Grüne Wortpassagen beim Surfen im I.Net 10 ??

Troja70 · 22.07.2013, 14:22

Moinmoin,

habe seit ein paar Tagen bemerkt, dass wenn ich mit der Maus über die grün hervorgebene
Passagen im Text fahre, dass sich ein Fenster öffnet mit dem Hinweis es zu öffnen.
Es ist in englischer Sprache.
Unten in diesem Fenster ist die Internetadresse von
"MonsterMarketplace.com" angegeben.

Wie kann ich dieses wieder löschen bzw. loswerden.

Danke für eure Hilfe!

MfG Troja70

aharonov · 22.07.2013, 14:26

Hi,

da hat sich wohl eine Adware eingenistet.
Lass uns mal reinschauen:

Downloade dir bitte die für dein System passende Version (32-bit/64-bit) von Farbar Recovery Scan Tool (FRST) und speichere es auf den Desktop.
(Wenn du nicht sicher bist, welche du benötigst: Start -> Computer (Rechtsklick) -> Eigenschaften)

Starte dann FRST.
Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden zwei Logfiles FRST.txt und Addition.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieser beiden Logfiles bitte hier in deinen Thread.

Troja70 · 22.07.2013, 14:51

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2013
Ran by Agnes u. Manfred (administrator) on 22-07-2013 15:45:01
Running from C:\Downloads\Software
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Lavasoft Limited) C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Hauppauge Computer Works) C:\PROGRA~2\WinTV\EPG Services\System\EPGService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Program Files\Video downloader\ExtensionUpdaterService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe [51712 2012-07-26] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19603048 2013-06-03] (Skype Technologies S.A.)
HKCU\...\Run: [DeskSave] - E:\Kopien von D- DIV Software\DESKTOP Save\dsksve8\DeskSave.exe [x]
HKCU\...\Run: [Free Download Manager] - E:\Free Download Manager\fdm.exe -autorun [x]
MountPoints2: {dfb31cbd-cc3b-11e2-be8e-d43d7e2ef3ac} - "H:\pushinst.exe" 
HKLM-x32\...\Run: [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = WEB.DE - E-Mail-Adresse kostenlos, FreeMail, Nachrichten & Services
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
SearchScopes: HKCU - DefaultScope {9B859F9D-789A-428C-A8C7-2DDFAC5A5092} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://lavasoft.blekko.com/ws/?source=f439e2c0&tbp=rbox&toolbarid=adawaretb&u=255042DC321FCE543197715199FF3EB5&q={searchTerms}
SearchScopes: HKCU - {9B859F9D-789A-428C-A8C7-2DDFAC5A5092} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Video downloader - {77BEC163-D389-42c1-91A4-C758846296A5} - C:\Program Files\Video downloader\Extension64.dll ()
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Plus-HD-1.6 - {11111111-1111-1111-1111-110311201102} - C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-bho.dll (Plus HD)
BHO-x32: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Video downloader - {77BEC163-D389-42c1-91A4-C758846296A5} - C:\Program Files\Video downloader\Extension32.dll ()
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: FRITZ!Box Addon BHO - {C0C86BBE-9509-4296-8459-FDBFDAF4B673} - C:\Program Files (x86)\FRITZ!Box\AddOn (IE)\FBoxIESplitButton.dll (AVM Berlin)
BHO-x32: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - E:\Free Download Manager\iefdm2.dll No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: msdaipp - No CLSID Value - 
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler-x32: msdaipp - No CLSID Value - 
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default
FF user.js: detected! => C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\user.js
FF NewTab: hxxp://www.google.com/firefox
FF Homepage: ARD Startseite
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\adawaretb.xml
FF Extension: No Name - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com
FF Extension: fdm_ffext - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\fdm_ffext@freedownloadmanager.org
FF Extension: No Name - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\{d49175b3-3fd8-43b8-b28e-da5d47f3c398}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] C:\Program Files\Video downloader\Firefox
FF Extension: Video downloader - C:\Program Files\Video downloader\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] C:\Program Files\Video downloader\Firefox
FF Extension: Video downloader - C:\Program Files\Video downloader\Firefox
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR Extension: (Docs) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Plus-HD-1.6) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.23.23_0
CHR Extension: (Video downloader) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\khldgopgjjapmbkgflpoclebjjmkmbnk\2.0.0.432_0
CHR Extension: (SecureSearch) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfffjahnfbocnaooecgijfnbpcfekoik\1.0.0.1_0
CHR Extension: (Gmail) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Show Lyrics) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkahcfoiapkaglphahjnnmojmlbhnidb\1.114_0
CHR HKLM-x32\...\Chrome\Extension: [lfffjahnfbocnaooecgijfnbpcfekoik] - C:\ProgramData\adawaretb\shortcuts\chrome\adawaretb.crx

==================== Services (Whitelisted) =================

R2 Ad-Aware Service; C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe [1236336 2013-03-18] (Lavasoft Limited)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-05-14] (Adobe Systems)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 EPGService; C:\PROGRA~2\WinTV\EPG Services\System\EPGService.exe [437248 2008-05-30] (Hauppauge Computer Works)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
S4 SBAMSvc; C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [3677000 2012-09-20] (GFI Software)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
R2 Video downloader Updater; C:\Program Files\Video downloader\ExtensionUpdaterService.exe [188760 2013-06-23] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-30] ()
S3 AVEO; C:\Windows\system32\DRIVERS\AVEOdcnt.sys [307072 2010-04-01] (AVEO Corp)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2012-04-25] (AVM Berlin)
R3 fwlanusb5; C:\Windows\system32\DRIVERS\fwlanusb5.sys [982784 2012-08-21] (AVM GmbH)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [39504 2013-04-11] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-05-20] (GFI Software)
S3 hcw66xxx; C:\Windows\System32\Drivers\hcw66x64.sys [478720 2008-05-28] (Hauppauge Computer Works, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-22 15:44 - 2013-07-22 15:44 - 00001031 _____ C:\Users\Agnes u. Manfred\Desktop\FRST64 - Verknüpfung.lnk
2013-07-22 15:31 - 2013-07-22 15:31 - 00000000 ____D C:\FRST
2013-07-21 14:41 - 2013-07-21 14:41 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (H).lnk
2013-07-21 14:38 - 2013-07-21 14:38 - 00000000 ___HD C:\$WINDOWS.~BT
2013-07-21 11:57 - 2013-07-21 11:58 - 00000631 _____ C:\Users\Agnes u. Manfred\Desktop\Google Übersetzer.website
2013-07-20 18:11 - 2013-07-20 18:11 - 00003278 _____ C:\Windows\System32\Tasks\{DB4A1F0E-691F-4B1B-B269-9F1E44E28916}
2013-07-20 17:08 - 2013-07-22 15:36 - 00001230 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-20 17:08 - 2013-07-22 15:35 - 00001942 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-20 17:08 - 2013-07-22 15:35 - 00001866 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-20 17:08 - 2013-07-22 15:35 - 00001234 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-20 17:08 - 2013-07-22 15:35 - 00001134 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-20 17:08 - 2013-07-20 17:08 - 00004238 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-20 17:08 - 2013-07-20 17:08 - 00004234 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-20 17:08 - 2013-07-20 17:08 - 00004138 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-20 17:08 - 2013-07-20 17:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-20 16:48 - 2013-07-22 15:30 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Free Download Manager
2013-07-20 16:46 - 2013-07-20 16:46 - 07696614 _____ (FreeDownloadManager.ORG                                     ) C:\Users\Agnes u. Manfred\Downloads\fdminst.exe
2013-07-20 15:40 - 2013-07-21 14:39 - 00001908 _____ C:\Windows\diagwrn.xml
2013-07-20 15:40 - 2013-07-21 14:39 - 00001908 _____ C:\Windows\diagerr.xml
2013-07-20 15:25 - 2013-07-20 15:25 - 00170496 _____ C:\Users\Agnes u. Manfred\Documents\Win 8.cld
2013-07-20 15:05 - 2013-07-20 15:05 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\AdobeStockPhotos
2013-07-20 14:26 - 2013-07-20 14:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\default
2013-07-20 12:07 - 2013-07-20 12:43 - 1545468570 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part2.rar
2013-07-20 11:26 - 2013-07-20 12:03 - 1600000000 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part1.exe
2013-07-19 18:38 - 2013-07-19 18:38 - 00003066 _____ C:\Windows\System32\Tasks\{F43E42B0-C012-40AA-B29A-D6829368D375}
2013-07-18 21:41 - 2013-07-18 21:41 - 00462480 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-18 12:42 - 2013-07-22 15:39 - 00000794 _____ C:\Users\Agnes u. Manfred\Desktop\Bekämpfung - Trojaner-Board.website
2013-07-18 12:01 - 2013-07-18 12:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-17 22:46 - 2013-07-17 22:46 - 03532800 _____ C:\Users\Agnes u. Manfred\Documents\ws__RundumsAuto-nat (2).pps
2013-07-14 15:44 - 2013-07-14 15:44 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (I) -.lnk
2013-07-14 15:42 - 2013-07-21 14:38 - 00000277 _____ C:\Windows\setupact.log
2013-07-14 15:42 - 2013-07-21 14:37 - 00000000 _____ C:\Windows\setuperr.log
2013-07-14 12:33 - 2013-07-14 12:33 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Ulead VideoStudio
2013-07-13 11:24 - 2013-07-13 11:24 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Macromedia
2013-07-12 13:02 - 2013-07-22 15:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-12 13:02 - 2013-07-12 13:02 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-12 11:02 - 2013-07-12 11:02 - 00433865 _____ C:\Users\Agnes u. Manfred\Documents\Spielplan September 2013.zip
2013-07-12 10:48 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-07-12 10:48 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-07-12 10:48 - 2013-06-01 13:33 - 02233600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-07-12 10:48 - 2013-06-01 13:26 - 06987008 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-07-12 10:48 - 2013-06-01 13:26 - 00327936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-07-12 10:48 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-07-12 10:48 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-07-12 10:48 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2013-07-12 10:48 - 2013-06-01 11:22 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-07-12 10:48 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-07-12 10:48 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2013-07-12 10:48 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2013-07-12 10:48 - 2013-05-25 00:09 - 01403296 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-07-12 10:48 - 2013-05-25 00:09 - 01271584 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-07-12 10:48 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-07-12 10:48 - 2013-05-20 02:08 - 00386642 _____ C:\Windows\system32\ApnDatabase.xml
2013-07-12 10:47 - 2013-06-01 13:54 - 00194816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-07-12 10:47 - 2013-06-01 13:54 - 00125184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-07-12 10:47 - 2013-06-01 13:29 - 00337152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-07-12 10:47 - 2013-06-01 13:29 - 00213248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2013-07-12 10:47 - 2013-06-01 11:25 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-12 10:47 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2013-07-12 10:47 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-07-12 10:47 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2013-07-12 10:47 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2013-07-12 10:47 - 2013-06-01 11:22 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-07-12 10:47 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2013-07-12 10:47 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2013-07-12 10:47 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2013-07-12 10:47 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2013-07-12 10:47 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2013-07-12 10:47 - 2013-06-01 11:19 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2013-07-12 10:47 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2013-07-12 10:47 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2013-07-12 10:47 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-07-11 11:48 - 2013-06-01 11:25 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-11 11:48 - 2013-06-01 11:21 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-11 11:48 - 2013-05-31 01:14 - 04036096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-11 11:48 - 2013-04-12 00:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-11 11:48 - 2013-04-12 00:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-11 11:47 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-11 11:47 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-11 11:47 - 2013-06-12 01:25 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-11 11:47 - 2013-05-04 08:59 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-11 11:47 - 2013-05-04 06:57 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-08 15:25 - 2013-07-08 15:25 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\YoWindow
2013-07-05 19:35 - 2013-07-05 19:35 - 00001713 _____ C:\Users\Agnes u. Manfred\Desktop\Revouninstaller.lnk
2013-07-05 19:27 - 2013-07-05 19:27 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\VSRevoGroup
2013-07-05 19:22 - 2013-07-05 19:23 - 00000000 ____D C:\Users\Agnes u. Manfred\Revo Unistaller
2013-07-04 21:38 - 2013-07-13 13:43 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Demo-Fotos
2013-07-04 18:51 - 2013-07-18 21:41 - 00003794 _____ C:\Windows\PFRO.log
2013-07-04 16:44 - 2013-07-05 10:51 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Ad-Aware Antivirus
2013-07-04 12:17 - 2013-07-04 12:18 - 00000000 ____D C:\Windows\E63D89610BA94CF39E94407ACA42846C.TMP
2013-07-03 12:42 - 2013-07-03 12:42 - 00000000 _____ C:\Users\Agnes u. Manfred\Documents\SBArva.dll
2013-07-02 07:30 - 2013-07-02 07:30 - 00000867 _____ C:\Users\UpdatusUser\Desktop\MyUninstaller.lnk
2013-07-02 07:26 - 2013-07-02 07:30 - 00000000 ____D C:\Users\Agnes u. Manfred\Unistaller
2013-07-01 13:28 - 2013-07-01 13:28 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-01 10:58 - 2013-07-01 10:58 - 03225088 _____ C:\Users\Agnes u. Manfred\Documents\Erstaunliche Fotos dieser WeltGR.PPS
2013-06-30 14:18 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-06-30 14:18 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-06-30 14:17 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-06-24 17:47 - 2013-05-31 01:24 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-06-24 17:47 - 2013-05-31 01:08 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-06-24 17:47 - 2013-05-24 01:01 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-06-24 17:47 - 2013-05-24 00:27 - 01022464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-06-24 17:47 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2013-06-24 17:47 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2013-06-24 17:47 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2013-06-24 17:47 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2013-06-24 17:47 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2013-06-24 17:47 - 2013-05-04 09:34 - 00446720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-06-24 17:47 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2013-06-24 17:47 - 2013-05-04 09:30 - 00058312 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 01619968 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00251904 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-06-24 17:47 - 2013-05-04 08:58 - 10116096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 02305024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2013-06-24 17:47 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2013-06-24 17:47 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2013-06-24 17:47 - 2013-05-04 06:58 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-06-24 17:47 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 08857088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2013-06-24 17:47 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2013-06-24 17:47 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2013-06-24 17:47 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2013-06-24 17:47 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2013-06-23 20:45 - 2013-06-23 20:45 - 00000000 ____D C:\Program Files (x86)\MSECache
2013-06-23 13:39 - 2013-06-30 16:58 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-06-23 13:39 - 2013-06-30 14:17 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-06-23 13:39 - 2013-06-30 14:17 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-06-23 13:39 - 2013-06-30 14:17 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-06-23 13:38 - 2013-06-23 17:48 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-06-23 13:38 - 2013-06-23 13:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-23 13:38 - 2013-05-09 10:59 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-06-23 13:38 - 2013-05-09 10:58 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-06-23 13:38 - 2013-05-09 10:58 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-06-23 13:37 - 2013-06-23 13:38 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-23 13:25 - 2013-06-23 13:25 - 00000000 ___HD C:\kleaner.tmp
2013-06-23 12:27 - 2013-06-23 12:27 - 00000000 ___RD C:\Users\Agnes u. Manfred\Documents\Notes
2013-06-22 13:59 - 2013-07-22 14:17 - 01049600 ___SH C:\Users\Agnes u. Manfred\Documents\Thumbs.db
2013-06-22 12:54 - 2013-06-22 12:54 - 00001304 _____ C:\Users\Agnes u. Manfred\Desktop\Eigene     Dokumente.lnk

