| |
| |||||||
Log-Analyse und Auswertung: Software UpdaterUi.exe - was ist das? Entfernen? Schädlich?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
07.10.2013, 12:46
| #1 |
 |  Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Hallo, mein Problem erkennt Ihr ja schon an meinem Titel. Blicke nicht durch was das sein soll. Habe kein Programm gefunden mit UI im Namen. Könnt Ihr mir da weiter helfen? Wäre Euch sehr dankbar. Gruß Baste81 |
|
07.10.2013, 15:05
| #2 |
| /// the machine /// TB-Ausbilder    | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
08.10.2013, 13:00
| #3 | |
| | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich?Zitat:
Habe FRST laufen lassen und es kam nur .txt File und wenn ich sie bei Antwort (hier) einfüge kommt nur Text und ich kann nicht auf antworten drücken da nur die komplette Seite angezeigt wird. Was mach ich falsch OK, soweit bin ich jetzt min. gekommen das ich den Text kopiere und einfüge, Addition.txt ist nicht vorhanden FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by sabrina (administrator) on SABRINA-PC on 08-10-2013 13:54:48
Running from C:\Users\sabrina\Downloads\FRST - Farbar Recovery Scan Tool
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
() C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HControlUser] - C:\Program Files\ATK Hotkey\HcontrolUser.exe [98304 2008-01-12] ()
HKLM\...\Run: [CLMLServer] - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [104936 2008-07-19] (CyberLink)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-12-06] (Synaptics, Inc.)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6111232 2008-04-17] (Realtek Semiconductor)
HKLM\...\Run: [P2Go_Menu] - "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ATKOSD2\ATKOSD2.exe [7766016 2008-01-24] ()
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2008-02-02] ()
HKLM\...\Run: [Adobe Photo Downloader] - C:\Photoshop\3.2\Apps\apdproxy.exe [57344 2007-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-09-30] (Avira Operations GmbH & Co. KG)
HKCU\...409d6c4515e9\InprocServer32: [Default-shell32] <==== ATTENTION!
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
IMEO\excel.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\finder.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\frontpg.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\mediabuilder.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\msaccess.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\msbpd.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\msoxmled.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\mspub.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\mstore.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\offdiag.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\ois.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\onenote.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\onenotem.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\osa9.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\outlook.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\photodrw.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\powerpnt.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\sbcmstrt.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\systemreport.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\trueimagelauncher.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\trueimagetools.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\winpe_iso.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\winword.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
Startup: C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Inhaltsverzeichnis.onetoc2 ()
==================== Internet (Whitelisted) ====================
ProxyServer: http=85.214.84.220:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = :: Globa Search ::
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Upgrade to Google Chrome
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = Delta Search
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = :: Globa Search ::
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
SearchScopes: HKLM - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.globasearch.com/?serie=32&b=3&q={searchTerms}
SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.globasearch.com/?serie=32&b=3&q={searchTerms}
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.globasearch.com/?serie=32&b=3&q={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.globasearch.com/?serie=32&b=3&q={searchTerms}
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=15d710c0-ef0a-4651-85a2-9ed2178bb6b3&apn_sauid=A22090BB-3DBA-48FA-9CB9-FB49156E7DDC
SearchScopes: HKCU - {8A245F63-D5D8-4835-ADCE-80E1B4EEFEC1} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
BHO: Browser Guard - {02a0d829-4393-46fc-a37e-126263035883} - C:\Program Files\Browser Guard\browserguard.dll (Browser Guard)
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.24.6\bh\delta.dll (Delta-search.com)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.24.6\deltaTlbr.dll (Delta-search.com)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU -&Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Winsock: Catalog9 01 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 09 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 10 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 11 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 12 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 13 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 14 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 15 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 16 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 27 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 28 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default
FF user.js: detected! => C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\user.js
FF SearchEngineOrder.1: Ask.com
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF SearchPlugin: C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\searchplugins\askcom.xml
FF Extension: Lyrics Seeker - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\133
FF Extension: Delta Toolbar - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\ffxtlbr@delta.com
FF Extension: Web Check - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\WebCheck
FF Extension: Adblock Plus - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF Extension: Block site - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc}
FF Extension: No Name - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20d1f7b3-7721-4da0-b6f3-78bb4d7248f4}] - C:\Program Files\Browser Guard\browserguard.xpi
FF Extension: No Name - C:\Program Files\Browser Guard\browserguard.xpi
Chrome:
=======
CHR Extension: (Entanglement Web App) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\3.4.9_0
CHR Extension: (Eredan iTCG) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakdeclmfcolipiknbfealnjddfibfo\1_0
CHR Extension: (American Racing 2 3D) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfpfdjclhabpjncikdngdoldjjjegnbe\2.1.2_0
CHR Extension: (Avatar Arena) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjbjlhannmmdjeebjgdikdchpiijljek\1.0.1_0
CHR Extension: (Gravity Guy) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjlgidnccmkehcefagofppjbnhogbjmm\1.0.0_0
CHR Extension: (YouTube) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (BeGone: Last Stand HD) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmekbplkjhgmljmbblmhmcnocafhaink\1.8.2.17_0
CHR Extension: (Classic Games) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpckajjkmjncafjlkielcgheibdlnfgc\1.0_0
CHR Extension: (Tanki Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo\1.5_0
CHR Extension: (Virtual piano) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohgcponedmbhgbbdinajeoapmoaifdj\4.9.3_0
CHR Extension: (Web Check ) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee\0.1
CHR Extension: (Spongebob Super Brawl 3) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfaoangdklcefogknfphjjmohfedgnlj\2.3.1_0
CHR Extension: (Burst Motocross) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkcakkmhmimngalgjjaiibkiolehcfmh\1.0_0
CHR Extension: (Rock Paper Scissors) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkmlfkbofapbceihbpdpjganpnienhfc\1.0.9_0
CHR Extension: (Torrent Turbo Search App) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\eegbffmjdkflkcfncpfjjbggbdlnbdif\0.1_0
CHR Extension: (Tetris 2) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\emidddocikgklceeeifefomdnbkldhng\1.0.0.17_0
CHR Extension: (Delta Toolbar) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0
CHR Extension: (Weather (extension)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fapbbpdnlcmiolkdfjnnjhabmcndadad\0.9.0.6_0
CHR Extension: (Sudoku) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbldalicehmlaalddffibogeplifangc\1.0.3_0
CHR Extension: (Type Scout) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fedokkaolmkkoeedicihicdeppjjeamj\5_0
CHR Extension: (CHIP Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd\1.5_0
CHR Extension: (Planes Propwash Pursuit) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\figbofenkblalldlgjjflfpendllpceh\2.3.1_0
CHR Extension: (Counter Strike Online ) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fplklihjpkinahlihcljhnnlnhnmmhdp\2.6_0
CHR Extension: (Digital Clock) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo\1.11_0
CHR Extension: (Goodgame Empire) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggdljnjjajocmjaldkldaapkkclbaclb\9_0
CHR Extension: (AdBlock) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.7_0
CHR Extension: (UNO Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjfncmhihlfbkinpfenkeliekjpoakbf\1.0.0.0_0
CHR Extension: (PDF Mergy) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha\0.5.2_0
CHR Extension: (Tomb Jewels (HD)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjehadkphnfpnheecobbohnphogngooo\1.1.5_0
CHR Extension: (Street Skater 3D) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlchpgbjfeoncdkgcihimbimpjiaodfl\1.0_0
CHR Extension: (Crazy Shooting) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbhccdddhenjmeamogpjhicnoffdood\1.0.0_0
CHR Extension: (Die Siedler Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmhcglhfdnepmdeelgjfdjckclajkha\1.0.1_0
CHR Extension: (The West) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilkgeioneoemibpddeiamfgiofnpjifm\1.5_0
CHR Extension: (Dropbox) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl\3.0.8_0
CHR Extension: (FAST FIVE) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipecejmhgombfadlddemeadfapnafcgo\1.0.1_0
CHR Extension: (theHunter) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jangaedeekciafhlanphhnalogmhefmo\10_0
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe\1.0.8_0
CHR Extension: (Movi Kanti Revo) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdkcgeghhfjiglphfppinecpcpnnbne\1.0.0.0_0
CHR Extension: (Soccer Manager) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpemkngoajegcbamebdmnkjoalpofpbj\1.1.6.2_0
CHR Extension: (Drakensang Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgloifppaepihckkhiocnodicehjdoof\4.0.1_0
CHR Extension: (Lyrics Seeker) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_0
CHR Extension: (Top Eleven) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn\2.0.0.4_0
CHR Extension: (Zuma) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmlohpfojplnfgcbgooclnhidniofegn\1.0.0_0
CHR Extension: (Google Maps) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0
CHR Extension: (Lagoonia) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjcaihkcddgdgaghmnmfpkkfilombbm\1.38_0
CHR Extension: (Need for Speed World) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk\1.0.0.4_0
CHR Extension: (Sonic the Hedgehog) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbdhbpmojeedfmgelekgjhdejdmfpikn\1.0_0
CHR Extension: (Curling) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhalnajmigjnpjpdbpkpgfhekbjmolhp\1.0.10_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Current Moon Phase (Northern Hemisphere)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\oampnkjpomgmmphfoedhihefpbjhjamo\1.6.10_0
CHR Extension: (Jungle Plumber Challenge) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojpobnopmcjkgbgakigfoemfgfcdiefi\2_0
CHR Extension: (Goodgame Big Farm) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\okdjgjhkolgmkjjddmnjejjphhkdjdhc\4_0
CHR Extension: (Marc Ecko) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk\2_0
CHR Extension: (Edgeworld) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfmpdiaehhnljpdomnggcbfofdgkmbp\1.0.1.2_0
CHR Extension: (eBay Deals) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pllkgmcojhajjmojfoagiegoibjognlc\1.0.4_0
CHR HKLM\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\sabrina\AppData\Roaming\BabSolution\CR\Delta.crx
CHR HKLM\...\Chrome\Extension: [kfepagcelbegkpkcjgfeecmlnmkedjin] - C:\Program Files\Browser Guard\browserguard.crx
========================== Services (Whitelisted) =================
S4 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [778000 2013-07-18] (Acronis)
R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728 2007-05-18] ()
S4 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3906552 2013-09-17] (Acronis)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-09-30] (Avira Operations GmbH & Co. KG)
S4 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-03] ()
S4 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
S4 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [9745008 2013-08-21] (Acronis)
S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [296448 2013-09-13] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1740600 2013-08-28] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R0 AsDsm; C:\Windows\System32\Drivers\AsDsm.sys [29752 2007-08-11] (Windows (R) Codename Longhorn DDK provider)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-09-30] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
S3 CRFILTER; C:\Windows\System32\DRIVERS\CRFILTER.sys [6656 2008-04-07] (Generic)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [99400 2013-09-26] (MotioninJoy)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [104616 2008-11-04] (MCCI Corporation)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1769984 2007-10-01] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-09-30] (Avira GmbH)
S3 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [889888 2013-09-17] (Acronis International GmbH)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [736192 2013-09-17] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [130488 2013-09-17] (Acronis)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-08-21] (TuneUp Software)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [116000 2013-09-17] (Acronis International GmbH)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [85280 2013-09-17] (Acronis International GmbH)
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-07 13:55 - 2013-10-07 14:08 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-07 13:39 - 2013-10-07 14:08 - 00000000 ____D C:\Users\sabrina\AppData\Local\DownloadGuide
2013-10-07 13:38 - 2013-10-08 13:54 - 00000000 ___RD C:\Users\sabrina\Downloads\FRST - Farbar Recovery Scan Tool
2013-10-07 13:27 - 2013-10-07 13:27 - 00000000 ____D C:\FRST
2013-10-05 20:15 - 2013-10-05 20:15 - 00000071 _____ C:\Users\sabrina\Desktop\Acronis Testkey.txt
2013-10-05 20:01 - 2013-10-05 20:01 - 00001876 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-10-05 20:01 - 2013-08-28 20:32 - 00036664 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-10-05 20:01 - 2013-08-28 20:32 - 00025400 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-05 19:45 - 2013-10-05 19:51 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-05 19:40 - 2013-10-05 19:40 - 00000000 ____D C:\Users\sabrina\Downloads\Acronis Recovery
2013-10-05 19:37 - 2013-10-05 19:37 - 17810632 _____ (pdfforge GmbH) C:\Users\sabrina\Downloads\PDFCreator-1_7_1_setup.exe
2013-10-01 16:02 - 2013-10-01 16:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-01 14:39 - 2013-10-01 14:42 - 09030312 _____ C:\Users\sabrina\Downloads\avira_secure_backup.exe
2013-10-01 14:27 - 2013-10-01 14:27 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-01 14:26 - 2013-10-01 14:26 - 00000000 ____D C:\Program Files\Avira
2013-10-01 14:26 - 2013-09-30 11:01 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-10-01 14:06 - 2013-10-01 14:07 - 122946048 _____ C:\Users\sabrina\Downloads\avira14_free_antivirus_de.exe
2013-10-01 14:05 - 2013-10-01 14:06 - 12644232 _____ (Microsoft Corporation) C:\Users\sabrina\Downloads\drvupdate6965-x86.exe
2013-09-29 17:36 - 2013-09-29 17:36 - 08676128 _____ (Microsoft Corporation) C:\Users\sabrina\Downloads\Windows7UpgradeAdvisorSetup.exe
2013-09-28 14:01 - 2013-09-28 14:01 - 00000000 ____D C:\Users\sabrina\Downloads\Sixaxis_PS3_Win32_Driver_For_PC
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-28 13:57 - 2013-09-28 13:57 - 01766784 _____ C:\Users\sabrina\Downloads\wrar500.exe
2013-09-28 13:56 - 2013-09-28 13:56 - 00389733 _____ C:\Users\sabrina\Downloads\Sixaxis_PS3_Win32_Driver_For_PC.rar
2013-09-27 13:34 - 2013-09-27 14:16 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-27 13:10 - 2013-09-27 13:10 - 00345912 _____ C:\Users\sabrina\Downloads\hdvid_codec_chrome.exe
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:20 - 2013-09-26 07:21 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-26 07:20 - 2010-08-19 19:24 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00255496 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00061984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2013-09-25 16:42 - 2013-09-25 16:42 - 00000915 _____ C:\Users\sabrina\Desktop\NfS World.lnk
2013-09-25 16:06 - 2013-09-25 16:06 - 00011462 _____ C:\Users\sabrina\Downloads\SGB IX Behinderung.htm
2013-09-25 15:41 - 2013-10-05 19:43 - 00000000 ____D C:\Users\sabrina\Documents\Dokumente Basti
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-28 14:05 - 00000000 ____D C:\Need For Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Program Files\Need For Speed World
2013-09-24 14:55 - 2013-09-24 14:55 - 06400680 _____ (Electronic Arts ) C:\Users\sabrina\Downloads\setup_nfsw.exe
2013-09-24 14:53 - 2013-09-24 14:53 - 00000301 _____ C:\Users\sabrina\Downloads\widgets-tweet_button.html.torrent
2013-09-24 09:41 - 2013-09-24 09:41 - 00002012 _____ C:\Users\sabrina\Desktop\Chrome-App-Übersicht.lnk
2013-09-24 09:41 - 2013-09-24 09:41 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-21 14:38 - 2013-09-21 14:38 - 03530752 _____ C:\Users\sabrina\Downloads\URLSnooperSetup230.exe
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-21 14:24 - 2013-09-21 14:47 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-19 09:41 - 2013-09-27 10:42 - 00000000 ___RD C:\Users\Basti\Streamripper
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:23 - 2013-09-26 07:46 - 00007830 _____ C:\Windows\setupact.log
2013-09-19 08:23 - 2013-09-19 08:23 - 00000000 _____ C:\Windows\setuperr.log
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:09 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-09-19 08:09 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-09-19 08:03 - 2013-09-19 08:48 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:02 - 2013-09-27 13:36 - 00000000 ____D C:\Program Files\Winamp
2013-09-19 08:02 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\OpenCandy
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 08:01 - 2013-09-19 08:01 - 17664368 _____ (Nullsoft, Inc.) C:\Users\sabrina\Downloads\winamp565_full_emusic-7plus_all.exe
2013-09-19 07:48 - 2013-09-19 07:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-09-19 07:41 - 2013-09-19 07:41 - 02633439 _____ C:\Users\sabrina\Downloads\streamripper-windows-installer-1.64.6.exe
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-19 08:44 - 00000000 ____D C:\ProgramData\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:45 - 2013-09-17 07:46 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-20 23:39 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 11297192 _____ C:\Users\sabrina\Downloads\yosetup.exe
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-16 21:37 - 2013-10-08 13:06 - 00201060 _____ C:\Windows\PFRO.log
2013-09-16 11:53 - 2013-09-20 07:09 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001916 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001912 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001900 _____ C:\Users\Public\Desktop\Google Docs.lnk
2013-09-16 11:50 - 2013-09-16 11:50 - 00784832 _____ (Google Inc.) C:\Users\sabrina\Downloads\googledrivesync.exe
2013-09-14 20:23 - 2013-09-14 20:23 - 00002934 _____ C:\Windows\DPINST.LOG
2013-09-14 17:24 - 2013-09-19 07:30 - 00000000 ____D C:\Windows\pss
2013-09-14 13:45 - 2013-09-17 05:49 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-13 21:42 - 2013-09-13 21:42 - 00000000 ____D C:\Windows\system32\Extensions
2013-09-13 21:20 - 2013-09-13 21:20 - 00000000 ____D C:\Users\sabrina\AppData\Local\Freemium
2013-09-13 19:04 - 2013-09-13 19:05 - 00000000 ____D C:\Program Files\SoftwareUpdater
2013-09-13 19:04 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\Covus Freemium
2013-09-13 19:02 - 2013-09-13 19:02 - 00000171 _____ C:\Users\sabrina\Desktop\Amazon.url
2013-09-13 18:17 - 2013-09-13 18:17 - 00004360 _____ C:\Users\sabrina\Downloads\__32-rtl120.bpl1.0.0.0.zip
2013-09-13 17:38 - 2013-04-17 13:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-13 17:38 - 2013-04-17 13:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-13 17:38 - 2013-04-17 13:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-13 17:38 - 2013-04-17 13:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-13 17:38 - 2013-04-17 12:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-13 17:38 - 2013-04-17 12:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-13 17:38 - 2013-04-17 12:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-13 17:38 - 2013-04-17 12:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-13 17:38 - 2013-04-17 12:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-13 17:37 - 2011-03-12 23:55 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-13 16:51 - 2013-09-13 16:58 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014(18)
2013-09-13 11:21 - 2013-09-13 11:24 - 00001383 _____ C:\Users\sabrina\Desktop\Basti.lnk
2013-09-13 11:20 - 2013-09-13 11:20 - 00458541 _____ C:\Users\Basti\Startseite Google Chrome.htm
2013-09-13 11:19 - 2013-10-01 16:08 - 00000000 ____D C:\Users\Basti
2013-09-13 09:24 - 2013-09-20 15:08 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-09-13 09:24 - 2013-09-13 09:24 - 00000950 _____ C:\Users\sabrina\Desktop\Dropbox.lnk
2013-09-13 09:20 - 2013-09-13 09:20 - 00000000 ____D C:\Program Files\Dropbox
2013-09-13 09:19 - 2013-09-22 12:53 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-13 09:18 - 2013-09-20 15:12 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-13 08:43 - 2013-09-13 08:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Avg2014
2013-09-13 08:07 - 2013-09-13 08:07 - 97443711 _____ C:\Windows\system32\㩷⭬᭄š
2013-09-12 18:52 - 2013-09-12 18:52 - 32966136 _____ (Dropbox, Inc.) C:\Users\sabrina\Downloads\Dropbox 2.0.26.exe
2013-09-12 17:40 - 2013-09-12 17:40 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-09-12 17:39 - 2013-09-12 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-09-12 17:38 - 2013-09-12 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-09-12 16:40 - 2009-09-10 04:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2013-09-12 16:40 - 2009-09-10 04:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2013-09-12 16:40 - 2009-09-10 04:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2013-09-12 16:36 - 2009-10-01 03:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys
2013-09-12 16:36 - 2009-10-01 03:01 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\WpdConns.dll
2013-09-12 16:15 - 2012-02-29 17:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-09-12 16:14 - 2012-02-29 17:09 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-09-12 16:14 - 2012-02-29 15:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-09-12 15:41 - 2013-09-12 15:41 - 12335104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-12 15:41 - 2013-09-12 15:41 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-12 15:41 - 2013-09-12 15:41 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-12 15:41 - 2013-09-12 15:41 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-12 15:41 - 2013-09-12 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-12 15:41 - 2013-09-12 15:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-12 15:40 - 2013-09-12 15:41 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-09-12 15:39 - 2013-09-12 15:39 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-09-12 15:37 - 2013-09-12 15:37 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-12 14:55 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-09-12 14:55 - 2012-06-02 16:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-09-12 14:54 - 2012-07-26 05:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-09-12 14:54 - 2012-07-26 05:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-09-12 14:54 - 2012-07-26 05:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-09-12 14:54 - 2012-07-26 05:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-09-12 14:54 - 2012-07-26 04:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-09-12 14:54 - 2012-07-26 04:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-09-12 14:54 - 2012-07-26 04:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-09-12 14:54 - 2009-07-14 14:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2013-09-12 14:29 - 2012-12-16 15:12 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-09-12 14:29 - 2012-12-16 12:50 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-09-12 14:27 - 2013-04-24 06:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-12 14:27 - 2013-04-24 03:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-12 14:26 - 2013-04-15 16:20 - 00638328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-09-12 14:26 - 2013-04-13 12:56 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-09-12 14:26 - 2012-11-08 05:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-09-12 14:25 - 2013-07-16 06:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-09-12 14:25 - 2011-02-22 16:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-12 14:23 - 2013-07-05 06:53 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-12 14:23 - 2013-06-15 15:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-09-12 14:23 - 2013-06-15 13:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-12 14:23 - 2013-03-03 21:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-12 14:23 - 2012-09-28 18:11 - 00892928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-12 14:23 - 2012-08-21 13:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-09-12 14:23 - 2012-06-08 19:47 - 11586048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-12 14:23 - 2012-03-21 01:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-09-12 14:23 - 2011-12-14 18:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-09-12 14:23 - 2011-10-25 17:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-09-12 14:23 - 2011-07-29 18:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-09-12 14:23 - 2011-07-29 18:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-09-12 14:23 - 2011-07-29 18:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2013-09-12 14:23 - 2011-07-29 18:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2013-09-12 14:22 - 2013-08-02 06:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-12 14:22 - 2013-07-17 21:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-12 14:22 - 2013-07-10 11:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-12 14:22 - 2013-05-02 06:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-12 14:22 - 2013-05-02 06:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2013-09-12 14:22 - 2012-11-22 05:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2013-09-12 14:22 - 2012-11-20 06:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-12 14:22 - 2012-11-02 12:19 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-12 14:22 - 2012-09-25 18:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-12 14:22 - 2012-05-11 17:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-09-12 14:22 - 2011-11-18 19:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-09-12 14:22 - 2011-10-14 18:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-09-12 14:22 - 2011-10-14 18:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2013-09-12 14:21 - 2011-10-14 18:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-09-12 14:20 - 2012-11-02 12:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-12 14:20 - 2012-11-02 10:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2013-09-12 14:20 - 2012-06-29 18:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-12 14:12 - 2013-09-12 14:12 - 00476024 _____ (1&1 Mail & Media GmbH) C:\Users\sabrina\Downloads\WEB.DE_MailCheck_chrome_setup.exe
2013-09-12 13:48 - 2011-11-16 18:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2013-09-12 13:43 - 2011-08-25 18:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-09-12 13:43 - 2011-08-25 18:14 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-09-12 13:43 - 2011-08-25 18:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-09-12 13:43 - 2011-08-25 15:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2013-09-12 13:42 - 2013-07-09 14:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-12 13:42 - 2013-07-08 06:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-09-12 13:42 - 2013-07-08 06:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-12 13:42 - 2013-03-09 05:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-12 13:42 - 2013-03-09 03:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-12 13:42 - 2013-03-08 05:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-12 13:42 - 2013-03-08 05:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-12 13:42 - 2013-02-12 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
2013-09-12 13:42 - 2013-02-12 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-12 13:42 - 2012-06-04 17:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-09-12 13:42 - 2012-06-02 02:04 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-09-12 13:42 - 2012-05-01 16:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-09-12 13:42 - 2011-11-16 18:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-09-12 13:42 - 2011-11-16 18:21 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-09-12 13:42 - 2011-11-16 16:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-09-12 13:42 - 2011-06-15 18:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-09-12 13:42 - 2010-05-04 21:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2013-09-12 13:37 - 2013-08-08 03:45 - 02049536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-12 13:37 - 2013-07-08 06:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-12 13:37 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-12 13:37 - 2013-04-17 14:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-09-12 13:37 - 2012-06-05 18:47 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-12 13:19 - 2012-01-09 17:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-09-12 13:06 - 2013-09-12 13:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\avgchrome
2013-09-11 17:29 - 2013-09-11 17:29 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-11 17:28 - 2013-09-13 17:26 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-11 17:28 - 2013-09-13 17:26 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-11 17:27 - 2013-09-11 17:27 - 00784888 _____ (Google Inc.) C:\Users\sabrina\Downloads\ChromeSetup.exe
2013-09-11 17:17 - 2013-09-11 17:17 - 00000000 ____D C:\Windows\system32\searchplugins
2013-09-11 17:15 - 2013-10-08 13:16 - 00000300 _____ C:\Windows\Tasks\UpdaterEX.job
2013-09-11 17:15 - 2013-09-11 17:15 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\UpdaterEX
2013-09-11 17:13 - 2013-10-05 23:42 - 00000000 ____D C:\Program Files\WebConnect
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Babylon
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\BabSolution
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Program Files\Delta
2013-09-11 16:14 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-09-11 16:14 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-09-11 16:14 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-09-11 16:14 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-09-11 16:13 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-09-11 16:13 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-09-11 16:13 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-09-11 16:13 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-09-11 16:13 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-09-10 11:22 - 2013-09-10 11:22 - 00000000 ____D C:\Users\sabrina\AppData\Local\Macromedia
2013-09-10 11:13 - 2013-10-08 13:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-10 11:13 - 2013-09-20 07:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-10 11:13 - 2013-09-20 07:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-10 11:05 - 2013-09-10 11:05 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-10 10:55 - 2013-09-12 17:45 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\vi-VN
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\eu-ES
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\ca-ES
2013-09-10 09:48 - 2013-09-19 08:05 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\TuneUp Software
2013-09-10 09:45 - 2013-10-05 20:01 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014
2013-09-10 09:43 - 2013-09-19 08:05 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-09-10 09:42 - 2013-10-05 20:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-09-10 08:48 - 2013-09-10 08:48 - 00000000 ____D C:\Windows\system32\EventProviders
==================== One Month Modified Files and Folders =======
2013-10-08 13:54 - 2013-10-07 13:38 - 00000000 ___RD C:\Users\sabrina\Downloads\FRST - Farbar Recovery Scan Tool
2013-10-08 13:20 - 2013-09-10 11:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-08 13:16 - 2013-09-11 17:15 - 00000300 _____ C:\Windows\Tasks\UpdaterEX.job
2013-10-08 13:13 - 2009-02-16 04:31 - 02064494 _____ C:\Windows\WindowsUpdate.log
2013-10-08 13:07 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-08 13:07 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-08 13:07 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-08 13:06 - 2013-09-16 21:37 - 00201060 _____ C:\Windows\PFRO.log
2013-10-08 13:05 - 2006-11-02 15:01 - 00032602 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-08 09:44 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-10-07 14:08 - 2013-10-07 13:55 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-07 14:08 - 2013-10-07 13:39 - 00000000 ____D C:\Users\sabrina\AppData\Local\DownloadGuide
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-07 13:27 - 2013-10-07 13:27 - 00000000 ____D C:\FRST
2013-10-05 23:42 - 2013-09-11 17:13 - 00000000 ____D C:\Program Files\WebConnect
2013-10-05 20:43 - 2013-09-10 09:42 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-10-05 20:15 - 2013-10-05 20:15 - 00000071 _____ C:\Users\sabrina\Desktop\Acronis Testkey.txt
2013-10-05 20:01 - 2013-10-05 20:01 - 00001876 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-10-05 20:01 - 2013-09-10 09:45 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:51 - 2013-10-05 19:45 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-05 19:43 - 2013-09-25 15:41 - 00000000 ____D C:\Users\sabrina\Documents\Dokumente Basti
2013-10-05 19:40 - 2013-10-05 19:40 - 00000000 ____D C:\Users\sabrina\Downloads\Acronis Recovery
