11 18:43 - 2013-07-11 23:26 - 00000000 ____D C:\ProgramData\Real
2013-07-11 18:37 - 2013-07-11 18:37 - 00774320 _____ (RealNetworks, Inc.) C:\Users\Christian Rietz\Downloads\RealPlayer_de.exe
2013-07-11 18:36 - 2011-04-12 16:53 - 00890368 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-07-11 18:36 - 2011-03-03 16:56 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Apphlpdm.dll
2013-07-11 18:36 - 2011-03-03 15:01 - 04240384 _____ (Microsoft) C:\Windows\system32\GameUXLegacyGDFs.dll
2013-07-11 18:36 - 2009-10-23 19:42 - 00714240 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-07-11 18:36 - 2009-09-10 17:21 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2013-07-11 18:36 - 2008-10-22 05:57 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2013-07-11 18:36 - 2008-09-18 06:56 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2013-07-11 18:36 - 2008-09-18 06:56 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2013-07-11 18:36 - 2008-08-28 05:40 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-07-11 18:36 - 2008-08-28 05:40 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-07-11 18:36 - 2008-08-28 05:40 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-07-11 18:35 - 2008-10-21 07:25 - 01645568 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2013-07-11 18:28 - 2013-07-11 18:28 - 24758792 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP1_x86.exe
2013-07-11 18:26 - 2013-07-11 18:27 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86(1).exe
2013-07-11 18:25 - 2013-07-11 18:26 - 70614552 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio.exe
2013-07-11 18:24 - 2013-07-11 18:25 - 00000000 ____D C:\Users\Christian Rietz\Documents\Programme
2013-07-11 18:18 - 2013-07-11 18:19 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86.exe
2013-07-11 18:18 - 2013-07-11 18:19 - 00002048 _____ C:\Windows\IE9_main.log
2013-07-11 18:14 - 2013-07-11 22:52 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-11 18:14 - 2013-07-11 18:15 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Macromedia
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\ProgramData\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-11 18:09 - 2013-07-16 20:27 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-11 18:09 - 2013-07-16 20:27 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-11 17:54 - 2013-07-16 00:17 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Adobe
2013-07-11 17:54 - 2013-07-11 18:08 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Google
2013-07-11 16:08 - 2010-01-15 02:04 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2013-07-11 16:08 - 2009-12-23 14:43 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-07-11 15:37 - 2013-05-02 02:06 - 00238872 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-07-11 15:31 - 2010-02-12 12:48 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-07-11 15:29 - 2010-09-10 20:18 - 10626560 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-07-11 15:28 - 2011-02-16 17:29 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-07-11 15:28 - 2011-02-16 15:24 - 00292864 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-07-11 15:28 - 2010-12-28 16:57 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2013-07-11 15:28 - 2010-09-10 18:37 - 08147456 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-07-11 15:28 - 2010-06-16 17:12 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-07-11 15:28 - 2010-04-16 18:10 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-07-11 15:28 - 2010-02-21 01:39 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2013-07-11 15:28 - 2010-02-21 01:37 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2013-07-11 15:28 - 2010-02-20 23:18 - 00411136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2013-07-11 15:28 - 2009-08-14 18:29 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2013-07-11 15:28 - 2009-08-14 16:16 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\NETSTAT.EXE
2013-07-11 15:28 - 2009-08-14 16:16 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\ARP.EXE
2013-07-11 15:28 - 2009-08-14 16:16 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\TCPSVCS.EXE
2013-07-11 15:28 - 2009-06-15 17:20 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-07-11 15:27 - 2013-07-11 15:27 - 00283636 _____ C:\Windows\msxml4-KB973688-deu.LOG
2013-07-11 15:27 - 2013-07-11 15:27 - 00280240 _____ C:\Windows\msxml4-KB954430-deu.LOG
2013-07-11 15:27 - 2011-02-22 14:52 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-07-11 15:27 - 2011-02-22 14:52 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-07-11 15:27 - 2011-02-22 14:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-07-11 15:27 - 2011-02-22 14:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-07-11 15:27 - 2009-08-14 18:29 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-07-11 15:27 - 2009-08-14 16:16 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\ROUTE.EXE
2013-07-11 15:27 - 2009-08-14 16:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\MRINFO.EXE
2013-07-11 15:27 - 2009-08-14 16:16 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2013-07-11 15:27 - 2009-08-14 16:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\HOSTNAME.EXE
2013-07-11 15:27 - 2009-07-11 21:32 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2013-07-11 15:27 - 2009-07-11 21:29 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\L2SecHC.dll
2013-07-11 15:27 - 2009-07-11 19:18 - 02501921 _____ C:\Windows\system32\wlan.tmf
2013-07-11 15:26 - 2011-04-14 16:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2013-07-11 15:26 - 2011-03-10 18:12 - 01161728 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-07-11 15:26 - 2011-03-10 18:12 - 01136640 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-07-11 15:26 - 2010-10-15 16:08 - 03600272 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-07-11 15:26 - 2010-10-15 16:08 - 03548048 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-07-11 15:26 - 2010-10-15 15:48 - 01205080 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-07-11 15:26 - 2009-09-10 19:30 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2013-07-11 15:26 - 2009-07-11 21:32 - 00513024 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2013-07-11 15:26 - 2009-07-11 21:32 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2013-07-11 15:25 - 2011-06-02 14:59 - 02042368 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-11 15:25 - 2011-04-21 15:16 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-07-11 15:25 - 2011-03-02 16:49 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-07-11 15:25 - 2011-03-02 16:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-07-11 15:25 - 2011-02-18 15:31 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-07-11 15:25 - 2010-08-26 18:07 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2013-07-11 15:25 - 2010-08-17 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-07-11 15:25 - 2010-06-28 18:15 - 01315840 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2013-07-11 15:25 - 2010-05-27 21:16 - 00081920 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2013-07-11 15:25 - 2010-04-05 18:07 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2013-07-11 15:25 - 2009-07-17 16:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\atl.dll
2013-07-11 15:25 - 2009-06-10 14:12 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2013-07-11 15:25 - 2009-05-04 12:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-07-11 15:25 - 2008-12-06 06:42 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2013-07-11 15:25 - 2008-10-21 07:25 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-07-11 15:25 - 2008-06-06 05:27 - 00562176 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2013-07-11 15:25 - 2008-06-06 05:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\xolehlp.dll
2013-07-11 15:24 - 2013-07-16 20:27 - 00096800 _____ C:\Users\CHRIST~1\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-11 15:24 - 2013-07-11 23:51 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Google
2013-07-11 15:24 - 2013-07-11 15:24 - 00000953 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-07-11 15:24 - 2013-07-11 15:24 - 00000000 ____D C:\Users\Christian Rietz\Documents\Eigene Google Gadgets
2013-07-11 15:24 - 2013-07-11 15:24 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\BullGuard
2013-07-11 15:24 - 2011-04-29 14:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-07-11 15:24 - 2011-04-29 14:49 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-07-11 15:24 - 2011-02-16 17:35 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-11 15:24 - 2011-02-16 17:32 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-11 15:24 - 2010-12-20 17:39 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-07-11 15:24 - 2010-12-14 17:49 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2013-07-11 15:24 - 2010-08-31 17:41 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2013-07-11 15:24 - 2010-08-31 17:41 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2013-07-11 15:24 - 2010-08-20 17:21 - 00866816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2013-07-11 15:24 - 2010-06-18 18:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2013-07-11 15:24 - 2010-05-04 20:39 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2013-07-11 15:24 - 2010-04-05 18:08 - 00317952 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2013-07-11 15:24 - 2009-07-10 14:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2013-07-11 15:24 - 2009-06-15 20:20 - 00439896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-07-11 15:24 - 2009-06-15 17:24 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2013-07-11 15:24 - 2009-06-15 17:24 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-07-11 15:24 - 2009-06-15 17:23 - 01256448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-07-11 15:24 - 2009-06-15 17:21 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-07-11 15:24 - 2009-06-15 14:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-07-11 15:24 - 2009-04-23 14:42 - 00636928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-07-11 15:24 - 2009-03-03 06:39 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2013-07-11 15:24 - 2008-10-29 08:29 - 02927104 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-07-11 15:23 - 2013-07-16 20:26 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Home Cinema
2013-07-11 15:23 - 2013-07-15 21:22 - 00000000 ___RD C:\Users\Christian Rietz\Desktop
2013-07-11 15:23 - 2013-07-15 21:22 - 00000000 ___RD C:\Users\Christian Rietz\Desktop
2013-07-11 15:23 - 2013-07-15 00:36 - 00000000 ____D C:\Users\Christian Rietz
2013-07-11 15:23 - 2013-07-11 23:14 - 00000948 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2013-07-11 15:23 - 2013-07-11 15:24 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\VirtualStore
2013-07-11 15:23 - 2013-07-11 15:23 - 00000919 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2013-07-11 15:23 - 2013-07-11 15:23 - 00000020 ___SH C:\Users\Christian Rietz\ntuser.ini
2013-07-11 15:23 - 2013-07-11 15:23 - 00000020 ___SH C:\Users\Christian Rietz\ntuser.ini
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Startmenü
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Startmenü
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Netzwerkumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Netzwerkumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Druckumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Druckumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Documents\Eigene Musik
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Documents\Eigene Bilder
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\CHRIST~1\AppData\Local\Verlauf
2013-07-11 15:23 - 2011-05-02 17:58 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-07-11 15:23 - 2011-01-21 17:46 - 11582464 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-07-11 15:23 - 2011-01-21 17:46 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2013-07-11 15:23 - 2010-12-29 19:41 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-07-11 15:23 - 2010-12-29 19:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-07-11 15:23 - 2010-12-29 19:41 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\sbeio.dll
2013-07-11 15:23 - 2010-12-29 19:39 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-07-11 15:23 - 2010-11-06 13:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2013-07-11 15:23 - 2010-11-06 13:10 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2013-07-11 15:23 - 2010-11-06 13:10 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2013-07-11 15:23 - 2010-11-06 13:09 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2013-07-11 15:23 - 2010-11-05 02:53 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2013-07-11 15:23 - 2010-10-28 14:56 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-07-11 15:23 - 2010-10-18 16:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-07-11 15:23 - 2010-06-11 17:30 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-07-11 15:23 - 2010-04-16 18:10 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-07-11 15:23 - 2010-02-18 16:11 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-07-11 15:23 - 2010-02-18 13:52 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2013-07-11 15:23 - 2010-01-21 17:59 - 00062464 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codeca.acm
2013-07-11 15:23 - 2009-03-17 05:38 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\amxread.dll
2013-07-11 15:23 - 2009-03-17 05:38 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\apilogen.dll
