Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Avira blockiert?

Avira blockiert?


Plagegeister aller Art und deren Bekämpfung: Avira blockiert?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 07.01.2014, 05:30   #1
Happyplace
 
Avira blockiert? - Standard

Avira blockiert?


Hallo,

Oh, ich hoffe das ich so früh jetzt nicht totalen Mist schreibe, seid gnädig, ich versuche es halbwegs sinnvoll zu formulieren.

Folgendes Problem.

Laptop ist neu, noch keine 3 Monate alt. Installiert ist MC Afee.
Avira wurde als CD Installation gekauft.

A. irgendwas macht den PC langsamer
B: Mc Affee findet nichts, läuft normal durch
C: Avira öffnet aus irgendeinem Grund stets 3 Scannfenster
einer läuft irgendwie in normaltempo durch, der andere ist super langsam und hängt sich irgendwo immer auf oder aber der Scan ist schon nach 1ner Minute durch und findet nichts.

Da ich kürzlich versucht habe irgendwo für meine Mum diesen dummen No 23 Recorder runterzuladen, schließe ich nicht aus, dass irgendwas schief gelaufen ist.

Kurzum, denke irgendwas blockiert oder "shadowed" Avira. Vielleicht habe ich auch ne dumme Mail mal geöffnet, weiß es nicht.

Im Vergleich zum Anfang ist auch alles etwas langsamer, nicht signifikant-aber dennoch!

Im Taskmanager kann ich leider nicht erkennen, was normal ist und was nicht.

Aber Avira geht nicht mehr richtig.

Für Hilfe wäre ich dankbar.

Alt 07.01.2014, 09:26   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Avira blockiert? - Standard

Avira blockiert?


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 08.01.2014, 02:39   #3
Happyplace
 
Avira blockiert? - Standard

Avira blockiert?


Hallo Schrauber,

Danke für deine Hilfe und sorry für die "späte" Antwort.

Hier die Logdaten.

1. Die der FRST.exe: 8 wow ist das immer so verdammt lang?:-D-here we go)
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by Gertrud1 (administrator) on GERTRUD on 08-01-2014 02:25:31
Running from C:\Users\Gertrud1\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
() C:\Program Files\Avira Secure Backup\Avira Secure BackupCrawler.exe
(Avira) C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup_internetsecuritysuite.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(McAfee, Inc.) C:\Program Files\mcafee\AppStats\MfeASUM.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
() C:\Program Files (x86)\BrowseSmart\updateBrowseSmart.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
() C:\Program Files (x86)\BrowseSmart\bin\utilBrowseSmart.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
() C:\Program Files\Avira Secure Backup\Avira Secure Backup.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(McAfee, Inc.) C:\Program Files\mcafee\msm\McSmtFwk.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe
(Trusted Software ApS) C:\Program Files (x86)\File Type Assistant\tsassist.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2890640 2013-04-22] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13550152 2013-05-30] (Realtek Semiconductor)
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE [644696 2007-05-15] (CANON INC.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [1840720 2007-04-04] (CANON INC.)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [537512 2013-09-24] (McAfee, Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2013-12-20] (APN)
HKLM-x32\...\Run: [mcpltui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [537512 2013-09-24] (McAfee, Inc.)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [85600 2013-11-26] (Nullsoft, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133248 2013-05-31] ( (Atheros Communications))
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Avira Secure Backup] - C:\Program Files\Avira Secure Backup\Avira Secure Backup.exe [1726032 2013-11-15] ()
HKCU\...\Run: [AviraSpeedup] - C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup_internetsecuritysuite.exe [5036600 2013-11-29] (Avira)
HKU\Administrator\...\Run: [Avira Secure Backup] - C:\Program Files\Avira Secure Backup\Avira Secure Backup.exe [1726032 2013-11-15] ()
HKU\Administrator\...\Run: [AviraSpeedup] - C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup_internetsecuritysuite.exe [5036600 2013-11-29] (Avira)
HKU\Administrator\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Mysearchdial Search
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
SearchScopes: HKLM - DefaultScope {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {B8B2B996-B0C8-47A2-81E6-D1D577DD78D1} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=file1202&cd=2XzuyEtN2Y1L1QzutBtDtC0AtDyCtCyEzz0A0EtByCyE0AzztN0D0Tzu0SyBtCtAtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1234566685&ir=
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://search.softonic.com/MOY00009/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=e81f64a80000000000001ad224d3c664&toi=16038&r=328
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - {B8B2B996-B0C8-47A2-81E6-D1D577DD78D1} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=file1202&cd=2XzuyEtN2Y1L1QzutBtDtC0AtDyCtCyEzz0A0EtByCyE0AzztN0D0Tzu0SyBtCtAtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1234566685&ir=
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO-x32: SaveSense - {0f21b1e5-5afc-43c9-9c66-515046e92ec2} - C:\Program Files (x86)\SaveSense\SaveSenseIE.dll (SaveSense)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO-x32: BrowseSmart - {ffbb88a9-c663-4b9b-9170-70fa0a5a2786} - C:\Program Files (x86)\BrowseSmart\BrowseSmartBHO.dll (BrowseSmart)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Gertrud1\AppData\Roaming\Mozilla\Firefox\Profiles\vfhqm48k.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @mcafee.com/SAFFPlugin - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF Plugin-x32: @tools.updaterss.com/SaveSenseLive Update;version=3 - C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF Plugin-x32: @tools.updaterss.com/SaveSenseLive Update;version=9 - C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK

Chrome: 
=======
CHR Extension: (SaveSense) - C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0
CHR Extension: (Chat Undetected) - C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\llmfehnfojojfamjjijjciopbjimcffa\1.23.59_0
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\Gertrud1\AppData\Local\mysearchdial-speeddial.crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx
CHR HKLM-x32\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\Gertrud1\AppData\Local\mysearchdial-speeddial.crx

==================== Services (Whitelisted) =================

R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [908856 2013-12-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-12] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [310912 2013-05-31] (Windows (R) Win 7 DDK provider)
R2 Avira Secure Backup Crawler; C:\Program Files\Avira Secure Backup\Avira Secure BackupCrawler.exe [2258000 2013-11-15] ()
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-04-30] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-17] (Acer Incorporate)
R2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178048 2013-11-28] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
S2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 MfeASUM; C:\Program Files\McAfee\AppStats\MfeASUM.exe [335216 2013-12-01] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1025232 2013-11-26] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4230016 2013-01-28] (Symantec Corporation)
S2 savesenselive; C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [146920 2013-11-29] (SaveSense)
S3 savesenselivem; C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [146920 2013-11-29] (SaveSense)
R2 Update BrowseSmart; C:\Program Files (x86)\BrowseSmart\updateBrowseSmart.exe [66848 2013-12-06] ()
R2 Util BrowseSmart; C:\Program Files (x86)\BrowseSmart\bin\utilBrowseSmart.exe [66848 2013-12-14] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-29] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-12] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-05-30] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-07] (Microsoft Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R2 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
R1 MfeASKM; C:\Program Files\McAfee\AppStats\MfeASKM.sys [31408 2013-12-01] (McAfee, Inc.)
R2 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69344 2013-11-04] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [411944 2013-11-26] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96112 2013-11-26] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-07] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-08 02:25 - 2014-01-08 02:28 - 00021591 _____ C:\Users\Gertrud1\Downloads\FRST.txt
2014-01-08 02:23 - 2014-01-08 02:23 - 00000000 ____D C:\FRST
2014-01-08 02:21 - 2014-01-08 02:21 - 01931762 _____ (Farbar) C:\Users\Gertrud1\Downloads\FRST64.exe
2014-01-07 05:02 - 2014-01-07 05:02 - 00000039 _____ C:\WINDOWS\setupact.log
2014-01-07 05:02 - 2014-01-07 05:02 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-07 04:59 - 2014-01-07 04:59 - 00056340 _____ C:\WINDOWS\PFRO.log
2014-01-07 03:02 - 2014-01-07 03:02 - 00002187 _____ C:\Users\Gertrud1\Desktop\Avira Internet Security Suite starten.lnk
2014-01-07 03:01 - 2014-01-07 03:01 - 00037888 ___SH C:\Users\Gertrud1\Desktop\Thumbs.db
2014-01-07 03:01 - 2014-01-07 03:01 - 00004930 _____ C:\Users\Gertrud1\Desktop\Avira Desktop - Verknüpfung.lnk
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\Documents\Bluetooth Folder
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\BMExplorer
2014-01-07 02:34 - 2014-01-07 02:34 - 00001458 _____ C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-07 02:33 - 2014-01-07 02:33 - 00000020 ___SH C:\Users\Gertrud1\ntuser.ini
2014-01-07 02:25 - 2014-01-08 02:20 - 00909185 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-07 02:24 - 2014-01-07 02:24 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2014-01-07 01:59 - 2014-01-07 01:59 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-07 01:58 - 2014-01-07 02:33 - 00000000 ____D C:\Users\Gertrud1
2014-01-07 01:58 - 2014-01-07 02:24 - 00028578 _____ C:\WINDOWS\diagwrn.xml
2014-01-07 01:58 - 2014-01-07 02:24 - 00028578 _____ C:\WINDOWS\diagerr.xml
2014-01-07 01:58 - 2014-01-07 02:14 - 00000000 ____D C:\Users\Administrator
2014-01-07 01:58 - 2014-01-07 01:59 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Realtek
2014-01-07 01:52 - 2014-01-07 02:00 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-07 01:52 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Elantech
2014-01-07 01:52 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2014-01-07 01:52 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2014-01-07 01:50 - 2014-01-07 02:34 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-07 01:50 - 2014-01-07 01:50 - 00000000 __SHD C:\Recovery
2014-01-07 01:49 - 2014-01-07 01:49 - 00000000 ____D C:\Windows.old
2014-01-07 01:48 - 2014-01-07 01:48 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 04191232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 04105216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-07 01:48 - 2014-01-07 01:48 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-07 01:46 - 2014-01-07 01:46 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\MSBuild
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-07 01:44 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-01-07 01:44 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-31 20:14 - 2013-12-31 20:14 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Chat Undetected
2013-12-29 10:54 - 2013-12-29 10:59 - 10880044 _____ C:\Users\Gertrud1\Desktop\01 - andrea rischka - wenn du wüsstest.wav
2013-12-29 10:48 - 2013-12-29 10:51 - 15046700 _____ C:\Users\01 - andrea rischka - wenn du wüsstest.wav
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07877120 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06202368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\Documents\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Software
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Cyberlink
2013-12-15 00:42 - 2013-12-15 00:34 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:42 - 2013-12-15 00:34 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:42 - 2013-12-15 00:33 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-13 16:44 - 2014-01-01 20:20 - 00000000 ____D C:\Program Files (x86)\BrowseSmart
2013-12-13 16:43 - 2013-12-14 10:03 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Mobogenie
2013-12-13 16:43 - 2013-12-13 17:01 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\cache
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong\AppData\Local\Mobogenie
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong
2013-12-13 16:42 - 2014-01-01 20:20 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-13 16:42 - 2013-12-13 16:42 - 24039048 _____ (Mozilla) C:\Users\Gertrud1\Downloads\FirefoxSetup.exe
2013-12-13 16:41 - 2013-12-13 16:40 - 00351124 _____ C:\Users\Gertrud1\AppData\Local\mysearchdial-speeddial.crx
2013-12-12 12:14 - 2013-12-12 12:14 - 00000000 ____D C:\Users\Gertrud1\Documents\Fax
2013-12-11 15:55 - 2013-12-11 16:49 - 00000748 _____ C:\Users\Gertrud1\Desktop\TP-LINK Modem Router Settings.txt

