Fehleranzeige: Ungültiges Bild bei Programmstart

Stef4 · 11.11.2013, 21:21

Hallo,

im voraus möchte ich erwähnen, dass das Problem sich auf dem Laptop (Windows 7) meiner Freundin abspielt, die sich derzeit in Peking aufhält. Insofern ist es schwierig Hilfestellungen, die die Windows Installations DVD benötigen, nachzugehen.

Das Problem ist nun, dass bei jedem Programmstart ein Fehler namens "Ungültiges Bild" erscheint und nicht mehr verschwindet.

Hier ein Beispiel:

Die xxx.dll Datei ist je nach Programm unterschiedlich.Manche Programme wie z.B. Skype lassen sich gar nicht öffnen. Manche lassen sich öffnen,aber es erscheint trotzdem eine Fehlermeldung. Wisst ihr wo das Problem liegen könnte? Eventuell ein Fehler der nach einem Windows-Update zustande gekommen ist? Ein Virus?

Wäre schön, wenn eine einfache schnelle Lösung möglich wäre, da meine Freundin den Laptop dringend benötigt.

Über Microsoft Security Essentials wurde meines Wissens kein Virus gefunden und adwcleaner konnte auch nicht weiterhelfen.

Vielen Dank.

Gruß
Stef4

schrauber · 11.11.2013, 23:17

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Stef4 · 12.11.2013, 07:53

Guten Morgen,

hier sind die Dateien.

FRST.txt

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-11-2013 01
Ran by Jenny (administrator) on ALFRED on 12-11-2013 08:03:32
Running from C:\Users\Jenny\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AuthenTec, Inc.) C:\Program Files\Fingerprint Sensor\ATService.exe
(ABBYY) C:\Program Files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\PSUtility\TrayManager.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe
(Sonix) C:\Windows\vsnp2uvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(O2Micro International) C:\Windows\SysWOW64\o2flash.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\PSUtility\PSUService.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(AuthenTec, Inc.) C:\Program Files\Fingerprint Sensor\ATSwpNav.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Fujitsu Technology Solutions) C:\Program Files (x86)\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
() C:\Program Files\Fujitsu\WirelessSelector\WSUService.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(ABBYY) C:\Program Files (x86)\ABBYY PDF Transformer 3.0\Bonus.ScreenshotReader.exe
(Dropbox, Inc.) C:\Users\Jenny\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(FUJITSU LIMITED) C:\Program Files (x86)\Fujitsu\FUJ02E3\FUJ02E3.exe
(FUJITSU LIMITED) C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\Application Panel\BtnHndHkb.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Mozilla Corporation) D:\Mozilla Firefox\firefox.exe
(Mozilla Corporation) D:\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1861416 2009-10-09] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8312352 2009-10-28] (Realtek Semiconductor)
HKLM\...\Run: [PSUTility] - C:\Program Files\Fujitsu\PSUtility\TrayManager.exe [188264 2009-07-30] (FUJITSU LIMITED)
HKLM\...\Run: [FDM7] - C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe [164712 2009-10-27] (FUJITSU LIMITED)
HKLM\...\Run: [LoadFujitsuQuickTouch] - C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe [157544 2009-10-15] (FUJITSU LIMITED)
HKLM\...\Run: [LoadBtnHnd] - C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe [35176 2009-10-15] (FUJITSU LIMITED)
HKLM\...\Run: [snp2uvc] - C:\Windows\vsnp2uvc.exe [662016 2009-08-12] (Sonix)
HKLM\...\Run: [ATSwpNav] - "C:\Program Files\Fingerprint Sensor\ATSwpNav" -run
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-08-12] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [LtMoh] - C:\Program Files\ltmoh\ltmoh.exe [195080 2009-12-04] (LSI Corp.)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [ABBYY Screenshot Reader Bonus] - C:\Program Files (x86)\ABBYY PDF Transformer 3.0\Bonus.ScreenshotReader.exe [939272 2009-06-09] (ABBYY)
MountPoints2: {5076f11e-d3f2-11e1-9fdf-002314527430} - E:\AutoRun.exe
MountPoints2: {5076f128-d3f2-11e1-9fdf-002314527430} - E:\AutoRun.exe
MountPoints2: {756176e7-e78f-11e0-ba45-002314527430} - E:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {75617706-e78f-11e0-ba45-002314527430} - E:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {75d6f295-e748-11e1-a127-002314527430} - E:\AutoRun.exe
MountPoints2: {84b719c9-e85f-11e0-a194-0023268cbf99} - E:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {abedee79-d642-11e1-a0ee-002314527430} - E:\AutoRun.exe
HKLM-x32\...\Run: [LoadFUJ02E3] - C:\Program Files (x86)\Fujitsu\FUJ02E3\FUJ02E3.exe [36712 2009-06-16] (FUJITSU LIMITED)
HKLM-x32\...\Run: [IndicatorUtility] - C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe [47976 2009-10-09] (FUJITSU LIMITED)
HKLM-x32\...\Run: [snp2uvc] - C:\Windows\vsnp2uvc.exe [662016 2009-08-12] (Sonix)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Mirror Tray icon] - C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [162912 2009-07-08] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-07-05] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files (x86)\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files (x86)\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Jenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Jenny\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Jenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ts.fujitsu.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.google.com/ig/redirectdomain?brand=FTSF&bmod=FTSF
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=FTSF&bmod=FTSF
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: SwissAcademic.Citavi.Picker.IEPicker - {609D670F-B735-4da7-AC6D-F3BD358E325E} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{0AD39CFE-7B5A-4848-928F-E73F4517D6B6}: [NameServer]219.141.136.10
Tcpip\..\Interfaces\{FE5CB221-C2BA-435A-B92B-A41D04BB887C}: [NameServer]192.168.50.250

FireFox:
========
FF ProfilePath: C:\Users\Jenny\AppData\Roaming\Mozilla\Firefox\Profiles\7yj1eih8.default-1363469235082
FF Homepage: hxxp://www.handelsblatt.com/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF StartMenuInternet: FIREFOX.EXE - D:\Mozilla Firefox\firefox.exe

==================== Services (Whitelisted) =================

R2 ABBYY.Licensing.PDFTransformer.Site License.3.0; C:\Program Files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S2 FontCache; C:\Windows\system32\FntCache.dll [1175552 2013-11-11] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-08-12] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-08-12] (Microsoft Corporation)
R2 O2Flash; C:\Windows\SysWOW64\o2flash.exe [65536 2007-02-12] (O2Micro International)
R2 PowerSavingUtilityService; C:\Program Files\Fujitsu\PSUtility\PSUService.exe [63336 2009-07-30] (FUJITSU LIMITED)
R2 TestHandler; C:\Program Files (x86)\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [341264 2009-02-19] (Fujitsu Technology Solutions)
R2 WirelessSelectorService; C:\Program Files\Fujitsu\WirelessSelector\WSUService.exe [62312 2009-07-21] ()
S3 iPod Service; "C:\Program Files\iPod\bin\iPodService.exe" [x]

