| |
| |||||||
Log-Analyse und Auswertung: Maus macht Problem beim klickenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
24.08.2013, 17:17
| #1 |
 |  Maus macht Problem beim klicken Hallo, mein Maus verhält sich seit ein paar Tagen merkwürdig. Manchmal klickt sie zweimal, obwohl ich nur einmal geklickt habe. Auf manchen Internetseiten, wo sich beim drüberscrollen Auswahlfenster öffnen, kann ich diese nicht mehr mit der Maus auswählen. Entweder verschwindet das Fenster wenn ich dort hingehe, oder es wird das aktiviert, was sich eigentlich unsichtbar dahinter befindet. Defogger hat keine Fehlermeldung gebracht. Hier nun FRST: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-08-2013 01 Ran by Rainer (administrator) on 24-08-2013 18:06:44 Running from C:\Users\Rainer\Downloads Windows 8 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe (Microsoft Corporation) C:\Windows\system32\dashost.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe () C:\Windows\SysWOW64\PSIService.exe (Bright Access) C:\Program Files (x86)\BackupPCFiles\BackupPCFiles.Client.Service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Bright Access) C:\Program Files (x86)\BackupPCFiles\BackupPCFiles.Client.CppProxyServer.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Corel, Inc.) C:\Program Files (x86)\Corel\Corel MediaOne\Corel Photo Downloader.exe (Bright Access) C:\Program Files (x86)\BackupPCFiles\BackupPCFiles.Agent.exe (Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (Samsung) C:\Program Files (x86)\SEC\Natural Color Pro\NCProTray.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe (CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe (Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Google Inc.) C:\Program Files (x86)\Google\Picasa3\Picasa3.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Adobe\Adobe Photoshop CS2\Photoshop.exe (Microsoft Corporation) C:\Windows\splwow64.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe () C:\Users\Rainer\Downloads\ZipOpenerSetup(1).exe () C:\Users\Rainer\Downloads\ZipOpenerSetup(1).exe () C:\Users\Rainer\Downloads\Defogger.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-29] (Adobe Systems Incorporated) HKLM\...\Run: [Corel Photo Downloader] - C:\Program Files (x86)\Corel\Corel MediaOne\Corel Photo Downloader.exe [483144 2007-08-17] (Corel, Inc.) HKLM\...\Run: [BackupPCFiles.Agent] - C:\Program Files (x86)\BackupPCFiles\BackupPCFiles.Agent.exe [249472 2013-06-12] (Bright Access) HKCU\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony) HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-05-23] (Samsung) HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung) HKCU\...\Run: [NTRedirect] - C:\Users\Rainer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll [187888 2013-08-22] () MountPoints2: {4bc830f7-2fe6-11e2-be6c-806e6f6e6963} - "F:\setup.EXE" /AUTORUN HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-19] (Intel Corporation) HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\runner_avp.exe [24504 2012-10-25] (Kaspersky Lab ZAO) HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152 2006-10-23] (Adobe Systems Inc.) HKLM-x32\...\Run: [] - [x] HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.) HKLM-x32\...\Run: [Ulead AutoDetector v2] - C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\monitor.exe [95504 2007-08-02] (Ulead Systems, Inc.) HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [740888 2013-04-24] (Sony Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-05-23] (Samsung Electronics Co., Ltd.) HKU\UpdatusUser\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony) HKU\UpdatusUser\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-05-23] (Samsung) HKU\UpdatusUser\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung) HKU\UpdatusUser\...\Run: [NTRedirect] - C:\Users\Rainer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll [187888 2013-08-22] () AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL [187888 2013-08-22] () AppInit_DLLs-x32: c:\progra~2\nvidia~1\3dvisi~1\nvstinit.dll [187888 2013-08-22] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat - Schnellstart.lnk ShortcutTarget: Adobe Acrobat - Schnellstart.lnk -> C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NCProTray.lnk ShortcutTarget: NCProTray.lnk -> C:\Program Files (x86)\SEC\Natural Color Pro\NCProTray.exe (Samsung) Startup: C:\Users\Rainer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM - {02A08B01-5DFD-404B-A7B8-0B6326F1F913} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS SearchScopes: HKLM-x32 - DefaultScope {02A08B01-5DFD-404B-A7B8-0B6326F1F913} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS SearchScopes: HKLM-x32 - {02A08B01-5DFD-404B-A7B8-0B6326F1F913} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS SearchScopes: HKLM-x32 - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=814AF0B1-C97B-4472-A63D-FFA51C89E144&ref=toolbox&q={searchTerms} SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=AE50902B34983558&affID=119357&tt=070813_wt4&tsp=4970 SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=AE50902B34983558&affID=119357&tt=070813_wt4&tsp=4970 SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=814AF0B1-C97B-4472-A63D-FFA51C89E144&ref=toolbox&q={searchTerms} BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft) BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.) BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.) BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: DealPly Shopping - {9cf699ca-2174-4ed8-bec1-ba82095edce0} - C:\Program Files (x86)\DealPly\DealPlyIE.dll (DealPly) BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) BHO-x32: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft) BHO-x32: No Name - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - No File Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File Handler: ipp - No CLSID Value - Handler: msdaipp - No CLSID Value - Handler-x32: ipp - No CLSID Value - Handler-x32: msdaipp - No CLSID Value - Tcpip\Parameters: [DhcpNameServer] 83.169.184.161 83.169.184.225 FireFox: ======== FF ProfilePath: C:\Users\Rainer\AppData\Roaming\Mozilla\Firefox\Profiles\jeedrkjt.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF Plugin-x32: @garmin.com/GpsControl - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.dpliveupdate.com/DealPlyLive Update;version=3 - C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd) FF Plugin-x32: @tools.dpliveupdate.com/DealPlyLive Update;version=9 - C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\StartWeb.xml FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM-x32\...\Firefox\Extensions: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\url_advisor@kaspersky.com FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\url_advisor@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\virtual_keyboard@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\content_blocker@kaspersky.com FF Extension: Content Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\content_blocker@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ FF HKCU\...\Firefox\Extensions: [lyrix@lyrixeeker.co] C:\Program Files (x86)\LyriXeeker\128.xpi FF Extension: No Name - C:\Program Files (x86)\LyriXeeker\128.xpi Chrome: ======= CHR Extension: (Google Drive) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0 CHR Extension: (FTdownloader V3.0) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbffdhejhaoiflnpooogkckfdcmmjppn\3.0_0 CHR Extension: (YouTube) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0 CHR Extension: (Google Search) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0 CHR Extension: (Kaspersky URL Advisor) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0 CHR Extension: (LyricXeeker) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\epojlgbehpaeekopencdagbdamnkppci\1.126_0 CHR Extension: (Content Blocker) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0 CHR Extension: (Virtual Keyboard) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_0 CHR Extension: (Gmail) - C:\Users\Rainer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 CHR HKLM-x32\...\Chrome\Extension: [bbffdhejhaoiflnpooogkckfdcmmjppn] - C:\Program Files (x86)\FTDownloader.com\FTDownloader10.crx CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\urladvisor.crx CHR HKLM-x32\...\Chrome\Extension: [ejnmnhkgiphcaeefbaooconkceehicfi] - C:\Program Files (x86)\DealPly\DealPly.crx CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Rainer\AppData\Roaming\BabSolution\CR\Delta.crx CHR HKLM-x32\...\Chrome\Extension: [epojlgbehpaeekopencdagbdamnkppci] - C:\Program Files (x86)\LyriXeeker\128.crx CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\content_blocker_chrome.crx CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ChromeExt\virtkbd.crx CHR HKLM-x32\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files (x86)\Gophoto.it\gophotoit14.crx ==================== Services (Whitelisted) ================= S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-08] (Adobe Systems) R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356376 2012-12-21] (Kaspersky Lab ZAO) R2 BackupPCFilesService; C:\Program Files (x86)\BackupPCFiles\BackupPCFiles.Client.Service.exe [67712 2013-06-12] (Bright Access) R2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2013-04-07] (IvoSoft) S2 dealplylive; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-08-10] (DealPly Technologies Ltd) S3 dealplylivem; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-08-10] (DealPly Technologies Ltd) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-05] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.) R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [483864 2013-04-24] (Sony Corporation) R2 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [177704 2007-06-05] () ==================== Drivers (Whitelisted) ==================== S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) R2 DRHARD64; C:\Windows\system32\drivers\DRHARD64.sys [21984 2011-11-03] (Licensed for Gebhard Software) R2 DRHMSR64; C:\Windows\system32\drivers\DRHMSR64.sys [14760 2011-12-06] () S3 gdrv; C:\Windows\gdrv.sys [25640 2012-11-16] (Windows (R) Server 2003 DDK provider) S3 gdrv; C:\Windows\gdrv.sys [25640 2012-11-16] (Windows (R) Server 2003 DDK provider) R2 inpoutx64; C:\Windows\System32\Drivers\inpoutx64.sys [15008 2012-11-12] (Highresolution Enterprises [www.highrez.co.uk]) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458584 2012-06-19] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [619616 2013-04-23] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [28504 2012-08-02] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29016 2012-12-21] (Kaspersky Lab) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29528 2012-10-25] (Kaspersky Lab) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [50448 2013-04-23] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178448 2013-04-23] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) S3 cpuz135; \??