==================== One Month Modified Files and Folders =======

2014-01-08 02:28 - 2014-01-08 02:25 - 00021591 _____ C:\Users\Gertrud1\Downloads\FRST.txt
2014-01-08 02:23 - 2014-01-08 02:23 - 00000000 ____D C:\FRST
2014-01-08 02:21 - 2014-01-08 02:21 - 01931762 _____ (Farbar) C:\Users\Gertrud1\Downloads\FRST64.exe
2014-01-08 02:20 - 2014-01-07 02:25 - 00909185 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-08 02:12 - 2013-11-29 20:45 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1287913836-1958190919-2930970059-1001
2014-01-08 02:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-07 11:55 - 2013-11-29 22:50 - 00000952 _____ C:\WINDOWS\Tasks\SaveSenseLiveUpdateTaskMachineUA.job
2014-01-07 11:42 - 2013-11-29 23:03 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-07 05:07 - 2013-11-14 08:27 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-07 05:07 - 2013-11-14 08:11 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-07 05:07 - 2013-11-14 08:11 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-07 05:03 - 2013-11-29 20:51 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Avira Secure Backup
2014-01-07 05:02 - 2014-01-07 05:02 - 00000039 _____ C:\WINDOWS\setupact.log
2014-01-07 05:02 - 2014-01-07 05:02 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-07 05:00 - 2013-11-29 22:50 - 00000948 _____ C:\WINDOWS\Tasks\SaveSenseLiveUpdateTaskMachineCore.job
2014-01-07 05:00 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-07 04:59 - 2014-01-07 04:59 - 00056340 _____ C:\WINDOWS\PFRO.log
2014-01-07 04:59 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-07 03:02 - 2014-01-07 03:02 - 00002187 _____ C:\Users\Gertrud1\Desktop\Avira Internet Security Suite starten.lnk
2014-01-07 03:01 - 2014-01-07 03:01 - 00037888 ___SH C:\Users\Gertrud1\Desktop\Thumbs.db
2014-01-07 03:01 - 2014-01-07 03:01 - 00004930 _____ C:\Users\Gertrud1\Desktop\Avira Desktop - Verknüpfung.lnk
2014-01-07 02:58 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2014-01-07 02:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-07 02:38 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2014-01-07 02:37 - 2013-11-28 00:16 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Packages
2014-01-07 02:37 - 2013-11-14 09:24 - 00000000 ___HD C:\$Windows.~BT
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\Documents\Bluetooth Folder
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\BMExplorer
2014-01-07 02:36 - 2013-09-13 05:58 - 00000000 ____D C:\ProgramData\Atheros
2014-01-07 02:35 - 2013-11-29 20:40 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2014-01-07 02:34 - 2014-01-07 02:34 - 00001458 _____ C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-07 02:34 - 2014-01-07 01:50 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-07 02:34 - 2013-11-29 20:39 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-07 02:34 - 2013-11-29 20:39 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-07 02:33 - 2014-01-07 02:33 - 00000020 ___SH C:\Users\Gertrud1\ntuser.ini
2014-01-07 02:33 - 2014-01-07 01:58 - 00000000 ____D C:\Users\Gertrud1
2014-01-07 02:28 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2014-01-07 02:25 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2014-01-07 02:24 - 2014-01-07 02:24 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-07 02:24 - 2014-01-07 01:58 - 00028578 _____ C:\WINDOWS\diagwrn.xml
2014-01-07 02:24 - 2014-01-07 01:58 - 00028578 _____ C:\WINDOWS\diagerr.xml
2014-01-07 02:15 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2014-01-07 02:14 - 2014-01-07 01:58 - 00000000 ____D C:\Users\Administrator
2014-01-07 02:04 - 2013-08-22 15:44 - 00344944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-07 02:03 - 2013-11-29 22:50 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
2014-01-07 02:03 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2014-01-07 02:03 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2014-01-07 02:03 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-07 02:03 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2014-01-07 02:02 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2014-01-07 02:01 - 2013-11-30 13:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-07 02:01 - 2013-11-29 21:45 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2014-01-07 02:01 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2014-01-07 02:01 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-07 02:00 - 2014-01-07 01:52 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-07 02:00 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-07 02:00 - 2013-06-04 05:11 - 00000000 ____D C:\ProgramData\PRICache
2014-01-07 01:59 - 2014-01-07 01:59 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-07 01:59 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:59 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Realtek
2014-01-07 01:53 - 2014-01-07 01:52 - 00000000 ____D C:\Program Files\Elantech
2014-01-07 01:50 - 2014-01-07 01:50 - 00000000 __SHD C:\Recovery
2014-01-07 01:49 - 2014-01-07 01:49 - 00000000 ____D C:\Windows.old
2014-01-07 01:49 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2014-01-07 01:48 - 2014-01-07 01:48 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 04191232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 04105216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-07 01:48 - 2014-01-07 01:48 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2014-01-07 01:46 - 2014-01-07 01:46 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\MSBuild
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-07 01:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-07 01:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2014-01-07 00:54 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2014-01-06 23:09 - 2013-11-29 23:07 - 00000000 ____D C:\Program Files (x86)\File Type Assistant
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-02 18:22 - 2013-11-29 21:46 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Mozilla
2014-01-01 20:20 - 2013-12-13 16:44 - 00000000 ____D C:\Program Files (x86)\BrowseSmart
2014-01-01 20:20 - 2013-12-13 16:42 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2014-01-01 20:20 - 2013-11-30 13:52 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Winamp
2014-01-01 20:20 - 2013-11-29 22:38 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\clear.fi
2013-12-31 20:14 - 2013-12-31 20:14 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Chat Undetected
2013-12-29 10:59 - 2013-12-29 10:54 - 10880044 _____ C:\Users\Gertrud1\Desktop\01 - andrea rischka - wenn du wüsstest.wav
2013-12-29 10:51 - 2013-12-29 10:48 - 15046700 _____ C:\Users\01 - andrea rischka - wenn du wüsstest.wav
2013-12-29 10:51 - 2013-11-29 22:37 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\CrashDumps
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2014-01-07 01:52 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-12-21 00:02 - 2014-01-07 01:52 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07877120 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06202368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-17 14:30 - 2013-11-29 19:45 - 00001712 _____ C:\Users\Gertrud1\daemonprocess.txt
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\Documents\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Software
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Cyberlink
2013-12-16 13:24 - 2013-09-13 06:13 - 00000000 ____D C:\ProgramData\CyberLink
2013-12-15 19:14 - 2013-11-30 13:31 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-15 00:34 - 2013-12-15 00:42 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:34 - 2013-12-15 00:42 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:33 - 2013-12-15 00:42 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-14 10:03 - 2013-12-13 16:43 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Mobogenie
2013-12-13 17:01 - 2013-12-13 16:43 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\cache
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong\AppData\Local\Mobogenie
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong
2013-12-13 16:42 - 2013-12-13 16:42 - 24039048 _____ (Mozilla) C:\Users\Gertrud1\Downloads\FirefoxSetup.exe
2013-12-13 16:40 - 2013-12-13 16:41 - 00351124 _____ C:\Users\Gertrud1\AppData\Local\mysearchdial-speeddial.crx
2013-12-13 16:39 - 2013-11-29 23:07 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\FileTypeAssistant
2013-12-13 09:13 - 2013-06-04 05:28 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-12-12 12:29 - 2013-11-29 21:12 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-12 12:29 - 2013-11-29 21:12 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-12 12:29 - 2013-11-29 21:12 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2013-12-12 12:14 - 2013-12-12 12:14 - 00000000 ____D C:\Users\Gertrud1\Documents\Fax
2013-12-11 17:42 - 2013-11-29 23:03 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-11 16:49 - 2013-12-11 15:55 - 00000748 _____ C:\Users\Gertrud1\Desktop\TP-LINK Modem Router Settings.txt
2013-12-11 15:32 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2013-12-11 15:25 - 2013-09-13 06:08 - 00000000 ____D C:\ProgramData\Norton
2013-12-11 15:25 - 2013-06-04 05:28 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-12-10 16:22 - 2013-11-29 22:50 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\SaveSense
2013-12-10 14:10 - 2013-06-04 05:31 - 00000000 ____D C:\Program Files (x86)\Acer
2013-12-10 13:50 - 2013-11-29 22:50 - 00000320 _____ C:\WINDOWS\Tasks\SaveSense.job

Some content of TEMP:
====================
C:\Users\Gertrud1\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-07 01:50

==================== End Of Log ============================
--- --- ---
2. Addition txt.:FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2014
Ran by Gertrud1 at 2014-01-08 02:30:12
Running from C:\Users\Gertrud1\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}