2013-07-11 15:23 - 2009-03-03 06:39 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2013-07-11 15:23 - 2009-03-03 06:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-07-11 15:23 - 2009-03-03 06:37 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2013-07-11 15:23 - 2009-03-03 06:37 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2013-07-11 15:23 - 2009-03-03 06:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2013-07-11 15:23 - 2009-03-03 05:04 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-07-11 15:23 - 2009-03-03 04:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\iashost.exe
2013-07-11 15:23 - 2008-08-12 05:39 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-07-11 15:23 - 2008-01-21 04:42 - 00000000 ___RD C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-07-11 15:23 - 2008-01-21 04:42 - 00000000 ___RD C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Programme
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-07-11 15:22 - 2009-07-14 15:00 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2013-07-11 15:22 - 2009-07-14 14:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2013-07-11 15:22 - 2009-07-14 14:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2013-07-11 15:22 - 2009-07-14 14:58 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2013-07-11 15:21 - 2011-04-20 16:47 - 00375808 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-07-11 15:21 - 2011-04-20 16:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-07-11 15:21 - 2010-12-17 18:43 - 02067456 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-07-11 15:21 - 2010-12-17 17:06 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-07-11 15:21 - 2010-08-31 17:40 - 00531968 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-07-11 15:21 - 2010-06-16 17:59 - 00898952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-07-11 15:21 - 2009-12-28 14:35 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2013-07-11 15:21 - 2009-12-28 14:32 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2013-07-11 15:21 - 2009-12-28 14:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2013-07-11 15:21 - 2009-12-28 14:32 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2013-07-11 15:21 - 2009-12-28 14:32 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2013-07-11 15:21 - 2009-12-28 14:31 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2013-07-11 15:21 - 2009-12-28 14:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2013-07-11 15:21 - 2009-12-28 14:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2013-07-11 15:21 - 2009-12-28 14:28 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\avicap32.dll
2013-07-11 15:21 - 2009-10-07 14:41 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2013-07-11 15:21 - 2009-10-07 14:41 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2013-07-11 15:21 - 2009-09-04 14:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2013-07-11 15:21 - 2009-08-10 15:05 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2013-07-11 15:21 - 2009-07-14 10:30 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.tlb
2013-07-11 15:21 - 2009-07-14 10:30 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\amcompat.tlb
2013-07-11 15:21 - 2009-04-23 14:43 - 00784896 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-07-11 15:21 - 2008-09-10 05:40 - 01334272 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-07-11 15:21 - 2008-06-23 03:59 - 02868736 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-07-11 15:21 - 2008-06-23 03:59 - 02386944 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2013-07-11 15:21 - 2008-06-23 03:59 - 00996352 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2013-07-11 15:21 - 2008-06-23 03:58 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2013-07-11 15:20 - 2013-07-16 20:29 - 01436823 _____ C:\Windows\WindowsUpdate.log
2013-07-11 15:20 - 2011-04-29 16:54 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-07-11 15:20 - 2009-04-02 14:37 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2013-06-26 08:53 - 2013-06-26 08:53 - 00044216 _____ C:\Users\CHRIST~1\AppData\Local\ext_piccshare_uninst.exe
==================== One Month Modified Files and Folders =======
2013-07-16 21:05 - 2013-07-16 21:05 - 00000000 ____D C:\FRST
2013-07-16 21:05 - 2008-10-25 05:29 - 00000438 ____H C:\Windows\Tasks\User_Feed_Synchronization-{103B65BD-4798-4CA0-9487-EB211B637804}.job
2013-07-16 21:04 - 2013-07-16 21:04 - 01218614 _____ (Farbar) C:\Users\Christian Rietz\Downloads\FRST.exe
2013-07-16 21:04 - 2008-10-25 05:12 - 00043509 _____ C:\ProgramData\nvModes.dat
2013-07-16 21:04 - 2008-10-25 05:12 - 00043509 _____ C:\ProgramData\nvModes.001
2013-07-16 21:03 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-16 21:03 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-16 20:52 - 2013-07-11 22:03 - 00001915 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-07-16 20:52 - 2013-07-11 22:03 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-07-16 20:52 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Public\Desktop
2013-07-16 20:33 - 2006-11-02 12:33 - 01418794 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-16 20:29 - 2013-07-11 15:20 - 01436823 _____ C:\Windows\WindowsUpdate.log
2013-07-16 20:27 - 2013-07-11 18:09 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-16 20:27 - 2013-07-11 18:09 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-16 20:27 - 2013-07-11 15:24 - 00096800 _____ C:\Users\CHRIST~1\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-16 20:26 - 2013-07-11 15:23 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Home Cinema
2013-07-16 20:26 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-16 20:00 - 2006-11-02 14:47 - 00357528 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-16 19:59 - 2008-01-21 04:47 - 00263266 _____ C:\Windows\PFRO.log
2013-07-16 00:38 - 2006-11-02 15:01 - 00024666 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-16 00:17 - 2013-07-11 17:54 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Adobe
2013-07-16 00:17 - 2008-10-20 06:03 - 00000000 ____D C:\ProgramData\Adobe
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\Public\CyberLink
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\CyberLink
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\CyberLink
2013-07-15 21:59 - 2008-10-22 07:18 - 00000000 ____D C:\ProgramData\CyberLink
2013-07-15 21:59 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-07-15 21:22 - 2013-07-15 21:22 - 00002687 _____ C:\Users\Christian Rietz\Desktop\Microsoft Office Excel 2007.lnk
2013-07-15 21:22 - 2013-07-15 21:22 - 00002681 _____ C:\Users\Christian Rietz\Desktop\Microsoft Office Word 2007.lnk
2013-07-15 21:22 - 2013-07-11 15:23 - 00000000 ___RD C:\Users\Christian Rietz\Desktop
2013-07-15 21:22 - 2013-07-11 15:23 - 00000000 ___RD C:\Users\Christian Rietz\Desktop
2013-07-15 21:21 - 2008-10-20 07:42 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-07-15 21:19 - 2013-07-15 21:19 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2013-07-15 21:18 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-07-15 21:14 - 2008-10-20 07:40 - 00000000 ____D C:\Program Files\Microsoft Office
2013-07-15 21:14 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Common Files\System
2013-07-15 21:14 - 2006-11-02 12:23 - 00000219 _____ C:\Windows\win.ini
2013-07-15 21:13 - 2013-07-15 21:13 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Microsoft Help
2013-07-15 21:01 - 2013-07-11 22:02 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Adobe
2013-07-15 00:55 - 2013-07-15 00:49 - 00000000 ____D C:\Program Files\MAGIX
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SSync
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SCheck
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Intermediate
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\DataMgr
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\ext_piccshare
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\Documents\MAGIX
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\PiccShare
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\MAGIX
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Common
2013-07-15 00:49 - 2013-07-15 00:48 - 00000000 ____D C:\ProgramData\MAGIX
2013-07-15 00:43 - 2013-07-15 00:40 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Apple Computer
2013-07-15 00:40 - 2013-07-15 00:40 - 00001668 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-07-15 00:40 - 2013-07-15 00:40 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Apple Computer
2013-07-15 00:40 - 2013-07-15 00:39 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-07-15 00:40 - 2013-07-15 00:39 - 00000000 ____D C:\Program Files\iTunes
2013-07-15 00:39 - 2013-07-15 00:39 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-15 00:39 - 2013-07-15 00:39 - 00000000 ____D C:\Program Files\iPod
2013-07-15 00:39 - 2013-07-15 00:32 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-07-15 00:37 - 2013-07-15 00:37 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Apple
2013-07-15 00:37 - 2013-07-15 00:37 - 00000000 ____D C:\Program Files\Apple Software Update
2013-07-15 00:36 - 2013-07-15 00:32 - 00000000 ____D C:\ProgramData\Apple
2013-07-15 00:36 - 2013-07-11 15:23 - 00000000 ____D C:\Users\Christian Rietz
2013-07-15 00:32 - 2013-07-15 00:32 - 00000000 ____D C:\Program Files\Bonjour
2013-07-15 00:31 - 2013-07-15 00:26 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup(2).exe
2013-07-15 00:30 - 2013-07-15 00:30 - 00393072 _____ (Softonic ) C:\Users\Christian Rietz\Downloads\SoftonicDownloader_fuer_samplitude-music-studio-mx.exe
2013-07-14 20:23 - 2013-07-11 23:48 - 00001975 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-07-14 20:00 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-07-12 01:22 - 2013-07-12 01:22 - 00000943 _____ C:\Users\Christian Rietz\Desktop\Photoshop - Verknüpfung.lnk
2013-07-12 01:18 - 2013-07-12 01:18 - 00000000 ____D C:\ProgramData\Macrovision
2013-07-12 01:18 - 2013-07-12 01:18 - 00000000 ____D C:\Program Files\Common Files\Adobe Systems Shared
2013-07-12 01:17 - 2008-10-20 06:03 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-07-12 01:12 - 2008-10-20 06:03 - 00000000 ____D C:\Program Files\Adobe
2013-07-12 01:12 - 2008-10-20 05:37 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-07-12 01:10 - 2013-07-12 01:10 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\ACD Systems
2013-07-12 01:10 - 2013-07-12 01:10 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00002080 _____ C:\Users\Public\Desktop\ACDSee 9 Foto-Manager.lnk
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\ProgramData\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\Program Files\Common Files\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\Program Files\ACD Systems
2013-07-12 01:08 - 2006-11-02 12:23 - 00000252 _____ C:\Windows\system.ini
2013-07-12 01:06 - 2013-07-12 01:06 - 00010368 _____ (Padus, Inc.) C:\Windows\system32\Drivers\pfc.sys
2013-07-12 01:05 - 2013-07-12 01:00 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup(1).exe
2013-07-12 01:04 - 2013-07-12 01:04 - 00000000 ____D C:\Windows\Downloaded Installations
2013-07-12 01:02 - 2013-07-12 01:02 - 00000000 ____D C:\Program Files\7-Zip
2013-07-12 00:58 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-07-12 00:51 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-07-12 00:26 - 2013-07-12 00:21 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup.exe
2013-07-11 23:51 - 2013-07-11 15:24 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Google
2013-07-11 23:48 - 2008-10-26 05:06 - 00000000 ____D C:\Program Files\Google
2013-07-11 23:47 - 2013-07-11 22:03 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-11 23:47 - 2013-07-11 22:03 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-11 23:38 - 2013-07-11 18:44 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Real
2013-07-11 23:26 - 2013-07-11 18:43 - 00000000 ____D C:\ProgramData\Real
2013-07-11 23:25 - 2013-07-11 23:25 - 00000937 _____ C:\Users\Public\Desktop\RealPlayer.lnk
2013-07-11 23:24 - 2013-07-11 23:24 - 00201872 _____ (RealNetworks, Inc.) C:\Windows\system32\rmoc3260.dll
2013-07-11 23:24 - 2013-07-11 23:24 - 00000000 ____D C:\Program Files\Common Files\xing shared
2013-07-11 23:24 - 2013-07-11 18:44 - 00000000 ____D C:\Program Files\Real
2013-07-11 23:23 - 2013-07-11 23:23 - 00272896 _____ (Progressive Networks) C:\Windows\system32\pncrt.dll
2013-07-11 23:23 - 2013-07-11 23:23 - 00006656 _____ (RealNetworks, Inc.) C:\Windows\system32\pndx5016.dll
2013-07-11 23:23 - 2013-07-11 23:23 - 00005632 _____ (RealNetworks, Inc.) C:\Windows\system32\pndx5032.dll
2013-07-11 23:23 - 2003-03-18 20:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll
2013-07-11 23:21 - 2013-07-11 23:21 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\vlc
2013-07-11 23:19 - 2013-07-11 23:19 - 00000863 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-07-11 23:18 - 2013-07-11 23:18 - 00000000 ____D C:\Program Files\VideoLAN
2013-07-11 23:18 - 2013-07-11 23:16 - 22937227 _____ C:\Users\Christian Rietz\Downloads\vlc-2.0.7-win32.exe
2013-07-11 23:16 - 2013-07-11 23:16 - 00774320 _____ (RealNetworks, Inc.) C:\Users\Christian Rietz\Downloads\RealPlayer_de(1).exe
2013-07-11 23:14 - 2013-07-11 23:14 - 00000918 _____ C:\Users\Christian Rietz\Desktop\Windows Media Player.lnk
2013-07-11 23:14 - 2013-07-11 15:23 - 00000948 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2013-07-11 22:59 - 2013-07-11 22:54 - 00000000 ____D C:\Program Files\TuneUp Utilities 2013
2013-07-11 22:56 - 2013-07-11 22:56 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\DVDVideoSoftIEHelpers