2013-10-05 19:37 - 2013-10-05 19:37 - 17810632 _____ (pdfforge GmbH) C:\Users\sabrina\Downloads\PDFCreator-1_7_1_setup.exe
2013-10-02 14:29 - 2006-11-02 12:33 - 01445310 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-01 16:08 - 2013-09-13 11:19 - 00000000 ____D C:\Users\Basti
2013-10-01 16:02 - 2013-10-01 16:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-01 14:42 - 2013-10-01 14:39 - 09030312 _____ C:\Users\sabrina\Downloads\avira_secure_backup.exe
2013-10-01 14:27 - 2013-10-01 14:27 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-01 14:26 - 2013-10-01 14:26 - 00000000 ____D C:\Program Files\Avira
2013-10-01 14:26 - 2013-04-23 19:25 - 00000000 ____D C:\ProgramData\Avira
2013-10-01 14:07 - 2013-10-01 14:06 - 122946048 _____ C:\Users\sabrina\Downloads\avira14_free_antivirus_de.exe
2013-10-01 14:06 - 2013-10-01 14:05 - 12644232 _____ (Microsoft Corporation) C:\Users\sabrina\Downloads\drvupdate6965-x86.exe
2013-09-30 11:01 - 2013-10-01 14:26 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-09-29 17:36 - 2013-09-29 17:36 - 08676128 _____ (Microsoft Corporation) C:\Users\sabrina\Downloads\Windows7UpgradeAdvisorSetup.exe
2013-09-28 14:05 - 2013-09-24 14:56 - 00000000 ____D C:\Need For Speed World
2013-09-28 14:01 - 2013-09-28 14:01 - 00000000 ____D C:\Users\sabrina\Downloads\Sixaxis_PS3_Win32_Driver_For_PC
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-28 13:57 - 2013-09-28 13:57 - 01766784 _____ C:\Users\sabrina\Downloads\wrar500.exe
2013-09-28 13:56 - 2013-09-28 13:56 - 00389733 _____ C:\Users\sabrina\Downloads\Sixaxis_PS3_Win32_Driver_For_PC.rar
2013-09-27 14:16 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-09-27 13:36 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Winamp
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-27 13:34 - 2013-09-19 08:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\OpenCandy
2013-09-27 13:10 - 2013-09-27 13:10 - 00345912 _____ C:\Users\sabrina\Downloads\hdvid_codec_chrome.exe
2013-09-27 10:42 - 2013-09-19 09:41 - 00000000 ___RD C:\Users\Basti\Streamripper
2013-09-26 07:46 - 2013-09-19 08:23 - 00007830 _____ C:\Windows\setupact.log
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:36 - 2009-03-20 15:37 - 00000000 ____D C:\Users\sabrina
2013-09-26 07:21 - 2013-09-26 07:20 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-25 16:42 - 2013-09-25 16:42 - 00000915 _____ C:\Users\sabrina\Desktop\NfS World.lnk
2013-09-25 16:06 - 2013-09-25 16:06 - 00011462 _____ C:\Users\sabrina\Downloads\SGB IX Behinderung.htm
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Program Files\Need For Speed World
2013-09-24 14:55 - 2013-09-24 14:55 - 06400680 _____ (Electronic Arts ) C:\Users\sabrina\Downloads\setup_nfsw.exe
2013-09-24 14:53 - 2013-09-24 14:53 - 00000301 _____ C:\Users\sabrina\Downloads\widgets-tweet_button.html.torrent
2013-09-24 09:41 - 2013-09-24 09:41 - 00002012 _____ C:\Users\sabrina\Desktop\Chrome-App-Übersicht.lnk
2013-09-24 09:41 - 2013-09-24 09:41 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-09-24 07:17 - 2006-11-02 14:42 - 00000000 ____D C:\Windows\WindowsMobile
2013-09-22 12:53 - 2013-09-13 09:19 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-22 12:53 - 2011-07-24 13:38 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\888poker
2013-09-22 12:53 - 2010-05-07 22:59 - 00005328 ___SH C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneNote Inhaltsverzeichnis.onetoc2
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2013-09-22 12:43 - 2009-02-16 06:18 - 00000000 ____D C:\Program Files\Google
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-21 14:47 - 2013-09-21 14:24 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-21 14:38 - 2013-09-21 14:38 - 03530752 _____ C:\Users\sabrina\Downloads\URLSnooperSetup230.exe
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-21 14:23 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-09-21 13:18 - 2009-02-16 07:29 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2013-09-20 23:39 - 2013-09-17 07:01 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-20 15:12 - 2013-09-13 09:18 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-20 15:08 - 2013-09-13 09:24 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-09-20 07:20 - 2013-09-10 11:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-20 07:20 - 2013-09-10 11:13 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-20 07:13 - 2009-03-20 15:40 - 00000000 ____D C:\Users\sabrina\AppData\Local\Adobe
2013-09-20 07:09 - 2013-09-16 11:53 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:48 - 2013-09-19 08:03 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:44 - 2013-09-17 07:46 - 00000000 ____D C:\ProgramData\Acronis
2013-09-19 08:23 - 2013-09-19 08:23 - 00000000 _____ C:\Windows\setuperr.log
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:05 - 2013-09-10 09:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\TuneUp Software
2013-09-19 08:05 - 2013-09-10 09:43 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 08:01 - 2013-09-19 08:01 - 17664368 _____ (Nullsoft, Inc.) C:\Users\sabrina\Downloads\winamp565_full_emusic-7plus_all.exe
2013-09-19 07:48 - 2013-09-19 07:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-09-19 07:41 - 2013-09-19 07:41 - 02633439 _____ C:\Users\sabrina\Downloads\streamripper-windows-installer-1.64.6.exe
2013-09-19 07:30 - 2013-09-14 17:24 - 00000000 ____D C:\Windows\pss
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:46 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-17 07:01 - 11297192 _____ C:\Users\sabrina\Downloads\yosetup.exe
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-17 05:49 - 2013-09-14 13:45 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-16 22:47 - 2009-04-20 06:51 - 00001356 _____ C:\Users\sabrina\AppData\Local\d3d9caps.dat
2013-09-16 22:11 - 2009-02-16 04:55 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-09-16 15:33 - 2012-02-17 19:20 - 00000000 ____D C:\Windows\system32\Adobe
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001916 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001912 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001900 _____ C:\Users\Public\Desktop\Google Docs.lnk
2013-09-16 11:51 - 2009-03-20 15:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Google
2013-09-16 11:50 - 2013-09-16 11:50 - 00784832 _____ (Google Inc.) C:\Users\sabrina\Downloads\googledrivesync.exe
2013-09-14 20:23 - 2013-09-14 20:23 - 00002934 _____ C:\Windows\DPINST.LOG
2013-09-14 13:45 - 2006-11-02 13:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-09-13 21:42 - 2013-09-13 21:42 - 00000000 ____D C:\Windows\system32\Extensions
2013-09-13 21:34 - 2010-11-03 19:44 - 00000000 ____D C:\Windows\Minidump
2013-09-13 21:20 - 2013-09-13 21:20 - 00000000 ____D C:\Users\sabrina\AppData\Local\Freemium
2013-09-13 19:36 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-13 19:05 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\SoftwareUpdater
2013-09-13 19:04 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\Covus Freemium
2013-09-13 19:02 - 2013-09-13 19:02 - 00000171 _____ C:\Users\sabrina\Desktop\Amazon.url
2013-09-13 18:17 - 2013-09-13 18:17 - 00004360 _____ C:\Users\sabrina\Downloads\__32-rtl120.bpl1.0.0.0.zip
2013-09-13 17:54 - 2009-03-20 15:37 - 00000000 ___RD C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-09-13 17:26 - 2013-09-11 17:28 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-13 17:26 - 2013-09-11 17:28 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-13 17:25 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-09-13 17:25 - 2006-11-02 12:22 - 45088768 _____ C:\Windows\system32\config\components_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 44564480 _____ C:\Windows\system32\config\software_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 20971520 _____ C:\Windows\system32\config\system_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-09-13 17:24 - 2009-02-16 07:21 - 00000000 ____D C:\ProgramData\P4G
2013-09-13 17:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2013-09-13 17:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2013-09-13 16:58 - 2013-09-13 16:51 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014(18)
2013-09-13 14:26 - 2008-04-16 13:27 - 00000000 ____D C:\Windows\Panther
2013-09-13 11:24 - 2013-09-13 11:21 - 00001383 _____ C:\Users\sabrina\Desktop\Basti.lnk
2013-09-13 11:20 - 2013-09-13 11:20 - 00458541 _____ C:\Users\Basti\Startseite Google Chrome.htm
2013-09-13 09:24 - 2013-09-13 09:24 - 00000950 _____ C:\Users\sabrina\Desktop\Dropbox.lnk
2013-09-13 09:20 - 2013-09-13 09:20 - 00000000 ____D C:\Program Files\Dropbox
2013-09-13 08:43 - 2013-09-13 08:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Avg2014
2013-09-13 08:07 - 2013-09-13 08:07 - 97443711 _____ C:\Windows\system32\㩷⭬᭄š
2013-09-12 18:52 - 2013-09-12 18:52 - 32966136 _____ (Dropbox, Inc.) C:\Users\sabrina\Downloads\Dropbox 2.0.26.exe
2013-09-12 17:45 - 2013-09-10 10:55 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-12 17:40 - 2013-09-12 17:40 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-TW
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-CN
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\uk-UA
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\th-TH
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sv-SE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sl-SI
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sk-SK
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ru-RU
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ro-RO
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pt-PT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pt-BR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pl-PL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\nl-NL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\nb-NO
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\lv-LV
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\lt-LT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ko-KR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ja-JP
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\it-IT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\hu-HU
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\hr-HR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\he-IL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fi-FI
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\et-EE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\el-GR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\bg-BG
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ar-SA
2013-09-12 17:39 - 2013-09-12 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-09-12 17:39 - 2008-04-16 13:11 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2013-09-12 17:39 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-09-12 17:39 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Common Files\System
2013-09-12 17:38 - 2013-09-12 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-09-12 15:41 - 2013-09-12 15:41 - 12335104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-12 15:41 - 2013-09-12 15:41 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-12 15:41 - 2013-09-12 15:41 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-12 15:41 - 2013-09-12 15:41 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-12 15:41 - 2013-09-12 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-12 15:41 - 2013-09-12 15:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-12 15:41 - 2013-09-12 15:40 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-12 15:41 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-09-12 15:41 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-09-12 15:40 - 2013-09-12 15:40 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-09-12 15:39 - 2013-09-12 15:39 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-09-12 15:37 - 2013-09-12 15:37 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-12 14:50 - 2013-08-17 17:52 - 00000000 ____D C:\Windows\system32\MRT
2013-09-12 14:44 - 2006-11-02 12:24 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-09-12 14:12 - 2013-09-12 14:12 - 00476024 _____ (1&1 Mail & Media GmbH) C:\Users\sabrina\Downloads\WEB.DE_MailCheck_chrome_setup.exe
2013-09-12 13:06 - 2013-09-12 13:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\avgchrome
2013-09-11 20:53 - 2009-03-22 15:43 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-11 17:29 - 2013-09-11 17:29 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-11 17:27 - 2013-09-11 17:27 - 00784888 _____ (Google Inc.) C:\Users\sabrina\Downloads\ChromeSetup.exe
2013-09-11 17:17 - 2013-09-11 17:17 - 00000000 ____D C:\Windows\system32\searchplugins
2013-09-11 17:15 - 2013-09-11 17:15 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\UpdaterEX
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Babylon
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\BabSolution
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Program Files\Delta
2013-09-10 12:21 - 2009-06-27 20:55 - 00000000 ____D C:\Users\sabrina\AppData\Local\Microsoft Games
2013-09-10 11:22 - 2013-09-10 11:22 - 00000000 ____D C:\Users\sabrina\AppData\Local\Macromedia
2013-09-10 11:05 - 2013-09-10 11:05 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Photo Gallery
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Collaboration
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Calendar
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Movie Maker
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\vi-VN
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\eu-ES
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\ca-ES
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\SLUI
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\IME
2013-09-10 10:45 - 2009-02-16 07:01 - 00000000 ____D C:\Windows\system32\RTCOM
2013-09-10 10:13 - 2009-02-16 06:27 - 00000000 ____D C:\ProgramData\Google
2013-09-10 10:08 - 2009-03-20 22:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\Microsoft Help
2013-09-10 08:48 - 2013-09-10 08:48 - 00000000 ____D C:\Windows\system32\EventProviders
Some content of TEMP:
====================
C:\Users\sabrina\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-08 13:19
==================== End Of Log ============================
--- --- --- |
|
08.10.2013, 13:17
| #4 |
| | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Learning by doing! Nochmal FRST.txt danach Addition.txt FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by sabrina (administrator) on SABRINA-PC on 08-10-2013 13:54:48
Running from C:\Users\sabrina\Downloads\FRST - Farbar Recovery Scan Tool
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
() C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HControlUser] - C:\Program Files\ATK Hotkey\HcontrolUser.exe [98304 2008-01-12] ()
HKLM\...\Run: [CLMLServer] - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [104936 2008-07-19] (CyberLink)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-12-06] (Synaptics, Inc.)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6111232 2008-04-17] (Realtek Semiconductor)
HKLM\...\Run: [P2Go_Menu] - "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ATKOSD2\ATKOSD2.exe [7766016 2008-01-24] ()
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2008-02-02] ()
HKLM\...\Run: [Adobe Photo Downloader] - C:\Photoshop\3.2\Apps\apdproxy.exe [57344 2007-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-09-30] (Avira Operations GmbH & Co. KG)
HKCU\...409d6c4515e9\InprocServer32: [Default-shell32] <==== ATTENTION!
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
IMEO\excel.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\finder.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\frontpg.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\mediabuilder.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\msaccess.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\msbpd.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\msoxmled.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\mspub.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\mstore.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\offdiag.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\ois.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\onenote.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\onenotem.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\osa9.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\outlook.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\photodrw.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\powerpnt.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\sbcmstrt.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\systemreport.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\trueimagelauncher.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\trueimagetools.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\winpe_iso.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\winword.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
Startup: C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Inhaltsverzeichnis.onetoc2 ()
==================== Internet (Whitelisted) ====================
ProxyServer: http=85.214.84.220:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = :: Globa Search ::
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Upgrade to Google Chrome
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = Delta Search
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = :: Globa Search ::
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
SearchScopes: HKLM - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.globasearch.com/?serie=32&b=3&q={searchTerms}
SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.globasearch.com/?serie=32&b=3&q={searchTerms}
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.globasearch.com/?serie=32&b=3&q={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.globasearch.com/?serie=32&b=3&q={searchTerms}
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=15d710c0-ef0a-4651-85a2-9ed2178bb6b3&apn_sauid=A22090BB-3DBA-48FA-9CB9-FB49156E7DDC
SearchScopes: HKCU - {8A245F63-D5D8-4835-ADCE-80E1B4EEFEC1} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
BHO: Browser Guard - {02a0d829-4393-46fc-a37e-126263035883} - C:\Program Files\Browser Guard\browserguard.dll (Browser Guard)
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.24.6\bh\delta.dll (Delta-search.com)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.24.6\deltaTlbr.dll (Delta-search.com)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU -&Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Winsock: Catalog9 01 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 09 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 10 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 11 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 12 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 13 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 14 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 15 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 16 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 27 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 28 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default
FF user.js: detected! => C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\user.js
FF SearchEngineOrder.1: Ask.com
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF SearchPlugin: C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\searchplugins\askcom.xml
FF Extension: Lyrics Seeker - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\133
FF Extension: Delta Toolbar - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\ffxtlbr@delta.com
FF Extension: Web Check - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\WebCheck
FF Extension: Adblock Plus - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF Extension: Block site - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc}
FF Extension: No Name - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20d1f7b3-7721-4da0-b6f3-78bb4d7248f4}] - C:\Program Files\Browser Guard\browserguard.xpi
FF Extension: No Name - C:\Program Files\Browser Guard\browserguard.xpi
Chrome:
=======
CHR Extension: (Entanglement Web App) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\3.4.9_0
CHR Extension: (Eredan iTCG) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakdeclmfcolipiknbfealnjddfibfo\1_0
CHR Extension: (American Racing 2 3D) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfpfdjclhabpjncikdngdoldjjjegnbe\2.1.2_0
CHR Extension: (Avatar Arena) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjbjlhannmmdjeebjgdikdchpiijljek\1.0.1_0
CHR Extension: (Gravity Guy) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjlgidnccmkehcefagofppjbnhogbjmm\1.0.0_0
CHR Extension: (YouTube) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (BeGone: Last Stand HD) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmekbplkjhgmljmbblmhmcnocafhaink\1.8.2.17_0
CHR Extension: (Classic Games) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpckajjkmjncafjlkielcgheibdlnfgc\1.0_0
CHR Extension: (Tanki Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo\1.5_0
CHR Extension: (Virtual piano) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohgcponedmbhgbbdinajeoapmoaifdj\4.9.3_0
CHR Extension: (Web Check ) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee\0.1
CHR Extension: (Spongebob Super Brawl 3) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfaoangdklcefogknfphjjmohfedgnlj\2.3.1_0
CHR Extension: (Burst Motocross) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkcakkmhmimngalgjjaiibkiolehcfmh\1.0_0
CHR Extension: (Rock Paper Scissors) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkmlfkbofapbceihbpdpjganpnienhfc\1.0.9_0
CHR Extension: (Torrent Turbo Search App) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\eegbffmjdkflkcfncpfjjbggbdlnbdif\0.1_0
CHR Extension: (Tetris 2) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\emidddocikgklceeeifefomdnbkldhng\1.0.0.17_0
CHR Extension: (Delta Toolbar) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0
CHR Extension: (Weather (extension)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fapbbpdnlcmiolkdfjnnjhabmcndadad\0.9.0.6_0
CHR Extension: (Sudoku) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbldalicehmlaalddffibogeplifangc\1.0.3_0
CHR Extension: (Type Scout) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fedokkaolmkkoeedicihicdeppjjeamj\5_0
CHR Extension: (CHIP Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd\1.5_0
CHR Extension: (Planes Propwash Pursuit) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\figbofenkblalldlgjjflfpendllpceh\2.3.1_0
CHR Extension: (Counter Strike Online ) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fplklihjpkinahlihcljhnnlnhnmmhdp\2.6_0
CHR Extension: (Digital Clock) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo\1.11_0
CHR Extension: (Goodgame Empire) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggdljnjjajocmjaldkldaapkkclbaclb\9_0
CHR Extension: (AdBlock) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.7_0
CHR Extension: (UNO Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjfncmhihlfbkinpfenkeliekjpoakbf\1.0.0.0_0
CHR Extension: (PDF Mergy) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha\0.5.2_0
CHR Extension: (Tomb Jewels (HD)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjehadkphnfpnheecobbohnphogngooo\1.1.5_0
CHR Extension: (Street Skater 3D) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlchpgbjfeoncdkgcihimbimpjiaodfl\1.0_0
CHR Extension: (Crazy Shooting) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbhccdddhenjmeamogpjhicnoffdood\1.0.0_0
CHR Extension: (Die Siedler Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmhcglhfdnepmdeelgjfdjckclajkha\1.0.1_0
CHR Extension: (The West) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilkgeioneoemibpddeiamfgiofnpjifm\1.5_0
CHR Extension: (Dropbox) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl\3.0.8_0
CHR Extension: (FAST FIVE) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipecejmhgombfadlddemeadfapnafcgo\1.0.1_0
CHR Extension: (theHunter) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jangaedeekciafhlanphhnalogmhefmo\10_0
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe\1.0.8_0
CHR Extension: (Movi Kanti Revo) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdkcgeghhfjiglphfppinecpcpnnbne\1.0.0.0_0
CHR Extension: (Soccer Manager) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpemkngoajegcbamebdmnkjoalpofpbj\1.1.6.2_0
CHR Extension: (Drakensang Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgloifppaepihckkhiocnodicehjdoof\4.0.1_0
CHR Extension: (Lyrics Seeker) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_0
CHR Extension: (Top Eleven) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn\2.0.0.4_0
CHR Extension: (Zuma) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmlohpfojplnfgcbgooclnhidniofegn\1.0.0_0
CHR Extension: (Google Maps) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0
CHR Extension: (Lagoonia) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjcaihkcddgdgaghmnmfpkkfilombbm\1.38_0
CHR Extension: (Need for Speed World) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk\1.0.0.4_0
CHR Extension: (Sonic the Hedgehog) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbdhbpmojeedfmgelekgjhdejdmfpikn\1.0_0
CHR Extension: (Curling) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhalnajmigjnpjpdbpkpgfhekbjmolhp\1.0.10_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Current Moon Phase (Northern Hemisphere)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\oampnkjpomgmmphfoedhihefpbjhjamo\1.6.10_0
CHR Extension: (Jungle Plumber Challenge) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojpobnopmcjkgbgakigfoemfgfcdiefi\2_0
CHR Extension: (Goodgame Big Farm) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\okdjgjhkolgmkjjddmnjejjphhkdjdhc\4_0
CHR Extension: (Marc Ecko) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk\2_0
CHR Extension: (Edgeworld) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfmpdiaehhnljpdomnggcbfofdgkmbp\1.0.1.2_0
CHR Extension: (eBay Deals) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pllkgmcojhajjmojfoagiegoibjognlc\1.0.4_0
CHR HKLM\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\sabrina\AppData\Roaming\BabSolution\CR\Delta.crx
CHR HKLM\...\Chrome\Extension: [kfepagcelbegkpkcjgfeecmlnmkedjin] - C:\Program Files\Browser Guard\browserguard.crx
========================== Services (Whitelisted) =================
S4 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [778000 2013-07-18] (Acronis)
R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728 2007-05-18] ()
S4 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3906552 2013-09-17] (Acronis)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-09-30] (Avira Operations GmbH & Co. KG)
S4 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-03] ()
S4 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
S4 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [9745008 2013-08-21] (Acronis)
S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [296448 2013-09-13] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1740600 2013-08-28] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R0 AsDsm; C:\Windows\System32\Drivers\AsDsm.sys [29752 2007-08-11] (Windows (R) Codename Longhorn DDK provider)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-09-30] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
S3 CRFILTER; C:\Windows\System32\DRIVERS\CRFILTER.sys [6656 2008-04-07] (Generic)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [99400 2013-09-26] (MotioninJoy)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [104616 2008-11-04] (MCCI Corporation)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1769984 2007-10-01] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-09-30] (Avira GmbH)
S3 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [889888 2013-09-17] (Acronis International GmbH)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [736192 2013-09-17] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [130488 2013-09-17] (Acronis)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-08-21] (TuneUp Software)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [116000 2013-09-17] (Acronis International GmbH)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [85280 2013-09-17] (Acronis International GmbH)
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-07 13:55 - 2013-10-07 14:08 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-07 13:39 - 2013-10-07 14:08 - 00000000 ____D C:\Users\sabrina\AppData\Local\DownloadGuide
2013-10-07 13:38 - 2013-10-08 13:54 - 00000000 ___RD C:\Users\sabrina\Downloads\FRST - Farbar Recovery Scan Tool
2013-10-07 13:27 - 2013-10-07 13:27 - 00000000 ____D C:\FRST
2013-10-05 20:15 - 2013-10-05 20:15 - 00000071 _____ C:\Users\sabrina\Desktop\Acronis Testkey.txt
2013-10-05 20:01 - 2013-10-05 20:01 - 00001876 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-10-05 20:01 - 2013-08-28 20:32 - 00036664 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-10-05 20:01 - 2013-08-28 20:32 - 00025400 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-05 19:45 - 2013-10-05 19:51 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-05 19:40 - 2013-10-05 19:40 - 00000000 ____D C:\Users\sabrina\Downloads\Acronis Recovery
2013-10-05 19:37 - 2013-10-05 19:37 - 17810632 _____ (pdfforge GmbH) C:\Users\sabrina\Downloads\PDFCreator-1_7_1_setup.exe
2013-10-01 16:02 - 2013-10-01 16:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-01 14:39 - 2013-10-01 14:42 - 09030312 _____ C:\Users\sabrina\Downloads\avira_secure_backup.exe
2013-10-01 14:27 - 2013-10-01 14:27 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-01 14:26 - 2013-10-01 14:26 - 00000000 ____D C:\Program Files\Avira
2013-10-01 14:26 - 2013-09-30 11:01 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-10-01 14:06 - 2013-10-01 14:07 - 122946048 _____ C:\Users\sabrina\Downloads\avira14_free_antivirus_de.exe
2013-10-01 14:05 - 2013-10-01 14:06 - 12644232 _____ (Microsoft Corporation) C:\Users\sabrina\Downloads\drvupdate6965-x86.exe
2013-09-29 17:36 - 2013-09-29 17:36 - 08676128 _____ (Microsoft Corporation) C:\Users\sabrina\Downloads\Windows7UpgradeAdvisorSetup.exe
2013-09-28 14:01 - 2013-09-28 14:01 - 00000000 ____D C:\Users\sabrina\Downloads\Sixaxis_PS3_Win32_Driver_For_PC
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-28 13:57 - 2013-09-28 13:57 - 01766784 _____ C:\Users\sabrina\Downloads\wrar500.exe
2013-09-28 13:56 - 2013-09-28 13:56 - 00389733 _____ C:\Users\sabrina\Downloads\Sixaxis_PS3_Win32_Driver_For_PC.rar
2013-09-27 13:34 - 2013-09-27 14:16 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-27 13:10 - 2013-09-27 13:10 - 00345912 _____ C:\Users\sabrina\Downloads\hdvid_codec_chrome.exe
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:20 - 2013-09-26 07:21 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-26 07:20 - 2010-08-19 19:24 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00255496 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00061984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2013-09-25 16:42 - 2013-09-25 16:42 - 00000915 _____ C:\Users\sabrina\Desktop\NfS World.lnk
2013-09-25 16:06 - 2013-09-25 16:06 - 00011462 _____ C:\Users\sabrina\Downloads\SGB IX Behinderung.htm
2013-09-25 15:41 - 2013-10-05 19:43 - 00000000 ____D C:\Users\sabrina\Documents\Dokumente Basti
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-28 14:05 - 00000000 ____D C:\Need For Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Program Files\Need For Speed World
2013-09-24 14:55 - 2013-09-24 14:55 - 06400680 _____ (Electronic Arts ) C:\Users\sabrina\Downloads\setup_nfsw.exe
2013-09-24 14:53 - 2013-09-24 14:53 - 00000301 _____ C:\Users\sabrina\Downloads\widgets-tweet_button.html.torrent
2013-09-24 09:41 - 2013-09-24 09:41 - 00002012 _____ C:\Users\sabrina\Desktop\Chrome-App-Übersicht.lnk
2013-09-24 09:41 - 2013-09-24 09:41 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-21 14:38 - 2013-09-21 14:38 - 03530752 _____ C:\Users\sabrina\Downloads\URLSnooperSetup230.exe
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-21 14:24 - 2013-09-21 14:47 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-19 09:41 - 2013-09-27 10:42 - 00000000 ___RD C:\Users\Basti\Streamripper
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:23 - 2013-09-26 07:46 - 00007830 _____ C:\Windows\setupact.log
2013-09-19 08:23 - 2013-09-19 08:23 - 00000000 _____ C:\Windows\setuperr.log
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:09 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-09-19 08:09 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-09-19 08:03 - 2013-09-19 08:48 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:02 - 2013-09-27 13:36 - 00000000 ____D C:\Program Files\Winamp
2013-09-19 08:02 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\OpenCandy
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 08:01 - 2013-09-19 08:01 - 17664368 _____ (Nullsoft, Inc.) C:\Users\sabrina\Downloads\winamp565_full_emusic-7plus_all.exe
2013-09-19 07:48 - 2013-09-19 07:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-09-19 07:41 - 2013-09-19 07:41 - 02633439 _____ C:\Users\sabrina\Downloads\streamripper-windows-installer-1.64.6.exe
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-19 08:44 - 00000000 ____D C:\ProgramData\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:45 - 2013-09-17 07:46 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-20 23:39 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 11297192 _____ C:\Users\sabrina\Downloads\yosetup.exe
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-16 21:37 - 2013-10-08 13:06 - 00201060 _____ C:\Windows\PFRO.log
2013-09-16 11:53 - 2013-09-20 07:09 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001916 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001912 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001900 _____ C:\Users\Public\Desktop\Google Docs.lnk
2013-09-16 11:50 - 2013-09-16 11:50 - 00784832 _____ (Google Inc.) C:\Users\sabrina\Downloads\googledrivesync.exe
2013-09-14 20:23 - 2013-09-14 20:23 - 00002934 _____ C:\Windows\DPINST.LOG
2013-09-14 17:24 - 2013-09-19 07:30 - 00000000 ____D C:\Windows\pss
2013-09-14 13:45 - 2013-09-17 05:49 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-13 21:42 - 2013-09-13 21:42 - 00000000 ____D C:\Windows\system32\Extensions
2013-09-13 21:20 - 2013-09-13 21:20 - 00000000 ____D C:\Users\sabrina\AppData\Local\Freemium
2013-09-13 19:04 - 2013-09-13 19:05 - 00000000 ____D C:\Program Files\SoftwareUpdater
2013-09-13 19:04 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\Covus Freemium
2013-09-13 19:02 - 2013-09-13 19:02 - 00000171 _____ C:\Users\sabrina\Desktop\Amazon.url
2013-09-13 18:17 - 2013-09-13 18:17 - 00004360 _____ C:\Users\sabrina\Downloads\__32-rtl120.bpl1.0.0.0.zip
2013-09-13 17:38 - 2013-04-17 13:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-13 17:38 - 2013-04-17 13:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-13 17:38 - 2013-04-17 13:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-13 17:38 - 2013-04-17 13:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-13 17:38 - 2013-04-17 12:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-13 17:38 - 2013-04-17 12:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-13 17:38 - 2013-04-17 12:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-13 17:38 - 2013-04-17 12:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-13 17:38 - 2013-04-17 12:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-13 17:37 - 2011-03-12 23:55 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-13 16:51 - 2013-09-13 16:58 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014(18)
2013-09-13 11:21 - 2013-09-13 11:24 - 00001383 _____ C:\Users\sabrina\Desktop\Basti.lnk
2013-09-13 11:20 - 2013-09-13 11:20 - 00458541 _____ C:\Users\Basti\Startseite Google Chrome.htm