==================== One Month Modified Files and Folders =======

2013-07-22 15:44 - 2013-07-22 15:44 - 00001031 _____ C:\Users\Agnes u. Manfred\Desktop\FRST64 - Verknüpfung.lnk
2013-07-22 15:41 - 2013-07-12 13:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-22 15:40 - 2013-04-09 16:13 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-863825663-1150006700-3813104243-1002
2013-07-22 15:39 - 2013-07-18 12:42 - 00000794 _____ C:\Users\Agnes u. Manfred\Desktop\Bekämpfung - Trojaner-Board.website
2013-07-22 15:38 - 2013-06-10 14:55 - 00000000 ___RD C:\WIN SP3
2013-07-22 15:38 - 2013-04-10 13:05 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-22 15:37 - 2013-04-10 00:41 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Skype
2013-07-22 15:36 - 2013-07-20 17:08 - 00001230 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-22 15:36 - 2013-04-10 13:05 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-22 15:35 - 2013-07-20 17:08 - 00001942 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-22 15:35 - 2013-07-20 17:08 - 00001866 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-22 15:35 - 2013-07-20 17:08 - 00001234 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-22 15:35 - 2013-07-20 17:08 - 00001134 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-22 15:35 - 2013-05-21 14:29 - 00000420 _____ C:\Windows\Tasks\Show Lyrics Update.job
2013-07-22 15:35 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-22 15:34 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-07-22 15:31 - 2013-07-22 15:31 - 00000000 ____D C:\FRST
2013-07-22 15:30 - 2013-07-20 16:48 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Free Download Manager
2013-07-22 15:05 - 2013-04-14 00:43 - 00000539 _____ C:\Users\Agnes u. Manfred\Desktop\Dr. Windows.website
2013-07-22 15:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-07-22 14:56 - 2013-04-13 13:06 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BB1D36D0-37F3-484A-A790-E169D326BB90}
2013-07-22 14:53 - 2013-05-13 14:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-22 14:27 - 2013-05-08 10:20 - 01174078 _____ C:\Windows\WindowsUpdate.log
2013-07-22 14:17 - 2013-06-22 13:59 - 01049600 ___SH C:\Users\Agnes u. Manfred\Documents\Thumbs.db
2013-07-21 14:47 - 2013-04-13 17:52 - 00000000 ___RD C:\Users\Agnes u. Manfred\PPS z. Senden
2013-07-21 14:42 - 2012-10-19 17:41 - 00752930 _____ C:\Windows\system32\perfh007.dat
2013-07-21 14:42 - 2012-10-19 17:41 - 00156156 _____ C:\Windows\system32\perfc007.dat
2013-07-21 14:42 - 2012-07-26 09:28 - 01748838 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-21 14:41 - 2013-07-21 14:41 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (H).lnk
2013-07-21 14:39 - 2013-07-20 15:40 - 00001908 _____ C:\Windows\diagwrn.xml
2013-07-21 14:39 - 2013-07-20 15:40 - 00001908 _____ C:\Windows\diagerr.xml
2013-07-21 14:38 - 2013-07-21 14:38 - 00000000 ___HD C:\$WINDOWS.~BT
2013-07-21 14:38 - 2013-07-14 15:42 - 00000277 _____ C:\Windows\setupact.log
2013-07-21 14:37 - 2013-07-14 15:42 - 00000000 _____ C:\Windows\setuperr.log
2013-07-21 14:35 - 2013-04-15 18:31 - 00000000 ___RD C:\Users\Agnes u. Manfred\z.Aussortieren
2013-07-21 14:34 - 2013-04-09 16:01 - 00000000 ___RD C:\Users\Agnes u. Manfred
2013-07-21 11:58 - 2013-07-21 11:57 - 00000631 _____ C:\Users\Agnes u. Manfred\Desktop\Google Übersetzer.website
2013-07-20 18:11 - 2013-07-20 18:11 - 00003278 _____ C:\Windows\System32\Tasks\{DB4A1F0E-691F-4B1B-B269-9F1E44E28916}
2013-07-20 17:11 - 2013-04-14 21:06 - 00000000 ___RD C:\Users\Agnes u. Manfred\Desktop\Diverse           Dateien
2013-07-20 17:09 - 2013-04-17 13:54 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Adobe
2013-07-20 17:08 - 2013-07-20 17:08 - 00004238 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-20 17:08 - 2013-07-20 17:08 - 00004234 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-20 17:08 - 2013-07-20 17:08 - 00004138 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-20 17:08 - 2013-07-20 17:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-20 16:46 - 2013-07-20 16:46 - 07696614 _____ (FreeDownloadManager.ORG                                     ) C:\Users\Agnes u. Manfred\Downloads\fdminst.exe
2013-07-20 15:54 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-07-20 15:25 - 2013-07-20 15:25 - 00170496 _____ C:\Users\Agnes u. Manfred\Documents\Win 8.cld
2013-07-20 15:13 - 2013-04-09 16:01 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Adobe
2013-07-20 15:05 - 2013-07-20 15:05 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\AdobeStockPhotos
2013-07-20 14:26 - 2013-07-20 14:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\default
2013-07-20 12:43 - 2013-07-20 12:07 - 1545468570 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part2.rar
2013-07-20 12:03 - 2013-07-20 11:26 - 1600000000 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part1.exe
2013-07-19 18:38 - 2013-07-19 18:38 - 00003066 _____ C:\Windows\System32\Tasks\{F43E42B0-C012-40AA-B29A-D6829368D375}
2013-07-18 21:41 - 2013-07-18 21:41 - 00462480 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-18 21:41 - 2013-07-04 18:51 - 00003794 _____ C:\Windows\PFRO.log
2013-07-18 12:01 - 2013-07-18 12:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-17 22:46 - 2013-07-17 22:46 - 03532800 _____ C:\Users\Agnes u. Manfred\Documents\ws__RundumsAuto-nat (2).pps
2013-07-17 22:43 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe
2013-07-17 22:42 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-07-14 15:44 - 2013-07-14 15:44 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (I) -.lnk
2013-07-14 12:33 - 2013-07-14 12:33 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Ulead VideoStudio
2013-07-14 11:47 - 2013-04-16 18:59 - 00000000 ____D C:\Program Files (x86)\WinTV
2013-07-13 13:43 - 2013-07-04 21:38 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Demo-Fotos
2013-07-13 11:33 - 2013-04-10 13:05 - 00004116 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-13 11:33 - 2013-04-10 13:05 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-13 11:24 - 2013-07-13 11:24 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Macromedia
2013-07-12 21:18 - 2013-06-09 12:59 - 00000762 _____ C:\Users\Agnes u. Manfred\Desktop\Unitymedia - Kundencenter –.website
2013-07-12 16:32 - 2013-05-17 12:58 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-12 16:31 - 2013-05-17 12:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-12 13:14 - 2012-07-26 11:45 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-12 13:02 - 2013-07-12 13:02 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-12 13:02 - 2013-04-17 17:37 - 00000000 ____D C:\ProgramData\Adobe
2013-07-12 11:02 - 2013-07-12 11:02 - 00433865 _____ C:\Users\Agnes u. Manfred\Documents\Spielplan September 2013.zip
2013-07-11 14:50 - 2013-04-15 18:35 - 00040960 ___SH C:\Users\Agnes u. Manfred\Desktop\Thumbs.db
2013-07-11 12:57 - 2012-07-26 07:26 - 00000188 _____ C:\Windows\win.ini
2013-07-11 12:55 - 2012-10-19 18:17 - 78185248 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-07-08 15:25 - 2013-07-08 15:25 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\YoWindow
2013-07-08 14:44 - 2013-04-13 14:04 - 00000000 ____D C:\Users\Agnes u. Manfred\Privates
2013-07-07 14:31 - 2013-04-10 13:05 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\SwvUpdater
2013-07-07 10:18 - 2013-04-10 00:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-07 10:18 - 2013-04-10 00:41 - 00000000 ____D C:\ProgramData\Skype
2013-07-05 19:35 - 2013-07-05 19:35 - 00001713 _____ C:\Users\Agnes u. Manfred\Desktop\Revouninstaller.lnk
2013-07-05 19:27 - 2013-07-05 19:27 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\VSRevoGroup
2013-07-05 19:27 - 2013-04-09 16:01 - 00000000 ___RD C:\Users\Agnes u. Manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-05 19:23 - 2013-07-05 19:22 - 00000000 ____D C:\Users\Agnes u. Manfred\Revo Unistaller
2013-07-05 10:51 - 2013-07-04 16:44 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Ad-Aware Antivirus
2013-07-04 18:54 - 2013-05-20 12:48 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus
2013-07-04 12:18 - 2013-07-04 12:17 - 00000000 ____D C:\Windows\E63D89610BA94CF39E94407ACA42846C.TMP
2013-07-03 12:42 - 2013-07-03 12:42 - 00000000 _____ C:\Users\Agnes u. Manfred\Documents\SBArva.dll
2013-07-02 07:30 - 2013-07-02 07:30 - 00000867 _____ C:\Users\UpdatusUser\Desktop\MyUninstaller.lnk
2013-07-02 07:30 - 2013-07-02 07:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Unistaller
2013-07-02 06:59 - 2013-05-20 13:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-07-01 13:28 - 2013-07-01 13:28 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-01 10:58 - 2013-07-01 10:58 - 03225088 _____ C:\Users\Agnes u. Manfred\Documents\Erstaunliche Fotos dieser WeltGR.PPS
2013-06-30 16:58 - 2013-06-23 13:39 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-06-30 16:57 - 2013-04-10 13:05 - 00000000 ____D C:\Program Files\Video downloader
2013-06-30 16:57 - 2012-10-25 19:08 - 00000000 ____D C:\ProgramData\NVIDIA
2013-06-30 16:54 - 2012-10-25 19:08 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-30 16:53 - 2012-10-25 19:08 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-06-30 15:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-06-30 14:17 - 2013-06-30 14:18 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-06-30 14:17 - 2013-06-30 14:18 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-06-30 14:17 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-06-30 14:17 - 2013-06-23 13:39 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-06-30 14:17 - 2013-06-23 13:39 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-06-30 14:17 - 2013-06-23 13:39 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-06-28 00:04 - 2012-07-26 10:14 - 00693112 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-28 00:04 - 2012-07-26 10:14 - 00078200 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ToastData
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-06-25 19:11 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-06-25 19:11 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Dism
2013-06-25 14:30 - 2013-06-10 17:37 - 00000568 _____ C:\Users\Agnes u. Manfred\Desktop\Facebook.website
2013-06-25 14:30 - 2013-04-13 13:29 - 00000000 ___RD C:\Users\Agnes u. Manfred\Schriftverkehr
2013-06-23 20:45 - 2013-06-23 20:45 - 00000000 ____D C:\Program Files (x86)\MSECache
2013-06-23 20:45 - 2012-10-19 18:20 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-06-23 17:48 - 2013-06-23 13:38 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-06-23 17:02 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\servicing
2013-06-23 13:44 - 2013-04-10 13:05 - 00000000 ____D C:\Program Files (x86)\Google
2013-06-23 13:38 - 2013-06-23 13:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-23 13:38 - 2013-06-23 13:37 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-23 13:25 - 2013-06-23 13:25 - 00000000 ___HD C:\kleaner.tmp
2013-06-23 13:25 - 2013-04-11 22:25 - 00000000 ____D C:\Users\AGNESU~1~MAN
2013-06-23 13:25 - 2012-07-26 10:12 - 00000000 ___HD C:\Windows\ELAMBKUP
2013-06-23 13:25 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-06-23 12:27 - 2013-06-23 12:27 - 00000000 ___RD C:\Users\Agnes u. Manfred\Documents\Notes
2013-06-22 12:54 - 2013-06-22 12:54 - 00001304 _____ C:\Users\Agnes u. Manfred\Desktop\Eigene     Dokumente.lnk

Files to move or delete:
====================
C:\ProgramData\ntuser.dat

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2013-07-12 10:48] - [2013-06-01 13:34] - 2391280 ____A (Microsoft Corporation) 0E8E6463F81C80AFBED533E0F1F8895D

C:\Windows\SysWOW64\explorer.exe
[2013-07-12 10:48] - [2013-06-01 12:24] - 2106176 ____A (Microsoft Corporation) EAFE46B0292D2BD2467835E2ACF717CC

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2013-07-12 10:48] - [2013-06-01 13:26] - 0327936 ____A (Microsoft Corporation) 78A5BBA3819FFFC62FFEC3E2220D102D



LastRegBack: 2013-07-21 12:29

==================== End Of Log ============================

--- --- ---

--- --- ---

Sorry habe nur diese eine (FRST ) bekommen nach dem Scan, oder habe ich was falschgemacht?

