Probleme mit flashplayer und Firefox

rolli0815 · 01.12.2013, 23:24

Nach Öffnung des FF erscheint beim Aufruf der ersten Seite das im Anhang beigefügte Fenster. Sonst funktioniert alles und das Flasplayer Plugin wird als ordnungsgemäß angezeigt.

Bitte um Auswertung:

Code:

ATTFilter

OTL logfile created on: 01.12.2013 22:45:11 - Run 3
OTL by OldTimer - Version 3.2.69.0     Folder = E:\Computer\Wissen\OTL Trojaner board
 Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16736)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
2,00 Gb Total Physical Memory | 0,80 Gb Available Physical Memory | 40,20% Memory free
4,00 Gb Paging File | 2,28 Gb Available in Paging File | 57,11% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,83 Gb Total Space | 67,68 Gb Free Space | 67,13% Space Free | Partition Type: NTFS
Drive D: | 103,77 Gb Total Space | 76,55 Gb Free Space | 73,77% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 222,98 Gb Free Space | 47,88% Space Free | Partition Type: NTFS
Drive F: | 206,58 Gb Total Space | 124,62 Gb Free Space | 60,33% Space Free | Partition Type: NTFS
Drive I: | 59,28 Gb Total Space | 8,43 Gb Free Space | 14,22% Space Free | Partition Type: NTFS
Drive J: | 236,68 Gb Total Space | 2,31 Gb Free Space | 0,98% Space Free | Partition Type: NTFS
Drive K: | 231,60 Gb Total Space | 83,25 Gb Free Space | 35,95% Space Free | Partition Type: NTFS
Drive L: | 403,95 Gb Total Space | 41,10 Gb Free Space | 10,17% Space Free | Partition Type: NTFS
 
Computer Name: ROLLI-PC | User Name: Rolli | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013.11.30 20:20:36 | 001,862,536 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
PRC - [2013.11.19 11:59:11 | 000,440,376 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2013.11.19 11:58:41 | 000,431,672 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2013.11.19 11:58:19 | 000,683,576 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2013.11.19 11:58:19 | 000,440,376 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2013.11.17 10:56:08 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe
PRC - [2013.11.08 11:22:57 | 000,453,632 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2013.11.08 11:22:57 | 000,217,088 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2013.10.12 12:02:57 | 005,325,312 | ---- | M] () -- C:\Users\Public\Documents\Luffi\Luffi.exe
PRC - [2013.10.10 13:50:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\Computer\Wissen\OTL Trojaner board\OTL.exe
PRC - [2013.09.19 13:06:44 | 000,606,024 | ---- | M] (BlueStack Systems, Inc.) -- C:\Programme\BlueStacks\HD-Agent.exe
PRC - [2013.09.19 13:05:54 | 000,384,840 | ---- | M] (BlueStack Systems, Inc.) -- C:\Programme\BlueStacks\HD-LogRotatorService.exe
PRC - [2013.08.29 06:42:46 | 000,040,040 | ---- | M] (NV Access Limited) -- C:\Programme\NVDA\nvda_service.exe
PRC - [2013.08.12 08:18:24 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2013.08.09 14:03:48 | 000,067,072 | ---- | M] (Cepstral, LLC) -- C:\Programme\Cepstral\bin\CepstralLicSrv.exe
PRC - [2012.07.17 13:49:00 | 001,713,904 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2012.07.17 13:49:00 | 000,194,304 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2010.11.20 22:29:49 | 001,121,792 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe
PRC - [2010.11.20 22:29:41 | 001,174,016 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Sidebar\sidebar.exe
PRC - [2010.11.20 22:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.03.30 23:37:34 | 000,309,848 | ---- | M] (TechniSat Digital, S.A.) -- C:\Programme\TechniSat DVB\bin\Server4PC.exe
PRC - [2006.11.03 15:13:10 | 000,081,920 | ---- | M] (KYE SYSTEMS CORP.) -- C:\Programme\hotkey\hotkey.exe
PRC - [2006.10.13 08:39:32 | 000,036,864 | ---- | M] () -- C:\Programme\hotkey\OSD.EXE
 
 
========== Modules (No Company Name) ==========
 
MOD - [2013.11.30 20:20:36 | 016,237,448 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_9_900_152.dll
MOD - [2013.11.17 10:56:07 | 003,363,952 | ---- | M] () -- C:\Programme\Mozilla Firefox\mozjs.dll
MOD - [2013.11.13 18:35:39 | 000,657,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\HD-Agent\3bcd902275ffb64d13b8c653e629fe22\HD-Agent.ni.exe
MOD - [2013.11.13 18:35:28 | 000,155,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\JSON\ab5cee8081a59d41dfb74d7a1a748c80\JSON.ni.dll
MOD - [2013.10.12 12:02:57 | 005,325,312 | ---- | M] () -- C:\Users\Public\Documents\Luffi\Luffi.exe
MOD - [2013.10.10 09:55:11 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ef0a534be135cd8f0d99d938d8b1814a\System.Windows.Forms.ni.dll
MOD - [2013.10.10 09:52:47 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29f3ae8d313e62b4daed1107ccd29f9f\System.Configuration.ni.dll
MOD - [2013.09.21 11:28:49 | 014,416,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\cf58670896c5313b9b52f026f4455a5d\mscorlib.ni.dll
MOD - [2013.08.15 08:08:48 | 011,833,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\40b43527d6fdbeb6e905a7b6123f3a42\System.Web.ni.dll
MOD - [2013.08.15 08:08:12 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013.08.15 08:07:56 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
MOD - [2013.08.15 08:07:49 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013.08.12 10:09:09 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2010.11.13 00:19:04 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010.11.05 02:59:42 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_de_b77a5c561934e089\System.resources.dll
MOD - [2010.03.30 12:25:38 | 000,120,320 | ---- | M] () -- C:\Programme\TechniSat DVB\bin\libbz2.dll
MOD - [2006.10.16 18:33:50 | 000,032,768 | ---- | M] () -- C:\Programme\hotkey\KEYHOOK.DLL
MOD - [2006.10.13 08:39:32 | 000,036,864 | ---- | M] () -- C:\Programme\hotkey\OSD.EXE
MOD - [2006.02.24 12:27:14 | 000,028,672 | ---- | M] () -- C:\Programme\hotkey\HIDHOOK.DLL
 
 
========== Services (SafeList) ==========
 
SRV - [2013.11.30 20:20:36 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.11.19 11:59:11 | 000,440,376 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2013.11.19 11:58:19 | 000,440,376 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2013.11.17 10:56:07 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.11.08 11:22:57 | 000,217,088 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2013.09.19 13:05:54 | 000,384,840 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Programme\BlueStacks\HD-LogRotatorService.exe -- (BstHdLogRotatorSvc)
SRV - [2013.09.19 13:05:32 | 000,393,032 | ---- | M] (BlueStack Systems, Inc.) [Auto | Stopped] -- C:\Program Files\BlueStacks\HD-Service.exe -- (BstHdAndroidSvc)
SRV - [2013.09.05 09:34:30 | 000,171,680 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Programme\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.08.29 06:42:46 | 000,040,040 | ---- | M] (NV Access Limited) [Auto | Running] -- C:\Programme\NVDA\nvda_service.exe -- (nvda)
SRV - [2013.08.19 13:42:14 | 000,234,096 | ---- | M] (soft Xpansion) [On_Demand | Stopped] -- C:\Program Files\Common Files\soft Xpansion\sxds10.exe -- (SXDS10)
SRV - [2013.08.09 14:03:48 | 000,067,072 | ---- | M] (Cepstral, LLC) [Auto | Running] -- C:\Programme\Cepstral\bin\CepstralLicSrv.exe -- (Cepstral License Server)
SRV - [2013.05.27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.05.11 11:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.04.04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Disabled | Stopped] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013.04.04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Disabled | Stopped] -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012.07.17 13:49:00 | 001,713,904 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2010.11.20 22:29:49 | 001,121,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2009.07.14 02:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2003.07.28 19:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE -- (ose)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2013.11.19 11:59:14 | 000,137,208 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2013.11.19 11:59:14 | 000,090,400 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2013.11.19 11:59:14 | 000,037,352 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2013.11.16 10:24:03 | 000,040,776 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2013.11.08 11:39:24 | 000,078,848 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2013.11.08 11:22:57 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2013.11.08 11:22:57 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2013.11.08 11:22:57 | 000,290,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2013.09.19 13:05:38 | 000,063,816 | ---- | M] (BlueStack Systems) [Kernel | Auto | Running] -- C:\Programme\BlueStacks\HD-Hypervisor-x86.sys -- (BstHdDrv)
DRV - [2013.08.14 18:07:17 | 000,622,040 | ---- | M] (TechniSat Digital, S.A.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SkyNetBDA.sys -- (SkyNetBDA)
DRV - [2013.08.13 14:33:52 | 000,022,560 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\System32\drivers\HWiNFO32.SYS -- (HWiNFO32)
DRV - [2013.08.12 14:58:38 | 000,013,464 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SWDUMon.sys -- (SWDUMon)
DRV - [2013.04.04 13:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012.08.27 14:50:24 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010.11.20 22:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 22:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 22:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010.11.20 22:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 22:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 22:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010.11.20 22:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 22:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010.05.10 08:09:34 | 000,627,288 | ---- | M] (TechniSat Digital, S.A.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SkyNET.sys -- (SKYNET)
DRV - [2009.09.23 02:18:08 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vpcusb.sys -- (vpcusb)
DRV - [2009.09.23 02:18:07 | 000,165,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vpchbus.sys -- (vpcbus)
DRV - [2009.07.14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = 
IE - HKCU\..\SearchScopes\{408F8EF2-543E-43D4-A776-910726A7FC3C}: "URL" = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=402027&p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.useDBForOrder: "false"
FF - prefs.js..extensions.enabledAddons: savingsslider%40mybrowserbar.com:2.8
FF - prefs.js..extensions.enabledAddons: %7B58d2a791-6199-482f-a9aa-9b725ec61362%7D:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0.1
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.0: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013.08.24 10:21:46 | 000,000,000 | ---D | M]
 
[2013.10.18 08:37:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rolli\AppData\Roaming\mozilla\Extensions
[2013.08.12 09:26:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rolli\AppData\Roaming\mozilla\Firefox\F\Firefox\uulikk08.default\extensions
[2013.08.12 09:26:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rolli\AppData\Roaming\mozilla\Firefox\F\Firefox\uulikk08.default\extensions\staged
[2013.11.29 12:30:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rolli\AppData\Roaming\mozilla\Firefox\Profiles\{DefaultProfilesFolder}\extensions
[2013.11.29 12:36:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rolli\AppData\Roaming\mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions
[2013.11.26 10:29:11 | 000,000,000 | ---D | M] (Start Page) -- C:\Users\Rolli\AppData\Roaming\mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
[2013.11.26 10:29:10 | 000,000,000 | ---D | M] (Slick Savings) -- C:\Users\Rolli\AppData\Roaming\mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\savingsslider@mybrowserbar.com
[2013.11.29 12:30:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rolli\AppData\Roaming\mozilla\Firefox\Profiles\cswr9l4x.default\extensions
[2013.11.02 12:33:48 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\browser\extensions
[2013.11.17 10:56:08 | 000,000,000 | ---D | M] (Default) -- C:\Programme\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013.11.02 12:09:17 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\updated\browser\extensions
[2013.11.02 12:09:22 | 000,000,000 | ---D | M] (Default) -- C:\Programme\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
O1 HOSTS File: ([2009.06.10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Speed Test Analysis) - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Programme\Speed Test Analysis\ScriptHost.dll (SpeedAnalysis.com)
O2 - BHO: (Slick Savings) - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Rolli\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Free Download Manager) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programme\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - AutorunsDisabled - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {41564952-412D-5637-00A7-7A786E7484D7} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BlueStacks Agent] C:\Programme\BlueStacks\HD-Agent.exe (BlueStack Systems, Inc.)
O4 - HKLM..\Run: [HotKey] C:\Programme\hotkey\hotkey.exe (KYE SYSTEMS CORP.)
O4 - HKLM..\Run: [MWS Reader 5] C:\Program Files\MWS Reader 5\mwsr5.exe (directINNOVATION UG (haftungsbeschränkt))
O4 - HKCU..\Run: [Speech Recognition] C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luffi.lnk = C:\Users\Public\Documents\Luffi\Luffi.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 221
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O8 - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files\Free Download Manager\dlselected.htm ()
O8 - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Free YouTube Download - C:\Programme\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Programme\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm ()
O8 - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files\Free Download Manager\dlfvideo.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7A44597B-B73C-4913-A836-49FCC23E904C}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8B1ABE68-87A9-4484-BBFD-2AB932FA0E2C}: DhcpNameServer = 0.0.0.0
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Programme\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2012.05.21 13:48:15 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.11.29 15:35:17 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
[2013.11.29 11:43:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPlayer
[2013.11.29 11:43:52 | 000,000,000 | ---D | C] -- C:\Program Files\VideoPlayer
[2013.11.28 18:51:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast
[2013.11.28 18:50:59 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
[2013.11.28 18:50:59 | 000,000,000 | ---D | C] -- C:\Program Files\SopCast
[2013.11.26 17:26:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cepstral
[2013.11.26 17:26:11 | 000,000,000 | ---D | C] -- C:\Program Files\Cepstral
[2013.11.26 14:08:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSpeak
[2013.11.26 14:08:31 | 000,000,000 | ---D | C] -- C:\Program Files\eSpeak
[2013.11.26 13:58:56 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\nvda
[2013.11.26 13:58:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVDA
[2013.11.26 13:58:20 | 000,000,000 | ---D | C] -- C:\Program Files\NVDA
[2013.11.26 13:44:56 | 000,000,000 | ---D | C] -- C:\Program Files\ScanSoft
[2013.11.26 13:30:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MWS Reader 5
[2013.11.26 13:30:39 | 000,000,000 | ---D | C] -- C:\Program Files\MWS Reader 5
[2013.11.25 20:26:38 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Local\Slick Savings
[2013.11.25 20:26:37 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\Slick Savings
[2013.11.25 15:10:56 | 000,000,000 | ---D | C] -- C:\Users\Rolli\Documents\Naturalsoft
[2013.11.25 15:10:26 | 000,000,000 | ---D | C] -- C:\ProgramData\NaturalSoft
[2013.11.25 14:42:04 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\mresreg
[2013.11.25 14:42:04 | 000,000,000 | ---D | C] -- C:\Users\Rolli\Documents\Meine EBookToMP3 Dateien
[2013.11.25 14:38:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Speech SDK 5.1
[2013.11.25 14:38:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Speech SDK 5.1
[2013.11.25 14:37:28 | 000,000,000 | ---D | C] -- C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
[2013.11.25 14:37:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EBookToMP3
[2013.11.25 14:37:27 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
[2013.11.25 14:37:19 | 000,000,000 | ---D | C] -- C:\Program Files\EBookToMP3
[2013.11.25 14:36:55 | 000,000,000 | ---D | C] -- C:\Program Files\mresreg
[2013.11.24 16:59:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Free Download Manager
[2013.11.24 11:59:00 | 000,000,000 | ---D | C] -- C:\Users\Rolli\Documents\Verzeichnisse
[2013.11.21 16:54:42 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Local\Abelssoft
[2013.11.21 16:51:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icaros
[2013.11.21 16:51:32 | 000,000,000 | ---D | C] -- C:\Program Files\Icaros
[2013.11.20 15:02:38 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Local\fontconfig
[2013.11.18 17:42:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2013.11.16 10:24:03 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2013.11.15 13:50:35 | 000,000,000 | ---D | C] -- C:\Users\Rolli\Documents\My eBooks
[2013.11.15 13:50:35 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\Mobipocket
[2013.11.15 13:44:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobipocket.com
[2013.11.15 13:44:39 | 000,000,000 | ---D | C] -- C:\Program Files\Mobipocket.com
[2013.11.15 13:41:08 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2013.11.14 11:10:00 | 000,000,000 | ---D | C] -- C:\Users\Rolli\Documents\eRightSoft
[2013.11.14 10:46:56 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\Audacity
[2013.11.13 18:34:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
[2013.11.13 18:34:29 | 000,000,000 | ---D | C] -- C:\Program Files\BlueStacks
[2013.11.13 18:32:55 | 000,000,000 | ---D | C] -- C:\ProgramData\BlueStacks
[2013.11.13 18:30:08 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
[2013.11.13 18:30:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVIcodec
[2013.11.13 18:30:08 | 000,000,000 | ---D | C] -- C:\Program Files\AVIcodec
[2013.11.08 17:19:04 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1
[2013.11.08 17:06:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GTK2 Runtime
[2013.11.08 17:06:34 | 000,000,000 | ---D | C] -- C:\Program Files\GTK2-Runtime
[2013.11.08 11:41:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2013.11.08 11:41:08 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013.11.08 11:40:52 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2013.11.08 11:40:52 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2013.11.08 11:40:52 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2013.11.08 11:40:52 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2013.11.08 11:40:52 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2013.11.08 11:40:51 | 001,935,104 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2013.11.08 11:40:51 | 000,859,392 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPOShell.dll
[2013.11.08 11:40:51 | 000,359,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
[2013.11.08 11:40:51 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2013.11.08 11:40:51 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2013.11.08 11:40:51 | 000,232,792 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2013.11.08 11:40:51 | 000,170,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
[2013.11.08 11:40:51 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2013.11.08 11:40:51 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
[2013.11.08 11:40:51 | 000,064,856 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
[2013.11.08 11:40:50 | 002,395,680 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2013.11.08 11:40:50 | 000,092,584 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\System32\CONEQMSAPOGUILibrary.dll
[2013.11.08 11:39:24 | 000,084,480 | ---- | C] (TODO: <Company name>) -- C:\Windows\System32\DelayAPO.dll
[2013.11.08 11:22:58 | 000,058,368 | ---- | C] (AMD) -- C:\Windows\System32\coinst_8.97.100.7.dll
[2013.11.08 11:22:57 | 000,163,840 | ---- | C] (AMD) -- C:\Windows\System32\atitmmxx.dll
[2013.11.08 11:22:57 | 000,020,992 | ---- | C] (AMD) -- C:\Windows\System32\atimuixx.dll
[2013.11.08 11:19:04 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
[2013.11.08 11:19:04 | 000,000,000 | ---D | C] -- C:\Program Files\Speed Test Analysis
[2013.11.08 11:18:19 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\IObit
[2013.11.08 11:18:19 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2013.11.08 11:18:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
[2013.11.08 11:18:17 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2013.11.08 10:35:44 | 000,000,000 | ---D | C] -- C:\Users\Rolli\Documents\Alte Firefox-Daten
[2013.11.07 18:34:48 | 000,000,000 | ---D | C] -- C:\ProgramData\BlueStacksSetup
[2013.11.07 15:00:57 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Local\Audiggle_LTD
[2013.11.07 14:59:21 | 000,000,000 | ---D | C] -- C:\Program Files\Audiggle
[2013.11.07 12:37:07 | 000,000,000 | ---D | C] -- C:\Program Files\Tunatic
[2013.11.07 12:28:50 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Local\Songs2SeeEditor
[2013.11.07 12:28:32 | 000,000,000 | ---D | C] -- C:\Program Files\Songs2See Editor Demo
[2013.11.05 18:54:57 | 000,000,000 | ---D | C] -- C:\Program Files\Uninstaller
[2013.11.05 18:48:46 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Local\LogiShrd
[2013.11.05 18:48:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2013.11.05 18:48:31 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2013.11.02 13:21:04 | 000,000,000 | ---D | C] -- C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
[2013.11.02 12:29:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2013.11.02 12:13:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013.11.02 12:13:05 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2013.11.02 12:11:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013.11.02 12:11:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013.11.02 12:11:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013.11.02 12:11:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013.11.02 12:11:21 | 000,000,000 | ---D | C] -- C:\Program Files\Java
 