2013-07-11 22:55 - 2013-07-11 22:55 - 00001873 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-07-11 22:55 - 2013-07-11 22:55 - 00001869 _____ C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
2013-07-11 22:55 - 2013-07-11 22:55 - 00001036 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-07-11 22:55 - 2013-07-11 22:51 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\DVDVideoSoft
2013-07-11 22:55 - 2013-07-11 22:51 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-07-11 22:55 - 2013-07-11 22:51 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-07-11 22:54 - 2013-07-11 22:54 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\TuneUp Software
2013-07-11 22:54 - 2013-07-11 22:54 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-07-11 22:53 - 2013-07-11 22:53 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-07-11 22:52 - 2013-07-11 18:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-11 22:51 - 2013-07-11 22:51 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\OpenCandy
2013-07-11 22:51 - 2013-07-11 22:51 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Babylon
2013-07-11 22:51 - 2013-07-11 22:51 - 00000000 ____D C:\ProgramData\Babylon
2013-07-11 22:49 - 2013-07-11 22:45 - 70505984 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio(2).exe
2013-07-11 22:05 - 2013-07-11 22:05 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Macromedia
2013-07-11 22:03 - 2013-07-11 22:03 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-07-11 22:03 - 2013-07-11 22:03 - 00000000 ____D C:\ProgramData\McAfee
2013-07-11 21:53 - 2006-11-02 14:52 - 00131486 _____ C:\Windows\setupact.log
2013-07-11 19:07 - 2013-07-11 19:02 - 00196608 _____ C:\Windows\SPInstall.etl
2013-07-11 19:07 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-07-11 19:01 - 2013-07-11 18:53 - 455611504 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\Windows6.0-KB936330-X86-wave0.exe
2013-07-11 18:59 - 2013-07-11 18:59 - 00000000 ____D C:\Windows\system32\EventProviders
2013-07-11 18:59 - 2013-07-11 18:54 - 365230920 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\Windows6.0-KB948465-X86.exe
2013-07-11 18:51 - 2013-07-11 18:51 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86(2).exe
2013-07-11 18:50 - 2013-07-11 18:49 - 70614552 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio(1).exe
2013-07-11 18:49 - 2013-07-11 18:49 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\RealNetworks
2013-07-11 18:46 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-07-11 18:45 - 2013-07-11 18:45 - 00000000 ____D C:\ProgramData\RealNetworks
2013-07-11 18:45 - 2013-07-11 18:45 - 00000000 ____D C:\Program Files\RealNetworks
2013-07-11 18:37 - 2013-07-11 18:37 - 00774320 _____ (RealNetworks, Inc.) C:\Users\Christian Rietz\Downloads\RealPlayer_de.exe
2013-07-11 18:28 - 2013-07-11 18:28 - 24758792 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP1_x86.exe
2013-07-11 18:27 - 2013-07-11 18:26 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86(1).exe
2013-07-11 18:26 - 2013-07-11 18:25 - 70614552 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio.exe
2013-07-11 18:25 - 2013-07-11 18:24 - 00000000 ____D C:\Users\Christian Rietz\Documents\Programme
2013-07-11 18:19 - 2013-07-11 18:18 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86.exe
2013-07-11 18:19 - 2013-07-11 18:18 - 00002048 _____ C:\Windows\IE9_main.log
2013-07-11 18:15 - 2013-07-11 18:14 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Macromedia
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\ProgramData\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-11 18:08 - 2013-07-11 17:54 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Google
2013-07-11 17:54 - 2008-10-26 05:06 - 00000000 ____D C:\ProgramData\Google
2013-07-11 17:54 - 2008-10-20 06:24 - 00000000 ____D C:\ProgramData\BullGuard
2013-07-11 17:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Movie Maker
2013-07-11 15:27 - 2013-07-11 15:27 - 00283636 _____ C:\Windows\msxml4-KB973688-deu.LOG
2013-07-11 15:27 - 2013-07-11 15:27 - 00280240 _____ C:\Windows\msxml4-KB954430-deu.LOG
2013-07-11 15:25 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\restore
2013-07-11 15:24 - 2013-07-11 15:24 - 00000953 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-07-11 15:24 - 2013-07-11 15:24 - 00000000 ____D C:\Users\Christian Rietz\Documents\Eigene Google Gadgets
2013-07-11 15:24 - 2013-07-11 15:24 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\BullGuard
2013-07-11 15:24 - 2013-07-11 15:23 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\VirtualStore
2013-07-11 15:24 - 2008-10-22 05:40 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-11 15:23 - 2013-07-11 15:23 - 00000919 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2013-07-11 15:23 - 2013-07-11 15:23 - 00000020 ___SH C:\Users\Christian Rietz\ntuser.ini
2013-07-11 15:23 - 2013-07-11 15:23 - 00000020 ___SH C:\Users\Christian Rietz\ntuser.ini
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Startmenü
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Startmenü
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Netzwerkumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Netzwerkumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Druckumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Druckumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Documents\Eigene Musik
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Documents\Eigene Bilder
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\CHRIST~1\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Programme
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-07-11 15:22 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Default
2013-07-11 15:22 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Windows NT
2013-07-11 15:14 - 2008-10-20 14:37 - 00000000 ____D C:\Windows\Panther
2013-07-11 15:14 - 2008-10-20 04:39 - 00012840 _____ C:\Windows\TSSysprep.log
2013-07-11 15:12 - 2006-11-02 14:48 - 00008257 _____ C:\Windows\DtcInstall.log
2013-06-26 08:53 - 2013-06-26 08:53 - 00044216 _____ C:\Users\CHRIST~1\AppData\Local\ext_piccshare_uninst.exe
Files to move or delete:
====================
C:\ProgramData\nvModes.dat
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-16 20:32
==================== End Of Log ============================
|
|
16.07.2013, 20:11
| #3 |
| | Werbe-Pop-ups (World of Tanks) Und hier die Addition. Kann mir bitte jemand helfen? :-(FRST Additions Logfile:
__________________Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 16-07-2013 03
Ran by Christian Rietz at 2013-07-16 21:07:07
Running from C:\Users\Christian Rietz\Downloads
Boot Mode: Normal
==========================================================
2007 Microsoft Office Suite Service Pack 1 (SP1)
7-Zip 4.42
ACDSee 9 Foto-Manager (Version: 9.0.55)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (Version: 11.8.800.94)
Adobe Photoshop CS (Version: CS)
Adobe Reader 9 - Deutsch (Version: 9.0.0)
Adobe Shockwave Player 11 (Version: 11)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
BullGuard 8.0 (Version: 8.0)
Compatibility Pack für 2007 Office System (Version: 12.0.6215.1000)
Corel MediaOne (Version: 2.00.0000)
CorelDRAW Essential Edition 3
CorelDRAW Essential Edition 3 (Version: 3.0)
CyberLink MediaShow (Version: 4.1.2019)
CyberLink PhotoNow (Version: 1.1.5203)
CyberLink PowerDirector (Version: 7.0.2209a)
CyberLink PowerDVD (Version: 7.0.3118.0)
CyberLink PowerProducer (Version: 5.0815)
CyberLink YouCam (Version: 2.0.2109)
DE (Version: 3.0)
Dolby Control Center (Version: 1.1.0601)
Free Studio version 2013 (Version: 6.1.6.711)
Google Chrome (Version: 28.0.1500.72)
Google Desktop (Version: -)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4209.2358)
Google Update Helper (Version: 1.3.21.153)
iTunes (Version: 11.0.4.4)
Java(TM) 6 Update 7 (Version: 1.6.0.70)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6)
MakeDisc (Version: 3.0.2601)
McAfee Security Scan Plus (Version: 3.0.318.3)
Microsoft Office Access MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6215.1000)
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Home and Student 2007 (Version: 12.0.6215.1000)
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6215.1000)
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6215.1000)
Microsoft Office PowerPoint Viewer 2007 (German) (Version: 12.0.6215.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6213.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6213.1000)
Microsoft Office Proof (German) 2007 (Version: 12.0.6213.1000)
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6213.1000)
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6215.1000)
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6215.1000)
Microsoft Silverlight (Version: 2.0.31005.0)
Microsoft SQL Server 2005 Compact Edition [DEU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 22.0 (x86 de) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 8 Essentials (Version: 8.3.124)
NVIDIA Drivers
PiccShare (HKCU Version: 2.0)
RealDownloader (Version: 1.3.2)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.2)
Realtek High Definition Audio Driver (Version: 6.0.1.5704)
Realtek USB 2.0 Card Reader (Version: 3.0.1.3)
RealUpgrade 1.1 (Version: 1.1.0)
Synaptics Pointing Device Driver (Version: 10.2.2.0)
TuneUp Utilities 2013 (Version: 13.0.3020.2)
TuneUp Utilities Language Pack (de-DE) (Version: 13.0.3020.2)
Update for Office 2007 (KB946691)
Update Manager (Version: 4.60)
VCRedistSetup (Version: 1.0.0)
VLC media player 2.0.7 (Version: 2.0.7)
Windows Live Fotogalerie (Version: 12.0.1347.0718)
Windows Live installer (Version: 12.0.1471.1025)
Windows Live Mail (Version: 12.0.1606.1023)
Windows Live Messenger (Version: 8.5.1302.1018)
Windows Live Sign-in Assistant (Version: 5.000.742.2)
Windows Live Writer (Version: 12.0.1370.0325)
X10 Hardware(TM)
==================== Restore Points =========================
11-07-2013 13:25:29 Windows Update
11-07-2013 16:36:58 Windows Update
11-07-2013 16:57:15 Windows Update
11-07-2013 23:05:11 ACDSee 9 Foto-Manager wird installiert
11-07-2013 23:13:03 Installiert Adobe Photoshop
14-07-2013 22:33:22 Gerätetreiber-Paketinstallation: Apple, Inc. USB-Controller
14-07-2013 22:35:20 Gerätetreiber-Paketinstallation: Apple Netzwerkadapter
14-07-2013 22:37:37 Installed iTunes
15-07-2013 19:12:13 Installed Microsoft Office Enterprise 2007
==================== Hosts content: ==========================
2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {5E81F2B1-B1A7-4096-B73E-3D7C90C26AE4} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation)
Task: {635C392F-D422-40B8-99A5-4F0DD50828BD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-11] (Google Inc.)
Task: {6E6E1AA7-9F23-4C96-B86F-9BB683CF6A63} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-209139463-1928718786-3223491114-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {86B1F264-AF6C-4E5A-96EE-D1F13776C0B6} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-209139463-1928718786-3223491114-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {8802CB28-C594-471B-AE95-B8DE5AC74011} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-12] (Microsoft Corporation)
Task: {932074F6-FEAE-4965-AE0E-62D04A8E95B4} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-209139463-1928718786-3223491114-1000 => C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe [2013-04-16] (RealNetworks, Inc.)
Task: {9A46F673-D69A-4152-8F46-569B9F87B541} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\TuneUp Utilities 2013\OneClick.exe [2013-01-28] (TuneUp Software)
Task: {9D5395AF-E56C-453D-8B9C-2AE9F7F14859} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-209139463-1928718786-3223491114-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {A61555D3-7840-45C1-A5A9-0D49851DE37A} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\OptinNotification => C:\Windows\System32\wsqmcons.exe [2008-01-21] (Microsoft Corporation)
Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => C:\Windows\system32\rundll32.exe [2006-11-02] (Microsoft Corporation)
Task: {AA79E7ED-785A-4583-B83E-31D5283915B1} - System32\Tasks\User_Feed_Synchronization-{103B65BD-4798-4CA0-9487-EB211B637804} => C:\Windows\system32\msfeedssync.exe [2008-01-21] (Microsoft Corporation)
Task: {AF6D1388-E68D-46B9-864D-528B89A92064} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-209139463-1928718786-3223491114-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {C5C8E683-4485-4155-982B-47742639C45B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-11] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{103B65BD-4798-4CA0-9487-EB211B637804}.job => C:\Windows\system32\msfeedssync.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/16/2013 08:52:25 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (07/16/2013 08:52:25 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (07/16/2013 08:52:15 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (07/16/2013 08:52:15 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (07/16/2013 08:51:48 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (07/16/2013 08:51:48 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (07/16/2013 08:51:48 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (07/16/2013 08:28:11 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/16/2013 08:27:15 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/16/2013 08:27:15 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (07/16/2013 08:28:12 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (07/16/2013 08:26:35 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos
Error: (07/16/2013 08:26:34 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 16.07.2013 um 20:18:59 unerwartet heruntergefahren.