Toja70

aharonov · 22.07.2013, 14:53

Zitat:

Sorry habe nur diese eine (FRST ) bekommen nach dem Scan, oder habe ich was falschgemacht?

Dann so:

Starte noch einmal FRST.

Setze bei Optional Scan den Haken bei Addition.txt und drücke Scan.
Wenn der Scan abgeschlossen ist, werden zwei neue Logfiles FRST.txt und Addition.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieser beiden Logfiles bitte hier in deinen Thread.

Troja70 · 22.07.2013, 17:06

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2013
Ran by Agnes u. Manfred (administrator) on 22-07-2013 18:01:01
Running from C:\Downloads\Software
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Lavasoft Limited) C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Hauppauge Computer Works) C:\PROGRA~2\WinTV\EPG Services\System\EPGService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Program Files\Video downloader\ExtensionUpdaterService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe [51712 2012-07-26] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19603048 2013-06-03] (Skype Technologies S.A.)
HKCU\...\Run: [DeskSave] - E:\Kopien von D- DIV Software\DESKTOP Save\dsksve8\DeskSave.exe [x]
HKCU\...\Run: [Free Download Manager] - E:\Free Download Manager\fdm.exe -autorun [x]
MountPoints2: {dfb31cbd-cc3b-11e2-be8e-d43d7e2ef3ac} - "H:\pushinst.exe" 
HKLM-x32\...\Run: [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
SearchScopes: HKCU - DefaultScope {9B859F9D-789A-428C-A8C7-2DDFAC5A5092} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://lavasoft.blekko.com/ws/?source=f439e2c0&tbp=rbox&toolbarid=adawaretb&u=255042DC321FCE543197715199FF3EB5&q={searchTerms}
SearchScopes: HKCU - {9B859F9D-789A-428C-A8C7-2DDFAC5A5092} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Video downloader - {77BEC163-D389-42c1-91A4-C758846296A5} - C:\Program Files\Video downloader\Extension64.dll ()
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Plus-HD-1.6 - {11111111-1111-1111-1111-110311201102} - C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-bho.dll (Plus HD)
BHO-x32: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Video downloader - {77BEC163-D389-42c1-91A4-C758846296A5} - C:\Program Files\Video downloader\Extension32.dll ()
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: FRITZ!Box Addon BHO - {C0C86BBE-9509-4296-8459-FDBFDAF4B673} - C:\Program Files (x86)\FRITZ!Box\AddOn (IE)\FBoxIESplitButton.dll (AVM Berlin)
BHO-x32: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - E:\Free Download Manager\iefdm2.dll No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: msdaipp - No CLSID Value - 
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler-x32: msdaipp - No CLSID Value - 
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File

FireFox:
========
FF ProfilePath: C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default
FF user.js: detected! => C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\user.js
FF NewTab: hxxp://www.google.com/firefox
FF Homepage: www.ard.de
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\adawaretb.xml
FF Extension: No Name - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com
FF Extension: fdm_ffext - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\fdm_ffext@freedownloadmanager.org
FF Extension: No Name - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\{d49175b3-3fd8-43b8-b28e-da5d47f3c398}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] C:\Program Files\Video downloader\Firefox
FF Extension: Video downloader - C:\Program Files\Video downloader\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] C:\Program Files\Video downloader\Firefox
FF Extension: Video downloader - C:\Program Files\Video downloader\Firefox
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR Extension: (Docs) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Plus-HD-1.6) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.23.23_0
CHR Extension: (Video downloader) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\khldgopgjjapmbkgflpoclebjjmkmbnk\2.0.0.432_0
CHR Extension: (SecureSearch) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfffjahnfbocnaooecgijfnbpcfekoik\1.0.0.1_0
CHR Extension: (Gmail) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Show Lyrics) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkahcfoiapkaglphahjnnmojmlbhnidb\1.114_0
CHR HKLM-x32\...\Chrome\Extension: [lfffjahnfbocnaooecgijfnbpcfekoik] - C:\ProgramData\adawaretb\shortcuts\chrome\adawaretb.crx

==================== Services (Whitelisted) =================

R2 Ad-Aware Service; C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe [1236336 2013-03-18] (Lavasoft Limited)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-05-14] (Adobe Systems)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 EPGService; C:\PROGRA~2\WinTV\EPG Services\System\EPGService.exe [437248 2008-05-30] (Hauppauge Computer Works)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
S4 SBAMSvc; C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [3677000 2012-09-20] (GFI Software)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
R2 Video downloader Updater; C:\Program Files\Video downloader\ExtensionUpdaterService.exe [188760 2013-06-23] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-30] ()
S3 AVEO; C:\Windows\system32\DRIVERS\AVEOdcnt.sys [307072 2010-04-01] (AVEO Corp)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2012-04-25] (AVM Berlin)
R3 fwlanusb5; C:\Windows\system32\DRIVERS\fwlanusb5.sys [982784 2012-08-21] (AVM GmbH)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [39504 2013-04-11] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-05-20] (GFI Software)
S3 hcw66xxx; C:\Windows\System32\Drivers\hcw66x64.sys [478720 2008-05-28] (Hauppauge Computer Works, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-22 15:44 - 2013-07-22 15:44 - 00001031 _____ C:\Users\Agnes u. Manfred\Desktop\FRST64 - Verknüpfung.lnk
2013-07-22 15:31 - 2013-07-22 15:31 - 00000000 ____D C:\FRST
2013-07-21 14:41 - 2013-07-21 14:41 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (H).lnk
2013-07-21 14:38 - 2013-07-21 14:38 - 00000000 ___HD C:\$WINDOWS.~BT
2013-07-21 11:57 - 2013-07-21 11:58 - 00000631 _____ C:\Users\Agnes u. Manfred\Desktop\Google Übersetzer.website
2013-07-20 18:11 - 2013-07-20 18:11 - 00003278 _____ C:\Windows\System32\Tasks\{DB4A1F0E-691F-4B1B-B269-9F1E44E28916}
2013-07-20 17:08 - 2013-07-22 17:54 - 00001942 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-20 17:08 - 2013-07-22 17:54 - 00001866 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-20 17:08 - 2013-07-22 17:54 - 00001234 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-20 17:08 - 2013-07-22 17:54 - 00001230 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-20 17:08 - 2013-07-22 17:54 - 00001134 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-20 17:08 - 2013-07-20 17:08 - 00004238 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-20 17:08 - 2013-07-20 17:08 - 00004234 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-20 17:08 - 2013-07-20 17:08 - 00004138 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-20 17:08 - 2013-07-20 17:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-20 16:48 - 2013-07-22 15:30 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Free Download Manager
2013-07-20 16:46 - 2013-07-20 16:46 - 07696614 _____ (FreeDownloadManager.ORG                                     ) C:\Users\Agnes u. Manfred\Downloads\fdminst.exe
2013-07-20 15:40 - 2013-07-21 14:39 - 00001908 _____ C:\Windows\diagwrn.xml
2013-07-20 15:40 - 2013-07-21 14:39 - 00001908 _____ C:\Windows\diagerr.xml
2013-07-20 15:25 - 2013-07-20 15:25 - 00170496 _____ C:\Users\Agnes u. Manfred\Documents\Win 8.cld
2013-07-20 15:05 - 2013-07-20 15:05 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\AdobeStockPhotos
2013-07-20 14:26 - 2013-07-20 14:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\default
2013-07-20 12:07 - 2013-07-20 12:43 - 1545468570 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part2.rar
2013-07-20 11:26 - 2013-07-20 12:03 - 1600000000 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part1.exe
2013-07-19 18:38 - 2013-07-19 18:38 - 00003066 _____ C:\Windows\System32\Tasks\{F43E42B0-C012-40AA-B29A-D6829368D375}
2013-07-18 21:41 - 2013-07-18 21:41 - 00462480 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-18 12:42 - 2013-07-22 15:51 - 00000794 _____ C:\Users\Agnes u. Manfred\Desktop\Bekämpfung - Trojaner-Board.website
2013-07-18 12:01 - 2013-07-18 12:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-17 22:46 - 2013-07-17 22:46 - 03532800 _____ C:\Users\Agnes u. Manfred\Documents\ws__RundumsAuto-nat (2).pps
2013-07-14 15:44 - 2013-07-14 15:44 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (I) -.lnk
2013-07-14 15:42 - 2013-07-21 14:38 - 00000277 _____ C:\Windows\setupact.log
2013-07-14 15:42 - 2013-07-21 14:37 - 00000000 _____ C:\Windows\setuperr.log
2013-07-14 12:33 - 2013-07-14 12:33 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Ulead VideoStudio
2013-07-13 11:24 - 2013-07-13 11:24 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Macromedia
2013-07-12 13:02 - 2013-07-22 15:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-12 13:02 - 2013-07-12 13:02 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-12 11:02 - 2013-07-12 11:02 - 00433865 _____ C:\Users\Agnes u. Manfred\Documents\Spielplan September 2013.zip
2013-07-12 10:48 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-07-12 10:48 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-07-12 10:48 - 2013-06-01 13:33 - 02233600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-07-12 10:48 - 2013-06-01 13:26 - 06987008 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-07-12 10:48 - 2013-06-01 13:26 - 00327936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-07-12 10:48 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-07-12 10:48 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-07-12 10:48 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2013-07-12 10:48 - 2013-06-01 11:22 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-07-12 10:48 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-07-12 10:48 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2013-07-12 10:48 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2013-07-12 10:48 - 2013-05-25 00:09 - 01403296 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-07-12 10:48 - 2013-05-25 00:09 - 01271584 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-07-12 10:48 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-07-12 10:48 - 2013-05-20 02:08 - 00386642 _____ C:\Windows\system32\ApnDatabase.xml
2013-07-12 10:47 - 2013-06-01 13:54 - 00194816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-07-12 10:47 - 2013-06-01 13:54 - 00125184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-07-12 10:47 - 2013-06-01 13:29 - 00337152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-07-12 10:47 - 2013-06-01 13:29 - 00213248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2013-07-12 10:47 - 2013-06-01 11:25 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-12 10:47 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2013-07-12 10:47 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-07-12 10:47 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2013-07-12 10:47 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2013-07-12 10:47 - 2013-06-01 11:22 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-07-12 10:47 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2013-07-12 10:47 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2013-07-12 10:47 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2013-07-12 10:47 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2013-07-12 10:47 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2013-07-12 10:47 - 2013-06-01 11:19 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2013-07-12 10:47 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2013-07-12 10:47 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2013-07-12 10:47 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-07-11 11:48 - 2013-06-01 11:25 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-11 11:48 - 2013-06-01 11:21 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-11 11:48 - 2013-05-31 01:14 - 04036096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-11 11:48 - 2013-04-12 00:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-11 11:48 - 2013-04-12 00:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-11 11:47 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-11 11:47 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-11 11:47 - 2013-06-12 01:25 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-11 11:47 - 2013-05-04 08:59 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-11 11:47 - 2013-05-04 06:57 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-08 15:25 - 2013-07-08 15:25 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\YoWindow
2013-07-05 19:35 - 2013-07-05 19:35 - 00001713 _____ C:\Users\Agnes u. Manfred\Desktop\Revouninstaller.lnk
2013-07-05 19:27 - 2013-07-05 19:27 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\VSRevoGroup
2013-07-05 19:22 - 2013-07-05 19:23 - 00000000 ____D C:\Users\Agnes u. Manfred\Revo Unistaller
2013-07-04 21:38 - 2013-07-13 13:43 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Demo-Fotos
2013-07-04 18:51 - 2013-07-18 21:41 - 00003794 _____ C:\Windows\PFRO.log
2013-07-04 16:44 - 2013-07-05 10:51 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Ad-Aware Antivirus
2013-07-04 12:17 - 2013-07-04 12:18 - 00000000 ____D C:\Windows\E63D89610BA94CF39E94407ACA42846C.TMP
2013-07-03 12:42 - 2013-07-03 12:42 - 00000000 _____ C:\Users\Agnes u. Manfred\Documents\SBArva.dll
2013-07-02 07:30 - 2013-07-02 07:30 - 00000867 _____ C:\Users\UpdatusUser\Desktop\MyUninstaller.lnk
2013-07-02 07:26 - 2013-07-02 07:30 - 00000000 ____D C:\Users\Agnes u. Manfred\Unistaller
2013-07-01 13:28 - 2013-07-01 13:28 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-01 10:58 - 2013-07-01 10:58 - 03225088 _____ C:\Users\Agnes u. Manfred\Documents\Erstaunliche Fotos dieser WeltGR.PPS
2013-06-30 14:18 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-06-30 14:18 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-06-30 14:17 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-06-24 17:47 - 2013-05-31 01:24 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-06-24 17:47 - 2013-05-31 01:08 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-06-24 17:47 - 2013-05-24 01:01 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-06-24 17:47 - 2013-05-24 00:27 - 01022464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-06-24 17:47 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2013-06-24 17:47 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2013-06-24 17:47 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2013-06-24 17:47 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2013-06-24 17:47 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2013-06-24 17:47 - 2013-05-04 09:34 - 00446720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-06-24 17:47 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2013-06-24 17:47 - 2013-05-04 09:30 - 00058312 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 01619968 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00251904 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-06-24 17:47 - 2013-05-04 08:58 - 10116096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 02305024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2013-06-24 17:47 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2013-06-24 17:47 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2013-06-24 17:47 - 2013-05-04 06:58 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-06-24 17:47 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 08857088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2013-06-24 17:47 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2013-06-24 17:47 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2013-06-24 17:47 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2013-06-24 17:47 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2013-06-23 20:45 - 2013-06-23 20:45 - 00000000 ____D C:\Program Files (x86)\MSECache
2013-06-23 13:39 - 2013-06-30 16:58 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-06-23 13:39 - 2013-06-30 14:17 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-06-23 13:39 - 2013-06-30 14:17 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-06-23 13:39 - 2013-06-30 14:17 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-06-23 13:38 - 2013-06-23 17:48 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-06-23 13:38 - 2013-06-23 13:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-23 13:38 - 2013-05-09 10:59 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-06-23 13:38 - 2013-05-09 10:58 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-06-23 13:38 - 2013-05-09 10:58 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-06-23 13:37 - 2013-06-23 13:38 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-23 13:25 - 2013-06-23 13:25 - 00000000 ___HD C:\kleaner.tmp
2013-06-23 12:27 - 2013-06-23 12:27 - 00000000 ___RD C:\Users\Agnes u. Manfred\Documents\Notes
2013-06-22 13:59 - 2013-07-22 14:17 - 01049600 ___SH C:\Users\Agnes u. Manfred\Documents\Thumbs.db
2013-06-22 12:54 - 2013-06-22 12:54 - 00001304 _____ C:\Users\Agnes u. Manfred\Desktop\Eigene     Dokumente.lnk