\C:\Users\ADMINI~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [x] S3 DRHARD; \??\C:\Windows\system32\DRIVERS\DRHARD.SYS [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-08-24 18:06 - 2013-08-24 18:06 - 00000000 ____D C:\FRST 2013-08-24 18:05 - 2013-08-24 18:05 - 00000474 _____ C:\Users\Rainer\Downloads\defogger_disable.log 2013-08-24 18:05 - 2013-08-24 18:05 - 00000246 _____ C:\Users\Rainer\Downloads\defogger_enable.log 2013-08-24 18:05 - 2013-08-24 18:05 - 00000000 _____ C:\Users\Rainer\defogger_reenable 2013-08-24 18:04 - 2013-08-24 18:04 - 00050477 _____ C:\Users\Rainer\Downloads\Defogger.exe 2013-08-24 18:03 - 2013-08-24 18:03 - 00001121 _____ C:\Users\Public\Desktop\Open It!.lnk 2013-08-24 18:03 - 2013-08-24 18:03 - 00000000 ____D C:\Program Files (x86)\OpenIt 2013-08-24 18:02 - 2013-08-24 18:02 - 00714352 _____ C:\Users\Rainer\Downloads\ZipOpenerSetup(1).exe 2013-08-24 09:12 - 2013-08-24 09:12 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Rainer\Downloads\mbam-setup-1.75.0.1300.exe 2013-08-24 09:12 - 2013-08-24 09:12 - 00001120 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-08-24 09:12 - 2013-08-24 09:12 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\Malwarebytes 2013-08-24 09:12 - 2013-08-24 09:12 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-08-24 09:12 - 2013-08-24 09:12 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-08-24 09:12 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-08-23 19:29 - 2013-04-15 17:23 - 00001336 _____ C:\Windows\SysWOW64\TrainingManagerPlugin.tlb 2013-08-22 22:13 - 2013-07-18 14:21 - 00000000 ____D C:\Users\Rainer\Downloads\Falk Karten 2013-08-22 21:18 - 2013-08-22 22:10 - 3575951388 _____ C:\Users\Rainer\Downloads\FMI-10506_2013-2.exe 2013-08-22 19:41 - 2013-08-22 19:41 - 20393805 _____ (The hugin development team ) C:\Users\Rainer\Downloads\Hugin_2009-4-0_win32_setup(3).exe 2013-08-22 19:41 - 2013-08-22 19:41 - 00001143 _____ C:\Users\Public\Desktop\EnfuseAlign.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00001138 _____ C:\Users\Public\Desktop\Enblend360.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00001133 _____ C:\Users\Public\Desktop\Enfuse360.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00001118 _____ C:\Users\Public\Desktop\Enblend.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00001113 _____ C:\Users\Public\Desktop\Enfuse.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00000998 _____ C:\Users\Public\Desktop\Hugin.lnk 2013-08-22 19:40 - 2013-08-22 19:40 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(11).exe 2013-08-22 19:38 - 2013-08-22 19:42 - 00000000 ____D C:\Program Files (x86)\Hugin 2013-08-22 19:38 - 2013-08-22 19:38 - 27266109 _____ C:\Users\Rainer\Downloads\HuginSetup_2011.0.0_32bit_Windows(1).exe 2013-08-22 19:38 - 2013-08-22 19:38 - 00001064 _____ C:\Users\Rainer\Desktop\Hugin.lnk 2013-08-16 07:17 - 2013-08-17 10:52 - 00000000 ____D C:\Program Files (x86)\LyriXeeker 2013-08-14 22:01 - 2013-08-14 22:01 - 00000000 ____D C:\Program Files\Windows Defender 2013-08-14 21:56 - 2013-08-14 21:56 - 02828552 _____ (AVAST Software) C:\Users\Rainer\Downloads\avast-browser-cleanup_8.0.1484.29.exe 2013-08-14 17:34 - 2013-08-14 17:35 - 00000000 ____D C:\Windows\system32\MRT 2013-08-14 17:31 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-08-14 17:31 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-08-14 17:31 - 2013-07-26 07:13 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2013-08-14 17:31 - 2013-07-26 07:13 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2013-08-14 17:31 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-08-14 17:31 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-08-14 17:31 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-08-14 17:31 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-08-14 17:31 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-08-14 17:31 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-08-14 17:31 - 2013-07-26 05:13 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll 2013-08-14 17:31 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-08-14 17:31 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-08-14 17:31 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-08-14 17:31 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-08-14 17:31 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-08-14 17:31 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-08-14 17:31 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-08-14 17:31 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-08-14 17:31 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-08-14 17:31 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-08-14 17:31 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-08-14 17:31 - 2013-07-26 02:54 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll 2013-08-14 17:31 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-08-14 17:31 - 2013-07-13 08:16 - 01889280 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-08-14 17:31 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-08-14 17:31 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll 2013-08-14 17:31 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll 2013-08-14 17:31 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2013-08-14 17:31 - 2013-07-13 06:23 - 01568256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-08-14 17:31 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll 2013-08-14 17:31 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll 2013-08-14 17:31 - 2013-07-09 08:07 - 02233168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-08-14 17:31 - 2013-07-02 02:44 - 00036288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2013-08-14 17:31 - 2013-07-02 00:08 - 00247216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2013-08-14 17:31 - 2013-05-24 01:02 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2013-08-14 17:31 - 2013-05-24 00:25 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2013-08-13 17:45 - 2013-08-13 17:45 - 29011992 _____ (Microsoft Corporation) C:\Users\Rainer\Downloads\FileFormatConverters4.exe 2013-08-13 17:45 - 2013-08-13 17:45 - 00000000 ____D C:\Program Files (x86)\MSECache 2013-08-13 17:40 - 2013-08-13 17:40 - 00355770 _____ C:\Users\Rainer\Documents\Karte.xlsx 2013-08-13 17:39 - 2013-08-13 17:40 - 00000000 ____D C:\ProgramData\BackupPCFiles 2013-08-13 17:39 - 2013-08-13 17:39 - 00004334 _____ C:\Windows\System32\Tasks\Task BackupPCFiles 2013-08-13 17:39 - 2013-08-13 17:39 - 00000000 ____D C:\Users\Rainer\Documents\BackupPCFiles Folder 2013-08-13 17:39 - 2013-08-13 17:39 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BackupPCFiles 2013-08-13 17:39 - 2013-08-13 17:39 - 00000000 ____D C:\ProgramData\APN 2013-08-13 17:39 - 2013-08-13 17:39 - 00000000 ____D C:\Program Files (x86)\BackupPCFiles 2013-08-13 17:39 - 2013-06-06 22:41 - 00489392 _____ (Ask Partner Network) C:\Users\Rainer\Documents\APNSetup.exe 2013-08-13 17:38 - 2013-08-13 17:38 - 08014952 _____ C:\Users\Rainer\Downloads\Backup_Installer.exe 2013-08-13 17:37 - 2013-08-13 17:37 - 01245296 _____ C:\Users\Rainer\Downloads\PDFWriterSetup.exe 2013-08-13 17:37 - 2013-08-13 17:37 - 00000000 ____D C:\Program Files\PDFCreator 2013-08-13 17:37 - 2013-08-13 17:37 - 00000000 ____D C:\Program Files (x86)\GPLGS 2013-08-13 17:37 - 2011-10-04 22:43 - 00087552 _____ C:\Windows\system32\custmon64i.dll 2013-08-11 19:50 - 2013-08-11 19:50 - 00002219 _____ C:\Users\Public\Desktop\Google Earth.lnk 2013-08-11 19:49 - 2013-08-11 19:49 - 00785032 _____ (Google Inc.) C:\Users\Rainer\Downloads\googleupdatesetup(2).exe 2013-08-11 19:42 - 2013-08-11 19:42 - 25110613 _____ C:\Users\Rainer\Downloads\HuginSetup_2010.4.0-64bit_Windows(1).exe 2013-08-11 19:36 - 2013-08-11 19:36 - 00000073 _____ C:\Users\Rainer\Downloads\killthugin.reg.txt 2013-08-10 22:22 - 2013-08-10 22:22 - 00623168 _____ C:\Users\Rainer\Downloads\FlvPlayerSetup(1).exe 2013-08-10 21:59 - 2013-08-24 18:04 - 00000922 _____ C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job 2013-08-10 21:59 - 2013-08-24 16:48 - 00000918 _____ C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job 2013-08-10 21:59 - 2013-08-10 21:59 - 00003894 _____ C:\Windows\System32\Tasks\DealPlyLiveUpdateTaskMachineUA 2013-08-10 21:59 - 2013-08-10 21:59 - 00003658 _____ C:\Windows\System32\Tasks\DealPlyLiveUpdateTaskMachineCore 2013-08-10 21:59 - 2013-08-10 21:59 - 00000000 ____D C:\Users\Rainer\AppData\Local\DealPlyLive 2013-08-10 21:59 - 2013-08-10 21:59 - 00000000 ____D C:\ProgramData\DealPlyLive 2013-08-10 21:59 - 2013-08-10 21:59 - 00000000 ____D C:\Program Files (x86)\DealPlyLive 2013-08-10 21:58 - 2013-08-24 16:48 - 00000396 _____ C:\Windows\Tasks\LyricXeeker Update.job 2013-08-10 21:58 - 2013-08-23 21:58 - 00000000 ____D C:\Program Files (x86)\DealPly 2013-08-10 21:58 - 2013-08-10 21:59 - 00003368 _____ C:\Windows\System32\Tasks\DealPlyUpdate 2013-08-10 21:58 - 2013-08-10 21:58 - 00623168 _____ C:\Users\Rainer\Downloads\FlvPlayerSetup.exe 2013-08-10 21:58 - 2013-08-10 21:58 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly 2013-08-10 21:54 - 2013-08-10 21:54 - 01378312 _____ ( ) C:\Users\Rainer\Downloads\eType.exe 