========== Files - Modified Within 30 Days ==========
 
[2013.12.01 22:33:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.12.01 18:11:48 | 000,696,620 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2013.12.01 18:11:48 | 000,651,938 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.12.01 18:11:48 | 000,147,916 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2013.12.01 18:11:48 | 000,120,870 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.12.01 10:58:11 | 000,025,680 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.12.01 10:58:11 | 000,025,680 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.12.01 10:49:55 | 000,001,374 | ---- | M] () -- C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luffi.lnk
[2013.12.01 10:49:39 | 000,000,272 | ---- | M] () -- C:\Windows\tasks\Driver Booster Update.job
[2013.12.01 10:49:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.12.01 10:48:59 | 1609,424,896 | -HS- | M] () -- C:\hiberfil.sys
[2013.11.29 10:52:54 | 000,357,440 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.11.26 22:53:22 | 000,000,862 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog
[2013.11.25 01:41:56 | 109,273,582 | ---- | M] () -- C:\Users\Rolli\Documents\Computer Bild Sonderheft - eHome 01-2013.pdf
[2013.11.25 01:31:39 | 018,600,210 | ---- | M] () -- C:\Users\Rolli\Documents\Internet Magazin 12-2013.pdf
[2013.11.24 19:53:58 | 000,022,297 | ---- | M] () -- C:\Users\Rolli\AppData\Local\recently-used.xbel
[2013.11.24 13:19:09 | 000,008,704 | ---- | M] () -- C:\Users\Rolli\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.11.19 11:59:14 | 000,137,208 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avipbb.sys
[2013.11.19 11:59:14 | 000,090,400 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avgntflt.sys
[2013.11.19 11:59:14 | 000,067,680 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avnetflt.sys
[2013.11.19 11:59:14 | 000,037,352 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avkmgr.sys
[2013.11.16 10:24:03 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2013.11.11 11:21:50 | 239,140,864 | ---- | M] () -- C:\Users\Rolli\Documents\FFOutput.iso
[2013.11.08 11:40:52 | 001,783,056 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2013.11.08 11:40:52 | 000,345,328 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2013.11.08 11:40:52 | 000,185,584 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2013.11.08 11:40:52 | 000,173,296 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2013.11.08 11:40:52 | 000,140,528 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2013.11.08 11:40:51 | 001,935,104 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2013.11.08 11:40:51 | 000,859,392 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPOShell.dll
[2013.11.08 11:40:51 | 000,646,313 | ---- | M] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2013.11.08 11:40:51 | 000,359,768 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
[2013.11.08 11:40:51 | 000,295,768 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2013.11.08 11:40:51 | 000,295,768 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2013.11.08 11:40:51 | 000,232,792 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2013.11.08 11:40:51 | 000,170,840 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
[2013.11.08 11:40:51 | 000,132,368 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2013.11.08 11:40:51 | 000,078,680 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
[2013.11.08 11:40:51 | 000,064,856 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
[2013.11.08 11:40:50 | 002,395,680 | ---- | M] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2013.11.08 11:40:50 | 000,092,584 | ---- | M] (Real Sound Lab SIA) -- C:\Windows\System32\CONEQMSAPOGUILibrary.dll
[2013.11.08 11:39:24 | 000,084,480 | ---- | M] (TODO: <Company name>) -- C:\Windows\System32\DelayAPO.dll
[2013.11.08 11:22:58 | 002,852,480 | ---- | M] () -- C:\Windows\System32\atiumdva.cap
[2013.11.08 11:22:58 | 000,204,952 | ---- | M] () -- C:\Windows\System32\ativvsvl.dat
[2013.11.08 11:22:58 | 000,157,144 | ---- | M] () -- C:\Windows\System32\ativvsva.dat
[2013.11.08 11:22:58 | 000,058,368 | ---- | M] (AMD) -- C:\Windows\System32\coinst_8.97.100.7.dll
[2013.11.08 11:22:57 | 000,618,823 | ---- | M] () -- C:\Windows\System32\atiicdxx.dat
[2013.11.08 11:22:57 | 000,453,632 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
[2013.11.08 11:22:57 | 000,245,944 | ---- | M] () -- C:\Windows\System32\atiapfxx.blb
[2013.11.08 11:22:57 | 000,217,088 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
[2013.11.08 11:22:57 | 000,163,840 | ---- | M] (AMD) -- C:\Windows\System32\atitmmxx.dll
[2013.11.08 11:22:57 | 000,038,177 | ---- | M] () -- C:\Windows\atiogl.xml
[2013.11.08 11:22:57 | 000,020,992 | ---- | M] (AMD) -- C:\Windows\System32\atimuixx.dll
[2013.11.08 11:22:57 | 000,003,917 | ---- | M] () -- C:\Windows\System32\atipblag.dat
[2013.11.07 13:32:08 | 000,000,046 | R--- | M] () -- C:\Windows\amunres.lsl
 
========== Files Created - No Company Name ==========
 
[2013.11.30 20:20:37 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.11.29 17:53:15 | 018,600,210 | ---- | C] () -- C:\Users\Rolli\Documents\Internet Magazin 12-2013.pdf
[2013.11.29 17:21:00 | 109,273,582 | ---- | C] () -- C:\Users\Rolli\Documents\Computer Bild Sonderheft - eHome 01-2013.pdf
[2013.11.29 10:52:44 | 000,357,440 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.11.26 22:45:17 | 000,000,862 | ---- | C] () -- C:\Windows\System32\InstallUtil.InstallLog
[2013.11.24 19:53:58 | 000,022,297 | ---- | C] () -- C:\Users\Rolli\AppData\Local\recently-used.xbel
[2013.11.20 22:15:32 | 031,179,579 | ---- | C] () -- C:\Users\Rolli\Documents\Stern 2013-37.pdf
[2013.11.15 13:24:40 | 012,679,692 | ---- | C] () -- C:\Users\Rolli\Documents\PC-Welt 10-2013 .pdf
[2013.11.11 11:21:50 | 239,140,864 | ---- | C] () -- C:\Users\Rolli\Documents\FFOutput.iso
[2013.11.08 11:40:51 | 000,646,313 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2013.11.08 11:22:58 | 002,852,480 | ---- | C] () -- C:\Windows\System32\atiumdva.cap
[2013.11.08 11:22:58 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
[2013.11.08 11:22:58 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
[2013.11.08 11:22:57 | 000,618,823 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2013.11.08 11:22:57 | 000,245,944 | ---- | C] () -- C:\Windows\System32\atiapfxx.blb
[2013.11.08 11:22:57 | 000,038,177 | ---- | C] () -- C:\Windows\atiogl.xml
[2013.11.08 11:22:57 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2013.11.08 11:18:19 | 000,000,272 | ---- | C] () -- C:\Windows\tasks\Driver Booster Update.job
[2013.11.07 13:32:08 | 000,000,046 | R--- | C] () -- C:\Windows\amunres.lsl
[2013.10.03 11:03:55 | 000,084,480 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2013.09.20 13:49:09 | 000,015,425 | ---- | C] () -- C:\Users\Rolli\AppData\Roaming\13_09_2013_ebook
[2013.09.19 10:18:47 | 000,032,256 | -HS- | C] () -- C:\Windows\System32\AVSredirect.dll
[2013.09.14 10:07:52 | 000,000,209 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2013.09.14 10:07:52 | 000,000,136 | ---- | C] () -- C:\Windows\ODBC.INI
[2013.09.07 22:47:44 | 000,008,704 | ---- | C] () -- C:\Users\Rolli\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.09.07 14:45:54 | 000,000,075 | ---- | C] () -- C:\Windows\wiso.ini
[2013.09.04 14:10:42 | 001,169,609 | ---- | C] () -- C:\Windows\unins000.exe
[2013.09.04 14:10:42 | 000,097,975 | ---- | C] () -- C:\Windows\unins000.dat
[2013.08.31 15:41:16 | 000,039,095 | ---- | C] () -- C:\Windows\iccsigs.dat
[2013.08.31 15:28:39 | 000,108,032 | ---- | C] () -- C:\Windows\System32\sh33w32.dll
[2013.08.31 15:07:37 | 000,017,087 | ---- | C] () -- C:\Program Files\Programmbschreibungen.ods
[2013.08.26 10:08:44 | 000,007,604 | ---- | C] () -- C:\Users\Rolli\AppData\Local\resmon.resmoncfg
[2013.08.20 16:04:48 | 000,210,944 | ---- | C] () -- C:\Windows\System32\Msvcrt10.dll
[2013.08.20 16:04:45 | 000,065,536 | ---- | C] () -- C:\Windows\System32\adistres.dll
[2013.08.19 13:40:42 | 000,016,384 | ---- | C] () -- C:\Windows\Launcher.exe
[2013.08.12 14:58:38 | 000,013,464 | ---- | C] () -- C:\Windows\System32\drivers\SWDUMon.sys
[2013.08.10 23:19:05 | 000,696,620 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2013.08.10 23:19:05 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2013.08.10 23:19:05 | 000,147,916 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2013.08.10 23:19:05 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2013.08.10 13:23:58 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012.11.03 12:45:55 | 000,065,536 | -HS- | C] () -- C:\Users\Rolli\NTUSER.DA_
[2012.06.09 09:21:56 | 000,178,688 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2012.05.22 00:28:58 | 000,155,648 | ---- | C] () -- C:\Windows\System32\mlc.dll
[2011.12.08 05:32:24 | 000,216,064 | ---- | C] ( ) -- C:\Windows\System32\lagarith.dll
 
========== ZeroAccess Check ==========
 
[2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 22:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2013.08.15 11:01:28 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Advanced
[2013.09.28 22:22:59 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Ashampoo
[2013.11.14 10:53:38 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Audacity
[2013.11.24 13:26:08 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\avidemux
[2013.09.20 10:49:26 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\calibre
[2013.08.25 14:02:38 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Canneverbe Limited
[2013.10.10 12:20:56 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Canon
[2013.09.23 17:43:57 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\CDisplayEx
[2013.08.24 12:32:05 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\com.adobe.formscentral.FormsCentralForAcrobat
[2013.09.05 10:53:40 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Digiarty
[2013.08.19 13:25:38 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Downloaded Installations
[2013.11.02 12:31:05 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\DVDVideoSoft
[2013.10.13 11:01:21 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\EAC
[2013.09.07 14:59:31 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\elsterformular
[2013.08.19 13:26:39 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\FileOpen
[2013.11.24 16:59:30 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Free Download Manager
[2013.09.08 11:16:44 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\FreeCommander
[2013.10.04 17:35:22 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\GetFoldersize
[2013.10.13 12:13:41 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\ImgBurn
[2013.11.25 14:42:04 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
[2013.08.20 16:03:33 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\InterTrust
[2013.11.08 11:18:19 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\IObit
[2013.08.27 11:16:02 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\IrfanView
[2013.10.12 12:46:18 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\JAM Software
[2013.11.29 15:35:17 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
[2013.10.23 18:43:26 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\KompoZer
[2013.08.10 20:23:11 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\LibreOffice
[2013.11.15 14:03:37 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Mobipocket
[2013.11.14 10:57:56 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Mp3tag
[2013.11.25 14:42:04 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\mresreg
[2013.08.19 13:26:39 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Nitro
[2013.11.26 13:59:43 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\nvda
[2013.08.23 18:12:12 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\OpenOffice
[2013.08.19 12:49:15 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\PDF Architect
[2013.08.27 11:22:26 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\PhotoScape
[2013.08.18 08:50:58 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Q-Dir
[2013.11.25 20:26:38 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Slick Savings
[2013.08.21 21:45:42 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Smart PDF Converter Pro
[2013.08.24 13:32:45 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\SolidDocuments
[2013.11.08 11:19:06 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
[2013.08.10 13:57:48 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Thunderbird
[2013.12.01 16:22:58 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\UseNeXT
[2013.09.30 13:15:11 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Windows Live Writer
[2013.11.28 19:35:18 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Wise Disk Cleaner
[2013.10.04 17:35:23 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\Wise Registry Cleaner
[2013.08.10 20:38:08 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\www.rene-zeidler.de
[2013.09.17 21:39:30 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\XMedia Recode
[2013.11.29 16:31:30 | 000,000,000 | ---D | M] -- C:\Users\Rolli\AppData\Roaming\XnView
 
========== Purity Check ==========
 
 
 
========== Files - Unicode (All) ==========
[2013.11.08 10:26:46 | 103,075,526 | ---- | M] ()(C:\Windows\System32\???[) -- C:\Windows\System32\냅縞ᩌ[
[2013.11.08 10:26:46 | 103,075,526 | ---- | C] ()(C:\Windows\System32\???[) -- C:\Windows\System32\냅縞ᩌ[
[2013.10.20 10:13:41 | 102,034,533 | ---- | M] ()(C:\Windows\System32\???l) -- C:\Windows\System32\濙绩ᩌl
[2013.10.20 10:13:41 | 102,034,533 | ---- | C] ()(C:\Windows\System32\???l) -- C:\Windows\System32\濙绩ᩌl
[2013.10.04 12:28:19 | 099,176,917 | ---- | M] ()(C:\Windows\System32\???p) -- C:\Windows\System32\汌ꦪᩌp
[2013.10.04 12:28:19 | 099,176,917 | ---- | C] ()(C:\Windows\System32\???p) -- C:\Windows\System32\汌ꦪᩌp

< End of report >

cosinus · 02.12.2013, 00:39

Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!

Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

rolli0815 · 02.12.2013, 11:54

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-12-2013
Ran by Rolli (administrator) on ROLLI-PC on 02-12-2013 11:51:51
Running from C:\Users\Rolli\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Cepstral, LLC) C:\Program Files\Cepstral\bin\CepstralLicSrv.exe
(NV Access Limited) C:\Program Files\NVDA\nvda_service.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\ConversionService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(KYE SYSTEMS CORP.) C:\Program Files\hotkey\hotkey.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\hotkey\OSD.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Agent.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(TechniSat Digital, S.A.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
() C:\Users\Public\Documents\Luffi\Luffi.exe
(TechniSat Digital, S.A.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-19] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [HotKey] - C:\Program Files\hotkey\hotkey.exe [81920 2006-11-03] (KYE SYSTEMS CORP.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12009176 2013-11-08] (Realtek Semiconductor)
HKLM\...\Run: [BlueStacks Agent] - C:\Program Files\BlueStacks\HD-Agent.exe [606024 2013-09-19] (BlueStack Systems, Inc.)
HKLM\...\Run: [MWS Reader 5] - C:\Program Files\MWS Reader 5\mwsr5.exe [13211648 2013-09-11] (directINNOVATION UG (haftungsbeschränkt))
HKCU\...\Run: [Speech Recognition] - C:\Windows\Speech\Common\sapisvr.exe [51712 2009-07-14] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs:   [ ] ()
Startup: C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luffi.lnk
ShortcutTarget: Luffi.lnk -> C:\Users\Public\Documents\Luffi\Luffi.exe ()

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {408F8EF2-543E-43D4-A776-910726A7FC3C} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=402027&p={searchTerms}
BHO: Speed Test Analysis - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Program Files\Speed Test Analysis\ScriptHost.dll (SpeedAnalysis.com)
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Rolli\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 0.0.0.0