2013-09-13 11:19 - 2013-10-01 16:08 - 00000000 ____D C:\Users\Basti
2013-09-13 09:24 - 2013-09-20 15:08 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-09-13 09:24 - 2013-09-13 09:24 - 00000950 _____ C:\Users\sabrina\Desktop\Dropbox.lnk
2013-09-13 09:20 - 2013-09-13 09:20 - 00000000 ____D C:\Program Files\Dropbox
2013-09-13 09:19 - 2013-09-22 12:53 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-13 09:18 - 2013-09-20 15:12 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-13 08:43 - 2013-09-13 08:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Avg2014
2013-09-13 08:07 - 2013-09-13 08:07 - 97443711 _____ C:\Windows\system32\㩷⭬᭄š
2013-09-12 18:52 - 2013-09-12 18:52 - 32966136 _____ (Dropbox, Inc.) C:\Users\sabrina\Downloads\Dropbox 2.0.26.exe
2013-09-12 17:40 - 2013-09-12 17:40 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-09-12 17:39 - 2013-09-12 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-09-12 17:38 - 2013-09-12 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-09-12 16:40 - 2009-09-10 04:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2013-09-12 16:40 - 2009-09-10 04:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2013-09-12 16:40 - 2009-09-10 04:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2013-09-12 16:36 - 2009-10-01 03:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys
2013-09-12 16:36 - 2009-10-01 03:01 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\WpdConns.dll
2013-09-12 16:15 - 2012-02-29 17:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-09-12 16:14 - 2012-02-29 17:09 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-09-12 16:14 - 2012-02-29 15:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-09-12 15:41 - 2013-09-12 15:41 - 12335104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-12 15:41 - 2013-09-12 15:41 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-12 15:41 - 2013-09-12 15:41 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-12 15:41 - 2013-09-12 15:41 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-12 15:41 - 2013-09-12 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-12 15:41 - 2013-09-12 15:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-12 15:40 - 2013-09-12 15:41 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-09-12 15:39 - 2013-09-12 15:39 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-09-12 15:37 - 2013-09-12 15:37 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-12 14:55 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-09-12 14:55 - 2012-06-02 16:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-09-12 14:54 - 2012-07-26 05:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-09-12 14:54 - 2012-07-26 05:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-09-12 14:54 - 2012-07-26 05:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-09-12 14:54 - 2012-07-26 05:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-09-12 14:54 - 2012-07-26 04:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-09-12 14:54 - 2012-07-26 04:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-09-12 14:54 - 2012-07-26 04:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-09-12 14:54 - 2009-07-14 14:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2013-09-12 14:29 - 2012-12-16 15:12 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-09-12 14:29 - 2012-12-16 12:50 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-09-12 14:27 - 2013-04-24 06:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-12 14:27 - 2013-04-24 03:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-12 14:26 - 2013-04-15 16:20 - 00638328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-09-12 14:26 - 2013-04-13 12:56 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-09-12 14:26 - 2012-11-08 05:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-09-12 14:25 - 2013-07-16 06:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-09-12 14:25 - 2011-02-22 16:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-12 14:23 - 2013-07-05 06:53 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-12 14:23 - 2013-06-15 15:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-09-12 14:23 - 2013-06-15 13:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-12 14:23 - 2013-03-03 21:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-12 14:23 - 2012-09-28 18:11 - 00892928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-12 14:23 - 2012-08-21 13:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-09-12 14:23 - 2012-06-08 19:47 - 11586048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-12 14:23 - 2012-03-21 01:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-09-12 14:23 - 2011-12-14 18:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-09-12 14:23 - 2011-10-25 17:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-09-12 14:23 - 2011-07-29 18:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-09-12 14:23 - 2011-07-29 18:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-09-12 14:23 - 2011-07-29 18:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2013-09-12 14:23 - 2011-07-29 18:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2013-09-12 14:22 - 2013-08-02 06:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-12 14:22 - 2013-07-17 21:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-12 14:22 - 2013-07-10 11:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-12 14:22 - 2013-05-02 06:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-12 14:22 - 2013-05-02 06:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2013-09-12 14:22 - 2012-11-22 05:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2013-09-12 14:22 - 2012-11-20 06:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-12 14:22 - 2012-11-02 12:19 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-12 14:22 - 2012-09-25 18:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-12 14:22 - 2012-05-11 17:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-09-12 14:22 - 2011-11-18 19:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-09-12 14:22 - 2011-10-14 18:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-09-12 14:22 - 2011-10-14 18:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2013-09-12 14:21 - 2011-10-14 18:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-09-12 14:20 - 2012-11-02 12:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-12 14:20 - 2012-11-02 10:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2013-09-12 14:20 - 2012-06-29 18:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-12 14:12 - 2013-09-12 14:12 - 00476024 _____ (1&1 Mail & Media GmbH) C:\Users\sabrina\Downloads\WEB.DE_MailCheck_chrome_setup.exe
2013-09-12 13:48 - 2011-11-16 18:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2013-09-12 13:43 - 2011-08-25 18:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-09-12 13:43 - 2011-08-25 18:14 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-09-12 13:43 - 2011-08-25 18:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-09-12 13:43 - 2011-08-25 15:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2013-09-12 13:42 - 2013-07-09 14:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-12 13:42 - 2013-07-08 06:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-09-12 13:42 - 2013-07-08 06:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-12 13:42 - 2013-03-09 05:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-12 13:42 - 2013-03-09 03:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-12 13:42 - 2013-03-08 05:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-12 13:42 - 2013-03-08 05:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-12 13:42 - 2013-02-12 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
2013-09-12 13:42 - 2013-02-12 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-12 13:42 - 2012-06-04 17:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-09-12 13:42 - 2012-06-02 02:04 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-09-12 13:42 - 2012-05-01 16:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-09-12 13:42 - 2011-11-16 18:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-09-12 13:42 - 2011-11-16 18:21 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-09-12 13:42 - 2011-11-16 16:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-09-12 13:42 - 2011-06-15 18:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-09-12 13:42 - 2010-05-04 21:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2013-09-12 13:37 - 2013-08-08 03:45 - 02049536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-12 13:37 - 2013-07-08 06:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-12 13:37 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-12 13:37 - 2013-04-17 14:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-09-12 13:37 - 2012-06-05 18:47 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-12 13:19 - 2012-01-09 17:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-09-12 13:06 - 2013-09-12 13:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\avgchrome
2013-09-11 17:29 - 2013-09-11 17:29 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-11 17:28 - 2013-09-13 17:26 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-11 17:28 - 2013-09-13 17:26 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-11 17:27 - 2013-09-11 17:27 - 00784888 _____ (Google Inc.) C:\Users\sabrina\Downloads\ChromeSetup.exe
2013-09-11 17:17 - 2013-09-11 17:17 - 00000000 ____D C:\Windows\system32\searchplugins
2013-09-11 17:15 - 2013-10-08 13:16 - 00000300 _____ C:\Windows\Tasks\UpdaterEX.job
2013-09-11 17:15 - 2013-09-11 17:15 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\UpdaterEX
2013-09-11 17:13 - 2013-10-05 23:42 - 00000000 ____D C:\Program Files\WebConnect
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Babylon
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\BabSolution
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Program Files\Delta
2013-09-11 16:14 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-09-11 16:14 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-09-11 16:14 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-09-11 16:14 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-09-11 16:13 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-09-11 16:13 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-09-11 16:13 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-09-11 16:13 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-09-11 16:13 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-09-10 11:22 - 2013-09-10 11:22 - 00000000 ____D C:\Users\sabrina\AppData\Local\Macromedia
2013-09-10 11:13 - 2013-10-08 13:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-10 11:13 - 2013-09-20 07:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-10 11:13 - 2013-09-20 07:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-10 11:05 - 2013-09-10 11:05 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-10 10:55 - 2013-09-12 17:45 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\vi-VN
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\eu-ES
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\ca-ES
2013-09-10 09:48 - 2013-09-19 08:05 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\TuneUp Software
2013-09-10 09:45 - 2013-10-05 20:01 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014
2013-09-10 09:43 - 2013-09-19 08:05 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-09-10 09:42 - 2013-10-05 20:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-09-10 08:48 - 2013-09-10 08:48 - 00000000 ____D C:\Windows\system32\EventProviders
==================== One Month Modified Files and Folders =======
2013-10-08 13:54 - 2013-10-07 13:38 - 00000000 ___RD C:\Users\sabrina\Downloads\FRST - Farbar Recovery Scan Tool
2013-10-08 13:20 - 2013-09-10 11:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-08 13:16 - 2013-09-11 17:15 - 00000300 _____ C:\Windows\Tasks\UpdaterEX.job
2013-10-08 13:13 - 2009-02-16 04:31 - 02064494 _____ C:\Windows\WindowsUpdate.log
2013-10-08 13:07 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-08 13:07 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-08 13:07 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-08 13:06 - 2013-09-16 21:37 - 00201060 _____ C:\Windows\PFRO.log
2013-10-08 13:05 - 2006-11-02 15:01 - 00032602 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-08 09:44 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-10-07 14:08 - 2013-10-07 13:55 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-07 14:08 - 2013-10-07 13:39 - 00000000 ____D C:\Users\sabrina\AppData\Local\DownloadGuide
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-07 13:27 - 2013-10-07 13:27 - 00000000 ____D C:\FRST
2013-10-05 23:42 - 2013-09-11 17:13 - 00000000 ____D C:\Program Files\WebConnect
2013-10-05 20:43 - 2013-09-10 09:42 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-10-05 20:15 - 2013-10-05 20:15 - 00000071 _____ C:\Users\sabrina\Desktop\Acronis Testkey.txt
2013-10-05 20:01 - 2013-10-05 20:01 - 00001876 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-10-05 20:01 - 2013-09-10 09:45 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:51 - 2013-10-05 19:45 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-05 19:43 - 2013-09-25 15:41 - 00000000 ____D C:\Users\sabrina\Documents\Dokumente Basti
2013-10-05 19:40 - 2013-10-05 19:40 - 00000000 ____D C:\Users\sabrina\Downloads\Acronis Recovery
2013-10-05 19:37 - 2013-10-05 19:37 - 17810632 _____ (pdfforge GmbH) C:\Users\sabrina\Downloads\PDFCreator-1_7_1_setup.exe
2013-10-02 14:29 - 2006-11-02 12:33 - 01445310 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-01 16:08 - 2013-09-13 11:19 - 00000000 ____D C:\Users\Basti
2013-10-01 16:02 - 2013-10-01 16:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-01 14:42 - 2013-10-01 14:39 - 09030312 _____ C:\Users\sabrina\Downloads\avira_secure_backup.exe
2013-10-01 14:27 - 2013-10-01 14:27 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-01 14:26 - 2013-10-01 14:26 - 00000000 ____D C:\Program Files\Avira
2013-10-01 14:26 - 2013-04-23 19:25 - 00000000 ____D C:\ProgramData\Avira
2013-10-01 14:07 - 2013-10-01 14:06 - 122946048 _____ C:\Users\sabrina\Downloads\avira14_free_antivirus_de.exe
2013-10-01 14:06 - 2013-10-01 14:05 - 12644232 _____ (Microsoft Corporation) C:\Users\sabrina\Downloads\drvupdate6965-x86.exe
2013-09-30 11:01 - 2013-10-01 14:26 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-09-29 17:36 - 2013-09-29 17:36 - 08676128 _____ (Microsoft Corporation) C:\Users\sabrina\Downloads\Windows7UpgradeAdvisorSetup.exe
2013-09-28 14:05 - 2013-09-24 14:56 - 00000000 ____D C:\Need For Speed World
2013-09-28 14:01 - 2013-09-28 14:01 - 00000000 ____D C:\Users\sabrina\Downloads\Sixaxis_PS3_Win32_Driver_For_PC
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-28 13:57 - 2013-09-28 13:57 - 01766784 _____ C:\Users\sabrina\Downloads\wrar500.exe
2013-09-28 13:56 - 2013-09-28 13:56 - 00389733 _____ C:\Users\sabrina\Downloads\Sixaxis_PS3_Win32_Driver_For_PC.rar
2013-09-27 14:16 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-09-27 13:36 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Winamp
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-27 13:34 - 2013-09-19 08:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\OpenCandy
2013-09-27 13:10 - 2013-09-27 13:10 - 00345912 _____ C:\Users\sabrina\Downloads\hdvid_codec_chrome.exe
2013-09-27 10:42 - 2013-09-19 09:41 - 00000000 ___RD C:\Users\Basti\Streamripper
2013-09-26 07:46 - 2013-09-19 08:23 - 00007830 _____ C:\Windows\setupact.log
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:36 - 2009-03-20 15:37 - 00000000 ____D C:\Users\sabrina
2013-09-26 07:21 - 2013-09-26 07:20 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-25 16:42 - 2013-09-25 16:42 - 00000915 _____ C:\Users\sabrina\Desktop\NfS World.lnk
2013-09-25 16:06 - 2013-09-25 16:06 - 00011462 _____ C:\Users\sabrina\Downloads\SGB IX Behinderung.htm
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Program Files\Need For Speed World
2013-09-24 14:55 - 2013-09-24 14:55 - 06400680 _____ (Electronic Arts ) C:\Users\sabrina\Downloads\setup_nfsw.exe
2013-09-24 14:53 - 2013-09-24 14:53 - 00000301 _____ C:\Users\sabrina\Downloads\widgets-tweet_button.html.torrent
2013-09-24 09:41 - 2013-09-24 09:41 - 00002012 _____ C:\Users\sabrina\Desktop\Chrome-App-Übersicht.lnk
2013-09-24 09:41 - 2013-09-24 09:41 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-09-24 07:17 - 2006-11-02 14:42 - 00000000 ____D C:\Windows\WindowsMobile
2013-09-22 12:53 - 2013-09-13 09:19 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-22 12:53 - 2011-07-24 13:38 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\888poker
2013-09-22 12:53 - 2010-05-07 22:59 - 00005328 ___SH C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneNote Inhaltsverzeichnis.onetoc2
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2013-09-22 12:43 - 2009-02-16 06:18 - 00000000 ____D C:\Program Files\Google
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-21 14:47 - 2013-09-21 14:24 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-21 14:38 - 2013-09-21 14:38 - 03530752 _____ C:\Users\sabrina\Downloads\URLSnooperSetup230.exe
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-21 14:23 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-09-21 13:18 - 2009-02-16 07:29 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2013-09-20 23:39 - 2013-09-17 07:01 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-20 15:12 - 2013-09-13 09:18 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-20 15:08 - 2013-09-13 09:24 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-09-20 07:20 - 2013-09-10 11:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-20 07:20 - 2013-09-10 11:13 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-20 07:13 - 2009-03-20 15:40 - 00000000 ____D C:\Users\sabrina\AppData\Local\Adobe
2013-09-20 07:09 - 2013-09-16 11:53 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:48 - 2013-09-19 08:03 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:44 - 2013-09-17 07:46 - 00000000 ____D C:\ProgramData\Acronis
2013-09-19 08:23 - 2013-09-19 08:23 - 00000000 _____ C:\Windows\setuperr.log
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:05 - 2013-09-10 09:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\TuneUp Software
2013-09-19 08:05 - 2013-09-10 09:43 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 08:01 - 2013-09-19 08:01 - 17664368 _____ (Nullsoft, Inc.) C:\Users\sabrina\Downloads\winamp565_full_emusic-7plus_all.exe
2013-09-19 07:48 - 2013-09-19 07:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-09-19 07:41 - 2013-09-19 07:41 - 02633439 _____ C:\Users\sabrina\Downloads\streamripper-windows-installer-1.64.6.exe
2013-09-19 07:30 - 2013-09-14 17:24 - 00000000 ____D C:\Windows\pss
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:46 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-17 07:01 - 11297192 _____ C:\Users\sabrina\Downloads\yosetup.exe
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-17 05:49 - 2013-09-14 13:45 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-16 22:47 - 2009-04-20 06:51 - 00001356 _____ C:\Users\sabrina\AppData\Local\d3d9caps.dat
2013-09-16 22:11 - 2009-02-16 04:55 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-09-16 15:33 - 2012-02-17 19:20 - 00000000 ____D C:\Windows\system32\Adobe
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001916 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001912 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001900 _____ C:\Users\Public\Desktop\Google Docs.lnk
2013-09-16 11:51 - 2009-03-20 15:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Google
2013-09-16 11:50 - 2013-09-16 11:50 - 00784832 _____ (Google Inc.) C:\Users\sabrina\Downloads\googledrivesync.exe
2013-09-14 20:23 - 2013-09-14 20:23 - 00002934 _____ C:\Windows\DPINST.LOG
2013-09-14 13:45 - 2006-11-02 13:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-09-13 21:42 - 2013-09-13 21:42 - 00000000 ____D C:\Windows\system32\Extensions
2013-09-13 21:34 - 2010-11-03 19:44 - 00000000 ____D C:\Windows\Minidump
2013-09-13 21:20 - 2013-09-13 21:20 - 00000000 ____D C:\Users\sabrina\AppData\Local\Freemium
2013-09-13 19:36 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-13 19:05 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\SoftwareUpdater
2013-09-13 19:04 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\Covus Freemium
2013-09-13 19:02 - 2013-09-13 19:02 - 00000171 _____ C:\Users\sabrina\Desktop\Amazon.url
2013-09-13 18:17 - 2013-09-13 18:17 - 00004360 _____ C:\Users\sabrina\Downloads\__32-rtl120.bpl1.0.0.0.zip
2013-09-13 17:54 - 2009-03-20 15:37 - 00000000 ___RD C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-09-13 17:26 - 2013-09-11 17:28 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-13 17:26 - 2013-09-11 17:28 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-13 17:25 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-09-13 17:25 - 2006-11-02 12:22 - 45088768 _____ C:\Windows\system32\config\components_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 44564480 _____ C:\Windows\system32\config\software_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 20971520 _____ C:\Windows\system32\config\system_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-09-13 17:24 - 2009-02-16 07:21 - 00000000 ____D C:\ProgramData\P4G
2013-09-13 17:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2013-09-13 17:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2013-09-13 16:58 - 2013-09-13 16:51 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014(18)
2013-09-13 14:26 - 2008-04-16 13:27 - 00000000 ____D C:\Windows\Panther
2013-09-13 11:24 - 2013-09-13 11:21 - 00001383 _____ C:\Users\sabrina\Desktop\Basti.lnk
2013-09-13 11:20 - 2013-09-13 11:20 - 00458541 _____ C:\Users\Basti\Startseite Google Chrome.htm
2013-09-13 09:24 - 2013-09-13 09:24 - 00000950 _____ C:\Users\sabrina\Desktop\Dropbox.lnk
2013-09-13 09:20 - 2013-09-13 09:20 - 00000000 ____D C:\Program Files\Dropbox
2013-09-13 08:43 - 2013-09-13 08:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Avg2014
2013-09-13 08:07 - 2013-09-13 08:07 - 97443711 _____ C:\Windows\system32\㩷⭬᭄š
2013-09-12 18:52 - 2013-09-12 18:52 - 32966136 _____ (Dropbox, Inc.) C:\Users\sabrina\Downloads\Dropbox 2.0.26.exe
2013-09-12 17:45 - 2013-09-10 10:55 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-12 17:40 - 2013-09-12 17:40 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-TW
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-CN
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\uk-UA
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\th-TH
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sv-SE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sl-SI
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sk-SK
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ru-RU
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ro-RO
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pt-PT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pt-BR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pl-PL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\nl-NL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\nb-NO
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\lv-LV
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\lt-LT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ko-KR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ja-JP
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\it-IT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\hu-HU
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\hr-HR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\he-IL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fi-FI
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\et-EE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\el-GR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\bg-BG
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ar-SA
2013-09-12 17:39 - 2013-09-12 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-09-12 17:39 - 2008-04-16 13:11 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2013-09-12 17:39 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-09-12 17:39 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Common Files\System
2013-09-12 17:38 - 2013-09-12 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-09-12 15:41 - 2013-09-12 15:41 - 12335104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-12 15:41 - 2013-09-12 15:41 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-12 15:41 - 2013-09-12 15:41 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-12 15:41 - 2013-09-12 15:41 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-12 15:41 - 2013-09-12 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-12 15:41 - 2013-09-12 15:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-12 15:41 - 2013-09-12 15:40 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-12 15:41 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-09-12 15:41 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-09-12 15:40 - 2013-09-12 15:40 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-09-12 15:39 - 2013-09-12 15:39 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-09-12 15:37 - 2013-09-12 15:37 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-12 14:50 - 2013-08-17 17:52 - 00000000 ____D C:\Windows\system32\MRT
2013-09-12 14:44 - 2006-11-02 12:24 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-09-12 14:12 - 2013-09-12 14:12 - 00476024 _____ (1&1 Mail & Media GmbH) C:\Users\sabrina\Downloads\WEB.DE_MailCheck_chrome_setup.exe
2013-09-12 13:06 - 2013-09-12 13:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\avgchrome
2013-09-11 20:53 - 2009-03-22 15:43 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-11 17:29 - 2013-09-11 17:29 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-11 17:27 - 2013-09-11 17:27 - 00784888 _____ (Google Inc.) C:\Users\sabrina\Downloads\ChromeSetup.exe
2013-09-11 17:17 - 2013-09-11 17:17 - 00000000 ____D C:\Windows\system32\searchplugins
2013-09-11 17:15 - 2013-09-11 17:15 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\UpdaterEX
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Babylon
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\BabSolution
2013-09-11 17:13 - 2013-09-11 17:13 - 00000000 ____D C:\Program Files\Delta
2013-09-10 12:21 - 2009-06-27 20:55 - 00000000 ____D C:\Users\sabrina\AppData\Local\Microsoft Games
2013-09-10 11:22 - 2013-09-10 11:22 - 00000000 ____D C:\Users\sabrina\AppData\Local\Macromedia
2013-09-10 11:05 - 2013-09-10 11:05 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Photo Gallery
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Collaboration
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Calendar
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Movie Maker
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\vi-VN
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\eu-ES
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\ca-ES
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\SLUI
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\IME
2013-09-10 10:45 - 2009-02-16 07:01 - 00000000 ____D C:\Windows\system32\RTCOM
2013-09-10 10:13 - 2009-02-16 06:27 - 00000000 ____D C:\ProgramData\Google
2013-09-10 10:08 - 2009-03-20 22:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\Microsoft Help
2013-09-10 08:48 - 2013-09-10 08:48 - 00000000 ____D C:\Windows\system32\EventProviders
Some content of TEMP:
====================
C:\Users\sabrina\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-08 13:19
==================== End Of Log ============================
--- --- --- FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-10-2013
Ran by sabrina at 2013-10-08 14:05:25
Running from C:\Users\sabrina\Downloads\FRST - Farbar Recovery Scan Tool
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
2007 Microsoft Office system (Version: 12.0.4518.1014)
888poker
ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
Acronis True Image 2014 (Version: 17.0.5560)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.175)
Adobe Flash Player 11 Plugin (Version: 11.8.800.168)
Adobe Reader 8.1.3 - Deutsch (Version: 8.1.3)
Adobe Shockwave Player (Version: 11.0)
Adobe Shockwave Player 12.0 (Version: 12.0.4.144)
Adobe® Photoshop® Album Starter Edition 3.2 (Version: 3.2.0)
ASUS CopyProtect (Version: 1.0.0007)
ASUS Data Security Manager (Version: 1.00.0006)
ASUS InstantFun (Version: 1.0.0015)
ASUS LifeFrame3 (Version: 3.0.9)
ASUS Live Update (Version: 2.5.6)
ASUS Power4Gear eXtreme (Version: 1.0.18)
ASUS SmartLogon (Version: 1.0.0005)
ASUS Splendid Video Enhancement Technology (Version: 1.02.0020)
ASUS Virtual Camera (Version: 1.0.09)
Asus_Camera_ScreenSaver (Version: 2.0.0007)
Atheros Client Installation Program (Version: 7.0)
ATI Catalyst Install Manager (Version: 3.0.678.0)
ATK Generic Function Service (Version: 1.00.0008)
ATK Hotkey (Version: 1.00.0034)
ATK Media
ATKOSD2 (Version: 6.64.1.8)
Avira Free Antivirus (Version: 14.0.0.383)
Browser Guard
Catalyst Control Center Core Implementation (Version: 2008.0603.2230.38408)
Catalyst Control Center Graphics Full Existing (Version: 2008.0603.2230.38408)
Catalyst Control Center Graphics Full New (Version: 2008.0603.2230.38408)
Catalyst Control Center Graphics Light (Version: 2008.0603.2230.38408)
Catalyst Control Center Graphics Previews Vista (Version: 2008.0603.2230.38408)
Catalyst Control Center InstallProxy (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Czech (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Danish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Dutch (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Finnish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization French (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization German (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Greek (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Hungarian (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Italian (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Japanese (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Korean (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Norwegian (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Polish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Portuguese (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Russian (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Spanish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Swedish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Thai (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Turkish (Version: 2008.0603.2230.38408)
CCC Help Chinese Standard (Version: 2008.0603.2229.38408)
CCC Help Chinese Traditional (Version: 2008.0603.2229.38408)
CCC Help Czech (Version: 2008.0603.2229.38408)
CCC Help Danish (Version: 2008.0603.2229.38408)
CCC Help Dutch (Version: 2008.0603.2229.38408)
CCC Help English (Version: 2008.0603.2229.38408)
CCC Help Finnish (Version: 2008.0603.2229.38408)
CCC Help French (Version: 2008.0603.2229.38408)
CCC Help German (Version: 2008.0603.2229.38408)
CCC Help Greek (Version: 2008.0603.2229.38408)
CCC Help Hungarian (Version: 2008.0603.2229.38408)
CCC Help Italian (Version: 2008.0603.2229.38408)
CCC Help Japanese (Version: 2008.0603.2229.38408)
CCC Help Korean (Version: 2008.0603.2229.38408)
CCC Help Norwegian (Version: 2008.0603.2229.38408)
CCC Help Polish (Version: 2008.0603.2229.38408)
CCC Help Portuguese (Version: 2008.0603.2229.38408)
CCC Help Russian (Version: 2008.0603.2229.38408)
CCC Help Spanish (Version: 2008.0603.2229.38408)
CCC Help Swedish (Version: 2008.0603.2229.38408)
CCC Help Thai (Version: 2008.0603.2229.38408)
CCC Help Turkish (Version: 2008.0603.2229.38408)
ccc-core-static (Version: 2008.0603.2230.38408)
ccc-utility (Version: 2008.0603.2230.38408)
Cisco EAP-FAST Module (Version: 2.1.6)
Cisco LEAP Module (Version: 1.0.12)
Cisco PEAP Module (Version: 1.0.13)
CyberLink LabelPrint (Version: 2.0.2908)
CyberLink Power2Go (Version: 6.0.1924)
Delta Chrome Toolbar
Delta toolbar (Version: 1.8.24.6)
Dropbox (HKCU Version: 2.0.26)
Epson Easy Photo Print 2 (Version: 2.0.0.0)
EPSON Scan
EPSON Stylus SX100_TX100 Handbuch
EPSON SX100 Series Printer Uninstall
Everest Poker (Remove Only)
Express Gate (Version: 0.8.0.0)
Extended Update
Franzis Führerschein Prüfung (Version: 1.0)
Full Tilt Poker (Version: 4.40.9.WIN.FullTilt.COM)
Google Chrome (Version: 29.0.1547.66)
Google Drive (Version: 1.11.4865.2530)
Google Update Helper (Version: 1.3.21.153)
Hugo3D PC (Version: 1.0)
Laura geht in die Schule
Lernspiele Englisch
LightScribe System Software 1.14.17.1 (Version: 1.14.17.1)
Meine Tierarztpraxis (remove only)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Office 2000 Disc 2 (Version: 9.00.2816)
Microsoft Office 2000 Premium (Version: 9.00.2816)
Microsoft Office Access MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Home and Student 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office PowerPoint MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Professional Hybrid 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Arabic) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Publisher MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Shared MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft PhotoDraw 2000
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MotioninJoy ds3 driver version 0.6.0005 (Version: 0.6.00005)
Multimedia Card Reader (Version: 1.01.0000.00)
Need For Speed™ World (Version: 1.0.0.1599)
Nokia Connectivity Cable Driver (Version: 6.80.5.1)
Picasa 3 (Version: 3.9)
PokerStars
PokerStars.net
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5605)
Skins (Version: 2008.0603.2230.38408)
Sony Ericsson Media Manager 1.2 (Version: 1.2.822)
Streamripper (Remove only)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 10.1.8.0)
TuneUp Utilities 2014 (de-DE) (Version: 14.0.1000.83)
TuneUp Utilities 2014 (Version: 14.0.1000.83)
TutorWIN für SAP R3 LesBase
TutorWIN für SAP R3 Personalabrechnung Rel 4.6
TutorWIN für SAP R3 Personaladministration Rel 4.6
Unity Web Player (HKCU Version: )
Update for Microsoft .NET Framework 3.5 SP1 (KB2836940) (Version: 1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
USB 2.0 1.3M UVC WebCam
VideoLAN VLC media player 0.8.6c (Version: 0.8.6c)
WIDCOMM Bluetooth Software (Version: 5.2.0.500)
Winamp (Version: 5.65 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
WinFlash
WinRAR 5.00 (32-bit) (Version: 5.00.0)
Wireless Console 2 (Version: 2.0.10)
YoWindow (Version: 3)
==================== Restore Points =========================
05-10-2013 17:29:57 TuneUp Utilities 2013 wird entfernt
05-10-2013 17:32:34 TuneUp Utilities Language Pack (de-DE) wird entfernt
05-10-2013 17:51:56 Removed PDF Architect
05-10-2013 17:56:25 TuneUp Utilities 2014 wird installiert
07-10-2013 11:55:36 Free System Utilities
07-10-2013 12:08:47 Free System Utilities
07-10-2013 12:13:14 Free System Utilities
07-10-2013 12:30:47 Removed TubeBox Smartbar
07-10-2013 13:30:22 Windows-Modulinstallation
==================== Hosts content: ==========================
2006-11-02 12:23 - 2012-11-28 12:20 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {0B875F35-AB94-4795-B03F-CE994BB5418C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\TuneUp Utilities 2014\OneClick.exe [2013-08-28] (TuneUp Software)
Task: {1018FC1B-286A-4586-9C50-6DB7191CB86E} - System32\Tasks\UpdaterEX => C:\Users\sabrina\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE [2013-04-12] ()
Task: {18F9254D-0883-408D-B91E-DFD65A7901D0} - System32\Tasks\Lyrics Seeker Update => C:\Program Files\LyricsSeeker\Lupdate.exe
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {2A81A3EA-4248-45B1-B1D9-043AC2D625CD} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-08-23] ()
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {4779E023-FDBF-4A53-BB9C-61C77400276D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-11] (Google Inc.)