2013-08-10 20:51 - 2013-08-10 20:51 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(10).exe 2013-08-10 18:00 - 2013-08-10 18:00 - 00002300 _____ C:\Users\Rainer\Documents\cc_20130810_180018.reg 2013-08-10 17:59 - 2013-08-10 17:59 - 00003300 _____ C:\Users\Rainer\Documents\cc_20130810_175952.reg 2013-08-10 17:33 - 2013-08-20 21:53 - 00004294 _____ C:\Users\Rainer\AppData\Roaming\.ptbt1 2013-08-10 17:30 - 2013-08-10 17:31 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(9).exe 2013-08-10 17:26 - 2013-08-10 17:27 - 30697682 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_64bit_Windows(2).exe 2013-08-10 17:23 - 2013-08-10 17:27 - 30697682 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_64bit_Windows(1).exe 2013-08-10 13:10 - 2013-08-10 13:10 - 00034708 _____ C:\Users\Rainer\Documents\cc_20130810_131034.reg 2013-08-09 21:33 - 2013-08-09 21:33 - 34736549 _____ C:\Users\Rainer\Downloads\HuginSetup_2013.0.0-beta1_64bit_Windows(1).exe 2013-08-04 11:05 - 2013-06-01 13:54 - 00194816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2013-08-04 11:05 - 2013-06-01 13:54 - 00125184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2013-08-04 11:05 - 2013-06-01 13:29 - 00337152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2013-08-04 11:05 - 2013-06-01 13:29 - 00213248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS 2013-08-04 11:05 - 2013-06-01 13:26 - 00327936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2013-08-04 11:05 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2013-08-04 11:05 - 2013-06-01 11:25 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2013-08-04 11:05 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll 2013-08-04 11:05 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2013-08-04 11:05 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll 2013-08-04 11:05 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll 2013-08-04 11:05 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2013-08-04 11:05 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe 2013-08-04 11:05 - 2013-06-01 11:22 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2013-08-04 11:05 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll 2013-08-04 11:05 - 2013-05-20 02:08 - 00386642 _____ C:\Windows\system32\ApnDatabase.xml 2013-08-04 11:04 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2013-08-04 11:04 - 2013-06-01 13:26 - 06987008 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-08-04 11:04 - 2013-06-01 11:22 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2013-08-04 11:04 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe 2013-08-04 11:04 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2013-08-04 11:04 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll 2013-08-04 11:04 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2013-08-04 11:04 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2013-08-04 11:04 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll 2013-08-04 11:04 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll 2013-08-04 11:04 - 2013-06-01 11:19 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2013-08-04 11:04 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll 2013-08-04 11:04 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys 2013-08-04 11:04 - 2013-05-25 00:09 - 01403296 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2013-08-04 11:04 - 2013-05-25 00:09 - 01271584 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2013-08-04 11:04 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2013-08-04 11:04 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2013-08-04 11:03 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2013-08-04 09:52 - 2013-08-04 09:52 - 20393805 _____ (The hugin development team ) C:\Users\Rainer\Downloads\Hugin_2009-4-0_win32_setup(2).exe 2013-08-04 09:50 - 2013-08-04 09:51 - 16319114 _____ (The hugin development team ) C:\Users\Rainer\Downloads\Hugin_2009_02_ncpg_installer_w32.exe 2013-08-04 09:46 - 2013-08-04 09:46 - 12406113 _____ (Guido ) C:\Users\Rainer\Downloads\hugin-0.7.0_win32-setup.exe 2013-08-04 09:42 - 2013-08-04 09:43 - 22710059 _____ C:\Users\Rainer\Downloads\HuginSetup_2013.0.0-beta1_32bit_Windows.exe 2013-08-04 09:40 - 2013-08-04 09:40 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(8).exe 2013-08-04 09:09 - 2013-08-04 09:10 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(7).exe 2013-08-04 08:51 - 2013-08-04 08:52 - 34736549 _____ C:\Users\Rainer\Downloads\HuginSetup_2013.0.0-beta1_64bit_Windows.exe 2013-08-04 08:50 - 2013-08-04 08:50 - 36752591 _____ C:\Users\Rainer\Downloads\Hugin_2013.0.0-beta1_64bit_Windows.7z 2013-08-04 08:41 - 2013-08-04 08:41 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(6).exe 2013-08-04 07:47 - 2013-08-04 07:47 - 00326704 _____ C:\Windows\system32\FNTCACHE.DAT 2013-08-03 19:50 - 2013-08-03 19:50 - 03176332 _____ C:\Users\Rainer\Downloads\AlteBaeum 2013-08-03 18:05 - 2013-08-03 18:05 - 00000000 ____D C:\Users\Rainer\Documents\AdobeStockPhotos 2013-08-03 14:10 - 2013-05-16 00:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll ==================== One Month Modified Files and Folders ======= 2013-08-24 18:06 - 2013-08-24 18:06 - 01576734 _____ (Farbar) C:\Users\Rainer\Downloads\FRST64.exe 2013-08-24 18:06 - 2013-08-24 18:06 - 00000000 ____D C:\FRST 2013-08-24 18:05 - 2013-08-24 18:05 - 00000474 _____ C:\Users\Rainer\Downloads\defogger_disable.log 2013-08-24 18:05 - 2013-08-24 18:05 - 00000246 _____ C:\Users\Rainer\Downloads\defogger_enable.log 2013-08-24 18:05 - 2013-08-24 18:05 - 00000000 _____ C:\Users\Rainer\defogger_reenable 2013-08-24 18:05 - 2012-12-21 16:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-08-24 18:05 - 2012-12-21 15:39 - 00000000 ____D C:\Users\Rainer 2013-08-24 18:04 - 2013-08-24 18:04 - 00050477 _____ C:\Users\Rainer\Downloads\Defogger.exe 2013-08-24 18:04 - 2013-08-10 21:59 - 00000922 _____ C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job 2013-08-24 18:03 - 2013-08-24 18:03 - 00001121 _____ C:\Users\Public\Desktop\Open It!.lnk 2013-08-24 18:03 - 2013-08-24 18:03 - 00000000 ____D C:\Program Files (x86)\OpenIt 2013-08-24 18:03 - 2013-01-04 13:38 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-08-24 18:02 - 2013-08-24 18:02 - 00714352 _____ C:\Users\Rainer\Downloads\ZipOpenerSetup(1).exe 2013-08-24 18:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru 2013-08-24 17:21 - 2012-07-26 12:27 - 00752930 _____ C:\Windows\system32\perfh007.dat 2013-08-24 17:21 - 2012-07-26 12:27 - 00156156 _____ C:\Windows\system32\perfc007.dat 2013-08-24 17:21 - 2012-07-26 09:28 - 01748838 _____ C:\Windows\system32\PerfStringBackup.INI 2013-08-24 17:08 - 2012-12-21 15:39 - 01921628 _____ C:\Windows\WindowsUpdate.log 2013-08-24 17:04 - 2012-12-21 17:30 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2013-08-24 16:48 - 2013-08-10 21:59 - 00000918 _____ C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job 2013-08-24 16:48 - 2013-08-10 21:58 - 00000396 _____ C:\Windows\Tasks\LyricXeeker Update.job 2013-08-24 16:48 - 2013-01-04 13:38 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-08-24 09:43 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-08-24 09:42 - 2012-12-22 14:26 - 00018174 _____ C:\Windows\PFRO.log 2013-08-24 09:42 - 2012-11-12 12:33 - 00000000 ____D C:\ProgramData\NVIDIA 2013-08-24 09:12 - 2013-08-24 09:12 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Rainer\Downloads\mbam-setup-1.75.0.1300.exe 2013-08-24 09:12 - 2013-08-24 09:12 - 00001120 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-08-24 09:12 - 2013-08-24 09:12 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\Malwarebytes 2013-08-24 09:12 - 2013-08-24 09:12 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-08-24 09:12 - 2013-08-24 09:12 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-08-23 21:58 - 2013-08-10 21:58 - 00000000 ____D C:\Program Files (x86)\DealPly 2013-08-23 19:59 - 2013-05-26 16:59 - 00000000 ____D C:\Users\Rainer\Documents\FalkData 2013-08-23 19:55 - 2013-05-26 17:23 - 00000000 ____D C:\Users\Rainer\AppData\Local\Falk Navi-Manager 2013-08-23 19:29 - 2013-05-26 16:59 - 00002077 _____ C:\Users\Public\Desktop\Falk Navi-Manager.lnk 2013-08-23 07:24 - 2012-12-21 15:45 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2560001034-2644125590-1053040255-1002 2013-08-22 23:04 - 2013-01-04 13:39 - 00002190 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-08-22 22:10 - 2013-08-22 21:18 - 3575951388 _____ C:\Users\Rainer\Downloads\FMI-10506_2013-2.exe 2013-08-22 19:42 - 2013-08-22 19:38 - 00000000 ____D C:\Program Files (x86)\Hugin 2013-08-22 19:41 - 2013-08-22 19:41 - 20393805 _____ (The hugin development team ) C:\Users\Rainer\Downloads\Hugin_2009-4-0_win32_setup(3).exe 2013-08-22 19:41 - 2013-08-22 19:41 - 00001143 _____ C:\Users\Public\Desktop\EnfuseAlign.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00001138 _____ C:\Users\Public\Desktop\Enblend360.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00001133 _____ C:\Users\Public\Desktop\Enfuse360.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00001118 _____ C:\Users\Public\Desktop\Enblend.