==================== One Month Modified Files and Folders =======

2013-07-22 18:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-07-22 17:59 - 2013-04-09 16:13 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-863825663-1150006700-3813104243-1002
2013-07-22 17:55 - 2013-04-10 00:41 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Skype
2013-07-22 17:54 - 2013-07-20 17:08 - 00001942 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-22 17:54 - 2013-07-20 17:08 - 00001866 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-22 17:54 - 2013-07-20 17:08 - 00001234 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-22 17:54 - 2013-07-20 17:08 - 00001230 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-22 17:54 - 2013-07-20 17:08 - 00001134 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-22 17:54 - 2013-05-21 14:29 - 00000420 _____ C:\Windows\Tasks\Show Lyrics Update.job
2013-07-22 17:54 - 2013-04-10 13:05 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-22 15:51 - 2013-07-18 12:42 - 00000794 _____ C:\Users\Agnes u. Manfred\Desktop\Bekämpfung - Trojaner-Board.website
2013-07-22 15:44 - 2013-07-22 15:44 - 00001031 _____ C:\Users\Agnes u. Manfred\Desktop\FRST64 - Verknüpfung.lnk
2013-07-22 15:41 - 2013-07-12 13:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-22 15:38 - 2013-06-10 14:55 - 00000000 ___RD C:\WIN SP3
2013-07-22 15:38 - 2013-04-10 13:05 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-22 15:35 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-22 15:34 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-07-22 15:31 - 2013-07-22 15:31 - 00000000 ____D C:\FRST
2013-07-22 15:30 - 2013-07-20 16:48 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Free Download Manager
2013-07-22 15:05 - 2013-04-14 00:43 - 00000539 _____ C:\Users\Agnes u. Manfred\Desktop\Dr. Windows.website
2013-07-22 14:56 - 2013-04-13 13:06 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BB1D36D0-37F3-484A-A790-E169D326BB90}
2013-07-22 14:53 - 2013-05-13 14:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-22 14:27 - 2013-05-08 10:20 - 01194936 _____ C:\Windows\WindowsUpdate.log
2013-07-22 14:17 - 2013-06-22 13:59 - 01049600 ___SH C:\Users\Agnes u. Manfred\Documents\Thumbs.db
2013-07-21 14:47 - 2013-04-13 17:52 - 00000000 ___RD C:\Users\Agnes u. Manfred\PPS z. Senden
2013-07-21 14:42 - 2012-10-19 17:41 - 00752930 _____ C:\Windows\system32\perfh007.dat
2013-07-21 14:42 - 2012-10-19 17:41 - 00156156 _____ C:\Windows\system32\perfc007.dat
2013-07-21 14:42 - 2012-07-26 09:28 - 01748838 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-21 14:41 - 2013-07-21 14:41 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (H).lnk
2013-07-21 14:39 - 2013-07-20 15:40 - 00001908 _____ C:\Windows\diagwrn.xml
2013-07-21 14:39 - 2013-07-20 15:40 - 00001908 _____ C:\Windows\diagerr.xml
2013-07-21 14:38 - 2013-07-21 14:38 - 00000000 ___HD C:\$WINDOWS.~BT
2013-07-21 14:38 - 2013-07-14 15:42 - 00000277 _____ C:\Windows\setupact.log
2013-07-21 14:37 - 2013-07-14 15:42 - 00000000 _____ C:\Windows\setuperr.log
2013-07-21 14:35 - 2013-04-15 18:31 - 00000000 ___RD C:\Users\Agnes u. Manfred\z.Aussortieren
2013-07-21 14:34 - 2013-04-09 16:01 - 00000000 ___RD C:\Users\Agnes u. Manfred
2013-07-21 11:58 - 2013-07-21 11:57 - 00000631 _____ C:\Users\Agnes u. Manfred\Desktop\Google Übersetzer.website
2013-07-20 18:11 - 2013-07-20 18:11 - 00003278 _____ C:\Windows\System32\Tasks\{DB4A1F0E-691F-4B1B-B269-9F1E44E28916}
2013-07-20 17:11 - 2013-04-14 21:06 - 00000000 ___RD C:\Users\Agnes u. Manfred\Desktop\Diverse           Dateien
2013-07-20 17:09 - 2013-04-17 13:54 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Adobe
2013-07-20 17:08 - 2013-07-20 17:08 - 00004238 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-20 17:08 - 2013-07-20 17:08 - 00004234 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-20 17:08 - 2013-07-20 17:08 - 00004138 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-20 17:08 - 2013-07-20 17:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-20 16:46 - 2013-07-20 16:46 - 07696614 _____ (FreeDownloadManager.ORG                                     ) C:\Users\Agnes u. Manfred\Downloads\fdminst.exe
2013-07-20 15:54 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-07-20 15:25 - 2013-07-20 15:25 - 00170496 _____ C:\Users\Agnes u. Manfred\Documents\Win 8.cld
2013-07-20 15:13 - 2013-04-09 16:01 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Adobe
2013-07-20 15:05 - 2013-07-20 15:05 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\AdobeStockPhotos
2013-07-20 14:26 - 2013-07-20 14:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\default
2013-07-20 12:43 - 2013-07-20 12:07 - 1545468570 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part2.rar
2013-07-20 12:03 - 2013-07-20 11:26 - 1600000000 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part1.exe
2013-07-19 18:38 - 2013-07-19 18:38 - 00003066 _____ C:\Windows\System32\Tasks\{F43E42B0-C012-40AA-B29A-D6829368D375}
2013-07-18 21:41 - 2013-07-18 21:41 - 00462480 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-18 21:41 - 2013-07-04 18:51 - 00003794 _____ C:\Windows\PFRO.log
2013-07-18 12:01 - 2013-07-18 12:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-17 22:46 - 2013-07-17 22:46 - 03532800 _____ C:\Users\Agnes u. Manfred\Documents\ws__RundumsAuto-nat (2).pps
2013-07-17 22:43 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe
2013-07-17 22:42 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-07-14 15:44 - 2013-07-14 15:44 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (I) -.lnk
2013-07-14 12:33 - 2013-07-14 12:33 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Ulead VideoStudio
2013-07-14 11:47 - 2013-04-16 18:59 - 00000000 ____D C:\Program Files (x86)\WinTV
2013-07-13 13:43 - 2013-07-04 21:38 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Demo-Fotos
2013-07-13 11:33 - 2013-04-10 13:05 - 00004116 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-13 11:33 - 2013-04-10 13:05 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-13 11:24 - 2013-07-13 11:24 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Macromedia
2013-07-12 21:18 - 2013-06-09 12:59 - 00000762 _____ C:\Users\Agnes u. Manfred\Desktop\Unitymedia - Kundencenter –.website
2013-07-12 16:32 - 2013-05-17 12:58 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-12 16:31 - 2013-05-17 12:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-12 13:14 - 2012-07-26 11:45 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-12 13:02 - 2013-07-12 13:02 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-12 13:02 - 2013-04-17 17:37 - 00000000 ____D C:\ProgramData\Adobe
2013-07-12 11:02 - 2013-07-12 11:02 - 00433865 _____ C:\Users\Agnes u. Manfred\Documents\Spielplan September 2013.zip
2013-07-11 14:50 - 2013-04-15 18:35 - 00040960 ___SH C:\Users\Agnes u. Manfred\Desktop\Thumbs.db
2013-07-11 12:57 - 2012-07-26 07:26 - 00000188 _____ C:\Windows\win.ini
2013-07-11 12:55 - 2012-10-19 18:17 - 78185248 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-07-08 15:25 - 2013-07-08 15:25 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\YoWindow
2013-07-08 14:44 - 2013-04-13 14:04 - 00000000 ____D C:\Users\Agnes u. Manfred\Privates
2013-07-07 14:31 - 2013-04-10 13:05 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\SwvUpdater
2013-07-07 10:18 - 2013-04-10 00:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-07 10:18 - 2013-04-10 00:41 - 00000000 ____D C:\ProgramData\Skype
2013-07-05 19:35 - 2013-07-05 19:35 - 00001713 _____ C:\Users\Agnes u. Manfred\Desktop\Revouninstaller.lnk
2013-07-05 19:27 - 2013-07-05 19:27 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\VSRevoGroup
2013-07-05 19:27 - 2013-04-09 16:01 - 00000000 ___RD C:\Users\Agnes u. Manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-05 19:23 - 2013-07-05 19:22 - 00000000 ____D C:\Users\Agnes u. Manfred\Revo Unistaller
2013-07-05 10:51 - 2013-07-04 16:44 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Ad-Aware Antivirus
2013-07-04 18:54 - 2013-05-20 12:48 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus
2013-07-04 12:18 - 2013-07-04 12:17 - 00000000 ____D C:\Windows\E63D89610BA94CF39E94407ACA42846C.TMP
2013-07-03 12:42 - 2013-07-03 12:42 - 00000000 _____ C:\Users\Agnes u. Manfred\Documents\SBArva.dll
2013-07-02 07:30 - 2013-07-02 07:30 - 00000867 _____ C:\Users\UpdatusUser\Desktop\MyUninstaller.lnk
2013-07-02 07:30 - 2013-07-02 07:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Unistaller
2013-07-02 06:59 - 2013-05-20 13:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-07-01 13:28 - 2013-07-01 13:28 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-01 10:58 - 2013-07-01 10:58 - 03225088 _____ C:\Users\Agnes u. Manfred\Documents\Erstaunliche Fotos dieser WeltGR.PPS
2013-06-30 16:58 - 2013-06-23 13:39 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-06-30 16:57 - 2013-04-10 13:05 - 00000000 ____D C:\Program Files\Video downloader
2013-06-30 16:57 - 2012-10-25 19:08 - 00000000 ____D C:\ProgramData\NVIDIA
2013-06-30 16:54 - 2012-10-25 19:08 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-30 16:53 - 2012-10-25 19:08 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-06-30 15:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-06-30 14:17 - 2013-06-30 14:18 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-06-30 14:17 - 2013-06-30 14:18 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-06-30 14:17 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-06-30 14:17 - 2013-06-23 13:39 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-06-30 14:17 - 2013-06-23 13:39 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-06-30 14:17 - 2013-06-23 13:39 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-06-28 00:04 - 2012-07-26 10:14 - 00693112 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-28 00:04 - 2012-07-26 10:14 - 00078200 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ToastData
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-06-25 19:11 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-06-25 19:11 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Dism
2013-06-25 14:30 - 2013-06-10 17:37 - 00000568 _____ C:\Users\Agnes u. Manfred\Desktop\Facebook.website
2013-06-25 14:30 - 2013-04-13 13:29 - 00000000 ___RD C:\Users\Agnes u. Manfred\Schriftverkehr
2013-06-23 20:45 - 2013-06-23 20:45 - 00000000 ____D C:\Program Files (x86)\MSECache
2013-06-23 20:45 - 2012-10-19 18:20 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-06-23 17:48 - 2013-06-23 13:38 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-06-23 17:02 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\servicing
2013-06-23 13:44 - 2013-04-10 13:05 - 00000000 ____D C:\Program Files (x86)\Google
2013-06-23 13:38 - 2013-06-23 13:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-23 13:38 - 2013-06-23 13:37 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-23 13:25 - 2013-06-23 13:25 - 00000000 ___HD C:\kleaner.tmp
2013-06-23 13:25 - 2013-04-11 22:25 - 00000000 ____D C:\Users\AGNESU~1~MAN
2013-06-23 13:25 - 2012-07-26 10:12 - 00000000 ___HD C:\Windows\ELAMBKUP
2013-06-23 13:25 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-06-23 12:27 - 2013-06-23 12:27 - 00000000 ___RD C:\Users\Agnes u. Manfred\Documents\Notes
2013-06-22 12:54 - 2013-06-22 12:54 - 00001304 _____ C:\Users\Agnes u. Manfred\Desktop\Eigene     Dokumente.lnk

Files to move or delete:
====================
C:\ProgramData\ntuser.dat

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2013-07-12 10:48] - [2013-06-01 13:34] - 2391280 ____A (Microsoft Corporation) 0E8E6463F81C80AFBED533E0F1F8895D

C:\Windows\SysWOW64\explorer.exe
[2013-07-12 10:48] - [2013-06-01 12:24] - 2106176 ____A (Microsoft Corporation) EAFE46B0292D2BD2467835E2ACF717CC

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2013-07-12 10:48] - [2013-06-01 13:26] - 0327936 ____A (Microsoft Corporation) 78A5BBA3819FFFC62FFEC3E2220D102D