Task: {56154645-FA9C-4AC1-816E-B64C74F2CF9B} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files\ASUS\SmartLogon\sensorsrv.exe [2008-06-18] (ASUS)
Task: {568FE42C-13CB-438E-A811-36818F856969} - System32\Tasks\ASUS Live Update => C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {5B02E504-7810-4357-9799-E155F65EBE04} - System32\Tasks\Freemium1ClickMaint => C:\Program Files\Covus Freemium\Free System Utilities\1Click.exe
Task: {5C239001-9206-4A79-8DDF-418BC08FA399} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-20] (Adobe Systems Incorporated)
Task: {7202E5EC-7796-4BA8-A53E-FB353BBA8F0A} - System32\Tasks\DjYogi-PSY (http.laut.fm.80) => C:\Program Files\Stream Recorder .Net\StreamRecorder.exe [2012-01-22] ()
Task: {78671366-A776-4F4D-9488-12E4F91E097E} - System32\Tasks\EPUpdater => C:\Users\sabrina\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [2013-08-04] ()
Task: {7C5CE51E-EBD6-4070-9428-0D13B0B0CEE4} - System32\Tasks\Stream Recorder .Net => C:\Users\sabrina\Desktop\Stream-Recorder-Net.exe
Task: {A0884DEE-87A4-4922-A246-1A6F5BFCEB79} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-09-13] ()
Task: {C7C7BDED-E129-4915-87A4-270E17EADBCE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-11] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {F42DF8CF-D1C5-4CB8-A722-C47CC774C12D} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2008-01-21] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\sabrina\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE
==================== Loaded Modules (whitelisted) =============
2008-06-04 05:21 - 2008-06-04 05:21 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2009-02-16 07:17 - 2007-06-15 20:28 - 00147456 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
2009-02-16 07:17 - 2007-06-02 03:08 - 00143360 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
2013-08-07 17:07 - 2013-08-07 17:07 - 00022336 _____ () C:\Program Files\Acronis\TrueImageHome\ti_managers_proxy_stub.dll
2009-02-16 07:17 - 2007-08-08 12:52 - 00331776 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\AdsmendecExt.dll
2008-02-12 22:50 - 2008-02-12 22:50 - 00688128 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
2009-02-16 06:43 - 2009-02-16 06:43 - 00014848 _____ () C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
2013-09-11 17:29 - 2013-09-02 22:35 - 04053456 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll
2013-09-11 17:29 - 2013-09-02 22:35 - 00410576 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
2013-09-11 17:29 - 2013-09-02 22:35 - 01604560 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Microsoft-ISATAP-Adapter #2
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #4
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: =========================
Application errors:
==================
Error: (10/08/2013 01:08:26 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/08/2013 01:05:38 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}
Error: (10/08/2013 08:45:13 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/07/2013 04:04:25 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/07/2013 02:01:20 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/07/2013 01:09:24 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/06/2013 06:44:08 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/05/2013 11:33:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/05/2013 07:29:51 PM) (Source: Application Error) (User: )
Description: Fehlerhafte Anwendung TuneUpSystemStatusCheck.exe, Version 13.0.3020.2, Zeitstempel 0x510679cd, fehlerhaftes Modul kernel32.dll, Version 6.0.6002.18704, Zeitstempel 0x5065ccb6, Ausnahmecode 0x0eedfade, Fehleroffset 0x0003fc16,
Prozess-ID 0xb28, Anwendungsstartzeit TuneUpSystemStatusCheck.exe0.
Error: (10/05/2013 07:25:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (10/08/2013 01:10:07 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032
Error: (10/08/2013 01:09:31 PM) (Source: Service Control Manager) (User: )
Description: 30000SysMain
Error: (10/08/2013 01:09:01 PM) (Source: Service Control Manager) (User: )
Description: 30000TrkWks
Error: (10/08/2013 08:47:36 AM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2013-09-10 08:50:49.846
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-10 08:50:49.300
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-10 08:50:48.770
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-10 08:50:48.224
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-10 08:50:47.678
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2010-11-03 18:46:32.629
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2010-11-03 18:46:32.442
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2010-11-03 18:46:32.052
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2010-11-03 18:46:31.865
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 51%
Total physical RAM: 1790.39 MB
Available physical RAM: 866.25 MB
Total Pagefile: 3831.33 MB
Available Pagefile: 2508 MB
Total Virtual: 2047.88 MB
Available Virtual: 1927.91 MB
==================== Drives ================================
Drive c: (VistaOS) (Fixed) (Total:116.44 GB) (Free:16.51 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:106.68 GB) (Free:79.67 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 233 GB) (Disk ID: 97646C29)
Partition 1: (Not Active) - (Size=10 GB) - (Type=1C)
Partition 2: (Active) - (Size=116 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=107 GB) - (Type=OF Extended)
==================== End Of Log ============================
|
|
09.10.2013, 07:51
| #5 |
| /// the machine /// TB-Ausbilder | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Hat doch geklappt  Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.10.2013, 15:20
| #6 |
| | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Wird gleich ausprobiert! Dank an den Schrauber Wie antworte ich in Code Tags? Mit diesem wie in der letzten Antwort von Dir? Doch wie benutze ich diese Code Eingabe? 1. (Code) (Code) zuerst einfügen und dann den Text, 2. meinen Text mittig (Code) einfügen (Code), 3. oder Text am Ende einfügen (Code) (Code) ??? Combofix Logfile: Code:
ATTFilter ComboFix 13-10-08.01 - sabrina 09.10.2013 15:50:23.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.1790.1118 [GMT 2:00]
ausgeführt von:: c:\users\sabrina\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Common Files\ASPG_icon.ico
c:\program files\Delta\delta\1.8.24.6\bh\delta.dll
c:\program files\Delta\delta\1.8.24.6\deltaApp.dll
c:\program files\Delta\delta\1.8.24.6\deltaEng.dll
c:\program files\Delta\delta\1.8.24.6\deltasrv.exe
c:\program files\Delta\delta\1.8.24.6\deltaTlbr.dll
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-09-09 bis 2013-10-09 ))))))))))))))))))))))))))))))
.
.
2013-10-09 14:02 . 2013-10-09 14:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-10-09 12:00 . 2013-08-27 02:47 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-10-09 11:59 . 2013-07-12 09:04 134272 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2013-10-09 11:59 . 2013-08-29 07:36 2050048 ----a-w- c:\windows\system32\win32k.sys
2013-10-09 11:59 . 2013-06-26 23:01 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-10-09 11:59 . 2013-07-04 04:21 532480 ----a-w- c:\windows\system32\comctl32.dll
2013-10-09 11:59 . 2013-08-01 03:16 638400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-10-09 11:59 . 2013-07-20 10:44 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 11:59 . 2013-08-01 02:49 37376 ----a-w- c:\windows\system32\cdd.dll
2013-10-09 11:59 . 2013-06-04 01:49 293376 ----a-w- c:\windows\system32\atmfd.dll
2013-10-09 11:59 . 2013-06-04 04:16 34304 ----a-w- c:\windows\system32\atmlib.dll
2013-10-09 10:48 . 2013-08-28 18:32 36664 ----a-w- c:\windows\system32\TURegOpt.exe
2013-10-09 10:48 . 2013-08-28 18:32 25400 ----a-w- c:\windows\system32\authuitu.dll
2013-10-09 10:40 . 2013-10-09 10:52 -------- d-----w- c:\program files\Unlocker
2013-10-09 09:26 . 2013-10-09 09:30 -------- d-----w- c:\users\sabrina\AppData\Roaming\vlc
2013-10-09 09:24 . 2013-10-09 09:24 -------- d-----w- c:\program files\VideoLAN
2013-10-08 20:27 . 2013-10-08 20:27 -------- d-----w- c:\users\sabrina\AppData\Roaming\Sony
2013-10-08 20:27 . 2013-10-08 20:27 -------- d-----w- c:\programdata\Sony
2013-10-08 16:39 . 2013-10-08 16:39 -------- d-----w- c:\program files\Windows Journal
2013-10-08 16:39 . 2013-10-08 16:39 -------- d-----w- c:\windows\system32\msmq
2013-10-08 16:39 . 2013-10-08 16:39 -------- d-----w- C:\inetpub
2013-10-07 12:05 . 2013-10-07 12:05 -------- d-----w- c:\users\sabrina\AppData\Local\Software Updater
2013-10-07 11:56 . 2013-10-07 11:56 -------- d-----w- c:\program files\Browser Guard
2013-10-07 11:39 . 2013-10-07 12:08 -------- d-----w- c:\users\sabrina\AppData\Local\DownloadGuide
2013-10-07 11:27 . 2013-10-07 11:27 -------- d-----w- C:\FRST
2013-10-05 17:53 . 2013-10-05 17:53 -------- d-----w- c:\program files\Common Files\PDF Architect
2013-10-05 17:49 . 2013-10-05 17:49 -------- d-----w- c:\users\sabrina\AppData\Roaming\PDF Architect
2013-10-05 17:45 . 2013-10-05 17:51 -------- d-----w- c:\program files\PDFCreator
2013-10-01 14:02 . 2013-10-01 14:02 -------- d-----w- c:\users\sabrina\AppData\Roaming\Avira
2013-10-01 12:26 . 2013-09-30 09:01 89376 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-10-01 12:26 . 2013-09-30 09:01 37352 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-10-01 12:26 . 2013-09-30 09:01 137208 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-10-01 12:26 . 2013-10-01 12:26 -------- d-----w- c:\program files\Avira
2013-10-01 06:05 . 2013-09-05 05:02 7328304 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EC234508-60CB-4B04-9CAE-F5DAF3DA56AE}\mpengine.dll
2013-09-27 11:34 . 2013-09-27 11:34 -------- d-----w- c:\program files\Winamp Detect
2013-09-27 11:34 . 2013-09-27 12:16 -------- d-----w- c:\users\sabrina\AppData\Roaming\Winamp
2013-09-26 05:20 . 2013-09-26 05:21 99400 ----a-w- c:\windows\system32\drivers\MijXfilt.sys
2013-09-26 05:20 . 2013-09-26 05:20 -------- d-----w- c:\users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 05:20 . 2013-09-26 05:20 -------- d-----w- c:\program files\MotioninJoy
2013-09-26 05:20 . 2010-08-19 17:24 61984 ----a-w- c:\windows\system32\drivers\xusb21.sys
2013-09-26 05:20 . 2010-08-19 17:24 255496 ----a-w- c:\windows\system32\MijFrc.dll
2013-09-26 05:20 . 2010-08-19 17:24 1461992 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2013-09-24 13:06 . 2013-09-24 13:06 -------- d-----w- c:\users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 12:56 . 2013-09-24 12:56 -------- d-----w- c:\users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-21 12:35 . 2013-09-21 12:35 -------- d-----w- c:\users\sabrina\AppData\Local\StreamRecorder
2013-09-21 12:24 . 2013-09-21 12:47 -------- d-----w- c:\program files\Stream Recorder .Net
2013-09-19 07:35 . 2013-09-19 07:35 -------- d-----w- c:\program files\Streamripper
2013-09-19 07:06 . 2013-09-19 07:06 -------- d-----w- c:\users\sabrina\AppData\Local\Apps
2013-09-19 06:09 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2013-09-19 06:09 . 2006-09-28 14:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll
2013-09-19 06:03 . 2013-09-19 06:48 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 06:02 . 2013-09-19 06:02 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2013-09-19 06:02 . 2013-09-27 11:36 -------- d-----w- c:\program files\Winamp
2013-09-19 06:02 . 2013-09-27 11:34 -------- d-----w- c:\users\sabrina\AppData\Roaming\OpenCandy
2013-09-19 05:48 . 2013-09-19 05:48 -------- d-----w- c:\users\sabrina\AppData\Roaming\streamripper
2013-09-17 05:46 . 2013-09-17 05:46 234752 ----a-w- c:\windows\system32\drivers\afcdp.sys
2013-09-17 05:46 . 2013-09-17 05:46 889888 ----a-w- c:\windows\system32\drivers\tdrpman.sys
2013-09-17 05:46 . 2013-09-17 05:46 130488 ----a-w- c:\windows\system32\drivers\tib_mounter.sys
2013-09-17 05:46 . 2013-09-17 05:46 736192 ----a-w- c:\windows\system32\drivers\tib.sys
2013-09-17 05:46 . 2013-09-17 05:46 116000 ----a-w- c:\windows\system32\drivers\vididr.sys
2013-09-17 05:46 . 2013-09-17 05:46 85280 ----a-w- c:\windows\system32\drivers\vidsflt.sys
2013-09-17 05:46 . 2013-09-17 05:46 185120 ----a-w- c:\windows\system32\drivers\snapman.sys
2013-09-17 05:46 . 2013-09-17 05:46 86304 ----a-w- c:\windows\system32\drivers\fltsrv.sys
2013-09-17 05:45 . 2013-09-17 05:45 -------- d-----w- c:\program files\Acronis
2013-09-17 05:45 . 2013-09-17 05:46 -------- d-----w- c:\program files\Common Files\Acronis
2013-09-17 05:01 . 2013-09-20 21:39 -------- d-----w- c:\users\sabrina\AppData\Roaming\YoWindow
2013-09-17 05:01 . 2013-09-17 05:01 -------- d-----w- c:\programdata\YoWindow
2013-09-17 05:01 . 2013-09-17 05:01 -------- d-----w- c:\program files\YoWindow
2013-09-16 09:53 . 2013-09-20 05:09 -------- d-----r- c:\users\sabrina\Google Drive
2013-09-13 19:42 . 2013-09-13 19:42 -------- d-----w- c:\windows\system32\Extensions
2013-09-13 19:20 . 2013-09-13 19:20 -------- d-----w- c:\users\sabrina\AppData\Local\Freemium
2013-09-13 17:04 . 2013-09-13 17:05 -------- d-----w- c:\program files\SoftwareUpdater
2013-09-13 17:04 . 2013-09-13 17:04 -------- d-----w- c:\program files\Covus Freemium
2013-09-13 15:37 . 2011-03-12 21:55 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2013-09-13 09:19 . 2013-10-08 19:04 -------- d-----w- c:\users\Basti
2013-09-13 07:24 . 2013-10-09 09:36 -------- d-----r- c:\users\sabrina\Dropbox
2013-09-13 07:20 . 2013-09-13 07:20 -------- d-----w- c:\program files\Dropbox
2013-09-13 07:18 . 2013-09-20 13:12 -------- d-----w- c:\users\sabrina\AppData\Roaming\Dropbox
2013-09-13 06:43 . 2013-09-13 06:43 -------- d-----w- c:\users\sabrina\AppData\Local\Avg2014
2013-09-12 15:40 . 2013-09-12 15:40 -------- d-----w- c:\program files\Windows Portable Devices
2013-09-12 14:40 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2013-09-12 14:40 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2013-09-12 14:40 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2013-09-12 14:15 . 2012-02-29 15:11 5120 ----a-w- c:\windows\system32\wmi.dll
2013-09-12 14:14 . 2012-02-29 15:09 157696 ----a-w- c:\windows\system32\imagehlp.dll
2013-09-12 14:14 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2013-09-12 13:40 . 2013-09-12 13:40 35840 ----a-w- c:\windows\system32\imgutil.dll
2013-09-12 13:40 . 2013-09-12 13:40 355832 ----a-w- c:\program files\Internet Explorer\pdm.dll
2013-09-12 13:40 . 2013-09-12 13:40 265720 ----a-w- c:\program files\Internet Explorer\msdbg2.dll
2013-09-12 13:40 . 2013-09-12 13:40 149504 ----a-w- c:\program files\Internet Explorer\jsprofilerui.dll
2013-09-12 13:40 . 2013-09-12 13:40 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-09-12 13:40 . 2013-09-12 13:40 22016 ----a-w- c:\program files\Internet Explorer\ExtExport.exe
2013-09-12 13:37 . 2013-09-12 13:37 519680 ----a-w- c:\windows\system32\d3d11.dll
2013-09-12 13:37 . 2013-09-12 13:37 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2013-09-12 13:37 . 2013-09-12 13:37 252928 ----a-w- c:\windows\system32\dxdiag.exe
2013-09-12 13:37 . 2013-09-12 13:37 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2013-09-12 13:37 . 2013-09-12 13:37 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-09-12 13:37 . 2013-09-12 13:37 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2013-09-12 13:37 . 2013-09-12 13:37 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-09-12 12:54 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll
2013-09-12 12:54 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2013-09-12 12:54 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2013-09-12 12:54 . 2009-07-14 12:12 16896 ----a-w- c:\windows\system32\winusb.dll
2013-09-12 12:54 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-09-12 12:54 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2013-09-12 12:54 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2013-09-12 12:54 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2013-09-12 12:54 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll
2013-09-12 12:54 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2013-09-12 12:27 . 2013-04-24 01:46 812544 ----a-w- c:\windows\system32\certutil.exe
2013-09-12 12:27 . 2013-04-24 04:00 41984 ----a-w- c:\windows\system32\certenc.dll
2013-09-12 12:26 . 2012-11-08 03:48 1314816 ----a-w- c:\windows\system32\quartz.dll
2013-09-12 12:25 . 2011-02-22 14:13 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-09-12 12:25 . 2013-07-16 04:35 615936 ----a-w- c:\windows\system32\themeui.dll
2013-09-12 12:24 . 2013-08-03 02:06 304128 ----a-w- c:\program files\Internet Explorer\ieuser.exe
2013-09-12 12:24 . 2012-06-05 16:47 708608 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2013-09-12 12:22 . 2012-05-11 15:57 623616 ----a-w- c:\windows\system32\localspl.dll
2013-09-12 12:22 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2013-09-12 12:22 . 2012-09-25 16:19 75776 ----a-w- c:\windows\system32\synceng.dll
2013-09-12 12:22 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2013-09-12 12:22 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2013-09-12 12:22 . 2013-07-10 09:47 783360 ----a-w- c:\windows\system32\rpcrt4.dll
2013-09-12 12:22 . 2013-08-02 04:09 1548288 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-09-12 12:22 . 2013-05-02 04:04 443904 ----a-w- c:\windows\system32\win32spl.dll
2013-09-12 12:22 . 2013-05-02 04:03 37376 ----a-w- c:\windows\system32\printcom.dll
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-09 12:56 . 2009-02-16 05:29 45056 ----a-w- c:\windows\system32\acovcnt.exe
2013-09-12 13:37 . 2013-09-12 13:37 4096 ----a-w- c:\windows\system32\drivers\de-DE\dxgkrnl.sys.mui
2013-08-07 02:22 . 2009-10-05 08:50 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-08-03 04:22 . 2013-09-12 12:24 53760 ----a-w- c:\windows\apppatch\iebrshim.dll
2008-07-02 03:28 . 2008-07-02 03:28 61440 ----a-w- c:\program files\Common Files\CPInstallAction.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{02a0d829-4393-46fc-a37e-126263035883}]
2013-08-27 11:40 196096 ----a-w- c:\program files\Browser Guard\browserguard.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
2013-08-07 15:04 2638336 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
2013-08-07 15:04 2638336 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
2013-08-07 15:04 2638336 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 01:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 130736 ----a-w- c:\users\sabrina\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 130736 ----a-w- c:\users\sabrina\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 130736 ----a-w- c:\users\sabrina\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-06-27 14:11 579024 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-06-27 14:11 579024 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-06-27 14:11 579024 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-06-27 14:11 579024 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-06-27 14:11 579024 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"HControlUser"="c:\program files\ATK Hotkey\HcontrolUser.exe" [2008-01-12 98304]
"CLMLServer"="c:\program files\CyberLink\Power2Go\CLMLSvc.exe" [2008-07-19 104936]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-06 1029416]
"Skytel"="Skytel.exe" [2007-11-20 1826816]
"RtHDVCpl"="RtHDVCpl.exe" [2008-04-17 6111232]
"P2Go_Menu"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2008-01-23 7766016]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2008-02-01 61440]
"Adobe Photo Downloader"="c:\photoshop\3.2\Apps\apdproxy.exe" [2007-03-15 57344]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2013-09-30 681032]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdcBase.exe" [2007-05-31 648072]
.
c:\users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote Inhaltsverzeichnis.onetoc2 [2010-5-7 3656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^sabrina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^YoWindow.lnk]
path=c:\users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\YoWindow.lnk
backup=c:\windows\pss\YoWindow.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service]
2013-07-18 09:57 380656 ----a-w- c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTibMounterMonitor]
2013-01-10 12:12 1105848 ----a-w- c:\program files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
2013-08-22 10:55 7818392 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
2007-05-31 14:21 648072 ----a-w- c:\windows\WindowsMobile\wmdcBase.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ehTray.exe"=c:\windows\ehome\ehTray.exe
"WindowsWelcomeCenter"=rundll32.exe oobefldr.dll,ShowWelcomeCenter
"GoogleChromeAutoLaunch_B7AACD8AE387574AA8E23C2C86A23E06"="c:\program files\Google\Chrome\Application\chrome.exe" --no-startup-window
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ASUS Camera ScreenSaver"=c:\windows\AsScrProlog.exe
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-2942979523-3749123584-2221922431-1000]
"EnableNotificationsRef"=dword:00000002
.
R3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2013-09-17 234752]
R4 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2013-09-17 3906552]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
bthsvcs REG_MULTI_SZ BthServ
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 18:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-11 15:28 1177552 ----a-w- c:\program files\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-10-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-10 12:20]
.
2013-09-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-11 15:28]
.
2013-09-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-11 15:28]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.globasearch.com/?serie=32
mStart Page = hxxp://www.globasearch.com/?serie=32
uInternet Settings,ProxyServer = http=85.214.84.220:3128
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\windows\system32\wpclsp.dll
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
Trusted Zone: everestpoker.com\account
TCP: DhcpNameServer = 192.168.2.1 192.168.2.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-UnlockerAssistant - c:\program files\Unlocker\UnlockerAssistant.exe
SafeBoot-WudfPf
SafeBoot-WudfRd
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2013-10-09 16:02
Windows 6.0.6002 Service Pack 2 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
.
C:\ADSM_PData_0150
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 1
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Zeit der Fertigstellung: 2013-10-09 16:05:42
ComboFix-quarantined-files.txt 2013-10-09 14:05
.
Vor Suchlauf: 12 Verzeichnis(se), 79.048.679.424 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 79.050.129.408 Bytes frei
.
- - End Of File - - 6BD45EE50B9EE3D4824097DC3BBD0C24
64B1E91C5C6C2157642651010728F90F |
|
10.10.2013, 08:39
| #7 |
| /// the machine /// TB-Ausbilder | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Text zwischen die Codetags packen. Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
10.10.2013, 15:53
| #8 |
| | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Malwarebytes Anti-Malware (Test) 1.75.0.1300 Malwarebytes : Free Anti-Malware download Datenbank Version: v2013.10.10.02 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 sabrina :: SABRINA-PC [Administrator] Schutz: Aktiviert 10.10.2013 10:07:32 mbam-log-2013-10-10 (10-07-32).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 366348 Laufzeit: 3 Stunde(n), 57 Minute(n), 55 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 11 HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} (PUP.Optional.BrowseFox.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\DELTA\DELTA (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\delta LTD (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings (PUP.Optional.BProtector.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Delta\delta\Instl (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 6 HKCU\SOFTWARE\Delta\Delta|tlbrSrchUrl (PUP.Optional.Delta.A) -> Daten: -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|bProtector Start Page (PUP.BProtector) -> Daten: Delta Search -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|bProtectorDefaultScope (PUP.BProtector) -> Daten: {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\Delta\delta|lastB (PUP.Optional.Delta.A) -> Daten: Delta Search -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0L1N1H2O1S -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs|bProtectTabs (PUP.Optional.BrowserProtect.A) -> Daten: Delta Search -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 9 C:\Users\sabrina\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\CR (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\Shared (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\Delta\delta\1.8.24.6 (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\Delta\delta\1.8.24.6\bh (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\OpenCandy\D18B5C0522644170A3304875D75431A5 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\OpenCandy\E23219DC80AF4A64AB1A1000A8974126 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 20 C:\Qoobox\Quarantine\C\Program Files\Delta\delta\1.8.24.6\deltaApp.dll.vir (PUP.Optional.Delta) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Qoobox\Quarantine\C\Program Files\Delta\delta\1.8.24.6\deltaEng.dll.vir (PUP.Optional.Delta) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Qoobox\Quarantine\C\Program Files\Delta\delta\1.8.24.6\deltasrv.exe.vir (PUP.Optional.Delta) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Qoobox\Quarantine\C\Program Files\Delta\delta\1.8.24.6\deltaTlbr.dll.vir (PUP.Optional.Delta) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Qoobox\Quarantine\C\Program Files\Delta\delta\1.8.24.6\bh\delta.dll.vir (PUP.Optional.Delta) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Local\DownloadGuide\Offers\plus-hd-3-8.exe (PUP.Optional.CrossRider) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\Shared\BabMaint.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\CR\Delta.crx (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\Shared\BUSolution.dll (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\Shared\chu.js (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\Shared\Delta.ico (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\Shared\GUninstaller.exe (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\Shared\SetupParams.ini (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\BabSolution\Shared\sqlite3.dll (PUP.Optional.BabSolution.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\Delta\delta\1.8.24.6\GUninstaller.exe (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\Delta\delta\1.8.24.6\Loading.html (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\Delta\delta\1.8.24.6\uninstall.exe (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\OpenCandy\D18B5C0522644170A3304875D75431A5\TuneUpUtilities2013-2200218_de-DE.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\sabrina\AppData\Roaming\OpenCandy\E23219DC80AF4A64AB1A1000A8974126\speedupmypcDE.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.007 - Bericht erstellt am 10/10/2013 um 16:25:18
# Updated 09/10/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzername : sabrina - SABRINA-PC
# Gestartet von : C:\Users\sabrina\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
[#] Dienst Gelöscht : SystemStoreService
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Program Files\Delta
Ordner Gelöscht : C:\Program Files\SoftwareUpdater
Ordner Gelöscht : C:\Program Files\WebConnect
Ordner Gelöscht : C:\Users\sabrina\AppData\Local\DownloadGuide
Ordner Gelöscht : C:\Users\sabrina\AppData\LocalLow\Delta
Ordner Gelöscht : C:\Users\sabrina\AppData\LocalLow\pdfforge
Ordner Gelöscht : C:\Users\sabrina\AppData\LocalLow\Search Settings
Ordner Gelöscht : C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\bProtector_extensions.rdf
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\bprotector_extensions.sqlite
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\bprotector_prefs.js
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\searchplugins\Askcom.xml
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\user.js
Datei Gelöscht : C:\Windows\System32\Tasks\EPUpdater
Datei Gelöscht : C:\Windows\System32\Tasks\Lyrics Seeker Update
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater Ui
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78671366-A776-4F4D-9488-12E4F91E097E}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{78671366-A776-4F4D-9488-12E4F91E097E}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lyrics Seeker Update
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18F9254D-0883-408D-B91E-DFD65A7901D0}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{18F9254D-0883-408D-B91E-DFD65A7901D0}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Software Updater Ui
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A0884DEE-87A4-4922-A246-1A6F5BFCEB79}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A0884DEE-87A4-4922-A246-1A6F5BFCEB79}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Software Updater
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2A81A3EA-4248-45B1-B1D9-043AC2D625CD}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2A81A3EA-4248-45B1-B1D9-043AC2D625CD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKCU\Software\dedc8db33fed12
Schlüssel Gelöscht : HKLM\SOFTWARE\dedc8db33fed12
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\Grand Virtual
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\lyrixeeker
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\smartbar
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\DeviceVM
Schlüssel Gelöscht : HKLM\Software\Uniblue\DriverScanner
Schlüssel Gelöscht : HKLM\Software\WebConnect
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
***** [ Browser ] *****
-\\ Internet Explorer v9.0.8112.16514
-\\ Mozilla Firefox v
[ Datei : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\prefs.js ]
Zeile gelöscht : user_pref("extensions.delta.admin", false);
Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.bbDpng", "11");
Zeile gelöscht : user_pref("extensions.delta.cntry", "DE");
Zeile gelöscht : user_pref("extensions.delta.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
Zeile gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Zeile gelöscht : user_pref("extensions.delta.hdrMd5", "F7C2C39F4C5A921BD6038ED581DAF31B");
Zeile gelöscht : user_pref("extensions.delta.id", "f82d731c00000000000000224363fe65");
Zeile gelöscht : user_pref("extensions.delta.instlDay", "15959");
Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.delta.lastVrsnTs", "1.8.24.617:13:49");
Zeile gelöscht : user_pref("extensions.delta.newTab", false);
Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.sg", "azb");
Zeile gelöscht : user_pref("extensions.delta.smplGrp", "azb");
Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.24.617:13:49");
Zeile gelöscht : user_pref("extensions.delta_i.babExt", "");
Zeile gelöscht : user_pref("extensions.delta_i.babTrack", "affID=119357&tt=110913_238&tsp=5002");
Zeile gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
Zeile gelöscht : user_pref("extensions.enabledAddons", "ffxtlbr%40delta.com:1.5.0,%7Be98af3ce-ea76-4a14-a332-54bc2147c365%7D:1.132,%7B20a82645-c095-46ed-80e3-08825760534b%7D:0.0.0,%7B972ce4c6-7e08-4474-a285-3208198ce6[...]