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00001113 _____ C:\Users\Public\Desktop\Enfuse.lnk 2013-08-22 19:41 - 2013-08-22 19:41 - 00000998 _____ C:\Users\Public\Desktop\Hugin.lnk 2013-08-22 19:40 - 2013-08-22 19:40 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(11).exe 2013-08-22 19:38 - 2013-08-22 19:38 - 27266109 _____ C:\Users\Rainer\Downloads\HuginSetup_2011.0.0_32bit_Windows(1).exe 2013-08-22 19:38 - 2013-08-22 19:38 - 00001064 _____ C:\Users\Rainer\Desktop\Hugin.lnk 2013-08-22 19:38 - 2012-12-25 11:31 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hugin 2013-08-22 18:27 - 2013-02-05 20:14 - 00000000 ____D C:\ProgramData\CanonIJPLM 2013-08-20 21:53 - 2013-08-10 17:33 - 00004294 _____ C:\Users\Rainer\AppData\Roaming\.ptbt1 2013-08-18 17:40 - 2012-12-21 16:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-08-17 21:58 - 2013-03-24 19:26 - 00001158 _____ C:\Users\Rainer\AppData\Roaming\ShiftN.ini 2013-08-17 11:03 - 2013-07-03 08:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-08-17 10:52 - 2013-08-16 07:17 - 00000000 ____D C:\Program Files (x86)\LyriXeeker 2013-08-16 17:20 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent 2013-08-14 23:01 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache 2013-08-14 22:08 - 2013-04-25 19:20 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog 2013-08-14 22:08 - 2013-04-25 19:19 - 00000000 ____D C:\Program Files (x86)\Iminent 2013-08-14 22:01 - 2013-08-14 22:01 - 00000000 ____D C:\Program Files\Windows Defender 2013-08-14 22:01 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2013-08-14 21:56 - 2013-08-14 21:56 - 02828552 _____ (AVAST Software) C:\Users\Rainer\Downloads\avast-browser-cleanup_8.0.1484.29.exe 2013-08-14 18:35 - 2013-05-12 19:52 - 00000000 ____D C:\Users\Rainer\.jordan 2013-08-14 17:35 - 2013-08-14 17:34 - 00000000 ____D C:\Windows\system32\MRT 2013-08-14 17:34 - 2012-12-21 16:01 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-08-13 17:46 - 2012-11-12 12:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2013-08-13 17:45 - 2013-08-13 17:45 - 29011992 _____ (Microsoft Corporation) C:\Users\Rainer\Downloads\FileFormatConverters4.exe 2013-08-13 17:45 - 2013-08-13 17:45 - 00000000 ____D C:\Program Files (x86)\MSECache 2013-08-13 17:40 - 2013-08-13 17:40 - 00355770 _____ C:\Users\Rainer\Documents\Karte.xlsx 2013-08-13 17:40 - 2013-08-13 17:39 - 00000000 ____D C:\ProgramData\BackupPCFiles 2013-08-13 17:39 - 2013-08-13 17:39 - 00004334 _____ C:\Windows\System32\Tasks\Task BackupPCFiles 2013-08-13 17:39 - 2013-08-13 17:39 - 00000000 ____D C:\Users\Rainer\Documents\BackupPCFiles Folder 2013-08-13 17:39 - 2013-08-13 17:39 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BackupPCFiles 2013-08-13 17:39 - 2013-08-13 17:39 - 00000000 ____D C:\ProgramData\APN 2013-08-13 17:39 - 2013-08-13 17:39 - 00000000 ____D C:\Program Files (x86)\BackupPCFiles 2013-08-13 17:38 - 2013-08-13 17:38 - 08014952 _____ C:\Users\Rainer\Downloads\Backup_Installer.exe 2013-08-13 17:37 - 2013-08-13 17:37 - 01245296 _____ C:\Users\Rainer\Downloads\PDFWriterSetup.exe 2013-08-13 17:37 - 2013-08-13 17:37 - 00000000 ____D C:\Program Files\PDFCreator 2013-08-13 17:37 - 2013-08-13 17:37 - 00000000 ____D C:\Program Files (x86)\GPLGS 2013-08-12 21:13 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI 2013-08-12 21:08 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM 2013-08-11 19:50 - 2013-08-11 19:50 - 00002219 _____ C:\Users\Public\Desktop\Google Earth.lnk 2013-08-11 19:50 - 2012-12-25 08:47 - 00000000 ____D C:\Users\Rainer\AppData\Local\Google 2013-08-11 19:50 - 2012-12-25 08:47 - 00000000 ____D C:\Program Files (x86)\Google 2013-08-11 19:49 - 2013-08-11 19:49 - 00785032 _____ (Google Inc.) C:\Users\Rainer\Downloads\googleupdatesetup(2).exe 2013-08-11 19:42 - 2013-08-11 19:42 - 25110613 _____ C:\Users\Rainer\Downloads\HuginSetup_2010.4.0-64bit_Windows(1).exe 2013-08-11 19:36 - 2013-08-11 19:36 - 00000073 _____ C:\Users\Rainer\Downloads\killthugin.reg.txt 2013-08-11 19:05 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\NDF 2013-08-10 22:31 - 2012-12-21 16:25 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-08-10 22:31 - 2012-12-21 15:45 - 00000000 ____D C:\Users\Rainer\AppData\Local\Adobe 2013-08-10 22:22 - 2013-08-10 22:22 - 00623168 _____ C:\Users\Rainer\Downloads\FlvPlayerSetup(1).exe 2013-08-10 22:00 - 2013-04-23 20:10 - 00003390 _____ C:\Windows\System32\Tasks\EPUpdater 2013-08-10 21:59 - 2013-08-10 21:59 - 00003894 _____ C:\Windows\System32\Tasks\DealPlyLiveUpdateTaskMachineUA 2013-08-10 21:59 - 2013-08-10 21:59 - 00003658 _____ C:\Windows\System32\Tasks\DealPlyLiveUpdateTaskMachineCore 2013-08-10 21:59 - 2013-08-10 21:59 - 00000000 ____D C:\Users\Rainer\AppData\Local\DealPlyLive 2013-08-10 21:59 - 2013-08-10 21:59 - 00000000 ____D C:\ProgramData\DealPlyLive 2013-08-10 21:59 - 2013-08-10 21:59 - 00000000 ____D C:\Program Files (x86)\DealPlyLive 2013-08-10 21:59 - 2013-08-10 21:58 - 00003368 _____ C:\Windows\System32\Tasks\DealPlyUpdate 2013-08-10 21:59 - 2013-04-23 20:10 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\BabSolution 2013-08-10 21:58 - 2013-08-10 21:58 - 00623168 _____ C:\Users\Rainer\Downloads\FlvPlayerSetup.exe 2013-08-10 21:58 - 2013-08-10 21:58 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly 2013-08-10 21:54 - 2013-08-10 21:54 - 01378312 _____ ( ) C:\Users\Rainer\Downloads\eType.exe 2013-08-10 20:51 - 2013-08-10 20:51 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(10).exe 2013-08-10 18:00 - 2013-08-10 18:00 - 00002300 _____ C:\Users\Rainer\Documents\cc_20130810_180018.reg 2013-08-10 17:59 - 2013-08-10 17:59 - 00003300 _____ C:\Users\Rainer\Documents\cc_20130810_175952.reg 2013-08-10 17:31 - 2013-08-10 17:30 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(9).exe 2013-08-10 17:27 - 2013-08-10 17:26 - 30697682 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_64bit_Windows(2).exe 2013-08-10 17:27 - 2013-08-10 17:23 - 30697682 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_64bit_Windows(1).exe 2013-08-10 13:10 - 2013-08-10 13:10 - 00034708 _____ C:\Users\Rainer\Documents\cc_20130810_131034.reg 2013-08-09 21:33 - 2013-08-09 21:33 - 34736549 _____ C:\Users\Rainer\Downloads\HuginSetup_2013.0.0-beta1_64bit_Windows(1).exe 2013-08-07 07:29 - 2012-12-21 16:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2013-08-04 18:48 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe 2013-08-04 09:52 - 2013-08-04 09:52 - 20393805 _____ (The hugin development team ) C:\Users\Rainer\Downloads\Hugin_2009-4-0_win32_setup(2).exe 2013-08-04 09:51 - 2013-08-04 09:50 - 16319114 _____ (The hugin development team ) C:\Users\Rainer\Downloads\Hugin_2009_02_ncpg_installer_w32.exe 2013-08-04 09:46 - 2013-08-04 09:46 - 12406113 _____ (Guido ) C:\Users\Rainer\Downloads\hugin-0.7.0_win32-setup.exe 2013-08-04 09:43 - 2013-08-04 09:42 - 22710059 _____ C:\Users\Rainer\Downloads\HuginSetup_2013.0.0-beta1_32bit_Windows.exe 2013-08-04 09:40 - 2013-08-04 09:40 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(8).exe 2013-08-04 09:37 - 2012-12-30 12:23 - 00000000 ____D C:\WsWin 2013-08-04 09:10 - 2013-08-04 09:09 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(7).exe 2013-08-04 08:52 - 2013-08-04 08:51 - 34736549 _____ C:\Users\Rainer\Downloads\HuginSetup_2013.0.0-beta1_64bit_Windows.exe 2013-08-04 08:50 - 2013-08-04 08:50 - 36752591 _____ C:\Users\Rainer\Downloads\Hugin_2013.0.0-beta1_64bit_Windows.7z 2013-08-04 08:41 - 2013-08-04 08:41 - 20459958 _____ C:\Users\Rainer\Downloads\HuginSetup_2012.0.0_32bit_Windows(6).exe 2013-08-04 07:47 - 2013-08-04 07:47 - 00326704 _____ C:\Windows\system32\FNTCACHE.DAT 2013-08-04 07:45 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\servicing 2013-08-03 19:50 - 2013-08-03 19:50 - 03176332 _____ C:\Users\Rainer\Downloads\AlteBaeum 2013-08-03 18:05 - 2013-08-03 18:05 - 00000000 ____D C:\Users\Rainer\Documents\AdobeStockPhotos 2013-08-03 18:05 - 2012-12-21 15:39 - 00000000 ____D C:\Users\Rainer\AppData\Roaming\Adobe 2013-08-03 14:01 - 2013-02-02 19:34 - 00195042 _____ C:\Windows\DPINST.LOG 2013-07-26 07:13 - 2013-08-14 17:31 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-07-26 07:13 - 2013-08-14 17:31 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-07-26 07:13 - 2013-08-14 17:31 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2013-07-26 07:13 - 2013-08-14 17:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2013-07-26 07:13 - 2013-08-14 17:31 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-07-26 07:12 - 2013-08-14 17:31 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-07-26 07:12 - 2013-08-14 17:31 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-07-26 05:35 - 2013-08-14 17:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-07-26 05:13 - 2013-08-14 17:31 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-26 05:13 - 2013-08-14 17:31 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-26 05:13 - 2013-08-14 17:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll 2013-07-26 05:12 - 2013-08-14 17:31 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-26 05:12 - 2013-08-14 17:31 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-26 05:12 - 2013-08-14 17:31 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-26 05:12 - 2013-08-14 17:31 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-26 05:12 - 2013-08-14 17:31 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-26 05:12 - 2013-08-14 17:31 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-26 05:12 - 2013-08-14 17:31 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-26 05:12 - 2013-08-14 17:31 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-26 05:11 - 2013-08-14 17:31 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-26 05:11 - 2013-08-14 17:31 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-26 04:49 - 2013-08-14 17:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-26 02:54 - 2013-08-14 17:31 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll Files to move or delete: ==================== C:\Users\Rainer\AppData\Local\Temp\1nYZRC10.exe.part C:\Users\Rainer\AppData\Local\Temp\7V+zSy80.exe.part C:\Users\Rainer\AppData\Local\Temp\bd_8Qi5_.exe.part C:\Users\Rainer\AppData\Local\Temp\e8jAkT8y.exe.part C:\Users\Rainer\AppData\Local\Temp\EgOyN8a+.exe.part C:\Users\Rainer\AppData\Local\Temp\HNrcKNi3.exe.part C:\Users\Rainer\AppData\Local\Temp\htmlayout.dll C:\Users\Rainer\AppData\Local\Temp\ICReinstall_ZipOpenerSetup.exe C:\Users\Rainer\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe C:\Users\Rainer\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe C:\Users\Rainer\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe C:\Users\Rainer\AppData\Local\Temp\JREInstall〱ㄱ2.exe C:\Users\Rainer\AppData\Local\Temp\LCtr+pfR.dll.part C:\Users\Rainer\AppData\Local\Temp\MSETUP4.EXE C:\Users\Rainer\AppData\Local\Temp\NaviMgrInstaller.exe C:\Users\Rainer\AppData\Local\Temp\nv3DVStreaming.dll C:\Users\Rainer\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Rainer\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\Rainer\AppData\Local\Temp\nvStereoApiI.dll