FireFox:
========
FF ProfilePath: C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655
FF user.js: detected! => C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Slick Savings - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\savingsslider@mybrowserbar.com
FF Extension: Start Page - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: fdm_ffext - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\fdm_ffext@freedownloadmanager.org
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
S2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-09-19] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-09-19] (BlueStack Systems, Inc.)
R2 Cepstral License Server; C:\Program Files\Cepstral\bin\CepstralLicSrv.exe [67072 2013-08-09] (Cepstral, LLC)
S4 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 nvda; C:\Program Files\NVDA\nvda_service.exe [40040 2013-08-29] (NV Access Limited)
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
S3 SXDS10; C:\Program Files\Common Files\soft Xpansion\sxds10.exe [234096 2013-08-19] (soft Xpansion)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-11-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-11-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-09-19] (BlueStack Systems)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [22560 2013-08-13] (REALiX(tm))
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2013-11-16] (Malwarebytes Corporation)
R3 SKYNET; C:\Windows\System32\DRIVERS\SkyNET.SYS [627288 2010-05-10] (TechniSat Digital, S.A.)
S3 SkyNetBDA; C:\Windows\System32\DRIVERS\SkyNetBDA.sys [622040 2013-08-14] (TechniSat Digital, S.A.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2013-08-12] ()
S3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [165376 2009-09-23] (Microsoft Corporation)
S3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2009-09-23] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-02 11:51 - 2013-12-02 11:51 - 01092187 _____ (Farbar) C:\Users\Rolli\Downloads\FRST.exe
2013-12-02 11:51 - 2013-12-02 11:51 - 00010669 _____ C:\Users\Rolli\Downloads\FRST.txt
2013-12-02 10:54 - 2013-12-02 10:54 - 00930903 _____ C:\Users\Rolli\Downloads\Das Narrenschiff (SM).zip
2013-12-02 00:05 - 2013-12-02 00:06 - 00000000 ____D C:\Program Files\PDFCreator
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\Documents\PDF Architect Files
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\pdfforge
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDF Architect
2013-12-02 00:05 - 2013-04-09 14:13 - 00095416 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2013-12-02 00:05 - 2012-05-05 10:54 - 00137000 _____ (Microsoft Corporation) C:\Windows\system32\MSMAPI32.OCX
2013-12-02 00:05 - 2012-05-05 10:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\MSMPIDE.DLL
2013-12-02 00:05 - 1998-07-06 17:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\system32\VB6DE.DLL
2013-12-02 00:05 - 1998-07-06 17:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\MSCC2DE.DLL
2013-12-01 23:57 - 2013-12-01 23:57 - 00001070 _____ C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2013-12-01 23:57 - 2013-12-01 23:57 - 00000000 ____D C:\Program Files\MediaInfo
2013-11-30 20:20 - 2013-12-02 11:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-30 20:20 - 2013-11-30 20:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-30 20:20 - 2013-11-30 20:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-29 15:35 - 2013-11-29 15:35 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
2013-11-29 13:51 - 2013-11-29 13:51 - 05325312 _____ C:\Users\Rolli\Downloads\luffi.exe
2013-11-29 12:51 - 2013-11-29 12:51 - 00947464 _____ (                                                            ) C:\Users\Rolli\Downloads\VLC_Media_Player.exe
2013-11-29 11:43 - 2013-11-29 11:43 - 00000000 ____D C:\Program Files\VideoPlayer
2013-11-29 10:53 - 2013-12-02 10:47 - 00000336 _____ C:\Windows\setupact.log
2013-11-29 10:53 - 2013-11-29 10:53 - 00085592 _____ C:\Users\Rolli\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-29 10:53 - 2013-11-29 10:53 - 00000000 _____ C:\Windows\setuperr.log
2013-11-29 10:52 - 2013-12-02 10:46 - 00005858 _____ C:\Windows\PFRO.log
2013-11-29 10:52 - 2013-11-29 10:52 - 00357440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 19:28 - 2013-11-28 19:28 - 17822088 _____ (Adobe Systems Incorporated) C:\Users\Rolli\Downloads\install_flash_player_11_plugin.exe
2013-11-28 18:57 - 2013-11-28 18:57 - 00461136 _____ C:\Users\Rolli\Downloads\sopcast-de.exe
2013-11-28 18:50 - 2013-11-28 18:51 - 00000000 ____D C:\Program Files\SopCast
2013-11-28 18:50 - 2013-11-28 18:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2013-11-26 22:49 - 2013-11-26 22:49 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-11-26 22:45 - 2013-11-26 22:53 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-26 17:26 - 2013-11-26 17:26 - 00000000 ____D C:\Program Files\Cepstral
2013-11-26 17:06 - 2013-11-26 17:29 - 00000000 ____D C:\Users\Rolli\Downloads\Sprechprogramme
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 ____D C:\Program Files\eSpeak
2013-11-26 13:58 - 2013-11-26 13:59 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\nvda
2013-11-26 13:58 - 2013-11-26 13:58 - 00000000 ____D C:\Program Files\NVDA
2013-11-26 13:44 - 2013-11-26 13:44 - 00000000 ____D C:\Program Files\ScanSoft
2013-11-26 13:30 - 2013-11-26 13:31 - 00000000 ____D C:\Program Files\MWS Reader 5
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Slick Savings
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Local\Slick Savings
2013-11-25 15:10 - 2013-11-25 16:02 - 00000000 ____D C:\Users\Rolli\Documents\Naturalsoft
2013-11-25 15:10 - 2013-11-25 15:10 - 00000000 ____D C:\ProgramData\NaturalSoft
2013-11-25 14:42 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\mresreg
2013-11-25 14:38 - 2013-11-25 14:38 - 00000000 ____D C:\Program Files\Microsoft Speech SDK 5.1
2013-11-25 14:37 - 2013-11-26 13:38 - 00000000 ____D C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
2013-11-25 14:37 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
2013-11-25 14:37 - 2013-11-25 14:37 - 00000000 ____D C:\Program Files\EBookToMP3
2013-11-25 14:36 - 2013-11-25 14:36 - 00000000 ____D C:\Program Files\mresreg
2013-11-24 19:53 - 2013-11-24 19:53 - 00022297 _____ C:\Users\Rolli\AppData\Local\recently-used.xbel
2013-11-24 16:59 - 2013-11-24 16:59 - 00000000 ____D C:\ProgramData\Free Download Manager
2013-11-24 14:54 - 2013-11-24 14:40 - 02687393 _____ C:\Users\Rolli\Documents\CBS.log
2013-11-24 12:04 - 2013-11-24 12:05 - 00137227 _____ C:\Users\Rolli\Downloads\1-Klick-Schutz für Windows - com!-Magazin.htm
2013-11-24 11:59 - 2013-11-24 11:59 - 00000000 ____D C:\Users\Rolli\Documents\Verzeichnisse
2013-11-21 16:54 - 2013-11-21 16:54 - 00000000 ____D C:\Users\Rolli\AppData\Local\Abelssoft
2013-11-21 16:51 - 2013-11-21 16:51 - 00000000 ____D C:\Program Files\Icaros
2013-11-21 13:05 - 2013-11-21 13:06 - 20323856 _____ (Abelssoft                                                   ) C:\Users\Rolli\Downloads\gc.exe
2013-11-16 10:24 - 2013-11-16 10:24 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-11-15 13:50 - 2013-11-15 14:03 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mobipocket
2013-11-15 13:50 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\Documents\My eBooks
2013-11-15 13:44 - 2013-11-15 13:44 - 00000000 ____D C:\Program Files\Mobipocket.com
2013-11-15 13:41 - 2013-11-15 13:41 - 00000000 ____D C:\ProgramData\McAfee
2013-11-14 19:14 - 2013-10-12 08:04 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-14 19:14 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-14 19:14 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-14 19:14 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-14 16:51 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 16:51 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 16:51 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 16:51 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 16:51 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 16:51 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 16:51 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 16:51 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 16:51 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 16:51 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 16:51 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 16:51 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 16:51 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 16:51 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 16:51 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-14 11:10 - 2013-11-14 11:10 - 00000000 ____D C:\Users\Rolli\Documents\eRightSoft
2013-11-14 10:46 - 2013-11-14 10:53 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Audacity
2013-11-13 18:34 - 2013-11-13 18:34 - 00000000 ____D C:\Program Files\BlueStacks
2013-11-13 18:32 - 2013-11-13 18:34 - 00000000 ____D C:\ProgramData\BlueStacks
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Program Files\AVIcodec
2013-11-11 11:21 - 2013-11-11 11:21 - 239140864 _____ C:\Users\Rolli\Documents\FFOutput.iso
2013-11-08 17:06 - 2013-11-08 17:06 - 00000000 ____D C:\Program Files\GTK2-Runtime
2013-11-08 11:41 - 2013-11-08 11:41 - 00679128 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt86win7.sys
2013-11-08 11:41 - 2013-11-08 11:41 - 00102104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00077528 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Windows\system32\RTCOM
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-08 11:40 - 2013-11-08 11:40 - 02840664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-11-08 11:40 - 2013-11-08 11:40 - 02546904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02327768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-11-08 11:40 - 2013-11-08 11:40 - 00859392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00769752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00646313 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-08 11:40 - 2013-11-08 11:40 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00331544 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00181960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00122072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00084480 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 06811648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 02852480 _____ C:\Windows\system32\atiumdva.cap
2013-11-08 11:22 - 2013-11-08 11:22 - 01960960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdmv.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00918528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00618823 _____ C:\Windows\system32\atiicdxx.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 00245944 _____ C:\Windows\system32\atiapfxx.blb
2013-11-08 11:22 - 2013-11-08 11:22 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00058368 _____ (AMD) C:\Windows\system32\coinst_8.97.100.7.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00042496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00038177 _____ C:\Windows\atiogl.xml
2013-11-08 11:22 - 2013-11-08 11:22 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Program Files\Speed Test Analysis
2013-11-08 11:18 - 2013-12-02 10:47 - 00000272 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-11-08 11:18 - 2013-11-25 20:26 - 00000000 ____D C:\ProgramData\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Program Files\IObit
2013-11-08 10:26 - 2013-11-08 10:26 - 103075526 _____ C:\Windows\system32\냅縞ᩌ[
2013-11-07 15:00 - 2013-11-07 15:00 - 00000000 ____D C:\Users\Rolli\AppData\Local\Audiggle_LTD
2013-11-07 14:59 - 2013-11-07 19:02 - 00000000 ____D C:\Program Files\Audiggle
2013-11-07 13:32 - 2013-11-07 13:32 - 00000046 ____R C:\Windows\amunres.lsl
2013-11-07 12:37 - 2013-11-07 13:32 - 00000000 ____D C:\Program Files\Tunatic
2013-11-07 12:28 - 2013-11-07 13:32 - 00000000 ____D C:\Users\Rolli\AppData\Local\Songs2SeeEditor
2013-11-07 12:28 - 2013-11-07 13:31 - 00000000 ____D C:\Program Files\Songs2See Editor Demo
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Users\Rolli\AppData\Local\LogiShrd
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Program Files\Logitech
2013-11-02 13:21 - 2013-11-02 13:21 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2013-11-02 12:29 - 2013-11-02 12:31 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-11-02 12:13 - 2013-11-02 12:13 - 00000000 ____D C:\Program Files\Google
2013-11-02 12:11 - 2013-11-02 12:11 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-02 12:11 - 2013-11-02 12:11 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-02 12:11 - 2013-11-02 12:11 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-02 12:11 - 2013-11-02 12:11 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-11-02 12:11 - 2013-11-02 12:11 - 00000000 ____D C:\ProgramData\Sun
2013-11-02 12:11 - 2013-11-02 12:11 - 00000000 ____D C:\ProgramData\Oracle
2013-11-02 12:11 - 2013-11-02 12:11 - 00000000 ____D C:\Program Files\Java
2013-11-02 12:11 - 2013-11-02 12:11 - 00000000 ____D C:\Program Files\Common Files\Java

==================== One Month Modified Files and Folders =======

2013-12-02 11:52 - 2013-12-02 11:51 - 00010669 _____ C:\Users\Rolli\Downloads\FRST.txt
2013-12-02 11:51 - 2013-12-02 11:51 - 01092187 _____ (Farbar) C:\Users\Rolli\Downloads\FRST.exe
2013-12-02 11:33 - 2013-11-30 20:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-02 10:54 - 2013-12-02 10:54 - 00930903 _____ C:\Users\Rolli\Downloads\Das Narrenschiff (SM).zip
2013-12-02 10:54 - 2009-07-14 05:34 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-02 10:54 - 2009-07-14 05:34 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-02 10:51 - 2010-11-20 22:01 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-02 10:47 - 2013-11-29 10:53 - 00000336 _____ C:\Windows\setupact.log
2013-12-02 10:47 - 2013-11-08 11:18 - 00000272 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-12-02 10:47 - 2013-10-12 12:08 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Luffi
2013-12-02 10:47 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-02 10:46 - 2013-11-29 10:52 - 00005858 _____ C:\Windows\PFRO.log
2013-12-02 00:08 - 2013-08-10 13:24 - 01121086 _____ C:\Windows\WindowsUpdate.log
2013-12-02 00:06 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDFCreator
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\Documents\PDF Architect Files
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\pdfforge
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDF Architect
2013-12-02 00:02 - 2013-09-06 11:49 - 00000000 ____D C:\Program Files\Calibre2
2013-12-02 00:02 - 2013-08-10 20:24 - 00000000 ____D C:\Users\Rolli\Documents\Calibre Bibliothek
2013-12-01 23:57 - 2013-12-01 23:57 - 00001070 _____ C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2013-12-01 23:57 - 2013-12-01 23:57 - 00000000 ____D C:\Program Files\MediaInfo
2013-12-01 23:56 - 2013-08-12 10:47 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\vlc
2013-12-01 23:52 - 2013-08-10 20:28 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\UseNeXT
2013-12-01 23:50 - 2013-10-13 10:06 - 00000000 ____D C:\Users\Rolli\Documents\UseNeXT
2013-12-01 17:16 - 2013-10-12 12:40 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Skype
2013-12-01 12:23 - 2013-08-21 22:05 - 00000000 ____D C:\AdwCleaner
2013-12-01 10:49 - 2009-07-14 05:53 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-30 20:20 - 2013-11-30 20:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-30 20:20 - 2013-11-30 20:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-29 18:37 - 2013-10-15 09:54 - 00000000 ____D C:\Program Files\7-Zip
2013-11-29 16:31 - 2013-08-17 11:29 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\XnView
2013-11-29 15:35 - 2013-11-29 15:35 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
2013-11-29 13:51 - 2013-11-29 13:51 - 05325312 _____ C:\Users\Rolli\Downloads\luffi.exe
2013-11-29 12:51 - 2013-11-29 12:51 - 00947464 _____ (                                                            ) C:\Users\Rolli\Downloads\VLC_Media_Player.exe
2013-11-29 11:43 - 2013-11-29 11:43 - 00000000 ____D C:\Program Files\VideoPlayer
2013-11-29 10:53 - 2013-11-29 10:53 - 00085592 _____ C:\Users\Rolli\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-29 10:53 - 2013-11-29 10:53 - 00000000 _____ C:\Windows\setuperr.log
2013-11-29 10:52 - 2013-11-29 10:52 - 00357440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 19:35 - 2013-08-13 14:46 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Wise Disk Cleaner
2013-11-28 19:28 - 2013-11-28 19:28 - 17822088 _____ (Adobe Systems Incorporated) C:\Users\Rolli\Downloads\install_flash_player_11_plugin.exe
2013-11-28 18:57 - 2013-11-28 18:57 - 00461136 _____ C:\Users\Rolli\Downloads\sopcast-de.exe
2013-11-28 18:51 - 2013-11-28 18:50 - 00000000 ____D C:\Program Files\SopCast
2013-11-28 18:50 - 2013-11-28 18:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2013-11-27 14:55 - 2013-08-17 11:39 - 00000000 ____D C:\Program Files\XnView
2013-11-26 22:53 - 2013-11-26 22:45 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-26 22:49 - 2013-11-26 22:49 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-11-26 22:41 - 2013-08-25 15:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Media Player Classic
2013-11-26 21:58 - 2013-02-01 15:05 - 00000000 ____D C:\Users\Rolli\AppData\Local\MWSReader
2013-11-26 17:29 - 2013-11-26 17:06 - 00000000 ____D C:\Users\Rolli\Downloads\Sprechprogramme
2013-11-26 17:26 - 2013-11-26 17:26 - 00000000 ____D C:\Program Files\Cepstral
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 ____D C:\Program Files\eSpeak
2013-11-26 13:59 - 2013-11-26 13:58 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\nvda
2013-11-26 13:58 - 2013-11-26 13:58 - 00000000 ____D C:\Program Files\NVDA
2013-11-26 13:44 - 2013-11-26 13:44 - 00000000 ____D C:\Program Files\ScanSoft
2013-11-26 13:43 - 2013-08-12 15:54 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2013-11-26 13:38 - 2013-11-25 14:37 - 00000000 ____D C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
2013-11-26 13:32 - 2013-08-10 13:31 - 00000000 ____D C:\Users\Rolli
2013-11-26 13:31 - 2013-11-26 13:30 - 00000000 ____D C:\Program Files\MWS Reader 5
2013-11-26 13:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Speech
2013-11-26 13:28 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Slick Savings
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Local\Slick Savings
2013-11-25 20:26 - 2013-11-08 11:18 - 00000000 ____D C:\ProgramData\IObit
2013-11-25 16:02 - 2013-11-25 15:10 - 00000000 ____D C:\Users\Rolli\Documents\Naturalsoft
2013-11-25 15:10 - 2013-11-25 15:10 - 00000000 ____D C:\ProgramData\NaturalSoft
2013-11-25 14:42 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\mresreg
2013-11-25 14:42 - 2013-11-25 14:37 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
2013-11-25 14:41 - 2013-08-10 20:23 - 00000000 ____D C:\Users\Rolli\AppData\Local\Adobe
2013-11-25 14:38 - 2013-11-25 14:38 - 00000000 ____D C:\Program Files\Microsoft Speech SDK 5.1
2013-11-25 14:38 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-11-25 14:37 - 2013-11-25 14:37 - 00000000 ____D C:\Program Files\EBookToMP3
2013-11-25 14:36 - 2013-11-25 14:36 - 00000000 ____D C:\Program Files\mresreg
2013-11-24 19:53 - 2013-11-24 19:53 - 00022297 _____ C:\Users\Rolli\AppData\Local\recently-used.xbel
2013-11-24 19:53 - 2013-08-10 20:29 - 00000000 ____D C:\Users\Rolli\.gimp-2.8
2013-11-24 16:59 - 2013-11-24 16:59 - 00000000 ____D C:\ProgramData\Free Download Manager
2013-11-24 16:59 - 2013-10-15 10:23 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Free Download Manager
2013-11-24 15:32 - 2013-09-28 10:25 - 00000000 ____D C:\Program Files\JDownloader
2013-11-24 14:40 - 2013-11-24 14:54 - 02687393 _____ C:\Users\Rolli\Documents\CBS.log
2013-11-24 13:26 - 2013-08-10 20:39 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\avidemux
2013-11-24 13:19 - 2013-09-07 22:47 - 00008704 _____ C:\Users\Rolli\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-24 13:19 - 2013-08-25 10:43 - 00000000 ____D C:\Users\Rolli\AppData\Local\ColdCut
2013-11-24 12:10 - 2013-09-19 13:28 - 00000000 ____D C:\Users\Rolli\AppData\Local\Windows Live
2013-11-24 12:05 - 2013-11-24 12:04 - 00137227 _____ C:\Users\Rolli\Downloads\1-Klick-Schutz für Windows - com!-Magazin.htm
2013-11-24 11:59 - 2013-11-24 11:59 - 00000000 ____D C:\Users\Rolli\Documents\Verzeichnisse
2013-11-23 12:06 - 2013-08-10 13:57 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-11-23 12:06 - 2013-08-10 13:56 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-21 16:54 - 2013-11-21 16:54 - 00000000 ____D C:\Users\Rolli\AppData\Local\Abelssoft
2013-11-21 16:51 - 2013-11-21 16:51 - 00000000 ____D C:\Program Files\Icaros
2013-11-21 13:06 - 2013-11-21 13:05 - 20323856 _____ (Abelssoft                                                   ) C:\Users\Rolli\Downloads\gc.exe
2013-11-21 11:59 - 2013-08-10 13:57 - 00000000 ____D C:\Users\Rolli\AppData\Local\Thunderbird
2013-11-20 15:40 - 2013-09-03 09:42 - 00000000 ____D C:\Users\Rolli\AppData\Local\gtk-2.0
2013-11-20 15:23 - 2013-10-27 09:06 - 00000000 ____D C:\Users\Rolli\Desktop\107_PANA
2013-11-19 11:59 - 2013-08-10 13:53 - 00067680 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-17 10:56 - 2013-08-10 13:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 10:24 - 2013-11-16 10:24 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-11-15 16:41 - 2013-08-10 23:20 - 00000000 ____D C:\Windows\Panther
2013-11-15 14:57 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-11-15 14:03 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mobipocket
2013-11-15 13:50 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\Documents\My eBooks
2013-11-15 13:44 - 2013-11-15 13:44 - 00000000 ____D C:\Program Files\Mobipocket.com
2013-11-15 13:41 - 2013-11-15 13:41 - 00000000 ____D C:\ProgramData\McAfee
2013-11-15 09:23 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-11-14 19:14 - 2013-08-14 18:47 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 19:11 - 2013-08-12 16:01 - 80340640 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 11:10 - 2013-11-14 11:10 - 00000000 ____D C:\Users\Rolli\Documents\eRightSoft
2013-11-14 10:57 - 2013-08-26 18:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mp3tag
2013-11-14 10:53 - 2013-11-14 10:46 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Audacity
2013-11-14 10:25 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-11-13 18:34 - 2013-11-13 18:34 - 00000000 ____D C:\Program Files\BlueStacks
2013-11-13 18:34 - 2013-11-13 18:32 - 00000000 ____D C:\ProgramData\BlueStacks
2013-11-13 18:34 - 2009-07-14 03:37 - 00000000 __RHD C:\Users\Public\Libraries
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Program Files\AVIcodec
2013-11-11 11:21 - 2013-11-11 11:21 - 239140864 _____ C:\Users\Rolli\Documents\FFOutput.iso
2013-11-11 05:50 - 2013-08-10 13:46 - 00230048 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-09 21:15 - 2013-10-13 11:01 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\AccurateRip
2013-11-08 17:19 - 2013-08-12 10:59 - 00000000 ____D C:\Program Files\LibreOffice 4
2013-11-08 17:06 - 2013-11-08 17:06 - 00000000 ____D C:\Program Files\GTK2-Runtime
2013-11-08 11:41 - 2013-11-08 11:41 - 00679128 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt86win7.sys
2013-11-08 11:41 - 2013-11-08 11:41 - 00102104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00077528 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Windows\system32\RTCOM
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-08 11:40 - 2013-11-08 11:40 - 02840664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-11-08 11:40 - 2013-11-08 11:40 - 02546904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02327768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-11-08 11:40 - 2013-11-08 11:40 - 00859392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00769752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00646313 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-08 11:40 - 2013-11-08 11:40 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00331544 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00181960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00122072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00084480 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 06811648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 02852480 _____ C:\Windows\system32\atiumdva.cap
2013-11-08 11:22 - 2013-11-08 11:22 - 01960960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdmv.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00918528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00618823 _____ C:\Windows\system32\atiicdxx.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 00245944 _____ C:\Windows\system32\atiapfxx.blb
2013-11-08 11:22 - 2013-11-08 11:22 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00058368 _____ (AMD) C:\Windows\system32\coinst_8.97.100.7.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00042496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00038177 _____ C:\Windows\atiogl.xml
2013-11-08 11:22 - 2013-11-08 11:22 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-11-08 11:22 - 2009-08-18 01:36 - 00453632 _____ (AMD) C:\Windows\system32\atieclxx.exe
2013-11-08 11:22 - 2009-08-18 01:36 - 00217088 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2013-11-08 11:22 - 2009-08-18 01:20 - 06253224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdag.dll
2013-11-08 11:22 - 2009-08-18 01:05 - 04749312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdva.dll
2013-11-08 11:22 - 2009-08-18 00:52 - 00364544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Program Files\Speed Test Analysis
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Program Files\IObit
2013-11-08 10:26 - 2013-11-08 10:26 - 103075526 _____ C:\Windows\system32\냅縞ᩌ[
2013-11-07 19:02 - 2013-11-07 14:59 - 00000000 ____D C:\Program Files\Audiggle
2013-11-07 15:00 - 2013-11-07 15:00 - 00000000 ____D C:\Users\Rolli\AppData\Local\Audiggle_LTD
2013-11-07 13:32 - 2013-11-07 13:32 - 00000046 ____R C:\Windows\amunres.lsl
2013-11-07 13:32 - 2013-11-07 12:37 - 00000000 ____D C:\Program Files\Tunatic
2013-11-07 13:32 - 2013-11-07 12:28 - 00000000 ____D C:\Users\Rolli\AppData\Local\Songs2SeeEditor
2013-11-07 13:31 - 2013-11-07 12:28 - 00000000 ____D C:\Program Files\Songs2See Editor Demo
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Users\Rolli\AppData\Local\LogiShrd
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Program Files\Logitech
2013-11-02 13:28 - 2013-10-12 12:40 - 00000000 ___RD C:\Program Files\Skype
2013-11-02 13:28 - 2013-10-12 12:40 - 00000000 ____D C:\ProgramData\Skype
2013-11-02 13:21 - 2013-11-02 13:21 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2013-11-02 12:31 - 2013-11-02 12:29 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-11-02 12:31 - 2013-09-04 14:37 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\DVDVideoSoft
2013-11-02 12:31 - 2013-09-04 14:37 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-11-02 12:13 - 2013-11-02 12:13 - 00000000 ____D C:\Program Files\Google
2013-11-02 12:11 - 2013-11-02 12:11 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-02 12:11 - 2013-11-02 12:11 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-02 12:11 - 2013-11-02 12:11 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-02 12:11 - 2013-11-02 12:11 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-11-02 12:11 - 2013-11-02 12:11 - 00000000 ____D C:\ProgramData\Sun
2013-11-02 12:11 - 2013-11-02 12:11 - 00000000 ____D C:\ProgramData\Oracle
2013-11-02 12:11 - 2013-11-02 12:11 - 00000000 ____D C:\Program Files\Java
2013-11-02 12:11 - 2013-11-02 12:11 - 00000000 ____D C:\Program Files\Common Files\Java