==================== Installed Programs ======================

 clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
 clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
Acer Device Fast-lane (Version: 1.00.3013 - Acer Incorporated)
Acer Launch Manager (Version: 8.00.3005 - Acer Incorporated)
Acer Power Management (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (Version: 6.00.3016 - Acer Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Avira Internet Security Suite (x32 Version: 14.0.2.286 - Avira)
Avira SearchFree Toolbar (x32 Version: 12.10.0.2949 - APN, LLC)
Avira Secure Backup (Version: 1.0.1 - Avira Secure Backup)
Avira System Speedup (x32 Version: 1.2.1.9700 - Avira System Speedup)
Broadcom Card Reader Driver Installer (Version: 16.0.2.6 - Broadcom Corporation)
Broadcom NetLink Controller (Version: 16.0.2.4 - Broadcom Corporation)
BrowseSmart (Version: 2013.12.06.205904 - BrowseSmart) <==== ATTENTION
Canon iP3500 series (Version:  - )
Canon iP3500 series Benutzerregistrierung (x32 Version:  - )
Canon My Printer (Version:  - )
Canon Utilities Easy-PhotoPrint EX (x32 Version:  - )
Canon Utilities Solution Menu (x32 Version:  - )
clear.fi Media (x32 Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (x32 Version: 2.02.2016 - Acer Incorporated)
ETDWare PS/2-X64 11.6.23.203_WHQL (Version: 11.6.23.203 - ELAN Microelectronic Corp.)
File Type Assistant (x32 Version: 2013.4.8.0 - ) <==== ATTENTION
Free All-In-One Media Player (x32 Version:  - Free Software Group)
Google Update Helper (x32 Version: 1.3.23.0 - SaveSense) Hidden <==== ATTENTION
Identity Card (x32 Version: 2.00.3006 - Acer Incorporated)
Intel(R) Management Engine Components (x32 Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 10.18.10.3379 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
Live Updater (x32 Version: 2.00.3010 - Acer Incorporated)
McAfee Internet Security Suite (x32 Version: 12.8.903 - McAfee, Inc.)
Microsoft Office (x32 Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Nero BackItUp (x32 Version: 12.5.5000 - Nero AG) Hidden
Nero BackItUp 12 Essentials OEM.a01 (x32 Version: 12.5.00500 - Nero AG)
Nero BackItUp Help (CHM) (x32 Version: 12.0.10000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden
Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Norton Online Backup (x32 Version: 2.7.0.24 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.3.0.14 - Symantec Corporation) Hidden
Office Addin (x32 Version: 2.02.2008 - Acer)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.228 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (x32 Version: 11.57 - Qualcomm Atheros)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6927 - Realtek Semiconductor Corp.)
SaveSense (remove only) (x32 Version: 5.3.0.6 - SaveSense) <==== ATTENTION
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Visual C++ 9.0 CRT (x86) WinSXS MSM (x32 Version: 9.0 - Microsoft Corporation) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (x32 Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (x32 Version: 1 - Microsoft Corporation)
Winamp (x32 Version: 5.666  - Nullsoft, Inc)

==================== Restore Points  =========================

07-01-2014 01:58:04 Erstelle Systemwiederherstellungspunkt bevor Junk-Dateien gelöscht werden.
07-01-2014 03:02:18 wiederherstellung jan.14

==================== Hosts content: ==========================

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {036F7EDF-8E63-4350-B07E-DA41E5CA3D70} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3BA83DE8-A48A-418D-891E-4CE84E81AA32} - System32\Tasks\ProgramUpdateCheck => C:\Program Files (x86)\File Type Assistant\tsassist.exe [2013-04-08] (Trusted Software ApS) <==== ATTENTION
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {5C2EC542-6A5F-4349-9D33-579EECF31AEE} - System32\Tasks\ProgramRefresh-ATFST => C:\Program Files (x86)\File Type Assistant\TSASetup.exe [2013-04-08] (                                                            ) <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {7102717A-B900-4271-8C2C-AF3A11DA13B1} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {71044B24-D89D-4D1E-A416-D84AD6DE8696} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.3.0.14\\Ara.exe [2013-08-27] (Symantec Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {767D99A3-AA35-43E0-9B20-06891999EE7D} - System32\Tasks\SaveSense => C:\Users\Gertrud1\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {94EAB105-84E1-42C3-8B3B-6E126F30E5D3} - System32\Tasks\SaveSenseLiveUpdateTaskMachineUA => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [2013-11-29] (SaveSense) <==== ATTENTION
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {AA0D0229-9CF3-4E07-98B1-5053F39DFABA} - System32\Tasks\SaveSenseLiveUpdateTaskMachineCore => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [2013-11-29] (SaveSense) <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DDAC8286-D702-42AF-BAD8-C85E42E8E8B1} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-06-17] (Acer Incorporate)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EB554D37-124F-4F49-B70C-F60088FDA8F8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {EEEBC16F-D545-42EE-AD32-7F6A9ACB0B87} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\System32\oobe\setupsqm.exe [2013-08-22] (Microsoft Corporation)
Task: {F1A11905-6598-43BD-A89C-E8CF4CF5F986} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] ()
Task: {FEE37FD8-28EF-4A3B-B006-B4656FC76C51} - System32\Tasks\AviraSpeedup => C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup_internetsecuritysuite.exe [2013-11-29] (Avira)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\SaveSense.job => C:\Users\Gertrud1\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\SaveSenseLiveUpdateTaskMachineCore.job => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\SaveSenseLiveUpdateTaskMachineUA.job => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2013-11-15 12:17 - 2013-11-15 12:17 - 02048512 _____ () C:\Program Files\Avira Secure Backup\ShellExtensionx64\ShellExtension1.dll
2013-09-13 06:13 - 2013-02-20 21:58 - 00111176 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2013-05-31 00:23 - 2013-05-31 00:23 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-05-31 00:19 - 2013-05-31 00:19 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-11-29 21:12 - 2013-11-29 21:07 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-10-02 17:40 - 2013-10-02 17:40 - 00957952 _____ () C:\Program Files\Avira Secure Backup\NativeControls7.dll
2013-11-15 12:15 - 2013-11-15 12:15 - 01764352 _____ () C:\Program Files\Avira Secure Backup\OnlineBackupFacade.dll
2013-09-13 05:43 - 2013-01-14 19:25 - 01200088 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-01-02 18:22 - 2013-12-05 20:36 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:AD022376

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (01/07/2014 05:37:49 AM) (Source: Application Hang) (User: )
Description: Programm backgroundTaskHost.exe, Version 6.3.9600.16384 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1bd0

Startzeit: 01cf0b6180254dc3

Endzeit: 4294967295

Anwendungspfad: C:\WINDOWS\system32\backgroundTaskHost.exe

Berichts-ID: 743f2f3d-7755-11e3-be80-48d224d4235c

Vollständiger Name des fehlerhaften Pakets: Microsoft.BingNews_3.0.1.174_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AppexNews

Error: (01/07/2014 04:58:03 AM) (Source: Application Hang) (User: )
Description: Programm backgroundTaskHost.exe, Version 6.3.9600.16384 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 394

Startzeit: 01cf0b4fb3ff755e

Endzeit: 4294967295

Anwendungspfad: C:\WINDOWS\system32\backgroundTaskHost.exe

Berichts-ID: a8dfdbf2-7743-11e3-824f-48d224d4235c

Vollständiger Name des fehlerhaften Pakets: Microsoft.BingTravel_3.0.1.174_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AppexTravel

Error: (01/07/2014 04:36:30 AM) (Source: Application Hang) (User: )
Description: Programm SystemSettings.exe, Version 6.3.9600.16397 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 2780

Startzeit: 01cf0b599940f4b3

Endzeit: 4294967295

Anwendungspfad: C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe

Berichts-ID: e1e75afd-774c-11e3-824f-48d224d4235c

Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel

Error: (01/07/2014 04:36:22 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: Gertrud)
Description: Die App „windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (01/07/2014 04:34:07 AM) (Source: Application Hang) (User: )
Description: Programm backgroundTaskHost.exe, Version 6.3.9600.16384 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 26fc

Startzeit: 01cf0b5899c7e85e

Endzeit: 4294967295

Anwendungspfad: C:\WINDOWS\system32\backgroundTaskHost.exe

Berichts-ID: 8eb0c749-774c-11e3-824f-48d224d4235c

Vollständiger Name des fehlerhaften Pakets: Microsoft.BingFinance_3.0.1.174_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AppexFinance

Error: (01/07/2014 04:01:41 AM) (Source: SPP) (User: )
Description: Behebbarer Fehler des Writers "MSSearch Service Writer" beim Erstellen der Schattenkopie. Der Vorgang wird wiederholt...

Weitere Informationen: "".

Error: (01/07/2014 04:01:41 AM) (Source: SPP) (User: )
Description: Behebbarer Fehler des Writers "COM+ REGDB Writer" beim Erstellen der Schattenkopie. Der Vorgang wird wiederholt...

Weitere Informationen: "".

Error: (01/07/2014 04:01:41 AM) (Source: SPP) (User: )
Description: Behebbarer Fehler des Writers "WMI Writer" beim Erstellen der Schattenkopie. Der Vorgang wird wiederholt...

Weitere Informationen: "".

Error: (01/07/2014 04:01:41 AM) (Source: SPP) (User: )
Description: Behebbarer Fehler des Writers "Shadow Copy Optimization Writer" beim Erstellen der Schattenkopie. Der Vorgang wird wiederholt...

Weitere Informationen: "".

Error: (01/07/2014 04:01:41 AM) (Source: SPP) (User: )
Description: Behebbarer Fehler des Writers "Registry Writer" beim Erstellen der Schattenkopie. Der Vorgang wird wiederholt...

Weitere Informationen: "".


System errors:
=============
Error: (01/08/2014 02:05:01 AM) (Source: DCOM) (User: Gertrud)
Description: c:\PROGRA~1\mcafee\msc\mcmscsub.dll -Embedding193{9B3BEB4E-1C5E-4A5F-BB36-2F6587DD34E2}

Error: (01/07/2014 10:00:01 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (01/07/2014 09:22:35 AM) (Source: DCOM) (User: Gertrud)
Description: c:\PROGRA~1\mcafee\msc\mcmscsub.dll -Embedding193{9B3BEB4E-1C5E-4A5F-BB36-2F6587DD34E2}

Error: (01/07/2014 05:04:58 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (01/07/2014 05:03:20 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (01/07/2014 05:00:44 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee Inc. mfeapfk" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1243

Error: (01/07/2014 04:58:42 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst mfecore erreicht.