==================== Drivers (Whitelisted) ====================

S3 FBIOSDRV; C:\Windows\System32\Drivers\FBIOSDRV.sys [21104 2009-06-24] (FUJITSU LIMITED)
R3 FUJ02B1; C:\Windows\System32\DRIVERS\FUJ02B1.sys [7808 2006-11-01] (FUJITSU LIMITED)
R3 FUJ02E3; C:\Windows\System32\DRIVERS\FUJ02E3.sys [7296 2006-11-01] (FUJITSU LIMITED)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation)
R3 O2MDRDR; C:\Windows\System32\DRIVERS\o2mdx64.sys [58400 2009-05-13] (O2Micro )
R3 O2SCBUS; C:\Windows\System32\DRIVERS\ozscrx64.sys [107808 2009-05-15] (O2Micro)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3530624 2009-05-20] ()
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [x]
U2 wuaserv; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-12 07:11 - 2013-11-12 07:11 - 00021344 _____ C:\Users\Jenny\Desktop\Addition.txt
2013-11-12 07:09 - 2013-11-12 07:10 - 00021344 _____ C:\Users\Jenny\Downloads\Addition.txt
2013-11-12 07:05 - 2013-11-12 07:05 - 00000000 ____D C:\FRST
2013-11-12 07:02 - 2013-11-12 07:04 - 01957590 _____ (Farbar) C:\Users\Jenny\Desktop\FRST64.exe
2013-11-11 17:37 - 2013-11-12 04:47 - 00018594 ____H C:\Users\Jenny\Desktop\~WRL0004.tmp
2013-11-11 16:56 - 2013-11-11 17:37 - 00228862 _____ (TeamViewer GmbH) C:\Users\Jenny\Downloads\TeamViewer_Setup_de.exe.part
2013-11-11 16:56 - 2013-11-11 16:56 - 00000000 _____ C:\Users\Jenny\Downloads\TeamViewer_Setup_de.exe
2013-11-11 16:45 - 2013-11-11 16:45 - 00070330 _____ C:\Users\Jenny\Downloads\Extras.Txt
2013-11-11 16:44 - 2013-11-11 16:44 - 00078516 _____ C:\Users\Jenny\Downloads\OTL.Txt
2013-11-11 16:30 - 2013-11-11 16:32 - 00602112 _____ (OldTimer Tools) C:\Users\Jenny\Downloads\OTL.exe
2013-11-11 16:15 - 2013-11-11 16:18 - 00000000 ____D C:\AdwCleaner
2013-11-11 16:11 - 2013-11-11 16:13 - 01085542 _____ C:\Users\Jenny\Downloads\adwcleaner_3012.exe
2013-11-11 15:14 - 2013-11-11 15:14 - 00000524 _____ C:\Users\Jenny\Desktop\DllSuite.lnk
2013-11-11 15:14 - 2013-11-11 15:14 - 00000000 ____D C:\Users\Jenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2013
2013-11-11 14:44 - 2013-11-11 15:13 - 16215452 _____ (                                                            ) C:\Users\Jenny\Downloads\DLLSuite_Setup(1).exe
2013-11-11 10:29 - 2013-11-11 10:29 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-11 10:29 - 2013-11-11 10:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-11 10:29 - 2013-11-11 10:29 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-11 10:29 - 2013-11-11 10:29 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-11 10:29 - 2013-11-11 10:29 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-11 10:29 - 2013-11-11 10:29 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-11 10:29 - 2013-11-11 10:29 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-11 10:29 - 2013-11-11 10:29 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-11 10:29 - 2013-11-11 10:29 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-11 10:29 - 2013-11-11 10:29 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-11 10:29 - 2013-11-11 10:29 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-11 09:36 - 2013-11-11 09:36 - 00501421 _____ C:\Users\Jenny\Desktop\Business Systems.odt
2013-11-11 08:44 - 2013-11-11 08:44 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01643520 _____ C:\Windows\system32\DWrite.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01247744 _____ C:\Windows\SysWOW64\DWrite.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01238528 _____ C:\Windows\system32\d3d10.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01230336 _____ C:\Windows\SysWOW64\WindowsCodecs.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01175552 _____ C:\Windows\system32\FntCache.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01080832 _____ C:\Windows\SysWOW64\d3d10.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00604160 _____ C:\Windows\SysWOW64\d3d10level9.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00363008 _____ C:\Windows\system32\dxgi.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00333312 _____ C:\Windows\system32\d3d10_1core.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00296960 _____ C:\Windows\system32\d3d10core.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00249856 _____ C:\Windows\SysWOW64\d3d10_1core.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00245248 _____ C:\Windows\system32\WindowsCodecsExt.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00220160 _____ C:\Windows\SysWOW64\d3d10core.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00207872 _____ C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00194560 _____ C:\Windows\system32\d3d10_1.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00161792 _____ C:\Windows\SysWOW64\d3d10_1.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-11 08:40 - 2013-11-11 10:34 - 00017069 _____ C:\Windows\IE10_main.log
2013-11-11 01:50 - 2013-11-11 11:40 - 00000000 ____D C:\Users\Jenny\Desktop\Stefanos
2013-11-09 17:49 - 2013-11-09 17:50 - 00242258 _____ C:\Users\Jenny\Documents\Corporate Governance in Germany.pptx
2013-11-09 10:31 - 2013-11-09 10:31 - 00000000 ____D C:\ProgramData\Oracle
2013-11-09 10:31 - 2013-11-09 10:30 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-09 10:30 - 2013-11-09 10:30 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-09 10:30 - 2013-11-09 10:30 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-09 10:30 - 2013-11-09 10:30 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-09 10:30 - 2013-11-09 10:30 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-07 04:40 - 2013-11-07 04:55 - 02586695 _____ C:\Users\Jenny\Downloads\Martin_Kokoschka_Heinz_Nixdorf_Institut-data.pdf;jsessionid=DA74B36BE7E8E1D2C5B8AAB10DBE9F9D.repl2
2013-11-04 14:04 - 2013-11-12 04:21 - 04650565 _____ C:\Users\Jenny\Documents\Product- and Brand Piracy.pptx
2013-10-25 05:08 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-25 05:08 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-25 05:08 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-25 05:08 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-25 05:08 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-25 05:08 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-25 05:08 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-23 11:09 - 2013-10-23 11:14 - 00043392 _____ C:\Users\Jenny\Downloads\china_rahmenbedingungen_technologietransfer.pdf.part
2013-10-18 04:42 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-10-17 14:40 - 2013-02-27 07:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-10-17 14:40 - 2013-02-27 06:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-17 14:40 - 2013-02-27 06:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-10-17 14:40 - 2013-02-27 05:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-10-17 13:09 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-10-17 13:09 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-10-17 13:09 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-10-17 13:09 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-10-17 10:50 - 2013-05-13 06:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-10-17 10:50 - 2013-05-13 04:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-17 10:50 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-10-17 10:50 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-10-17 04:01 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-10-17 03:57 - 2013-07-09 06:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-17 03:57 - 2013-07-09 06:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-17 03:57 - 2013-07-09 06:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-17 03:57 - 2013-07-09 06:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-17 03:57 - 2013-07-09 05:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-17 03:57 - 2013-07-09 05:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-17 03:57 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-17 03:57 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-17 03:57 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-17 03:57 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-17 03:55 - 2013-07-19 02:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-17 03:55 - 2013-07-19 02:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-17 03:55 - 2013-03-19 06:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-17 03:55 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-17 03:54 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-17 03:54 - 2013-08-02 03:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-17 03:54 - 2013-08-02 03:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-17 03:54 - 2013-08-02 03:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-17 03:54 - 2013-08-02 02:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 02:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-17 03:54 - 2013-08-02 01:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-17 03:54 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-17 03:54 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-17 03:54 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-17 03:54 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-17 03:54 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-17 03:54 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-17 03:54 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-17 03:54 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-17 03:54 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-17 03:54 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-17 03:54 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-17 03:54 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-17 03:54 - 2013-04-26 00:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-17 03:54 - 2013-03-31 23:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-17 03:54 - 2012-08-22 19:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-10-17 03:54 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-10-17 03:53 - 2013-07-25 10:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-17 03:53 - 2013-07-25 09:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-17 03:53 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-17 03:53 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-17 03:53 - 2013-07-09 06:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-10-17 03:53 - 2013-07-09 05:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-10-17 03:53 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-17 03:53 - 2012-10-03 18:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-10-17 03:53 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-10-17 03:53 - 2012-10-03 18:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-10-17 03:53 - 2012-10-03 18:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-10-17 03:53 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-10-17 03:53 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-10-17 03:53 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-10-17 03:53 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-10-17 03:53 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-10-17 03:53 - 2012-10-03 17:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-10-17 03:53 - 2012-01-13 08:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-10-17 03:52 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-17 03:52 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-17 03:52 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-17 03:52 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-17 03:52 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-17 03:52 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-17 03:52 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-17 03:52 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-17 03:52 - 2013-06-04 07:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-17 03:52 - 2013-06-04 05:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-10-17 03:51 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-17 03:51 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-17 03:51 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-17 03:51 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-17 03:51 - 2013-06-15 05:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-10-17 03:50 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-17 03:44 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-17 03:44 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-17 03:44 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-17 03:44 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-17 03:44 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-17 03:44 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-17 03:44 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-17 03:44 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-17 03:44 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-17 03:44 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-17 03:44 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-17 03:44 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-17 03:44 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-17 03:44 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-17 03:44 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-17 03:43 - 2013-07-26 03:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-17 03:43 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-17 03:43 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-17 03:43 - 2013-04-26 06:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-17 03:43 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-17 03:42 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-17 03:42 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-17 03:42 - 2012-11-23 04:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-10-17 03:41 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-17 03:41 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-17 03:41 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-17 03:41 - 2013-04-10 07:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-17 03:41 - 2011-02-03 12:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-17 03:36 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-16 02:04 - 2013-10-16 02:04 - 00000000 ____D C:\Windows\system32\SPReview