Some content of TEMP:
====================
C:\Users\Rolli\AppData\Local\Temp\app.exe
C:\Users\Rolli\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 12:35

==================== End Of Log ============================

--- --- ---

cosinus · 02.12.2013, 12:13

Was ist mit meiner Frage nach bisherigen Funden, wenn ja wo sind die Logs dazu, oder gab es bisher keine Funde?

rolli0815 · 02.12.2013, 18:10

Keine weiteren Funde

cosinus · 03.12.2013, 10:22

Adware/Junkware/Toolbars entfernen

1. Schritt: adwCleaner

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

rolli0815 · 03.12.2013, 11:01

Hier die Ergebnisse:

Code:

ATTFilter

# AdwCleaner v3.014 - Bericht erstellt am 03/12/2013 um 10:46:33
# Updated 01/12/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (32 bits)
# Benutzername : Rolli - ROLLI-PC
# Gestartet von : E:\Computer\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Users\Rolli\AppData\Roaming\pdfforge
Datei Gelöscht : C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\user.js
Datei Gelöscht : C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\cswr9l4x.default\user.js
Datei Gelöscht : C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\speedupmypc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Crossrider
Schlüssel Gelöscht : HKLM\Software\Uniblue

***** [ Browser ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v25.0.1 (de)

[ Datei : C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\prefs.js ]

Zeile gelöscht : user_pref("extensions.crossrider.bic", "142a375634195c1aa8b77779e9f0b8c8");

[ Datei : C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\cswr9l4x.default\prefs.js ]


[ Datei : C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\prefs.js ]


*************************

AdwCleaner[R0].txt - [1323 octets] - [21/08/2013 22:06:36]
AdwCleaner[R10].txt - [4247 octets] - [24/10/2013 18:49:12]
AdwCleaner[R11].txt - [21764 octets] - [05/11/2013 19:04:45]
AdwCleaner[R12].txt - [19036 octets] - [07/11/2013 23:43:37]
AdwCleaner[R13].txt - [6423 octets] - [18/11/2013 23:40:12]
AdwCleaner[R14].txt - [2527 octets] - [20/11/2013 22:46:41]
AdwCleaner[R15].txt - [29353 octets] - [26/11/2013 23:13:55]
AdwCleaner[R16].txt - [7857 octets] - [28/11/2013 19:32:09]
AdwCleaner[R17].txt - [3669 octets] - [01/12/2013 12:22:47]
AdwCleaner[R18].txt - [3881 octets] - [03/12/2013 10:46:06]
AdwCleaner[R1].txt - [1687 octets] - [01/09/2013 09:15:36]
AdwCleaner[R2].txt - [4790 octets] - [05/09/2013 10:31:08]
AdwCleaner[R3].txt - [1231 octets] - [09/09/2013 10:54:50]
AdwCleaner[R4].txt - [1292 octets] - [10/09/2013 14:00:39]
AdwCleaner[R5].txt - [6950 octets] - [19/08/2013 17:04:24]
AdwCleaner[R6].txt - [1446 octets] - [20/09/2013 12:20:00]
AdwCleaner[R7].txt - [8553 octets] - [01/10/2013 11:31:48]
AdwCleaner[R8].txt - [3636 octets] - [04/10/2013 16:54:55]
AdwCleaner[R9].txt - [2035 octets] - [10/10/2013 13:34:47]
AdwCleaner[S0].txt - [1412 octets] - [21/08/2013 22:07:19]
AdwCleaner[S10].txt - [4994 octets] - [05/11/2013 19:08:40]
AdwCleaner[S11].txt - [2373 octets] - [07/11/2013 23:44:19]
AdwCleaner[S12].txt - [5424 octets] - [18/11/2013 23:41:18]
AdwCleaner[S13].txt - [2589 octets] - [20/11/2013 22:47:28]
AdwCleaner[S14].txt - [28967 octets] - [26/11/2013 23:14:57]
AdwCleaner[S15].txt - [6903 octets] - [28/11/2013 19:33:00]
AdwCleaner[S16].txt - [3263 octets] - [03/12/2013 10:46:33]
AdwCleaner[S1].txt - [1824 octets] - [01/09/2013 09:16:32]
AdwCleaner[S2].txt - [4857 octets] - [05/09/2013 10:32:22]
AdwCleaner[S3].txt - [1354 octets] - [10/09/2013 14:02:28]
AdwCleaner[S4].txt - [5707 octets] - [19/08/2013 17:04:50]
AdwCleaner[S5].txt - [1507 octets] - [20/09/2013 12:20:23]
AdwCleaner[S6].txt - [7765 octets] - [01/10/2013 11:32:43]
AdwCleaner[S7].txt - [3700 octets] - [04/10/2013 16:56:48]
AdwCleaner[S8].txt - [2096 octets] - [10/10/2013 13:38:51]
AdwCleaner[S9].txt - [4234 octets] - [24/10/2013 18:50:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S16].txt - [3864 octets] ##########

dazu

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.4 (02.16.2013:1)
OS: Windows 7 Professional x86
Ran by Rolli on 03.12.2013 at 10:50:45,19
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_classes_root\clsid\{cc59e0f9-7e43-44fa-9faa-8377850bf205}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{cc59e0f9-7e43-44fa-9faa-8377850bf205}



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Rolli\AppData\Roaming\mozilla\firefox\profiles\8fot05oc.default-1383903338655\extensions\savingsslider@mybrowserbar.com
Emptied folder: C:\Users\Rolli\AppData\Roaming\mozilla\firefox\profiles\8fot05oc.default-1383903338655\minidumps [32 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.12.2013 at 10:53:04,72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

dazu

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-12-2013
Ran by Rolli (administrator) on ROLLI-PC on 03-12-2013 10:56:12
Running from C:\Users\Rolli\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Cepstral, LLC) C:\Program Files\Cepstral\bin\CepstralLicSrv.exe
(NV Access Limited) C:\Program Files\NVDA\nvda_service.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\ConversionService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(KYE SYSTEMS CORP.) C:\Program Files\hotkey\hotkey.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\hotkey\OSD.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Agent.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(TechniSat Digital, S.A.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
() C:\Users\Public\Documents\Luffi\Luffi.exe
(TechniSat Digital, S.A.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-19] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [HotKey] - C:\Program Files\hotkey\hotkey.exe [81920 2006-11-03] (KYE SYSTEMS CORP.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12009176 2013-11-08] (Realtek Semiconductor)
HKLM\...\Run: [BlueStacks Agent] - C:\Program Files\BlueStacks\HD-Agent.exe [606024 2013-09-19] (BlueStack Systems, Inc.)
HKLM\...\Run: [MWS Reader 5] - C:\Program Files\MWS Reader 5\mwsr5.exe [13211648 2013-09-11] (directINNOVATION UG (haftungsbeschränkt))
HKCU\...\Run: [Speech Recognition] - C:\Windows\Speech\Common\sapisvr.exe [51712 2009-07-14] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs:   [ ] ()
Startup: C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luffi.lnk
ShortcutTarget: Luffi.lnk -> C:\Users\Public\Documents\Luffi\Luffi.exe ()

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {408F8EF2-543E-43D4-A776-910726A7FC3C} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=402027&p={searchTerms}
BHO: Speed Test Analysis - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Program Files\Speed Test Analysis\ScriptHost.dll (SpeedAnalysis.com)
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Rolli\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 0.0.0.0

FireFox:
========
FF ProfilePath: C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Start Page - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: fdm_ffext - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\fdm_ffext@freedownloadmanager.org
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
S2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-09-19] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-09-19] (BlueStack Systems, Inc.)
R2 Cepstral License Server; C:\Program Files\Cepstral\bin\CepstralLicSrv.exe [67072 2013-08-09] (Cepstral, LLC)
S4 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 nvda; C:\Program Files\NVDA\nvda_service.exe [40040 2013-08-29] (NV Access Limited)
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
S3 SXDS10; C:\Program Files\Common Files\soft Xpansion\sxds10.exe [234096 2013-08-19] (soft Xpansion)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-11-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-09-19] (BlueStack Systems)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [22560 2013-08-13] (REALiX(tm))
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2013-11-16] (Malwarebytes Corporation)
R3 SKYNET; C:\Windows\System32\DRIVERS\SkyNET.SYS [627288 2010-05-10] (TechniSat Digital, S.A.)
S3 SkyNetBDA; C:\Windows\System32\DRIVERS\SkyNetBDA.sys [622040 2013-08-14] (TechniSat Digital, S.A.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2013-08-12] ()
S3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [165376 2009-09-23] (Microsoft Corporation)
S3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2009-09-23] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-03 10:56 - 2013-12-03 10:56 - 00009978 _____ C:\Users\Rolli\Downloads\FRST.txt
2013-12-03 10:55 - 2013-12-03 10:56 - 01092389 _____ (Farbar) C:\Users\Rolli\Downloads\FRST.exe
2013-12-03 10:53 - 2013-12-03 10:53 - 00001205 _____ C:\Users\Rolli\Desktop\JRT.txt
2013-12-02 00:05 - 2013-12-02 00:06 - 00000000 ____D C:\Program Files\PDFCreator
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\Documents\PDF Architect Files
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDF Architect
2013-12-02 00:05 - 2013-04-09 14:13 - 00095416 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2013-12-02 00:05 - 2012-05-05 10:54 - 00137000 _____ (Microsoft Corporation) C:\Windows\system32\MSMAPI32.OCX
2013-12-02 00:05 - 2012-05-05 10:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\MSMPIDE.DLL
2013-12-02 00:05 - 1998-07-06 17:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\system32\VB6DE.DLL
2013-12-02 00:05 - 1998-07-06 17:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\MSCC2DE.DLL
2013-12-01 23:57 - 2013-12-01 23:57 - 00001070 _____ C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2013-12-01 23:57 - 2013-12-01 23:57 - 00000000 ____D C:\Program Files\MediaInfo
2013-11-30 20:20 - 2013-12-03 10:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-30 20:20 - 2013-11-30 20:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-30 20:20 - 2013-11-30 20:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-29 15:35 - 2013-11-29 15:35 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
2013-11-29 11:43 - 2013-11-29 11:43 - 00000000 ____D C:\Program Files\VideoPlayer
2013-11-29 10:53 - 2013-12-03 10:48 - 00000504 _____ C:\Windows\setupact.log
2013-11-29 10:53 - 2013-11-29 10:53 - 00085592 _____ C:\Users\Rolli\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-29 10:53 - 2013-11-29 10:53 - 00000000 _____ C:\Windows\setuperr.log
2013-11-29 10:52 - 2013-12-02 10:46 - 00005858 _____ C:\Windows\PFRO.log
2013-11-29 10:52 - 2013-11-29 10:52 - 00357440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 19:28 - 2013-11-28 19:28 - 17822088 _____ (Adobe Systems Incorporated) C:\Users\Rolli\Downloads\install_flash_player_11_plugin.exe
2013-11-28 18:57 - 2013-11-28 18:57 - 00461136 _____ C:\Users\Rolli\Downloads\sopcast-de.exe
2013-11-28 18:50 - 2013-11-28 18:51 - 00000000 ____D C:\Program Files\SopCast
2013-11-28 18:50 - 2013-11-28 18:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2013-11-26 22:49 - 2013-11-26 22:49 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-11-26 22:45 - 2013-11-26 22:53 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-26 17:26 - 2013-11-26 17:26 - 00000000 ____D C:\Program Files\Cepstral
2013-11-26 17:06 - 2013-11-26 17:29 - 00000000 ____D C:\Users\Rolli\Downloads\Sprechprogramme
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 ____D C:\Program Files\eSpeak
2013-11-26 13:58 - 2013-11-26 13:59 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\nvda
2013-11-26 13:58 - 2013-11-26 13:58 - 00000000 ____D C:\Program Files\NVDA
2013-11-26 13:44 - 2013-11-26 13:44 - 00000000 ____D C:\Program Files\ScanSoft
2013-11-26 13:30 - 2013-11-26 13:31 - 00000000 ____D C:\Program Files\MWS Reader 5
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Slick Savings
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Local\Slick Savings
2013-11-25 15:10 - 2013-11-25 16:02 - 00000000 ____D C:\Users\Rolli\Documents\Naturalsoft
2013-11-25 15:10 - 2013-11-25 15:10 - 00000000 ____D C:\ProgramData\NaturalSoft
2013-11-25 14:42 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\mresreg
2013-11-25 14:38 - 2013-11-25 14:38 - 00000000 ____D C:\Program Files\Microsoft Speech SDK 5.1
2013-11-25 14:37 - 2013-11-26 13:38 - 00000000 ____D C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
2013-11-25 14:37 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
2013-11-25 14:37 - 2013-11-25 14:37 - 00000000 ____D C:\Program Files\EBookToMP3
2013-11-25 14:36 - 2013-11-25 14:36 - 00000000 ____D C:\Program Files\mresreg
2013-11-24 19:53 - 2013-11-24 19:53 - 00022297 _____ C:\Users\Rolli\AppData\Local\recently-used.xbel
2013-11-24 16:59 - 2013-11-24 16:59 - 00000000 ____D C:\ProgramData\Free Download Manager
2013-11-24 14:54 - 2013-11-24 14:40 - 02687393 _____ C:\Users\Rolli\Documents\CBS.log
2013-11-24 12:04 - 2013-11-24 12:05 - 00137227 _____ C:\Users\Rolli\Downloads\1-Klick-Schutz für Windows - com!-Magazin.htm
2013-11-24 11:59 - 2013-11-24 11:59 - 00000000 ____D C:\Users\Rolli\Documents\Verzeichnisse
2013-11-21 16:54 - 2013-11-21 16:54 - 00000000 ____D C:\Users\Rolli\AppData\Local\Abelssoft
2013-11-21 16:51 - 2013-11-21 16:51 - 00000000 ____D C:\Program Files\Icaros
2013-11-21 13:05 - 2013-11-21 13:06 - 20323856 _____ (Abelssoft                                                   ) C:\Users\Rolli\Downloads\gc.exe
2013-11-16 10:24 - 2013-11-16 10:24 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-11-15 13:50 - 2013-11-15 14:03 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mobipocket
2013-11-15 13:50 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\Documents\My eBooks
2013-11-15 13:44 - 2013-11-15 13:44 - 00000000 ____D C:\Program Files\Mobipocket.com
2013-11-15 13:41 - 2013-11-15 13:41 - 00000000 ____D C:\ProgramData\McAfee
2013-11-14 19:14 - 2013-10-12 08:04 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-14 19:14 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-14 19:14 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-14 19:14 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-14 16:51 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 16:51 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 16:51 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 16:51 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 16:51 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 16:51 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 16:51 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 16:51 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 16:51 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 16:51 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 16:51 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 16:51 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 16:51 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 16:51 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 16:51 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-14 11:10 - 2013-11-14 11:10 - 00000000 ____D C:\Users\Rolli\Documents\eRightSoft
2013-11-14 10:46 - 2013-11-14 10:53 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Audacity
2013-11-13 18:34 - 2013-11-13 18:34 - 00000000 ____D C:\Program Files\BlueStacks
2013-11-13 18:32 - 2013-11-13 18:34 - 00000000 ____D C:\ProgramData\BlueStacks
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Program Files\AVIcodec
2013-11-11 11:21 - 2013-11-11 11:21 - 239140864 _____ C:\Users\Rolli\Documents\FFOutput.iso
2013-11-08 17:06 - 2013-11-08 17:06 - 00000000 ____D C:\Program Files\GTK2-Runtime
2013-11-08 11:41 - 2013-11-08 11:41 - 00679128 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt86win7.sys
2013-11-08 11:41 - 2013-11-08 11:41 - 00102104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00077528 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Windows\system32\RTCOM
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-08 11:40 - 2013-11-08 11:40 - 02840664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-11-08 11:40 - 2013-11-08 11:40 - 02546904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02327768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-11-08 11:40 - 2013-11-08 11:40 - 00859392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00769752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00646313 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-08 11:40 - 2013-11-08 11:40 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00331544 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00181960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00122072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00084480 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 06811648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 02852480 _____ C:\Windows\system32\atiumdva.cap
2013-11-08 11:22 - 2013-11-08 11:22 - 01960960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdmv.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00918528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00618823 _____ C:\Windows\system32\atiicdxx.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 00245944 _____ C:\Windows\system32\atiapfxx.blb
2013-11-08 11:22 - 2013-11-08 11:22 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00058368 _____ (AMD) C:\Windows\system32\coinst_8.97.100.7.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00042496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00038177 _____ C:\Windows\atiogl.xml
2013-11-08 11:22 - 2013-11-08 11:22 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Program Files\Speed Test Analysis
2013-11-08 11:18 - 2013-12-03 10:48 - 00000272 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-11-08 11:18 - 2013-11-25 20:26 - 00000000 ____D C:\ProgramData\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Program Files\IObit
2013-11-08 10:26 - 2013-11-08 10:26 - 103075526 _____ C:\Windows\system32\냅縞ᩌ[
2013-11-07 15:00 - 2013-11-07 15:00 - 00000000 ____D C:\Users\Rolli\AppData\Local\Audiggle_LTD
2013-11-07 14:59 - 2013-11-07 19:02 - 00000000 ____D C:\Program Files\Audiggle
2013-11-07 13:32 - 2013-11-07 13:32 - 00000046 ____R C:\Windows\amunres.lsl
2013-11-07 12:37 - 2013-11-07 13:32 - 00000000 ____D C:\Program Files\Tunatic
2013-11-07 12:28 - 2013-11-07 13:32 - 00000000 ____D C:\Users\Rolli\AppData\Local\Songs2SeeEditor
2013-11-07 12:28 - 2013-11-07 13:31 - 00000000 ____D C:\Program Files\Songs2See Editor Demo
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Users\Rolli\AppData\Local\LogiShrd
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Program Files\Logitech