Error: (07/16/2013 08:01:43 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (07/16/2013 08:00:11 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos
Error: (07/15/2013 08:56:40 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (07/15/2013 08:55:49 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos
Error: (07/14/2013 07:36:31 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (07/14/2013 07:35:44 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0x8000002a73\??\C:\Users\Christian Rietz\AppData\Local\Microsoft\Windows\UsrClass.dat
Error: (07/14/2013 07:35:31 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2013-07-16 21:06:59.129
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:59.046
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:58.960
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:58.870
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:36.406
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:36.330
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:36.234
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:36.158
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:35.995
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-16 21:06:35.919
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 65%
Total physical RAM: 2301.44 MB
Available physical RAM: 800.72 MB
Total Pagefile: 4827.89 MB
Available Pagefile: 3155.99 MB
Total Virtual: 2047.88 MB
Available Virtual: 1925.63 MB
==================== Drives ================================
Drive c: (BOOT) (Fixed) (Total:141.25 GB) (Free:102.45 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVER) (Fixed) (Total:15.81 GB) (Free:5 GB) FAT32
Drive g: (Volume) (Fixed) (Total:141.01 GB) (Free:127.42 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298 GB) (Disk ID: DAE4C35C)
Partition 1: (Active) - (Size=141 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=141 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=16 GB) - (Type=0C)
==================== End Of Log ============================
|
|
18.07.2013, 22:20
| #4 |
| /// TB-Ausbilder   | Werbe-Pop-ups (World of Tanks) Hallo, mach bitte Folgendes: Schritt 1 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 2 Starte noch einmal FRST.
Bitte poste in deiner nächsten Antwort:
__________________ cheers, Leo |
|
20.07.2013, 12:28
| #5 |
| | Werbe-Pop-ups (World of Tanks) LOG Adwcleaner:AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v2.306 - Datei am 20/07/2013 um 13:19:43 erstellt
# Aktualisiert am 19/07/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 1 (32 bits)
# Benutzer : Christian Rietz - CHRISTIAN-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Christian Rietz\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
Gestoppt & Gelöscht : APNMCP
***** [Dateien / Ordner] *****
Datei Gelöscht : C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\foxydeal.sqlite
Datei Gelöscht : C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\searchplugins\Babylon.xml
Datei Gelöscht : C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\searchplugins\delta.xml
Ordner Gelöscht : C:\Program Files\AskPartnerNetwork
Ordner Gelöscht : C:\ProgramData\APN
Ordner Gelöscht : C:\ProgramData\AskPartnerNetwork
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\Users\CHRIST~1\AppData\Local\Temp\APN
Ordner Gelöscht : C:\Users\Christian Rietz\AppData\Local\AskPartnerNetwork
Ordner Gelöscht : C:\Users\Christian Rietz\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Christian Rietz\AppData\Roaming\DataMgr
Ordner Gelöscht : C:\Users\Christian Rietz\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Christian Rietz\AppData\Roaming\OpenCandy
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\AskPartnerNetwork
Schlüssel Gelöscht : HKCU\Software\BabSolution
Schlüssel Gelöscht : HKCU\Software\DataMngr
Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKLM\SOFTWARE\5e2dbd9b03be545
Schlüssel Gelöscht : HKLM\Software\AskPartnerNetwork
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Schlüssel Gelöscht : HKLM\SOFTWARE\Software
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [DataMgr]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{acaa314b-eeba-48e4-ad47-84e31c44796c}]
***** [Internet Browser] *****
-\\ Internet Explorer v7.0.6001.18000
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.fbdownloader.com/?channel=sfde203fbdgy21 --> hxxp://www.google.com
Ersetzt : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - bProtectTabs] = hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=5450002220030F1A&affID=121563&tsp=4940 --> hxxp://www.google.com
-\\ Mozilla Firefox v22.0 (de)
Datei : C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\prefs.js
C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\user.js ... Gelöscht !
Gelöscht : user_pref("browser.search.defaultenginename", "Search the web");
Gelöscht : user_pref("browser.search.defaulturl", "hxxp://search.fbdownloader.com/search.php?channel=sfde203fbd[...]
Gelöscht : user_pref("browser.search.selectedEngine", "Search the web");
Gelöscht : user_pref("browser.startup.homepage", "hxxp://search.fbdownloader.com/?channel=sfde203fbdgy21");
Gelöscht : user_pref("extensions.delta.admin", false);
Gelöscht : user_pref("extensions.delta.aflt", "babsst");
Gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Gelöscht : user_pref("extensions.delta.dfltLng", "de");
Gelöscht : user_pref("extensions.delta.excTlbr", false);
Gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Gelöscht : user_pref("extensions.delta.id", "54504794000000000000002220030f1a");
Gelöscht : user_pref("extensions.delta.instlDay", "15897");
Gelöscht : user_pref("extensions.delta.instlRef", "sst");
Gelöscht : user_pref("extensions.delta.newTab", false);
Gelöscht : user_pref("extensions.delta.prdct", "delta");
Gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Gelöscht : user_pref("extensions.delta.rvrt", "false");
Gelöscht : user_pref("extensions.delta.smplGrp", "none");
Gelöscht : user_pref("extensions.delta.tlbrId", "base");
Gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Gelöscht : user_pref("extensions.delta.vrsn", "1.8.21.5");
Gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.21.522:51:57");
Gelöscht : user_pref("extensions.delta.vrsni", "1.8.21.5");
Gelöscht : user_pref("extensions.delta_i.babExt", "");
Gelöscht : user_pref("extensions.delta_i.babTrack", "affID=121563&tsp=4940");
Gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
-\\ Google Chrome v28.0.1500.72
Datei : C:\Users\Christian Rietz\AppData\Local\Google\Chrome\User Data\Default\Preferences
Gelöscht [l.221] : homepage = "hxxp://search.fbdownloader.com/?channel=sfde203fbdgy21",
Gelöscht [l.251] : keyword = "Search the web",
Gelöscht [l.254] : icon_url = "hxxp://search.fbdownloader.com/search.ico",
Gelöscht [l.255] : search_url = "hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q={searchTer[...]
*************************
AdwCleaner[S1].txt - [6364 octets] - [20/07/2013 13:19:43]
########## EOF - C:\AdwCleaner[S1].txt - [6424 octets] ##########
LOG von FRST: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-07-2013 03
Ran by Christian Rietz (administrator) on 20-07-2013 13:27:08
Running from C:\Users\Christian Rietz\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe
() C:\Windows\system32\PSIService.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(X10) C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Cyberlink Corp.) C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(ACD Systems, Ltd.) C:\Program Files\Common Files\ACD Systems\DE\DevDetect.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Google) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512 2008-01-04] (Synaptics, Inc.)
HKLM\...\Run: [UpdatePDRShortCut] - C:\Program Files\HomeCinema\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [RemoteControl] - C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe [71216 2007-02-09] (Cyberlink Corp.)
HKLM\...\Run: [LanguageShortcut] - C:\Program Files\HomeCinema\PowerDVD\Language\Language.exe [52256 2007-01-08] ()
HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-02-21] (CyberLink Corp.)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\HomeCinema\YouCam\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13560352 2008-09-29] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] - C:\Windows\system32\NvMcTray.dll [92704 2008-09-29] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - RtHDVCpl.exe [x]
HKLM\...\Run: [Google Desktop Search] - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [220160 2008-10-26] (Google)
HKLM\...\Run: [toolbar_eula_launcher] - C:\Program Files\GoogleEULA\EULALauncher.exe [16896 2007-02-09] ( )
HKLM\...\Run: [TkBellExe] - C:\program files\real\realplayer\Update\realsched.exe [295512 2013-07-11] (RealNetworks, Inc.)
HKLM\...\Run: [Device Detector] - DevDetect.exe -autorun [x]
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [345144 2013-07-16] (Avira Operations GmbH & Co. KG)
HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-07-11] (Google Inc.)
HKCU\...\Run: [SCheck] - C:\Users\Christian Rietz\AppData\Roaming\SCheck\SCheck.exe [36864 2013-04-10] ()
HKCU\...\Run: [SSync] - C:\Users\Christian Rietz\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10] ()
HKCU\...\Run: [Intermediate] - C:\Users\Christian Rietz\AppData\Roaming\Intermediate\Intermediate.exe [36864 2013-04-10] ()
Startup: C:\ProgramData\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Welcome to ALDI
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Welcome to ALDI
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: No Name - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 19 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\2.0.31005.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\searchplugins\search_the_web.xml
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}
FF Extension: DownloadHelper - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: om - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\om@offermosquito.com.xpi
FF Extension: toolbar_AVIRA-V7 - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi
FF Extension: No Name - C:\Users\Christian Rietz\AppData\Roaming\Mozilla\Firefox\Profiles\ltp2kpr9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "urls_to_restore_on_startup": [
CHR DefaultSearchURL: (Search the web) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR DefaultSuggestURL: (Search the web) - "suggest_url": null,
CHR Extension: (PiccShare) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\docfnddcclkgokdfpnmngpiliiachclb\2.0_0
CHR Extension: (OfferMosquito) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.4.1_0
========================== Services (Whitelisted) =================
S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [68096 2013-07-12] ()
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-07-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-07-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [589368 2013-07-16] (Avira Operations GmbH & Co. KG)
S3 GoogleDesktopManager; C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe [69120 2008-10-26] (Google)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-06-28] ()
S3 usnjsvc; C:\Program Files\Windows Live\Messenger\usnsvc.exe [98328 2007-10-18] (Microsoft Corporation)
S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)
R2 x10nets; C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe [20480 2001-11-12] (X10)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [84744 2013-07-16] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135136 2013-07-16] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-07-16] (Avira Operations GmbH & Co. KG)
S3 NxpCap; C:\Windows\System32\DRIVERS\NxpCap.sys [1332576 2008-09-25] (NXP Semiconductors Germany GmbH)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2013-07-12] (Padus, Inc.)
S3 PhilCap; C:\Windows\System32\DRIVERS\PhilCap.sys [908896 2007-07-31] (NXP Semiconductors Germany GmbH)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-07-16] (Avira GmbH)
R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [13976 2006-11-17] (X10 Wireless Technology, Inc.)