==================== One Month Modified Files and Folders =======

2013-11-12 07:19 - 2012-03-29 21:46 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-12 07:13 - 2011-10-06 14:06 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-12 07:11 - 2013-11-12 07:11 - 00021344 _____ C:\Users\Jenny\Desktop\Addition.txt
2013-11-12 07:10 - 2013-11-12 07:09 - 00021344 _____ C:\Users\Jenny\Downloads\Addition.txt
2013-11-12 07:06 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-12 07:06 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-12 07:05 - 2013-11-12 07:05 - 00000000 ____D C:\FRST
2013-11-12 07:04 - 2013-11-12 07:02 - 01957590 _____ (Farbar) C:\Users\Jenny\Desktop\FRST64.exe
2013-11-12 07:04 - 2011-12-09 16:31 - 00000000 ____D C:\Users\Jenny\AppData\Roaming\Dropbox
2013-11-12 06:56 - 2010-12-25 08:59 - 01952098 _____ C:\Windows\WindowsUpdate.log
2013-11-12 06:51 - 2013-09-16 07:07 - 00000000 ___RD C:\Users\Jenny\Dropbox
2013-11-12 06:50 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2013-11-12 06:49 - 2011-10-06 14:06 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-12 06:48 - 2013-10-08 09:54 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2013-11-12 06:48 - 2011-10-14 07:00 - 00122574 _____ C:\Windows\setupact.log
2013-11-12 06:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-12 04:47 - 2013-11-11 17:37 - 00018594 ____H C:\Users\Jenny\Desktop\~WRL0004.tmp
2013-11-12 04:21 - 2013-11-04 14:04 - 04650565 _____ C:\Users\Jenny\Documents\Product- and Brand Piracy.pptx
2013-11-11 17:37 - 2013-11-11 16:56 - 00228862 _____ (TeamViewer GmbH) C:\Users\Jenny\Downloads\TeamViewer_Setup_de.exe.part
2013-11-11 16:56 - 2013-11-11 16:56 - 00000000 _____ C:\Users\Jenny\Downloads\TeamViewer_Setup_de.exe
2013-11-11 16:45 - 2013-11-11 16:45 - 00070330 _____ C:\Users\Jenny\Downloads\Extras.Txt
2013-11-11 16:44 - 2013-11-11 16:44 - 00078516 _____ C:\Users\Jenny\Downloads\OTL.Txt
2013-11-11 16:32 - 2013-11-11 16:30 - 00602112 _____ (OldTimer Tools) C:\Users\Jenny\Downloads\OTL.exe
2013-11-11 16:18 - 2013-11-11 16:15 - 00000000 ____D C:\AdwCleaner
2013-11-11 16:18 - 2010-12-25 19:20 - 00000000 ____D C:\ProgramData\ICQ
2013-11-11 16:13 - 2013-11-11 16:11 - 01085542 _____ C:\Users\Jenny\Downloads\adwcleaner_3012.exe
2013-11-11 16:02 - 2011-03-30 16:31 - 00000000 ____D C:\Users\Jenny\AppData\Roaming\Skype
2013-11-11 15:14 - 2013-11-11 15:14 - 00000524 _____ C:\Users\Jenny\Desktop\DllSuite.lnk
2013-11-11 15:14 - 2013-11-11 15:14 - 00000000 ____D C:\Users\Jenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2013
2013-11-11 15:13 - 2013-11-11 14:44 - 16215452 _____ (                                                            ) C:\Users\Jenny\Downloads\DLLSuite_Setup(1).exe
2013-11-11 13:07 - 2010-12-25 00:25 - 00000000 ____D C:\Users\Jenny
2013-11-11 13:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-11-11 11:40 - 2013-11-11 01:50 - 00000000 ____D C:\Users\Jenny\Desktop\Stefanos
2013-11-11 11:08 - 2010-12-25 00:38 - 00001419 _____ C:\Users\Jenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-11 11:07 - 2009-08-10 21:07 - 00000000 ____D C:\Windows\Panther
2013-11-11 11:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-11-11 11:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-11-11 11:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-11-11 11:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-11-11 11:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-11 10:34 - 2013-11-11 08:40 - 00017069 _____ C:\Windows\IE10_main.log
2013-11-11 10:29 - 2013-11-11 10:29 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-11 10:29 - 2013-11-11 10:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-11 10:29 - 2013-11-11 10:29 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-11 10:29 - 2013-11-11 10:29 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-11 10:29 - 2013-11-11 10:29 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-11 10:29 - 2013-11-11 10:29 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-11 10:29 - 2013-11-11 10:29 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-11 10:29 - 2013-11-11 10:29 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-11 10:29 - 2013-11-11 10:29 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-11 10:29 - 2013-11-11 10:29 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-11 10:29 - 2013-11-11 10:29 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-11 10:29 - 2013-11-11 10:29 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-11 10:29 - 2013-11-11 10:29 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-11 09:37 - 2009-08-10 21:20 - 00654400 _____ C:\Windows\system32\perfh007.dat
2013-11-11 09:37 - 2009-08-10 21:20 - 00130240 _____ C:\Windows\system32\perfc007.dat
2013-11-11 09:37 - 2009-07-14 06:13 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-11 09:36 - 2013-11-11 09:36 - 00501421 _____ C:\Users\Jenny\Desktop\Business Systems.odt
2013-11-11 08:44 - 2013-11-11 08:44 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01643520 _____ C:\Windows\system32\DWrite.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01247744 _____ C:\Windows\SysWOW64\DWrite.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01238528 _____ C:\Windows\system32\d3d10.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01230336 _____ C:\Windows\SysWOW64\WindowsCodecs.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01175552 _____ C:\Windows\system32\FntCache.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 01080832 _____ C:\Windows\SysWOW64\d3d10.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00604160 _____ C:\Windows\SysWOW64\d3d10level9.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00363008 _____ C:\Windows\system32\dxgi.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00333312 _____ C:\Windows\system32\d3d10_1core.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00296960 _____ C:\Windows\system32\d3d10core.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00249856 _____ C:\Windows\SysWOW64\d3d10_1core.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00245248 _____ C:\Windows\system32\WindowsCodecsExt.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00220160 _____ C:\Windows\SysWOW64\d3d10core.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00207872 _____ C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00194560 _____ C:\Windows\system32\d3d10_1.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00161792 _____ C:\Windows\SysWOW64\d3d10_1.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-11 08:44 - 2013-11-11 08:44 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-09 18:53 - 2012-03-14 18:38 - 00000000 ____D C:\Users\Jenny\Documents\Youcam
2013-11-09 17:50 - 2013-11-09 17:49 - 00242258 _____ C:\Users\Jenny\Documents\Corporate Governance in Germany.pptx
2013-11-09 10:31 - 2013-11-09 10:31 - 00000000 ____D C:\ProgramData\Oracle
2013-11-09 10:30 - 2013-11-09 10:31 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-09 10:30 - 2013-11-09 10:30 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-09 10:30 - 2013-11-09 10:30 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-09 10:30 - 2013-11-09 10:30 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-09 10:30 - 2013-11-09 10:30 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-07 04:55 - 2013-11-07 04:40 - 02586695 _____ C:\Users\Jenny\Downloads\Martin_Kokoschka_Heinz_Nixdorf_Institut-data.pdf;jsessionid=DA74B36BE7E8E1D2C5B8AAB10DBE9F9D.repl2
2013-11-02 11:23 - 2011-03-30 16:31 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-02 11:23 - 2011-03-30 16:31 - 00000000 ____D C:\ProgramData\Skype
2013-10-31 17:12 - 2011-01-08 15:27 - 00000000 ____D C:\Users\Jenny\AppData\Local\CrashDumps
2013-10-26 09:39 - 2012-03-21 09:44 - 00000000 ____D C:\Users\Jenny\Documents\Citavi 3
2013-10-23 11:14 - 2013-10-23 11:09 - 00043392 _____ C:\Users\Jenny\Downloads\china_rahmenbedingungen_technologietransfer.pdf.part
2013-10-21 05:31 - 2009-08-21 10:14 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-21 03:37 - 2011-10-14 07:00 - 00254692 _____ C:\Windows\PFRO.log
2013-10-20 11:40 - 2011-03-09 17:54 - 00001912 _____ C:\Windows\epplauncher.mif
2013-10-20 11:40 - 2011-03-09 17:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-10-20 11:40 - 2011-03-09 17:53 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-10-19 04:24 - 2010-12-25 00:38 - 00000000 ___RD C:\Users\Jenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-19 04:24 - 2010-12-25 00:25 - 00000000 ___RD C:\Users\Jenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup
2013-10-19 04:21 - 2009-07-14 05:45 - 00486672 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-19 04:17 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-19 04:17 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-18 05:08 - 2011-10-06 14:06 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-18 05:08 - 2011-10-06 14:06 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-18 03:30 - 2009-07-14 08:47 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-17 15:58 - 2011-06-02 18:13 - 00000000 ____D C:\Users\Jenny\AppData\Roaming\vlc
2013-10-16 12:57 - 2012-05-13 15:31 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-16 12:57 - 2010-12-25 00:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-16 09:19 - 2013-08-06 21:52 - 00000000 ____D C:\Windows\system32\MRT
2013-10-16 09:16 - 2012-05-24 07:40 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-16 06:33 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-16 02:44 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-10-16 02:44 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-10-16 02:44 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-10-16 02:44 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker
2013-10-16 02:44 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2013-10-16 02:44 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2013-10-16 02:44 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sppui
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\manifeststore
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\servicing
2013-10-16 02:44 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-16 02:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sppui
2013-10-16 02:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Setup
2013-10-16 02:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\oobe
2013-10-16 02:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\migwiz
2013-10-16 02:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\manifeststore
2013-10-16 02:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2013-10-16 02:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2013-10-16 02:15 - 2009-07-14 03:36 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2013-10-16 02:15 - 2009-07-14 03:36 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2013-10-16 02:04 - 2013-10-16 02:04 - 00000000 ____D C:\Windows\system32\SPReview