LastRegBack: 2013-07-21 12:29

==================== End Of Log ============================

--- --- ---

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2013
Ran by Agnes u. Manfred (administrator) on 22-07-2013 18:01:01
Running from C:\Downloads\Software
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Lavasoft Limited) C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Hauppauge Computer Works) C:\PROGRA~2\WinTV\EPG Services\System\EPGService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Program Files\Video downloader\ExtensionUpdaterService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe [51712 2012-07-26] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19603048 2013-06-03] (Skype Technologies S.A.)
HKCU\...\Run: [DeskSave] - E:\Kopien von D- DIV Software\DESKTOP Save\dsksve8\DeskSave.exe [x]
HKCU\...\Run: [Free Download Manager] - E:\Free Download Manager\fdm.exe -autorun [x]
MountPoints2: {dfb31cbd-cc3b-11e2-be8e-d43d7e2ef3ac} - "H:\pushinst.exe" 
HKLM-x32\...\Run: [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
SearchScopes: HKCU - DefaultScope {9B859F9D-789A-428C-A8C7-2DDFAC5A5092} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://lavasoft.blekko.com/ws/?source=f439e2c0&tbp=rbox&toolbarid=adawaretb&u=255042DC321FCE543197715199FF3EB5&q={searchTerms}
SearchScopes: HKCU - {9B859F9D-789A-428C-A8C7-2DDFAC5A5092} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Video downloader - {77BEC163-D389-42c1-91A4-C758846296A5} - C:\Program Files\Video downloader\Extension64.dll ()
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Plus-HD-1.6 - {11111111-1111-1111-1111-110311201102} - C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-bho.dll (Plus HD)
BHO-x32: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Video downloader - {77BEC163-D389-42c1-91A4-C758846296A5} - C:\Program Files\Video downloader\Extension32.dll ()
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: FRITZ!Box Addon BHO - {C0C86BBE-9509-4296-8459-FDBFDAF4B673} - C:\Program Files (x86)\FRITZ!Box\AddOn (IE)\FBoxIESplitButton.dll (AVM Berlin)
BHO-x32: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - E:\Free Download Manager\iefdm2.dll No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: msdaipp - No CLSID Value - 
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler-x32: msdaipp - No CLSID Value - 
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File

FireFox:
========
FF ProfilePath: C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default
FF user.js: detected! => C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\user.js
FF NewTab: hxxp://www.google.com/firefox
FF Homepage: www.ard.de
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\adawaretb.xml
FF Extension: No Name - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com
FF Extension: fdm_ffext - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\fdm_ffext@freedownloadmanager.org
FF Extension: No Name - C:\Users\Agnes u. Manfred\AppData\Roaming\Mozilla\Firefox\Profiles\xbs1mchy.default\Extensions\{d49175b3-3fd8-43b8-b28e-da5d47f3c398}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] C:\Program Files\Video downloader\Firefox
FF Extension: Video downloader - C:\Program Files\Video downloader\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] C:\Program Files\Video downloader\Firefox
FF Extension: Video downloader - C:\Program Files\Video downloader\Firefox
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR Extension: (Docs) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Plus-HD-1.6) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.23.23_0
CHR Extension: (Video downloader) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\khldgopgjjapmbkgflpoclebjjmkmbnk\2.0.0.432_0
CHR Extension: (SecureSearch) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfffjahnfbocnaooecgijfnbpcfekoik\1.0.0.1_0
CHR Extension: (Gmail) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Show Lyrics) - C:\Users\AGNESU~1.MAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkahcfoiapkaglphahjnnmojmlbhnidb\1.114_0
CHR HKLM-x32\...\Chrome\Extension: [lfffjahnfbocnaooecgijfnbpcfekoik] - C:\ProgramData\adawaretb\shortcuts\chrome\adawaretb.crx

==================== Services (Whitelisted) =================

R2 Ad-Aware Service; C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe [1236336 2013-03-18] (Lavasoft Limited)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-05-14] (Adobe Systems)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 EPGService; C:\PROGRA~2\WinTV\EPG Services\System\EPGService.exe [437248 2008-05-30] (Hauppauge Computer Works)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
S4 SBAMSvc; C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [3677000 2012-09-20] (GFI Software)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
R2 Video downloader Updater; C:\Program Files\Video downloader\ExtensionUpdaterService.exe [188760 2013-06-23] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-30] ()
S3 AVEO; C:\Windows\system32\DRIVERS\AVEOdcnt.sys [307072 2010-04-01] (AVEO Corp)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2012-04-25] (AVM Berlin)
R3 fwlanusb5; C:\Windows\system32\DRIVERS\fwlanusb5.sys [982784 2012-08-21] (AVM GmbH)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [39504 2013-04-11] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-05-20] (GFI Software)
S3 hcw66xxx; C:\Windows\System32\Drivers\hcw66x64.sys [478720 2008-05-28] (Hauppauge Computer Works, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-22 15:44 - 2013-07-22 15:44 - 00001031 _____ C:\Users\Agnes u. Manfred\Desktop\FRST64 - Verknüpfung.lnk
2013-07-22 15:31 - 2013-07-22 15:31 - 00000000 ____D C:\FRST
2013-07-21 14:41 - 2013-07-21 14:41 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (H).lnk
2013-07-21 14:38 - 2013-07-21 14:38 - 00000000 ___HD C:\$WINDOWS.~BT
2013-07-21 11:57 - 2013-07-21 11:58 - 00000631 _____ C:\Users\Agnes u. Manfred\Desktop\Google Übersetzer.website
2013-07-20 18:11 - 2013-07-20 18:11 - 00003278 _____ C:\Windows\System32\Tasks\{DB4A1F0E-691F-4B1B-B269-9F1E44E28916}
2013-07-20 17:08 - 2013-07-22 17:54 - 00001942 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-20 17:08 - 2013-07-22 17:54 - 00001866 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-20 17:08 - 2013-07-22 17:54 - 00001234 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-20 17:08 - 2013-07-22 17:54 - 00001230 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-20 17:08 - 2013-07-22 17:54 - 00001134 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-20 17:08 - 2013-07-20 17:08 - 00004238 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-20 17:08 - 2013-07-20 17:08 - 00004234 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-20 17:08 - 2013-07-20 17:08 - 00004138 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-20 17:08 - 2013-07-20 17:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-20 16:48 - 2013-07-22 15:30 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Free Download Manager
2013-07-20 16:46 - 2013-07-20 16:46 - 07696614 _____ (FreeDownloadManager.ORG                                     ) C:\Users\Agnes u. Manfred\Downloads\fdminst.exe
2013-07-20 15:40 - 2013-07-21 14:39 - 00001908 _____ C:\Windows\diagwrn.xml
2013-07-20 15:40 - 2013-07-21 14:39 - 00001908 _____ C:\Windows\diagerr.xml
2013-07-20 15:25 - 2013-07-20 15:25 - 00170496 _____ C:\Users\Agnes u. Manfred\Documents\Win 8.cld
2013-07-20 15:05 - 2013-07-20 15:05 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\AdobeStockPhotos
2013-07-20 14:26 - 2013-07-20 14:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\default
2013-07-20 12:07 - 2013-07-20 12:43 - 1545468570 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part2.rar
2013-07-20 11:26 - 2013-07-20 12:03 - 1600000000 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part1.exe
2013-07-19 18:38 - 2013-07-19 18:38 - 00003066 _____ C:\Windows\System32\Tasks\{F43E42B0-C012-40AA-B29A-D6829368D375}
2013-07-18 21:41 - 2013-07-18 21:41 - 00462480 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-18 12:42 - 2013-07-22 15:51 - 00000794 _____ C:\Users\Agnes u. Manfred\Desktop\Bekämpfung - Trojaner-Board.website
2013-07-18 12:01 - 2013-07-18 12:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-17 22:46 - 2013-07-17 22:46 - 03532800 _____ C:\Users\Agnes u. Manfred\Documents\ws__RundumsAuto-nat (2).pps
2013-07-14 15:44 - 2013-07-14 15:44 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (I) -.lnk
2013-07-14 15:42 - 2013-07-21 14:38 - 00000277 _____ C:\Windows\setupact.log
2013-07-14 15:42 - 2013-07-21 14:37 - 00000000 _____ C:\Windows\setuperr.log
2013-07-14 12:33 - 2013-07-14 12:33 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Ulead VideoStudio
2013-07-13 11:24 - 2013-07-13 11:24 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Macromedia
2013-07-12 13:02 - 2013-07-22 15:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-12 13:02 - 2013-07-12 13:02 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-12 11:02 - 2013-07-12 11:02 - 00433865 _____ C:\Users\Agnes u. Manfred\Documents\Spielplan September 2013.zip
2013-07-12 10:48 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-07-12 10:48 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-07-12 10:48 - 2013-06-01 13:33 - 02233600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-07-12 10:48 - 2013-06-01 13:26 - 06987008 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-07-12 10:48 - 2013-06-01 13:26 - 00327936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-07-12 10:48 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-07-12 10:48 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-07-12 10:48 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2013-07-12 10:48 - 2013-06-01 11:22 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-07-12 10:48 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-07-12 10:48 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2013-07-12 10:48 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2013-07-12 10:48 - 2013-05-25 00:09 - 01403296 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-07-12 10:48 - 2013-05-25 00:09 - 01271584 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-07-12 10:48 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-07-12 10:48 - 2013-05-20 02:08 - 00386642 _____ C:\Windows\system32\ApnDatabase.xml
2013-07-12 10:47 - 2013-06-01 13:54 - 00194816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-07-12 10:47 - 2013-06-01 13:54 - 00125184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-07-12 10:47 - 2013-06-01 13:29 - 00337152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-07-12 10:47 - 2013-06-01 13:29 - 00213248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2013-07-12 10:47 - 2013-06-01 11:25 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-12 10:47 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2013-07-12 10:47 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-07-12 10:47 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2013-07-12 10:47 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2013-07-12 10:47 - 2013-06-01 11:22 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-07-12 10:47 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2013-07-12 10:47 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2013-07-12 10:47 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2013-07-12 10:47 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2013-07-12 10:47 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2013-07-12 10:47 - 2013-06-01 11:19 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2013-07-12 10:47 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2013-07-12 10:47 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2013-07-12 10:47 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-07-11 11:48 - 2013-06-01 11:25 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-11 11:48 - 2013-06-01 11:21 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-11 11:48 - 2013-05-31 01:14 - 04036096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-11 11:48 - 2013-04-12 00:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-11 11:48 - 2013-04-12 00:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-11 11:47 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-11 11:47 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-11 11:47 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-11 11:47 - 2013-06-12 01:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-11 11:47 - 2013-06-12 01:25 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-11 11:47 - 2013-06-12 01:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-11 11:47 - 2013-05-04 08:59 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-11 11:47 - 2013-05-04 06:57 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-08 15:25 - 2013-07-08 15:25 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\YoWindow
2013-07-05 19:35 - 2013-07-05 19:35 - 00001713 _____ C:\Users\Agnes u. Manfred\Desktop\Revouninstaller.lnk
2013-07-05 19:27 - 2013-07-05 19:27 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\VSRevoGroup
2013-07-05 19:22 - 2013-07-05 19:23 - 00000000 ____D C:\Users\Agnes u. Manfred\Revo Unistaller
2013-07-04 21:38 - 2013-07-13 13:43 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Demo-Fotos
2013-07-04 18:51 - 2013-07-18 21:41 - 00003794 _____ C:\Windows\PFRO.log
2013-07-04 16:44 - 2013-07-05 10:51 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Ad-Aware Antivirus
2013-07-04 12:17 - 2013-07-04 12:18 - 00000000 ____D C:\Windows\E63D89610BA94CF39E94407ACA42846C.TMP
2013-07-03 12:42 - 2013-07-03 12:42 - 00000000 _____ C:\Users\Agnes u. Manfred\Documents\SBArva.dll
2013-07-02 07:30 - 2013-07-02 07:30 - 00000867 _____ C:\Users\UpdatusUser\Desktop\MyUninstaller.lnk
2013-07-02 07:26 - 2013-07-02 07:30 - 00000000 ____D C:\Users\Agnes u. Manfred\Unistaller
2013-07-01 13:28 - 2013-07-01 13:28 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-01 10:58 - 2013-07-01 10:58 - 03225088 _____ C:\Users\Agnes u. Manfred\Documents\Erstaunliche Fotos dieser WeltGR.PPS
2013-06-30 14:18 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-06-30 14:18 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-06-30 14:17 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-06-24 17:47 - 2013-05-31 01:24 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-06-24 17:47 - 2013-05-31 01:08 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-06-24 17:47 - 2013-05-24 01:01 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-06-24 17:47 - 2013-05-24 00:27 - 01022464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-06-24 17:47 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2013-06-24 17:47 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2013-06-24 17:47 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2013-06-24 17:47 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2013-06-24 17:47 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2013-06-24 17:47 - 2013-05-04 09:34 - 00446720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-06-24 17:47 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2013-06-24 17:47 - 2013-05-04 09:30 - 00058312 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 01619968 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2013-06-24 17:47 - 2013-05-04 08:59 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00251904 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-06-24 17:47 - 2013-05-04 08:59 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-06-24 17:47 - 2013-05-04 08:58 - 10116096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2013-06-24 17:47 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 02305024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2013-06-24 17:47 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2013-06-24 17:47 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2013-06-24 17:47 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2013-06-24 17:47 - 2013-05-04 06:58 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-06-24 17:47 - 2013-05-04 06:58 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-06-24 17:47 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 08857088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2013-06-24 17:47 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2013-06-24 17:47 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2013-06-24 17:47 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2013-06-24 17:47 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2013-06-24 17:47 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2013-06-24 17:47 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2013-06-23 20:45 - 2013-06-23 20:45 - 00000000 ____D C:\Program Files (x86)\MSECache
2013-06-23 13:39 - 2013-06-30 16:58 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-06-23 13:39 - 2013-06-30 14:17 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-06-23 13:39 - 2013-06-30 14:17 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-06-23 13:39 - 2013-06-30 14:17 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-06-23 13:39 - 2013-05-09 10:59 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-06-23 13:38 - 2013-06-23 17:48 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-06-23 13:38 - 2013-06-23 13:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-23 13:38 - 2013-05-09 10:59 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-06-23 13:38 - 2013-05-09 10:58 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-06-23 13:38 - 2013-05-09 10:58 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-06-23 13:37 - 2013-06-23 13:38 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-23 13:25 - 2013-06-23 13:25 - 00000000 ___HD C:\kleaner.tmp
2013-06-23 12:27 - 2013-06-23 12:27 - 00000000 ___RD C:\Users\Agnes u. Manfred\Documents\Notes
2013-06-22 13:59 - 2013-07-22 14:17 - 01049600 ___SH C:\Users\Agnes u. Manfred\Documents\Thumbs.db
2013-06-22 12:54 - 2013-06-22 12:54 - 00001304 _____ C:\Users\Agnes u. Manfred\Desktop\Eigene     Dokumente.lnk