==================== One Month Modified Files and Folders =======

2013-12-03 10:56 - 2013-12-03 10:56 - 00009978 _____ C:\Users\Rolli\Downloads\FRST.txt
2013-12-03 10:56 - 2013-12-03 10:55 - 01092389 _____ (Farbar) C:\Users\Rolli\Downloads\FRST.exe
2013-12-03 10:55 - 2009-07-14 05:34 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-03 10:55 - 2009-07-14 05:34 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-03 10:53 - 2013-12-03 10:53 - 00001205 _____ C:\Users\Rolli\Desktop\JRT.txt
2013-12-03 10:53 - 2010-11-20 22:01 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-03 10:50 - 2013-08-31 14:49 - 00000000 ____D C:\JRT
2013-12-03 10:48 - 2013-11-29 10:53 - 00000504 _____ C:\Windows\setupact.log
2013-12-03 10:48 - 2013-11-08 11:18 - 00000272 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-12-03 10:48 - 2013-10-12 12:08 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Luffi
2013-12-03 10:48 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-03 10:46 - 2013-08-21 22:05 - 00000000 ____D C:\AdwCleaner
2013-12-03 10:46 - 2013-08-10 13:24 - 01166697 _____ C:\Windows\WindowsUpdate.log
2013-12-03 10:33 - 2013-11-30 20:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-03 10:28 - 2013-08-10 13:50 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-02 19:24 - 2013-10-04 22:01 - 00001618 _____ C:\Users\Rolli\Desktop\12 Literatur.lnk
2013-12-02 10:46 - 2013-11-29 10:52 - 00005858 _____ C:\Windows\PFRO.log
2013-12-02 00:06 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDFCreator
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\Documents\PDF Architect Files
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDF Architect
2013-12-02 00:02 - 2013-09-06 11:49 - 00000000 ____D C:\Program Files\Calibre2
2013-12-02 00:02 - 2013-08-10 20:24 - 00000000 ____D C:\Users\Rolli\Documents\Calibre Bibliothek
2013-12-01 23:57 - 2013-12-01 23:57 - 00001070 _____ C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2013-12-01 23:57 - 2013-12-01 23:57 - 00000000 ____D C:\Program Files\MediaInfo
2013-12-01 23:56 - 2013-08-12 10:47 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\vlc
2013-12-01 23:52 - 2013-08-10 20:28 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\UseNeXT
2013-12-01 23:50 - 2013-10-13 10:06 - 00000000 ____D C:\Users\Rolli\Documents\UseNeXT
2013-12-01 17:16 - 2013-10-12 12:40 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Skype
2013-12-01 10:49 - 2009-07-14 05:53 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-30 20:20 - 2013-11-30 20:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-30 20:20 - 2013-11-30 20:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-29 18:37 - 2013-10-15 09:54 - 00000000 ____D C:\Program Files\7-Zip
2013-11-29 16:31 - 2013-08-17 11:29 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\XnView
2013-11-29 15:35 - 2013-11-29 15:35 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
2013-11-29 11:43 - 2013-11-29 11:43 - 00000000 ____D C:\Program Files\VideoPlayer
2013-11-29 10:53 - 2013-11-29 10:53 - 00085592 _____ C:\Users\Rolli\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-29 10:53 - 2013-11-29 10:53 - 00000000 _____ C:\Windows\setuperr.log
2013-11-29 10:52 - 2013-11-29 10:52 - 00357440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 19:35 - 2013-08-13 14:46 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Wise Disk Cleaner
2013-11-28 19:28 - 2013-11-28 19:28 - 17822088 _____ (Adobe Systems Incorporated) C:\Users\Rolli\Downloads\install_flash_player_11_plugin.exe
2013-11-28 18:57 - 2013-11-28 18:57 - 00461136 _____ C:\Users\Rolli\Downloads\sopcast-de.exe
2013-11-28 18:51 - 2013-11-28 18:50 - 00000000 ____D C:\Program Files\SopCast
2013-11-28 18:50 - 2013-11-28 18:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2013-11-27 14:55 - 2013-08-17 11:39 - 00000000 ____D C:\Program Files\XnView
2013-11-26 22:53 - 2013-11-26 22:45 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-26 22:49 - 2013-11-26 22:49 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-11-26 22:41 - 2013-08-25 15:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Media Player Classic
2013-11-26 21:58 - 2013-02-01 15:05 - 00000000 ____D C:\Users\Rolli\AppData\Local\MWSReader
2013-11-26 17:29 - 2013-11-26 17:06 - 00000000 ____D C:\Users\Rolli\Downloads\Sprechprogramme
2013-11-26 17:26 - 2013-11-26 17:26 - 00000000 ____D C:\Program Files\Cepstral
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 ____D C:\Program Files\eSpeak
2013-11-26 13:59 - 2013-11-26 13:58 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\nvda
2013-11-26 13:58 - 2013-11-26 13:58 - 00000000 ____D C:\Program Files\NVDA
2013-11-26 13:44 - 2013-11-26 13:44 - 00000000 ____D C:\Program Files\ScanSoft
2013-11-26 13:43 - 2013-08-12 15:54 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2013-11-26 13:38 - 2013-11-25 14:37 - 00000000 ____D C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
2013-11-26 13:32 - 2013-08-10 13:31 - 00000000 ____D C:\Users\Rolli
2013-11-26 13:31 - 2013-11-26 13:30 - 00000000 ____D C:\Program Files\MWS Reader 5
2013-11-26 13:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Speech
2013-11-26 13:28 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Slick Savings
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Local\Slick Savings
2013-11-25 20:26 - 2013-11-08 11:18 - 00000000 ____D C:\ProgramData\IObit
2013-11-25 16:02 - 2013-11-25 15:10 - 00000000 ____D C:\Users\Rolli\Documents\Naturalsoft
2013-11-25 15:10 - 2013-11-25 15:10 - 00000000 ____D C:\ProgramData\NaturalSoft
2013-11-25 14:42 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\mresreg
2013-11-25 14:42 - 2013-11-25 14:37 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
2013-11-25 14:41 - 2013-08-10 20:23 - 00000000 ____D C:\Users\Rolli\AppData\Local\Adobe
2013-11-25 14:38 - 2013-11-25 14:38 - 00000000 ____D C:\Program Files\Microsoft Speech SDK 5.1
2013-11-25 14:38 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-11-25 14:37 - 2013-11-25 14:37 - 00000000 ____D C:\Program Files\EBookToMP3
2013-11-25 14:36 - 2013-11-25 14:36 - 00000000 ____D C:\Program Files\mresreg
2013-11-24 19:53 - 2013-11-24 19:53 - 00022297 _____ C:\Users\Rolli\AppData\Local\recently-used.xbel
2013-11-24 19:53 - 2013-08-10 20:29 - 00000000 ____D C:\Users\Rolli\.gimp-2.8
2013-11-24 16:59 - 2013-11-24 16:59 - 00000000 ____D C:\ProgramData\Free Download Manager
2013-11-24 16:59 - 2013-10-15 10:23 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Free Download Manager
2013-11-24 15:32 - 2013-09-28 10:25 - 00000000 ____D C:\Program Files\JDownloader
2013-11-24 14:40 - 2013-11-24 14:54 - 02687393 _____ C:\Users\Rolli\Documents\CBS.log
2013-11-24 13:26 - 2013-08-10 20:39 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\avidemux
2013-11-24 13:19 - 2013-09-07 22:47 - 00008704 _____ C:\Users\Rolli\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-24 13:19 - 2013-08-25 10:43 - 00000000 ____D C:\Users\Rolli\AppData\Local\ColdCut
2013-11-24 12:10 - 2013-09-19 13:28 - 00000000 ____D C:\Users\Rolli\AppData\Local\Windows Live
2013-11-24 12:05 - 2013-11-24 12:04 - 00137227 _____ C:\Users\Rolli\Downloads\1-Klick-Schutz für Windows - com!-Magazin.htm
2013-11-24 11:59 - 2013-11-24 11:59 - 00000000 ____D C:\Users\Rolli\Documents\Verzeichnisse
2013-11-23 12:06 - 2013-08-10 13:57 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-11-23 12:06 - 2013-08-10 13:56 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-21 16:54 - 2013-11-21 16:54 - 00000000 ____D C:\Users\Rolli\AppData\Local\Abelssoft
2013-11-21 16:51 - 2013-11-21 16:51 - 00000000 ____D C:\Program Files\Icaros
2013-11-21 13:06 - 2013-11-21 13:05 - 20323856 _____ (Abelssoft                                                   ) C:\Users\Rolli\Downloads\gc.exe
2013-11-21 11:59 - 2013-08-10 13:57 - 00000000 ____D C:\Users\Rolli\AppData\Local\Thunderbird
2013-11-20 15:40 - 2013-09-03 09:42 - 00000000 ____D C:\Users\Rolli\AppData\Local\gtk-2.0
2013-11-20 15:23 - 2013-10-27 09:06 - 00000000 ____D C:\Users\Rolli\Desktop\107_PANA
2013-11-19 11:59 - 2013-08-10 13:53 - 00067680 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-17 10:56 - 2013-08-10 13:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 10:24 - 2013-11-16 10:24 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-11-15 16:41 - 2013-08-10 23:20 - 00000000 ____D C:\Windows\Panther
2013-11-15 14:57 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-11-15 14:03 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mobipocket
2013-11-15 13:50 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\Documents\My eBooks
2013-11-15 13:44 - 2013-11-15 13:44 - 00000000 ____D C:\Program Files\Mobipocket.com
2013-11-15 13:41 - 2013-11-15 13:41 - 00000000 ____D C:\ProgramData\McAfee
2013-11-15 09:23 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-11-14 19:14 - 2013-08-14 18:47 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 19:11 - 2013-08-12 16:01 - 80340640 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 11:10 - 2013-11-14 11:10 - 00000000 ____D C:\Users\Rolli\Documents\eRightSoft
2013-11-14 10:57 - 2013-08-26 18:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mp3tag
2013-11-14 10:53 - 2013-11-14 10:46 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Audacity
2013-11-14 10:25 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-11-13 18:34 - 2013-11-13 18:34 - 00000000 ____D C:\Program Files\BlueStacks
2013-11-13 18:34 - 2013-11-13 18:32 - 00000000 ____D C:\ProgramData\BlueStacks
2013-11-13 18:34 - 2009-07-14 03:37 - 00000000 __RHD C:\Users\Public\Libraries
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Program Files\AVIcodec
2013-11-11 11:21 - 2013-11-11 11:21 - 239140864 _____ C:\Users\Rolli\Documents\FFOutput.iso
2013-11-11 05:50 - 2013-08-10 13:46 - 00230048 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-09 21:15 - 2013-10-13 11:01 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\AccurateRip
2013-11-08 17:19 - 2013-08-12 10:59 - 00000000 ____D C:\Program Files\LibreOffice 4
2013-11-08 17:06 - 2013-11-08 17:06 - 00000000 ____D C:\Program Files\GTK2-Runtime
2013-11-08 11:41 - 2013-11-08 11:41 - 00679128 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt86win7.sys
2013-11-08 11:41 - 2013-11-08 11:41 - 00102104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00077528 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Windows\system32\RTCOM
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-08 11:40 - 2013-11-08 11:40 - 02840664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-11-08 11:40 - 2013-11-08 11:40 - 02546904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02327768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-11-08 11:40 - 2013-11-08 11:40 - 00859392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00769752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00646313 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-08 11:40 - 2013-11-08 11:40 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00331544 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00181960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00122072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00084480 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 06811648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 02852480 _____ C:\Windows\system32\atiumdva.cap
2013-11-08 11:22 - 2013-11-08 11:22 - 01960960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdmv.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00918528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00618823 _____ C:\Windows\system32\atiicdxx.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 00245944 _____ C:\Windows\system32\atiapfxx.blb
2013-11-08 11:22 - 2013-11-08 11:22 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00058368 _____ (AMD) C:\Windows\system32\coinst_8.97.100.7.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00042496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00038177 _____ C:\Windows\atiogl.xml
2013-11-08 11:22 - 2013-11-08 11:22 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-11-08 11:22 - 2009-08-18 01:36 - 00453632 _____ (AMD) C:\Windows\system32\atieclxx.exe
2013-11-08 11:22 - 2009-08-18 01:36 - 00217088 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2013-11-08 11:22 - 2009-08-18 01:20 - 06253224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdag.dll
2013-11-08 11:22 - 2009-08-18 01:05 - 04749312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdva.dll
2013-11-08 11:22 - 2009-08-18 00:52 - 00364544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Program Files\Speed Test Analysis
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Program Files\IObit
2013-11-08 10:26 - 2013-11-08 10:26 - 103075526 _____ C:\Windows\system32\냅縞ᩌ[
2013-11-07 19:02 - 2013-11-07 14:59 - 00000000 ____D C:\Program Files\Audiggle
2013-11-07 15:00 - 2013-11-07 15:00 - 00000000 ____D C:\Users\Rolli\AppData\Local\Audiggle_LTD
2013-11-07 13:32 - 2013-11-07 13:32 - 00000046 ____R C:\Windows\amunres.lsl
2013-11-07 13:32 - 2013-11-07 12:37 - 00000000 ____D C:\Program Files\Tunatic
2013-11-07 13:32 - 2013-11-07 12:28 - 00000000 ____D C:\Users\Rolli\AppData\Local\Songs2SeeEditor
2013-11-07 13:31 - 2013-11-07 12:28 - 00000000 ____D C:\Program Files\Songs2See Editor Demo
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Users\Rolli\AppData\Local\LogiShrd
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Program Files\Logitech

Some content of TEMP:
====================
C:\Users\Rolli\AppData\Local\Temp\app.exe
C:\Users\Rolli\AppData\Local\Temp\avgnt.exe
C:\Users\Rolli\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 12:35

==================== End Of Log ============================

--- --- ---

Einen Addition.txt habe ich nicht gefunden

cosinus · 03.12.2013, 11:16

Zitat:

Version: 4.6.4 (02.16.2013:1)
OS: Windows 7 Professional x86

So wird das nix mit JRT. Du kannst nicht solche Tools einmal runterladen und für ewig verwenden, das Teil ist out of date, sowas wie JRT und adwCleaner muss immer neu runtergeladen werden.

JRT neu runterladen und wiederholen. Danach ein neues FRST Log. Und FRST erzeugt nur eine additions.txt wenn da auch entsprechend ein Haken gesetzt ist

rolli0815 · 03.12.2013, 11:28

Hallo, Entschuldigung für den veralteten JRT. Bei adwarecleaner wird man immer auf eine neue Version hingewiesen.

Nun die Ergebnisse:

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-12-2013
Ran by Rolli (administrator) on ROLLI-PC on 03-12-2013 10:56:12
Running from C:\Users\Rolli\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Cepstral, LLC) C:\Program Files\Cepstral\bin\CepstralLicSrv.exe
(NV Access Limited) C:\Program Files\NVDA\nvda_service.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\ConversionService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(KYE SYSTEMS CORP.) C:\Program Files\hotkey\hotkey.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\hotkey\OSD.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Agent.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(TechniSat Digital, S.A.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
() C:\Users\Public\Documents\Luffi\Luffi.exe
(TechniSat Digital, S.A.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-19] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [HotKey] - C:\Program Files\hotkey\hotkey.exe [81920 2006-11-03] (KYE SYSTEMS CORP.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12009176 2013-11-08] (Realtek Semiconductor)
HKLM\...\Run: [BlueStacks Agent] - C:\Program Files\BlueStacks\HD-Agent.exe [606024 2013-09-19] (BlueStack Systems, Inc.)
HKLM\...\Run: [MWS Reader 5] - C:\Program Files\MWS Reader 5\mwsr5.exe [13211648 2013-09-11] (directINNOVATION UG (haftungsbeschränkt))
HKCU\...\Run: [Speech Recognition] - C:\Windows\Speech\Common\sapisvr.exe [51712 2009-07-14] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs:   [ ] ()
Startup: C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luffi.lnk
ShortcutTarget: Luffi.lnk -> C:\Users\Public\Documents\Luffi\Luffi.exe ()

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {408F8EF2-543E-43D4-A776-910726A7FC3C} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=402027&p={searchTerms}
BHO: Speed Test Analysis - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Program Files\Speed Test Analysis\ScriptHost.dll (SpeedAnalysis.com)
BHO: Slick Savings - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Users\Rolli\AppData\Roaming\Slick Savings\Coupons.dll (Spigot, Inc.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 0.0.0.0