Some content of TEMP:
====================
C:\Users\Jenny\AppData\Local\Temp\CmdLineExt01.dll
C:\Users\Jenny\AppData\Local\Temp\contentDATs.exe
C:\Users\Jenny\AppData\Local\Temp\CWPCUNLR.dll
C:\Users\Jenny\AppData\Local\Temp\DRPCUNLR.dll
C:\Users\Jenny\AppData\Local\Temp\ezGameXN.dll
C:\Users\Jenny\AppData\Local\Temp\GameXNGO.exe
C:\Users\Jenny\AppData\Local\Temp\install_reader10_de_mssa_aih.exe
C:\Users\Jenny\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Jenny\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Jenny\AppData\Local\Temp\offercast.exe
C:\Users\Jenny\AppData\Local\Temp\ose00000.exe
C:\Users\Jenny\AppData\Local\Temp\Refresh.exe
C:\Users\Jenny\AppData\Local\Temp\SIntf16.dll
C:\Users\Jenny\AppData\Local\Temp\SIntf32.dll
C:\Users\Jenny\AppData\Local\Temp\SIntfNT.dll
C:\Users\Jenny\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jenny\AppData\Local\Temp\temp~.DLL
C:\Users\Jenny\AppData\Local\Temp\temp~.EXE
C:\Users\Jenny\AppData\Local\Temp\Uninst.exe
C:\Users\Jenny\AppData\Local\Temp\_isAE2B.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-10 05:20

==================== End Of Log ============================

--- --- ---

--- --- ---

Addition.txt

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-11-2013 01
Ran by Jenny at 2013-11-12 08:21:38
Running from C:\Users\Jenny\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