C:\Users\Rainer\AppData\Local\Temp\nvStInit.dll C:\Users\Rainer\AppData\Local\Temp\nvStInit64.dll C:\Users\Rainer\AppData\Local\Temp\nvStInst.exe C:\Users\Rainer\AppData\Local\Temp\PGMWd+c6.exe.part C:\Users\Rainer\AppData\Local\Temp\u1f+quMH.exe.part C:\Users\Rainer\AppData\Local\Temp\uninst1.exe C:\Users\Rainer\AppData\Local\Temp\uninstall72948703.exe C:\Users\Rainer\AppData\Local\Temp\uninstall72948734.exe C:\Users\Rainer\AppData\Local\Temp\vsdel.exe C:\Users\Rainer\AppData\Local\Temp\Y0fHeLiT.exe.part C:\Users\Rainer\AppData\Local\Temp\ZOYUR1ma.exe.part C:\Users\Rainer\AppData\Local\Temp\{EB9955F8-467C-47FC-90F8-12CD5DF684C3}\adobe_caps.dll C:\Users\Rainer\AppData\Local\Temp\{EB9955F8-467C-47FC-90F8-12CD5DF684C3}\amtservices.dll C:\Users\Rainer\AppData\Local\Temp\{EB9955F8-467C-47FC-90F8-12CD5DF684C3}\asneu.dll C:\Users\Rainer\AppData\Local\Temp\{EB9955F8-467C-47FC-90F8-12CD5DF684C3}\updaterinventory.dll C:\Users\Rainer\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\adobe_caps.dll C:\Users\Rainer\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\amtservices.dll C:\Users\Rainer\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\asneu.dll C:\Users\Rainer\AppData\Local\Temp\VSDEED5.tmp\DotNetFX\dotnetchk.exe C:\Users\Rainer\AppData\Local\Temp\VSDEA84.tmp\setup.exe C:\Users\Rainer\AppData\Local\Temp\VSDEA84.tmp\vcredist_x86\vcredist_x86.exe C:\Users\Rainer\AppData\Local\Temp\VSDEA84.tmp\DotNetFX\dotnetchk.exe C:\Users\Rainer\AppData\Local\Temp\VSD8DAD.tmp\DotNetFX\dotnetchk.exe C:\Users\Rainer\AppData\Local\Temp\VSD7AAD.tmp\DotNetFX\dotnetchk.exe C:\Users\Rainer\AppData\Local\Temp\VSD374B.tmp\DotNetFX\dotnetchk.exe C:\Users\Rainer\AppData\Local\Temp\VSD1244.tmp\setup.exe C:\Users\Rainer\AppData\Local\Temp\VSD1244.tmp\vcredist_x86\vcredist_x86.exe C:\Users\Rainer\AppData\Local\Temp\VSD1244.tmp\DotNetFX\dotnetchk.exe C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\DVD\LDCdBldr.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\DVD\LdrtBurn.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\DVD\LdvdRec.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\DVD\LudfRdr.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\DVD\LudfWrtr.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\DVD\LXBurnCom.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\DVD\ULCDRDrv.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\DVD\ULCDRDrvRc.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\AutoDetector\DetMethod.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\AutoDetector\Monitor_Res.dll C:\Users\Rainer\AppData\Local\Temp\Ulead Systems\CommonFiles\AutoDetector\u32Comm.dll C:\Users\Rainer\AppData\Local\Temp\Sony\Sony PC Companion\AutoUpdate\Sony PC Companion_2.10.165_NetStorage.exe C:\Users\Rainer\AppData\Local\Temp\SDIAG_d8efc418-366f-4141-a77c-72d6e96e2019\NetworkDiagnosticSnapIn.dll C:\Users\Rainer\AppData\Local\Temp\RarSFX0\Binaries\IExploreInstaller.exe C:\Users\Rainer\AppData\Local\Temp\PRE_Files\UpdaterInstallResults.dll C:\Users\Rainer\AppData\Local\Temp\PRE_Files\updaterinventory.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\278090af.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\34bdba63.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\4a2ee9db.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\671d8b64.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\6d48952f.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\9a6a9a93.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\d183fe29.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\exiftool.exe C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.84\perl58.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\278090af.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\34bdba63.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\4a2ee9db.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\671d8b64.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\6d48952f.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\9a6a9a93.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\d183fe29.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\exiftool.exe C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.50\perl58.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\278090af.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\34bdba63.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\4a2ee9db.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\671d8b64.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\6d48952f.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\9a6a9a93.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\d183fe29.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\exiftool.exe C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-8.34\perl58.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\278090af.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\34bdba63.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\4a2ee9db.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\671d8b64.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\6d48952f.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\9a6a9a93.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\d183fe29.dll C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\exiftool.exe C:\Users\Rainer\AppData\Local\Temp\par-Rainer\cache-exiftool-7.98\perl58.dll C:\Users\Rainer\AppData\Local\Temp\nsrA37C.tmp\Time.dll C:\Users\Rainer\AppData\Local\Temp\nscA4A5.tmp\Time.dll C:\Users\Rainer\AppData\Local\Temp\nsb93FC.tmp\Time.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MaAgent.exe C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MAAuthProc.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MACLICX13.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MACLicX15.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MACSMANAGER.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MaCSMgr.exe C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MaCSProHook.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\mapshapi.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\mapwij10.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MaSyncP.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MaWAMP.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MAWebControl.exe C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MaWMP.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MPXBox.exe C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\MtpAccess.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\UserShare.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\XSYNCClt.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAFileUpdate.dll C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdate.exe C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdateBoot.exe C:\Users\Rainer\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MaUpdateClient.exe C:\Users\Rainer\AppData\Local\Temp\KiesTemporary\avrt.dll C:\Users\Rainer\AppData\Local\Temp\KiesTemporary\wlanapi.dll C:\Users\Rainer\AppData\Local\Temp\is735155443\361036993_Setup.EXE C:\Users\Rainer\AppData\Local\Temp\is735155443\DeltaTB.exe C:\Users\Rainer\AppData\Local\Temp\is735155443\dp.exe C:\Users\Rainer\AppData\Local\Temp\is735155443\wajam_validate.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\Converter.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\CPWriter2.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\custmon32i.dll C:\Users\Rainer\AppData\Local\Temp\is357113909\custmon64i.dll C:\Users\Rainer\AppData\Local\Temp\is357113909\custmoni.dll C:\Users\Rainer\AppData\Local\Temp\is357113909\dp.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\message.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\OpenItSetup.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\pdfwriter.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\pdfwriter32.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\pdfwriter64.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\Preferences.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\QtraxInstaller.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\Setup.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\unInstpw.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\unInstpw64.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\wajam_download.exe C:\Users\Rainer\AppData\Local\Temp\is357113909\Driver\ICONLIB.DLL C:\Users\Rainer\AppData\Local\Temp\is357113909\Driver\PS5UI.DLL C:\Users\Rainer\AppData\Local\Temp\is357113909\Driver\PSCRIPT5.DLL C:\Users\Rainer\AppData\Local\Temp\is357113909\Driver\PSMON.DLL C:\Users\Rainer\AppData\Local\Temp\is357113909\Driver\X64\PS5UI.DLL C:\Users\Rainer\AppData\Local\Temp\is357113909\Driver\X64\PSCRIPT5.DLL C:\Users\Rainer\AppData\Local\Temp\is-0DCOB.tmp\_isetup\_shfoldr.dll C:\Users\Rainer\AppData\Local\Temp\DIQ\FlashPlayer_151\bin.dll C:\Users\Rainer\AppData\Local\Temp\DIQ\FlashPlayer_151\config.dll C:\Users\Rainer\AppData\Local\Temp\DIQ\FlashPlayer_151\routes.dll C:\Users\Rainer\AppData\Local\Temp\DIQ\FlashPlayer_151\software\Delta Babylon.exe C:\Users\Rainer\AppData\Local\Temp\DIQ\FlashPlayer_151\software\FlashPlayer.exe C:\Users\Rainer\AppData\Local\Temp\DIQ\FlashPlayer_151\software\OptimizerPro.exe C:\Users\Rainer\AppData\Local\Temp\DIQ\FlashPlayer_151\software\Yontoo.exe C:\Users\Rainer\AppData\Local\Temp\busC5C9\enhancedNT.dll C:\Users\Rainer\AppData\Local\Temp\busC5C9\NTRedirectUpdate.exe C:\Users\Rainer\AppData\Local\Temp\busA323\ff21v.exe C:\Users\Rainer\AppData\Local\Temp\bus7F59\BabScheduler3.exe C:\Users\Rainer\AppData\Local\Temp\bus79E1\BUSolution.dll C:\Users\Rainer\AppData\Local\Temp\bus6C08\ChromeExtUpdater.exe C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\aswCmnBS.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\aswCmnIS.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\aswCmnOS.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\atl90.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCUCmnRes.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1025.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1026.