==================== One Month Modified Files and Folders =======

2013-07-22 18:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-07-22 17:59 - 2013-04-09 16:13 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-863825663-1150006700-3813104243-1002
2013-07-22 17:55 - 2013-04-10 00:41 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Skype
2013-07-22 17:54 - 2013-07-20 17:08 - 00001942 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-22 17:54 - 2013-07-20 17:08 - 00001866 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-22 17:54 - 2013-07-20 17:08 - 00001234 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-22 17:54 - 2013-07-20 17:08 - 00001230 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-22 17:54 - 2013-07-20 17:08 - 00001134 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-22 17:54 - 2013-05-21 14:29 - 00000420 _____ C:\Windows\Tasks\Show Lyrics Update.job
2013-07-22 17:54 - 2013-04-10 13:05 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-22 15:51 - 2013-07-18 12:42 - 00000794 _____ C:\Users\Agnes u. Manfred\Desktop\Bekämpfung - Trojaner-Board.website
2013-07-22 15:44 - 2013-07-22 15:44 - 00001031 _____ C:\Users\Agnes u. Manfred\Desktop\FRST64 - Verknüpfung.lnk
2013-07-22 15:41 - 2013-07-12 13:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-22 15:38 - 2013-06-10 14:55 - 00000000 ___RD C:\WIN SP3
2013-07-22 15:38 - 2013-04-10 13:05 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-22 15:35 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-22 15:34 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-07-22 15:31 - 2013-07-22 15:31 - 00000000 ____D C:\FRST
2013-07-22 15:30 - 2013-07-20 16:48 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Free Download Manager
2013-07-22 15:05 - 2013-04-14 00:43 - 00000539 _____ C:\Users\Agnes u. Manfred\Desktop\Dr. Windows.website
2013-07-22 14:56 - 2013-04-13 13:06 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BB1D36D0-37F3-484A-A790-E169D326BB90}
2013-07-22 14:53 - 2013-05-13 14:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-22 14:27 - 2013-05-08 10:20 - 01194936 _____ C:\Windows\WindowsUpdate.log
2013-07-22 14:17 - 2013-06-22 13:59 - 01049600 ___SH C:\Users\Agnes u. Manfred\Documents\Thumbs.db
2013-07-21 14:47 - 2013-04-13 17:52 - 00000000 ___RD C:\Users\Agnes u. Manfred\PPS z. Senden
2013-07-21 14:42 - 2012-10-19 17:41 - 00752930 _____ C:\Windows\system32\perfh007.dat
2013-07-21 14:42 - 2012-10-19 17:41 - 00156156 _____ C:\Windows\system32\perfc007.dat
2013-07-21 14:42 - 2012-07-26 09:28 - 01748838 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-21 14:41 - 2013-07-21 14:41 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (H).lnk
2013-07-21 14:39 - 2013-07-20 15:40 - 00001908 _____ C:\Windows\diagwrn.xml
2013-07-21 14:39 - 2013-07-20 15:40 - 00001908 _____ C:\Windows\diagerr.xml
2013-07-21 14:38 - 2013-07-21 14:38 - 00000000 ___HD C:\$WINDOWS.~BT
2013-07-21 14:38 - 2013-07-14 15:42 - 00000277 _____ C:\Windows\setupact.log
2013-07-21 14:37 - 2013-07-14 15:42 - 00000000 _____ C:\Windows\setuperr.log
2013-07-21 14:35 - 2013-04-15 18:31 - 00000000 ___RD C:\Users\Agnes u. Manfred\z.Aussortieren
2013-07-21 14:34 - 2013-04-09 16:01 - 00000000 ___RD C:\Users\Agnes u. Manfred
2013-07-21 11:58 - 2013-07-21 11:57 - 00000631 _____ C:\Users\Agnes u. Manfred\Desktop\Google Übersetzer.website
2013-07-20 18:11 - 2013-07-20 18:11 - 00003278 _____ C:\Windows\System32\Tasks\{DB4A1F0E-691F-4B1B-B269-9F1E44E28916}
2013-07-20 17:11 - 2013-04-14 21:06 - 00000000 ___RD C:\Users\Agnes u. Manfred\Desktop\Diverse           Dateien
2013-07-20 17:09 - 2013-04-17 13:54 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Adobe
2013-07-20 17:08 - 2013-07-20 17:08 - 00004238 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-20 17:08 - 2013-07-20 17:08 - 00004234 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-20 17:08 - 2013-07-20 17:08 - 00004138 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-20 17:08 - 2013-07-20 17:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-20 16:46 - 2013-07-20 16:46 - 07696614 _____ (FreeDownloadManager.ORG                                     ) C:\Users\Agnes u. Manfred\Downloads\fdminst.exe
2013-07-20 15:54 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-07-20 15:25 - 2013-07-20 15:25 - 00170496 _____ C:\Users\Agnes u. Manfred\Documents\Win 8.cld
2013-07-20 15:13 - 2013-04-09 16:01 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Adobe
2013-07-20 15:05 - 2013-07-20 15:05 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\AdobeStockPhotos
2013-07-20 14:26 - 2013-07-20 14:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\default
2013-07-20 12:43 - 2013-07-20 12:07 - 1545468570 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part2.rar
2013-07-20 12:03 - 2013-07-20 11:26 - 1600000000 _____ C:\Users\Agnes u. Manfred\Downloads\win8x64.part1.exe
2013-07-19 18:38 - 2013-07-19 18:38 - 00003066 _____ C:\Windows\System32\Tasks\{F43E42B0-C012-40AA-B29A-D6829368D375}
2013-07-18 21:41 - 2013-07-18 21:41 - 00462480 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-18 21:41 - 2013-07-04 18:51 - 00003794 _____ C:\Windows\PFRO.log
2013-07-18 12:01 - 2013-07-18 12:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-17 22:46 - 2013-07-17 22:46 - 03532800 _____ C:\Users\Agnes u. Manfred\Documents\ws__RundumsAuto-nat (2).pps
2013-07-17 22:43 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe
2013-07-17 22:42 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-07-14 15:44 - 2013-07-14 15:44 - 00000394 _____ C:\Users\Agnes u. Manfred\Desktop\Wechseldatenträger (I) -.lnk
2013-07-14 12:33 - 2013-07-14 12:33 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Ulead VideoStudio
2013-07-14 11:47 - 2013-04-16 18:59 - 00000000 ____D C:\Program Files (x86)\WinTV
2013-07-13 13:43 - 2013-07-04 21:38 - 00000000 ____D C:\Users\Agnes u. Manfred\Documents\Demo-Fotos
2013-07-13 11:33 - 2013-04-10 13:05 - 00004116 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-13 11:33 - 2013-04-10 13:05 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-13 11:24 - 2013-07-13 11:24 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\Macromedia
2013-07-12 21:18 - 2013-06-09 12:59 - 00000762 _____ C:\Users\Agnes u. Manfred\Desktop\Unitymedia - Kundencenter –.website
2013-07-12 16:32 - 2013-05-17 12:58 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-12 16:31 - 2013-05-17 12:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-12 13:14 - 2012-07-26 11:45 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-12 13:02 - 2013-07-12 13:02 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-12 13:02 - 2013-04-17 17:37 - 00000000 ____D C:\ProgramData\Adobe
2013-07-12 11:02 - 2013-07-12 11:02 - 00433865 _____ C:\Users\Agnes u. Manfred\Documents\Spielplan September 2013.zip
2013-07-11 14:50 - 2013-04-15 18:35 - 00040960 ___SH C:\Users\Agnes u. Manfred\Desktop\Thumbs.db
2013-07-11 12:57 - 2012-07-26 07:26 - 00000188 _____ C:\Windows\win.ini
2013-07-11 12:55 - 2012-10-19 18:17 - 78185248 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-07-08 15:25 - 2013-07-08 15:25 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\YoWindow
2013-07-08 14:44 - 2013-04-13 14:04 - 00000000 ____D C:\Users\Agnes u. Manfred\Privates
2013-07-07 14:31 - 2013-04-10 13:05 - 00000000 ____D C:\Users\AGNESU~1.MAN\AppData\Local\SwvUpdater
2013-07-07 10:18 - 2013-04-10 00:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-07 10:18 - 2013-04-10 00:41 - 00000000 ____D C:\ProgramData\Skype
2013-07-05 19:35 - 2013-07-05 19:35 - 00001713 _____ C:\Users\Agnes u. Manfred\Desktop\Revouninstaller.lnk
2013-07-05 19:27 - 2013-07-05 19:27 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\VSRevoGroup
2013-07-05 19:27 - 2013-04-09 16:01 - 00000000 ___RD C:\Users\Agnes u. Manfred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-05 19:23 - 2013-07-05 19:22 - 00000000 ____D C:\Users\Agnes u. Manfred\Revo Unistaller
2013-07-05 10:51 - 2013-07-04 16:44 - 00000000 ____D C:\Users\Agnes u. Manfred\AppData\Roaming\Ad-Aware Antivirus
2013-07-04 18:54 - 2013-05-20 12:48 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus
2013-07-04 12:18 - 2013-07-04 12:17 - 00000000 ____D C:\Windows\E63D89610BA94CF39E94407ACA42846C.TMP
2013-07-03 12:42 - 2013-07-03 12:42 - 00000000 _____ C:\Users\Agnes u. Manfred\Documents\SBArva.dll
2013-07-02 07:30 - 2013-07-02 07:30 - 00000867 _____ C:\Users\UpdatusUser\Desktop\MyUninstaller.lnk
2013-07-02 07:30 - 2013-07-02 07:26 - 00000000 ____D C:\Users\Agnes u. Manfred\Unistaller
2013-07-02 06:59 - 2013-05-20 13:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-07-01 13:28 - 2013-07-01 13:28 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-01 10:58 - 2013-07-01 10:58 - 03225088 _____ C:\Users\Agnes u. Manfred\Documents\Erstaunliche Fotos dieser WeltGR.PPS
2013-06-30 16:58 - 2013-06-23 13:39 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-06-30 16:57 - 2013-04-10 13:05 - 00000000 ____D C:\Program Files\Video downloader
2013-06-30 16:57 - 2012-10-25 19:08 - 00000000 ____D C:\ProgramData\NVIDIA
2013-06-30 16:54 - 2012-10-25 19:08 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-30 16:53 - 2012-10-25 19:08 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-06-30 15:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-06-30 14:17 - 2013-06-30 14:18 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-06-30 14:17 - 2013-06-30 14:18 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-06-30 14:17 - 2013-06-30 14:17 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-06-30 14:17 - 2013-06-23 13:39 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-06-30 14:17 - 2013-06-23 13:39 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-06-30 14:17 - 2013-06-23 13:39 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-06-28 00:04 - 2012-07-26 10:14 - 00693112 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-28 00:04 - 2012-07-26 10:14 - 00078200 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ToastData
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-06-25 19:11 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-06-25 19:11 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-06-25 19:11 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Dism
2013-06-25 14:30 - 2013-06-10 17:37 - 00000568 _____ C:\Users\Agnes u. Manfred\Desktop\Facebook.website
2013-06-25 14:30 - 2013-04-13 13:29 - 00000000 ___RD C:\Users\Agnes u. Manfred\Schriftverkehr
2013-06-23 20:45 - 2013-06-23 20:45 - 00000000 ____D C:\Program Files (x86)\MSECache
2013-06-23 20:45 - 2012-10-19 18:20 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-06-23 17:48 - 2013-06-23 13:38 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-06-23 17:02 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\servicing
2013-06-23 13:44 - 2013-04-10 13:05 - 00000000 ____D C:\Program Files (x86)\Google
2013-06-23 13:38 - 2013-06-23 13:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-23 13:38 - 2013-06-23 13:37 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-23 13:25 - 2013-06-23 13:25 - 00000000 ___HD C:\kleaner.tmp
2013-06-23 13:25 - 2013-04-11 22:25 - 00000000 ____D C:\Users\AGNESU~1~MAN
2013-06-23 13:25 - 2012-07-26 10:12 - 00000000 ___HD C:\Windows\ELAMBKUP
2013-06-23 13:25 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-06-23 12:27 - 2013-06-23 12:27 - 00000000 ___RD C:\Users\Agnes u. Manfred\Documents\Notes
2013-06-22 12:54 - 2013-06-22 12:54 - 00001304 _____ C:\Users\Agnes u. Manfred\Desktop\Eigene     Dokumente.lnk

Files to move or delete:
====================
C:\ProgramData\ntuser.dat

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2013-07-12 10:48] - [2013-06-01 13:34] - 2391280 ____A (Microsoft Corporation) 0E8E6463F81C80AFBED533E0F1F8895D

C:\Windows\SysWOW64\explorer.exe
[2013-07-12 10:48] - [2013-06-01 12:24] - 2106176 ____A (Microsoft Corporation) EAFE46B0292D2BD2467835E2ACF717CC

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2013-07-12 10:48] - [2013-06-01 13:26] - 0327936 ____A (Microsoft Corporation) 78A5BBA3819FFFC62FFEC3E2220D102D