ABBYY FineReader 6.0 Sprint (x32 Version: 6.00.1395.4512)
ABBYY PDF Transformer 3.0 (Version: 3.00.145.7091)
ABBYY PDF Transformer 3.0 (x32 Version: 3.00.145.7091)
Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0)
Activation Assistant for the 2007 Microsoft Office suites (x32)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Apple Application Support (x32 Version: 2.1.5)
Apple Mobile Device Support (Version: 4.0.0.96)
Apple Software Update (x32 Version: 2.1.3.127)
AuthenTec Fingerprint Software (Version: 8.5.1.28)
Bonjour (Version: 3.0.0.10)
Citavi (x32 Version: 3.2.0.0)
CyberLink YouCam (x32 Version: 3.0.1908.7636)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
DLL Suite 2013 (x32)
DriverTuner 3.1.0.1 (x32 Version: 3.1.0.1)
Dropbox (HKCU Version: 2.0.22)
FastStone Image Viewer 4.6 (x32 Version: 4.6)
Free YouTube to MP3 Converter version 3.11.35.1031 (x32 Version: 3.11.35.1031)
Fujitsu Display Manager (Version: 7.01.20.204)
Fujitsu Display Manager (x32 Version: )
Fujitsu Hotkey Utility (x32 Version: 3.60.1.0)
Fujitsu MobilityCenter Extension Utility (Version: 3.01.00.000)
Fujitsu MobilityCenter Extension Utility (x32 Version: )
Fujitsu System Extension Utility (Version: 3.1.0.0)
Fujitsu System Extension Utility (x32)
Google Update Helper (x32 Version: 1.3.21.165)
Intel(R) Graphics Media Accelerator Driver (x32 Version: 8.15.10.1995)
iTunes (Version: 10.5.0.142)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Junk Mail filter update (x32 Version: 14.0.8089.726)
LifeBook Application Panel (Version: 8.1.0.0)
LifeBook Application Panel (x32)
LSI V92 MOH Application
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Office 2010 Service Pack 1 (SP1) (x32)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.3.0219.0)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.3.219.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319)
Mozilla Firefox 15.0.1 (x86 de) (x32 Version: 15.0.1)
Mozilla Firefox 25.0 (x86 de) (HKCU Version: 25.0)
Mozilla Firefox 9.0.1 (x86 de) (x32 Version: 9.0.1)
Mozilla Maintenance Service (x32 Version: 15.0.1)
Mozilla Thunderbird 15.0.1 (x86 de) (HKCU Version: 15.0.1)
Mozilla Thunderbird 9.0.1 (x86 de) (x32 Version: 9.0.1)
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
O2Micro Flash Memory Card Windows Driver (x32 Version: 3.00.0006)
OZ711 SCR Driver (x64) (Version: 3.0.1.6D)
OZ711 SCR Driver (x64) (x32 Version: 3.0.1.6D)
Pixum Fotobuch (x32)
Power Saving Utility (Version: 31.01.11.009)
Power Saving Utility (x32)
QuickTime (x32 Version: 7.70.80.34)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5969)
Skype Click to Call (x32 Version: 5.9.9216)
Skype™ 6.9 (x32 Version: 6.9.106)
Synaptics Pointing Device Driver (Version: 14.0.10.0)
SystemDiagnostics (x32 Version: 2.04.0006)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553065) (x32)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2566458) (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)
USB Webcam (x32 Version: 5.8.53001.3)
VLC media player 1.1.9 (x32 Version: 1.1.9)
Windows Live Anmelde-Assistent (x32 Version: 5.000.818.5)
Windows Live Call (x32 Version: 14.0.8064.0206)
Windows Live Communications Platform (x32 Version: 14.0.8064.206)
Windows Live Essentials (x32 Version: 14.0.8089.0726)
Windows Live Essentials (x32 Version: 14.0.8089.726)
Windows Live Fotogalerie (x32 Version: 14.0.8081.709)
Windows Live Mail (x32 Version: 14.0.8089.0726)
Windows Live Messenger (x32 Version: 14.0.8089.0726)
Windows Live Movie Maker (x32 Version: 14.0.8091.0730)
Windows Live Sync (x32 Version: 14.0.8089.726)
Windows Live Writer (x32 Version: 14.0.8089.0726)
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029)
Wireless Selector (Version: 4.01.00.100)
Wireless Selector (x32 Version: )

==================== Restore Points  =========================

12-11-2013 03:48:18 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {3490BD87-72F8-4590-B603-006BA09F6175} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {45EC93FD-D15A-45E7-9341-ACBE28DB4A8C} - System32\Tasks\{CEABFED9-2B10-47A8-94E9-40554B648966} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/en/go/help.faq.installer?LastError=1603
Task: {52AD5DB3-ECCF-4ED7-AA78-32C643BF38B5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-06] (Google Inc.)
Task: {57EF8985-3BA6-4D17-9379-044962DA9471} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-12] (Adobe Systems Incorporated)
Task: {63F97FDF-4AB0-48D6-B4B8-4261398620BB} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {7D4628EA-464A-492C-BBF7-DC6A4329C5BC} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation)
Task: {88C7D82D-4642-449A-832C-AA27D63150CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-06] (Google Inc.)
Task: {BC01A0C3-03F7-40BD-99CD-16DBE8B419D8} - System32\Tasks\{C0187C0D-5F1D-4960-A51D-1C8EBEB26315} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2013-10-02] (Skype Technologies S.A.)
Task: {D4492EB5-CFAC-4439-8167-8517B806A6DC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E4607006-1E75-4E2C-B04F-6D09220C380D} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-09-27 06:23 - 2011-09-27 06:23 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-09-27 06:22 - 2011-09-27 06:22 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\Jenny\AppData\Roaming\Dropbox\bin\libcef.dll
2013-11-06 14:49 - 2013-11-06 14:49 - 03368048 _____ () D:\Mozilla Firefox\mozjs.dll
2013-10-12 09:20 - 2013-10-12 09:20 - 16233864 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
2011-03-17 00:11 - 2011-03-17 00:11 - 04297568 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2011-02-18 10:04 - 2011-02-18 10:04 - 00196448 _____ () C:\Program Files (x86)\Microsoft Office\Office14\IEAWSDC.DLL

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/11/2013 11:12:01 AM) (Source: RasClient) (User: )
Description: CoID={6CD1FAF2-CBE3-4671-918E-50766A1C7E70}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 628.

Error: (11/11/2013 11:11:07 AM) (Source: RasClient) (User: )
Description: CoID={863DF32A-99AD-4236-9219-2B5B85A99DC2}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 619.

Error: (11/11/2013 08:23:40 AM) (Source: RasClient) (User: )
Description: CoID={82997B85-5FA4-47A4-8491-1EE1997F8EC6}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 868.

Error: (11/11/2013 08:23:25 AM) (Source: RasClient) (User: )
Description: CoID={49E6FB18-7067-4BBA-8499-44BC8612EC98}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 868.

Error: (11/11/2013 08:23:10 AM) (Source: RasClient) (User: )
Description: CoID={BAAAA303-C4A1-4B6C-AAF0-A5B8013385B7}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 868.

Error: (11/11/2013 08:22:03 AM) (Source: RasClient) (User: )
Description: CoID={0A3509AF-2750-45E7-92FF-510C610D195F}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 868.

Error: (11/11/2013 08:21:29 AM) (Source: RasClient) (User: )
Description: CoID={07CD1826-D252-461B-BBB6-F3C20EB0EC39}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 868.

Error: (11/11/2013 08:21:06 AM) (Source: RasClient) (User: )
Description: CoID={35AE30C4-9B3D-4BA4-9B78-84CD11F3CCA7}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 0.

Error: (11/11/2013 08:20:51 AM) (Source: RasClient) (User: )
Description: CoID={58CBE89C-61C1-4C13-8AFC-C2509ADF76E1}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 868.

Error: (11/11/2013 08:20:37 AM) (Source: RasClient) (User: )
Description: CoID={D1339D26-704B-4190-954C-F675BE26F884}: Der Benutzer "Alfred\Jenny" hat eine Verbindung mit dem Namen "VPN Karlshochschule" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 868.


System errors:
=============
Error: (11/12/2013 06:56:18 AM) (Source: Server) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{FE5CB221-C2BA-435A-B92B-A41D04BB887C} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.

Error: (11/12/2013 06:55:44 AM) (Source: Server) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{FE5CB221-C2BA-435A-B92B-A41D04BB887C} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.

Error: (11/12/2013 06:48:08 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Dienst für Schriftartencache" wurde mit folgendem Fehler beendet: 
%%193

Error: (11/12/2013 04:49:09 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8024200d fehlgeschlagen: Sicherheitsupdate für Windows 7 für x64-basierte Systeme (KB2667402)

Error: (11/12/2013 03:57:12 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Dienst für Schriftartencache" wurde mit folgendem Fehler beendet: 
%%193

Error: (11/11/2013 05:37:46 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (11/11/2013 04:25:14 PM) (Source: Server) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{FE5CB221-C2BA-435A-B92B-A41D04BB887C} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.