Error: (01/07/2014 04:26:33 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/07/2014 03:22:48 AM) (Source: DCOM) (User: Gertrud)
Description: c:\PROGRA~1\mcafee\msc\mcmscsub.dll -Embedding193{9B3BEB4E-1C5E-4A5F-BB36-2F6587DD34E2}

Error: (01/07/2014 02:37:25 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {209500FC-6B45-4693-8871-6296C4843751}


Microsoft Office Sessions:
=========================
Error: (01/07/2014 05:37:49 AM) (Source: Application Hang)(User: )
Description: backgroundTaskHost.exe6.3.9600.163841bd001cf0b6180254dc34294967295C:\WINDOWS\system32\backgroundTaskHost.exe743f2f3d-7755-11e3-be80-48d224d4235cMicrosoft.BingNews_3.0.1.174_x64__8wekyb3d8bbweAppexNews

Error: (01/07/2014 04:58:03 AM) (Source: Application Hang)(User: )
Description: backgroundTaskHost.exe6.3.9600.1638439401cf0b4fb3ff755e4294967295C:\WINDOWS\system32\backgroundTaskHost.exea8dfdbf2-7743-11e3-824f-48d224d4235cMicrosoft.BingTravel_3.0.1.174_x64__8wekyb3d8bbweAppexTravel

Error: (01/07/2014 04:36:30 AM) (Source: Application Hang)(User: )
Description: SystemSettings.exe6.3.9600.16397278001cf0b599940f4b34294967295C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exee1e75afd-774c-11e3-824f-48d224d4235cwindows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewymicrosoft.windows.immersivecontrolpanel

Error: (01/07/2014 04:36:22 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: Gertrud)
Description: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel

Error: (01/07/2014 04:34:07 AM) (Source: Application Hang)(User: )
Description: backgroundTaskHost.exe6.3.9600.1638426fc01cf0b5899c7e85e4294967295C:\WINDOWS\system32\backgroundTaskHost.exe8eb0c749-774c-11e3-824f-48d224d4235cMicrosoft.BingFinance_3.0.1.174_x64__8wekyb3d8bbweAppexFinance

Error: (01/07/2014 04:01:41 AM) (Source: SPP)(User: )
Description: MSSearch Service WriterDas Zeitlimit des Generators für den Zeitraum zwischen dem Freeze- und dem Thaw-Ereignis wurde überschritten. (0x800423F2)

Error: (01/07/2014 04:01:41 AM) (Source: SPP)(User: )
Description: COM+ REGDB WriterDas Zeitlimit des Generators für den Zeitraum zwischen dem Freeze- und dem Thaw-Ereignis wurde überschritten. (0x800423F2)

Error: (01/07/2014 04:01:41 AM) (Source: SPP)(User: )
Description: WMI WriterDas Zeitlimit des Generators für den Zeitraum zwischen dem Freeze- und dem Thaw-Ereignis wurde überschritten. (0x800423F2)

Error: (01/07/2014 04:01:41 AM) (Source: SPP)(User: )
Description: Shadow Copy Optimization WriterDas Zeitlimit des Generators für den Zeitraum zwischen dem Freeze- und dem Thaw-Ereignis wurde überschritten. (0x800423F2)

Error: (01/07/2014 04:01:41 AM) (Source: SPP)(User: )
Description: Registry WriterDas Zeitlimit des Generators für den Zeitraum zwischen dem Freeze- und dem Thaw-Ereignis wurde überschritten. (0x800423F2)


CodeIntegrity Errors:
===================================
  Date: 2014-01-07 03:45:56.384
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe that did not meet the Store signing level requirements.


==================== Memory info =========================== 

Percentage of memory in use: 76%
Total physical RAM: 3911.27 MB
Available physical RAM: 928.01 MB
Total Pagefile: 5319.27 MB
Available Pagefile: 1723.36 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:446.85 GB) (Free:413.65 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 5C4469EE)

Partition: GPT Partition Type
==================== End Of Log ============================
--- --- ---
Liebe Grüße und danke schon mal
__________________
Alt 08.01.2014, 12:27   #4
schrauber
/// the machine
/// TB-Ausbilder
 
Avira blockiert? - Standard

Avira blockiert?


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 09.01.2014, 01:54   #5
Happyplace
 
Avira blockiert? - Standard

Avira blockiert?


ok, mach ich.

Zitat:
Zitat von Happyplace Beitrag anzeigen
ok, mach ich.
Ok, hier mal der Logfile von Malebytes

Malwarebytes Anti-Malware (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.08.06

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16438
Gertrud1 :: GERTRUD [Administrator]

Schutz: Aktiviert

08.01.2014 22:25:37
mbam-log-2014-01-08 (22-25-37).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 492710
Laufzeit: 2 Stunde(n), 30 Minute(n), 29 Sekunde(n)

Infizierte Speicherprozesse: 2
C:\Program Files (x86)\BrowseSmart\updateBrowseSmart.exe (PUP.Optional.BrowseSmart.A) -> 2320 -> Löschen bei Neustart.
C:\Program Files (x86)\BrowseSmart\bin\utilBrowseSmart.exe (PUP.Optional.BrowseSmart.A) -> 2776 -> Löschen bei Neustart.

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 69
HKCR\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4} (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\AppID\{A2D3FB7A-6873-45E8-AF96-57092D721828} (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{A2D3FB7A-6873-45E8-AF96-57092D721828} (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassSvc.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassSvc (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{0f21b1e5-5afc-43c9-9c66-515046e92ec2} (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2} (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2} (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2} (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{ffbb88a9-c663-4b9b-9170-70fa0a5a2786} (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\TypeLib\{B463ECD2-E5D8-4178-80C4-EC7C7E72F9AC} (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\Interface\{392DE650-A1E6-4FB3-A5A4-21285DE225BD} (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFBB88A9-C663-4B9B-9170-70FA0A5A2786} (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFBB88A9-C663-4B9B-9170-70FA0A5A2786} (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SYSTEM\CurrentControlSet\Services\Update BrowseSmart (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SYSTEM\CurrentControlSet\Services\Util BrowseSmart (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLive.OneClickCtrl.9 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLive.OneClickProcessLauncherMachine (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLive.OneClickProcessLauncherMachine.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLive.Update3WebControl.3 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.CoCreateAsync (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.CoCreateAsync.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.CoreClass (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.CoreClass.1 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.CoreMachineClass (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.CoreMachineClass.1 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.CredentialDialogMachine (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.CredentialDialogMachine.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachine (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachine.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.ProcessLauncher (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.ProcessLauncher.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.Update3COMClassService (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.Update3COMClassService.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.Update3WebMachine (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.Update3WebMachine.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.Update3WebMachineFallback (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.Update3WebMachineFallback.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.Update3WebSvc (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\SaveSenseLiveUpdate.Update3WebSvc.1.0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\AppID\SaveSenseLive.exe (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\SaveSense (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\SaveSenseLive (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\BrowseSmart (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\InstallCore\1I1T1Q1S (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\SaveSense (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\SaveSenseLive (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SYSTEM\CurrentControlSet\Services\savesenselive (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SAVESENSELIVE.EXE (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SYSTEM\CurrentControlSet\Services\savesenselivem (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\Software\BrowseSmart (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\Software\Iminent (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveSense (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A18D16ED-27B2-4B83-B70C-15E73F099546} (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{998745A3-2AE4-488D-8092-B98FB20A00C2} (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 3
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} (PUP.Optional.Iminent.A) -> Daten: -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{84FF7BD6-B47F-46F8-9130-01B2696B36CB} (PUP.Optional.Iminent.A) -> Daten: -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0H1L1J1L1S1R1N -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 23
C:\Program Files (x86)\BrowseSmart (PUP.Optional.BrowseSmart.A) -> Löschen bei Neustart.
C:\Program Files (x86)\BrowseSmart\bin (PUP.Optional.BrowseSmart.A) -> Löschen bei Neustart.
C:\Program Files (x86)\BrowseSmart\bin\plugins (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSense (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\Program Files (x86)\SaveSenseLive (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\Program Files (x86)\SaveSenseLive\CrashReports (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\Program Files (x86)\SaveSenseLive\Update (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0 (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\Program Files (x86)\SaveSenseLive\Update\Download (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\Program Files (x86)\SaveSenseLive\Update\Install (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\Program Files (x86)\SaveSenseLive\Update\Offline (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\Program Files (x86)\SaveSenseLive\Update\Offline\{C4446FC5-79C2-46C4-AE6F-AE6FFB8C9C2B} (PUP.Optional.SaveSense) -> Löschen bei Neustart.
C:\ProgramData\SaveSenseLive (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\SaveSenseLive\Update (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\SaveSenseLive\Update\Log (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Roaming\SaveSense (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Roaming\SaveSense\UpdateProc (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\SaveSenseLive (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\SaveSenseLive\CrashReports (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0 (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0\images (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 100
C:\Program Files (x86)\SaveSense\SaveSenseIE.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\BrowseSmart\BrowseSmartBHO.dll (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSense\SaveSenseUpdateVer.exe (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\Downloads\Media-Player.exe (PUP.Optional.Freemium.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\Downloads\openoffice setup.exe (PUP.Optional.BundleInstaller.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows.old\Users\Gertrud1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S3JNX37Y\IminentMinibarIE[1].exe (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\mysearchdial-speeddial.crx (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage (PUP.Optional.FunMoods.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\BrowseSmart\BrowseSmart.ico (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\BrowseSmart\BrowseSmartUninstall.exe (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\BrowseSmart\updateBrowseSmart.exe (PUP.Optional.BrowseSmart.A) -> Löschen bei Neustart.
C:\Program Files (x86)\BrowseSmart\bin\sqlite3.dll (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\BrowseSmart\bin\utilBrowseSmart.exe (PUP.Optional.BrowseSmart.A) -> Löschen bei Neustart.
C:\Program Files (x86)\BrowseSmart\bin\plugins\BrowseSmart.CompatibilityChecker.dll (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\BrowseSmart\bin\plugins\BrowseSmart.FFUpdate.dll (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\BrowseSmart\bin\plugins\BrowseSmart.GCUpdate.dll (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\BrowseSmart\bin\plugins\BrowseSmart.IEUpdate.dll (PUP.Optional.BrowseSmart.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSense\icon.ico (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSense\SaveSense.crx (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSense\SaveSense.xpi (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSense\SaveSenseIE64.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSense\uninst.exe (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdate.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_am.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ar.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_bg.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_bn.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ca.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_cs.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_da.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_de.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_el.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_en-GB.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_en.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_es-419.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_es.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_et.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fa.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fi.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fil.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_fr.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_gu.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hi.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hr.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_hu.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_id.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_is.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_it.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_iw.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ja.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_kn.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ko.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_lt.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_lv.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ml.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_mr.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ms.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_nl.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_no.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pl.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-BR.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-PT.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ro.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ru.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sk.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sl.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sr.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sv.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_sw.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ta.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_te.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_th.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_tr.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_uk.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_ur.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_vi.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-CN.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-TW.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\psmachine.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\psuser.dll (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLive.exe (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveBroker.exe (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHandler.exe (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHelper.msi (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveOnDemand.exe (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\SaveSenseLive\Update\Log\SaveSenseLive.log (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Roaming\SaveSense\UpdateProc\config.dat (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\SaveSense Help.url (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\SaveSense.url (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\Uninstall SaveSense.lnk (PUP.Optional.SaveSense) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0\background.js (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0\info.txt (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0\manifest.json (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0\images\icon128.png (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0\images\icon16.png (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk\3.5.0.0_0\images\icon48.png (PUP.Optional.SaveSense.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

Hier das Logfile des adw-cleanser:AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.016 - Bericht erstellt am 09/01/2014 um 01:32:38
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 8.1  (64 bits)
# Benutzername : Gertrud1 - GERTRUD
# Gestartet von : C:\Users\Gertrud1\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\ProgramData\Pokki
Ordner Gelöscht : C:\Program Files (x86)\Mobogenie
Ordner Gelöscht : C:\Users\Gertrud1\AppData\Local\filetypeassistant
Ordner Gelöscht : C:\Users\Gertrud1\AppData\Local\Mobogenie
Ordner Gelöscht : C:\Users\Gertrud1\AppData\Local\TempDir
Ordner Gelöscht : C:\Users\Gertrud1\AppData\LocalLow\Mysearchdial
Ordner Gelöscht : C:\Users\Gertrud1\AppData\LocalLow\Softonic
Datei Gelöscht : C:\WINDOWS\Tasks\SaveSense.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\SaveSense