LastRegBack: 2013-07-21 12:29

==================== End Of Log ============================

--- --- ---

Troja70 · 22.07.2013, 17:06

FRST Additions Logfile:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-07-2013
Ran by Agnes u. Manfred at 2013-07-22 18:01:25
Running from C:\Downloads\Software
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
ADAC Druckstudio (x32)
Ad-Aware Antivirus (x32)
Adobe Bridge 1.0 (x32 Version: 001.000.001)
Adobe Common File Installer (x32 Version: 1.00.001)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Help Center 1.0 (x32 Version: 1.0.1)
Adobe Photoshop CS2 (x32 Version: 9.0)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
Adobe Stock Photos 1.0 (x32 Version: 1.0.1)
Ashampoo Burning Studio 11 v.11.0.4 (x32 Version: 11.0.4)
avast! Free Antivirus (x32 Version: 8.0.1489.0)
AVEO USB2.0 PC Camera (x32 Version: 2.0.0.5)
AVM FRITZ!Box AddOn (IE) (x32 Version: 1.7.0)
AVM FRITZ!WLAN (x32 Version: 1.2.0.0)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000)
COMPUTERBILD-Abzockschutz (x32 Version: 1.0.42)
CyberLink PowerRecover (Version: 5.7.0.0913)
CyberLink PowerRecover (x32 Version: 5.7.0.0913)
D3DX10 (x32 Version: 15.4.2368.0902)
Desktop Icon für Amazon (Version: 1.0.1 (de))
DomaIQ (x32)
eaner (Version: 3.27)
EVEREST Home Edition v2.20 (x32 Version: 2.20)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.31.0)
Folderico 4.0 RC12 (x32 Version: 4.0 RC12)
Fotogalerie (x32 Version: 16.4.3505.0912)
Fotogalerija (x32 Version: 16.4.3505.0912)
Fotogalleri (x32 Version: 16.4.3505.0912)
Fotogalleriet (x32 Version: 16.4.3505.0912)
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912)
Fotótár (x32 Version: 16.4.3505.0912)
Free Download Manager 3.9.2 (x32)
Galeria de Fotografias (x32 Version: 16.4.3505.0912)
Galería de fotos (x32 Version: 16.4.3505.0912)
Galeria fotografii (x32 Version: 16.4.3505.0912)
Galerie de photos (x32 Version: 16.4.3505.0912)
Google Earth (x32 Version: 7.1.1.1871)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4209.2358)
Google Update Helper (x32 Version: 1.3.21.153)
Hauppauge German Help Files and Resources (x32)
Hauppauge WinTV (x32)
Hauppauge WinTV DVB-T EPG Service (x32)
Hauppauge WinTV Infrared Remote (x32)
Hauppauge WinTV Scheduler (x32)
Hauppauge WinTV Soft PVR (x32)
IcoFX 1.6.4 (x32)
Intel(R) Control Center (x32 Version: 1.2.1.1008)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1281)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001)
Intel® Trusted Connect Service Client (Version: 1.24.738.1)
InterVideo FilterSDK for Hauppauge (x32)
IrfanView (remove only) (x32 Version: 4.35)
MAGIX Video easy RSIV Edition 1.0.3.0 (D) (x32 Version: 1.0.3.0)
Mediathek (x32 Version: 1.4.0)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Corporation (Version: 11.0.50727.0)
Microsoft Corporation (Version: 9.0.30729.1)
Microsoft Corporation (x32 Version: 11.0.50727.0)
Microsoft Corporation (x32 Version: 9.0.30729.1)
Microsoft LifeCam (Version: 4.25.512.0)
Microsoft Office (x32 Version: 14.0.6120.5004)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Movie Maker (x32 Version: 16.4.3505.0912)
Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0)
Mozilla Maintenance Service (x32 Version: 22.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
NVIDIA 3D Vision Controller-Treiber 314.22 (Version: 314.22)
NVIDIA Grafiktreiber 306.14 (Version: 306.14)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1)
NVIDIA Install Application (Version: 2.1002.115.743)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Systemsteuerung 306.14 (Version: 306.14)
NVIDIA Update 1.12.12 (Version: 1.12.12)
NVIDIA Update Components (Version: 1.12.12)
Photo Common (x32 Version: 16.4.3505.0912)
Photo Gallery (x32 Version: 16.4.3505.0912)
Plus-HD-1.6 (x32 Version: 1.27.153.8)
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912)
QuickLaunch (x32 Version: 1.00.0019)
Raccolta foto (x32 Version: 16.4.3505.0912)
Realtek Ethernet Controller Driver (x32 Version: 8.3.730.2012)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6710)
Skype™ 6.5 (x32 Version: 6.5.158)
Spybot - Search & Destroy (x32 Version: 1.6.2)
Spybot - Search & Destroy (x32 Version: 2.0.12)
Ulead VideoStudio 7 SE VCD (x32 Version: 7.0)
Video downloader 2.0.0.432 (Version: 2.0.0.432)
VTPlus32 für WinTV (German) (x32)
Windows Live (x32 Version: 16.4.3505.0912)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live Temel Parçalar (x32 Version: 16.4.3505.0912)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912)

==================== Restore Points  =========================

05-07-2013 10:26:52 Removed Ad-Aware Antivirus.
11-07-2013 10:48:53 Windows Update
17-07-2013 20:41:10 Windows Update

==================== Hosts content: ==========================

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0572C10E-5237-498F-8E4D-21B4E6378F45} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-863825663-1150006700-3813104243-500
Task: {06678B23-289C-4369-9DEA-BFD71D0C0D72} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {0C77F435-DB66-4681-9D4B-2978C71930EC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software)
Task: {0CF9B0CC-B9F4-4498-A5B9-81F22C9F285C} - System32\Tasks\User_Feed_Synchronization-{BB1D36D0-37F3-484A-A790-E169D326BB90} => C:\Windows\system32\msfeedssync.exe [2012-07-26] (Microsoft Corporation)
Task: {0D50A60C-B68D-4AF5-AD45-CC1FA02FBE57} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe [2012-08-15] (Microsoft Corporation)
Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation)
Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical
Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {1C201EA2-DDAA-4916-BB29-ABCFAB2615C5} - System32\Tasks\Plus-HD-1.6-chromeinstaller => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-chromeinstaller.exe [2013-07-20] (Plus HD)
Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
Task: {1FE600C3-A77B-47F3-8B6A-C35E340ECC26} - System32\Tasks\Plus-HD-1.6-updater => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe [2013-07-20] (Plus HD)
Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance
Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh
Task: {2D5E0596-D861-45D6-A783-AB687D9C47FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-10] (Google Inc.)
Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks
Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update
Task: {344ECB6E-CE15-411D-9931-0E45E3F50561} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-12] (Adobe Systems Incorporated)
Task: {373A22E3-12B5-4D9F-9031-81417AC93809} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-01-23] (Piriform Ltd)
Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator
Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask
Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance
Task: {416E79F3-FF5E-47CC-844B-FC06961BD2BB} - System32\Tasks\Plus-HD-1.6-firefoxinstaller => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe [2013-07-20] (Plus HD)
Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage
Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2013-06-01] (Microsoft Corporation)
Task: {497BB138-EA39-4A50-BD7E-B73713357211} - System32\Tasks\Plus-HD-1.6-enabler => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe [2013-07-20] (Plus HD)
Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon
Task: {4D57ECFD-D44C-4BB1-BFD6-4F579593DE34} - System32\Tasks\{F43E42B0-C012-40AA-B29A-D6829368D375} => c:\program files\internet explorer\iexplore.exe [2013-02-21] (Microsoft Corporation)
Task: {545322C3-B1AA-4885-8333-B431292D9F50} - System32\Tasks\WPD\SqmUpload_S-1-5-21-863825663-1150006700-3813104243-1002 => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance
Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required
Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation)
Task: {63AEE4C4-638A-45F1-B744-0DA820D0A742} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2012-09-20] (Microsoft Corporation)
Task: {670C1F5C-85E7-41D7-95EE-9CC561277114} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe No File
Task: {67864E4D-E137-4DBD-B10D-E9DB5E718E8F} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup
Task: {6C742310-9EE4-4E0E-B62F-BB313248C23D} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe No File
Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-09-20] (Microsoft Corporation)
Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319
Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update
Task: {766A0FEC-1F35-4B6A-9C7D-E7CB289DCCF7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe No File
Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance
Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance
Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode)
Task: {888D2C44-973C-4917-828E-C177413916C8} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall
Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses
Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime
Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64
Task: {976E6108-EBD5-404F-B568-B799DC8ACDD8} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall
Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic
Task: {A4AFA613-9A2D-4828-9565-D104863D250E} - System32\Tasks\Show Lyrics Update => C:\Program Files (x86)\Show-Lyrics\ShwLUPD.exe No File
Task: {A6CD0AF2-6DEE-4E29-A4A6-71A631C4F63D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-10] (Google Inc.)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {A7502AB2-10C8-4A32-AF65-8698679470EB} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\Windows\system32\sc.exe [2012-07-26] (Microsoft Corporation)
Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask
Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh
Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask
Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask
Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan
Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific
Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan
Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {C9FE71E5-1F2E-4A24-8643-F095A4DDC155} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-863825663-1150006700-3813104243-1002
Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork
Task: {CE9716F7-CE87-4749-97C2-E0ACB0C72C6C} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect
Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical
Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery
Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask
Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-09-20] (Microsoft Corporation)
Task: {EB3EDC15-9976-4CCD-8E51-1778F7F6ECAA} - System32\Tasks\Plus-HD-1.6-codedownloader => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe [2013-07-20] (Plus HD)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-chromeinstaller.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-enabler.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-updater.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe
Task: C:\Windows\Tasks\Show Lyrics Update.job => C:\Program Files (x86)\Show-Lyrics\ShwLUPD.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/22/2013 03:26:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 03:26:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 03:26:10 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 03:26:10 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 03:26:10 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 02:11:46 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0xe0
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 02:11:26 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0xe0
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 01:15:36 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x19f4
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 01:15:36 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x19f4
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 01:15:36 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x19f4
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5


System errors:
=============
Error: (07/22/2013 03:35:12 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/22/2013 03:34:49 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (07/22/2013 03:34:49 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (07/22/2013 02:53:07 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/18/2013 09:40:55 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/12/2013 04:31:48 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/05/2013 06:40:42 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/05/2013 01:13:48 PM) (Source: Service Control Manager) (User: )
Description: Vom folgenden Dienst wurde wiederholt nicht auf Dienststeuerungsanforderungen reagiert: Stromversorgung

Erkundigen Sie sich beim Diensthersteller oder beim Systemadministrator danach, ob der Dienst deaktiviert werden sollte, bis das Problem gefunden wurde.

Der Computer muss unter Umständen im abgesicherten Modus gestartet werden, um den Dienst deaktivieren zu können.

Error: (07/05/2013 01:13:18 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst PlugPlay erreicht.

Error: (07/05/2013 01:12:48 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst LSM erreicht.


Microsoft Office Sessions:
=========================
Error: (07/22/2013 03:26:11 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll45bb1102-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 03:26:11 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll45aa6046-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 03:26:10 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll4599afa7-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 03:26:10 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll4588feee-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 03:26:10 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll4533293e-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 02:11:46 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd9e001ce86d19e0e4e0bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dlle08009eb-f2c7-11e2-be99-d43d7e2ef3ac

Error: (07/22/2013 02:11:26 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd9e001ce86d19e0e4e0bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dlld467ebc8-f2c7-11e2-be99-d43d7e2ef3ac

Error: (07/22/2013 01:15:36 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd919f401ce86cc4d4c0f1bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll0818c769-f2c0-11e2-be99-d43d7e2ef3ac

Error: (07/22/2013 01:15:36 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd919f401ce86cc4d4c0f1bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll080351ee-f2c0-11e2-be99-d43d7e2ef3ac

Error: (07/22/2013 01:15:36 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd919f401ce86cc4d4c0f1bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll07eddc86-f2c0-11e2-be99-d43d7e2ef3ac


CodeIntegrity Errors:
===================================
  Date: 2013-04-28 22:19:08.428
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Users\AGNESU~1.MAN\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-04-28 22:19:08.381
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Percentage of memory in use: 31%
Total physical RAM: 4040.38 MB
Available physical RAM: 2754.86 MB
Total Pagefile: 5000.38 MB
Available Pagefile: 3649.44 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:869.8 GB) (Free:668.23 GB) NTFS
Drive d: (Recover) (Fixed) (Total:60 GB) (Free:43.23 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 00000000)