R3 XUIF; C:\Windows\System32\Drivers\x10ufx2.sys [27416 2006-11-30] (X10 Wireless Technology, Inc.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
U4 Msetapxe_n; No ImagePath
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-20 13:25 - 2013-07-20 13:25 - 01219758 _____ (Farbar) C:\Users\Christian Rietz\Downloads\FRST(1).exe
2013-07-20 13:19 - 2013-07-20 13:19 - 00006493 _____ C:\AdwCleaner[S1].txt
2013-07-20 13:16 - 2013-07-20 13:16 - 00666633 _____ C:\Users\Christian Rietz\Desktop\adwcleaner.exe
2013-07-16 21:27 - 2013-07-16 21:27 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Avira
2013-07-16 21:21 - 2013-07-16 21:21 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-07-16 21:21 - 2013-07-16 21:21 - 00000000 ____D C:\ProgramData\Avira
2013-07-16 21:21 - 2013-07-16 21:21 - 00000000 ____D C:\Program Files\Avira
2013-07-16 21:21 - 2013-07-16 21:19 - 00135136 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-07-16 21:21 - 2013-07-16 21:19 - 00084744 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-07-16 21:21 - 2013-07-16 21:19 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-07-16 21:21 - 2013-07-16 21:19 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-07-16 21:12 - 2013-07-16 21:12 - 02092792 _____ C:\Users\Christian Rietz\Downloads\avira_free_antivirus.exe
2013-07-16 21:07 - 2013-07-16 21:07 - 00017902 _____ C:\Users\Christian Rietz\Downloads\Addition.txt
2013-07-16 21:05 - 2013-07-16 21:05 - 00000000 ____D C:\FRST
2013-07-16 21:04 - 2013-07-16 21:04 - 01218614 _____ (Farbar) C:\Users\Christian Rietz\Downloads\FRST.exe
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\Public\CyberLink
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\CyberLink
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\CyberLink
2013-07-15 21:22 - 2013-07-15 21:22 - 00002687 _____ C:\Users\Christian Rietz\Desktop\Microsoft Office Excel 2007.lnk
2013-07-15 21:22 - 2013-07-15 21:22 - 00002681 _____ C:\Users\Christian Rietz\Desktop\Microsoft Office Word 2007.lnk
2013-07-15 21:19 - 2013-07-15 21:19 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2013-07-15 21:13 - 2013-07-15 21:13 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Microsoft Help
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SSync
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SCheck
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Intermediate
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\Documents\MAGIX
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\PiccShare
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\MAGIX
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Common
2013-07-15 00:49 - 2013-07-15 00:55 - 00000000 ____D C:\Program Files\MAGIX
2013-07-15 00:48 - 2013-07-15 00:49 - 00000000 ____D C:\ProgramData\MAGIX
2013-07-15 00:40 - 2013-07-15 00:43 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Apple Computer
2013-07-15 00:40 - 2013-07-15 00:40 - 00001668 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-07-15 00:40 - 2013-07-15 00:40 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Apple Computer
2013-07-15 00:40 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2013-07-15 00:39 - 2013-07-15 00:40 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-07-15 00:39 - 2013-07-15 00:40 - 00000000 ____D C:\Program Files\iTunes
2013-07-15 00:39 - 2013-07-15 00:39 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-15 00:39 - 2013-07-15 00:39 - 00000000 ____D C:\Program Files\iPod
2013-07-15 00:37 - 2013-07-15 00:37 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Apple
2013-07-15 00:37 - 2013-07-15 00:37 - 00000000 ____D C:\Program Files\Apple Software Update
2013-07-15 00:32 - 2013-07-15 00:39 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-07-15 00:32 - 2013-07-15 00:36 - 00000000 ____D C:\ProgramData\Apple
2013-07-15 00:32 - 2013-07-15 00:32 - 00000000 ____D C:\Program Files\Bonjour
2013-07-15 00:30 - 2013-07-15 00:30 - 00393072 _____ (Softonic ) C:\Users\Christian Rietz\Downloads\SoftonicDownloader_fuer_samplitude-music-studio-mx.exe
2013-07-15 00:26 - 2013-07-15 00:31 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup(2).exe
2013-07-12 01:22 - 2013-07-12 01:22 - 00000943 _____ C:\Users\Christian Rietz\Desktop\Photoshop - Verknüpfung.lnk
2013-07-12 01:18 - 2013-07-12 01:18 - 00000000 ____D C:\ProgramData\Macrovision
2013-07-12 01:18 - 2013-07-12 01:18 - 00000000 ____D C:\Program Files\Common Files\Adobe Systems Shared
2013-07-12 01:10 - 2013-07-12 01:10 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\ACD Systems
2013-07-12 01:10 - 2013-07-12 01:10 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00002080 _____ C:\Users\Public\Desktop\ACDSee 9 Foto-Manager.lnk
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\ProgramData\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\Program Files\Common Files\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\Program Files\ACD Systems
2013-07-12 01:06 - 2013-07-12 01:06 - 00010368 _____ (Padus, Inc.) C:\Windows\system32\Drivers\pfc.sys
2013-07-12 01:04 - 2013-07-12 01:04 - 00000000 ____D C:\Windows\Downloaded Installations
2013-07-12 01:02 - 2013-07-12 01:02 - 00000000 ____D C:\Program Files\7-Zip
2013-07-12 01:00 - 2013-07-12 01:05 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup(1).exe
2013-07-12 00:21 - 2013-07-12 00:26 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup.exe
2013-07-11 23:48 - 2013-07-14 20:23 - 00001975 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-07-11 23:25 - 2013-07-11 23:25 - 00000937 _____ C:\Users\Public\Desktop\RealPlayer.lnk
2013-07-11 23:24 - 2013-07-11 23:24 - 00201872 _____ (RealNetworks, Inc.) C:\Windows\system32\rmoc3260.dll
2013-07-11 23:24 - 2013-07-11 23:24 - 00000000 ____D C:\Program Files\Common Files\xing shared
2013-07-11 23:23 - 2013-07-11 23:23 - 00272896 _____ (Progressive Networks) C:\Windows\system32\pncrt.dll
2013-07-11 23:23 - 2013-07-11 23:23 - 00006656 _____ (RealNetworks, Inc.) C:\Windows\system32\pndx5016.dll
2013-07-11 23:23 - 2013-07-11 23:23 - 00005632 _____ (RealNetworks, Inc.) C:\Windows\system32\pndx5032.dll
2013-07-11 23:21 - 2013-07-11 23:21 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\vlc
2013-07-11 23:19 - 2013-07-11 23:19 - 00000863 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-07-11 23:18 - 2013-07-11 23:18 - 00000000 ____D C:\Program Files\VideoLAN
2013-07-11 23:16 - 2013-07-11 23:18 - 22937227 _____ C:\Users\Christian Rietz\Downloads\vlc-2.0.7-win32.exe
2013-07-11 23:16 - 2013-07-11 23:16 - 00774320 _____ (RealNetworks, Inc.) C:\Users\Christian Rietz\Downloads\RealPlayer_de(1).exe
2013-07-11 23:14 - 2013-07-11 23:14 - 00000918 _____ C:\Users\Christian Rietz\Desktop\Windows Media Player.lnk
2013-07-11 22:55 - 2013-07-11 22:55 - 00001036 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-07-11 22:54 - 2013-07-11 22:54 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\TuneUp Software
2013-07-11 22:54 - 2013-07-11 22:54 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-07-11 22:53 - 2013-07-11 22:53 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-07-11 22:51 - 2013-07-11 22:55 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\DVDVideoSoft
2013-07-11 22:51 - 2013-07-11 22:55 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-07-11 22:51 - 2013-07-11 22:55 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-07-11 22:45 - 2013-07-11 22:49 - 70505984 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio(2).exe
2013-07-11 22:05 - 2013-07-11 22:05 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Macromedia
2013-07-11 22:03 - 2013-07-11 23:47 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-11 22:03 - 2013-07-11 23:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-11 22:03 - 2013-07-11 22:03 - 00000000 ____D C:\ProgramData\McAfee
2013-07-11 22:02 - 2013-07-15 21:01 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Adobe
2013-07-11 19:04 - 2008-06-20 03:14 - 00781344 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2013-07-11 19:04 - 2008-06-20 03:14 - 00622080 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2013-07-11 19:04 - 2008-06-20 03:14 - 00326160 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2013-07-11 19:04 - 2008-06-20 03:14 - 00105016 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-07-11 19:04 - 2008-06-20 03:14 - 00097800 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2013-07-11 19:04 - 2008-06-20 03:14 - 00043544 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2013-07-11 19:04 - 2008-06-20 03:14 - 00037384 _____ (Microsoft Corporation) C:\Windows\system32\infocardcpl.cpl
2013-07-11 19:04 - 2008-06-20 03:14 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2013-07-11 19:02 - 2013-07-11 19:07 - 00196608 _____ C:\Windows\SPInstall.etl
2013-07-11 18:59 - 2013-07-11 18:59 - 00000000 ____D C:\Windows\system32\EventProviders
2013-07-11 18:57 - 2008-07-27 20:03 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2013-07-11 18:57 - 2008-07-27 20:03 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2013-07-11 18:57 - 2008-07-27 20:03 - 00096760 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2013-07-11 18:57 - 2008-07-27 20:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2013-07-11 18:57 - 2008-07-27 20:03 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2013-07-11 18:54 - 2013-07-11 18:59 - 365230920 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\Windows6.0-KB948465-X86.exe
2013-07-11 18:53 - 2013-07-11 19:01 - 455611504 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\Windows6.0-KB936330-X86-wave0.exe
2013-07-11 18:51 - 2013-07-11 18:51 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86(2).exe
2013-07-11 18:49 - 2013-07-11 18:50 - 70614552 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio(1).exe
2013-07-11 18:49 - 2013-07-11 18:49 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\RealNetworks
2013-07-11 18:45 - 2013-07-11 18:45 - 00000000 ____D C:\ProgramData\RealNetworks
2013-07-11 18:45 - 2013-07-11 18:45 - 00000000 ____D C:\Program Files\RealNetworks
2013-07-11 18:44 - 2013-07-11 23:38 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Real
2013-07-11 18:44 - 2013-07-11 23:24 - 00000000 ____D C:\Program Files\Real
2013-07-11 18:43 - 2013-07-11 23:26 - 00000000 ____D C:\ProgramData\Real
2013-07-11 18:37 - 2013-07-11 18:37 - 00774320 _____ (RealNetworks, Inc.) C:\Users\Christian Rietz\Downloads\RealPlayer_de.exe
2013-07-11 18:36 - 2011-04-12 16:53 - 00890368 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-07-11 18:36 - 2011-03-03 16:56 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Apphlpdm.dll
2013-07-11 18:36 - 2011-03-03 15:01 - 04240384 _____ (Microsoft) C:\Windows\system32\GameUXLegacyGDFs.dll
2013-07-11 18:36 - 2009-10-23 19:42 - 00714240 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-07-11 18:36 - 2009-09-10 17:21 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2013-07-11 18:36 - 2008-10-22 05:57 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2013-07-11 18:36 - 2008-09-18 06:56 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2013-07-11 18:36 - 2008-09-18 06:56 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2013-07-11 18:36 - 2008-08-28 05:40 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-07-11 18:36 - 2008-08-28 05:40 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-07-11 18:36 - 2008-08-28 05:40 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-07-11 18:35 - 2008-10-21 07:25 - 01645568 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2013-07-11 18:28 - 2013-07-11 18:28 - 24758792 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP1_x86.exe
2013-07-11 18:26 - 2013-07-11 18:27 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86(1).exe
2013-07-11 18:25 - 2013-07-11 18:26 - 70614552 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio.exe
2013-07-11 18:24 - 2013-07-11 18:25 - 00000000 ____D C:\Users\Christian Rietz\Documents\Programme
2013-07-11 18:18 - 2013-07-11 18:19 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86.exe
2013-07-11 18:18 - 2013-07-11 18:19 - 00002048 _____ C:\Windows\IE9_main.log
2013-07-11 18:14 - 2013-07-11 22:52 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-11 18:14 - 2013-07-11 18:15 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Macromedia
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\ProgramData\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-11 18:09 - 2013-07-20 13:27 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-11 18:09 - 2013-07-20 13:21 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-11 17:54 - 2013-07-16 00:17 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Adobe
2013-07-11 17:54 - 2013-07-11 18:08 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Google