FireFox:
========
FF ProfilePath: C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Start Page - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: fdm_ffext - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\fdm_ffext@freedownloadmanager.org
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
S2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-09-19] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-09-19] (BlueStack Systems, Inc.)
R2 Cepstral License Server; C:\Program Files\Cepstral\bin\CepstralLicSrv.exe [67072 2013-08-09] (Cepstral, LLC)
S4 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 nvda; C:\Program Files\NVDA\nvda_service.exe [40040 2013-08-29] (NV Access Limited)
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
S3 SXDS10; C:\Program Files\Common Files\soft Xpansion\sxds10.exe [234096 2013-08-19] (soft Xpansion)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-11-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-09-19] (BlueStack Systems)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [22560 2013-08-13] (REALiX(tm))
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2013-11-16] (Malwarebytes Corporation)
R3 SKYNET; C:\Windows\System32\DRIVERS\SkyNET.SYS [627288 2010-05-10] (TechniSat Digital, S.A.)
S3 SkyNetBDA; C:\Windows\System32\DRIVERS\SkyNetBDA.sys [622040 2013-08-14] (TechniSat Digital, S.A.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2013-08-12] ()
S3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [165376 2009-09-23] (Microsoft Corporation)
S3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2009-09-23] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-03 10:56 - 2013-12-03 10:56 - 00009978 _____ C:\Users\Rolli\Downloads\FRST.txt
2013-12-03 10:55 - 2013-12-03 10:56 - 01092389 _____ (Farbar) C:\Users\Rolli\Downloads\FRST.exe
2013-12-03 10:53 - 2013-12-03 10:53 - 00001205 _____ C:\Users\Rolli\Desktop\JRT.txt
2013-12-02 00:05 - 2013-12-02 00:06 - 00000000 ____D C:\Program Files\PDFCreator
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\Documents\PDF Architect Files
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDF Architect
2013-12-02 00:05 - 2013-04-09 14:13 - 00095416 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2013-12-02 00:05 - 2012-05-05 10:54 - 00137000 _____ (Microsoft Corporation) C:\Windows\system32\MSMAPI32.OCX
2013-12-02 00:05 - 2012-05-05 10:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\MSMPIDE.DLL
2013-12-02 00:05 - 1998-07-06 17:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\system32\VB6DE.DLL
2013-12-02 00:05 - 1998-07-06 17:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\MSCC2DE.DLL
2013-12-01 23:57 - 2013-12-01 23:57 - 00001070 _____ C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2013-12-01 23:57 - 2013-12-01 23:57 - 00000000 ____D C:\Program Files\MediaInfo
2013-11-30 20:20 - 2013-12-03 10:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-30 20:20 - 2013-11-30 20:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-30 20:20 - 2013-11-30 20:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-29 15:35 - 2013-11-29 15:35 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
2013-11-29 11:43 - 2013-11-29 11:43 - 00000000 ____D C:\Program Files\VideoPlayer
2013-11-29 10:53 - 2013-12-03 10:48 - 00000504 _____ C:\Windows\setupact.log
2013-11-29 10:53 - 2013-11-29 10:53 - 00085592 _____ C:\Users\Rolli\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-29 10:53 - 2013-11-29 10:53 - 00000000 _____ C:\Windows\setuperr.log
2013-11-29 10:52 - 2013-12-02 10:46 - 00005858 _____ C:\Windows\PFRO.log
2013-11-29 10:52 - 2013-11-29 10:52 - 00357440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 19:28 - 2013-11-28 19:28 - 17822088 _____ (Adobe Systems Incorporated) C:\Users\Rolli\Downloads\install_flash_player_11_plugin.exe
2013-11-28 18:57 - 2013-11-28 18:57 - 00461136 _____ C:\Users\Rolli\Downloads\sopcast-de.exe
2013-11-28 18:50 - 2013-11-28 18:51 - 00000000 ____D C:\Program Files\SopCast
2013-11-28 18:50 - 2013-11-28 18:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2013-11-26 22:49 - 2013-11-26 22:49 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-11-26 22:45 - 2013-11-26 22:53 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-26 17:26 - 2013-11-26 17:26 - 00000000 ____D C:\Program Files\Cepstral
2013-11-26 17:06 - 2013-11-26 17:29 - 00000000 ____D C:\Users\Rolli\Downloads\Sprechprogramme
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 ____D C:\Program Files\eSpeak
2013-11-26 13:58 - 2013-11-26 13:59 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\nvda
2013-11-26 13:58 - 2013-11-26 13:58 - 00000000 ____D C:\Program Files\NVDA
2013-11-26 13:44 - 2013-11-26 13:44 - 00000000 ____D C:\Program Files\ScanSoft
2013-11-26 13:30 - 2013-11-26 13:31 - 00000000 ____D C:\Program Files\MWS Reader 5
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Slick Savings
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Local\Slick Savings
2013-11-25 15:10 - 2013-11-25 16:02 - 00000000 ____D C:\Users\Rolli\Documents\Naturalsoft
2013-11-25 15:10 - 2013-11-25 15:10 - 00000000 ____D C:\ProgramData\NaturalSoft
2013-11-25 14:42 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\mresreg
2013-11-25 14:38 - 2013-11-25 14:38 - 00000000 ____D C:\Program Files\Microsoft Speech SDK 5.1
2013-11-25 14:37 - 2013-11-26 13:38 - 00000000 ____D C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
2013-11-25 14:37 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
2013-11-25 14:37 - 2013-11-25 14:37 - 00000000 ____D C:\Program Files\EBookToMP3
2013-11-25 14:36 - 2013-11-25 14:36 - 00000000 ____D C:\Program Files\mresreg
2013-11-24 19:53 - 2013-11-24 19:53 - 00022297 _____ C:\Users\Rolli\AppData\Local\recently-used.xbel
2013-11-24 16:59 - 2013-11-24 16:59 - 00000000 ____D C:\ProgramData\Free Download Manager
2013-11-24 14:54 - 2013-11-24 14:40 - 02687393 _____ C:\Users\Rolli\Documents\CBS.log
2013-11-24 12:04 - 2013-11-24 12:05 - 00137227 _____ C:\Users\Rolli\Downloads\1-Klick-Schutz für Windows - com!-Magazin.htm
2013-11-24 11:59 - 2013-11-24 11:59 - 00000000 ____D C:\Users\Rolli\Documents\Verzeichnisse
2013-11-21 16:54 - 2013-11-21 16:54 - 00000000 ____D C:\Users\Rolli\AppData\Local\Abelssoft
2013-11-21 16:51 - 2013-11-21 16:51 - 00000000 ____D C:\Program Files\Icaros
2013-11-21 13:05 - 2013-11-21 13:06 - 20323856 _____ (Abelssoft                                                   ) C:\Users\Rolli\Downloads\gc.exe
2013-11-16 10:24 - 2013-11-16 10:24 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-11-15 13:50 - 2013-11-15 14:03 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mobipocket
2013-11-15 13:50 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\Documents\My eBooks
2013-11-15 13:44 - 2013-11-15 13:44 - 00000000 ____D C:\Program Files\Mobipocket.com
2013-11-15 13:41 - 2013-11-15 13:41 - 00000000 ____D C:\ProgramData\McAfee
2013-11-14 19:14 - 2013-10-12 08:04 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-14 19:14 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-14 19:14 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-14 19:14 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-14 16:51 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 16:51 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 16:51 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 16:51 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 16:51 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 16:51 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 16:51 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 16:51 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 16:51 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 16:51 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 16:51 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 16:51 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 16:51 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 16:51 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 16:51 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-14 11:10 - 2013-11-14 11:10 - 00000000 ____D C:\Users\Rolli\Documents\eRightSoft
2013-11-14 10:46 - 2013-11-14 10:53 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Audacity
2013-11-13 18:34 - 2013-11-13 18:34 - 00000000 ____D C:\Program Files\BlueStacks
2013-11-13 18:32 - 2013-11-13 18:34 - 00000000 ____D C:\ProgramData\BlueStacks
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Program Files\AVIcodec
2013-11-11 11:21 - 2013-11-11 11:21 - 239140864 _____ C:\Users\Rolli\Documents\FFOutput.iso
2013-11-08 17:06 - 2013-11-08 17:06 - 00000000 ____D C:\Program Files\GTK2-Runtime
2013-11-08 11:41 - 2013-11-08 11:41 - 00679128 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt86win7.sys
2013-11-08 11:41 - 2013-11-08 11:41 - 00102104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00077528 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Windows\system32\RTCOM
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-08 11:40 - 2013-11-08 11:40 - 02840664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-11-08 11:40 - 2013-11-08 11:40 - 02546904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02327768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-11-08 11:40 - 2013-11-08 11:40 - 00859392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00769752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00646313 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-08 11:40 - 2013-11-08 11:40 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00331544 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00181960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00122072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00084480 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 06811648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 02852480 _____ C:\Windows\system32\atiumdva.cap
2013-11-08 11:22 - 2013-11-08 11:22 - 01960960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdmv.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00918528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00618823 _____ C:\Windows\system32\atiicdxx.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 00245944 _____ C:\Windows\system32\atiapfxx.blb
2013-11-08 11:22 - 2013-11-08 11:22 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00058368 _____ (AMD) C:\Windows\system32\coinst_8.97.100.7.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00042496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00038177 _____ C:\Windows\atiogl.xml
2013-11-08 11:22 - 2013-11-08 11:22 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Program Files\Speed Test Analysis
2013-11-08 11:18 - 2013-12-03 10:48 - 00000272 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-11-08 11:18 - 2013-11-25 20:26 - 00000000 ____D C:\ProgramData\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Program Files\IObit
2013-11-08 10:26 - 2013-11-08 10:26 - 103075526 _____ C:\Windows\system32\냅縞ᩌ[
2013-11-07 15:00 - 2013-11-07 15:00 - 00000000 ____D C:\Users\Rolli\AppData\Local\Audiggle_LTD
2013-11-07 14:59 - 2013-11-07 19:02 - 00000000 ____D C:\Program Files\Audiggle
2013-11-07 13:32 - 2013-11-07 13:32 - 00000046 ____R C:\Windows\amunres.lsl
2013-11-07 12:37 - 2013-11-07 13:32 - 00000000 ____D C:\Program Files\Tunatic
2013-11-07 12:28 - 2013-11-07 13:32 - 00000000 ____D C:\Users\Rolli\AppData\Local\Songs2SeeEditor
2013-11-07 12:28 - 2013-11-07 13:31 - 00000000 ____D C:\Program Files\Songs2See Editor Demo
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Users\Rolli\AppData\Local\LogiShrd
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Program Files\Logitech

==================== One Month Modified Files and Folders =======

2013-12-03 10:56 - 2013-12-03 10:56 - 00009978 _____ C:\Users\Rolli\Downloads\FRST.txt
2013-12-03 10:56 - 2013-12-03 10:55 - 01092389 _____ (Farbar) C:\Users\Rolli\Downloads\FRST.exe
2013-12-03 10:55 - 2009-07-14 05:34 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-03 10:55 - 2009-07-14 05:34 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-03 10:53 - 2013-12-03 10:53 - 00001205 _____ C:\Users\Rolli\Desktop\JRT.txt
2013-12-03 10:53 - 2010-11-20 22:01 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-03 10:50 - 2013-08-31 14:49 - 00000000 ____D C:\JRT
2013-12-03 10:48 - 2013-11-29 10:53 - 00000504 _____ C:\Windows\setupact.log
2013-12-03 10:48 - 2013-11-08 11:18 - 00000272 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-12-03 10:48 - 2013-10-12 12:08 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Luffi
2013-12-03 10:48 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-03 10:46 - 2013-08-21 22:05 - 00000000 ____D C:\AdwCleaner
2013-12-03 10:46 - 2013-08-10 13:24 - 01166697 _____ C:\Windows\WindowsUpdate.log
2013-12-03 10:33 - 2013-11-30 20:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-03 10:28 - 2013-08-10 13:50 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-02 19:24 - 2013-10-04 22:01 - 00001618 _____ C:\Users\Rolli\Desktop\12 Literatur.lnk
2013-12-02 10:46 - 2013-11-29 10:52 - 00005858 _____ C:\Windows\PFRO.log
2013-12-02 00:06 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDFCreator
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\Documents\PDF Architect Files
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDF Architect
2013-12-02 00:02 - 2013-09-06 11:49 - 00000000 ____D C:\Program Files\Calibre2
2013-12-02 00:02 - 2013-08-10 20:24 - 00000000 ____D C:\Users\Rolli\Documents\Calibre Bibliothek
2013-12-01 23:57 - 2013-12-01 23:57 - 00001070 _____ C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2013-12-01 23:57 - 2013-12-01 23:57 - 00000000 ____D C:\Program Files\MediaInfo
2013-12-01 23:56 - 2013-08-12 10:47 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\vlc
2013-12-01 23:52 - 2013-08-10 20:28 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\UseNeXT
2013-12-01 23:50 - 2013-10-13 10:06 - 00000000 ____D C:\Users\Rolli\Documents\UseNeXT
2013-12-01 17:16 - 2013-10-12 12:40 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Skype
2013-12-01 10:49 - 2009-07-14 05:53 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-30 20:20 - 2013-11-30 20:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-30 20:20 - 2013-11-30 20:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-29 18:37 - 2013-10-15 09:54 - 00000000 ____D C:\Program Files\7-Zip
2013-11-29 16:31 - 2013-08-17 11:29 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\XnView
2013-11-29 15:35 - 2013-11-29 15:35 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
2013-11-29 11:43 - 2013-11-29 11:43 - 00000000 ____D C:\Program Files\VideoPlayer
2013-11-29 10:53 - 2013-11-29 10:53 - 00085592 _____ C:\Users\Rolli\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-29 10:53 - 2013-11-29 10:53 - 00000000 _____ C:\Windows\setuperr.log
2013-11-29 10:52 - 2013-11-29 10:52 - 00357440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 19:35 - 2013-08-13 14:46 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Wise Disk Cleaner
2013-11-28 19:28 - 2013-11-28 19:28 - 17822088 _____ (Adobe Systems Incorporated) C:\Users\Rolli\Downloads\install_flash_player_11_plugin.exe
2013-11-28 18:57 - 2013-11-28 18:57 - 00461136 _____ C:\Users\Rolli\Downloads\sopcast-de.exe
2013-11-28 18:51 - 2013-11-28 18:50 - 00000000 ____D C:\Program Files\SopCast
2013-11-28 18:50 - 2013-11-28 18:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2013-11-27 14:55 - 2013-08-17 11:39 - 00000000 ____D C:\Program Files\XnView
2013-11-26 22:53 - 2013-11-26 22:45 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-26 22:49 - 2013-11-26 22:49 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-11-26 22:41 - 2013-08-25 15:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Media Player Classic
2013-11-26 21:58 - 2013-02-01 15:05 - 00000000 ____D C:\Users\Rolli\AppData\Local\MWSReader
2013-11-26 17:29 - 2013-11-26 17:06 - 00000000 ____D C:\Users\Rolli\Downloads\Sprechprogramme
2013-11-26 17:26 - 2013-11-26 17:26 - 00000000 ____D C:\Program Files\Cepstral
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 ____D C:\Program Files\eSpeak
2013-11-26 13:59 - 2013-11-26 13:58 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\nvda
2013-11-26 13:58 - 2013-11-26 13:58 - 00000000 ____D C:\Program Files\NVDA
2013-11-26 13:44 - 2013-11-26 13:44 - 00000000 ____D C:\Program Files\ScanSoft
2013-11-26 13:43 - 2013-08-12 15:54 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2013-11-26 13:38 - 2013-11-25 14:37 - 00000000 ____D C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
2013-11-26 13:32 - 2013-08-10 13:31 - 00000000 ____D C:\Users\Rolli
2013-11-26 13:31 - 2013-11-26 13:30 - 00000000 ____D C:\Program Files\MWS Reader 5
2013-11-26 13:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Speech
2013-11-26 13:28 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Slick Savings
2013-11-25 20:26 - 2013-11-25 20:26 - 00000000 ____D C:\Users\Rolli\AppData\Local\Slick Savings
2013-11-25 20:26 - 2013-11-08 11:18 - 00000000 ____D C:\ProgramData\IObit
2013-11-25 16:02 - 2013-11-25 15:10 - 00000000 ____D C:\Users\Rolli\Documents\Naturalsoft
2013-11-25 15:10 - 2013-11-25 15:10 - 00000000 ____D C:\ProgramData\NaturalSoft
2013-11-25 14:42 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\mresreg
2013-11-25 14:42 - 2013-11-25 14:37 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
2013-11-25 14:41 - 2013-08-10 20:23 - 00000000 ____D C:\Users\Rolli\AppData\Local\Adobe
2013-11-25 14:38 - 2013-11-25 14:38 - 00000000 ____D C:\Program Files\Microsoft Speech SDK 5.1
2013-11-25 14:38 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-11-25 14:37 - 2013-11-25 14:37 - 00000000 ____D C:\Program Files\EBookToMP3
2013-11-25 14:36 - 2013-11-25 14:36 - 00000000 ____D C:\Program Files\mresreg
2013-11-24 19:53 - 2013-11-24 19:53 - 00022297 _____ C:\Users\Rolli\AppData\Local\recently-used.xbel
2013-11-24 19:53 - 2013-08-10 20:29 - 00000000 ____D C:\Users\Rolli\.gimp-2.8
2013-11-24 16:59 - 2013-11-24 16:59 - 00000000 ____D C:\ProgramData\Free Download Manager
2013-11-24 16:59 - 2013-10-15 10:23 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Free Download Manager
2013-11-24 15:32 - 2013-09-28 10:25 - 00000000 ____D C:\Program Files\JDownloader
2013-11-24 14:40 - 2013-11-24 14:54 - 02687393 _____ C:\Users\Rolli\Documents\CBS.log
2013-11-24 13:26 - 2013-08-10 20:39 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\avidemux
2013-11-24 13:19 - 2013-09-07 22:47 - 00008704 _____ C:\Users\Rolli\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-24 13:19 - 2013-08-25 10:43 - 00000000 ____D C:\Users\Rolli\AppData\Local\ColdCut
2013-11-24 12:10 - 2013-09-19 13:28 - 00000000 ____D C:\Users\Rolli\AppData\Local\Windows Live
2013-11-24 12:05 - 2013-11-24 12:04 - 00137227 _____ C:\Users\Rolli\Downloads\1-Klick-Schutz für Windows - com!-Magazin.htm
2013-11-24 11:59 - 2013-11-24 11:59 - 00000000 ____D C:\Users\Rolli\Documents\Verzeichnisse
2013-11-23 12:06 - 2013-08-10 13:57 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-11-23 12:06 - 2013-08-10 13:56 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-21 16:54 - 2013-11-21 16:54 - 00000000 ____D C:\Users\Rolli\AppData\Local\Abelssoft
2013-11-21 16:51 - 2013-11-21 16:51 - 00000000 ____D C:\Program Files\Icaros
2013-11-21 13:06 - 2013-11-21 13:05 - 20323856 _____ (Abelssoft                                                   ) C:\Users\Rolli\Downloads\gc.exe
2013-11-21 11:59 - 2013-08-10 13:57 - 00000000 ____D C:\Users\Rolli\AppData\Local\Thunderbird
2013-11-20 15:40 - 2013-09-03 09:42 - 00000000 ____D C:\Users\Rolli\AppData\Local\gtk-2.0
2013-11-20 15:23 - 2013-10-27 09:06 - 00000000 ____D C:\Users\Rolli\Desktop\107_PANA
2013-11-19 11:59 - 2013-08-10 13:53 - 00067680 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-17 10:56 - 2013-08-10 13:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 10:24 - 2013-11-16 10:24 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-11-15 16:41 - 2013-08-10 23:20 - 00000000 ____D C:\Windows\Panther
2013-11-15 14:57 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-11-15 14:03 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mobipocket
2013-11-15 13:50 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\Documents\My eBooks
2013-11-15 13:44 - 2013-11-15 13:44 - 00000000 ____D C:\Program Files\Mobipocket.com
2013-11-15 13:41 - 2013-11-15 13:41 - 00000000 ____D C:\ProgramData\McAfee
2013-11-15 09:23 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-11-14 19:14 - 2013-08-14 18:47 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 19:11 - 2013-08-12 16:01 - 80340640 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 11:10 - 2013-11-14 11:10 - 00000000 ____D C:\Users\Rolli\Documents\eRightSoft
2013-11-14 10:57 - 2013-08-26 18:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mp3tag
2013-11-14 10:53 - 2013-11-14 10:46 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Audacity
2013-11-14 10:25 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-11-13 18:34 - 2013-11-13 18:34 - 00000000 ____D C:\Program Files\BlueStacks
2013-11-13 18:34 - 2013-11-13 18:32 - 00000000 ____D C:\ProgramData\BlueStacks
2013-11-13 18:34 - 2009-07-14 03:37 - 00000000 __RHD C:\Users\Public\Libraries
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Program Files\AVIcodec
2013-11-11 11:21 - 2013-11-11 11:21 - 239140864 _____ C:\Users\Rolli\Documents\FFOutput.iso
2013-11-11 05:50 - 2013-08-10 13:46 - 00230048 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-09 21:15 - 2013-10-13 11:01 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\AccurateRip
2013-11-08 17:19 - 2013-08-12 10:59 - 00000000 ____D C:\Program Files\LibreOffice 4
2013-11-08 17:06 - 2013-11-08 17:06 - 00000000 ____D C:\Program Files\GTK2-Runtime
2013-11-08 11:41 - 2013-11-08 11:41 - 00679128 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt86win7.sys
2013-11-08 11:41 - 2013-11-08 11:41 - 00102104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00077528 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Windows\system32\RTCOM
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-08 11:40 - 2013-11-08 11:40 - 02840664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-11-08 11:40 - 2013-11-08 11:40 - 02546904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02327768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-11-08 11:40 - 2013-11-08 11:40 - 00859392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00769752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00646313 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-08 11:40 - 2013-11-08 11:40 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00331544 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00181960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00122072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00084480 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 06811648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 02852480 _____ C:\Windows\system32\atiumdva.cap
2013-11-08 11:22 - 2013-11-08 11:22 - 01960960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdmv.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00918528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00618823 _____ C:\Windows\system32\atiicdxx.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 00245944 _____ C:\Windows\system32\atiapfxx.blb
2013-11-08 11:22 - 2013-11-08 11:22 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00058368 _____ (AMD) C:\Windows\system32\coinst_8.97.100.7.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00042496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00038177 _____ C:\Windows\atiogl.xml
2013-11-08 11:22 - 2013-11-08 11:22 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-11-08 11:22 - 2009-08-18 01:36 - 00453632 _____ (AMD) C:\Windows\system32\atieclxx.exe
2013-11-08 11:22 - 2009-08-18 01:36 - 00217088 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2013-11-08 11:22 - 2009-08-18 01:20 - 06253224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdag.dll
2013-11-08 11:22 - 2009-08-18 01:05 - 04749312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdva.dll
2013-11-08 11:22 - 2009-08-18 00:52 - 00364544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Program Files\Speed Test Analysis
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Program Files\IObit
2013-11-08 10:26 - 2013-11-08 10:26 - 103075526 _____ C:\Windows\system32\냅縞ᩌ[
2013-11-07 19:02 - 2013-11-07 14:59 - 00000000 ____D C:\Program Files\Audiggle
2013-11-07 15:00 - 2013-11-07 15:00 - 00000000 ____D C:\Users\Rolli\AppData\Local\Audiggle_LTD
2013-11-07 13:32 - 2013-11-07 13:32 - 00000046 ____R C:\Windows\amunres.lsl
2013-11-07 13:32 - 2013-11-07 12:37 - 00000000 ____D C:\Program Files\Tunatic
2013-11-07 13:32 - 2013-11-07 12:28 - 00000000 ____D C:\Users\Rolli\AppData\Local\Songs2SeeEditor
2013-11-07 13:31 - 2013-11-07 12:28 - 00000000 ____D C:\Program Files\Songs2See Editor Demo
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Users\Rolli\AppData\Local\LogiShrd
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Program Files\Logitech

Some content of TEMP:
====================
C:\Users\Rolli\AppData\Local\Temp\app.exe
C:\Users\Rolli\AppData\Local\Temp\avgnt.exe
C:\Users\Rolli\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 12:35