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Schlüssel Gelöscht : HKCU\Software\Classes\pokki
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{392DE650-A1E6-4FB3-A5A4-21285DE225BD}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Schlüssel Gelöscht : HKCU\Software\WEDLMNGR

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16384

Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Gertrud1\AppData\Roaming\Mozilla\Firefox\Profiles\vfhqm48k.default\prefs.js ]


-\\ Google Chrome v

[ Datei : C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2707 octets] - [09/01/2014 01:27:43]
AdwCleaner[S0].txt - [2278 octets] - [09/01/2014 01:32:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2338 octets] ##########
--- --- ---

der 3.teil
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 8.1 x64
Ran by Gertrud1 on 09.01.2014 at 1:42:12,61
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Failed to delete: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Failed to delete: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\apntbmon



~~~ Registry Keys

Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B8B2B996-B0C8-47A2-81E6-D1D577DD78D1}



~~~ Files



~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\Users\Gertrud1\appdata\local\filetypeassistant"
Successfully deleted: [Folder] "C:\Users\Gertrud1\appdata\local\software"



~~~ FireFox

Emptied folder: C:\Users\Gertrud1\AppData\Roaming\mozilla\firefox\profiles\vfhqm48k.default\minidumps [1 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09.01.2014 at 1:51:22,84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Geändert von Happyplace (08.01.2014 um 22:26 Uhr)

Alt 09.01.2014, 09:21   #6
Happyplace
 
Avira blockiert? - Standard

Avira blockiert?


und zu guter letzt:
FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-01-2014 01
Ran by Gertrud1 (administrator) on GERTRUD on 09-01-2014 02:02:08
Running from C:\Users\Gertrud1\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
() C:\Program Files\Avira Secure Backup\Avira Secure BackupCrawler.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\mcafee\AppStats\MfeASUM.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(Avira) C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup_internetsecuritysuite.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
() C:\Program Files\Avira Secure Backup\Avira Secure Backup.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2890640 2013-04-22] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13550152 2013-05-30] (Realtek Semiconductor)
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE [644696 2007-05-15] (CANON INC.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [1840720 2007-04-04] (CANON INC.)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [537512 2013-09-24] (McAfee, Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2013-12-20] (APN)
HKLM-x32\...\Run: [mcpltui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [537512 2013-09-24] (McAfee, Inc.)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [85600 2013-11-26] (Nullsoft, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133248 2013-05-31] ( (Atheros Communications))
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Avira Secure Backup] - C:\Program Files\Avira Secure Backup\Avira Secure Backup.exe [1726032 2013-11-15] ()
HKCU\...\Run: [AviraSpeedup] - C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup_internetsecuritysuite.exe [5036600 2013-11-29] (Avira)
HKU\Administrator\...\Run: [Avira Secure Backup] - C:\Program Files\Avira Secure Backup\Avira Secure Backup.exe [1726032 2013-11-15] ()
HKU\Administrator\...\Run: [AviraSpeedup] - C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup_internetsecuritysuite.exe [5036600 2013-11-29] (Avira)
HKU\Administrator\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
SearchScopes: HKLM - DefaultScope {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Gertrud1\AppData\Roaming\Mozilla\Firefox\Profiles\vfhqm48k.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @mcafee.com/SAFFPlugin - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK

Chrome: 
=======
CHR Extension: (Chat Undetected) - C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\llmfehnfojojfamjjijjciopbjimcffa\1.23.59_0
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx

==================== Services (Whitelisted) =================

R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [908856 2013-12-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-12] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [310912 2013-05-31] (Windows (R) Win 7 DDK provider)
R2 Avira Secure Backup Crawler; C:\Program Files\Avira Secure Backup\Avira Secure BackupCrawler.exe [2258000 2013-11-15] ()
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-04-30] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-17] (Acer Incorporate)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178048 2013-11-28] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
S2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 MfeASUM; C:\Program Files\McAfee\AppStats\MfeASUM.exe [335216 2013-12-01] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1025232 2013-11-26] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4230016 2013-01-28] (Symantec Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-29] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-12] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-05-30] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-07] (Microsoft Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R2 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
R1 MfeASKM; C:\Program Files\McAfee\AppStats\MfeASKM.sys [31408 2013-12-01] (McAfee, Inc.)
R2 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69344 2013-11-04] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [411944 2013-11-26] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96112 2013-11-26] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-07] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-09 02:02 - 2014-01-09 02:02 - 00019000 _____ C:\Users\Gertrud1\Downloads\FRST.txt
2014-01-09 02:00 - 2014-01-09 02:00 - 01931770 _____ (Farbar) C:\Users\Gertrud1\Downloads\FRST64.exe
2014-01-09 01:51 - 2014-01-09 01:51 - 00002688 _____ C:\Users\Gertrud1\Desktop\JRT.txt
2014-01-09 01:42 - 2014-01-09 01:42 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-09 01:40 - 2014-01-09 01:40 - 01037068 _____ (Thisisu) C:\Users\Gertrud1\Downloads\JRT.exe
2014-01-09 01:26 - 2014-01-09 01:33 - 00000000 ____D C:\AdwCleaner
2014-01-09 01:26 - 2014-01-09 01:26 - 01233962 _____ C:\Users\Gertrud1\Downloads\adwcleaner.exe
2014-01-09 01:16 - 2014-01-09 01:16 - 00011628 _____ C:\WINDOWS\PFRO.log
2014-01-08 22:33 - 2014-01-09 01:50 - 00072748 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-08 22:23 - 2014-01-08 22:23 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Malwarebytes
2014-01-08 22:22 - 2014-01-08 22:22 - 00001129 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-08 22:22 - 2014-01-08 22:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-08 22:22 - 2014-01-08 22:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 22:22 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-08 22:16 - 2014-01-08 22:18 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Gertrud1\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-08 11:11 - 2014-01-08 11:11 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-08 09:36 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-01-08 09:36 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-01-08 09:36 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-08 09:36 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-08 09:35 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-01-08 09:35 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-01-08 09:35 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-01-08 09:35 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-01-08 09:35 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-01-08 09:35 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-01-08 09:35 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-01-08 09:35 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-01-08 09:35 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-01-08 09:35 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-01-08 09:35 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-01-08 09:35 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-01-08 09:35 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-01-08 09:35 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-01-08 09:35 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-01-08 09:35 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-01-08 09:35 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-01-08 09:35 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-01-08 09:35 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-01-08 09:35 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-01-08 09:35 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-08 09:21 - 2014-01-08 09:21 - 00000000 ____D C:\Users\Public\OEM
2014-01-08 02:30 - 2014-01-08 02:33 - 00025788 _____ C:\Users\Gertrud1\Downloads\Addition.txt
2014-01-08 02:23 - 2014-01-08 02:23 - 00000000 ____D C:\FRST
2014-01-07 03:02 - 2014-01-07 03:02 - 00002187 _____ C:\Users\Gertrud1\Desktop\Avira Internet Security Suite starten.lnk
2014-01-07 03:01 - 2014-01-07 03:01 - 00037888 ___SH C:\Users\Gertrud1\Desktop\Thumbs.db
2014-01-07 03:01 - 2014-01-07 03:01 - 00004930 _____ C:\Users\Gertrud1\Desktop\Avira Desktop - Verknüpfung.lnk
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\Documents\Bluetooth Folder
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\BMExplorer
2014-01-07 02:34 - 2014-01-07 02:34 - 00001458 _____ C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-07 02:33 - 2014-01-07 02:33 - 00000020 ___SH C:\Users\Gertrud1\ntuser.ini
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-07 02:24 - 2014-01-07 02:24 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2014-01-07 01:59 - 2014-01-07 01:59 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-07 01:58 - 2014-01-09 02:02 - 00000000 ____D C:\Users\Administrator
2014-01-07 01:58 - 2014-01-08 09:27 - 00000000 ____D C:\Users\Gertrud1
2014-01-07 01:58 - 2014-01-07 02:24 - 00028578 _____ C:\WINDOWS\diagwrn.xml
2014-01-07 01:58 - 2014-01-07 02:24 - 00028578 _____ C:\WINDOWS\diagerr.xml
2014-01-07 01:58 - 2014-01-07 01:59 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Realtek
2014-01-07 01:52 - 2014-01-07 02:00 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-07 01:52 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Elantech
2014-01-07 01:52 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2014-01-07 01:52 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2014-01-07 01:50 - 2014-01-07 02:34 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-07 01:50 - 2014-01-07 01:50 - 00000000 __SHD C:\Recovery
2014-01-07 01:49 - 2014-01-07 01:49 - 00000000 ____D C:\Windows.old
2014-01-07 01:48 - 2014-01-07 01:48 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-07 01:48 - 2014-01-07 01:48 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-07 01:46 - 2014-01-07 01:46 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\MSBuild
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-07 01:44 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-01-07 01:44 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-31 20:14 - 2013-12-31 20:14 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Chat Undetected
2013-12-29 10:54 - 2013-12-29 10:59 - 10880044 _____ C:\Users\Gertrud1\Desktop\01 - andrea rischka - wenn du wüsstest.wav
2013-12-29 10:48 - 2013-12-29 10:51 - 15046700 _____ C:\Users\01 - andrea rischka - wenn du wüsstest.wav
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07877120 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06202368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\Documents\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Cyberlink