Zeile gelöscht : user_pref("extensions.smarterwiki.search_surfcanyon", false);
-\\ Google Chrome v29.0.1547.66
[ Datei : C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [10354 octets] - [10/10/2013 16:21:55]
AdwCleaner[R1].txt - [10415 octets] - [10/10/2013 16:24:30]
AdwCleaner[S0].txt - [10577 octets] - [10/10/2013 16:25:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10638 octets] ##########
Code:
ATTFilter # AdwCleaner v3.007 - Bericht erstellt am 10/10/2013 um 16:25:18
# Updated 09/10/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzername : sabrina - SABRINA-PC
# Gestartet von : C:\Users\sabrina\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
[#] Dienst Gelöscht : SystemStoreService
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Program Files\Delta
Ordner Gelöscht : C:\Program Files\SoftwareUpdater
Ordner Gelöscht : C:\Program Files\WebConnect
Ordner Gelöscht : C:\Users\sabrina\AppData\Local\DownloadGuide
Ordner Gelöscht : C:\Users\sabrina\AppData\LocalLow\Delta
Ordner Gelöscht : C:\Users\sabrina\AppData\LocalLow\pdfforge
Ordner Gelöscht : C:\Users\sabrina\AppData\LocalLow\Search Settings
Ordner Gelöscht : C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\bProtector_extensions.rdf
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\bprotector_extensions.sqlite
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\bprotector_prefs.js
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\searchplugins\Askcom.xml
Datei Gelöscht : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\user.js
Datei Gelöscht : C:\Windows\System32\Tasks\EPUpdater
Datei Gelöscht : C:\Windows\System32\Tasks\Lyrics Seeker Update
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater Ui
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78671366-A776-4F4D-9488-12E4F91E097E}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{78671366-A776-4F4D-9488-12E4F91E097E}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lyrics Seeker Update
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18F9254D-0883-408D-B91E-DFD65A7901D0}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{18F9254D-0883-408D-B91E-DFD65A7901D0}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Software Updater Ui
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A0884DEE-87A4-4922-A246-1A6F5BFCEB79}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A0884DEE-87A4-4922-A246-1A6F5BFCEB79}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Software Updater
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2A81A3EA-4248-45B1-B1D9-043AC2D625CD}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2A81A3EA-4248-45B1-B1D9-043AC2D625CD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKCU\Software\dedc8db33fed12
Schlüssel Gelöscht : HKLM\SOFTWARE\dedc8db33fed12
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\Grand Virtual
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\lyrixeeker
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\smartbar
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\DeviceVM
Schlüssel Gelöscht : HKLM\Software\Uniblue\DriverScanner
Schlüssel Gelöscht : HKLM\Software\WebConnect
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
***** [ Browser ] *****
-\\ Internet Explorer v9.0.8112.16514
-\\ Mozilla Firefox v
[ Datei : C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\prefs.js ]
Zeile gelöscht : user_pref("extensions.delta.admin", false);
Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.bbDpng", "11");
Zeile gelöscht : user_pref("extensions.delta.cntry", "DE");
Zeile gelöscht : user_pref("extensions.delta.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
Zeile gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Zeile gelöscht : user_pref("extensions.delta.hdrMd5", "F7C2C39F4C5A921BD6038ED581DAF31B");
Zeile gelöscht : user_pref("extensions.delta.id", "f82d731c00000000000000224363fe65");
Zeile gelöscht : user_pref("extensions.delta.instlDay", "15959");
Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.delta.lastVrsnTs", "1.8.24.617:13:49");
Zeile gelöscht : user_pref("extensions.delta.newTab", false);
Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.sg", "azb");
Zeile gelöscht : user_pref("extensions.delta.smplGrp", "azb");
Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.24.617:13:49");
Zeile gelöscht : user_pref("extensions.delta_i.babExt", "");
Zeile gelöscht : user_pref("extensions.delta_i.babTrack", "affID=119357&tt=110913_238&tsp=5002");
Zeile gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
Zeile gelöscht : user_pref("extensions.enabledAddons", "ffxtlbr%40delta.com:1.5.0,%7Be98af3ce-ea76-4a14-a332-54bc2147c365%7D:1.132,%7B20a82645-c095-46ed-80e3-08825760534b%7D:0.0.0,%7B972ce4c6-7e08-4474-a285-3208198ce6[...]
Zeile gelöscht : user_pref("extensions.smarterwiki.search_surfcanyon", false);
-\\ Google Chrome v29.0.1547.66
[ Datei : C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [10354 octets] - [10/10/2013 16:21:55]
AdwCleaner[R1].txt - [10415 octets] - [10/10/2013 16:24:30]
AdwCleaner[S0].txt - [10577 octets] - [10/10/2013 16:25:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10638 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.4 (10.06.2013:1)
OS: Windows Vista (TM) Home Premium x86
Ran by sabrina on 10.10.2013 at 16:39:22,80
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2942979523-3749123584-2221922431-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2942979523-3749123584-2221922431-1000\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\sabrina\appdata\local\apn"
~~~ Chrome
Successfully deleted: [Folder] C:\Users\sabrina\appdata\local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 10.10.2013 at 16:46:19,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
10.10.2013, 17:11
| #9 |
| | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by sabrina (administrator) on SABRINA-PC on 10-10-2013 17:19:08
Running from C:\Users\sabrina\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\smartlogon.exe
() C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Malwarebytes Corporation) C:\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\system32\mqsvc.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
(Malwarebytes Corporation) C:\Malwarebytes' Anti-Malware\mbamgui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HControlUser] - C:\Program Files\ATK Hotkey\HcontrolUser.exe [98304 2008-01-12] ()
HKLM\...\Run: [CLMLServer] - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [104936 2008-07-19] (CyberLink)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-12-06] (Synaptics, Inc.)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6111232 2008-04-17] (Realtek Semiconductor)
HKLM\...\Run: [P2Go_Menu] - "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ATKOSD2\ATKOSD2.exe [7766016 2008-01-24] ()
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2008-02-02] ()
HKLM\...\Run: [Adobe Photo Downloader] - C:\Photoshop\3.2\Apps\apdproxy.exe [57344 2007-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-09-30] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdcBase.exe [648072 2007-05-31] (Microsoft Corporation)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
Startup: C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Inhaltsverzeichnis.onetoc2 ()
==================== Internet (Whitelisted) ====================
ProxyServer: http=85.214.84.220:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {8A245F63-D5D8-4835-ADCE-80E1B4EEFEC1} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
BHO: Browser Guard - {02a0d829-4393-46fc-a37e-126263035883} - C:\Program Files\Browser Guard\browserguard.dll (Browser Guard)
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU -&Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 09 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 10 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 11 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 12 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 13 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 14 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 15 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 16 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 27 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 28 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Extension: Lyrics Seeker - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\133
FF Extension: Web Check - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\WebCheck
FF Extension: Adblock Plus - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF Extension: Block site - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc}
FF Extension: No Name - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20d1f7b3-7721-4da0-b6f3-78bb4d7248f4}] - C:\Program Files\Browser Guard\browserguard.xpi
FF Extension: No Name - C:\Program Files\Browser Guard\browserguard.xpi
Chrome:
=======
CHR Extension: (Entanglement Web App) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\3.4.9_0
CHR Extension: (Eredan iTCG) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakdeclmfcolipiknbfealnjddfibfo\1_0
CHR Extension: (American Racing 2 3D) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfpfdjclhabpjncikdngdoldjjjegnbe\2.1.2_0
CHR Extension: (Avatar Arena) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjbjlhannmmdjeebjgdikdchpiijljek\1.0.1_0
CHR Extension: (Gravity Guy) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjlgidnccmkehcefagofppjbnhogbjmm\1.0.0_0
CHR Extension: (YouTube) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (BeGone: Last Stand HD) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmekbplkjhgmljmbblmhmcnocafhaink\1.8.2.17_0
CHR Extension: (Classic Games) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpckajjkmjncafjlkielcgheibdlnfgc\1.0_0
CHR Extension: (Tanki Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo\1.5_0
CHR Extension: (Virtual piano) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohgcponedmbhgbbdinajeoapmoaifdj\4.9.3_0
CHR Extension: (Web Check ) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee\0.1
CHR Extension: (Spongebob Super Brawl 3) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfaoangdklcefogknfphjjmohfedgnlj\2.3.1_0
CHR Extension: (Burst Motocross) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkcakkmhmimngalgjjaiibkiolehcfmh\1.0_0
CHR Extension: (Rock Paper Scissors) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkmlfkbofapbceihbpdpjganpnienhfc\1.0.9_0
CHR Extension: (Torrent Turbo Search App) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\eegbffmjdkflkcfncpfjjbggbdlnbdif\0.1_0
CHR Extension: (Tetris 2) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\emidddocikgklceeeifefomdnbkldhng\1.0.0.17_0
CHR Extension: (Weather (extension)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fapbbpdnlcmiolkdfjnnjhabmcndadad\0.9.0.6_0
CHR Extension: (Sudoku) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbldalicehmlaalddffibogeplifangc\1.0.3_0
CHR Extension: (Type Scout) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fedokkaolmkkoeedicihicdeppjjeamj\5_0
CHR Extension: (CHIP Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd\1.5_0
CHR Extension: (Planes Propwash Pursuit) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\figbofenkblalldlgjjflfpendllpceh\2.3.1_0
CHR Extension: (Counter Strike Online ) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fplklihjpkinahlihcljhnnlnhnmmhdp\2.6_0
CHR Extension: (Digital Clock) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo\1.11_0
CHR Extension: (Goodgame Empire) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggdljnjjajocmjaldkldaapkkclbaclb\9_0
CHR Extension: (AdBlock) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.7_0
CHR Extension: (UNO Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjfncmhihlfbkinpfenkeliekjpoakbf\1.0.0.0_0
CHR Extension: (PDF Mergy) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha\0.5.2_0
CHR Extension: (Tomb Jewels (HD)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjehadkphnfpnheecobbohnphogngooo\1.1.5_0
CHR Extension: (Street Skater 3D) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlchpgbjfeoncdkgcihimbimpjiaodfl\1.0_0
CHR Extension: (Crazy Shooting) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbhccdddhenjmeamogpjhicnoffdood\1.0.0_0
CHR Extension: (Die Siedler Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmhcglhfdnepmdeelgjfdjckclajkha\1.0.1_0
CHR Extension: (The West) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilkgeioneoemibpddeiamfgiofnpjifm\1.5_0
CHR Extension: (Dropbox) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl\3.0.8_0
CHR Extension: (FAST FIVE) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipecejmhgombfadlddemeadfapnafcgo\1.0.1_0
CHR Extension: (theHunter) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jangaedeekciafhlanphhnalogmhefmo\10_0
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe\1.0.8_0
CHR Extension: (Movi Kanti Revo) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdkcgeghhfjiglphfppinecpcpnnbne\1.0.0.0_0
CHR Extension: (Soccer Manager) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpemkngoajegcbamebdmnkjoalpofpbj\1.1.6.2_0
CHR Extension: (Drakensang Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgloifppaepihckkhiocnodicehjdoof\4.0.1_0
CHR Extension: (Lyrics Seeker) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_0
CHR Extension: (Top Eleven) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn\2.0.0.4_0
CHR Extension: (Zuma) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmlohpfojplnfgcbgooclnhidniofegn\1.0.0_0
CHR Extension: (Google Maps) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0
CHR Extension: (Lagoonia) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjcaihkcddgdgaghmnmfpkkfilombbm\1.38_0
CHR Extension: (Need for Speed World) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk\1.0.0.4_0
CHR Extension: (Sonic the Hedgehog) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbdhbpmojeedfmgelekgjhdejdmfpikn\1.0_0
CHR Extension: (Curling) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhalnajmigjnpjpdbpkpgfhekbjmolhp\1.0.10_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Current Moon Phase (Northern Hemisphere)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\oampnkjpomgmmphfoedhihefpbjhjamo\1.6.10_0
CHR Extension: (Jungle Plumber Challenge) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojpobnopmcjkgbgakigfoemfgfcdiefi\2_0
CHR Extension: (Goodgame Big Farm) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\okdjgjhkolgmkjjddmnjejjphhkdjdhc\4_0
CHR Extension: (Marc Ecko) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk\2_0
CHR Extension: (Edgeworld) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfmpdiaehhnljpdomnggcbfofdgkmbp\1.0.1.2_0
CHR Extension: (eBay Deals) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pllkgmcojhajjmojfoagiegoibjognlc\1.0.4_0
CHR HKLM\...\Chrome\Extension: [kfepagcelbegkpkcjgfeecmlnmkedjin] - C:\Program Files\Browser Guard\browserguard.crx
========================== Services (Whitelisted) =================
S4 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [778000 2013-07-18] (Acronis)
R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728 2007-05-18] ()
S4 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3906552 2013-09-17] (Acronis)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-09-30] (Avira Operations GmbH & Co. KG)
S4 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-03] ()
S4 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 MBAMScheduler; C:\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [8704 2006-11-02] (Microsoft Corporation)
S4 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [9745008 2013-08-21] (Acronis)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1740600 2013-09-09] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R0 AsDsm; C:\Windows\System32\Drivers\AsDsm.sys [29752 2007-08-11] (Windows (R) Codename Longhorn DDK provider)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-09-30] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
S3 CRFILTER; C:\Windows\System32\DRIVERS\CRFILTER.sys [6656 2008-04-07] (Generic)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [99400 2013-09-26] (MotioninJoy)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [126976 2008-01-21] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [104616 2008-11-04] (MCCI Corporation)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1769984 2007-10-01] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-09-30] (Avira GmbH)
S3 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [889888 2013-09-17] (Acronis International GmbH)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [736192 2013-09-17] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [130488 2013-09-17] (Acronis)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-08-21] (TuneUp Software)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [116000 2013-09-17] (Acronis International GmbH)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [85280 2013-09-17] (Acronis International GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\Users\sabrina\AppData\Local\Temp\catchme.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-10 16:57 - 2013-10-10 16:55 - 01087213 _____ (Farbar) C:\Users\sabrina\Desktop\FRST.exe
2013-10-10 16:46 - 2013-10-10 16:46 - 00002044 _____ C:\Users\sabrina\Desktop\JRT.txt
2013-10-10 16:39 - 2013-10-10 16:39 - 00000000 ____D C:\Windows\ERUNT
2013-10-10 16:38 - 2013-10-10 09:48 - 01032220 _____ (Thisisu) C:\Users\sabrina\Desktop\JRT.exe
2013-10-10 16:21 - 2013-10-10 16:25 - 00000000 ____D C:\AdwCleaner
2013-10-10 16:21 - 2013-10-10 09:47 - 01048960 _____ C:\Users\sabrina\Desktop\adwcleaner.exe
2013-10-10 09:51 - 2013-10-10 09:51 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Malwarebytes
2013-10-10 09:50 - 2013-10-10 09:50 - 00000667 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-10 09:50 - 2013-10-10 09:50 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-10 09:50 - 2013-10-10 09:50 - 00000000 ____D C:\Malwarebytes' Anti-Malware
2013-10-10 09:50 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-09 17:28 - 2013-10-09 17:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\IObit
2013-10-09 17:16 - 2013-09-09 15:29 - 00036152 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2013-10-09 17:16 - 2013-09-09 15:29 - 00025400 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setupact.log
2013-10-09 16:05 - 2013-10-09 16:05 - 00024371 _____ C:\ComboFix.txt
2013-10-09 15:46 - 2013-10-09 16:05 - 00000000 ____D C:\ComboFix
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Downloads\Downloads - Verknüpfung.lnk
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Documents\Dokumente - Verknüpfung.lnk
2013-10-09 15:08 - 2013-09-22 12:29 - 12336128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-09 15:08 - 2013-09-22 12:22 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-09 15:08 - 2013-09-22 12:22 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-09 15:08 - 2013-09-22 12:14 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-09 15:08 - 2013-09-22 12:13 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-09 15:08 - 2013-09-22 12:13 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-09 15:08 - 2013-09-22 12:12 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-09 15:08 - 2013-09-22 12:09 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-09 15:08 - 2013-09-22 12:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-09 15:08 - 2013-09-22 12:07 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-09 15:08 - 2013-09-22 12:06 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-09 15:08 - 2013-09-22 12:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-09 15:08 - 2013-09-22 12:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-09 15:08 - 2013-09-22 12:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-09 15:08 - 2013-09-22 12:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-09 15:08 - 2013-09-22 11:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-09 14:57 - 2013-10-09 14:57 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 14:52 - 2013-10-10 15:47 - 00009184 _____ C:\Windows\PFRO.log
2013-10-09 14:52 - 2013-10-09 14:53 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 14:00 - 2013-08-29 09:56 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2013-10-09 14:00 - 2013-08-27 04:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-09 14:00 - 2013-08-27 03:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-09 14:00 - 2013-08-27 03:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-09 14:00 - 2013-08-27 03:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-09 14:00 - 2013-08-27 03:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-09 14:00 - 2013-08-27 03:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-09 14:00 - 2013-07-03 04:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-09 14:00 - 2013-07-03 04:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 14:00 - 2013-06-29 04:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 14:00 - 2011-05-05 15:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 14:00 - 2011-05-05 15:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-09 13:59 - 2013-08-29 09:36 - 02050048 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 13:59 - 2013-08-01 05:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 13:59 - 2013-08-01 04:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-09 13:59 - 2013-07-20 12:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 13:59 - 2013-07-12 11:04 - 00134272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-09 13:59 - 2013-07-04 06:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 13:59 - 2013-06-27 01:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 13:59 - 2013-06-04 06:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 13:59 - 2013-06-04 03:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 13:28 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-09 13:28 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-09 13:28 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-09 13:11 - 2013-10-09 16:05 - 00000000 ____D C:\Qoobox
2013-10-09 13:10 - 2013-10-09 16:04 - 00000000 ____D C:\Windows\erdnt
2013-10-09 12:52 - 2013-10-09 12:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-10-09 12:48 - 2013-10-09 12:48 - 00001876 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-10-09 12:48 - 2013-10-09 12:48 - 00001872 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2013-10-09 12:48 - 2013-09-09 15:29 - 00036664 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-10-09 12:40 - 2013-10-09 12:52 - 00000000 ____D C:\Program Files\Unlocker
2013-10-09 11:35 - 2013-10-09 13:55 - 00000000 ____D C:\Users\sabrina\Desktop\Müll
2013-10-09 11:26 - 2013-10-09 11:30 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\vlc
2013-10-09 11:25 - 2013-10-09 11:25 - 00000866 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-10-09 11:24 - 2013-10-09 11:24 - 00000000 ____D C:\Program Files\VideoLAN
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\Documents\My Podcasts
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Sony
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\ProgramData\Sony
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Windows\system32\msmq
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\inetpub
2013-10-08 18:34 - 2013-10-10 17:11 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-07 13:55 - 2013-10-07 14:08 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-07 13:27 - 2013-10-07 13:27 - 00000000 ____D C:\FRST
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-05 19:45 - 2013-10-05 19:51 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-01 16:02 - 2013-10-01 16:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-01 14:27 - 2013-10-01 14:27 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-01 14:26 - 2013-10-01 14:26 - 00000000 ____D C:\Program Files\Avira
2013-10-01 14:26 - 2013-09-30 11:01 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-10-08 18:38 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-27 13:34 - 2013-10-08 18:38 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-27 13:34 - 2013-09-27 14:16 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:20 - 2013-09-26 07:21 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-26 07:20 - 2010-08-19 19:24 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00255496 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00061984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-24 09:41 - 2013-10-08 18:38 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-09-24 09:41 - 2013-09-24 09:41 - 00002012 _____ C:\Users\sabrina\Desktop\Chrome-App-Übersicht.lnk
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-21 14:24 - 2013-09-21 14:47 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:09 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-09-19 08:09 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-09-19 08:03 - 2013-09-19 08:48 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:02 - 2013-09-27 13:36 - 00000000 ____D C:\Program Files\Winamp
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 07:48 - 2013-09-19 07:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-19 08:44 - 00000000 ____D C:\ProgramData\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:45 - 2013-09-17 07:46 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-20 23:39 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-16 11:53 - 2013-09-20 07:09 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001916 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001912 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001900 _____ C:\Users\Public\Desktop\Google Docs.lnk
2013-09-14 17:24 - 2013-09-19 07:30 - 00000000 ____D C:\Windows\pss
2013-09-14 13:45 - 2013-09-17 05:49 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-13 21:42 - 2013-09-13 21:42 - 00000000 ____D C:\Windows\system32\Extensions
2013-09-13 21:20 - 2013-09-13 21:20 - 00000000 ____D C:\Users\sabrina\AppData\Local\Freemium
2013-09-13 19:04 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\Covus Freemium
2013-09-13 19:02 - 2013-09-13 19:02 - 00000171 _____ C:\Users\sabrina\Desktop\Amazon.url
2013-09-13 17:37 - 2011-03-12 23:55 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-13 16:51 - 2013-09-13 16:58 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014(18)
2013-09-13 11:21 - 2013-09-13 11:24 - 00001383 _____ C:\Users\sabrina\Desktop\Basti.lnk
2013-09-13 11:20 - 2013-09-13 11:20 - 00458541 _____ C:\Users\Basti\Startseite Google Chrome.htm
2013-09-13 11:19 - 2013-10-09 16:05 - 00000000 ____D C:\Users\Basti
2013-09-13 09:24 - 2013-10-09 11:36 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-09-13 09:24 - 2013-09-13 09:24 - 00000950 _____ C:\Users\sabrina\Desktop\Dropbox.lnk
2013-09-13 09:20 - 2013-09-13 09:20 - 00000000 ____D C:\Program Files\Dropbox
2013-09-13 09:19 - 2013-09-22 12:53 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-13 09:18 - 2013-09-20 15:12 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-13 08:43 - 2013-09-13 08:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Avg2014
2013-09-13 08:07 - 2013-09-13 08:07 - 97443711 _____ C:\Windows\system32\㩷⭬᭄š
2013-09-12 17:40 - 2013-09-12 17:40 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-09-12 17:39 - 2013-09-12 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-09-12 17:38 - 2013-09-12 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-09-12 16:40 - 2009-09-10 04:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2013-09-12 16:40 - 2009-09-10 04:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2013-09-12 16:40 - 2009-09-10 04:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2013-09-12 16:36 - 2009-10-01 03:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys
2013-09-12 16:36 - 2009-10-01 03:01 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\WpdConns.dll
2013-09-12 16:15 - 2012-02-29 17:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-09-12 16:14 - 2012-02-29 17:09 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-09-12 16:14 - 2012-02-29 15:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-09-12 15:41 - 2013-09-12 15:41 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-12 15:41 - 2013-09-12 15:41 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-12 15:41 - 2013-09-12 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-12 15:41 - 2013-09-12 15:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-12 15:40 - 2013-09-12 15:40 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-09-12 15:39 - 2013-09-12 15:39 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-09-12 15:37 - 2013-09-12 15:37 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-12 14:55 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-09-12 14:54 - 2012-07-26 05:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-09-12 14:54 - 2012-07-26 05:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-09-12 14:54 - 2012-07-26 05:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-09-12 14:54 - 2012-07-26 04:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-09-12 14:54 - 2012-07-26 04:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-09-12 14:54 - 2012-07-26 04:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-09-12 14:54 - 2009-07-14 14:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2013-09-12 14:27 - 2013-04-24 06:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-12 14:27 - 2013-04-24 03:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-12 14:26 - 2012-11-08 05:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-09-12 14:25 - 2013-07-16 06:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-09-12 14:25 - 2011-02-22 16:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-12 14:23 - 2013-07-05 06:53 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-12 14:23 - 2013-06-15 15:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-09-12 14:23 - 2013-06-15 13:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-12 14:23 - 2013-03-03 21:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-12 14:23 - 2012-09-28 18:11 - 00892928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-12 14:23 - 2012-08-21 13:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-09-12 14:23 - 2012-06-08 19:47 - 11586048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-12 14:23 - 2012-03-21 01:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-09-12 14:23 - 2011-12-14 18:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-09-12 14:23 - 2011-10-25 17:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-09-12 14:23 - 2011-07-29 18:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-09-12 14:23 - 2011-07-29 18:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-09-12 14:23 - 2011-07-29 18:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2013-09-12 14:23 - 2011-07-29 18:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2013-09-12 14:22 - 2013-08-02 06:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-12 14:22 - 2013-07-17 21:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-12 14:22 - 2013-07-10 11:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-12 14:22 - 2013-05-02 06:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-12 14:22 - 2013-05-02 06:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2013-09-12 14:22 - 2012-11-22 05:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2013-09-12 14:22 - 2012-11-20 06:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-12 14:22 - 2012-11-02 12:19 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-12 14:22 - 2012-09-25 18:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-12 14:22 - 2012-05-11 17:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-09-12 14:22 - 2011-11-18 19:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-09-12 14:22 - 2011-10-14 18:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-09-12 14:22 - 2011-10-14 18:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2013-09-12 14:21 - 2011-10-14 18:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-09-12 14:20 - 2012-11-02 12:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-12 14:20 - 2012-11-02 10:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2013-09-12 14:20 - 2012-06-29 18:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-12 13:48 - 2011-11-16 18:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2013-09-12 13:43 - 2011-08-25 18:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-09-12 13:43 - 2011-08-25 18:14 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-09-12 13:43 - 2011-08-25 18:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-09-12 13:43 - 2011-08-25 15:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2013-09-12 13:42 - 2013-07-09 14:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-12 13:42 - 2013-07-08 06:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-09-12 13:42 - 2013-07-08 06:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-12 13:42 - 2013-03-09 05:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-12 13:42 - 2013-03-09 03:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-12 13:42 - 2013-03-08 05:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-12 13:42 - 2013-03-08 05:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-12 13:42 - 2013-02-12 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
2013-09-12 13:42 - 2013-02-12 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-12 13:42 - 2012-06-04 17:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-09-12 13:42 - 2012-06-02 02:04 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-09-12 13:42 - 2012-05-01 16:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-09-12 13:42 - 2011-11-16 18:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-09-12 13:42 - 2011-11-16 18:21 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-09-12 13:42 - 2011-11-16 16:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-09-12 13:42 - 2011-06-15 18:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-09-12 13:42 - 2010-05-04 21:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2013-09-12 13:37 - 2013-07-08 06:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-12 13:37 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-12 13:37 - 2013-04-17 14:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-09-12 13:37 - 2012-06-05 18:47 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-12 13:19 - 2012-01-09 17:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-09-12 13:06 - 2013-09-12 13:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\avgchrome
2013-09-11 17:29 - 2013-09-11 17:29 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-11 17:28 - 2013-09-13 17:26 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-11 17:28 - 2013-09-13 17:26 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-11 17:17 - 2013-09-11 17:17 - 00000000 ____D C:\Windows\system32\searchplugins
2013-09-11 17:15 - 2013-09-11 17:15 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\UpdaterEX
2013-09-11 16:14 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-09-11 16:14 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-09-11 16:14 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-09-11 16:14 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-09-11 16:13 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-09-11 16:13 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-09-11 16:13 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-09-11 16:13 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-09-11 16:13 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-09-10 11:22 - 2013-09-10 11:22 - 00000000 ____D C:\Users\sabrina\AppData\Local\Macromedia
2013-09-10 11:13 - 2013-10-10 17:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-10 11:13 - 2013-10-09 14:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-10 11:13 - 2013-10-09 14:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\vi-VN
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\eu-ES
2013-09-10 10:48 - 2013-09-10 10:50 - 00000000 ____D C:\Windows\system32\ca-ES
2013-09-10 09:48 - 2013-10-09 12:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\TuneUp Software
2013-09-10 09:45 - 2013-10-09 17:16 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014
2013-09-10 09:43 - 2013-10-09 16:33 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-09-10 09:42 - 2013-10-09 13:32 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-09-10 08:48 - 2013-09-10 08:48 - 00000000 ____D C:\Windows\system32\EventProviders
==================== One Month Modified Files and Folders =======