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1027.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1028.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1029.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1030.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1031.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1032.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1033.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1035.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1036.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1037.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1038.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1040.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1041.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1042.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1043.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1044.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1045.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1046.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1048.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1049.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1050.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1051.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1053.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1054.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1055.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1056.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1057.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1058.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1059.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1060.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1061.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1062.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1065.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1066.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1081.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1086.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1093.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_1909.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_2052.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_2070.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_2074.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BCULangRes_3082.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\BrowserCleanup.exe C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\mfc90u.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\msvcp90.dll C:\Users\Rainer\AppData\Local\Temp\7zS6EAC.tmp\msvcr90.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\aswCmnBS.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\aswCmnIS.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\aswCmnOS.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\atl90.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCUCmnRes.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1025.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1026.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1027.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1028.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1029.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1030.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1031.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1032.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1033.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1035.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1036.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1037.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1038.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1040.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1041.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1042.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1043.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1044.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1045.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1046.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1048.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1049.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1050.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1051.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1053.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1054.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1055.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1056.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1057.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1058.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1059.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1060.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1061.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1062.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1065.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1066.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1081.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1086.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1093.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_1909.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_2052.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_2070.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_2074.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BCULangRes_3082.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\BrowserCleanup.exe C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\mfc90u.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\msvcp90.dll C:\Users\Rainer\AppData\Local\Temp\7zS3E89.tmp\msvcr90.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\BabMaint.exe C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\BExternal.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\BUSolForMontiera.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\BUSolution.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\ccp.exe C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\ChromeToolbarSetup.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\CrxInstaller.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\GUninstaller.exe C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\IEHelper.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\MntrDLLInstall.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\MyDeltaTB.exe C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\NTRedirect.dll C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\Setup.exe C:\Users\Rainer\AppData\Local\Temp\7F90FF41-BAB0-7891-A34F-1BCBE39EFC54\Latest\sqlite3.dll C:\Users\Rainer\AppData\Local\Temp\2abf8d65-cec1-4a3d-a1b9-2daadeb6fe42\CliSecureRT.dll C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\BabMaint.exe C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\BExternal.dll C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\BUSolution.dll C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\BUSUninstall.exe C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\ccp.exe C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\ChromeToolbarSetup.dll C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\CrxInstaller.dll C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\GUninstaller.exe C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\IEHelper.dll C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\MyBabylonTB.exe C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\Setup.exe C:\Users\Rainer\AppData\Local\Temp\0048FBCD-BAB0-7891-BBA7-514A4E002810\Latest\sqlite3.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\GoogleEarth.exe C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemyext.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\earthps.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\geplugin.exe C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\ge_expat.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\googleearth.exe.local C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\googleearth_free.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\icudt.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGAttrs.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGCore.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGExportCommon.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGGfx.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGMath.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGOpt.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGSg.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGUtils.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\Leap.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\msvcp100.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\msvcr100.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\npgeplugin.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\plugin_ax.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\QtCore4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\QtGui4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\QtNetwork4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\QtWebKit4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\imageformats\qgif4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\imageformats\qjpeg4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\optimizations\IGOptExtension.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\D3DCompiler_43.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\d3dx9_43.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\IGAttrs.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\IGGfx.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\IGSg.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\libEGL.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\libGLESv2.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogl\IGAttrs.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogl\IGGfx.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogl\IGSg.