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-12-2013
Ran by Rolli (administrator) on ROLLI-PC on 03-12-2013 11:23:51
Running from C:\Users\Rolli\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Cepstral, LLC) C:\Program Files\Cepstral\bin\CepstralLicSrv.exe
(NV Access Limited) C:\Program Files\NVDA\nvda_service.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\ConversionService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(KYE SYSTEMS CORP.) C:\Program Files\hotkey\hotkey.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\hotkey\OSD.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Agent.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(TechniSat Digital, S.A.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
() C:\Users\Public\Documents\Luffi\Luffi.exe
(TechniSat Digital, S.A.) C:\Program Files\TechniSat DVB\bin\Server4PC.exe
(Thisisu) C:\Users\Rolli\Downloads\JRT_6.0.8.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-19] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [HotKey] - C:\Program Files\hotkey\hotkey.exe [81920 2006-11-03] (KYE SYSTEMS CORP.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12009176 2013-11-08] (Realtek Semiconductor)
HKLM\...\Run: [BlueStacks Agent] - C:\Program Files\BlueStacks\HD-Agent.exe [606024 2013-09-19] (BlueStack Systems, Inc.)
HKLM\...\Run: [MWS Reader 5] - C:\Program Files\MWS Reader 5\mwsr5.exe [13211648 2013-09-11] (directINNOVATION UG (haftungsbeschränkt))
HKCU\...\Run: [Speech Recognition] - C:\Windows\Speech\Common\sapisvr.exe [51712 2009-07-14] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs:   [ ] ()
Startup: C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luffi.lnk
ShortcutTarget: Luffi.lnk -> C:\Users\Public\Documents\Luffi\Luffi.exe ()

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {408F8EF2-543E-43D4-A776-910726A7FC3C} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=402027&p={searchTerms}
BHO: Speed Test Analysis - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Program Files\Speed Test Analysis\ScriptHost.dll (SpeedAnalysis.com)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 0.0.0.0

FireFox:
========
FF ProfilePath: C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Start Page - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: fdm_ffext - C:\Users\Rolli\AppData\Roaming\Mozilla\Firefox\Profiles\8fot05oc.default-1383903338655\Extensions\fdm_ffext@freedownloadmanager.org
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
S2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-09-19] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-09-19] (BlueStack Systems, Inc.)
R2 Cepstral License Server; C:\Program Files\Cepstral\bin\CepstralLicSrv.exe [67072 2013-08-09] (Cepstral, LLC)
S4 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 nvda; C:\Program Files\NVDA\nvda_service.exe [40040 2013-08-29] (NV Access Limited)
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
S3 SXDS10; C:\Program Files\Common Files\soft Xpansion\sxds10.exe [234096 2013-08-19] (soft Xpansion)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-11-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-09-19] (BlueStack Systems)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [22560 2013-08-13] (REALiX(tm))
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2013-11-16] (Malwarebytes Corporation)
R3 SKYNET; C:\Windows\System32\DRIVERS\SkyNET.SYS [627288 2010-05-10] (TechniSat Digital, S.A.)
S3 SkyNetBDA; C:\Windows\System32\DRIVERS\SkyNetBDA.sys [622040 2013-08-14] (TechniSat Digital, S.A.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2013-08-12] ()
S3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [165376 2009-09-23] (Microsoft Corporation)
S3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2009-09-23] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-03 11:23 - 2013-12-03 11:24 - 00009878 _____ C:\Users\Rolli\Downloads\FRST.txt
2013-12-03 11:23 - 2013-12-03 11:23 - 00001056 _____ C:\Users\Rolli\Desktop\JRT.txt
2013-12-03 11:19 - 2013-12-03 11:19 - 01034531 ____R (Thisisu) C:\Users\Rolli\Downloads\JRT_6.0.8.exe
2013-12-03 10:55 - 2013-12-03 10:56 - 01092389 _____ (Farbar) C:\Users\Rolli\Downloads\FRST.exe
2013-12-02 00:05 - 2013-12-02 00:06 - 00000000 ____D C:\Program Files\PDFCreator
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\Documents\PDF Architect Files
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDF Architect
2013-12-02 00:05 - 2013-04-09 14:13 - 00095416 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2013-12-02 00:05 - 2012-05-05 10:54 - 00137000 _____ (Microsoft Corporation) C:\Windows\system32\MSMAPI32.OCX
2013-12-02 00:05 - 2012-05-05 10:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\MSMPIDE.DLL
2013-12-02 00:05 - 1998-07-06 17:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\system32\VB6DE.DLL
2013-12-02 00:05 - 1998-07-06 17:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\MSCC2DE.DLL
2013-12-01 23:57 - 2013-12-01 23:57 - 00001070 _____ C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2013-12-01 23:57 - 2013-12-01 23:57 - 00000000 ____D C:\Program Files\MediaInfo
2013-11-30 20:20 - 2013-12-03 10:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-30 20:20 - 2013-11-30 20:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-30 20:20 - 2013-11-30 20:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-29 15:35 - 2013-11-29 15:35 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
2013-11-29 11:43 - 2013-11-29 11:43 - 00000000 ____D C:\Program Files\VideoPlayer
2013-11-29 10:53 - 2013-12-03 10:48 - 00000504 _____ C:\Windows\setupact.log
2013-11-29 10:53 - 2013-11-29 10:53 - 00085592 _____ C:\Users\Rolli\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-29 10:53 - 2013-11-29 10:53 - 00000000 _____ C:\Windows\setuperr.log
2013-11-29 10:52 - 2013-12-02 10:46 - 00005858 _____ C:\Windows\PFRO.log
2013-11-29 10:52 - 2013-11-29 10:52 - 00357440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 19:28 - 2013-11-28 19:28 - 17822088 _____ (Adobe Systems Incorporated) C:\Users\Rolli\Downloads\install_flash_player_11_plugin.exe
2013-11-28 18:57 - 2013-11-28 18:57 - 00461136 _____ C:\Users\Rolli\Downloads\sopcast-de.exe
2013-11-28 18:50 - 2013-11-28 18:51 - 00000000 ____D C:\Program Files\SopCast
2013-11-28 18:50 - 2013-11-28 18:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2013-11-26 22:49 - 2013-11-26 22:49 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-11-26 22:45 - 2013-11-26 22:53 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-26 17:26 - 2013-11-26 17:26 - 00000000 ____D C:\Program Files\Cepstral
2013-11-26 17:06 - 2013-11-26 17:29 - 00000000 ____D C:\Users\Rolli\Downloads\Sprechprogramme
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 ____D C:\Program Files\eSpeak
2013-11-26 13:58 - 2013-11-26 13:59 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\nvda
2013-11-26 13:58 - 2013-11-26 13:58 - 00000000 ____D C:\Program Files\NVDA
2013-11-26 13:44 - 2013-11-26 13:44 - 00000000 ____D C:\Program Files\ScanSoft
2013-11-26 13:30 - 2013-11-26 13:31 - 00000000 ____D C:\Program Files\MWS Reader 5
2013-11-25 15:10 - 2013-11-25 16:02 - 00000000 ____D C:\Users\Rolli\Documents\Naturalsoft
2013-11-25 15:10 - 2013-11-25 15:10 - 00000000 ____D C:\ProgramData\NaturalSoft
2013-11-25 14:42 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\mresreg
2013-11-25 14:38 - 2013-11-25 14:38 - 00000000 ____D C:\Program Files\Microsoft Speech SDK 5.1
2013-11-25 14:37 - 2013-11-26 13:38 - 00000000 ____D C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
2013-11-25 14:37 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
2013-11-25 14:37 - 2013-11-25 14:37 - 00000000 ____D C:\Program Files\EBookToMP3
2013-11-25 14:36 - 2013-11-25 14:36 - 00000000 ____D C:\Program Files\mresreg
2013-11-24 19:53 - 2013-11-24 19:53 - 00022297 _____ C:\Users\Rolli\AppData\Local\recently-used.xbel
2013-11-24 16:59 - 2013-11-24 16:59 - 00000000 ____D C:\ProgramData\Free Download Manager
2013-11-24 14:54 - 2013-11-24 14:40 - 02687393 _____ C:\Users\Rolli\Documents\CBS.log
2013-11-24 12:04 - 2013-11-24 12:05 - 00137227 _____ C:\Users\Rolli\Downloads\1-Klick-Schutz für Windows - com!-Magazin.htm
2013-11-24 11:59 - 2013-11-24 11:59 - 00000000 ____D C:\Users\Rolli\Documents\Verzeichnisse
2013-11-21 16:54 - 2013-11-21 16:54 - 00000000 ____D C:\Users\Rolli\AppData\Local\Abelssoft
2013-11-21 16:51 - 2013-11-21 16:51 - 00000000 ____D C:\Program Files\Icaros
2013-11-21 13:05 - 2013-11-21 13:06 - 20323856 _____ (Abelssoft                                                   ) C:\Users\Rolli\Downloads\gc.exe
2013-11-16 10:24 - 2013-11-16 10:24 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-11-15 13:50 - 2013-11-15 14:03 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mobipocket
2013-11-15 13:50 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\Documents\My eBooks
2013-11-15 13:44 - 2013-11-15 13:44 - 00000000 ____D C:\Program Files\Mobipocket.com
2013-11-15 13:41 - 2013-11-15 13:41 - 00000000 ____D C:\ProgramData\McAfee
2013-11-14 19:14 - 2013-10-12 08:04 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-14 19:14 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-14 19:14 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-14 19:14 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-14 19:14 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-14 16:51 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 16:51 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 16:51 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 16:51 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 16:51 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 16:51 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 16:51 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 16:51 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 16:51 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 16:51 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 16:51 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 16:51 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 16:51 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 16:51 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 16:51 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-14 11:10 - 2013-11-14 11:10 - 00000000 ____D C:\Users\Rolli\Documents\eRightSoft
2013-11-14 10:46 - 2013-11-14 10:53 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Audacity
2013-11-13 18:34 - 2013-11-13 18:34 - 00000000 ____D C:\Program Files\BlueStacks
2013-11-13 18:32 - 2013-11-13 18:34 - 00000000 ____D C:\ProgramData\BlueStacks
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Program Files\AVIcodec
2013-11-11 11:21 - 2013-11-11 11:21 - 239140864 _____ C:\Users\Rolli\Documents\FFOutput.iso
2013-11-08 17:06 - 2013-11-08 17:06 - 00000000 ____D C:\Program Files\GTK2-Runtime
2013-11-08 11:41 - 2013-11-08 11:41 - 00679128 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt86win7.sys
2013-11-08 11:41 - 2013-11-08 11:41 - 00102104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00077528 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Windows\system32\RTCOM
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-08 11:40 - 2013-11-08 11:40 - 02840664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-11-08 11:40 - 2013-11-08 11:40 - 02546904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02327768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-11-08 11:40 - 2013-11-08 11:40 - 00859392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00769752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00646313 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-08 11:40 - 2013-11-08 11:40 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00331544 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00181960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00122072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00084480 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 06811648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 02852480 _____ C:\Windows\system32\atiumdva.cap
2013-11-08 11:22 - 2013-11-08 11:22 - 01960960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdmv.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00918528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00618823 _____ C:\Windows\system32\atiicdxx.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 00245944 _____ C:\Windows\system32\atiapfxx.blb
2013-11-08 11:22 - 2013-11-08 11:22 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00058368 _____ (AMD) C:\Windows\system32\coinst_8.97.100.7.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00042496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00038177 _____ C:\Windows\atiogl.xml
2013-11-08 11:22 - 2013-11-08 11:22 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Program Files\Speed Test Analysis
2013-11-08 11:18 - 2013-12-03 10:48 - 00000272 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-11-08 11:18 - 2013-11-25 20:26 - 00000000 ____D C:\ProgramData\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Program Files\IObit
2013-11-08 10:26 - 2013-11-08 10:26 - 103075526 _____ C:\Windows\system32\냅縞ᩌ[
2013-11-07 15:00 - 2013-11-07 15:00 - 00000000 ____D C:\Users\Rolli\AppData\Local\Audiggle_LTD
2013-11-07 14:59 - 2013-11-07 19:02 - 00000000 ____D C:\Program Files\Audiggle
2013-11-07 13:32 - 2013-11-07 13:32 - 00000046 ____R C:\Windows\amunres.lsl
2013-11-07 12:37 - 2013-11-07 13:32 - 00000000 ____D C:\Program Files\Tunatic
2013-11-07 12:28 - 2013-11-07 13:32 - 00000000 ____D C:\Users\Rolli\AppData\Local\Songs2SeeEditor
2013-11-07 12:28 - 2013-11-07 13:31 - 00000000 ____D C:\Program Files\Songs2See Editor Demo
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Users\Rolli\AppData\Local\LogiShrd
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Program Files\Logitech