Error: (11/11/2013 04:23:17 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (11/11/2013 04:20:45 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Dienst für Schriftartencache" wurde mit folgendem Fehler beendet: 
%%193

Error: (11/11/2013 02:38:10 PM) (Source: Server) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{FE5CB221-C2BA-435A-B92B-A41D04BB887C} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.


Microsoft Office Sessions:
=========================
Error: (11/11/2013 11:12:01 AM) (Source: RasClient)(User: )
Description: {6CD1FAF2-CBE3-4671-918E-50766A1C7E70}Alfred\JennyVPN Karlshochschule628

Error: (11/11/2013 11:11:07 AM) (Source: RasClient)(User: )
Description: {863DF32A-99AD-4236-9219-2B5B85A99DC2}Alfred\JennyVPN Karlshochschule619

Error: (11/11/2013 08:23:40 AM) (Source: RasClient)(User: )
Description: {82997B85-5FA4-47A4-8491-1EE1997F8EC6}Alfred\JennyVPN Karlshochschule868

Error: (11/11/2013 08:23:25 AM) (Source: RasClient)(User: )
Description: {49E6FB18-7067-4BBA-8499-44BC8612EC98}Alfred\JennyVPN Karlshochschule868

Error: (11/11/2013 08:23:10 AM) (Source: RasClient)(User: )
Description: {BAAAA303-C4A1-4B6C-AAF0-A5B8013385B7}Alfred\JennyVPN Karlshochschule868

Error: (11/11/2013 08:22:03 AM) (Source: RasClient)(User: )
Description: {0A3509AF-2750-45E7-92FF-510C610D195F}Alfred\JennyVPN Karlshochschule868

Error: (11/11/2013 08:21:29 AM) (Source: RasClient)(User: )
Description: {07CD1826-D252-461B-BBB6-F3C20EB0EC39}Alfred\JennyVPN Karlshochschule868

Error: (11/11/2013 08:21:06 AM) (Source: RasClient)(User: )
Description: {35AE30C4-9B3D-4BA4-9B78-84CD11F3CCA7}Alfred\JennyVPN Karlshochschule0

Error: (11/11/2013 08:20:51 AM) (Source: RasClient)(User: )
Description: {58CBE89C-61C1-4C13-8AFC-C2509ADF76E1}Alfred\JennyVPN Karlshochschule868

Error: (11/11/2013 08:20:37 AM) (Source: RasClient)(User: )
Description: {D1339D26-704B-4190-954C-F675BE26F884}Alfred\JennyVPN Karlshochschule868


==================== Memory info =========================== 

Percentage of memory in use: 70%
Total physical RAM: 1907.42 MB
Available physical RAM: 565.45 MB
Total Pagefile: 3814.84 MB
Available Pagefile: 1870.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:50 GB) (Free:0.77 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:97.04 GB) (Free:60.71 GB) NTFS
Drive f: (POM_IMPOSSIBLE_POSSIBLE) (CDROM) (Total:6.32 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 27987793)
Partition 1: (Active) - (Size=2 GB) - (Type=27)
Partition 2: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=97 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Danke.

Gruß
Stef4

schrauber · 12.11.2013, 13:01

hi,

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Stef4 · 13.11.2013, 19:25

Hallo,

habe die combolog.txt Datei. Leider wurde diese nicht vom Desktop aus ausgeführt.

Kann ganz einfach ein neuer Scan durch Combofix vom Desktop aus ausgeführt werden oder wird es nach dem ersten falschen Scan Probleme geben?

Gruß
Stef4

schrauber · 14.11.2013, 09:59

Poste mal das Log

Stef4 · 14.11.2013, 13:05

Code:

ATTFilter

ComboFix 13-11-12.01 - Jenny 13.11.2013   1:30.1.4 - x64

Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.1907.595 [GMT 1:00]

ausgeführt von:: c:\users\Jenny\Downloads\ComboFix.exe

AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}

SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\users\Jenny\AppData\Local\assembly\tmp

c:\users\Jenny\AppData\Local\Microsoft\Windows\Temporary Internet Files\{8EEE2C1D-270F-43E4-BF78-6E6571B3BA2D}.xps

c:\users\Jenny\AppData\Local\Microsoft\Windows\Temporary Internet Files\{E1A46A8E-E675-4397-AB2A-705CAC1FEC5D}.xps

c:\users\Jenny\AppData\Local\Microsoft\Windows\Temporary Internet Files\{FA939CFD-FC24-4071-B59B-6E5D99420C47}.xps

c:\windows\SysWow64\FlashPlayerApp.exe

D:\setup.exe

.

.

(((((((((((((((((((((((   Dateien erstellt von 2013-10-13 bis 2013-11-13  ))))))))))))))))))))))))))))))

.

.

2013-11-13 00:40 . 2013-11-13 00:40	--------	d-----w-	c:\users\Default\AppData\Local\temp

2013-11-12 08:53 . 2013-04-17 06:24	1424384	----a-w-	c:\windows\system32\WindowsCodecs.dll

2013-11-12 08:52 . 2013-04-17 07:02	1230336	----a-w-	c:\windows\SysWow64\WindowsCodecs.dll

2013-11-12 06:05 . 2013-11-12 06:05	--------	d-----w-	C:\FRST

2013-11-11 15:15 . 2013-11-11 15:18	--------	d-----w-	C:\AdwCleaner

2013-11-11 13:54 . 2013-10-14 07:12	10280728	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4DE2A7AC-0A54-4CC1-9F16-862C8D2B605D}\mpengine.dll

2013-11-11 07:44 . 2013-11-11 07:44	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-11-10 11:23 . 2013-10-14 07:12	10280728	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2013-11-09 09:31 . 2013-11-09 09:31	--------	d-----w-	c:\programdata\Oracle

2013-11-09 09:31 . 2013-11-09 09:31	--------	d-----w-	c:\program files (x86)\Common Files\Java

2013-11-09 09:30 . 2013-11-09 09:30	96168	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll

2013-11-09 09:30 . 2013-11-09 09:30	--------	d-----w-	c:\program files (x86)\Java

2013-11-06 15:45 . 2013-10-18 03:55	965000	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B8357F66-8945-499D-92D3-5C810F975884}\gapaengine.dll

2013-10-25 04:08 . 2013-09-04 12:12	343040	----a-w-	c:\windows\system32\drivers\usbhub.sys

2013-10-25 04:08 . 2013-09-04 12:11	325120	----a-w-	c:\windows\system32\drivers\usbport.sys

2013-10-25 04:08 . 2013-09-04 12:11	99840	----a-w-	c:\windows\system32\drivers\usbccgp.sys

2013-10-25 04:08 . 2013-09-04 12:11	52736	----a-w-	c:\windows\system32\drivers\usbehci.sys

2013-10-25 04:08 . 2013-09-04 12:11	30720	----a-w-	c:\windows\system32\drivers\usbuhci.sys

2013-10-25 04:08 . 2013-09-04 12:11	25600	----a-w-	c:\windows\system32\drivers\usbohci.sys

2013-10-25 04:08 . 2013-09-04 12:11	7808	----a-w-	c:\windows\system32\drivers\usbd.sys

2013-10-18 11:18 . 2013-10-18 11:18	163504	----a-w-	c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10145.bin

2013-10-17 13:40 . 2013-02-27 05:48	1930752	----a-w-	c:\windows\system32\authui.dll