2013-10-10 17:20 - 2013-09-10 11:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-10 17:12 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-10 17:12 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-10 17:12 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-10 17:11 - 2013-10-08 18:34 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-10-10 17:11 - 2009-02-16 04:31 - 01357264 _____ C:\Windows\WindowsUpdate.log
2013-10-10 17:11 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-10 16:55 - 2013-10-10 16:57 - 01087213 _____ (Farbar) C:\Users\sabrina\Desktop\FRST.exe
2013-10-10 16:46 - 2013-10-10 16:46 - 00002044 _____ C:\Users\sabrina\Desktop\JRT.txt
2013-10-10 16:39 - 2013-10-10 16:39 - 00000000 ____D C:\Windows\ERUNT
2013-10-10 16:25 - 2013-10-10 16:21 - 00000000 ____D C:\AdwCleaner
2013-10-10 15:47 - 2013-10-09 14:52 - 00009184 _____ C:\Windows\PFRO.log
2013-10-10 09:51 - 2013-10-10 09:51 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Malwarebytes
2013-10-10 09:50 - 2013-10-10 09:50 - 00000667 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-10 09:50 - 2013-10-10 09:50 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-10 09:50 - 2013-10-10 09:50 - 00000000 ____D C:\Malwarebytes' Anti-Malware
2013-10-10 09:48 - 2013-10-10 16:38 - 01032220 _____ (Thisisu) C:\Users\sabrina\Desktop\JRT.exe
2013-10-10 09:47 - 2013-10-10 16:21 - 01048960 _____ C:\Users\sabrina\Desktop\adwcleaner.exe
2013-10-09 17:28 - 2013-10-09 17:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\IObit
2013-10-09 17:16 - 2013-09-10 09:45 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014
2013-10-09 16:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-09 16:33 - 2013-09-10 09:43 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setupact.log
2013-10-09 16:05 - 2013-10-09 16:05 - 00024371 _____ C:\ComboFix.txt
2013-10-09 16:05 - 2013-10-09 15:46 - 00000000 ____D C:\ComboFix
2013-10-09 16:05 - 2013-10-09 13:11 - 00000000 ____D C:\Qoobox
2013-10-09 16:05 - 2013-09-13 11:19 - 00000000 ____D C:\Users\Basti
2013-10-09 16:05 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-10-09 16:04 - 2013-10-09 13:10 - 00000000 ____D C:\Windows\erdnt
2013-10-09 16:02 - 2006-11-02 12:23 - 00000215 _____ C:\Windows\system.ini
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Downloads\Downloads - Verknüpfung.lnk
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Documents\Dokumente - Verknüpfung.lnk
2013-10-09 14:59 - 2006-11-02 12:33 - 01539230 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-09 14:57 - 2013-10-09 14:57 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 14:56 - 2009-02-16 07:29 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2013-10-09 14:53 - 2013-10-09 14:52 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 14:20 - 2013-09-10 11:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-09 14:20 - 2013-09-10 11:13 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 14:13 - 2013-08-17 17:52 - 00000000 ____D C:\Windows\system32\MRT
2013-10-09 14:09 - 2006-11-02 12:24 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-10-09 13:55 - 2013-10-09 11:35 - 00000000 ____D C:\Users\sabrina\Desktop\Müll
2013-10-09 13:32 - 2013-09-10 09:42 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-10-09 12:52 - 2013-10-09 12:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-10-09 12:52 - 2013-10-09 12:40 - 00000000 ____D C:\Program Files\Unlocker
2013-10-09 12:48 - 2013-10-09 12:48 - 00001876 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-10-09 12:48 - 2013-10-09 12:48 - 00001872 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2013-10-09 12:48 - 2013-09-10 09:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\TuneUp Software
2013-10-09 11:43 - 2009-02-16 07:15 - 00000000 ____D C:\Program Files\ASUS
2013-10-09 11:36 - 2013-09-13 09:24 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-10-09 11:30 - 2013-10-09 11:26 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\vlc
2013-10-09 11:25 - 2013-10-09 11:25 - 00000866 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-10-09 11:24 - 2013-10-09 11:24 - 00000000 ____D C:\Program Files\VideoLAN
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\Documents\My Podcasts
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Sony
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\ProgramData\Sony
2013-10-08 22:27 - 2009-10-20 08:58 - 00000000 ____D C:\Users\sabrina\AppData\Local\Sony
2013-10-08 19:34 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-10-08 19:15 - 2006-11-02 14:42 - 00000000 ____D C:\Windows\WindowsMobile
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Windows\system32\msmq
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\inetpub
2013-10-08 18:39 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\ShellNew
2013-10-08 18:39 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\inetsrv
2013-10-08 18:39 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-10-08 18:39 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Help
2013-10-08 18:38 - 2013-09-28 13:58 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-10-08 18:38 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-10-08 18:38 - 2013-09-24 09:41 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-08 18:38 - 2010-05-07 22:59 - 00005528 ___SH C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneNote Inhaltsverzeichnis.onetoc2
2013-10-08 18:33 - 2009-03-20 15:37 - 00000000 ____D C:\Users\sabrina
2013-10-07 14:08 - 2013-10-07 13:55 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-07 13:27 - 2013-10-07 13:27 - 00000000 ____D C:\FRST
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:51 - 2013-10-05 19:45 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-01 16:02 - 2013-10-01 16:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-01 14:27 - 2013-10-01 14:27 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-01 14:26 - 2013-10-01 14:26 - 00000000 ____D C:\Program Files\Avira
2013-10-01 14:26 - 2013-04-23 19:25 - 00000000 ____D C:\ProgramData\Avira
2013-09-30 11:01 - 2013-10-01 14:26 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-27 14:16 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-09-27 13:36 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Winamp
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:21 - 2013-09-26 07:20 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-24 09:41 - 2013-09-24 09:41 - 00002012 _____ C:\Users\sabrina\Desktop\Chrome-App-Übersicht.lnk
2013-09-22 12:53 - 2013-09-13 09:19 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-22 12:53 - 2011-07-24 13:38 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\888poker
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2013-09-22 12:43 - 2009-02-16 06:18 - 00000000 ____D C:\Program Files\Google
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-22 12:29 - 2013-10-09 15:08 - 12336128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-22 12:22 - 2013-10-09 15:08 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-22 12:22 - 2013-10-09 15:08 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-22 12:14 - 2013-10-09 15:08 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-22 12:13 - 2013-10-09 15:08 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-22 12:13 - 2013-10-09 15:08 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-22 12:12 - 2013-10-09 15:08 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-22 12:09 - 2013-10-09 15:08 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-22 12:08 - 2013-10-09 15:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-22 12:07 - 2013-10-09 15:08 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-22 12:06 - 2013-10-09 15:08 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-22 12:05 - 2013-10-09 15:08 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-22 12:03 - 2013-10-09 15:08 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-22 12:03 - 2013-10-09 15:08 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-22 12:03 - 2013-10-09 15:08 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-22 11:59 - 2013-10-09 15:08 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-21 14:47 - 2013-09-21 14:24 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-20 23:39 - 2013-09-17 07:01 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-20 15:12 - 2013-09-13 09:18 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-20 07:13 - 2009-03-20 15:40 - 00000000 ____D C:\Users\sabrina\AppData\Local\Adobe
2013-09-20 07:09 - 2013-09-16 11:53 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:48 - 2013-09-19 08:03 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:44 - 2013-09-17 07:46 - 00000000 ____D C:\ProgramData\Acronis
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 07:48 - 2013-09-19 07:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-09-19 07:30 - 2013-09-14 17:24 - 00000000 ____D C:\Windows\pss
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:46 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-17 05:49 - 2013-09-14 13:45 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-16 22:47 - 2009-04-20 06:51 - 00001356 _____ C:\Users\sabrina\AppData\Local\d3d9caps.dat
2013-09-16 22:11 - 2009-02-16 04:55 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-09-16 15:33 - 2012-02-17 19:20 - 00000000 ____D C:\Windows\system32\Adobe
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001916 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001912 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001900 _____ C:\Users\Public\Desktop\Google Docs.lnk
2013-09-16 11:51 - 2009-03-20 15:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Google
2013-09-14 13:45 - 2006-11-02 13:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-09-13 21:42 - 2013-09-13 21:42 - 00000000 ____D C:\Windows\system32\Extensions
2013-09-13 21:34 - 2010-11-03 19:44 - 00000000 ____D C:\Windows\Minidump
2013-09-13 21:20 - 2013-09-13 21:20 - 00000000 ____D C:\Users\sabrina\AppData\Local\Freemium
2013-09-13 19:04 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\Covus Freemium
2013-09-13 19:02 - 2013-09-13 19:02 - 00000171 _____ C:\Users\sabrina\Desktop\Amazon.url
2013-09-13 17:54 - 2009-03-20 15:37 - 00000000 ___RD C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-09-13 17:26 - 2013-09-11 17:28 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-13 17:26 - 2013-09-11 17:28 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-13 17:25 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-09-13 17:25 - 2006-11-02 12:22 - 45088768 _____ C:\Windows\system32\config\components_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 44564480 _____ C:\Windows\system32\config\software_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 20971520 _____ C:\Windows\system32\config\system_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2013-09-13 17:25 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-09-13 17:24 - 2009-02-16 07:21 - 00000000 ____D C:\ProgramData\P4G
2013-09-13 17:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2013-09-13 17:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2013-09-13 16:58 - 2013-09-13 16:51 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014(18)
2013-09-13 14:26 - 2008-04-16 13:27 - 00000000 ____D C:\Windows\Panther
2013-09-13 11:24 - 2013-09-13 11:21 - 00001383 _____ C:\Users\sabrina\Desktop\Basti.lnk
2013-09-13 11:20 - 2013-09-13 11:20 - 00458541 _____ C:\Users\Basti\Startseite Google Chrome.htm
2013-09-13 09:24 - 2013-09-13 09:24 - 00000950 _____ C:\Users\sabrina\Desktop\Dropbox.lnk
2013-09-13 09:20 - 2013-09-13 09:20 - 00000000 ____D C:\Program Files\Dropbox
2013-09-13 08:43 - 2013-09-13 08:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Avg2014
2013-09-13 08:07 - 2013-09-13 08:07 - 97443711 _____ C:\Windows\system32\㩷⭬᭄š
2013-09-12 17:40 - 2013-09-12 17:40 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-TW
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-CN
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\uk-UA
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\th-TH
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sv-SE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sl-SI
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sk-SK
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ru-RU
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ro-RO
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pt-PT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pt-BR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pl-PL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\nl-NL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\nb-NO
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\lv-LV
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\lt-LT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ko-KR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ja-JP
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\it-IT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\hu-HU
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\hr-HR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\he-IL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fi-FI
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\et-EE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\el-GR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\bg-BG
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ar-SA
2013-09-12 17:39 - 2013-09-12 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-09-12 17:39 - 2008-04-16 13:11 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2013-09-12 17:39 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-09-12 17:39 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Common Files\System
2013-09-12 17:38 - 2013-09-12 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-09-12 15:41 - 2013-09-12 15:41 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-12 15:41 - 2013-09-12 15:41 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-12 15:41 - 2013-09-12 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-12 15:41 - 2013-09-12 15:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-12 15:41 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-09-12 15:41 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-09-12 15:40 - 2013-09-12 15:40 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-09-12 15:39 - 2013-09-12 15:39 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-09-12 15:37 - 2013-09-12 15:37 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-12 13:06 - 2013-09-12 13:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\avgchrome
2013-09-11 20:53 - 2009-03-22 15:43 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-11 17:29 - 2013-09-11 17:29 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-11 17:17 - 2013-09-11 17:17 - 00000000 ____D C:\Windows\system32\searchplugins
2013-09-11 17:15 - 2013-09-11 17:15 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\UpdaterEX
2013-09-10 12:21 - 2009-06-27 20:55 - 00000000 ____D C:\Users\sabrina\AppData\Local\Microsoft Games
2013-09-10 11:22 - 2013-09-10 11:22 - 00000000 ____D C:\Users\sabrina\AppData\Local\Macromedia
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Photo Gallery
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Collaboration
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Calendar
2013-09-10 10:51 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Movie Maker
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\vi-VN
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\eu-ES
2013-09-10 10:50 - 2013-09-10 10:48 - 00000000 ____D C:\Windows\system32\ca-ES
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\SLUI
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2013-09-10 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\IME
2013-09-10 10:45 - 2009-02-16 07:01 - 00000000 ____D C:\Windows\system32\RTCOM
2013-09-10 10:13 - 2009-02-16 06:27 - 00000000 ____D C:\ProgramData\Google
2013-09-10 10:08 - 2009-03-20 22:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\Microsoft Help
2013-09-10 08:48 - 2013-09-10 08:48 - 00000000 ____D C:\Windows\system32\EventProviders
Some content of TEMP:
====================
C:\Users\sabrina\AppData\Local\temp\avgnt.exe
C:\Users\sabrina\AppData\Local\temp\Quarantine.exe
C:\Users\sabrina\AppData\Local\temp\uninst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-10 17:19
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-10-2013
Ran by sabrina at 2013-10-10 17:23:45
Running from C:\Users\sabrina\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
2007 Microsoft Office system (Version: 12.0.4518.1014)
888poker
ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
Acronis True Image 2014 (Version: 17.0.5560)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Reader 8.1.3 - Deutsch (Version: 8.1.3)
Adobe Shockwave Player (Version: 11.0)
Adobe Shockwave Player 12.0 (Version: 12.0.4.144)
Adobe® Photoshop® Album Starter Edition 3.2 (Version: 3.2.0)
ASUS CopyProtect (Version: 1.0.0007)
ASUS Data Security Manager (Version: 1.00.0006)
ASUS InstantFun (Version: 1.0.0015)
ASUS LifeFrame3 (Version: 3.0.9)
ASUS Live Update (Version: 2.5.6)
ASUS Power4Gear eXtreme (Version: 1.0.18)
ASUS SmartLogon (Version: 1.0.0005)
ASUS Splendid Video Enhancement Technology (Version: 1.02.0020)
Asus_Camera_ScreenSaver (Version: 2.0.0007)
Atheros Client Installation Program (Version: 7.0)
ATI Catalyst Install Manager (Version: 3.0.678.0)
ATK Generic Function Service (Version: 1.00.0008)
ATK Hotkey (Version: 1.00.0034)
ATK Media
ATKOSD2 (Version: 6.64.1.8)
Avira Free Antivirus (Version: 14.0.0.383)
Browser Guard
Catalyst Control Center Core Implementation (Version: 2008.0603.2230.38408)
Catalyst Control Center Graphics Full Existing (Version: 2008.0603.2230.38408)
Catalyst Control Center Graphics Full New (Version: 2008.0603.2230.38408)
Catalyst Control Center Graphics Light (Version: 2008.0603.2230.38408)
Catalyst Control Center Graphics Previews Vista (Version: 2008.0603.2230.38408)
Catalyst Control Center InstallProxy (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Czech (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Danish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Dutch (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Finnish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization French (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization German (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Greek (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Hungarian (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Italian (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Japanese (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Korean (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Norwegian (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Polish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Portuguese (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Russian (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Spanish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Swedish (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Thai (Version: 2008.0603.2230.38408)
Catalyst Control Center Localization Turkish (Version: 2008.0603.2230.38408)
CCC Help Chinese Standard (Version: 2008.0603.2229.38408)
CCC Help Chinese Traditional (Version: 2008.0603.2229.38408)
CCC Help Czech (Version: 2008.0603.2229.38408)
CCC Help Danish (Version: 2008.0603.2229.38408)
CCC Help Dutch (Version: 2008.0603.2229.38408)
CCC Help English (Version: 2008.0603.2229.38408)
CCC Help Finnish (Version: 2008.0603.2229.38408)
CCC Help French (Version: 2008.0603.2229.38408)
CCC Help German (Version: 2008.0603.2229.38408)
CCC Help Greek (Version: 2008.0603.2229.38408)
CCC Help Hungarian (Version: 2008.0603.2229.38408)
CCC Help Italian (Version: 2008.0603.2229.38408)
CCC Help Japanese (Version: 2008.0603.2229.38408)
CCC Help Korean (Version: 2008.0603.2229.38408)
CCC Help Norwegian (Version: 2008.0603.2229.38408)
CCC Help Polish (Version: 2008.0603.2229.38408)
CCC Help Portuguese (Version: 2008.0603.2229.38408)
CCC Help Russian (Version: 2008.0603.2229.38408)
CCC Help Spanish (Version: 2008.0603.2229.38408)
CCC Help Swedish (Version: 2008.0603.2229.38408)
CCC Help Thai (Version: 2008.0603.2229.38408)
CCC Help Turkish (Version: 2008.0603.2229.38408)
ccc-core-static (Version: 2008.0603.2230.38408)
ccc-utility (Version: 2008.0603.2230.38408)
Cisco EAP-FAST Module (Version: 2.1.6)
Cisco LEAP Module (Version: 1.0.12)
Cisco PEAP Module (Version: 1.0.13)
CyberLink LabelPrint (Version: 2.0.2908)
CyberLink Power2Go (Version: 6.0.1924)
Dropbox (HKCU Version: 2.0.26)
Epson Easy Photo Print 2 (Version: 2.0.0.0)
EPSON Scan
EPSON Stylus SX100_TX100 Handbuch
EPSON SX100 Series Printer Uninstall
Everest Poker (Remove Only)
Express Gate (Version: 0.8.0.0)
Extended Update
Franzis Führerschein Prüfung (Version: 1.0)
Full Tilt Poker (Version: 4.40.9.WIN.FullTilt.COM)
Google Chrome (Version: 29.0.1547.66)
Google Drive (Version: 1.11.4865.2530)
Hugo3D PC (Version: 1.0)
Laura geht in die Schule
Lernspiele Englisch
LightScribe System Software 1.14.17.1 (Version: 1.14.17.1)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
Meine Tierarztpraxis (remove only)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Office 2000 Disc 2 (Version: 9.00.2816)
Microsoft Office 2000 Premium (Version: 9.00.2816)
Microsoft Office Access MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Home and Student 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office PowerPoint MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Professional Hybrid 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Arabic) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Publisher MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Shared MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (Dutch) 2007 (Version: 12.0.4518.1017)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (Italian) 2007 (Version: 12.0.4518.1018)
Microsoft PhotoDraw 2000
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MotioninJoy ds3 driver version 0.6.0005 (Version: 0.6.00005)
Multimedia Card Reader (Version: 1.01.0000.00)
Nokia Connectivity Cable Driver (Version: 6.80.5.1)
Picasa 3 (Version: 3.9)
PokerStars
PokerStars.net
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5605)
Skins (Version: 2008.0603.2230.38408)
Streamripper (Remove only)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 10.1.8.0)
TuneUp Utilities 2014 (de-DE) (Version: 14.0.1000.110)
TuneUp Utilities 2014 (Version: 14.0.1000.110)
TutorWIN für SAP R3 LesBase
TutorWIN für SAP R3 Personalabrechnung Rel 4.6
TutorWIN für SAP R3 Personaladministration Rel 4.6
Unity Web Player (HKCU Version: )
Unlocker 1.9.1 (Version: 1.9.1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
USB 2.0 1.3M UVC WebCam
VLC media player 2.1.0 (Version: 2.1.0)
WIDCOMM Bluetooth Software (Version: 5.2.0.500)
Winamp (Version: 5.65 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
WinFlash
WinRAR 5.00 (32-bit) (Version: 5.00.0)
Wireless Console 2 (Version: 2.0.10)
YoWindow (Version: 3)
==================== Restore Points =========================
09-10-2013 10:43:35 TuneUp Utilities 2014 wird installiert
09-10-2013 12:00:17 Windows Update
09-10-2013 13:08:07 Windows Update
==================== Hosts content: ==========================
2006-11-02 12:23 - 2013-10-09 16:02 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {4779E023-FDBF-4A53-BB9C-61C77400276D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-11] (Google Inc.)
Task: {56154645-FA9C-4AC1-816E-B64C74F2CF9B} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files\ASUS\SmartLogon\sensorsrv.exe [2008-06-18] (ASUS)
Task: {568FE42C-13CB-438E-A811-36818F856969} - System32\Tasks\ASUS Live Update => C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {5B02E504-7810-4357-9799-E155F65EBE04} - System32\Tasks\Freemium1ClickMaint => C:\Program Files\Covus Freemium\Free System Utilities\1Click.exe
Task: {5C239001-9206-4A79-8DDF-418BC08FA399} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated)
Task: {7202E5EC-7796-4BA8-A53E-FB353BBA8F0A} - System32\Tasks\DjYogi-PSY (http.laut.fm.80) => C:\Program Files\Stream Recorder .Net\StreamRecorder.exe [2012-01-22] ()
Task: {7C5CE51E-EBD6-4070-9428-0D13B0B0CEE4} - System32\Tasks\Stream Recorder .Net => C:\Users\sabrina\Desktop\Stream-Recorder-Net.exe
Task: {BF5F68DB-39F1-4EDA-BF1B-FBFA01097CE2} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\TuneUp Utilities 2014\OneClick.exe [2013-09-09] (TuneUp Software)
Task: {C7C7BDED-E129-4915-87A4-270E17EADBCE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-11] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {F42DF8CF-D1C5-4CB8-A722-C47CC774C12D} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2008-01-21] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2008-06-04 05:21 - 2008-06-04 05:21 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2009-02-16 06:43 - 2009-02-16 06:43 - 00014848 _____ () C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
2009-02-16 07:17 - 2007-06-15 20:28 - 00147456 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
2009-02-16 07:17 - 2007-06-02 03:08 - 00143360 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
2013-08-07 17:07 - 2013-08-07 17:07 - 00022336 _____ () C:\Program Files\Acronis\TrueImageHome\ti_managers_proxy_stub.dll
2013-09-11 17:29 - 2013-09-02 22:35 - 04053456 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll
2013-09-11 17:29 - 2013-09-02 22:35 - 00410576 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
2013-09-11 17:29 - 2013-09-02 22:35 - 01604560 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll
2010-07-04 23:32 - 2010-07-04 23:32 - 00010752 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2009-02-16 07:17 - 2007-08-08 12:52 - 00331776 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\AdsmendecExt.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Microsoft-ISATAP-Adapter #2
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-ISATAP-Adapter #4
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: =========================
Application errors:
==================
Error: (10/10/2013 05:14:17 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/10/2013 05:11:31 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}
Error: (10/10/2013 05:04:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (10/10/2013 05:12:53 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80004005
Error: (10/10/2013 05:12:53 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80004005
Error: (10/10/2013 05:11:22 PM) (Source: DCOM) (User: )
Description: {1EF75F33-893B-4E8F-9655-C3D602BA4897}
Error: (10/10/2013 05:09:51 PM) (Source: Service Control Manager) (User: )
Description: Windows Update
Error: (10/10/2013 05:06:58 PM) (Source: Service Control Manager) (User: )
Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86
Error: (10/10/2013 05:04:27 PM) (Source: Service Control Manager) (User: )
Description: Avira Browser-SchutzAvira Echtzeit-Scanner%%1070
Error: (10/10/2013 05:04:27 PM) (Source: Service Control Manager) (User: )
Description: Avira Echtzeit-Scanner
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2013-10-10 13:52:00.842
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:52:00.202
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:51:59.547
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:51:58.907
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:51:58.205
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:51:57.597
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:51:56.801
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:51:56.208
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:51:55.475
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-10-10 13:51:54.882
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 46%
Total physical RAM: 1790.39 MB
Available physical RAM: 966.35 MB
Total Pagefile: 3831.33 MB
Available Pagefile: 2694.14 MB
Total Virtual: 2047.88 MB
Available Virtual: 1920.6 MB
==================== Drives ================================
Drive c: (VistaOS) (Fixed) (Total:116.44 GB) (Free:60.34 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:106.68 GB) (Free:76.91 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 233 GB) (Disk ID: 97646C29)
Partition 1: (Not Active) - (Size=10 GB) - (Type=1C)
Partition 2: (Active) - (Size=116 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=107 GB) - (Type=OF Extended)
==================== End Of Log ============================
Danke Dir jetzt schon mal für Deine Mühe und Hilfe Bis denn z.B.: c:\Benutzer\Name\Appdata\... ? Und gibt es für das Anti Malware Programm ein kostenloses gleichwertiges Tool? |
|
11.10.2013, 08:27
| #10 |
| /// the machine /// TB-Ausbilder | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich?ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
12.10.2013, 11:53
| #11 |
| | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Leider hab ich heute noch ein größeres Problem. Komischerweise funktioniert das Internet nicht mehr über WLan. Ich finde über den Laptop zwar den WLan Namen (WLAN-B2CC83), doch wenn ich mich einloggen möchte sagt er nicht möglich. Weiss nicht warum, hab mich auch schon über Kabel in den Router eingeloggt und alles ist OK, wie Du siehst kann ich über Kabel ja auch ins Netz. Gestern nach Deinen Anweisungen vorgegangen, siehst Du ja in den Antworten und bestimmt noch 3x neu booten lassen, hab ich TuneUp noch warten lassen und defragmentierten aktiviert (nach Abschluss herunterfahren). Und jetzt komm ich nicht mehr ins Netz wie oben beschrieben. Hast Du ne Idee? Wäre super, denn der Laptop ist von meinem Mädl und bis jetzt gabs nie faxen mit Software usw. ausser SoftwareUpdaterUi.exe  Panisch wegen der Freundin, kommt aberst abends und ich hoffe das Du mir helfen kannst! Sorry das ich Dir so Arbeit mache Hatte gestern alles gemacht wie Du es geschrieben hast und mindestens noch 3x neu starten lassen da am Anfang Fehlermeldung wie in Deiner Anweisung. Alles OK  h: . Doch als ich heute morgen den Laptop startete konnte er sich nicht ins WLAN einwählen (Keine Verbindung möglich), selbst nachdem ich mich in den Router geloggt hatte und alles in Ordnung war von den Einstellungen konnte er keine Verbindung aufbauen.Das komische an der Sache ist: er findet ja unser WLAN Netz (WLAN-B2CC83) und WLAN Schlüssel hab ich auch noch 3x neu eingegeben... Keine Verbindung möglich, obwohl WLAN am Laptop funktioniert er unseren Zugang findet und ich jetzt gerade über Kabek am Router sitze und Dir schreiben kann ??? Und der Laptop ist auch noch von meiner FreundinIch schreibe Dir, doch ich seh es nicht mehr???????  Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=d168db42e170974b83eebf7d8d86ee6d
# engine=15443
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-11 11:19:38
# local_time=2013-10-11 01:19:38 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1799 16775165 100 95 81107 958706 73840 0
# compatibility_mode=5892 16776574 100 100 882345 219023106 0 0
# scanned=171084
# found=12
# cleaned=0
# scan_time=5341
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_0\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_1\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_10\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_11\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_2\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_3\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_4\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_5\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_6\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_7\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_8\c.js"
sh=B147E00C902BEE5B7F316FFB064A0E3E4B41F417 ft=0 fh=0000000000000000 vn="Win32/AdWare.AddLyrics.T application" ac=I fn="C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_9\c.js"
Code:
ATTFilter Results of screen317's Security Check version 0.99.74 Windows Vista Service Pack 2 x86 (UAC is enabled) Internet Explorer 9 Internet Explorer 8 ``````````````Antivirus/Firewall Check:`````````````` Avira Desktop Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Adobe Flash Player 11.9.900.117 Adobe Reader 8 Adobe Reader out of Date! Google Chrome 29.0.1547.66 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Avira Antivir avgnt.exe Avira Antivir avguard.exe mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by sabrina (administrator) on SABRINA-PC on 11-10-2013 13:55:39
Running from C:\Users\sabrina\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
() C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Malwarebytes Corporation) C:\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\system32\mqsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Malwarebytes Corporation) C:\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
() C:\Program Files\ATK Hotkey\ASLDRSrv.exe
(ATK0100) C:\Program Files\ATK Hotkey\Hcontrol.exe
() C:\Program Files\ATK Hotkey\MsgTranAgt.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ATK Hotkey\KBFiltr.exe
() C:\Program Files\ATK Hotkey\WDC.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HControlUser] - C:\Program Files\ATK Hotkey\HcontrolUser.exe [98304 2008-01-12] ()
HKLM\...\Run: [CLMLServer] - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [104936 2008-07-19] (CyberLink)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-12-06] (Synaptics, Inc.)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6111232 2008-04-17] (Realtek Semiconductor)
HKLM\...\Run: [P2Go_Menu] - "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ATKOSD2\ATKOSD2.exe [7766016 2008-01-24] ()
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2008-02-02] ()
HKLM\...\Run: [Adobe Photo Downloader] - C:\Photoshop\3.2\Apps\apdproxy.exe [57344 2007-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-09-30] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdcBase.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [39792 2008-10-15] (Adobe Systems Incorporated)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
Startup: C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Inhaltsverzeichnis.onetoc2 ()
==================== Internet (Whitelisted) ====================
ProxyServer: http=85.214.84.220:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {8A245F63-D5D8-4835-ADCE-80E1B4EEFEC1} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
BHO: Browser Guard - {02a0d829-4393-46fc-a37e-126263035883} - C:\Program Files\Browser Guard\browserguard.dll (Browser Guard)
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU -&Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 09 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 10 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 11 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 12 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 13 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 14 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 15 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 16 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 27 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 28 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Extension: Lyrics Seeker - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\133
FF Extension: Web Check - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\WebCheck
FF Extension: Adblock Plus - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF Extension: Block site - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc}
FF Extension: No Name - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20d1f7b3-7721-4da0-b6f3-78bb4d7248f4}] - C:\Program Files\Browser Guard\browserguard.xpi
FF Extension: No Name - C:\Program Files\Browser Guard\browserguard.xpi
Chrome:
=======
CHR Extension: (Entanglement Web App) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\3.4.9_0
CHR Extension: (Eredan iTCG) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakdeclmfcolipiknbfealnjddfibfo\1_0
CHR Extension: (American Racing 2 3D) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfpfdjclhabpjncikdngdoldjjjegnbe\2.1.2_0
CHR Extension: (Avatar Arena) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjbjlhannmmdjeebjgdikdchpiijljek\1.0.1_0
CHR Extension: (Gravity Guy) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjlgidnccmkehcefagofppjbnhogbjmm\1.0.0_0
CHR Extension: (YouTube) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (BeGone: Last Stand HD) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmekbplkjhgmljmbblmhmcnocafhaink\1.8.2.17_0
CHR Extension: (Classic Games) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpckajjkmjncafjlkielcgheibdlnfgc\1.0_0
CHR Extension: (Tanki Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo\1.5_0
CHR Extension: (Virtual piano) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohgcponedmbhgbbdinajeoapmoaifdj\4.9.3_0