Partition: GPT Partition Type
==================== End Of Log ============================Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-07-2013
Ran by Agnes u. Manfred at 2013-07-22 18:01:25
Running from C:\Downloads\Software
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
ADAC Druckstudio (x32)
Ad-Aware Antivirus (x32)
Adobe Bridge 1.0 (x32 Version: 001.000.001)
Adobe Common File Installer (x32 Version: 1.00.001)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Help Center 1.0 (x32 Version: 1.0.1)
Adobe Photoshop CS2 (x32 Version: 9.0)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
Adobe Stock Photos 1.0 (x32 Version: 1.0.1)
Ashampoo Burning Studio 11 v.11.0.4 (x32 Version: 11.0.4)
avast! Free Antivirus (x32 Version: 8.0.1489.0)
AVEO USB2.0 PC Camera (x32 Version: 2.0.0.5)
AVM FRITZ!Box AddOn (IE) (x32 Version: 1.7.0)
AVM FRITZ!WLAN (x32 Version: 1.2.0.0)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000)
COMPUTERBILD-Abzockschutz (x32 Version: 1.0.42)
CyberLink PowerRecover (Version: 5.7.0.0913)
CyberLink PowerRecover (x32 Version: 5.7.0.0913)
D3DX10 (x32 Version: 15.4.2368.0902)
Desktop Icon für Amazon (Version: 1.0.1 (de))
DomaIQ (x32)
eaner (Version: 3.27)
EVEREST Home Edition v2.20 (x32 Version: 2.20)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.31.0)
Folderico 4.0 RC12 (x32 Version: 4.0 RC12)
Fotogalerie (x32 Version: 16.4.3505.0912)
Fotogalerija (x32 Version: 16.4.3505.0912)
Fotogalleri (x32 Version: 16.4.3505.0912)
Fotogalleriet (x32 Version: 16.4.3505.0912)
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912)
Fotótár (x32 Version: 16.4.3505.0912)
Free Download Manager 3.9.2 (x32)
Galeria de Fotografias (x32 Version: 16.4.3505.0912)
Galería de fotos (x32 Version: 16.4.3505.0912)
Galeria fotografii (x32 Version: 16.4.3505.0912)
Galerie de photos (x32 Version: 16.4.3505.0912)
Google Earth (x32 Version: 7.1.1.1871)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4209.2358)
Google Update Helper (x32 Version: 1.3.21.153)
Hauppauge German Help Files and Resources (x32)
Hauppauge WinTV (x32)
Hauppauge WinTV DVB-T EPG Service (x32)
Hauppauge WinTV Infrared Remote (x32)
Hauppauge WinTV Scheduler (x32)
Hauppauge WinTV Soft PVR (x32)
IcoFX 1.6.4 (x32)
Intel(R) Control Center (x32 Version: 1.2.1.1008)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1281)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001)
Intel® Trusted Connect Service Client (Version: 1.24.738.1)
InterVideo FilterSDK for Hauppauge (x32)
IrfanView (remove only) (x32 Version: 4.35)
MAGIX Video easy RSIV Edition 1.0.3.0 (D) (x32 Version: 1.0.3.0)
Mediathek (x32 Version: 1.4.0)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Corporation (Version: 11.0.50727.0)
Microsoft Corporation (Version: 9.0.30729.1)
Microsoft Corporation (x32 Version: 11.0.50727.0)
Microsoft Corporation (x32 Version: 9.0.30729.1)
Microsoft LifeCam (Version: 4.25.512.0)
Microsoft Office (x32 Version: 14.0.6120.5004)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Movie Maker (x32 Version: 16.4.3505.0912)
Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0)
Mozilla Maintenance Service (x32 Version: 22.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
NVIDIA 3D Vision Controller-Treiber 314.22 (Version: 314.22)
NVIDIA Grafiktreiber 306.14 (Version: 306.14)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1)
NVIDIA Install Application (Version: 2.1002.115.743)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Systemsteuerung 306.14 (Version: 306.14)
NVIDIA Update 1.12.12 (Version: 1.12.12)
NVIDIA Update Components (Version: 1.12.12)
Photo Common (x32 Version: 16.4.3505.0912)
Photo Gallery (x32 Version: 16.4.3505.0912)
Plus-HD-1.6 (x32 Version: 1.27.153.8)
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912)
QuickLaunch (x32 Version: 1.00.0019)
Raccolta foto (x32 Version: 16.4.3505.0912)
Realtek Ethernet Controller Driver (x32 Version: 8.3.730.2012)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6710)
Skype™ 6.5 (x32 Version: 6.5.158)
Spybot - Search & Destroy (x32 Version: 1.6.2)
Spybot - Search & Destroy (x32 Version: 2.0.12)
Ulead VideoStudio 7 SE VCD (x32 Version: 7.0)
Video downloader 2.0.0.432 (Version: 2.0.0.432)
VTPlus32 für WinTV (German) (x32)
Windows Live (x32 Version: 16.4.3505.0912)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live Temel Parçalar (x32 Version: 16.4.3505.0912)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912)

==================== Restore Points  =========================

05-07-2013 10:26:52 Removed Ad-Aware Antivirus.
11-07-2013 10:48:53 Windows Update
17-07-2013 20:41:10 Windows Update

==================== Hosts content: ==========================

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0572C10E-5237-498F-8E4D-21B4E6378F45} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-863825663-1150006700-3813104243-500
Task: {06678B23-289C-4369-9DEA-BFD71D0C0D72} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {0C77F435-DB66-4681-9D4B-2978C71930EC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software)
Task: {0CF9B0CC-B9F4-4498-A5B9-81F22C9F285C} - System32\Tasks\User_Feed_Synchronization-{BB1D36D0-37F3-484A-A790-E169D326BB90} => C:\Windows\system32\msfeedssync.exe [2012-07-26] (Microsoft Corporation)
Task: {0D50A60C-B68D-4AF5-AD45-CC1FA02FBE57} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe [2012-08-15] (Microsoft Corporation)
Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation)
Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical
Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {1C201EA2-DDAA-4916-BB29-ABCFAB2615C5} - System32\Tasks\Plus-HD-1.6-chromeinstaller => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-chromeinstaller.exe [2013-07-20] (Plus HD)
Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
Task: {1FE600C3-A77B-47F3-8B6A-C35E340ECC26} - System32\Tasks\Plus-HD-1.6-updater => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe [2013-07-20] (Plus HD)
Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance
Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh
Task: {2D5E0596-D861-45D6-A783-AB687D9C47FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-10] (Google Inc.)
Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks
Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update
Task: {344ECB6E-CE15-411D-9931-0E45E3F50561} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-12] (Adobe Systems Incorporated)
Task: {373A22E3-12B5-4D9F-9031-81417AC93809} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-01-23] (Piriform Ltd)
Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator
Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask
Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance
Task: {416E79F3-FF5E-47CC-844B-FC06961BD2BB} - System32\Tasks\Plus-HD-1.6-firefoxinstaller => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe [2013-07-20] (Plus HD)
Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage
Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2013-06-01] (Microsoft Corporation)
Task: {497BB138-EA39-4A50-BD7E-B73713357211} - System32\Tasks\Plus-HD-1.6-enabler => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe [2013-07-20] (Plus HD)
Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon
Task: {4D57ECFD-D44C-4BB1-BFD6-4F579593DE34} - System32\Tasks\{F43E42B0-C012-40AA-B29A-D6829368D375} => c:\program files\internet explorer\iexplore.exe [2013-02-21] (Microsoft Corporation)
Task: {545322C3-B1AA-4885-8333-B431292D9F50} - System32\Tasks\WPD\SqmUpload_S-1-5-21-863825663-1150006700-3813104243-1002 => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance
Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required
Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation)
Task: {63AEE4C4-638A-45F1-B744-0DA820D0A742} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2012-09-20] (Microsoft Corporation)
Task: {670C1F5C-85E7-41D7-95EE-9CC561277114} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe No File
Task: {67864E4D-E137-4DBD-B10D-E9DB5E718E8F} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup
Task: {6C742310-9EE4-4E0E-B62F-BB313248C23D} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe No File
Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-09-20] (Microsoft Corporation)
Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319
Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update
Task: {766A0FEC-1F35-4B6A-9C7D-E7CB289DCCF7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe No File
Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance
Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance
Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode)
Task: {888D2C44-973C-4917-828E-C177413916C8} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall
Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses
Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime
Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64
Task: {976E6108-EBD5-404F-B568-B799DC8ACDD8} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall
Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic
Task: {A4AFA613-9A2D-4828-9565-D104863D250E} - System32\Tasks\Show Lyrics Update => C:\Program Files (x86)\Show-Lyrics\ShwLUPD.exe No File
Task: {A6CD0AF2-6DEE-4E29-A4A6-71A631C4F63D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-10] (Google Inc.)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {A7502AB2-10C8-4A32-AF65-8698679470EB} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\Windows\system32\sc.exe [2012-07-26] (Microsoft Corporation)
Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask
Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh
Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask
Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask
Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan
Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific
Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan
Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {C9FE71E5-1F2E-4A24-8643-F095A4DDC155} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-863825663-1150006700-3813104243-1002
Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork
Task: {CE9716F7-CE87-4749-97C2-E0ACB0C72C6C} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect
Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical
Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery
Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask
Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-09-20] (Microsoft Corporation)
Task: {EB3EDC15-9976-4CCD-8E51-1778F7F6ECAA} - System32\Tasks\Plus-HD-1.6-codedownloader => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe [2013-07-20] (Plus HD)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-chromeinstaller.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-enabler.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-updater.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe
Task: C:\Windows\Tasks\Show Lyrics Update.job => C:\Program Files (x86)\Show-Lyrics\ShwLUPD.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/22/2013 03:26:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 03:26:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 03:26:10 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 03:26:10 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 03:26:10 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x16d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 02:11:46 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0xe0
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 02:11:26 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0xe0
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 01:15:36 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x19f4
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 01:15:36 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x19f4
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (07/22/2013 01:15:36 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16578, Zeitstempel: 0x515fac6e
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000b0dd9
ID des fehlerhaften Prozesses: 0x19f4
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5


System errors:
=============
Error: (07/22/2013 03:35:12 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/22/2013 03:34:49 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (07/22/2013 03:34:49 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (07/22/2013 02:53:07 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/18/2013 09:40:55 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/12/2013 04:31:48 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/05/2013 06:40:42 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/05/2013 01:13:48 PM) (Source: Service Control Manager) (User: )
Description: Vom folgenden Dienst wurde wiederholt nicht auf Dienststeuerungsanforderungen reagiert: Stromversorgung

Erkundigen Sie sich beim Diensthersteller oder beim Systemadministrator danach, ob der Dienst deaktiviert werden sollte, bis das Problem gefunden wurde.

Der Computer muss unter Umständen im abgesicherten Modus gestartet werden, um den Dienst deaktivieren zu können.

Error: (07/05/2013 01:13:18 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst PlugPlay erreicht.

Error: (07/05/2013 01:12:48 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst LSM erreicht.


Microsoft Office Sessions:
=========================
Error: (07/22/2013 03:26:11 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll45bb1102-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 03:26:11 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll45aa6046-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 03:26:10 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll4599afa7-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 03:26:10 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll4588feee-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 03:26:10 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd916d801ce86dd26bfacefC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll4533293e-f2d2-11e2-be9a-d43d7e2ef3ac

Error: (07/22/2013 02:11:46 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd9e001ce86d19e0e4e0bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dlle08009eb-f2c7-11e2-be99-d43d7e2ef3ac

Error: (07/22/2013 02:11:26 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd9e001ce86d19e0e4e0bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dlld467ebc8-f2c7-11e2-be99-d43d7e2ef3ac

Error: (07/22/2013 01:15:36 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd919f401ce86cc4d4c0f1bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll0818c769-f2c0-11e2-be99-d43d7e2ef3ac

Error: (07/22/2013 01:15:36 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd919f401ce86cc4d4c0f1bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll080351ee-f2c0-11e2-be99-d43d7e2ef3ac

Error: (07/22/2013 01:15:36 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7ntdll.dll6.2.9200.16578515fac6ec000000d000b0dd919f401ce86cc4d4c0f1bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\ntdll.dll07eddc86-f2c0-11e2-be99-d43d7e2ef3ac


CodeIntegrity Errors:
===================================
  Date: 2013-04-28 22:19:08.428
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Users\AGNESU~1.MAN\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-04-28 22:19:08.381
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Percentage of memory in use: 31%
Total physical RAM: 4040.38 MB
Available physical RAM: 2754.86 MB
Total Pagefile: 5000.38 MB
Available Pagefile: 3649.44 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:869.8 GB) (Free:668.23 GB) NTFS
Drive d: (Recover) (Fixed) (Total:60 GB) (Free:43.23 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 00000000)

Partition: GPT Partition Type
==================== End Of Log ============================

--- --- ---

aharonov · 22.07.2013, 18:40

Hinweis: Mehrere AV-Hintergrundwächter

Mir ist aufgefallen, dass du mehr als ein Antivirus-Programm mit Hintergrundwächter laufen hast:

Ad-Aware Antivirus

avast! Free Antivirus

Das ist gefährlich, da sich die verschiedenen Hintergrundwächter gegenseitig in die Quere kommen können und dadurch in ihrer Summe nicht mehr sondern weniger Schutz bieten. Ausserdem bremst das auch das System aus.

Entscheide dich für eines dieser Programme und deinstalliere die anderen über Start -> Systemsteuerung -> Programme und Funktionen (Vista & Win 7) bzw. Start -> Systemsteuerung -> Software (Win XP).

Schritt 1

Gehe in die Systemsteuerung und öffne Programme und Funktionen.
Suche und deinstalliere dort der Reihe nach folgende Einträge:
- Desktop Icon für Amazon
- DomaIQ
- Plus-HD-1.6
Schliesse das Fenster wieder und führe einen Neustart durch, wenn das gefordert wurde.

Schritt 2

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 3

Starte noch einmal FRST.

Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

Bitte poste in deiner nächsten Antwort:

Log von AdwCleaner
Log von FRST

Troja70 · 22.07.2013, 18:47

Erst mal Danke,
werde aber nicht gleich loslegen können, da ich für einige Tage vereise.
AdAware muss was altes sein was beim deinstall nicht richtig gelösch wurde, habe offiziell nur AVAST installiert.
Werde aber nach den Tagen mir alles nochmal geanauer anschauen.
Sobald ich Erfog habe melde ich mich auf jeden Fall hier im Forum!

Danke

MfG Troja70

aharonov · 22.07.2013, 18:48

Zitat:

AdAware muss was altes sein was beim deinstall nicht richtig gelösch wurde

Ja da scheint noch was übriggeblieben zu sein. Ich seh es noch in der Liste der installierten Programme und es läuft auch noch als Prozess.

Zitat:

werde aber nicht gleich loslegen können, da ich für einige Tage vereise.

Alles klar.

Troja70 · 27.07.2013, 10:16

Moin,
bin wieder zurück, habe auch einen Erfolg zu melden.
Als 1. habe ich
Schritt1 : erledigt, dann habe ich mal meinen PC mit SUPERAntiSpyware gescannt, und alles was gefunden wurde habe ich gelöscht. Was ich nicht für möglich hielt, im Internetexplorer läuft alles wieder so wie es früher gewesen ist.

Die grüne Markierung ist nicht mehr vorhanden auch das ( ?Fenster ) öfnet sich nicht mehr.
Somit bin ich diesen Plagegeist erst mal los.

Danke nochmal für eure Hilfe

MfG Troja70

aharonov · 29.07.2013, 00:19

Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Ich bekomme somit keine Benachrichtigung mehr über neue Antworten.
Solltest du das Thema erneut brauchen, schicke mir bitte eine PM und wir machen hier weiter.

Jeder andere bitte diese Anleitung lesen und einen eigenen Thread erstellen.

29.07.2013, 00:19	#11
aharonov /// TB-Ausbilder	Grüne Wortpassagen beim Surfen im I.Net 10 ?? Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Ich bekomme somit keine Benachrichtigung mehr über neue Antworten. Solltest du das Thema erneut brauchen, schicke mir bitte eine PM und wir machen hier weiter. Jeder andere bitte diese Anleitung lesen und einen eigenen Thread erstellen. __________________ cheers, Leo

Grüne Wortpassagen beim Surfen im I.Net 10 ??

Plagegeister aller Art und deren Bekämpfung: Grüne Wortpassagen beim Surfen im I.Net 10 ??