2013-10-17 13:40 . 2013-02-27 06:02	111448	----a-w-	c:\windows\system32\consent.exe

2013-10-17 13:40 . 2013-02-27 05:47	70144	----a-w-	c:\windows\system32\appinfo.dll

2013-10-17 13:40 . 2013-02-27 04:49	1796096	----a-w-	c:\windows\SysWow64\authui.dll

2013-10-17 12:09 . 2012-10-09 18:17	55296	----a-w-	c:\windows\system32\dhcpcsvc6.dll

2013-10-17 12:09 . 2012-10-09 18:17	226816	----a-w-	c:\windows\system32\dhcpcore6.dll

2013-10-17 12:09 . 2012-10-09 17:40	44032	----a-w-	c:\windows\SysWow64\dhcpcsvc6.dll

2013-10-17 12:09 . 2012-10-09 17:40	193536	----a-w-	c:\windows\SysWow64\dhcpcore6.dll

2013-10-17 09:50 . 2013-05-13 03:43	1192448	----a-w-	c:\windows\system32\certutil.exe

2013-10-17 09:50 . 2013-05-13 03:08	903168	----a-w-	c:\windows\SysWow64\certutil.exe

2013-10-17 09:50 . 2013-05-13 05:50	52224	----a-w-	c:\windows\system32\certenc.dll

2013-10-17 09:50 . 2013-05-13 03:08	43008	----a-w-	c:\windows\SysWow64\certenc.dll

2013-10-17 03:01 . 2012-08-21 21:01	245760	----a-w-	c:\windows\system32\OxpsConverter.exe

2013-10-17 02:57 . 2013-07-04 12:50	633856	----a-w-	c:\windows\system32\comctl32.dll

2013-10-17 02:57 . 2013-07-04 11:50	530432	----a-w-	c:\windows\SysWow64\comctl32.dll

2013-10-17 02:57 . 2013-07-09 05:46	1472512	----a-w-	c:\windows\system32\crypt32.dll

2013-10-17 02:57 . 2013-07-09 04:46	1166848	----a-w-	c:\windows\SysWow64\crypt32.dll

2013-10-17 02:57 . 2013-07-09 05:52	224256	----a-w-	c:\windows\system32\wintrust.dll

2013-10-17 02:57 . 2013-07-09 05:46	184320	----a-w-	c:\windows\system32\cryptsvc.dll

2013-10-17 02:57 . 2013-07-09 05:46	139776	----a-w-	c:\windows\system32\cryptnet.dll

2013-10-17 02:57 . 2013-07-09 04:52	175104	----a-w-	c:\windows\SysWow64\wintrust.dll

2013-10-17 02:57 . 2013-07-09 04:46	140288	----a-w-	c:\windows\SysWow64\cryptsvc.dll

2013-10-17 02:57 . 2013-07-09 04:46	103936	----a-w-	c:\windows\SysWow64\cryptnet.dll

2013-10-17 02:55 . 2013-03-19 05:53	230400	----a-w-	c:\windows\system32\wwansvc.dll

2013-10-17 02:55 . 2013-03-19 05:53	48640	----a-w-	c:\windows\system32\wwanprotdim.dll

2013-10-17 02:55 . 2013-07-19 01:58	2048	----a-w-	c:\windows\system32\tzres.dll

2013-10-17 02:55 . 2013-07-19 01:41	2048	----a-w-	c:\windows\SysWow64\tzres.dll

2013-10-17 02:53 . 2013-07-25 09:25	1888768	----a-w-	c:\windows\system32\WMVDECOD.DLL

2013-10-17 02:52 . 2013-07-03 04:40	42496	----a-w-	c:\windows\system32\drivers\usbscan.sys

2013-10-17 02:52 . 2013-07-03 04:05	76800	----a-w-	c:\windows\system32\drivers\hidclass.sys

2013-10-17 02:52 . 2013-07-03 04:05	32896	----a-w-	c:\windows\system32\drivers\hidparse.sys

2013-10-17 02:52 . 2013-07-04 12:57	259584	----a-w-	c:\windows\system32\WebClnt.dll

2013-10-17 02:52 . 2013-07-04 12:50	102400	----a-w-	c:\windows\system32\davclnt.dll

2013-10-17 02:52 . 2013-07-04 11:57	205824	----a-w-	c:\windows\SysWow64\WebClnt.dll

2013-10-17 02:52 . 2013-07-04 11:51	81920	----a-w-	c:\windows\SysWow64\davclnt.dll

2013-10-17 02:52 . 2013-07-04 10:11	140800	----a-w-	c:\windows\system32\drivers\mrxdav.sys

2013-10-17 02:52 . 2013-06-04 06:00	624128	----a-w-	c:\windows\system32\qedit.dll

2013-10-17 02:52 . 2013-06-04 04:53	509440	----a-w-	c:\windows\SysWow64\qedit.dll

2013-10-17 02:51 . 2013-09-08 02:30	1903552	----a-w-	c:\windows\system32\drivers\tcpip.sys

2013-10-17 02:51 . 2013-09-08 02:27	327168	----a-w-	c:\windows\system32\mswsock.dll

2013-10-17 02:51 . 2013-06-15 04:32	39936	----a-w-	c:\windows\system32\drivers\tssecsrv.sys

2013-10-17 02:51 . 2013-09-14 01:10	497152	----a-w-	c:\windows\system32\drivers\afd.sys

2013-10-17 02:51 . 2013-09-08 02:03	231424	----a-w-	c:\windows\SysWow64\mswsock.dll

2013-10-17 02:50 . 2013-08-28 01:21	3155968	----a-w-	c:\windows\system32\win32k.sys

2013-10-17 02:43 . 2013-07-26 02:24	14172672	----a-w-	c:\windows\system32\shell32.dll

2013-10-17 02:43 . 2013-07-26 02:24	197120	----a-w-	c:\windows\system32\shdocvw.dll

2013-10-17 02:43 . 2013-04-26 05:51	751104	----a-w-	c:\windows\system32\win32spl.dll

2013-10-17 02:43 . 2013-04-26 04:55	492544	----a-w-	c:\windows\SysWow64\win32spl.dll

2013-10-17 02:42 . 2012-11-23 03:13	68608	----a-w-	c:\windows\system32\taskhost.exe

2013-10-17 02:42 . 2013-05-10 05:49	30720	----a-w-	c:\windows\system32\cryptdlg.dll

2013-10-17 02:42 . 2013-05-10 03:20	24576	----a-w-	c:\windows\SysWow64\cryptdlg.dll

2013-10-17 02:42 . 2013-04-10 05:48	1732608	----a-w-	c:\program files\Windows Journal\NBDoc.DLL

2013-10-17 02:42 . 2013-04-10 05:46	1393152	----a-w-	c:\program files\Windows Journal\JNTFiltr.dll

2013-10-17 02:42 . 2013-04-10 05:46	1367040	----a-w-	c:\program files\Common Files\Microsoft Shared\ink\journal.dll

2013-10-17 02:42 . 2013-04-10 05:46	1402880	----a-w-	c:\program files\Windows Journal\JNWDRV.dll

2013-10-17 02:42 . 2013-04-10 05:03	936448	----a-w-	c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll

2013-10-17 02:41 . 2013-07-20 10:33	102608	----a-w-	c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll

2013-10-17 02:41 . 2013-07-20 10:33	124112	----a-w-	c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-17 02:41 . 2013-08-01 12:09	983488	----a-w-	c:\windows\system32\drivers\dxgkrnl.sys

2013-10-17 02:41 . 2013-04-10 06:01	265064	----a-w-	c:\windows\system32\drivers\dxgmms1.sys

2013-10-17 02:41 . 2011-02-03 11:25	144384	----a-w-	c:\windows\system32\cdd.dll

2013-10-17 02:36 . 2013-08-28 01:12	461312	----a-w-	c:\windows\system32\scavengeui.dll

2013-10-16 01:04 . 2013-10-16 01:04	--------	d-----w-	c:\windows\system32\SPReview

.