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemyext.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\earthflashsol.exe C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\earthps.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\ge_expat.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\googleearth.exe C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\googleearth.exe.local C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\googleearth_free.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\gpsbabel.exe C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\icudt.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGAttrs.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGCore.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGExportCommon.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGGfx.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGMath.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGOpt.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGSg.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGUtils.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\Leap.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\msvcp100.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\msvcr100.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\QtCore4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\QtGui4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\QtNetwork4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\QtWebKit4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\Plugins\npgeinprocessplugin.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\imageformats\qgif4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\imageformats\qjpeg4.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\optimizations\IGOptExtension.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\D3DCompiler_43.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\d3dx9_43.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\IGAttrs.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\IGGfx.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\IGSg.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\libEGL.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\libGLESv2.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogl\IGAttrs.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogl\IGGfx.dll C:\Users\Rainer\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogl\IGSg.dll ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-08-21 07:26 ==================== End Of Log ============================ Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-08-2013 01 Ran by Rainer at 2013-08-24 18:13:53 Running from C:\Users\Rainer\Downloads Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) Adobe Acrobat 8 Professional - English, Français, Deutsch (x32 Version: 8.0.0) Adobe AIR (x32 Version: 1.5.3.9130) Adobe Bridge 1.0 (x32 Version: 001.000.001) Adobe Common File Installer (x32 Version: 1.00.001) Adobe Community Help (x32 Version: 3.2.1) Adobe Community Help (x32 Version: 3.2.1.650) Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94) Adobe Help Center 1.0 (x32 Version: 1.0.1) Adobe Photoshop CS2 (x32 Version: 9.0) Adobe Photoshop Elements 9 (x32 Version: 9.0.3.0) Adobe Premiere Elements 9 (x32 Version: 9.0) Adobe Premiere Elements 9 (x32 Version: 9.0.1) Adobe Reader XI MUI (x32 Version: 11.0.00) Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03) Adobe Stock Photos 1.0 (x32 Version: 1.0.1) BackupPCFiles 1.0.0.676 (x32 Version: 1.0.0.676) Canon MP Navigator EX 4.0 (x32) Canon Solution Menu EX (x32) CanoScan LiDE 210 Scanner Driver CDBurnerXP (Version: 4.5.0.3661) CDBurnerXP (x32 Version: 4.5.0.3717) Classic Shell (Version: 3.6.6) Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000) Corel MediaOne (x32 Version: 2.00.0000) Corel Painter Essentials 3 (x32 Version: 3.2) Corel Painter Essentials 3 (x32) D3DX10 (x32 Version: 15.4.2368.0902) DealPly (remove only) (x32 Version: 4.8.7.3) Delta Chrome Toolbar (x32) DHTML Editing Component (x32 Version: 6.02.0001) DomaIQ (x32) dows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0) Dr. Hardware 2013 13.0d (x32) Elements 9 Organizer (x32 Version: 9.0) Elements STI Installer (x32 Version: 1.0) Exifer (x32) Exif-Viewer 2.51 (x32 Version: 2.51) Falk Navi-Manager (x32 Version: 2.16.2) Falk Navi-Manager (x32 Version: 2.20.0) Fotogalerie (x32 Version: 16.4.3505.0912) Free YouTube Download version 3.2.0.128 (x32 Version: 3.2.0.128) FTDownloader (x32 Version: 2.1 Build 26473) Galerie de photos (x32 Version: 16.4.3505.0912) Garmin TOPO Deutschland 2010 (x32 Version: 4.0.0.0) Garmin USB Drivers (x32 Version: 2.3.0.0) GIMP 2.8.4 (Version: 2.8.4) Google Chrome (x32 Version: 29.0.1547.57) Google Earth (x32 Version: 7.1.1.1888) Google Update Helper (x32 Version: 1.3.21.153) Hugin 2009.4.0 (x32 Version: 2009.4.0) Hugin 2011.0.0 (x32 Version: 2011.0.0 hg_0fd3e119979c) Iminent Toolbar For Internet Explorer (x32 Version: 3.26.0) Intel(R) Control Center (x32 Version: 1.2.1.1008) Intel(R) Management Engine Components (x32 Version: 8.1.0.1281) Intel(R) Rapid Storage Technology (x32 Version: 11.6.0.1030) Intel® Trusted Connect Service Client (Version: 1.24.738.1) IrfanView (remove only) (x32 Version: 4.35) Java 7 Update 25 (x32 Version: 7.0.250) Java Auto Updater (x32 Version: 2.1.9.5) Kaspersky Anti-Virus 2013 (x32 Version: 13.0.1.4190) LyricXeeker (x32) Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300) McAfee Security Scan Plus (x32 Version: 3.0.318.3) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Office 2000 Standard (x32 Version: 9.00.2816) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (x32 Version: 9.0.21022.218) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Movie Maker (x32 Version: 16.4.3505.0912) MozBackup 1.5.1 (x32) Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1) Mozilla Maintenance Service (x32 Version: 23.0.1) Mozilla Thunderbird 17.0.8 (x86 de) (x32 Version: 17.0.8) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT110 (x32 Version: 16.4.1108.0727) MSVCRT110_amd64 (Version: 16.4.1109.0912) MyFreeCodec (HKCU) Natural Color Pro (x32 Version: 1.0.0.6) NVIDIA 3D Vision Controller-Treiber 314.07 (Version: 314.07) NVIDIA 3D Vision Treiber 314.07 (Version: 314.07) NVIDIA Grafiktreiber 314.07 (Version: 314.07) NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1) NVIDIA Install Application (Version: 2.1002.109.706) NVIDIA PhysX (x32 Version: 9.12.1031) NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1407) NVIDIA Systemsteuerung 314.07 (Version: 314.07) NVIDIA Update 1.12.12 (Version: 1.12.12) NVIDIA Update Components (Version: 1.12.12) Open It! (x32 Version: 1.1.1) Oracle VM VirtualBox 4.2.6 (Version: 4.2.6) PDF Creator Photo Common (x32 Version: 16.4.3505.0912) Photo Gallery (x32 Version: 16.4.3505.0912) PhotoME (x32 Version: 0.79R17) Picasa 3 (x32 Version: 3.9) PlayMemories Home (x32 Version: 7.0.03.04240) Realtek Ethernet Controller Driver (x32 Version: 8.3.730.2012) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6662) Samsung Kies (x32 Version: 2.5.3.13052_10) SAMSUNG USB Driver for Mobile Phones (Version: 1.5.24.0) ShiftN 3.6.1 (x32 Version: 3.6.1) Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (x32) Silicon Laboratories USBXpress Device (Driver Removal) (x32) SmartSound Quicktracks for Premiere Elements 9.0 (x32 Version: 3.12.3090) Sony Ericsson Update Engine (x32 Version: 2.13.6.201305161305) Sony PC Companion 2.10.165 (x32 Version: 2.10.165) Topo Deutschland v2 (x32 Version: 2.00) Ulead PhotoImpact X3 (x32 Version: 1.00.0000) VAFPlayer (x32 Version: 1.6.8) VLC media player 2.0.5 (Version: 2.0.5) WeatherLink 5.9.3 (x32 Version: 5.9.3) Windows Live (x32 Version: 16.4.3505.0912) Windows Live Communications Platform (x32 Version: 16.4.3505.0912) Windows Live Essentials (x32 Version: 16.4.3505.0912) Windows Live Installer (x32 Version: 16.4.3505.0912) Windows Live Photo Common (x32 Version: 16.4.3505.0912) Windows Live PIMT Platform (x32 Version: 16.4.3505.0912) Windows Live SOXE (x32 Version: 16.4.3505.0912) Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912) Windows Live UX Platform (x32 Version: 16.4.3505.0912) Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912) WsWin V2.96.10 - 2012-03-13 (x32 Version: 2.96.10) Yontoo 2.052 (Version: 2.052) ==================== Restore Points ========================= 17-08-2013 05:28:02 Geplanter Prüfpunkt 23-08-2013 17:28:44 Installiert Falk Navi-Manager ==================== Hosts content: ========================== 2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {09DF2727-2A6F-4B8B-90D0-85CB98D7B04E} - System32\Tasks\DealPlyUpdate => C:\Program No File Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation) Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {249FFB11-BAB5-4C62-AC28-8D5402E182F8} - System32\Tasks\Task BackupPCFiles => C:\Program Files (x86)\BackupPCFiles\BackupPCFiles.TaskScheduler.exe [2013-06-12] () Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update Task: {3475443C-7854-423A-ACCD-876E50E98101} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2560001034-2644125590-1053040255-1002 Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2013-06-01] (Microsoft Corporation) Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon Task: {561CF1A5-9BFF-4459-B4E6-2439798064A2} - \LyricXeeker Update No Task File Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance Task: {58998DDB-2BAF-4EE3-8DFD-B06EB2A218EE} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation) Task: {6666657C-BF4A-4B25-BAB1-E3B7E5D2FA01} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-04] (Google Inc.) Task: {69297D2E-1CFD-463D-AF04-667C16B91A68} - System32\Tasks\DealPlyLiveUpdateTaskMachineUA => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-08-10] (DealPly Technologies Ltd) Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-09-20] (Microsoft Corporation) Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Task: {70727B0A-8DCC-4170-BE8F-470F4A86B3DA} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update Task: {746EEB16-C927-4C5B-AD78-2686E2159C87} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2560001034-2644125590-1053040255-500 Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) Task: {8DD26F9D-49C2-460A-84FC-E2F8D094D067} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\Windows\system32\sc.exe [2012-07-26] (Microsoft Corporation) Task: {912C454F-CA93-4596-8AD6-ABC897C930A9} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2012-09-20] (Microsoft Corporation) Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Task: {9639D8E6-82CB-4863-BD4C-22476E0B16A5} - System32\Tasks\WPD\SqmUpload_S-1-5-21-2560001034-2644125590-1053040255-1002 => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic Task: {9BB3E6BA-15E1-4676-B5C0-E89778F023BC} - System32\Tasks\DealPlyLiveUpdateTaskMachineCore => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-08-10] (DealPly Technologies Ltd) Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask Task: {A8717AE2-18E0-4C4D-89EC-BBAB8D5A952A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-10] (Adobe Systems Incorporated) Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask Task: {ACD901A2-6187-4E71-9A82-66EEC0C146CD} - System32\Tasks\EPUpdater => C:\Users\Rainer\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [2013-08-04] () Task: {AD5C7744-8943-4E97-8496-274A51A2E154} - System32\Tasks\Go for FilesUpdate => C:\Program Files (x86)\GoforFiles\GFFUpdater.exe No File Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan Task: {C279FFED-A841-4AAC-BD76-E03EAB8166E8} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect Task: {C42A6170-89DA-4767-ABBC-E43319B4B7F3} - System32\Tasks\AdobeAAMUpdater-1.0-Lippert-Rainer => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated) Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork Task: {DB67FCDE-4C5B-4238-9A15-EDEBD53C0751} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-04] (Google Inc.) Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask Task: {E8D6958A-CFAE-43F4-92C8-1C7D677233CD} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-09-20] (Microsoft Corporation) Task: {EBBA481B-855B-4C00-841E-FA9AA54A7450} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation) Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe Task: C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\LyricXeeker Update.job => C:\Program Files (x86)\LyriXeeker\LyriXupdate.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/24/2013 06:03:11 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: ZipOpenerSetup(1).exe, Version: 0.0.0.0, Zeitstempel: 0x2a425e19 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc000041d Fehleroffset: 0x01cf4d22 ID des fehlerhaften Prozesses: 0x13bc Startzeit der fehlerhaften Anwendung: 0xZipOpenerSetup(1).exe0 Pfad der fehlerhaften Anwendung: ZipOpenerSetup(1).exe1 Pfad des fehlerhaften Moduls: ZipOpenerSetup(1).exe2 Berichtskennung: ZipOpenerSetup(1).exe3 Vollständiger Name des fehlerhaften Pakets: ZipOpenerSetup(1).exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ZipOpenerSetup(1).exe5 Error: (08/24/2013 06:03:08 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: ZipOpenerSetup(1).exe, Version: 0.0.0.0, Zeitstempel: 0x2a425e19 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x01cf4d22 ID des fehlerhaften Prozesses: 0x13bc Startzeit der fehlerhaften Anwendung: 0xZipOpenerSetup(1).exe0 Pfad der fehlerhaften Anwendung: ZipOpenerSetup(1).exe1 Pfad des fehlerhaften Moduls: ZipOpenerSetup(1).exe2 Berichtskennung: ZipOpenerSetup(1).exe3 Vollständiger Name des fehlerhaften Pakets: ZipOpenerSetup(1).exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ZipOpenerSetup(1).exe5 Error: (08/24/2013 04:47:58 PM) (Source: ESENT) (User: ) Description: taskhostex (916) Versuch, Datei "C:\Users\Rainer\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien. Error: (08/24/2013 04:47:30 PM) (Source: Desktop Window Manager) (User: ) Description: Der Desktopfenster-Manager hat einen schwerwiegenden Fehler (0x8898008d) festgestellt. Error: (08/24/2013 10:30:48 AM) (Source: MsiInstaller) (User: NT-AUTORITÄT) Description: Producto: VAFPlayer -- Error 1706. No se encuentra ningún paquete de instalación para el producto VAFPlayer. Vuelva a intentar la instalación usando una copia válida del paquete de instalación 'Installer.msi'. Error: (08/24/2013 10:30:47 AM) (Source: MsiInstaller) (User: NT-AUTORITÄT) Description: Producto: VAFPlayer -- Error 1706. No se encuentra ningún paquete de instalación para el producto VAFPlayer. Vuelva a intentar la instalación usando una copia válida del paquete de instalación 'Installer.msi'. Error: (08/24/2013 09:43:31 AM) (Source: Perflib) (User: ) Description: rdyboost4 Error: (08/23/2013 06:39:15 PM) (Source: MsiInstaller) (User: NT-AUTORITÄT) Description: Producto: VAFPlayer -- Error 1706. No se encuentra ningún paquete de instalación para el producto VAFPlayer. Vuelva a intentar la instalación usando una copia válida del paquete de instalación 'Installer.msi'. Error: (08/23/2013 06:39:13 PM) (Source: MsiInstaller) (User: NT-AUTORITÄT) Description: Producto: VAFPlayer -- Error 1706. No se encuentra ningún paquete de instalación para el producto VAFPlayer. Vuelva a intentar la instalación usando una copia válida del paquete de instalación 'Installer.msi'. Error: (08/22/2013 07:30:51 PM) (Source: Application Hang) (User: ) Description: Programm firefox.exe, Version 23.0.1.4974 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 13dc Startzeit: 01ce9f5d505bd6f6 Endzeit: 4294967295 Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Berichts-ID: 95177bc9-0b50-11e3-bf2c-ca37d22286db Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: System errors: ============= Error: (08/24/2013 10:16:09 AM) (Source: Microsoft-Windows-Kernel-Power) (User: ) Description: 4 Error: (08/24/2013 09:45:40 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: %%1069 Error: (08/24/2013 09:45:40 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%1330 Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC). Error: (08/24/2013 08:18:35 AM) (Source: Microsoft-Windows-Kernel-Power) (User: ) Description: 4 Error: (08/23/2013 08:05:48 AM) (Source: Microsoft-Windows-Kernel-Power) (User: ) Description: 4 Error: (08/22/2013 08:40:19 PM) (Source: Microsoft-Windows-Kernel-Power) (User: ) Description: 4 Error: (08/21/2013 09:13:01 PM) (Source: Microsoft-Windows-Kernel-Power) (User: ) Description: 4 Error: (08/21/2013 08:39:38 PM) (Source: Microsoft-Windows-Kernel-Power) (User: ) Description: 4 Error: (08/21/2013 08:06:07 AM) (Source: Microsoft-Windows-Kernel-Power) (User: ) Description: 4 Error: (08/20/2013 09:36:02 PM) (Source: Microsoft-Windows-Kernel-Power) (User: ) Description: 4 Microsoft Office Sessions: ========================= Error: (08/24/2013 06:03:11 PM) (Source: Application Error)(User: ) Description: ZipOpenerSetup(1).exe0.0.0.02a425e19unknown0.0.0.000000000c000041d01cf4d2213bc01cea0e369c7a1d3C:\Users\Rainer\Downloads\ZipOpenerSetup(1).exeunknownac 741007-0cd6-11e3-bf2d-902b34983558 Error: (08/24/2013 06:03:08 PM) (Source: Application Error)(User: ) Description: ZipOpenerSetup(1).exe0.0.0.02a425e19unknown0.0.0.000000000c000000501cf4d2213bc01cea0e369c7a1d3C:\Users\Rainer\Downloads\ZipOpenerSetup(1).exeunknownaa 993524-0cd6-11e3-bf2d-902b34983558 Error: (08/24/2013 04:47:58 PM) (Source: ESENT)(User: ) Description: taskhostex916C:\Users\Rainer\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. Error: (08/24/2013 04:47:30 PM) (Source: Desktop Window Manager)(User: ) Description: 0x8898008d Error: (08/24/2013 10:30:48 AM) (Source: MsiInstaller)(User: NT-AUTORITÄT) Description: Producto: VAFPlayer -- Error 1706. No se encuentra ningún paquete de instalación para el producto VAFPlayer. Vuelva a intentar la instalación usando una copia válida del paquete de instalación 'Installer.msi'.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (08/24/2013 10:30:47 AM) (Source: MsiInstaller)(User: NT-AUTORITÄT) Description: Producto: VAFPlayer -- Error 1706. No se encuentra ningún paquete de instalación para el producto VAFPlayer. Vuelva a intentar la instalación usando una copia válida del paquete de instalación 'Installer.msi'.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (08/24/2013 09:43:31 AM) (Source: Perflib)(User: ) Description: rdyboost4 Error: (08/23/2013 06:39:15 PM) (Source: MsiInstaller)(User: NT-AUTORITÄT) Description: Producto: VAFPlayer -- Error 1706. No se encuentra ningún paquete de instalación para el producto VAFPlayer. Vuelva a intentar la instalación usando una copia válida del paquete de instalación 'Installer.msi'.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (08/23/2013 06:39:13 PM) (Source: MsiInstaller)(User: NT-AUTORITÄT) Description: Producto: VAFPlayer -- Error 1706. No se encuentra ningún paquete de instalación para el producto VAFPlayer. Vuelva a intentar la instalación usando una copia válida del paquete de instalación 'Installer.msi'.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (08/22/2013 07:30:51 PM) (Source: Application Hang)(User: ) Description: firefox.exe23.0.1.497413dc01ce9f5d505bd6f64294967295C:\Program Files (x86)\Mozilla Firefox\firefox.exe95177bc9-0b50-11e3-bf2c-ca37d22286db ==================== Memory info =========================== Percentage of memory in use: 77% Total physical RAM: 4042.84 MB Available physical RAM: 910.98 MB Total Pagefile: 6730.84 MB Available Pagefile: 2278.82 MB Total Virtual: 8192 MB Available Virtual: 8191.77 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:891.31 GB) (Free:691.29 GB) NTFS Drive d: (Windows XP) (Fixed) (Total:488.28 GB) (Free:486.76 GB) NTFS Drive g: () (Fixed) (Total:698.63 GB) (Free:121.67 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 86360811) Partition: GPT Partition Type ======================================================== Disk: 1 (Size: 699 GB) (Disk ID: 9564BEB6) Partition 1: (Active) - (Size=699 GB) - (Type=07 NTFS) ==================== End Of Log ============================ GMER habe ich noch nicht durchgeführt. Kann mir da jeman mit meinem Problem weiterhelfen? Danke und viele Grüße, Rainer |
Baum-Darstellung