CHR Extension: (Web Check ) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee\0.1
CHR Extension: (Spongebob Super Brawl 3) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfaoangdklcefogknfphjjmohfedgnlj\2.3.1_0
CHR Extension: (Burst Motocross) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkcakkmhmimngalgjjaiibkiolehcfmh\1.0_0
CHR Extension: (Rock Paper Scissors) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkmlfkbofapbceihbpdpjganpnienhfc\1.0.9_0
CHR Extension: (Torrent Turbo Search App) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\eegbffmjdkflkcfncpfjjbggbdlnbdif\0.1_0
CHR Extension: (Tetris 2) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\emidddocikgklceeeifefomdnbkldhng\1.0.0.17_0
CHR Extension: (Weather (extension)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fapbbpdnlcmiolkdfjnnjhabmcndadad\0.9.0.6_0
CHR Extension: (Sudoku) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbldalicehmlaalddffibogeplifangc\1.0.3_0
CHR Extension: (Type Scout) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fedokkaolmkkoeedicihicdeppjjeamj\5_0
CHR Extension: (CHIP Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd\1.5_0
CHR Extension: (Planes Propwash Pursuit) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\figbofenkblalldlgjjflfpendllpceh\2.3.1_0
CHR Extension: (Counter Strike Online ) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fplklihjpkinahlihcljhnnlnhnmmhdp\2.6_0
CHR Extension: (Digital Clock) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo\1.11_0
CHR Extension: (Goodgame Empire) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggdljnjjajocmjaldkldaapkkclbaclb\9_0
CHR Extension: (AdBlock) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.7_0
CHR Extension: (UNO Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjfncmhihlfbkinpfenkeliekjpoakbf\1.0.0.0_0
CHR Extension: (PDF Mergy) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha\0.5.2_0
CHR Extension: (Tomb Jewels (HD)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjehadkphnfpnheecobbohnphogngooo\1.1.5_0
CHR Extension: (Street Skater 3D) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlchpgbjfeoncdkgcihimbimpjiaodfl\1.0_0
CHR Extension: (Crazy Shooting) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbhccdddhenjmeamogpjhicnoffdood\1.0.0_0
CHR Extension: (Die Siedler Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmhcglhfdnepmdeelgjfdjckclajkha\1.0.1_0
CHR Extension: (The West) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilkgeioneoemibpddeiamfgiofnpjifm\1.5_0
CHR Extension: (Dropbox) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl\3.0.8_0
CHR Extension: (FAST FIVE) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipecejmhgombfadlddemeadfapnafcgo\1.0.1_0
CHR Extension: (theHunter) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jangaedeekciafhlanphhnalogmhefmo\10_0
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe\1.0.8_0
CHR Extension: (Movi Kanti Revo) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkdkcgeghhfjiglphfppinecpcpnnbne\1.0.0.0_0
CHR Extension: (Soccer Manager) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpemkngoajegcbamebdmnkjoalpofpbj\1.1.6.2_0
CHR Extension: (Drakensang Online) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgloifppaepihckkhiocnodicehjdoof\4.0.1_0
CHR Extension: (Lyrics Seeker) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_0
CHR Extension: (Top Eleven) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn\2.0.0.4_0
CHR Extension: (Zuma) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmlohpfojplnfgcbgooclnhidniofegn\1.0.0_0
CHR Extension: (Google Maps) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0
CHR Extension: (Lagoonia) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjcaihkcddgdgaghmnmfpkkfilombbm\1.38_0
CHR Extension: (Need for Speed World) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk\1.0.0.4_0
CHR Extension: (Sonic the Hedgehog) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbdhbpmojeedfmgelekgjhdejdmfpikn\1.0_0
CHR Extension: (Curling) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhalnajmigjnpjpdbpkpgfhekbjmolhp\1.0.10_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Current Moon Phase (Northern Hemisphere)) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\oampnkjpomgmmphfoedhihefpbjhjamo\1.6.10_0
CHR Extension: (Jungle Plumber Challenge) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojpobnopmcjkgbgakigfoemfgfcdiefi\2_0
CHR Extension: (Goodgame Big Farm) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\okdjgjhkolgmkjjddmnjejjphhkdjdhc\4_0
CHR Extension: (Marc Ecko) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk\2_0
CHR Extension: (Edgeworld) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfmpdiaehhnljpdomnggcbfofdgkmbp\1.0.1.2_0
CHR Extension: (eBay Deals) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pllkgmcojhajjmojfoagiegoibjognlc\1.0.4_0
CHR HKLM\...\Chrome\Extension: [kfepagcelbegkpkcjgfeecmlnmkedjin] - C:\Program Files\Browser Guard\browserguard.crx
========================== Services (Whitelisted) =================
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [778000 2013-07-18] (Acronis)
R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728 2007-05-18] ()
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3906552 2013-09-17] (Acronis)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-03] ()
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 MBAMScheduler; C:\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [8704 2006-11-02] (Microsoft Corporation)
R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [9745008 2013-08-21] (Acronis)
==================== Drivers (Whitelisted) ====================
R0 AsDsm; C:\Windows\System32\Drivers\AsDsm.sys [29752 2007-08-11] (Windows (R) Codename Longhorn DDK provider)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-09-30] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
S3 CRFILTER; C:\Windows\System32\DRIVERS\CRFILTER.sys [6656 2008-04-07] (Generic)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [99400 2013-09-26] (MotioninJoy)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [126976 2008-01-21] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [104616 2008-11-04] (MCCI Corporation)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1769984 2007-10-01] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-09-30] (Avira GmbH)
S3 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [889888 2013-09-17] (Acronis International GmbH)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [736192 2013-09-17] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [130488 2013-09-17] (Acronis)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [116000 2013-09-17] (Acronis International GmbH)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [85280 2013-09-17] (Acronis International GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\Users\sabrina\AppData\Local\Temp\catchme.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-11 13:55 - 2013-10-11 13:55 - 00000000 ____D C:\FRST
2013-10-11 13:41 - 2013-10-10 16:55 - 01087213 _____ (Farbar) C:\Users\sabrina\Desktop\FRST.exe
2013-10-11 12:20 - 2013-10-11 12:20 - 00891167 _____ C:\Users\sabrina\Desktop\SecurityCheck.exe
2013-10-10 18:52 - 2013-10-10 09:47 - 01048960 _____ C:\Users\sabrina\Desktop\adwcleaner.exe
2013-10-10 16:39 - 2013-10-11 10:52 - 00000000 ____D C:\Windows\ERUNT
2013-10-10 09:51 - 2013-10-10 09:51 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Malwarebytes
2013-10-10 09:50 - 2013-10-11 10:51 - 00000000 ____D C:\Malwarebytes' Anti-Malware
2013-10-10 09:50 - 2013-10-10 09:50 - 00000667 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-10 09:50 - 2013-10-10 09:50 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-10 09:50 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-09 17:28 - 2013-10-09 17:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\IObit
2013-10-09 17:16 - 2013-09-09 15:29 - 00036152 _____ (TuneUp Software) C:\Windows\system32\uxt35B.tmp
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setupact.log
2013-10-09 16:05 - 2013-10-11 08:48 - 00000000 ____D C:\Users\sabrina\AppData\Local\temp(1751)
2013-10-09 16:05 - 2013-10-09 16:05 - 00024371 _____ C:\ComboFix.txt
2013-10-09 15:46 - 2013-10-09 16:05 - 00000000 ____D C:\ComboFix(1)
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Downloads\Downloads - Verknüpfung.lnk
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Documents\Dokumente - Verknüpfung.lnk
2013-10-09 15:08 - 2013-09-22 12:29 - 12336128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-09 15:08 - 2013-09-22 12:22 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-09 15:08 - 2013-09-22 12:22 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-09 15:08 - 2013-09-22 12:14 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-09 15:08 - 2013-09-22 12:13 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-09 15:08 - 2013-09-22 12:13 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-09 15:08 - 2013-09-22 12:12 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-09 15:08 - 2013-09-22 12:09 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-09 15:08 - 2013-09-22 12:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-09 15:08 - 2013-09-22 12:07 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-09 15:08 - 2013-09-22 12:06 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-09 15:08 - 2013-09-22 12:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-09 15:08 - 2013-09-22 12:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-09 15:08 - 2013-09-22 12:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-09 15:08 - 2013-09-22 12:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-09 15:08 - 2013-09-22 11:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-09 14:57 - 2013-10-09 14:57 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 14:52 - 2013-10-11 08:34 - 00010286 _____ C:\Windows\PFRO.log
2013-10-09 14:52 - 2013-10-09 14:53 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 14:00 - 2013-08-29 09:56 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2013-10-09 14:00 - 2013-08-27 04:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-09 14:00 - 2013-08-27 03:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-09 14:00 - 2013-08-27 03:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-09 14:00 - 2013-08-27 03:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-09 14:00 - 2013-08-27 03:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-09 14:00 - 2013-08-27 03:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-09 14:00 - 2013-07-03 04:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-09 14:00 - 2013-07-03 04:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 14:00 - 2013-06-29 04:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 14:00 - 2011-05-05 15:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 14:00 - 2011-05-05 15:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-09 13:59 - 2013-08-29 09:36 - 02050048 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 13:59 - 2013-08-01 05:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 13:59 - 2013-08-01 04:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-09 13:59 - 2013-07-20 12:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 13:59 - 2013-07-12 11:04 - 00134272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-09 13:59 - 2013-07-04 06:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 13:59 - 2013-06-27 01:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 13:59 - 2013-06-04 06:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 13:59 - 2013-06-04 03:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 13:28 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-09 13:28 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-09 13:28 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-09 13:11 - 2013-10-09 16:05 - 00000000 ____D C:\Qoobox
2013-10-09 13:10 - 2013-10-11 10:52 - 00000000 ____D C:\Windows\erdnt
2013-10-09 12:52 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-10-09 12:40 - 2013-10-09 12:52 - 00000000 ____D C:\Program Files\Unlocker
2013-10-09 11:35 - 2013-10-09 13:55 - 00000000 ____D C:\Users\sabrina\Desktop\Müll
2013-10-09 11:26 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\vlc
2013-10-09 11:25 - 2013-10-09 11:25 - 00000866 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-10-09 11:24 - 2013-10-09 11:24 - 00000000 ____D C:\Program Files\VideoLAN
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\Documents\My Podcasts
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Sony
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\ProgramData\Sony
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Windows\system32\msmq
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\inetpub
2013-10-08 18:34 - 2013-10-11 08:41 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-07 13:55 - 2013-10-07 14:08 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-05 19:45 - 2013-10-05 19:51 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-01 16:02 - 2013-10-01 16:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-01 14:27 - 2013-10-01 14:27 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-01 14:26 - 2013-10-01 14:26 - 00000000 ____D C:\Program Files\Avira
2013-10-01 14:26 - 2013-09-30 11:01 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-01 14:26 - 2013-09-30 11:01 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-27 13:34 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-09-27 13:34 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:20 - 2013-09-26 07:21 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-26 07:20 - 2010-08-19 19:24 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00255496 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00061984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-24 09:41 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-09-24 09:41 - 2013-09-24 09:41 - 00002012 _____ C:\Users\sabrina\Desktop\Chrome-App-Übersicht.lnk
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-21 14:24 - 2013-09-21 14:47 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:09 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-09-19 08:09 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-09-19 08:03 - 2013-09-19 08:48 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:02 - 2013-10-11 09:00 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\OpenCandy
2013-09-19 08:02 - 2013-09-27 13:36 - 00000000 ____D C:\Program Files\Winamp
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 07:48 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-19 08:44 - 00000000 ____D C:\ProgramData\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:45 - 2013-09-17 07:46 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-20 23:39 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-16 11:53 - 2013-09-20 07:09 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001916 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001912 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001900 _____ C:\Users\Public\Desktop\Google Docs.lnk
2013-09-14 17:24 - 2013-09-19 07:30 - 00000000 ____D C:\Windows\pss
2013-09-14 13:45 - 2013-09-17 05:49 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-13 21:42 - 2013-09-13 21:42 - 00000000 ____D C:\Windows\system32\Extensions
2013-09-13 21:20 - 2013-09-13 21:20 - 00000000 ____D C:\Users\sabrina\AppData\Local\Freemium
2013-09-13 19:04 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\Covus Freemium
2013-09-13 19:02 - 2013-09-13 19:02 - 00000171 _____ C:\Users\sabrina\Desktop\Amazon.url
2013-09-13 17:37 - 2011-03-12 23:55 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-13 11:21 - 2013-09-13 11:24 - 00001383 _____ C:\Users\sabrina\Desktop\Basti.lnk
2013-09-13 11:20 - 2013-09-13 11:20 - 00458541 _____ C:\Users\Basti\Startseite Google Chrome.htm
2013-09-13 11:19 - 2013-10-09 16:05 - 00000000 ____D C:\Users\Basti
2013-09-13 09:24 - 2013-10-11 10:52 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-09-13 09:24 - 2013-09-13 09:24 - 00000950 _____ C:\Users\sabrina\Desktop\Dropbox.lnk
2013-09-13 09:20 - 2013-09-13 09:20 - 00000000 ____D C:\Program Files\Dropbox
2013-09-13 09:19 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-13 09:18 - 2013-09-20 15:12 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-13 08:43 - 2013-09-13 08:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Avg2014
2013-09-13 08:07 - 2013-09-13 08:07 - 97443711 _____ C:\Windows\system32\㩷⭬᭄š
2013-09-12 17:40 - 2013-09-12 17:40 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-09-12 17:39 - 2013-09-12 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-09-12 17:38 - 2013-09-12 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-09-12 16:40 - 2009-09-10 04:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2013-09-12 16:40 - 2009-09-10 04:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2013-09-12 16:40 - 2009-09-10 04:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2013-09-12 16:36 - 2009-10-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2013-09-12 16:36 - 2009-10-01 03:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2013-09-12 16:36 - 2009-10-01 03:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys
2013-09-12 16:36 - 2009-10-01 03:01 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\WpdConns.dll
2013-09-12 16:15 - 2012-02-29 17:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-09-12 16:14 - 2012-02-29 17:09 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-09-12 16:14 - 2012-02-29 15:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-09-12 15:41 - 2013-09-12 15:41 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-12 15:41 - 2013-09-12 15:41 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-12 15:41 - 2013-09-12 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-12 15:41 - 2013-09-12 15:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-12 15:40 - 2013-09-12 15:40 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-09-12 15:39 - 2013-09-12 15:39 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-09-12 15:37 - 2013-09-12 15:37 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-12 14:55 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-09-12 14:54 - 2012-07-26 05:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-09-12 14:54 - 2012-07-26 05:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-09-12 14:54 - 2012-07-26 05:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-09-12 14:54 - 2012-07-26 05:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-09-12 14:54 - 2012-07-26 04:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-09-12 14:54 - 2012-07-26 04:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-09-12 14:54 - 2012-07-26 04:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-09-12 14:54 - 2009-07-14 14:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2013-09-12 14:27 - 2013-04-24 06:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-12 14:27 - 2013-04-24 03:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-12 14:26 - 2012-11-08 05:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-09-12 14:25 - 2013-07-16 06:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-09-12 14:25 - 2011-02-22 16:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-12 14:23 - 2013-07-05 06:53 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-12 14:23 - 2013-06-15 15:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-09-12 14:23 - 2013-06-15 13:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-12 14:23 - 2013-03-03 21:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-12 14:23 - 2012-09-28 18:11 - 00892928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-12 14:23 - 2012-08-21 13:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-09-12 14:23 - 2012-06-08 19:47 - 11586048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-12 14:23 - 2012-03-21 01:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-09-12 14:23 - 2011-12-14 18:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-09-12 14:23 - 2011-10-25 17:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-09-12 14:23 - 2011-07-29 18:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-09-12 14:23 - 2011-07-29 18:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-09-12 14:23 - 2011-07-29 18:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2013-09-12 14:23 - 2011-07-29 18:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2013-09-12 14:22 - 2013-08-02 06:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-12 14:22 - 2013-07-17 21:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-12 14:22 - 2013-07-10 11:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-12 14:22 - 2013-05-02 06:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-12 14:22 - 2013-05-02 06:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2013-09-12 14:22 - 2012-11-22 05:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2013-09-12 14:22 - 2012-11-20 06:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-12 14:22 - 2012-11-02 12:19 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-12 14:22 - 2012-09-25 18:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-12 14:22 - 2012-05-11 17:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-09-12 14:22 - 2011-11-18 19:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-09-12 14:22 - 2011-10-14 18:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-09-12 14:22 - 2011-10-14 18:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2013-09-12 14:21 - 2011-10-14 18:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-09-12 14:20 - 2012-11-02 12:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-12 14:20 - 2012-11-02 10:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2013-09-12 14:20 - 2012-06-29 18:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-12 13:48 - 2011-11-16 18:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2013-09-12 13:43 - 2011-08-25 18:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-09-12 13:43 - 2011-08-25 18:14 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-09-12 13:43 - 2011-08-25 18:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-09-12 13:43 - 2011-08-25 15:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2013-09-12 13:42 - 2013-07-09 14:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-12 13:42 - 2013-07-08 06:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-09-12 13:42 - 2013-07-08 06:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-12 13:42 - 2013-03-09 05:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-12 13:42 - 2013-03-09 03:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-12 13:42 - 2013-03-08 05:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-12 13:42 - 2013-03-08 05:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-12 13:42 - 2013-02-12 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
2013-09-12 13:42 - 2013-02-12 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-12 13:42 - 2012-06-04 17:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-09-12 13:42 - 2012-06-02 02:04 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-09-12 13:42 - 2012-05-01 16:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-09-12 13:42 - 2011-11-16 18:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-09-12 13:42 - 2011-11-16 18:21 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-09-12 13:42 - 2011-11-16 16:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-09-12 13:42 - 2011-06-15 18:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-09-12 13:42 - 2010-05-04 21:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2013-09-12 13:37 - 2013-07-08 06:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-12 13:37 - 2013-07-08 06:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-12 13:37 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-12 13:37 - 2013-04-17 14:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-09-12 13:37 - 2012-06-05 18:47 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-12 13:19 - 2012-01-09 17:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-09-12 13:06 - 2013-09-12 13:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\avgchrome
2013-09-11 17:29 - 2013-09-11 17:29 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-11 17:28 - 2013-09-13 17:26 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-11 17:28 - 2013-09-13 17:26 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-11 17:17 - 2013-09-11 17:17 - 00000000 ____D C:\Windows\system32\searchplugins
2013-09-11 17:15 - 2013-09-11 17:15 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\UpdaterEX
2013-09-11 17:13 - 2013-10-11 09:00 - 00000000 ____D C:\Program Files\Delta
2013-09-11 16:14 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-09-11 16:14 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-09-11 16:14 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-09-11 16:14 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-09-11 16:13 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-09-11 16:13 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-09-11 16:13 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-09-11 16:13 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-09-11 16:13 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
==================== One Month Modified Files and Folders =======
2013-10-11 13:55 - 2013-10-11 13:55 - 00000000 ____D C:\FRST
2013-10-11 13:54 - 2009-03-20 20:55 - 00001894 _____ C:\Users\Public\Desktop\Adobe Reader 8.lnk
2013-10-11 13:40 - 2009-02-16 04:31 - 01413795 _____ C:\Windows\WindowsUpdate.log
2013-10-11 13:20 - 2013-09-10 11:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-11 13:01 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-11 13:01 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-11 12:20 - 2013-10-11 12:20 - 00891167 _____ C:\Users\sabrina\Desktop\SecurityCheck.exe
2013-10-11 11:01 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-11 11:01 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-10-11 11:00 - 2006-11-02 12:22 - 46923776 _____ C:\Windows\system32\config\software_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 45613056 _____ C:\Windows\system32\config\components_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 20971520 _____ C:\Windows\system32\config\system_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-10-11 10:52 - 2013-10-10 16:39 - 00000000 ____D C:\Windows\ERUNT
2013-10-11 10:52 - 2013-10-09 13:10 - 00000000 ____D C:\Windows\erdnt
2013-10-11 10:52 - 2013-10-09 12:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-10-11 10:52 - 2013-10-09 11:26 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\vlc
2013-10-11 10:52 - 2013-09-28 13:58 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-10-11 10:52 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-10-11 10:52 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-10-11 10:52 - 2013-09-24 09:41 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-11 10:52 - 2013-09-19 07:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-10-11 10:52 - 2013-09-13 09:24 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-10-11 10:52 - 2013-09-13 09:19 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-10-11 10:52 - 2011-07-24 14:30 - 00000000 ____D C:\Users\sabrina\AppData\Local\PokerStars.NET
2013-10-11 10:52 - 2010-06-05 10:33 - 00000000 ____D C:\Users\sabrina\AppData\Local\PokerStars.EU
2013-10-11 10:52 - 2009-03-20 15:37 - 00000000 ___RD C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-11 10:52 - 2009-03-20 15:37 - 00000000 ___RD C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-11 10:52 - 2009-03-20 15:37 - 00000000 ____D C:\Users\sabrina
2013-10-11 10:52 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media
2013-10-11 10:52 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2013-10-11 10:52 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-10-11 10:51 - 2013-10-10 09:50 - 00000000 ____D C:\Malwarebytes' Anti-Malware
2013-10-11 10:51 - 2009-02-16 07:21 - 00000000 ____D C:\ProgramData\P4G
2013-10-11 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2013-10-11 10:42 - 2009-03-20 15:37 - 00000000 ____D C:\Users\sabrina\AppData\Local\Temp(1752)
2013-10-11 09:00 - 2013-09-19 08:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\OpenCandy
2013-10-11 09:00 - 2013-09-11 17:13 - 00000000 ____D C:\Program Files\Delta
2013-10-11 08:48 - 2013-10-09 16:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\temp(1751)
2013-10-11 08:41 - 2013-10-08 18:34 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-10-11 08:41 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-11 08:34 - 2013-10-09 14:52 - 00010286 _____ C:\Windows\PFRO.log
2013-10-10 16:55 - 2013-10-11 13:41 - 01087213 _____ (Farbar) C:\Users\sabrina\Desktop\FRST.exe
2013-10-10 09:51 - 2013-10-10 09:51 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Malwarebytes
2013-10-10 09:50 - 2013-10-10 09:50 - 00000667 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-10 09:50 - 2013-10-10 09:50 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-10 09:47 - 2013-10-10 18:52 - 01048960 _____ C:\Users\sabrina\Desktop\adwcleaner.exe
2013-10-09 17:28 - 2013-10-09 17:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\IObit
2013-10-09 16:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setupact.log
2013-10-09 16:05 - 2013-10-09 16:05 - 00024371 _____ C:\ComboFix.txt
2013-10-09 16:05 - 2013-10-09 15:46 - 00000000 ____D C:\ComboFix(1)
2013-10-09 16:05 - 2013-10-09 13:11 - 00000000 ____D C:\Qoobox
2013-10-09 16:05 - 2013-09-13 11:19 - 00000000 ____D C:\Users\Basti
2013-10-09 16:05 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-10-09 16:02 - 2006-11-02 12:23 - 00000215 _____ C:\Windows\system.ini
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Downloads\Downloads - Verknüpfung.lnk
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Documents\Dokumente - Verknüpfung.lnk
2013-10-09 14:59 - 2006-11-02 12:33 - 01539230 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-09 14:57 - 2013-10-09 14:57 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 14:56 - 2009-02-16 07:29 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2013-10-09 14:53 - 2013-10-09 14:52 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 14:20 - 2013-09-10 11:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-09 14:20 - 2013-09-10 11:13 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 14:13 - 2013-08-17 17:52 - 00000000 ____D C:\Windows\system32\MRT
2013-10-09 14:09 - 2006-11-02 12:24 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-10-09 13:55 - 2013-10-09 11:35 - 00000000 ____D C:\Users\sabrina\Desktop\Müll
2013-10-09 13:32 - 2013-09-10 09:42 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-10-09 12:52 - 2013-10-09 12:40 - 00000000 ____D C:\Program Files\Unlocker
2013-10-09 12:48 - 2013-09-10 09:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\TuneUp Software
2013-10-09 11:43 - 2009-02-16 07:15 - 00000000 ____D C:\Program Files\ASUS
2013-10-09 11:25 - 2013-10-09 11:25 - 00000866 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-10-09 11:24 - 2013-10-09 11:24 - 00000000 ____D C:\Program Files\VideoLAN
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\Documents\My Podcasts
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Sony
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\ProgramData\Sony
2013-10-08 22:27 - 2009-10-20 08:58 - 00000000 ____D C:\Users\sabrina\AppData\Local\Sony
2013-10-08 19:34 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-10-08 19:15 - 2006-11-02 14:42 - 00000000 ____D C:\Windows\WindowsMobile
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Windows\system32\msmq
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\inetpub
2013-10-08 18:39 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\ShellNew
2013-10-08 18:39 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\inetsrv
2013-10-08 18:39 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Help
2013-10-08 18:38 - 2010-05-07 22:59 - 00005528 ___SH C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneNote Inhaltsverzeichnis.onetoc2
2013-10-07 14:08 - 2013-10-07 13:55 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:51 - 2013-10-05 19:45 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-01 16:02 - 2013-10-01 16:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-01 14:27 - 2013-10-01 14:27 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-01 14:26 - 2013-10-01 14:26 - 00000000 ____D C:\Program Files\Avira
2013-10-01 14:26 - 2013-04-23 19:25 - 00000000 ____D C:\ProgramData\Avira
2013-09-30 11:01 - 2013-10-01 14:26 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-09-30 11:01 - 2013-10-01 14:26 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-27 13:36 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Winamp
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:21 - 2013-09-26 07:20 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-24 09:41 - 2013-09-24 09:41 - 00002012 _____ C:\Users\sabrina\Desktop\Chrome-App-Übersicht.lnk
2013-09-22 12:53 - 2011-07-24 13:38 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\888poker
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2013-09-22 12:43 - 2009-02-16 06:18 - 00000000 ____D C:\Program Files\Google
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-22 12:29 - 2013-10-09 15:08 - 12336128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-22 12:22 - 2013-10-09 15:08 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-22 12:22 - 2013-10-09 15:08 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-22 12:14 - 2013-10-09 15:08 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-22 12:13 - 2013-10-09 15:08 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-22 12:13 - 2013-10-09 15:08 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-22 12:12 - 2013-10-09 15:08 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-22 12:09 - 2013-10-09 15:08 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-22 12:08 - 2013-10-09 15:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-22 12:07 - 2013-10-09 15:08 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-22 12:06 - 2013-10-09 15:08 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-22 12:05 - 2013-10-09 15:08 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-22 12:03 - 2013-10-09 15:08 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-22 12:03 - 2013-10-09 15:08 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-22 12:03 - 2013-10-09 15:08 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-22 11:59 - 2013-10-09 15:08 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-21 14:47 - 2013-09-21 14:24 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-20 23:39 - 2013-09-17 07:01 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-20 15:12 - 2013-09-13 09:18 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-20 07:13 - 2009-03-20 15:40 - 00000000 ____D C:\Users\sabrina\AppData\Local\Adobe
2013-09-20 07:09 - 2013-09-16 11:53 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:48 - 2013-09-19 08:03 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:44 - 2013-09-17 07:46 - 00000000 ____D C:\ProgramData\Acronis
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 07:30 - 2013-09-14 17:24 - 00000000 ____D C:\Windows\pss
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:46 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-17 05:49 - 2013-09-14 13:45 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-16 22:47 - 2009-04-20 06:51 - 00001356 _____ C:\Users\sabrina\AppData\Local\d3d9caps.dat
2013-09-16 22:11 - 2009-02-16 04:55 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-09-16 15:33 - 2012-02-17 19:20 - 00000000 ____D C:\Windows\system32\Adobe
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001916 _____ C:\Users\Public\Desktop\Google Slides.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001912 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2013-09-16 11:51 - 2013-09-16 11:51 - 00001900 _____ C:\Users\Public\Desktop\Google Docs.lnk
2013-09-16 11:51 - 2009-03-20 15:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Google
2013-09-14 13:45 - 2006-11-02 13:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-09-13 21:42 - 2013-09-13 21:42 - 00000000 ____D C:\Windows\system32\Extensions
2013-09-13 21:34 - 2010-11-03 19:44 - 00000000 ____D C:\Windows\Minidump
2013-09-13 21:20 - 2013-09-13 21:20 - 00000000 ____D C:\Users\sabrina\AppData\Local\Freemium
2013-09-13 19:04 - 2013-09-13 19:04 - 00000000 ____D C:\Program Files\Covus Freemium
2013-09-13 19:02 - 2013-09-13 19:02 - 00000171 _____ C:\Users\sabrina\Desktop\Amazon.url
2013-09-13 17:26 - 2013-09-11 17:28 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-13 17:26 - 2013-09-11 17:28 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-13 14:26 - 2008-04-16 13:27 - 00000000 ____D C:\Windows\Panther