2013-12-15 00:42 - 2013-12-15 00:34 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:42 - 2013-12-15 00:34 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:42 - 2013-12-15 00:33 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-13 16:43 - 2013-12-13 17:01 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\cache
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong\AppData\Local\Mobogenie
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong
2013-12-13 16:42 - 2013-12-13 16:42 - 24039048 _____ (Mozilla) C:\Users\Gertrud1\Downloads\FirefoxSetup.exe
2013-12-12 12:14 - 2013-12-12 12:14 - 00000000 ____D C:\Users\Gertrud1\Documents\Fax
2013-12-11 15:55 - 2013-12-11 16:49 - 00000748 _____ C:\Users\Gertrud1\Desktop\TP-LINK Modem Router Settings.txt

==================== One Month Modified Files and Folders =======

2014-01-09 02:02 - 2014-01-09 02:02 - 00019000 _____ C:\Users\Gertrud1\Downloads\FRST.txt
2014-01-09 02:02 - 2014-01-07 01:58 - 00000000 ____D C:\Users\Administrator
2014-01-09 02:00 - 2014-01-09 02:00 - 01931770 _____ (Farbar) C:\Users\Gertrud1\Downloads\FRST64.exe
2014-01-09 02:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-09 01:51 - 2014-01-09 01:51 - 00002688 _____ C:\Users\Gertrud1\Desktop\JRT.txt
2014-01-09 01:50 - 2014-01-08 22:33 - 00072748 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-09 01:49 - 2013-11-29 20:45 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1287913836-1958190919-2930970059-1001
2014-01-09 01:42 - 2014-01-09 01:42 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-09 01:42 - 2013-11-29 23:03 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-09 01:40 - 2014-01-09 01:40 - 01037068 _____ (Thisisu) C:\Users\Gertrud1\Downloads\JRT.exe
2014-01-09 01:39 - 2013-11-14 08:27 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-09 01:39 - 2013-11-14 08:11 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-09 01:39 - 2013-11-14 08:11 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-09 01:37 - 2013-11-29 20:51 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Avira Secure Backup
2014-01-09 01:34 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-09 01:33 - 2014-01-09 01:26 - 00000000 ____D C:\AdwCleaner
2014-01-09 01:26 - 2014-01-09 01:26 - 01233962 _____ C:\Users\Gertrud1\Downloads\adwcleaner.exe
2014-01-09 01:17 - 2013-08-22 15:44 - 00344944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-09 01:17 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-09 01:16 - 2014-01-09 01:16 - 00011628 _____ C:\WINDOWS\PFRO.log
2014-01-08 23:09 - 2013-11-29 23:07 - 00000000 ____D C:\Program Files (x86)\File Type Assistant
2014-01-08 22:23 - 2014-01-08 22:23 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Malwarebytes
2014-01-08 22:22 - 2014-01-08 22:22 - 00001129 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-08 22:22 - 2014-01-08 22:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-08 22:22 - 2014-01-08 22:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 22:18 - 2014-01-08 22:16 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Gertrud1\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-08 18:09 - 2013-06-04 05:28 - 00000000 ____D C:\Program Files\Common Files\mcafee
2014-01-08 15:05 - 2013-11-29 22:38 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\clear.fi
2014-01-08 11:11 - 2014-01-08 11:11 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-08 11:11 - 2013-11-28 00:16 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Packages
2014-01-08 11:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-08 09:27 - 2014-01-07 01:58 - 00000000 ____D C:\Users\Gertrud1
2014-01-08 09:21 - 2014-01-08 09:21 - 00000000 ____D C:\Users\Public\OEM
2014-01-08 02:33 - 2014-01-08 02:30 - 00025788 _____ C:\Users\Gertrud1\Downloads\Addition.txt
2014-01-08 02:23 - 2014-01-08 02:23 - 00000000 ____D C:\FRST
2014-01-07 04:59 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-07 03:02 - 2014-01-07 03:02 - 00002187 _____ C:\Users\Gertrud1\Desktop\Avira Internet Security Suite starten.lnk
2014-01-07 03:01 - 2014-01-07 03:01 - 00037888 ___SH C:\Users\Gertrud1\Desktop\Thumbs.db
2014-01-07 03:01 - 2014-01-07 03:01 - 00004930 _____ C:\Users\Gertrud1\Desktop\Avira Desktop - Verknüpfung.lnk
2014-01-07 02:58 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2014-01-07 02:38 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2014-01-07 02:37 - 2013-11-14 09:24 - 00000000 ___HD C:\$Windows.~BT
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\Documents\Bluetooth Folder
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\BMExplorer
2014-01-07 02:36 - 2013-09-13 05:58 - 00000000 ____D C:\ProgramData\Atheros
2014-01-07 02:35 - 2013-11-29 20:40 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2014-01-07 02:34 - 2014-01-07 02:34 - 00001458 _____ C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-07 02:34 - 2014-01-07 01:50 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-07 02:34 - 2013-11-29 20:39 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-07 02:34 - 2013-11-29 20:39 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-07 02:33 - 2014-01-07 02:33 - 00000020 ___SH C:\Users\Gertrud1\ntuser.ini
2014-01-07 02:28 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2014-01-07 02:25 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2014-01-07 02:24 - 2014-01-07 02:24 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-07 02:24 - 2014-01-07 01:58 - 00028578 _____ C:\WINDOWS\diagwrn.xml
2014-01-07 02:24 - 2014-01-07 01:58 - 00028578 _____ C:\WINDOWS\diagerr.xml
2014-01-07 02:15 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2014-01-07 02:03 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2014-01-07 02:03 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2014-01-07 02:03 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2014-01-07 02:02 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2014-01-07 02:01 - 2013-11-30 13:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-07 02:01 - 2013-11-29 21:45 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2014-01-07 02:01 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2014-01-07 02:01 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-07 02:00 - 2014-01-07 01:52 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-07 02:00 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-07 02:00 - 2013-06-04 05:11 - 00000000 ____D C:\ProgramData\PRICache
2014-01-07 01:59 - 2014-01-07 01:59 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-07 01:59 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:59 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Realtek
2014-01-07 01:53 - 2014-01-07 01:52 - 00000000 ____D C:\Program Files\Elantech
2014-01-07 01:50 - 2014-01-07 01:50 - 00000000 __SHD C:\Recovery
2014-01-07 01:49 - 2014-01-07 01:49 - 00000000 ____D C:\Windows.old
2014-01-07 01:49 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2014-01-07 01:48 - 2014-01-07 01:48 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-07 01:48 - 2014-01-07 01:48 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2014-01-07 01:46 - 2014-01-07 01:46 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\MSBuild
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-07 01:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-07 01:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2014-01-07 00:54 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-02 18:22 - 2013-11-29 21:46 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Mozilla
2014-01-01 20:20 - 2013-11-30 13:52 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Winamp
2013-12-31 20:14 - 2013-12-31 20:14 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Chat Undetected
2013-12-29 10:59 - 2013-12-29 10:54 - 10880044 _____ C:\Users\Gertrud1\Desktop\01 - andrea rischka - wenn du wüsstest.wav
2013-12-29 10:51 - 2013-12-29 10:48 - 15046700 _____ C:\Users\01 - andrea rischka - wenn du wüsstest.wav
2013-12-29 10:51 - 2013-11-29 22:37 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\CrashDumps
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2014-01-07 01:52 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-12-21 00:02 - 2014-01-07 01:52 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07877120 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06202368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-17 14:30 - 2013-11-29 19:45 - 00001712 _____ C:\Users\Gertrud1\daemonprocess.txt
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\Documents\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Cyberlink
2013-12-16 13:24 - 2013-09-13 06:13 - 00000000 ____D C:\ProgramData\CyberLink
2013-12-15 19:14 - 2013-11-30 13:31 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-15 00:34 - 2013-12-15 00:42 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:34 - 2013-12-15 00:42 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:33 - 2013-12-15 00:42 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-13 17:01 - 2013-12-13 16:43 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\cache
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong\AppData\Local\Mobogenie
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong
2013-12-13 16:42 - 2013-12-13 16:42 - 24039048 _____ (Mozilla) C:\Users\Gertrud1\Downloads\FirefoxSetup.exe
2013-12-12 12:29 - 2013-11-29 21:12 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-12 12:29 - 2013-11-29 21:12 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-12 12:29 - 2013-11-29 21:12 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2013-12-12 12:14 - 2013-12-12 12:14 - 00000000 ____D C:\Users\Gertrud1\Documents\Fax
2013-12-11 17:42 - 2013-11-29 23:03 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-11 16:49 - 2013-12-11 15:55 - 00000748 _____ C:\Users\Gertrud1\Desktop\TP-LINK Modem Router Settings.txt
2013-12-11 15:32 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2013-12-11 15:25 - 2013-09-13 06:08 - 00000000 ____D C:\ProgramData\Norton
2013-12-11 15:25 - 2013-06-04 05:28 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-12-10 14:10 - 2013-06-04 05:31 - 00000000 ____D C:\Program Files (x86)\Acer

Some content of TEMP:
====================
C:\Users\Gertrud1\AppData\Local\Temp\avgnt.exe
C:\Users\Gertrud1\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-07 01:50

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

--- --- ---
Müsste jetzt wieder alles gehen?

Kannst du mir vielleicht noch sagen, wo ich diesen No 23 Rekorder SICHER downloaden kann, meine Mum braucht den unbedingt, vielen lieben dank!

oh und ein letzter Wunsch noch........also ich bräuchte einen sicheren Downloadlink für den No 23.Recorder und Winamp. wäre super lieb

sorry, falls ich nerve- ich habe noch ein Problem......:-/ Avira hängt sich immer noch auf beim Scan- ansonsten läuft es flüssiger- aber die "datei" heiß ....C/ 5fd8bdc....und dann geht es ewig so weiter......hab leider keine Ahnung, was das für ein Programm war, dass ich da wohl gedownloaded hatte........der Scan stoppt einfach.........

Oder soll ich Avira neu installieren?

Ich warte einfach mal geduldig auf deine Hilfe:-)Thanks

HEY- oh je, du musst auch denken ich spinne:-D Sorry- Mir ist eingefallen, was es ist! Man möge mir meine Dummheit verzeihen, ich hab neulich über gutefrage.de aus irgendeinen Grund einen Facebook-Chat-Benachrichtigungs-Nichtanzeige ding gesucht....Schwachsinn als wenn es das wirklich gäbe. Das ist das Problem! Nennt sich irgendwie ss_facebook.

Habe die Dateien gefunden - sie sind irgendwo aufm C Laufwerk in einer X86 oder sowas versteckt. Allerdings kann ich es nicht deinstallieren, kommt ich hätte keinen Zugriff oder Berechtigung.

Über "Programme deinstallieren" wird mir dieses Ding gar nicht angezeigt:-/- Also zumindest hat das Problem einen Namen!
Und nun, wie bekomme ich den Mist wieder runter?
Geändert von Happyplace (09.01.2014 um 09:39 Uhr)