2013-07-11 16:08 - 2010-01-15 02:04 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2013-07-11 16:08 - 2009-12-23 14:43 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-07-11 15:37 - 2013-05-02 02:06 - 00238872 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-07-11 15:31 - 2010-02-12 12:48 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-07-11 15:29 - 2010-09-10 20:18 - 10626560 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-07-11 15:28 - 2011-02-16 17:29 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-07-11 15:28 - 2011-02-16 15:24 - 00292864 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-07-11 15:28 - 2010-12-28 16:57 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2013-07-11 15:28 - 2010-09-10 18:37 - 08147456 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-07-11 15:28 - 2010-06-16 17:12 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-07-11 15:28 - 2010-04-16 18:10 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-07-11 15:28 - 2010-02-21 01:39 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2013-07-11 15:28 - 2010-02-21 01:37 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2013-07-11 15:28 - 2010-02-20 23:18 - 00411136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2013-07-11 15:28 - 2009-08-14 18:29 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2013-07-11 15:28 - 2009-08-14 16:16 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\NETSTAT.EXE
2013-07-11 15:28 - 2009-08-14 16:16 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\ARP.EXE
2013-07-11 15:28 - 2009-08-14 16:16 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\TCPSVCS.EXE
2013-07-11 15:28 - 2009-06-15 17:20 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-07-11 15:27 - 2013-07-11 15:27 - 00283636 _____ C:\Windows\msxml4-KB973688-deu.LOG
2013-07-11 15:27 - 2013-07-11 15:27 - 00280240 _____ C:\Windows\msxml4-KB954430-deu.LOG
2013-07-11 15:27 - 2011-02-22 14:52 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-07-11 15:27 - 2011-02-22 14:52 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-07-11 15:27 - 2011-02-22 14:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-07-11 15:27 - 2011-02-22 14:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-07-11 15:27 - 2009-08-14 18:29 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-07-11 15:27 - 2009-08-14 16:16 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\ROUTE.EXE
2013-07-11 15:27 - 2009-08-14 16:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\MRINFO.EXE
2013-07-11 15:27 - 2009-08-14 16:16 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2013-07-11 15:27 - 2009-08-14 16:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\HOSTNAME.EXE
2013-07-11 15:27 - 2009-07-11 21:32 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2013-07-11 15:27 - 2009-07-11 21:29 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\L2SecHC.dll
2013-07-11 15:27 - 2009-07-11 19:18 - 02501921 _____ C:\Windows\system32\wlan.tmf
2013-07-11 15:26 - 2011-04-14 16:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2013-07-11 15:26 - 2011-03-10 18:12 - 01161728 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-07-11 15:26 - 2011-03-10 18:12 - 01136640 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-07-11 15:26 - 2010-10-15 16:08 - 03600272 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-07-11 15:26 - 2010-10-15 16:08 - 03548048 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-07-11 15:26 - 2010-10-15 15:48 - 01205080 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-07-11 15:26 - 2009-09-10 19:30 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2013-07-11 15:26 - 2009-07-11 21:32 - 00513024 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2013-07-11 15:26 - 2009-07-11 21:32 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2013-07-11 15:25 - 2011-06-02 14:59 - 02042368 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-11 15:25 - 2011-04-21 15:16 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-07-11 15:25 - 2011-03-02 16:49 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-07-11 15:25 - 2011-03-02 16:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-07-11 15:25 - 2011-02-18 15:31 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-07-11 15:25 - 2010-08-26 18:07 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2013-07-11 15:25 - 2010-08-17 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-07-11 15:25 - 2010-06-28 18:15 - 01315840 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2013-07-11 15:25 - 2010-05-27 21:16 - 00081920 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2013-07-11 15:25 - 2010-04-05 18:07 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2013-07-11 15:25 - 2009-07-17 16:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\atl.dll
2013-07-11 15:25 - 2009-06-10 14:12 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2013-07-11 15:25 - 2009-05-04 12:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-07-11 15:25 - 2008-12-06 06:42 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2013-07-11 15:25 - 2008-10-21 07:25 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-07-11 15:25 - 2008-06-06 05:27 - 00562176 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2013-07-11 15:25 - 2008-06-06 05:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\xolehlp.dll
2013-07-11 15:24 - 2013-07-16 20:27 - 00096800 _____ C:\Users\CHRIST~1\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-11 15:24 - 2013-07-11 23:51 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Google
2013-07-11 15:24 - 2013-07-11 15:24 - 00000953 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-07-11 15:24 - 2013-07-11 15:24 - 00000000 ____D C:\Users\Christian Rietz\Documents\Eigene Google Gadgets
2013-07-11 15:24 - 2011-04-29 14:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-07-11 15:24 - 2011-04-29 14:49 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-07-11 15:24 - 2011-02-16 17:35 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-11 15:24 - 2011-02-16 17:32 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-11 15:24 - 2010-12-20 17:39 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-07-11 15:24 - 2010-12-14 17:49 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2013-07-11 15:24 - 2010-08-31 17:41 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2013-07-11 15:24 - 2010-08-31 17:41 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2013-07-11 15:24 - 2010-08-20 17:21 - 00866816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2013-07-11 15:24 - 2010-06-18 18:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2013-07-11 15:24 - 2010-05-04 20:39 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2013-07-11 15:24 - 2010-04-05 18:08 - 00317952 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2013-07-11 15:24 - 2009-07-10 14:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2013-07-11 15:24 - 2009-06-15 20:20 - 00439896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-07-11 15:24 - 2009-06-15 17:24 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2013-07-11 15:24 - 2009-06-15 17:24 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-07-11 15:24 - 2009-06-15 17:23 - 01256448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-07-11 15:24 - 2009-06-15 17:21 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-07-11 15:24 - 2009-06-15 14:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-07-11 15:24 - 2009-04-23 14:42 - 00636928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-07-11 15:24 - 2009-03-03 06:39 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2013-07-11 15:24 - 2008-10-29 08:29 - 02927104 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-07-11 15:23 - 2013-07-20 13:27 - 00000000 ___RD C:\Users\Christian Rietz\Desktop
2013-07-11 15:23 - 2013-07-20 13:27 - 00000000 ___RD C:\Users\Christian Rietz\Desktop
2013-07-11 15:23 - 2013-07-20 13:21 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Home Cinema
2013-07-11 15:23 - 2013-07-15 00:36 - 00000000 ____D C:\Users\Christian Rietz
2013-07-11 15:23 - 2013-07-11 23:14 - 00000948 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2013-07-11 15:23 - 2013-07-11 15:24 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\VirtualStore
2013-07-11 15:23 - 2013-07-11 15:23 - 00000919 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2013-07-11 15:23 - 2013-07-11 15:23 - 00000020 ___SH C:\Users\Christian Rietz\ntuser.ini
2013-07-11 15:23 - 2013-07-11 15:23 - 00000020 ___SH C:\Users\Christian Rietz\ntuser.ini
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Startmenü
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Startmenü
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Netzwerkumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Netzwerkumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Druckumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Druckumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Documents\Eigene Musik
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Documents\Eigene Bilder
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\CHRIST~1\AppData\Local\Verlauf
2013-07-11 15:23 - 2011-05-02 17:58 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-07-11 15:23 - 2011-01-21 17:46 - 11582464 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-07-11 15:23 - 2011-01-21 17:46 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2013-07-11 15:23 - 2010-12-29 19:41 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-07-11 15:23 - 2010-12-29 19:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-07-11 15:23 - 2010-12-29 19:41 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\sbeio.dll
2013-07-11 15:23 - 2010-12-29 19:39 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-07-11 15:23 - 2010-11-06 13:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2013-07-11 15:23 - 2010-11-06 13:10 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2013-07-11 15:23 - 2010-11-06 13:10 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2013-07-11 15:23 - 2010-11-06 13:09 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2013-07-11 15:23 - 2010-11-05 02:53 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2013-07-11 15:23 - 2010-10-28 14:56 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-07-11 15:23 - 2010-10-18 16:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-07-11 15:23 - 2010-06-11 17:30 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-07-11 15:23 - 2010-04-16 18:10 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-07-11 15:23 - 2010-02-18 16:11 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-07-11 15:23 - 2010-02-18 13:52 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2013-07-11 15:23 - 2010-01-21 17:59 - 00062464 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codeca.acm
2013-07-11 15:23 - 2009-03-17 05:38 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\amxread.dll
2013-07-11 15:23 - 2009-03-17 05:38 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\apilogen.dll
2013-07-11 15:23 - 2009-03-03 06:39 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2013-07-11 15:23 - 2009-03-03 06:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-07-11 15:23 - 2009-03-03 06:37 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2013-07-11 15:23 - 2009-03-03 06:37 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2013-07-11 15:23 - 2009-03-03 06:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2013-07-11 15:23 - 2009-03-03 05:04 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-07-11 15:23 - 2009-03-03 04:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\iashost.exe
2013-07-11 15:23 - 2008-08-12 05:39 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-07-11 15:23 - 2008-01-21 04:42 - 00000000 ___RD C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-07-11 15:23 - 2008-01-21 04:42 - 00000000 ___RD C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Programme
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-07-11 15:22 - 2009-07-14 15:00 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2013-07-11 15:22 - 2009-07-14 14:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2013-07-11 15:22 - 2009-07-14 14:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2013-07-11 15:22 - 2009-07-14 14:58 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2013-07-11 15:21 - 2011-04-20 16:47 - 00375808 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-07-11 15:21 - 2011-04-20 16:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-07-11 15:21 - 2010-12-17 18:43 - 02067456 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-07-11 15:21 - 2010-12-17 17:06 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-07-11 15:21 - 2010-08-31 17:40 - 00531968 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-07-11 15:21 - 2010-06-16 17:59 - 00898952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-07-11 15:21 - 2009-12-28 14:35 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2013-07-11 15:21 - 2009-12-28 14:32 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2013-07-11 15:21 - 2009-12-28 14:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2013-07-11 15:21 - 2009-12-28 14:32 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2013-07-11 15:21 - 2009-12-28 14:32 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2013-07-11 15:21 - 2009-12-28 14:31 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2013-07-11 15:21 - 2009-12-28 14:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2013-07-11 15:21 - 2009-12-28 14:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2013-07-11 15:21 - 2009-12-28 14:28 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\avicap32.dll