==================== One Month Modified Files and Folders =======

2013-12-03 11:24 - 2013-12-03 11:23 - 00009878 _____ C:\Users\Rolli\Downloads\FRST.txt
2013-12-03 11:23 - 2013-12-03 11:23 - 00001056 _____ C:\Users\Rolli\Desktop\JRT.txt
2013-12-03 11:19 - 2013-12-03 11:19 - 01034531 ____R (Thisisu) C:\Users\Rolli\Downloads\JRT_6.0.8.exe
2013-12-03 10:56 - 2013-12-03 10:55 - 01092389 _____ (Farbar) C:\Users\Rolli\Downloads\FRST.exe
2013-12-03 10:55 - 2009-07-14 05:34 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-03 10:55 - 2009-07-14 05:34 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-03 10:53 - 2010-11-20 22:01 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-03 10:51 - 2013-08-10 13:24 - 01166697 _____ C:\Windows\WindowsUpdate.log
2013-12-03 10:50 - 2013-08-31 14:49 - 00000000 ____D C:\JRT
2013-12-03 10:48 - 2013-11-29 10:53 - 00000504 _____ C:\Windows\setupact.log
2013-12-03 10:48 - 2013-11-08 11:18 - 00000272 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-12-03 10:48 - 2013-10-12 12:08 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Luffi
2013-12-03 10:48 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-03 10:46 - 2013-08-21 22:05 - 00000000 ____D C:\AdwCleaner
2013-12-03 10:33 - 2013-11-30 20:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-03 10:28 - 2013-08-10 13:50 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-02 19:24 - 2013-10-04 22:01 - 00001618 _____ C:\Users\Rolli\Desktop\12 Literatur.lnk
2013-12-02 10:46 - 2013-11-29 10:52 - 00005858 _____ C:\Windows\PFRO.log
2013-12-02 00:06 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDFCreator
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Users\Rolli\Documents\PDF Architect Files
2013-12-02 00:05 - 2013-12-02 00:05 - 00000000 ____D C:\Program Files\PDF Architect
2013-12-02 00:02 - 2013-09-06 11:49 - 00000000 ____D C:\Program Files\Calibre2
2013-12-02 00:02 - 2013-08-10 20:24 - 00000000 ____D C:\Users\Rolli\Documents\Calibre Bibliothek
2013-12-01 23:57 - 2013-12-01 23:57 - 00001070 _____ C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2013-12-01 23:57 - 2013-12-01 23:57 - 00000000 ____D C:\Program Files\MediaInfo
2013-12-01 23:56 - 2013-08-12 10:47 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\vlc
2013-12-01 23:52 - 2013-08-10 20:28 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\UseNeXT
2013-12-01 23:50 - 2013-10-13 10:06 - 00000000 ____D C:\Users\Rolli\Documents\UseNeXT
2013-12-01 17:16 - 2013-10-12 12:40 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Skype
2013-12-01 10:49 - 2009-07-14 05:53 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-30 20:20 - 2013-11-30 20:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-30 20:20 - 2013-11-30 20:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-29 18:37 - 2013-10-15 09:54 - 00000000 ____D C:\Program Files\7-Zip
2013-11-29 16:31 - 2013-08-17 11:29 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\XnView
2013-11-29 15:35 - 2013-11-29 15:35 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\jpg-Illuminator
2013-11-29 11:43 - 2013-11-29 11:43 - 00000000 ____D C:\Program Files\VideoPlayer
2013-11-29 10:53 - 2013-11-29 10:53 - 00085592 _____ C:\Users\Rolli\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-29 10:53 - 2013-11-29 10:53 - 00000000 _____ C:\Windows\setuperr.log
2013-11-29 10:52 - 2013-11-29 10:52 - 00357440 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 19:35 - 2013-08-13 14:46 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Wise Disk Cleaner
2013-11-28 19:28 - 2013-11-28 19:28 - 17822088 _____ (Adobe Systems Incorporated) C:\Users\Rolli\Downloads\install_flash_player_11_plugin.exe
2013-11-28 18:57 - 2013-11-28 18:57 - 00461136 _____ C:\Users\Rolli\Downloads\sopcast-de.exe
2013-11-28 18:51 - 2013-11-28 18:50 - 00000000 ____D C:\Program Files\SopCast
2013-11-28 18:50 - 2013-11-28 18:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2013-11-27 14:55 - 2013-08-17 11:39 - 00000000 ____D C:\Program Files\XnView
2013-11-26 22:53 - 2013-11-26 22:45 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-26 22:49 - 2013-11-26 22:49 - 17226632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-11-26 22:41 - 2013-08-25 15:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Media Player Classic
2013-11-26 21:58 - 2013-02-01 15:05 - 00000000 ____D C:\Users\Rolli\AppData\Local\MWSReader
2013-11-26 17:29 - 2013-11-26 17:06 - 00000000 ____D C:\Users\Rolli\Downloads\Sprechprogramme
2013-11-26 17:26 - 2013-11-26 17:26 - 00000000 ____D C:\Program Files\Cepstral
2013-11-26 14:08 - 2013-11-26 14:08 - 00000000 ____D C:\Program Files\eSpeak
2013-11-26 13:59 - 2013-11-26 13:58 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\nvda
2013-11-26 13:58 - 2013-11-26 13:58 - 00000000 ____D C:\Program Files\NVDA
2013-11-26 13:44 - 2013-11-26 13:44 - 00000000 ____D C:\Program Files\ScanSoft
2013-11-26 13:43 - 2013-08-12 15:54 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2013-11-26 13:38 - 2013-11-25 14:37 - 00000000 ____D C:\Users\Rolli\Documents\Meine EBookToMP3 Projekte
2013-11-26 13:32 - 2013-08-10 13:31 - 00000000 ____D C:\Users\Rolli
2013-11-26 13:31 - 2013-11-26 13:30 - 00000000 ____D C:\Program Files\MWS Reader 5
2013-11-26 13:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Speech
2013-11-26 13:28 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public
2013-11-25 20:26 - 2013-11-08 11:18 - 00000000 ____D C:\ProgramData\IObit
2013-11-25 16:02 - 2013-11-25 15:10 - 00000000 ____D C:\Users\Rolli\Documents\Naturalsoft
2013-11-25 15:10 - 2013-11-25 15:10 - 00000000 ____D C:\ProgramData\NaturalSoft
2013-11-25 14:42 - 2013-11-25 14:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\mresreg
2013-11-25 14:42 - 2013-11-25 14:37 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IN-MEDIAKG
2013-11-25 14:41 - 2013-08-10 20:23 - 00000000 ____D C:\Users\Rolli\AppData\Local\Adobe
2013-11-25 14:38 - 2013-11-25 14:38 - 00000000 ____D C:\Program Files\Microsoft Speech SDK 5.1
2013-11-25 14:38 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-11-25 14:37 - 2013-11-25 14:37 - 00000000 ____D C:\Program Files\EBookToMP3
2013-11-25 14:36 - 2013-11-25 14:36 - 00000000 ____D C:\Program Files\mresreg
2013-11-24 19:53 - 2013-11-24 19:53 - 00022297 _____ C:\Users\Rolli\AppData\Local\recently-used.xbel
2013-11-24 19:53 - 2013-08-10 20:29 - 00000000 ____D C:\Users\Rolli\.gimp-2.8
2013-11-24 16:59 - 2013-11-24 16:59 - 00000000 ____D C:\ProgramData\Free Download Manager
2013-11-24 16:59 - 2013-10-15 10:23 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Free Download Manager
2013-11-24 15:32 - 2013-09-28 10:25 - 00000000 ____D C:\Program Files\JDownloader
2013-11-24 14:40 - 2013-11-24 14:54 - 02687393 _____ C:\Users\Rolli\Documents\CBS.log
2013-11-24 13:26 - 2013-08-10 20:39 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\avidemux
2013-11-24 13:19 - 2013-09-07 22:47 - 00008704 _____ C:\Users\Rolli\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-24 13:19 - 2013-08-25 10:43 - 00000000 ____D C:\Users\Rolli\AppData\Local\ColdCut
2013-11-24 12:10 - 2013-09-19 13:28 - 00000000 ____D C:\Users\Rolli\AppData\Local\Windows Live
2013-11-24 12:05 - 2013-11-24 12:04 - 00137227 _____ C:\Users\Rolli\Downloads\1-Klick-Schutz für Windows - com!-Magazin.htm
2013-11-24 11:59 - 2013-11-24 11:59 - 00000000 ____D C:\Users\Rolli\Documents\Verzeichnisse
2013-11-23 12:06 - 2013-08-10 13:57 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-11-23 12:06 - 2013-08-10 13:56 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-21 16:54 - 2013-11-21 16:54 - 00000000 ____D C:\Users\Rolli\AppData\Local\Abelssoft
2013-11-21 16:51 - 2013-11-21 16:51 - 00000000 ____D C:\Program Files\Icaros
2013-11-21 13:06 - 2013-11-21 13:05 - 20323856 _____ (Abelssoft                                                   ) C:\Users\Rolli\Downloads\gc.exe
2013-11-21 11:59 - 2013-08-10 13:57 - 00000000 ____D C:\Users\Rolli\AppData\Local\Thunderbird
2013-11-20 15:40 - 2013-09-03 09:42 - 00000000 ____D C:\Users\Rolli\AppData\Local\gtk-2.0
2013-11-20 15:23 - 2013-10-27 09:06 - 00000000 ____D C:\Users\Rolli\Desktop\107_PANA
2013-11-19 11:59 - 2013-08-10 13:53 - 00067680 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-19 11:59 - 2013-08-10 13:50 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-17 10:56 - 2013-08-10 13:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 10:24 - 2013-11-16 10:24 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-11-15 16:41 - 2013-08-10 23:20 - 00000000 ____D C:\Windows\Panther
2013-11-15 14:57 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-11-15 14:03 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mobipocket
2013-11-15 13:50 - 2013-11-15 13:50 - 00000000 ____D C:\Users\Rolli\Documents\My eBooks
2013-11-15 13:44 - 2013-11-15 13:44 - 00000000 ____D C:\Program Files\Mobipocket.com
2013-11-15 13:41 - 2013-11-15 13:41 - 00000000 ____D C:\ProgramData\McAfee
2013-11-15 09:23 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-11-14 19:14 - 2013-08-14 18:47 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 19:11 - 2013-08-12 16:01 - 80340640 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 11:10 - 2013-11-14 11:10 - 00000000 ____D C:\Users\Rolli\Documents\eRightSoft
2013-11-14 10:57 - 2013-08-26 18:42 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Mp3tag
2013-11-14 10:53 - 2013-11-14 10:46 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Audacity
2013-11-14 10:25 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-11-13 18:34 - 2013-11-13 18:34 - 00000000 ____D C:\Program Files\BlueStacks
2013-11-13 18:34 - 2013-11-13 18:32 - 00000000 ____D C:\ProgramData\BlueStacks
2013-11-13 18:34 - 2009-07-14 03:37 - 00000000 __RHD C:\Users\Public\Libraries
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec
2013-11-13 18:30 - 2013-11-13 18:30 - 00000000 ____D C:\Program Files\AVIcodec
2013-11-11 11:21 - 2013-11-11 11:21 - 239140864 _____ C:\Users\Rolli\Documents\FFOutput.iso
2013-11-11 05:50 - 2013-08-10 13:46 - 00230048 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-09 21:15 - 2013-10-13 11:01 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\AccurateRip
2013-11-08 17:19 - 2013-08-12 10:59 - 00000000 ____D C:\Program Files\LibreOffice 4
2013-11-08 17:06 - 2013-11-08 17:06 - 00000000 ____D C:\Program Files\GTK2-Runtime
2013-11-08 11:41 - 2013-11-08 11:41 - 00679128 _____ (Realtek                                            ) C:\Windows\system32\Drivers\Rt86win7.sys
2013-11-08 11:41 - 2013-11-08 11:41 - 00102104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00077528 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Windows\system32\RTCOM
2013-11-08 11:41 - 2013-11-08 11:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-08 11:40 - 2013-11-08 11:40 - 02840664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-11-08 11:40 - 2013-11-08 11:40 - 02546904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 02327768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-11-08 11:40 - 2013-11-08 11:40 - 00859392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00769752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00646313 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-08 11:40 - 2013-11-08 11:40 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00331544 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00181960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00122072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2013-11-08 11:40 - 2013-11-08 11:40 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00084480 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2013-11-08 11:39 - 2013-11-08 11:39 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 06811648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 02852480 _____ C:\Windows\system32\atiumdva.cap
2013-11-08 11:22 - 2013-11-08 11:22 - 01960960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdmv.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00918528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00618823 _____ C:\Windows\system32\atiicdxx.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-11-08 11:22 - 2013-11-08 11:22 - 00245944 _____ C:\Windows\system32\atiapfxx.blb
2013-11-08 11:22 - 2013-11-08 11:22 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-11-08 11:22 - 2013-11-08 11:22 - 00058368 _____ (AMD) C:\Windows\system32\coinst_8.97.100.7.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00056832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2013-11-08 11:22 - 2013-11-08 11:22 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00042496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00038177 _____ C:\Windows\atiogl.xml
2013-11-08 11:22 - 2013-11-08 11:22 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2013-11-08 11:22 - 2013-11-08 11:22 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-11-08 11:22 - 2009-08-18 01:36 - 00453632 _____ (AMD) C:\Windows\system32\atieclxx.exe
2013-11-08 11:22 - 2009-08-18 01:36 - 00217088 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2013-11-08 11:22 - 2009-08-18 01:20 - 06253224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdag.dll
2013-11-08 11:22 - 2009-08-18 01:05 - 04749312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdva.dll
2013-11-08 11:22 - 2009-08-18 00:52 - 00364544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\SpeedTestAnalysis
2013-11-08 11:19 - 2013-11-08 11:19 - 00000000 ____D C:\Program Files\Speed Test Analysis
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Users\Rolli\AppData\Roaming\IObit
2013-11-08 11:18 - 2013-11-08 11:18 - 00000000 ____D C:\Program Files\IObit
2013-11-08 10:26 - 2013-11-08 10:26 - 103075526 _____ C:\Windows\system32\냅縞ᩌ[
2013-11-07 19:02 - 2013-11-07 14:59 - 00000000 ____D C:\Program Files\Audiggle
2013-11-07 15:00 - 2013-11-07 15:00 - 00000000 ____D C:\Users\Rolli\AppData\Local\Audiggle_LTD
2013-11-07 13:32 - 2013-11-07 13:32 - 00000046 ____R C:\Windows\amunres.lsl
2013-11-07 13:32 - 2013-11-07 12:37 - 00000000 ____D C:\Program Files\Tunatic
2013-11-07 13:32 - 2013-11-07 12:28 - 00000000 ____D C:\Users\Rolli\AppData\Local\Songs2SeeEditor
2013-11-07 13:31 - 2013-11-07 12:28 - 00000000 ____D C:\Program Files\Songs2See Editor Demo
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Users\Rolli\AppData\Local\LogiShrd
2013-11-05 18:48 - 2013-11-05 18:48 - 00000000 ____D C:\Program Files\Logitech

Some content of TEMP:
====================
C:\Users\Rolli\AppData\Local\Temp\app.exe
C:\Users\Rolli\AppData\Local\Temp\avgnt.exe
C:\Users\Rolli\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 12:35

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

und

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-12-2013
Ran by Rolli at 2013-12-03 11:24:15
Running from C:\Users\Rolli\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

7-Zip 9.22 (Version: 9.22.00.0)
Accent RAR Password Recovery (Version: 3.0.48.2926)
Adobe Acrobat 5.0 (Version: 5.0)
Adobe Acrobat XI Pro (Version: 11.0.00)
Adobe Flash Player 11 Plugin (Version: 11.9.900.152)
Adobe Reader XI (11.0.05) - Deutsch (Version: 11.0.05)
Advanced Archive Password Recovery (Version: 4.54.48.1338)
AeroPeek (Version: 1.0.0)
Ashampoo ClipFinder HD v.2.3.3 (Version: 2.3.3)
AVIcodec (remove only)
Avidemux 2.6 (32-bit) (Version: 2.6.6.8941)
Avira Free Antivirus (Version: 14.0.1.759)
BlueStacks App Player (Version: 0.7.18.921)
BlueStacks Notification Center (Version: 0.7.18.921)
calibre (Version: 1.13.0)
Canon iP2700 series Printer Driver
CanoScan Toolbox Ver4.9
CDBurnerXP (Version: 4.5.2.4291)
CDisplayEx 1.9.12
Cepstral Matthias 6.2.3 (Version: 6.2.3.767)
ColdCut (Version: ColdCut)
D3DX10 (Version: 15.4.2368.0902)
Driver Booster (Version: 1.1)
DVBViewer TE2
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
EBookToMP3 (Version: Aktuelle Version)
ElsterFormular (Version: 14.3.20130522)
eSpeak version 1.47.11
ffdshow [rev 2946] [2009-05-15] (Version: 1.0)
FormatFactory 3.2.1.0 (Version: 3.2.1.0)
Fotogalerie (Version: 16.4.3508.0205)
Free Download Manager 3.9.3
Free PDF to Word Doc Converter v1.1 (Version: 1.1)
Free Studio version 2013 (Version: 6.2.0.1029)
Free YouTube Download version 3.2.12.827 (Version: 3.2.12.827)
FreeCommander 2009.02b (Version: 2009.02)
Genius SlimStar 310/311 Hotkey driver (Version: V3.9.1018)
GetFoldersize 2.5.24 (Version: 2.5.24)
GIMP 2.8.8 (Version: 2.8.8)
Google Earth (Version: 7.1.2.2041)
GTK2-Runtime (Version: 2.22.0-2010-10-21-ash)
HWiNFO32 Version 4.22 (Version: 4.22)
Icaros 2.2.3 (Version: 2.2.3.0)
Idoswin Pro 5.7 (Version: 5.7)
ImgBurn (Version: 2.5.8.0)
IrfanView (remove only) (Version: 4.36)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
JDownloader 0.9 (Version: 0.9)
Joe (Version: 4.01.0000)
LibreOffice 4.1 Help Pack (German) (Version: 4.1.1.2)
LibreOffice 4.1.3.2 (Version: 4.1.3.2)
Logitech Vid HD (Version: 7.2 (7259))
Luffi - Let's use freeware! Fun included ;) (v. 2.0.234) (Version: 1.0.234.0)
MainConcept DTV Decoder Pro (Version: 1.5.0.2)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
MediaInfo 0.7.65 (Version: 0.7.65)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft Server Speech Platform Runtime (x86) (Version: 11.0.7400.345)
Microsoft Server Speech Text to Speech Voice (de-DE, Hedda) (Version: 11.0.7400.335)
Microsoft Server Speech Text to Speech Voice (en-US, ZiraPro) (Version: 11.0.7400.335)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (HKCU Version: 17.0.2015.0811)
Microsoft Speech SDK 5.1 (Version: 5.1.4324.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mobipocket Reader 6.2 (Version: 6.2.608)
Movie Maker (Version: 16.4.3508.0205)
Mozilla Firefox 25.0.1 (x86 de) (Version: 25.0.1)
Mozilla Maintenance Service (Version: 24.1.1)
Mozilla Thunderbird 24.1.1 (x86 de) (Version: 24.1.1)
Mp3tag v2.58 (Version: v2.58)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MWS Reader 5 (Version: 5.0.330)
NVDA (Version: 2013.2)
ODBC
PDF Architect (Version: 1.1.83.9982)
PDFCreator (Version: 1.7.2)
Photo Common (Version: 16.4.3508.0205)
Photo Gallery (Version: 16.4.3508.0205)
RealSpeak Solo fur Deutsch - Steffi (Version: 4.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.7040)
Shark007 Advanced Codecs (Version: 4.2.2)
Skype™ 6.10 (Version: 6.10.104)
Slick Savings (Version: 1.1)
SopCast 3.2.9 (Version: 3.2.9)
Speed Test Analysis (Version: 1.0.0.5)
Steuererklärung 2012 (Version: 20.00.8137)
TechniSat DVB-PC TV Star (Version: 4.3.3)
UltraSearch V1.8.1 (Version: 1.8.1)
UseNeXT by Tangysoft
Video Downloader version 2.0 (Version: 2.0)
VideoPlayer v2.0.6 (Version: v2.0.6)
VLC media player 2.1.0 (Version: 2.1.0)
Windows Live Communications Platform (Version: 16.4.3508.0205)
Windows Live Essentials (Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3508.0205)
Windows Live Photo Common (Version: 16.4.3508.0205)
Windows Live PIMT Platform (Version: 16.4.3508.0205)
Windows Live SOXE (Version: 16.4.3508.0205)
Windows Live SOXE Definitions (Version: 16.4.3508.0205)
Windows Live UX Platform (Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (Version: 16.4.3508.0205)
WinRAR 4.20 (32-bit) (Version: 4.20.0)
WinX DVD Author 6.2
Wise Disk Cleaner 7.97 (Version: 7.97)
Wise Registry Cleaner 7.89 (Version: 7.89)
XnView 2.12 (Version: 2.12)

==================== Restore Points  =========================

03-12-2013 09:27:30 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {66F1CEFF-FC90-4DEF-A8EB-38D15813D6BF} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2013-11-08] (IObit)
Task: {AD654A55-BE17-42D5-9053-37E0A8B96314} - System32\Tasks\{D5324B14-5913-4A6F-B0B8-1EDB83F9B520} => C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2013-04-04] (Malwarebytes Corporation)
Task: {DA9DF368-5E35-44BB-AFA4-1306E517BEC1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-30] (Adobe Systems Incorporated)
Task: {F7D03F03-60AF-45B8-B824-6CF66D63D65F} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2013-11-04] (IObit)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Driver Booster Update.job => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-08-12 15:55 - 2006-02-24 12:27 - 00028672 _____ () C:\Program Files\hotkey\hidhook.dll
2013-08-12 15:55 - 2006-10-16 18:33 - 00032768 _____ () C:\Program Files\hotkey\Keyhook.dll
2013-08-15 10:29 - 2010-03-30 12:25 - 00120320 _____ () C:\Program Files\TechniSat DVB\bin\LIBBZ2.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 45%
Total physical RAM: 2046.49 MB
Available physical RAM: 1106.41 MB
Total Pagefile: 4092.98 MB
Available Pagefile: 2785.63 MB
Total Virtual: 2047.88 MB
Available Virtual: 1900.72 MB

==================== Drives ================================

Drive c: (Win7 sda5) (Fixed) (Total:100.83 GB) (Free:75.69 GB) NTFS
Drive d: (XP sda1) (Fixed) (Total:103.77 GB) (Free:75.4 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (Reservoir sdb1) (Fixed) (Total:465.76 GB) (Free:222.87 GB) NTFS
Drive f: (Literatur+Gemeinsam sda6) (Fixed) (Total:206.58 GB) (Free:124.22 GB) NTFS
Drive i: (xp Sicherung sdc1) (Fixed) (Total:59.28 GB) (Free:8.43 GB) NTFS
Drive j: (Systemsicherung sdc2) (Fixed) (Total:236.68 GB) (Free:91.71 GB) NTFS
Drive k: (Musik+Bilder sdc3) (Fixed) (Total:231.6 GB) (Free:83.25 GB) NTFS
Drive l: (Filme sdc5 ) (Fixed) (Total:403.95 GB) (Free:35.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: FDB7FDB7)
Partition 1: (Active) - (Size=104 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=362 GB) - (Type=05)

========================================================
Disk: 1 (Size: 466 GB) (Disk ID: EDC6EDC6)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 932 GB) (Disk ID: 000D22AF)
Partition 1: (Not Active) - (Size=59 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=232 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=404 GB) - (Type=05)

==================== End Of Log ============================

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Professional x86
Ran by Rolli on 03.12.2013 at 11:20:59,67
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Rolli\AppData\Roaming\slick savings"
Successfully deleted: [Folder] "C:\Users\Rolli\appdata\local\slick savings"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.12.2013 at 11:23:30,43
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

cosinus · 03.12.2013, 11:59

Sagt dir luffi.exe irgendwas? Wenn nicht bitte einen FRST Fix machen:

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter

AppInit_DLLs: [ ] () Startup: C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luffi.lnk ShortcutTarget: Luffi.lnk -> C:\Users\Public\Documents\Luffi\Luffi.exe () C:\Users\Rolli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Luffi.lnk C:\Users\Public\Documents\Luffi

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.

Das Tool erstellt eine Fixlog.txt.

Poste mir deren Inhalt.

So, Fix gestrichen

rolli0815 · 03.12.2013, 12:06

Ja, sagt mir was:

Code:

ATTFilter

Mit 1.120 Freewareprogrammen ist Luffi 2.0.234 vom 02.10.2013 der mächtigste Freewareinstaller, den es derzeit gibt! Von Luffi werden ausnahmslos nur echte Freewareprogramme angeboten -

cosinus · 03.12.2013, 12:21

Gut, ich streich den Fix mal.

Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM)

Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

rolli0815 · 03.12.2013, 16:23

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=24c65b2766fa9f4b88c2c0b52383a449
# engine=16114
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-12-03 03:19:13
# local_time=2013-12-03 04:19:13 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 95 24631 251507243 17386 0
# compatibility_mode=5893 16776573 100 94 24678 137715144 0 0
# scanned=304206
# found=3
# cleaned=0
# scan_time=12660
sh=39D545307059D69604C2ED112C11AAA303AAE834 ft=1 fh=36dc4f7032c73daa vn="a variant of Win32/AdWare.MediaFinder.I application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Rolli\AppData\Roaming\Media Finder\Extensions\IEPlugin32.dll.vir"
sh=BBABE6EC2BA79B16D80CB1354C1E7D9F948B184D ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="D:\Dokumente und Einstellungen\rolli\Lokale Einstellungen\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\20\69a0cf14-7db56f70"
sh=B3C849F2A7BC498C0494F2F579F8E1795CCD21EC ft=1 fh=4554a5719d333722 vn="a variant of Win32/SpeedingUpMyPC.B application" ac=I fn="D:\Dokumente und Einstellungen\rolli\Lokale Einstellungen\Temp\is2036094744\889021_Setup.EXE"

P.S. Warum soll Eset gelöscht werden?

cosinus · 03.12.2013, 20:59

Wenn du unbedingt willst kannst du ESET auch behalten. Es empfiehlt sich aber, den bei Bedarf neu zu installieren, damit man den auch aktuell hat. Also runter damit.

Was ist mit MBAM?

rolli0815 · 04.12.2013, 17:31

Mbam war ok

02.12.2013, 12:13	#4
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Probleme mit flashplayer und Firefox Was ist mit meiner Frage nach bisherigen Funden, wenn ja wo sind die Logs dazu, oder gab es bisher keine Funde? __________________ Logfiles bitte immer in CODE-Tags posten

03.12.2013, 20:59	#14
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Probleme mit flashplayer und Firefox Wenn du unbedingt willst kannst du ESET auch behalten. Es empfiehlt sich aber, den bei Bedarf neu zu installieren, damit man den auch aktuell hat. Also runter damit. Was ist mit MBAM? __________________ Logfiles bitte immer in CODE-Tags posten

Probleme mit flashplayer und Firefox

Log-Analyse und Auswertung: Probleme mit flashplayer und Firefox