Alt 10.01.2014, 09:14   #7
schrauber
/// the machine
/// TB-Ausbilder
 
Avira blockiert? - Standard

Avira blockiert?


Vielleicht beim Hersteller?

No23.de, Recording, MP3-OGG-Wave-WMA, Live Audio Streaming, Broadcasting und vieles mehr

Avira neu installieren.


Revo Uninstaller - Download - Filepony
damit Facebook deinstallieren, Reste entfernen lassen




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 10.01.2014, 20:39   #8
Happyplace
 
Avira blockiert? - Standard

Avira blockiert?


hey.....ahhhh

First of all danke für deine Antwort.

Folgendes: Habe Avira komplett neu installiert.......und gerade versucht, nochmal nen Lauf zu starten- und was passiert, gleiches Problem wie davor, Avira hängt sich an dieser komischen Datei auf und läuft nicht weiter!

Dann habe ich gerade diesen Revo uninstaller installiert. Nun habe ich folgendes triviales Problem: Ich finde diesen Facebook Mist nicht mehr!!!!
Dieser Uninstaller zeigt einem ja die Programme auf dem Laptop an jedoch ist da nicht dieses
facebook teil dabei. Und jetzt suche ich schon seit 20 Minuten verzweifelt die Festplatte durch und weiß einfach nicht mehr, wo ich dieses versteckte Ding gefunden habe

Ich suche jetzt natürlich noch weiter.......das ist doch echt typisch Frau.....
aber was, wenn ich es nicht finde. Avira hängt und dieser uninstaller zeigt es nicht an oder gibt es da noch ne erweiterte suchfunktion bei dem uninstaller?

ok, also dass ist das Eset Ding:

ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=69ec0d3d2cd1c84d8ad01aa4e0abce52
# engine=16604
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-10 07:23:47
# local_time=2014-01-10 08:23:47 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode=5122 16777214 0 44 35798 51668853 0 0
# compatibility_mode=5893 16776574 100 94 4966322 14263120 0 0
# scanned=115520
# found=0
# cleaned=0
# scan_time=2525

Das ist der Security Check Log
Results of screen317's Security Check version 0.99.78
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Defender
Avira Desktop
Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware Version 1.75.0.1300
Adobe Flash Player 11.9.900.170
Mozilla Firefox (26.0)
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````

und hier noch der neue farbar log
FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-01-2014
Ran by Gertrud1 (administrator) on GERTRUD on 10-01-2014 20:37:09
Running from C:\Users\Gertrud1\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(VS Revo Group) C:\Users\Gertrud1\AntivirenUninstallerprogramme\Revo Uninstaller\Revouninstaller.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2890640 2013-04-22] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13550152 2013-05-30] (Realtek Semiconductor)
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE [644696 2007-05-15] (CANON INC.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [1840720 2007-04-04] (CANON INC.)
HKLM-x32\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2014-01-10] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2013-12-20] (APN)
HKLM-x32\...\Run: [VNT] - C:\Program Files (x86)\VNT\vntldr.exe [202192 2013-12-20] (APN LLC.)
HKLM-x32\...\RunOnce: [PIP] - C:\Users\Gertrud1\AppData\Local\Temp\Offercast_AVIRAV7_.exe -pid AVIRAV7P -rebootRetry [1326000 2014-01-10] (Ask.com)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133248 2013-05-31] ( (Atheros Communications))
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\Administrator\...\Run: [Avira Secure Backup] - "C:\Program Files\Avira Secure Backup\Avira Secure Backup.exe" /delayed
HKU\Administrator\...\Run: [AviraSpeedup] - "C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup_internetsecuritysuite.exe" -autorun
HKU\Administrator\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x77726D4F170DCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKLM - DefaultScope {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {5CC05DBD-1A88-4E23-A2A8-D24690A9CCA3} URL = 
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Gertrud1\AppData\Roaming\Mozilla\Firefox\Profiles\vfhqm48k.default
FF Homepage: hxxp://www.youtube-mp3.org/de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\Gertrud1\AppData\Roaming\Mozilla\Firefox\Profiles\vfhqm48k.default\Extensions\toolbar_AVIRA-V7C@apn.ask.com.xpi

Chrome: 
=======
CHR Extension: (Chat Undetected) - C:\Users\Gertrud1\AppData\Local\Google\Chrome\User Data\Default\Extensions\llmfehnfojojfamjjijjciopbjimcffa\1.23.59_0
CHR HKLM-x32\...\Chrome\Extension: [pcoohmdcpejoeggdnihdfhohjgdbllgm] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7C\CRX\ToolbarCR.crx

==================== Services (Whitelisted) =================

S2 0278211389346029mcinstcleanup; C:\Users\Gertrud1\AppData\Local\Temp\027821~1.EXE [834664 2013-07-30] (McAfee, Inc.)
R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [908856 2014-01-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2014-01-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2014-01-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2014-01-10] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [310912 2013-05-31] (Windows (R) Win 7 DDK provider)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-04-30] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [101528 2007-04-13] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-17] (Acer Incorporate)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4230016 2013-01-28] (Symantec Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S4 mfefire; "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" [x]
S2 mfevtp; "C:\windows\system32\mfevtps.exe" [x]

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-01-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2014-01-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-01-10] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2014-01-10] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-05-30] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-07] (Microsoft Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-07] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S0 cfwids; system32\drivers\cfwids.sys [x]
S0 mfeapfk; system32\drivers\mfeapfk.sys [x]
R0 mfeavfk; system32\drivers\mfeavfk.sys [x]
S0 mfeelamk; system32\drivers\mfeelamk.sys [x]
S0 mfefirek; system32\drivers\mfefirek.sys [x]
R2 mfehidk; system32\drivers\mfehidk.sys [x]
R2 mfewfpk; system32\drivers\mfewfpk.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-10 20:37 - 2014-01-10 20:37 - 00015129 _____ C:\Users\Gertrud1\Downloads\FRST.txt
2014-01-10 20:37 - 2014-01-10 20:37 - 00000000 ____D C:\Users\Gertrud1\Downloads\FRST-OlderVersion
2014-01-10 20:36 - 2014-01-10 20:37 - 01932166 _____ (Farbar) C:\Users\Gertrud1\Downloads\FRST64.exe
2014-01-10 20:31 - 2014-01-10 20:31 - 00987410 _____ C:\Users\Gertrud1\Downloads\SecurityCheck.exe
2014-01-10 19:31 - 2014-01-10 19:31 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-10 15:31 - 2014-01-10 15:31 - 00000999 _____ C:\Users\Public\Desktop\Winamp.lnk
2014-01-10 15:30 - 2014-01-10 16:02 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Winamp
2014-01-10 15:29 - 2014-01-10 15:29 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Gertrud1\Downloads\winamp5666_full_de-de(1).exe
2014-01-10 14:51 - 2014-01-10 14:52 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Gertrud1\Downloads\winamp5666_full_de-de.exe
2014-01-10 13:53 - 2014-01-10 15:09 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\streamWriter
2014-01-10 13:53 - 2014-01-10 15:08 - 00000000 ____D C:\Program Files (x86)\streamWriter
2014-01-10 12:44 - 2014-01-10 12:47 - 00001592 _____ C:\WINDOWS\setupact.log
2014-01-10 12:44 - 2014-01-10 12:44 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-10 10:50 - 2014-01-10 10:50 - 00001251 _____ C:\Users\Gertrud1\Desktop\Revo Uninstaller.lnk
2014-01-10 10:50 - 2014-01-10 10:50 - 00000000 ____D C:\Users\Gertrud1\AntivirenUninstallerprogramme
2014-01-10 10:48 - 2014-01-10 10:48 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Gertrud1\Downloads\revosetup95.exe
2014-01-10 10:41 - 2014-01-10 10:41 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\VNT
2014-01-10 10:41 - 2014-01-10 10:41 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2014-01-10 10:41 - 2014-01-10 10:41 - 00000000 ____D C:\Program Files (x86)\VNT
2014-01-10 10:41 - 2014-01-10 10:41 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2014-01-10 10:41 - 2013-06-06 21:41 - 00489392 _____ (Ask Partner Network) C:\Users\Gertrud1\Documents\APNSetup.exe
2014-01-10 10:39 - 2014-01-10 10:39 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Avira
2014-01-10 10:38 - 2014-01-10 10:38 - 00002090 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2014-01-10 10:38 - 2014-01-10 10:38 - 00000000 ____D C:\ProgramData\Avira
2014-01-10 10:38 - 2014-01-10 10:24 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-01-10 10:38 - 2014-01-10 10:24 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-01-10 10:38 - 2014-01-10 10:24 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2014-01-10 10:38 - 2014-01-10 10:24 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-01-10 09:57 - 2014-01-10 09:57 - 00057010 _____ C:\WINDOWS\PFRO.log
2014-01-09 17:16 - 2014-01-09 17:16 - 00000000 ____D C:\ProgramData\CanonIJPLM
2014-01-09 17:15 - 2014-01-10 14:36 - 00703923 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-09 17:14 - 2014-01-09 17:14 - 00000000 ____D C:\Program Files\Canon
2014-01-09 17:10 - 2014-01-09 17:10 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2014-01-09 17:10 - 2014-01-09 17:10 - 00000000 ___HD C:\ProgramData\CanonBJ
2014-01-09 17:09 - 2014-01-09 17:09 - 00000000 ___HD C:\Program Files\CanonBJ
2014-01-09 13:16 - 2014-01-09 13:16 - 00000000 ____D C:\Canon Drucker Installation
2014-01-09 09:54 - 2014-01-09 09:54 - 00001167 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-09 09:53 - 2014-01-09 09:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-09 09:53 - 2014-01-09 09:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-09 09:51 - 2014-01-09 09:51 - 00283096 _____ (Mozilla) C:\Users\Gertrud1\Downloads\Firefox Setup Stub 26.0.exe
2014-01-09 08:43 - 2014-01-10 10:56 - 00030208 ___SH C:\Users\Gertrud1\Downloads\Thumbs.db
2014-01-09 08:24 - 2014-01-09 08:26 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\FileTypeAssistant
2014-01-09 02:22 - 2014-01-10 10:59 - 00000000 ____D C:\Users\Gertrud1\Desktop\Mama Musik
2014-01-09 02:12 - 2014-01-09 02:12 - 00000987 _____ C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adwcleaner.lnk
2014-01-09 01:42 - 2014-01-09 01:42 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-09 01:40 - 2014-01-09 01:40 - 01037068 _____ (Thisisu) C:\Users\Gertrud1\Downloads\JRT bei Viren etc..exe
2014-01-09 01:26 - 2014-01-09 01:33 - 00000000 ____D C:\AdwCleaner
2014-01-09 01:26 - 2014-01-09 01:26 - 01233962 _____ C:\Users\Gertrud1\Downloads\ADW Cleaner bei Viren etc..exe
2014-01-08 22:23 - 2014-01-08 22:23 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Malwarebytes
2014-01-08 22:22 - 2014-01-08 22:22 - 00001129 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-08 22:22 - 2014-01-08 22:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-08 22:22 - 2014-01-08 22:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 22:22 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-08 22:16 - 2014-01-08 22:18 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Gertrud1\Downloads\Malewarebytes Setup.exe