.

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-10-18 03:55 . 2011-03-25 16:17	965000	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll

2013-10-16 08:16 . 2012-05-24 06:40	80541720	----a-w-	c:\windows\system32\MRT.exe

2013-10-16 01:15 . 2009-07-14 02:36	152576	----a-w-	c:\windows\SysWow64\msclmd.dll

2013-10-16 01:15 . 2009-07-14 02:36	175616	----a-w-	c:\windows\system32\msclmd.dll

2013-10-12 08:20 . 2011-06-12 11:55	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-08-29 01:48 . 2013-10-17 02:44	44032	----a-w-	c:\windows\apppatch\acwow64.dll

.

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2013-05-25 00:36	130736	----a-w-	c:\users\Jenny\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2013-05-25 00:36	130736	----a-w-	c:\users\Jenny\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2013-05-25 00:36	130736	----a-w-	c:\users\Jenny\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"LtMoh"="c:\program files\ltmoh\Ltmoh.exe" [2009-12-04 195080]

"ABBYY Screenshot Reader Bonus"="c:\program files (x86)\ABBYY PDF Transformer 3.0\Bonus.ScreenshotReader.exe" [2009-06-09 939272]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"LoadFUJ02E3"="c:\program files (x86)\Fujitsu\FUJ02E3\FUJ02E3.exe" [2009-06-16 36712]

"IndicatorUtility"="c:\program files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe" [2009-10-09 47976]

"snp2uvc"="c:\windows\vsnp2uvc.exe" [2009-08-12 662016]

"UCam_Menu"="c:\program files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]

"YouCam Mirror Tray icon"="c:\program files (x86)\CyberLink\YouCam\YouCamTray.exe" [2009-07-08 162912]

"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]

"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]

.

c:\users\Jenny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\

Dropbox.lnk - c:\users\Jenny\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2013-5-25 27776968]

OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2013-6-25 228552]

.

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

LaunchCenter.lnk - c:\program files (x86)\Fujitsu\LaunchCenter\LaunchCenter.exe [2010-4-30 360448]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux1"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

@="Service"

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ew_hwusbdev.sys [x]

R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbnet.sys [x]

R3 FBIOSDRV;FBIOSDRV;c:\windows\System32\Drivers\FBIOSDRV.sys;c:\windows\SYSNATIVE\Drivers\FBIOSDRV.sys [x]

R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jubusenum.sys [x]

R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbfake.sys [x]

R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]

R3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]

R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

S2 ABBYY.Licensing.PDFTransformer.Site License.3.0;ABBYY PDF Transformer 3.0 Licensing Service;c:\program files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe;c:\program files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [x]

S2 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\ATService.exe;c:\program files\Fingerprint Sensor\ATService.exe [x]

S2 PowerSavingUtilityService;PowerSavingUtilityService;c:\program files\Fujitsu\PSUtility\PSUService.exe;c:\program files\Fujitsu\PSUtility\PSUService.exe [x]

S2 WirelessSelectorService;WirelessSelectorService;c:\program files\Fujitsu\WirelessSelector\WSUService.exe;c:\program files\Fujitsu\WirelessSelector\WSUService.exe [x]

S3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1k62x64.sys [x]

S3 FUJ02E3;Fujitsu FUJ02E3 Device Driver;c:\windows\system32\DRIVERS\FUJ02E3.sys;c:\windows\SYSNATIVE\DRIVERS\FUJ02E3.sys [x]

S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]

S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]

S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys;c:\windows\SYSNATIVE\DRIVERS\NETw5s64.sys [x]

S3 O2MDRDR;O2MDRDR;c:\windows\system32\DRIVERS\o2mdx64.sys;c:\windows\SYSNATIVE\DRIVERS\o2mdx64.sys [x]

S3 O2SDRDR;O2SDRDR;c:\windows\system32\DRIVERS\o2sdx64.sys;c:\windows\SYSNATIVE\DRIVERS\o2sdx64.sys [x]

.

.

Inhalt des "geplante Tasks" Ordners

.

2013-11-13 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 08:20]

.

2013-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-06 13:06]

.

2013-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-06 13:06]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2013-05-25 00:36	164016	----a-w-	c:\users\Jenny\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2013-05-25 00:36	164016	----a-w-	c:\users\Jenny\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2013-05-25 00:36	164016	----a-w-	c:\users\Jenny\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]

@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]

2013-05-25 00:36	164016	----a-w-	c:\users\Jenny\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ATSwpNav"="c:\program files\Fingerprint Sensor\ATSwpNav -run" [X]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-28 8312352]

"PSUTility"="c:\program files\Fujitsu\PSUtility\TrayManager.exe" [2009-07-30 188264]

"FDM7"="c:\program files\Fujitsu\FDM7\FdmDaemon.exe" [2009-10-27 164712]

"LoadFujitsuQuickTouch"="c:\program files\Fujitsu\Application Panel\QuickTouch.exe" [2009-10-15 157544]

"LoadBtnHnd"="c:\program files\Fujitsu\Application Panel\BtnHnd.exe" [2009-10-15 35176]

"snp2uvc"="c:\windows\vsnp2uvc.exe" [2009-08-12 662016]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-11-19 166424]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-11-19 390168]

"Persistence"="c:\windows\system32\igfxpers.exe" [2009-11-19 409624]

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-08-12 1356240]

.

------- Zusätzlicher Suchlauf -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.com

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local

IE: &Citavi Picker... - file://c:\programdata\Swiss Academic Software\Citavi Picker\Internet Explorer\ShowContextMenu.html

IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: Free YouTube to MP3 Converter - c:\users\Jenny\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000

FF - ProfilePath - c:\users\Jenny\AppData\Roaming\Mozilla\Firefox\Profiles\7yj1eih8.default-1363469235082\

FF - prefs.js: browser.startup.homepage - hxxp://www.handelsblatt.com/

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

Toolbar-Locked - (no file)

HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe

AddRemove-Mozilla Firefox 9.0.1 (x86 de) - c:\program files (x86)\Mozilla Firefox\uninstall\helper.exe

AddRemove-Mozilla Thunderbird 9.0.1 (x86 de) - c:\program files (x86)\Mozilla Thunderbird\uninstall\helper.exe

.

.

.

--------------------- Gesperrte Registrierungsschluessel ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Zeit der Fertigstellung: 2013-11-13  01:44:42

ComboFix-quarantined-files.txt  2013-11-13 00:44

.

Vor Suchlauf: 671.408.128 Bytes frei

Nach Suchlauf: 3.737.452.544 Bytes frei

.

- - End Of File - - 08EC8CFFFAD0E5DC1ABD2063C80EB393

Danke

schrauber · 15.11.2013, 10:23

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

14.11.2013, 09:59	#6
schrauber /// the machine /// TB-Ausbilder	Fehleranzeige: Ungültiges Bild bei Programmstart Poste mal das Log __________________ --> Fehleranzeige: Ungültiges Bild bei Programmstart

Fehleranzeige: Ungültiges Bild bei Programmstart

Plagegeister aller Art und deren Bekämpfung: Fehleranzeige: Ungültiges Bild bei Programmstart