2013-07-11 15:21 - 2009-10-07 14:41 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2013-07-11 15:21 - 2009-10-07 14:41 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2013-07-11 15:21 - 2009-09-04 14:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2013-07-11 15:21 - 2009-08-10 15:05 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2013-07-11 15:21 - 2009-07-14 10:30 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.tlb
2013-07-11 15:21 - 2009-07-14 10:30 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\amcompat.tlb
2013-07-11 15:21 - 2009-04-23 14:43 - 00784896 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-07-11 15:21 - 2008-09-10 05:40 - 01334272 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-07-11 15:21 - 2008-06-23 03:59 - 02868736 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-07-11 15:21 - 2008-06-23 03:59 - 02386944 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2013-07-11 15:21 - 2008-06-23 03:59 - 00996352 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2013-07-11 15:21 - 2008-06-23 03:58 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2013-07-11 15:20 - 2013-07-20 13:20 - 01510793 _____ C:\Windows\WindowsUpdate.log
2013-07-11 15:20 - 2011-04-29 16:54 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-07-11 15:20 - 2009-04-02 14:37 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
==================== One Month Modified Files and Folders =======
2013-07-20 13:27 - 2013-07-11 18:09 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-20 13:27 - 2013-07-11 15:23 - 00000000 ___RD C:\Users\Christian Rietz\Desktop
2013-07-20 13:27 - 2013-07-11 15:23 - 00000000 ___RD C:\Users\Christian Rietz\Desktop
2013-07-20 13:26 - 2006-11-02 12:33 - 01418794 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-20 13:25 - 2013-07-20 13:25 - 01219758 _____ (Farbar) C:\Users\Christian Rietz\Downloads\FRST(1).exe
2013-07-20 13:25 - 2008-10-25 05:29 - 00000438 ____H C:\Windows\Tasks\User_Feed_Synchronization-{103B65BD-4798-4CA0-9487-EB211B637804}.job
2013-07-20 13:25 - 2008-10-25 05:12 - 00043509 _____ C:\ProgramData\nvModes.dat
2013-07-20 13:25 - 2008-10-25 05:12 - 00043509 _____ C:\ProgramData\nvModes.001
2013-07-20 13:24 - 2013-07-11 15:20 - 01510793 _____ C:\Windows\WindowsUpdate.log
2013-07-20 13:21 - 2013-07-11 18:09 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-20 13:21 - 2013-07-11 15:23 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Home Cinema
2013-07-20 13:21 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-20 13:21 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-20 13:21 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-20 13:20 - 2006-11-02 15:01 - 00026934 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-20 13:19 - 2013-07-20 13:19 - 00006493 _____ C:\AdwCleaner[S1].txt
2013-07-20 13:16 - 2013-07-20 13:16 - 00666633 _____ C:\Users\Christian Rietz\Desktop\adwcleaner.exe
2013-07-17 21:41 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2013-07-16 21:37 - 2008-01-21 04:47 - 00266662 _____ C:\Windows\PFRO.log
2013-07-16 21:27 - 2013-07-16 21:27 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Avira
2013-07-16 21:26 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Public\Desktop
2013-07-16 21:21 - 2013-07-16 21:21 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-07-16 21:21 - 2013-07-16 21:21 - 00000000 ____D C:\ProgramData\Avira
2013-07-16 21:21 - 2013-07-16 21:21 - 00000000 ____D C:\Program Files\Avira
2013-07-16 21:19 - 2013-07-16 21:21 - 00135136 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-07-16 21:19 - 2013-07-16 21:21 - 00084744 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-07-16 21:19 - 2013-07-16 21:21 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-07-16 21:19 - 2013-07-16 21:21 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-07-16 21:12 - 2013-07-16 21:12 - 02092792 _____ C:\Users\Christian Rietz\Downloads\avira_free_antivirus.exe
2013-07-16 21:07 - 2013-07-16 21:07 - 00017902 _____ C:\Users\Christian Rietz\Downloads\Addition.txt
2013-07-16 21:05 - 2013-07-16 21:05 - 00000000 ____D C:\FRST
2013-07-16 21:04 - 2013-07-16 21:04 - 01218614 _____ (Farbar) C:\Users\Christian Rietz\Downloads\FRST.exe
2013-07-16 20:27 - 2013-07-11 15:24 - 00096800 _____ C:\Users\CHRIST~1\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-16 20:00 - 2006-11-02 14:47 - 00357528 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-16 00:25 - 2008-10-20 06:03 - 00000000 ____D C:\ProgramData\Adobe
2013-07-16 00:17 - 2013-07-11 17:54 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Adobe
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\Public\CyberLink
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\CyberLink
2013-07-15 21:59 - 2013-07-15 21:59 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\CyberLink
2013-07-15 21:59 - 2008-10-22 07:18 - 00000000 ____D C:\ProgramData\CyberLink
2013-07-15 21:59 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-07-15 21:22 - 2013-07-15 21:22 - 00002687 _____ C:\Users\Christian Rietz\Desktop\Microsoft Office Excel 2007.lnk
2013-07-15 21:22 - 2013-07-15 21:22 - 00002681 _____ C:\Users\Christian Rietz\Desktop\Microsoft Office Word 2007.lnk
2013-07-15 21:21 - 2008-10-20 07:42 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-07-15 21:19 - 2013-07-15 21:19 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2013-07-15 21:18 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-07-15 21:14 - 2008-10-20 07:40 - 00000000 ____D C:\Program Files\Microsoft Office
2013-07-15 21:14 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Common Files\System
2013-07-15 21:14 - 2006-11-02 12:23 - 00000219 _____ C:\Windows\win.ini
2013-07-15 21:13 - 2013-07-15 21:13 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Microsoft Help
2013-07-15 21:01 - 2013-07-11 22:02 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Adobe
2013-07-15 00:55 - 2013-07-15 00:49 - 00000000 ____D C:\Program Files\MAGIX
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SSync
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SCheck
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Intermediate
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\Documents\MAGIX
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\PiccShare
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\MAGIX
2013-07-15 00:50 - 2013-07-15 00:50 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Common
2013-07-15 00:49 - 2013-07-15 00:48 - 00000000 ____D C:\ProgramData\MAGIX
2013-07-15 00:43 - 2013-07-15 00:40 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Apple Computer
2013-07-15 00:40 - 2013-07-15 00:40 - 00001668 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-07-15 00:40 - 2013-07-15 00:40 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Apple Computer
2013-07-15 00:40 - 2013-07-15 00:39 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-07-15 00:40 - 2013-07-15 00:39 - 00000000 ____D C:\Program Files\iTunes
2013-07-15 00:39 - 2013-07-15 00:39 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-15 00:39 - 2013-07-15 00:39 - 00000000 ____D C:\Program Files\iPod
2013-07-15 00:39 - 2013-07-15 00:32 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-07-15 00:37 - 2013-07-15 00:37 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Apple
2013-07-15 00:37 - 2013-07-15 00:37 - 00000000 ____D C:\Program Files\Apple Software Update
2013-07-15 00:36 - 2013-07-15 00:32 - 00000000 ____D C:\ProgramData\Apple
2013-07-15 00:36 - 2013-07-11 15:23 - 00000000 ____D C:\Users\Christian Rietz
2013-07-15 00:32 - 2013-07-15 00:32 - 00000000 ____D C:\Program Files\Bonjour
2013-07-15 00:31 - 2013-07-15 00:26 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup(2).exe
2013-07-15 00:30 - 2013-07-15 00:30 - 00393072 _____ (Softonic ) C:\Users\Christian Rietz\Downloads\SoftonicDownloader_fuer_samplitude-music-studio-mx.exe
2013-07-14 20:23 - 2013-07-11 23:48 - 00001975 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-07-14 20:00 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-07-12 01:22 - 2013-07-12 01:22 - 00000943 _____ C:\Users\Christian Rietz\Desktop\Photoshop - Verknüpfung.lnk
2013-07-12 01:18 - 2013-07-12 01:18 - 00000000 ____D C:\ProgramData\Macrovision
2013-07-12 01:18 - 2013-07-12 01:18 - 00000000 ____D C:\Program Files\Common Files\Adobe Systems Shared
2013-07-12 01:17 - 2008-10-20 06:03 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-07-12 01:12 - 2008-10-20 06:03 - 00000000 ____D C:\Program Files\Adobe
2013-07-12 01:12 - 2008-10-20 05:37 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-07-12 01:10 - 2013-07-12 01:10 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\ACD Systems
2013-07-12 01:10 - 2013-07-12 01:10 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00002080 _____ C:\Users\Public\Desktop\ACDSee 9 Foto-Manager.lnk
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\ProgramData\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\Program Files\Common Files\ACD Systems
2013-07-12 01:08 - 2013-07-12 01:08 - 00000000 ____D C:\Program Files\ACD Systems
2013-07-12 01:08 - 2006-11-02 12:23 - 00000252 _____ C:\Windows\system.ini
2013-07-12 01:06 - 2013-07-12 01:06 - 00010368 _____ (Padus, Inc.) C:\Windows\system32\Drivers\pfc.sys
2013-07-12 01:05 - 2013-07-12 01:00 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup(1).exe
2013-07-12 01:04 - 2013-07-12 01:04 - 00000000 ____D C:\Windows\Downloaded Installations
2013-07-12 01:02 - 2013-07-12 01:02 - 00000000 ____D C:\Program Files\7-Zip
2013-07-12 00:58 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-07-12 00:51 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-07-12 00:26 - 2013-07-12 00:21 - 89111376 _____ (Apple Inc.) C:\Users\Christian Rietz\Downloads\iTunesSetup.exe
2013-07-11 23:51 - 2013-07-11 15:24 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Google
2013-07-11 23:48 - 2008-10-26 05:06 - 00000000 ____D C:\Program Files\Google
2013-07-11 23:47 - 2013-07-11 22:03 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-11 23:47 - 2013-07-11 22:03 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-11 23:38 - 2013-07-11 18:44 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Real
2013-07-11 23:26 - 2013-07-11 18:43 - 00000000 ____D C:\ProgramData\Real
2013-07-11 23:25 - 2013-07-11 23:25 - 00000937 _____ C:\Users\Public\Desktop\RealPlayer.lnk
2013-07-11 23:24 - 2013-07-11 23:24 - 00201872 _____ (RealNetworks, Inc.) C:\Windows\system32\rmoc3260.dll
2013-07-11 23:24 - 2013-07-11 23:24 - 00000000 ____D C:\Program Files\Common Files\xing shared
2013-07-11 23:24 - 2013-07-11 18:44 - 00000000 ____D C:\Program Files\Real
2013-07-11 23:23 - 2013-07-11 23:23 - 00272896 _____ (Progressive Networks) C:\Windows\system32\pncrt.dll
2013-07-11 23:23 - 2013-07-11 23:23 - 00006656 _____ (RealNetworks, Inc.) C:\Windows\system32\pndx5016.dll
2013-07-11 23:23 - 2013-07-11 23:23 - 00005632 _____ (RealNetworks, Inc.) C:\Windows\system32\pndx5032.dll
2013-07-11 23:23 - 2003-03-18 20:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll
2013-07-11 23:21 - 2013-07-11 23:21 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\vlc
2013-07-11 23:19 - 2013-07-11 23:19 - 00000863 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-07-11 23:18 - 2013-07-11 23:18 - 00000000 ____D C:\Program Files\VideoLAN
2013-07-11 23:18 - 2013-07-11 23:16 - 22937227 _____ C:\Users\Christian Rietz\Downloads\vlc-2.0.7-win32.exe
2013-07-11 23:16 - 2013-07-11 23:16 - 00774320 _____ (RealNetworks, Inc.) C:\Users\Christian Rietz\Downloads\RealPlayer_de(1).exe
2013-07-11 23:14 - 2013-07-11 23:14 - 00000918 _____ C:\Users\Christian Rietz\Desktop\Windows Media Player.lnk
2013-07-11 23:14 - 2013-07-11 15:23 - 00000948 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2013-07-11 22:55 - 2013-07-11 22:55 - 00001036 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-07-11 22:55 - 2013-07-11 22:51 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\DVDVideoSoft