2013-09-13 11:24 - 2013-09-13 11:21 - 00001383 _____ C:\Users\sabrina\Desktop\Basti.lnk
2013-09-13 11:20 - 2013-09-13 11:20 - 00458541 _____ C:\Users\Basti\Startseite Google Chrome.htm
2013-09-13 09:24 - 2013-09-13 09:24 - 00000950 _____ C:\Users\sabrina\Desktop\Dropbox.lnk
2013-09-13 09:20 - 2013-09-13 09:20 - 00000000 ____D C:\Program Files\Dropbox
2013-09-13 08:43 - 2013-09-13 08:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Avg2014
2013-09-13 08:07 - 2013-09-13 08:07 - 97443711 _____ C:\Windows\system32\㩷⭬᭄š
2013-09-12 17:40 - 2013-09-12 17:40 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-TW
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\zh-CN
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\uk-UA
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\th-TH
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sv-SE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sl-SI
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\sk-SK
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ru-RU
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ro-RO
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pt-PT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pt-BR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pl-PL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\nl-NL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\nb-NO
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\lv-LV
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\lt-LT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ko-KR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ja-JP
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\it-IT
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\hu-HU
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\hr-HR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\he-IL
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fi-FI
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\et-EE
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\el-GR
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\bg-BG
2013-09-12 17:40 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\ar-SA
2013-09-12 17:39 - 2013-09-12 17:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-09-12 17:39 - 2008-04-16 13:11 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2013-09-12 17:39 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-09-12 17:39 - 2006-11-02 13:18 - 00000000 ____D C:\Program Files\Common Files\System
2013-09-12 17:38 - 2013-09-12 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-09-12 15:41 - 2013-09-12 15:41 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-12 15:41 - 2013-09-12 15:41 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-12 15:41 - 2013-09-12 15:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 15:41 - 2013-09-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-12 15:41 - 2013-09-12 15:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-12 15:41 - 2013-09-12 15:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-12 15:41 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-09-12 15:41 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-09-12 15:40 - 2013-09-12 15:40 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-12 15:40 - 2013-09-12 15:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-09-12 15:39 - 2013-09-12 15:39 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-09-12 15:39 - 2013-09-12 15:39 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-09-12 15:39 - 2013-09-12 15:39 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-09-12 15:37 - 2013-09-12 15:37 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-09-12 15:37 - 2013-09-12 15:37 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-12 13:06 - 2013-09-12 13:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\avgchrome
2013-09-11 20:53 - 2009-03-22 15:43 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-11 17:29 - 2013-09-11 17:29 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-11 17:17 - 2013-09-11 17:17 - 00000000 ____D C:\Windows\system32\searchplugins
2013-09-11 17:15 - 2013-09-11 17:15 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\UpdaterEX
Some content of TEMP:
====================
C:\Users\sabrina\AppData\Local\temp\avgnt.exe
C:\Users\sabrina\AppData\Local\temp\Quarantine.exe
C:\Users\sabrina\AppData\Local\temp\TUUUninstallHelper.exe
C:\Users\sabrina\AppData\Local\temp\uninst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-11 11:16
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- So jetzt weiss ich Bescheid. Neue Seite! Bin ja mal ganzn Heller  Das Problem mit dem WLAN ist erledigt, hab bisschen rumgesucht und das Problem selbst gefunden. |
|
12.10.2013, 15:28
| #12 |
| /// the machine /// TB-Ausbilder | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Gut Chrome deinstallieren, keine Daten behalten, neu installieren, frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
14.10.2013, 07:30
| #13 |
| | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by sabrina (administrator) on SABRINA-PC on 14-10-2013 08:19:33
Running from C:\Users\sabrina\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
() C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
() C:\Program Files\ATK Hotkey\ASLDRSrv.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\system32\mqsvc.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
() C:\Program Files\ATK Hotkey\HControlUser.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ATK0100) C:\Program Files\ATK Hotkey\Hcontrol.exe
() C:\Program Files\ATK Hotkey\MsgTranAgt.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ATK Hotkey\KBFiltr.exe
() C:\Program Files\ATK Hotkey\WDC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HControlUser] - C:\Program Files\ATK Hotkey\HcontrolUser.exe [98304 2008-01-12] ()
HKLM\...\Run: [CLMLServer] - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [104936 2008-07-19] (CyberLink)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-12-06] (Synaptics, Inc.)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6111232 2008-04-17] (Realtek Semiconductor)
HKLM\...\Run: [P2Go_Menu] - "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ATKOSD2\ATKOSD2.exe [7766016 2008-01-24] ()
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2008-02-02] ()
HKLM\...\Run: [Adobe Photo Downloader] - C:\Photoshop\3.2\Apps\apdproxy.exe [57344 2007-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdcBase.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [39792 2008-10-15] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-09-30] (Avira Operations GmbH & Co. KG)
HKCU\...\Run: [Google Update] - C:\Users\sabrina\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-14] (Google Inc.)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
IMEO\AcroRd32.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\excel.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\mediabuilder.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\msoxmled.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\mstore.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\offdiag.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\ois.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\onenote.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\photodrw.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\powerpnt.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\systemreport.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\trueimagelauncher.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\trueimagetools.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\winpe_iso.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
IMEO\winword.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"
Startup: C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Inhaltsverzeichnis.onetoc2 ()
==================== Internet (Whitelisted) ====================
ProxyServer: http=85.214.84.220:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {8A245F63-D5D8-4835-ADCE-80E1B4EEFEC1} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
BHO: Browser Guard - {02a0d829-4393-46fc-a37e-126263035883} - C:\Program Files\Browser Guard\browserguard.dll (Browser Guard)
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU -&Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 19 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\sabrina\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\sabrina\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF Extension: Lyrics Seeker - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\133
FF Extension: Web Check - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\WebCheck
FF Extension: Adblock Plus - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF Extension: Block site - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc}
FF Extension: No Name - C:\Users\sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\fdovh50e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20d1f7b3-7721-4da0-b6f3-78bb4d7248f4}] - C:\Program Files\Browser Guard\browserguard.xpi
FF Extension: No Name - C:\Program Files\Browser Guard\browserguard.xpi
Chrome:
=======
CHR Extension: (Docs) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Browser Guard) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfepagcelbegkpkcjgfeecmlnmkedjin\0.1_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM\...\Chrome\Extension: [kfepagcelbegkpkcjgfeecmlnmkedjin] - C:\Program Files\Browser Guard\browserguard.crx
========================== Services (Whitelisted) =================
S4 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [778000 2013-07-18] (Acronis)
R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728 2007-05-18] ()
S4 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3906552 2013-09-17] (Acronis)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-09-30] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-03] ()
S4 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 MSMQ; C:\Windows\system32\mqsvc.exe [8704 2006-11-02] (Microsoft Corporation)
S4 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [9745008 2013-08-21] (Acronis)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1740600 2013-08-28] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R0 AsDsm; C:\Windows\System32\Drivers\AsDsm.sys [29752 2007-08-11] (Windows (R) Codename Longhorn DDK provider)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-09-30] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-09-30] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
S3 CRFILTER; C:\Windows\System32\DRIVERS\CRFILTER.sys [6656 2008-04-07] (Generic)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [99400 2013-09-26] (MotioninJoy)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [126976 2008-01-21] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [104616 2008-11-04] (MCCI Corporation)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1769984 2007-10-01] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-09-30] (Avira GmbH)
S3 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [889888 2013-09-17] (Acronis International GmbH)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [736192 2013-09-17] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [130488 2013-09-17] (Acronis)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-08-21] (TuneUp Software)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [116000 2013-09-17] (Acronis International GmbH)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [85280 2013-09-17] (Acronis International GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\Users\sabrina\AppData\Local\Temp\catchme.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-14 08:19 - 2013-10-10 16:55 - 01087213 _____ (Farbar) C:\Users\sabrina\Desktop\FRST.exe
2013-10-14 08:18 - 2013-10-14 08:18 - 00002059 _____ C:\Users\sabrina\Desktop\Google Chrome.lnk
2013-10-14 08:18 - 2013-10-14 08:18 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-14 08:17 - 2013-10-14 08:17 - 00000916 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2942979523-3749123584-2221922431-1000UA.job
2013-10-14 08:17 - 2013-10-14 08:17 - 00000864 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2942979523-3749123584-2221922431-1000Core.job
2013-10-11 15:20 - 2013-10-11 15:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-11 15:11 - 2013-10-11 15:11 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-11 15:11 - 2013-10-11 15:11 - 00000000 ____D C:\ProgramData\Avira
2013-10-11 15:11 - 2013-10-11 15:11 - 00000000 ____D C:\Program Files\Avira
2013-10-11 15:11 - 2013-09-30 11:01 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-11 15:11 - 2013-09-30 11:01 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-11 15:11 - 2013-09-30 11:01 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-11 15:11 - 2013-09-30 11:01 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-10-11 14:57 - 2013-10-11 14:57 - 00001309 _____ C:\Users\sabrina\Desktop\Alle TuneUp Funktionen.lnk
2013-10-11 14:55 - 2013-10-11 14:55 - 00001876 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-10-11 14:55 - 2013-10-11 14:55 - 00001872 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2013-10-11 14:55 - 2013-08-28 20:32 - 00036664 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-10-11 14:55 - 2013-08-28 20:32 - 00025400 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-10-11 14:52 - 2013-10-11 14:55 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014
2013-10-11 14:49 - 2013-10-12 13:49 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-10-11 13:55 - 2013-10-11 13:55 - 00000000 ____D C:\FRST
2013-10-10 16:39 - 2013-10-11 10:52 - 00000000 ____D C:\Windows\ERUNT
2013-10-10 09:51 - 2013-10-10 09:51 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Malwarebytes
2013-10-09 17:28 - 2013-10-09 17:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\IObit
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setupact.log
2013-10-09 16:05 - 2013-10-11 08:48 - 00000000 ____D C:\Users\sabrina\AppData\Local\temp(1751)
2013-10-09 16:05 - 2013-10-09 16:05 - 00024371 _____ C:\ComboFix.txt
2013-10-09 15:46 - 2013-10-09 16:05 - 00000000 ____D C:\ComboFix(1)
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Downloads\Downloads - Verknüpfung.lnk
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Documents\Dokumente - Verknüpfung.lnk
2013-10-09 15:08 - 2013-09-22 12:29 - 12336128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-09 15:08 - 2013-09-22 12:22 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-09 15:08 - 2013-09-22 12:22 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-09 15:08 - 2013-09-22 12:14 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-09 15:08 - 2013-09-22 12:13 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-09 15:08 - 2013-09-22 12:13 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-09 15:08 - 2013-09-22 12:12 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-09 15:08 - 2013-09-22 12:09 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-09 15:08 - 2013-09-22 12:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-09 15:08 - 2013-09-22 12:07 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-09 15:08 - 2013-09-22 12:06 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-09 15:08 - 2013-09-22 12:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-09 15:08 - 2013-09-22 12:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-09 15:08 - 2013-09-22 12:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-09 15:08 - 2013-09-22 12:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-09 15:08 - 2013-09-22 11:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-09 14:57 - 2013-10-09 14:57 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 14:52 - 2013-10-11 15:55 - 00111044 _____ C:\Windows\PFRO.log
2013-10-09 14:52 - 2013-10-09 14:53 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 14:00 - 2013-08-29 09:56 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2013-10-09 14:00 - 2013-08-27 04:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-09 14:00 - 2013-08-27 04:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-09 14:00 - 2013-08-27 03:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-09 14:00 - 2013-08-27 03:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-09 14:00 - 2013-08-27 03:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-09 14:00 - 2013-08-27 03:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-09 14:00 - 2013-08-27 03:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-09 14:00 - 2013-07-03 04:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-09 14:00 - 2013-07-03 04:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 14:00 - 2013-06-29 04:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 14:00 - 2013-06-29 04:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 14:00 - 2011-05-05 15:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 14:00 - 2011-05-05 15:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-09 13:59 - 2013-08-29 09:36 - 02050048 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 13:59 - 2013-08-01 05:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 13:59 - 2013-08-01 04:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-09 13:59 - 2013-07-20 12:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 13:59 - 2013-07-12 11:04 - 00134272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-09 13:59 - 2013-07-04 06:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 13:59 - 2013-06-27 01:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 13:59 - 2013-06-04 06:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 13:59 - 2013-06-04 03:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 13:28 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-09 13:28 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-09 13:28 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-09 13:28 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-09 13:11 - 2013-10-09 16:05 - 00000000 ____D C:\Qoobox
2013-10-09 13:10 - 2013-10-11 10:52 - 00000000 ____D C:\Windows\erdnt
2013-10-09 12:52 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-10-09 12:40 - 2013-10-11 15:02 - 00000000 ____D C:\Program Files\Unlocker
2013-10-09 11:35 - 2013-10-09 13:55 - 00000000 ____D C:\Users\sabrina\Desktop\Müll
2013-10-09 11:26 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\vlc
2013-10-09 11:25 - 2013-10-09 11:25 - 00000866 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-10-09 11:24 - 2013-10-09 11:24 - 00000000 ____D C:\Program Files\VideoLAN
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\Documents\My Podcasts
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Sony
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\ProgramData\Sony
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Windows\system32\msmq
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\inetpub
2013-10-08 18:34 - 2013-10-12 15:33 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-07 13:55 - 2013-10-07 14:08 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-10-05 19:45 - 2013-10-05 19:51 - 00000000 ____D C:\Program Files\PDFCreator
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-27 13:34 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-09-27 13:34 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:20 - 2013-09-26 07:21 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-26 07:20 - 2010-08-19 19:24 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00255496 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2013-09-26 07:20 - 2010-08-19 19:24 - 00061984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-21 14:24 - 2013-09-21 14:47 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:09 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-09-19 08:09 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-09-19 08:03 - 2013-09-19 08:48 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:02 - 2013-10-11 09:00 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\OpenCandy
2013-09-19 08:02 - 2013-09-27 13:36 - 00000000 ____D C:\Program Files\Winamp
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 07:48 - 2013-10-11 10:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-19 08:44 - 00000000 ____D C:\ProgramData\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:45 - 2013-09-17 07:46 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-20 23:39 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-16 11:53 - 2013-09-20 07:09 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-14 17:24 - 2013-09-19 07:30 - 00000000 ____D C:\Windows\pss
2013-09-14 13:45 - 2013-09-17 05:49 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
==================== One Month Modified Files and Folders =======
2013-10-14 08:20 - 2013-09-10 11:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-14 08:18 - 2013-10-14 08:18 - 00002059 _____ C:\Users\sabrina\Desktop\Google Chrome.lnk
2013-10-14 08:18 - 2013-10-14 08:18 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-14 08:17 - 2013-10-14 08:17 - 00000916 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2942979523-3749123584-2221922431-1000UA.job
2013-10-14 08:17 - 2013-10-14 08:17 - 00000864 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2942979523-3749123584-2221922431-1000Core.job
2013-10-14 08:17 - 2009-03-20 15:43 - 00000000 ____D C:\Users\sabrina\AppData\Local\Google
2013-10-14 08:01 - 2009-02-16 06:18 - 00000000 ____D C:\Program Files\Google
2013-10-14 07:15 - 2009-02-16 04:31 - 01477877 _____ C:\Windows\WindowsUpdate.log
2013-10-14 07:10 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-14 07:10 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-14 07:10 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-12 15:33 - 2013-10-08 18:34 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-10-12 15:33 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-12 13:49 - 2013-10-11 14:49 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-10-12 12:49 - 2006-11-02 12:33 - 01539230 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-11 15:55 - 2013-10-09 14:52 - 00111044 _____ C:\Windows\PFRO.log
2013-10-11 15:20 - 2013-10-11 15:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Avira
2013-10-11 15:11 - 2013-10-11 15:11 - 00001854 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-11 15:11 - 2013-10-11 15:11 - 00000000 ____D C:\ProgramData\Avira
2013-10-11 15:11 - 2013-10-11 15:11 - 00000000 ____D C:\Program Files\Avira
2013-10-11 15:02 - 2013-10-09 12:40 - 00000000 ____D C:\Program Files\Unlocker
2013-10-11 14:57 - 2013-10-11 14:57 - 00001309 _____ C:\Users\sabrina\Desktop\Alle TuneUp Funktionen.lnk
2013-10-11 14:55 - 2013-10-11 14:55 - 00001876 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-10-11 14:55 - 2013-10-11 14:55 - 00001872 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2013-10-11 14:55 - 2013-10-11 14:52 - 00000000 ____D C:\Program Files\TuneUp Utilities 2014
2013-10-11 14:49 - 2013-09-10 09:42 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-10-11 13:55 - 2013-10-11 13:55 - 00000000 ____D C:\FRST
2013-10-11 13:54 - 2009-03-20 20:55 - 00001894 _____ C:\Users\Public\Desktop\Adobe Reader 8.lnk
2013-10-11 11:01 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-10-11 11:00 - 2006-11-02 12:22 - 46923776 _____ C:\Windows\system32\config\software_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 45613056 _____ C:\Windows\system32\config\components_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 20971520 _____ C:\Windows\system32\config\system_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2013-10-11 11:00 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-10-11 10:52 - 2013-10-10 16:39 - 00000000 ____D C:\Windows\ERUNT
2013-10-11 10:52 - 2013-10-09 13:10 - 00000000 ____D C:\Windows\erdnt
2013-10-11 10:52 - 2013-10-09 12:52 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-10-11 10:52 - 2013-10-09 11:26 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\vlc
2013-10-11 10:52 - 2013-09-28 13:58 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-10-11 10:52 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Winamp
2013-10-11 10:52 - 2013-09-27 13:34 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-10-11 10:52 - 2013-09-19 07:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\streamripper
2013-10-11 10:52 - 2013-09-13 09:24 - 00000000 ___RD C:\Users\sabrina\Dropbox
2013-10-11 10:52 - 2013-09-13 09:19 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-10-11 10:52 - 2011-07-24 14:30 - 00000000 ____D C:\Users\sabrina\AppData\Local\PokerStars.NET
2013-10-11 10:52 - 2010-06-05 10:33 - 00000000 ____D C:\Users\sabrina\AppData\Local\PokerStars.EU
2013-10-11 10:52 - 2009-03-20 15:37 - 00000000 ___RD C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-11 10:52 - 2009-03-20 15:37 - 00000000 ___RD C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-11 10:52 - 2009-03-20 15:37 - 00000000 ____D C:\Users\sabrina
2013-10-11 10:52 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media
2013-10-11 10:52 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2013-10-11 10:52 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-10-11 10:51 - 2009-02-16 07:21 - 00000000 ____D C:\ProgramData\P4G
2013-10-11 10:50 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2013-10-11 10:42 - 2009-03-20 15:37 - 00000000 ____D C:\Users\sabrina\AppData\Local\Temp(1752)
2013-10-11 09:00 - 2013-09-19 08:02 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\OpenCandy
2013-10-11 09:00 - 2013-09-11 17:13 - 00000000 ____D C:\Program Files\Delta
2013-10-11 08:48 - 2013-10-09 16:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\temp(1751)
2013-10-10 16:55 - 2013-10-14 08:19 - 01087213 _____ (Farbar) C:\Users\sabrina\Desktop\FRST.exe
2013-10-10 09:51 - 2013-10-10 09:51 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Malwarebytes
2013-10-09 17:28 - 2013-10-09 17:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\IObit
2013-10-09 16:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-09 16:32 - 2013-10-09 16:32 - 00000000 _____ C:\Windows\setupact.log
2013-10-09 16:05 - 2013-10-09 16:05 - 00024371 _____ C:\ComboFix.txt
2013-10-09 16:05 - 2013-10-09 15:46 - 00000000 ____D C:\ComboFix(1)
2013-10-09 16:05 - 2013-10-09 13:11 - 00000000 ____D C:\Qoobox
2013-10-09 16:05 - 2013-09-13 11:19 - 00000000 ____D C:\Users\Basti
2013-10-09 16:05 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-10-09 16:02 - 2006-11-02 12:23 - 00000215 _____ C:\Windows\system.ini
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Downloads\Downloads - Verknüpfung.lnk
2013-10-09 15:19 - 2013-10-09 15:19 - 00000396 _____ C:\Users\sabrina\Documents\Dokumente - Verknüpfung.lnk
2013-10-09 14:57 - 2013-10-09 14:57 - 00105472 _____ C:\Users\sabrina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 14:56 - 2009-02-16 07:29 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2013-10-09 14:53 - 2013-10-09 14:52 - 00386416 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 14:20 - 2013-09-10 11:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-09 14:20 - 2013-09-10 11:13 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 14:13 - 2013-08-17 17:52 - 00000000 ____D C:\Windows\system32\MRT
2013-10-09 14:09 - 2006-11-02 12:24 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-10-09 13:55 - 2013-10-09 11:35 - 00000000 ____D C:\Users\sabrina\Desktop\Müll
2013-10-09 12:48 - 2013-09-10 09:48 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\TuneUp Software
2013-10-09 11:43 - 2009-02-16 07:15 - 00000000 ____D C:\Program Files\ASUS
2013-10-09 11:25 - 2013-10-09 11:25 - 00000866 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-10-09 11:24 - 2013-10-09 11:24 - 00000000 ____D C:\Program Files\VideoLAN
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\Documents\My Podcasts
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Sony
2013-10-08 22:27 - 2013-10-08 22:27 - 00000000 ____D C:\ProgramData\Sony
2013-10-08 22:27 - 2009-10-20 08:58 - 00000000 ____D C:\Users\sabrina\AppData\Local\Sony
2013-10-08 19:34 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-10-08 19:15 - 2006-11-02 14:42 - 00000000 ____D C:\Windows\WindowsMobile
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Windows\system32\msmq
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-08 18:39 - 2013-10-08 18:39 - 00000000 ____D C:\inetpub
2013-10-08 18:39 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\ShellNew
2013-10-08 18:39 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\inetsrv
2013-10-08 18:39 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Help
2013-10-08 18:38 - 2010-05-07 22:59 - 00005528 ___SH C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneNote Inhaltsverzeichnis.onetoc2
2013-10-07 14:08 - 2013-10-07 13:55 - 00000171 _____ C:\Users\sabrina\Desktop\Zalando.url
2013-10-07 14:06 - 2013-10-07 14:06 - 00000156 _____ C:\Users\sabrina\Desktop\check24.url
2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\Users\sabrina\AppData\Local\Software Updater
2013-10-07 13:56 - 2013-10-07 13:56 - 00000000 ____D C:\Program Files\Browser Guard
2013-10-05 19:53 - 2013-10-05 19:53 - 00000000 ____D C:\Program Files\Common Files\PDF Architect
2013-10-05 19:51 - 2013-10-05 19:45 - 00000000 ____D C:\Program Files\PDFCreator
2013-10-05 19:49 - 2013-10-05 19:49 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\PDF Architect
2013-09-30 11:01 - 2013-10-11 15:11 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-30 11:01 - 2013-10-11 15:11 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-30 11:01 - 2013-10-11 15:11 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-09-30 11:01 - 2013-10-11 15:11 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-09-28 13:59 - 2013-09-28 13:59 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\WinRAR
2013-09-28 13:58 - 2013-09-28 13:58 - 00000000 ____D C:\Program Files\WinRAR
2013-09-27 13:36 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Winamp
2013-09-27 13:34 - 2013-09-27 13:34 - 00000000 ____D C:\Program Files\Winamp Detect
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-09-26 07:36 - 2013-09-26 07:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-09-26 07:21 - 2013-09-26 07:20 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-09-26 07:20 - 2013-09-26 07:20 - 00000918 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\MotioninJoy
2013-09-26 07:20 - 2013-09-26 07:20 - 00000000 ____D C:\Program Files\MotioninJoy
2013-09-24 15:06 - 2013-09-24 15:06 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Need for Speed World
2013-09-24 14:56 - 2013-09-24 14:56 - 00000000 ____D C:\Users\sabrina\AppData\Local\Electronic_Arts_Inc
2013-09-22 12:53 - 2011-07-24 13:38 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\888poker
2013-09-22 12:50 - 2013-09-22 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi2_01_00_00.Wdf
2013-09-22 12:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2013-09-22 12:41 - 2013-09-22 12:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdRapi_01_00_00.Wdf
2013-09-22 12:29 - 2013-10-09 15:08 - 12336128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-22 12:22 - 2013-10-09 15:08 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-22 12:22 - 2013-10-09 15:08 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-22 12:14 - 2013-10-09 15:08 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-22 12:13 - 2013-10-09 15:08 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-22 12:13 - 2013-10-09 15:08 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-22 12:12 - 2013-10-09 15:08 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-22 12:09 - 2013-10-09 15:08 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-22 12:08 - 2013-10-09 15:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-22 12:07 - 2013-10-09 15:08 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-22 12:06 - 2013-10-09 15:08 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-22 12:05 - 2013-10-09 15:08 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-22 12:03 - 2013-10-09 15:08 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-22 12:03 - 2013-10-09 15:08 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-22 12:03 - 2013-10-09 15:08 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-22 11:59 - 2013-10-09 15:08 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-21 14:47 - 2013-09-21 14:24 - 00000000 ____D C:\Program Files\Stream Recorder .Net
2013-09-21 14:35 - 2013-09-21 14:35 - 00000000 ____D C:\Users\sabrina\AppData\Local\StreamRecorder
2013-09-20 23:39 - 2013-09-17 07:01 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\YoWindow
2013-09-20 22:36 - 2013-09-20 22:36 - 00000104 _____ C:\Users\sabrina\Desktop\Papierkorb.lnk
2013-09-20 15:12 - 2013-09-13 09:18 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Dropbox
2013-09-20 07:13 - 2009-03-20 15:40 - 00000000 ____D C:\Users\sabrina\AppData\Local\Adobe
2013-09-20 07:09 - 2013-09-16 11:53 - 00000000 ___RD C:\Users\sabrina\Google Drive
2013-09-19 09:35 - 2013-09-19 09:35 - 00000000 ____D C:\Program Files\Streamripper
2013-09-19 09:06 - 2013-09-19 09:06 - 00000000 ____D C:\Users\sabrina\AppData\Local\Apps\2.0
2013-09-19 08:48 - 2013-09-19 08:03 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-19 08:44 - 2013-09-17 07:46 - 00000000 ____D C:\ProgramData\Acronis
2013-09-19 08:13 - 2013-09-19 08:13 - 00000134 _____ C:\Users\sabrina\Desktop\Programme und Funktionen.lnk
2013-09-19 08:09 - 2013-09-19 08:09 - 00000783 _____ C:\Users\Public\Desktop\Winamp.lnk
2013-09-19 08:02 - 2013-09-19 08:02 - 00000000 ____D C:\Program Files\Common Files\PX Storage Engine
2013-09-19 07:30 - 2013-09-14 17:24 - 00000000 ____D C:\Windows\pss
2013-09-19 07:28 - 2013-09-19 07:28 - 00000000 ____D C:\Users\sabrina\AppData\Roaming\Acronis
2013-09-17 07:46 - 2013-09-17 07:46 - 00889888 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00736192 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00234752 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00185120 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00130488 _____ (Acronis) C:\Windows\system32\Drivers\tib_mounter.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vididr.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00086304 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00085280 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\vidsflt.sys
2013-09-17 07:46 - 2013-09-17 07:46 - 00001011 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2013-09-17 07:46 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Common Files\Acronis
2013-09-17 07:45 - 2013-09-17 07:45 - 00000000 ____D C:\Program Files\Acronis
2013-09-17 07:01 - 2013-09-17 07:01 - 00000807 _____ C:\Users\Public\Desktop\YoWindow.lnk
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\ProgramData\YoWindow
2013-09-17 07:01 - 2013-09-17 07:01 - 00000000 ____D C:\Program Files\YoWindow
2013-09-17 05:49 - 2013-09-14 13:45 - 00000680 __RSH C:\Users\sabrina\ntuser.pol
2013-09-16 22:47 - 2009-04-20 06:51 - 00001356 _____ C:\Users\sabrina\AppData\Local\d3d9caps.dat
2013-09-16 22:11 - 2009-02-16 04:55 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-09-16 15:33 - 2012-02-17 19:20 - 00000000 ____D C:\Windows\system32\Adobe
2013-09-16 11:53 - 2013-09-16 11:53 - 00001519 _____ C:\Users\sabrina\Desktop\Google Drive.lnk
2013-09-14 13:45 - 2006-11-02 13:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
Some content of TEMP:
====================
C:\Users\sabrina\AppData\Local\temp\avgnt.exe
C:\Users\sabrina\AppData\Local\temp\Quarantine.exe
C:\Users\sabrina\AppData\Local\temp\uninst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-14 07:16
==================== End Of Log ============================
--- --- --- Morgen. Bei mir erscheint - Entfernen Qvo6 Qvo6 Entfernungs-Tool - Runterladen Soll ich das tun? |
|
14.10.2013, 14:08
| #14 |
| /// the machine /// TB-Ausbilder | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Nein, das ist Werbung!! in welchem Browser?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
15.10.2013, 06:42
| #15 |
| | Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? Chrome! Hab ihn doch deinstalliert, wieder neu installier und Dir ein jungfräuliches FRT Log geschickt |
|
| Themen zu Software UpdaterUi.exe - was ist das? Entfernen? Schädlich? |
| entferne, entfernen, erkenn, erkennt, gefunde, problem, programm, pup.bprotector, pup.optional.1clickdownload.a, pup.optional.babsolution.a, pup.optional.babylon.a, pup.optional.bprotector.a, pup.optional.browsefox.a, pup.optional.browserprotect.a, pup.optional.crossrider, pup.optional.datamngr.a, pup.optional.delta, pup.optional.delta.a, pup.optional.installcore.a, pup.optional.opencandy, schädlich, software |
WARNUNG an die MITLESER: 
Linear-Darstellung