2013-07-11 22:55 - 2013-07-11 22:51 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-07-11 22:55 - 2013-07-11 22:51 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-07-11 22:54 - 2013-07-11 22:54 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\TuneUp Software
2013-07-11 22:54 - 2013-07-11 22:54 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-07-11 22:53 - 2013-07-11 22:53 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-07-11 22:52 - 2013-07-11 18:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-11 22:49 - 2013-07-11 22:45 - 70505984 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio(2).exe
2013-07-11 22:05 - 2013-07-11 22:05 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Macromedia
2013-07-11 22:03 - 2013-07-11 22:03 - 00000000 ____D C:\ProgramData\McAfee
2013-07-11 21:53 - 2006-11-02 14:52 - 00131486 _____ C:\Windows\setupact.log
2013-07-11 19:07 - 2013-07-11 19:02 - 00196608 _____ C:\Windows\SPInstall.etl
2013-07-11 19:07 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-07-11 19:01 - 2013-07-11 18:53 - 455611504 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\Windows6.0-KB936330-X86-wave0.exe
2013-07-11 18:59 - 2013-07-11 18:59 - 00000000 ____D C:\Windows\system32\EventProviders
2013-07-11 18:59 - 2013-07-11 18:54 - 365230920 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\Windows6.0-KB948465-X86.exe
2013-07-11 18:51 - 2013-07-11 18:51 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86(2).exe
2013-07-11 18:50 - 2013-07-11 18:49 - 70614552 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio(1).exe
2013-07-11 18:49 - 2013-07-11 18:49 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\RealNetworks
2013-07-11 18:46 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-07-11 18:45 - 2013-07-11 18:45 - 00000000 ____D C:\ProgramData\RealNetworks
2013-07-11 18:45 - 2013-07-11 18:45 - 00000000 ____D C:\Program Files\RealNetworks
2013-07-11 18:37 - 2013-07-11 18:37 - 00774320 _____ (RealNetworks, Inc.) C:\Users\Christian Rietz\Downloads\RealPlayer_de.exe
2013-07-11 18:28 - 2013-07-11 18:28 - 24758792 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP1_x86.exe
2013-07-11 18:27 - 2013-07-11 18:26 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86(1).exe
2013-07-11 18:26 - 2013-07-11 18:25 - 70614552 _____ (DVDVideoSoft Ltd. ) C:\Users\Christian Rietz\Downloads\FreeStudio.exe
2013-07-11 18:25 - 2013-07-11 18:24 - 00000000 ____D C:\Users\Christian Rietz\Documents\Programme
2013-07-11 18:19 - 2013-07-11 18:18 - 25001480 _____ (Microsoft Corporation) C:\Users\Christian Rietz\Downloads\NetFx20SP2_x86.exe
2013-07-11 18:19 - 2013-07-11 18:18 - 00002048 _____ C:\Windows\IE9_main.log
2013-07-11 18:15 - 2013-07-11 18:14 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Macromedia
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\ProgramData\Mozilla
2013-07-11 18:14 - 2013-07-11 18:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-11 18:08 - 2013-07-11 17:54 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Google
2013-07-11 17:54 - 2008-10-26 05:06 - 00000000 ____D C:\ProgramData\Google
2013-07-11 17:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Movie Maker
2013-07-11 15:27 - 2013-07-11 15:27 - 00283636 _____ C:\Windows\msxml4-KB973688-deu.LOG
2013-07-11 15:27 - 2013-07-11 15:27 - 00280240 _____ C:\Windows\msxml4-KB954430-deu.LOG
2013-07-11 15:25 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\restore
2013-07-11 15:24 - 2013-07-11 15:24 - 00000953 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-07-11 15:24 - 2013-07-11 15:24 - 00000000 ____D C:\Users\Christian Rietz\Documents\Eigene Google Gadgets
2013-07-11 15:24 - 2013-07-11 15:23 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\VirtualStore
2013-07-11 15:24 - 2008-10-22 05:40 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-11 15:23 - 2013-07-11 15:23 - 00000919 _____ C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2013-07-11 15:23 - 2013-07-11 15:23 - 00000020 ___SH C:\Users\Christian Rietz\ntuser.ini
2013-07-11 15:23 - 2013-07-11 15:23 - 00000020 ___SH C:\Users\Christian Rietz\ntuser.ini
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Startmenü
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Startmenü
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Netzwerkumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Netzwerkumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Druckumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Druckumgebung
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Documents\Eigene Musik
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\Documents\Eigene Bilder
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\Christian Rietz\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-07-11 15:23 - 2013-07-11 15:23 - 00000000 _SHDL C:\Users\CHRIST~1\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\Programme
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-07-11 15:22 - 2013-07-11 15:22 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-07-11 15:22 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Default
2013-07-11 15:22 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Windows NT
2013-07-11 15:14 - 2008-10-20 14:37 - 00000000 ____D C:\Windows\Panther
2013-07-11 15:14 - 2008-10-20 04:39 - 00012840 _____ C:\Windows\TSSysprep.log
2013-07-11 15:12 - 2006-11-02 14:48 - 00008257 _____ C:\Windows\DtcInstall.log
Files to move or delete:
====================
C:\ProgramData\nvModes.dat
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-20 13:27
==================== End Of Log ============================
--- --- --- |
|
20.07.2013, 22:13
| #6 |
| /// TB-Ausbilder | Werbe-Pop-ups (World of Tanks) Hallo, treten die Werbepopups nach diesen Schritten immer noch auf? Schritt 1 Drücke die  + R Taste und schreibe "notepad" in das Ausführen Fenster.Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument: Code:
ATTFilter HKCU\...\Run: [SCheck] - C:\Users\Christian Rietz\AppData\Roaming\SCheck\SCheck.exe [36864 2013-04-10] ()
HKCU\...\Run: [SSync] - C:\Users\Christian Rietz\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10] ()
HKCU\...\Run: [Intermediate] - C:\Users\Christian Rietz\AppData\Roaming\Intermediate\Intermediate.exe [36864 2013-04-10] ()
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SSync
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\SCheck
2013-07-15 00:52 - 2013-07-15 00:52 - 00000000 ____D C:\Users\Christian Rietz\AppData\Roaming\Intermediate
Schritt 2 ESET Online Scanner
Bitte poste in deiner nächsten Antwort:
__________________ --> Werbe-Pop-ups (World of Tanks) |
|
21.07.2013, 13:31
| #7 |
| | Werbe-Pop-ups (World of Tanks) Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 16-07-2013 03 Ran by Christian Rietz at 2013-07-21 14:20:29 Run:1 Running from C:\Users\Christian Rietz\Desktop Boot Mode: Normal ============================================== HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\SCheck] - C:\Users\Christian Rietz\AppData\Roaming\SCheck\SCheck.exe [36864 2013-04-10 => Value not found. HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\SSync] - C:\Users\Christian Rietz\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10 => Value not found. HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Intermediate] - C:\Users\Christian Rietz\AppData\Roaming\Intermediate\Intermediate.exe [36864 2013-04-10 => Value not found. C:\Users\Christian Rietz\AppData\Roaming\SSync => Moved successfully. C:\Users\Christian Rietz\AppData\Roaming\SCheck => Moved successfully. C:\Users\Christian Rietz\AppData\Roaming\Intermediate => Moved successfully. ==== End of Fixlog ==== ESET lädt die Signature Database nicht. Dort steht nur: Can not get update. Is proxy configured? Was muss ich machen? |
|
21.07.2013, 13:45
| #8 |
| /// TB-Ausbilder | Werbe-Pop-ups (World of Tanks) Falsche Proxy Einstellungen entfernen
 
__________________ cheers, Leo |
|
21.07.2013, 17:39
| #9 |
| | Werbe-Pop-ups (World of Tanks) Hallo Leo, danke für die schnelle Hilfe. Habe das Problem nur bei Firefox. Nehme an, ich muss da bei Extras/Einstellungen suchen...Aber wo genau? |
|
21.07.2013, 18:41
| #10 |
| /// TB-Ausbilder | Werbe-Pop-ups (World of Tanks) ESET lädt die Definitionen unabhängig vom verwendeten Browser herunter. Hast du obiges mal versucht (auch den Haken setzen bei "Automatische Suche der Einstellungen")?
__________________ cheers, Leo |
|
21.07.2013, 18:48
| #11 |
| | Werbe-Pop-ups (World of Tanks) Also, ich hab jetzt im IE nachgeschaut. Das einzige, das anders war, war das Häkchen bei "Automatische Suche..."; das habe ich eingefügt. Aber ESET lädt trotzdem nix runter. |
|
21.07.2013, 18:50
| #12 |
| /// TB-Ausbilder | Werbe-Pop-ups (World of Tanks) Kommt schon mal vor, dann lass ESET mal beiseite mach stattdessen den Panda-Scan. Sind die Werbe-Popups mittlerweile verschwunden?
__________________ cheers, Leo |
|
21.07.2013, 22:44
| #13 |
| | Werbe-Pop-ups (World of Tanks) Broken Link. FILE: File not found:C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBARNOTIFIER\5.2.4204.1700\SWG.DLL to be deleted. Broken Link. REGKEY: HKCR\typelib\{C7CB459A-7261-4AE6-A87A-17041EE98A40}\14.0. Key to be deleted. Broken Link. FILE: File not found:C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBARNOTIFIER\1.2.1128.5462\SWG.DLL to be deleted. Broken Link. REGKEY: HKCR\typelib\{C7CB459A-7261-4AE6-A87A-17041EE98A40}\3.0. Key to be deleted. Broken Link. FILE: File not found:C:\USERS\CHRISTIAN RIETZ\APPDATA\ROAMING\SSYNC\SSYNC.EXE to be deleted. Broken Link. REGKEY: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[SSync]. Value: SSync To be deleted. Broken Link. REGKEY: HKUS\S-1-5-21-209139463-1928718786-3223491114-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[SSync]. Value: SSync To be deleted. Broken Link. FILE: File not found:PROGMAN.EXE to be deleted. s. REGKEY: Broken Link. Value: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WOW\Boot[Shell] To be changed to: Shell Broken Link. FILE: File not found:C:\PROGRAM FILES\ASKPARTNERNETWORK\TOOLBAR\AVIRA-V7\PASSPORT.DLL to be deleted. Broken Link. REGKEY: HKCU\Software\Classes\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}. Key to be deleted. Broken Link. REGKEY: HKLM\Software\Classes\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}. Key to be deleted. Broken Link. REGKEY: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7}. Key to be deleted. Broken Link. REGKEY: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar[{41564952-412D-5637-00A7-7A786E7484D7}]. Value: {41564952-412D-5637-00A7-7A786E7484D7} To be deleted. Broken Link. REGKEY: HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser[{41564952-412D-5637-00A7-7A786E7484D7}]. Value: {41564952-412D-5637-00A7-7A786E7484D7} To be deleted. Broken Link. REGKEY: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{41564952-412D-5637-00A7-7A786E7484D7}. Key to be deleted. Broken Link. REGKEY: HKUS\S-1-5-21-209139463-1928718786-3223491114-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{41564952-412D-5637-00A7-7A786E7484D7}. Key to be deleted. Broken Link. FILE: File not found:C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBARNOTIFIER\5.5.4723.1820\SWG.DLL to be deleted. Broken Link. REGKEY: HKCR\typelib\{C7CB459A-7261-4AE6-A87A-17041EE98A40}\15.0. Key to be deleted. Broken Link. FILE: File not found:C:\USERS\CHRISTIAN RIETZ\APPDATA\ROAMING\SCHECK\SCHECK.EXE to be deleted. Broken Link. REGKEY: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[SCheck]. Value: SCheck To be deleted. Broken Link. REGKEY: HKUS\S-1-5-21-209139463-1928718786-3223491114-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[SCheck]. Value: SCheck To be deleted. Broken Link. FILE: File not found:C:\USERS\CHRISTIAN RIETZ\APPDATA\ROAMING\INTERMEDIATE\INTERMEDIATE.EXE to be deleted. Broken Link. REGKEY: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[Intermediate]. Value: Intermediate To be deleted. Broken Link. REGKEY: HKUS\S-1-5-21-209139463-1928718786-3223491114-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[Intermediate]. Value: Intermediate To be deleted. Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[HIDEFILEEXT] to be changed to: 0 |
|
21.07.2013, 22:46
| #14 |
| /// TB-Ausbilder | Werbe-Pop-ups (World of Tanks) Ok, und wie steht es jetzt mit den Werbe-Popups?
__________________ cheers, Leo |
|
22.07.2013, 18:24
| #15 |
| | Werbe-Pop-ups (World of Tanks) Es kommen immer noch die weißen Fenster, wenn ich neue Tabs öffne. |
|
| Themen zu Werbe-Pop-ups (World of Tanks) |
| betriebssystem, gen, gestern, installiere, installieren, kleine, minute, minuten, neu, neu installieren, poppen, vista, werbefenster, werbung, werbungen, windows, windows vista, windows vista neu installieren, woche, world, öffnet |
Linear-Darstellung