2014-01-08 11:11 - 2014-01-08 11:11 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-08 09:36 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-01-08 09:36 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-01-08 09:36 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-08 09:36 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-08 09:35 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-01-08 09:35 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-01-08 09:35 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-01-08 09:35 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-01-08 09:35 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-01-08 09:35 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-01-08 09:35 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-01-08 09:35 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-01-08 09:35 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-01-08 09:35 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-01-08 09:35 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-01-08 09:35 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-01-08 09:35 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-01-08 09:35 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-01-08 09:35 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-01-08 09:35 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-01-08 09:35 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-01-08 09:35 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-01-08 09:35 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-01-08 09:35 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-01-08 09:35 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-08 09:21 - 2014-01-08 09:21 - 00000000 ____D C:\Users\Public\OEM
2014-01-08 02:23 - 2014-01-10 20:37 - 00000000 ____D C:\FRST
2014-01-07 03:01 - 2014-01-07 03:01 - 00037888 ___SH C:\Users\Gertrud1\Desktop\Thumbs.db
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\Documents\Bluetooth Folder
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\BMExplorer
2014-01-07 02:34 - 2014-01-07 02:34 - 00001458 _____ C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-07 02:33 - 2014-01-07 02:33 - 00000020 ___SH C:\Users\Gertrud1\ntuser.ini
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-07 02:24 - 2014-01-07 02:24 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2014-01-07 01:59 - 2014-01-07 01:59 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-07 01:58 - 2014-01-10 10:50 - 00000000 ____D C:\Users\Gertrud1
2014-01-07 01:58 - 2014-01-09 02:02 - 00000000 ____D C:\Users\Administrator
2014-01-07 01:58 - 2014-01-07 02:24 - 00028578 _____ C:\WINDOWS\diagwrn.xml
2014-01-07 01:58 - 2014-01-07 02:24 - 00028578 _____ C:\WINDOWS\diagerr.xml
2014-01-07 01:58 - 2014-01-07 01:59 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-07 01:58 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Realtek
2014-01-07 01:52 - 2014-01-07 02:00 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-07 01:52 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Elantech
2014-01-07 01:52 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2014-01-07 01:52 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2014-01-07 01:50 - 2014-01-07 02:34 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-07 01:50 - 2014-01-07 01:50 - 00000000 __SHD C:\Recovery
2014-01-07 01:48 - 2014-01-07 01:48 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-07 01:48 - 2014-01-07 01:48 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-07 01:46 - 2014-01-07 01:46 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\MSBuild
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-07 01:44 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-01-07 01:44 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-07 01:44 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-12-31 20:14 - 2013-12-31 20:14 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Chat Undetected
2013-12-29 10:48 - 2013-12-29 10:51 - 15046700 _____ C:\Users\01 - andrea rischka - wenn du wüsstest.wav
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07877120 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06202368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\Documents\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Cyberlink
2013-12-15 00:42 - 2013-12-15 00:34 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:42 - 2013-12-15 00:34 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:42 - 2013-12-15 00:33 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-13 16:43 - 2014-01-10 10:27 - 00000000 ____D C:\Users\wangzhisong
2013-12-13 16:43 - 2013-12-13 17:01 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\cache
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong\AppData\Local\Mobogenie
2013-12-13 16:42 - 2013-12-13 16:42 - 24039048 _____ (Mozilla) C:\Users\Gertrud1\Downloads\FirefoxSetup.exe
2013-12-12 12:14 - 2013-12-12 12:14 - 00000000 ____D C:\Users\Gertrud1\Documents\Fax

==================== One Month Modified Files and Folders =======

2014-01-10 20:37 - 2014-01-10 20:37 - 00015129 _____ C:\Users\Gertrud1\Downloads\FRST.txt
2014-01-10 20:37 - 2014-01-10 20:37 - 00000000 ____D C:\Users\Gertrud1\Downloads\FRST-OlderVersion
2014-01-10 20:37 - 2014-01-10 20:36 - 01932166 _____ (Farbar) C:\Users\Gertrud1\Downloads\FRST64.exe
2014-01-10 20:37 - 2014-01-08 02:23 - 00000000 ____D C:\FRST
2014-01-10 20:31 - 2014-01-10 20:31 - 00987410 _____ C:\Users\Gertrud1\Downloads\SecurityCheck.exe
2014-01-10 20:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-10 19:42 - 2013-11-29 23:03 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-10 19:37 - 2013-11-29 20:45 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1287913836-1958190919-2930970059-1001
2014-01-10 19:31 - 2014-01-10 19:31 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-10 16:02 - 2014-01-10 15:30 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Winamp
2014-01-10 15:31 - 2014-01-10 15:31 - 00000999 _____ C:\Users\Public\Desktop\Winamp.lnk
2014-01-10 15:31 - 2013-11-30 13:52 - 00000000 ____D C:\Program Files (x86)\Winamp
2014-01-10 15:29 - 2014-01-10 15:29 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Gertrud1\Downloads\winamp5666_full_de-de(1).exe
2014-01-10 15:09 - 2014-01-10 13:53 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\streamWriter
2014-01-10 15:08 - 2014-01-10 13:53 - 00000000 ____D C:\Program Files (x86)\streamWriter
2014-01-10 14:52 - 2014-01-10 14:51 - 12855384 _____ (Nullsoft, Inc.) C:\Users\Gertrud1\Downloads\winamp5666_full_de-de.exe
2014-01-10 14:36 - 2014-01-09 17:15 - 00703923 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-10 12:49 - 2013-11-14 08:27 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-10 12:49 - 2013-11-14 08:11 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-10 12:49 - 2013-11-14 08:11 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-10 12:47 - 2014-01-10 12:44 - 00001592 _____ C:\WINDOWS\setupact.log
2014-01-10 12:44 - 2014-01-10 12:44 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-10 10:59 - 2014-01-09 02:22 - 00000000 ____D C:\Users\Gertrud1\Desktop\Mama Musik
2014-01-10 10:56 - 2014-01-09 08:43 - 00030208 ___SH C:\Users\Gertrud1\Downloads\Thumbs.db
2014-01-10 10:50 - 2014-01-10 10:50 - 00001251 _____ C:\Users\Gertrud1\Desktop\Revo Uninstaller.lnk
2014-01-10 10:50 - 2014-01-10 10:50 - 00000000 ____D C:\Users\Gertrud1\AntivirenUninstallerprogramme
2014-01-10 10:50 - 2014-01-07 01:58 - 00000000 ____D C:\Users\Gertrud1
2014-01-10 10:48 - 2014-01-10 10:48 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Gertrud1\Downloads\revosetup95.exe
2014-01-10 10:41 - 2014-01-10 10:41 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\VNT
2014-01-10 10:41 - 2014-01-10 10:41 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2014-01-10 10:41 - 2014-01-10 10:41 - 00000000 ____D C:\Program Files (x86)\VNT
2014-01-10 10:41 - 2014-01-10 10:41 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2014-01-10 10:39 - 2014-01-10 10:39 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Avira
2014-01-10 10:38 - 2014-01-10 10:38 - 00002090 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2014-01-10 10:38 - 2014-01-10 10:38 - 00000000 ____D C:\ProgramData\Avira
2014-01-10 10:38 - 2013-11-29 21:01 - 00000000 ____D C:\Program Files (x86)\Avira
2014-01-10 10:29 - 2013-06-04 05:28 - 00000000 ____D C:\ProgramData\McAfee
2014-01-10 10:29 - 2013-06-04 05:28 - 00000000 ____D C:\Program Files\mcafee
2014-01-10 10:29 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2014-01-10 10:27 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong
2014-01-10 10:27 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2014-01-10 10:24 - 2014-01-10 10:38 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-01-10 10:24 - 2014-01-10 10:38 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-01-10 10:24 - 2014-01-10 10:38 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2014-01-10 10:24 - 2014-01-10 10:38 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-01-10 10:07 - 2013-11-29 20:50 - 00000000 ____D C:\Program Files\Avira Secure Backup
2014-01-10 10:04 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-10 09:57 - 2014-01-10 09:57 - 00057010 _____ C:\WINDOWS\PFRO.log
2014-01-09 23:09 - 2013-11-29 23:07 - 00000000 ____D C:\Program Files (x86)\File Type Assistant
2014-01-09 17:16 - 2014-01-09 17:16 - 00000000 ____D C:\ProgramData\CanonIJPLM
2014-01-09 17:16 - 2013-11-29 21:43 - 00000000 ____D C:\Program Files (x86)\Canon
2014-01-09 17:14 - 2014-01-09 17:14 - 00000000 ____D C:\Program Files\Canon
2014-01-09 17:10 - 2014-01-09 17:10 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2014-01-09 17:10 - 2014-01-09 17:10 - 00000000 ___HD C:\ProgramData\CanonBJ
2014-01-09 17:09 - 2014-01-09 17:09 - 00000000 ___HD C:\Program Files\CanonBJ
2014-01-09 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-09 13:16 - 2014-01-09 13:16 - 00000000 ____D C:\Canon Drucker Installation
2014-01-09 09:54 - 2014-01-09 09:54 - 00001167 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-09 09:54 - 2014-01-09 09:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-09 09:54 - 2014-01-09 09:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-09 09:51 - 2014-01-09 09:51 - 00283096 _____ (Mozilla) C:\Users\Gertrud1\Downloads\Firefox Setup Stub 26.0.exe
2014-01-09 08:26 - 2014-01-09 08:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\FileTypeAssistant
2014-01-09 02:12 - 2014-01-09 02:12 - 00000987 _____ C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adwcleaner.lnk
2014-01-09 02:02 - 2014-01-07 01:58 - 00000000 ____D C:\Users\Administrator
2014-01-09 01:42 - 2014-01-09 01:42 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-09 01:40 - 2014-01-09 01:40 - 01037068 _____ (Thisisu) C:\Users\Gertrud1\Downloads\JRT bei Viren etc..exe
2014-01-09 01:33 - 2014-01-09 01:26 - 00000000 ____D C:\AdwCleaner
2014-01-09 01:26 - 2014-01-09 01:26 - 01233962 _____ C:\Users\Gertrud1\Downloads\ADW Cleaner bei Viren etc..exe
2014-01-09 01:17 - 2013-08-22 15:44 - 00344944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-09 01:17 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-08 22:23 - 2014-01-08 22:23 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Malwarebytes
2014-01-08 22:22 - 2014-01-08 22:22 - 00001129 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-08 22:22 - 2014-01-08 22:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-08 22:22 - 2014-01-08 22:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 22:18 - 2014-01-08 22:16 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Gertrud1\Downloads\Malewarebytes Setup.exe
2014-01-08 18:09 - 2013-06-04 05:28 - 00000000 ____D C:\Program Files\Common Files\mcafee
2014-01-08 15:05 - 2013-11-29 22:38 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\clear.fi
2014-01-08 11:11 - 2014-01-08 11:11 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-08 11:11 - 2013-11-28 00:16 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Packages
2014-01-08 11:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-08 09:21 - 2014-01-08 09:21 - 00000000 ____D C:\Users\Public\OEM
2014-01-07 04:59 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-07 03:01 - 2014-01-07 03:01 - 00037888 ___SH C:\Users\Gertrud1\Desktop\Thumbs.db
2014-01-07 02:58 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2014-01-07 02:38 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\Documents\Bluetooth Folder
2014-01-07 02:36 - 2014-01-07 02:36 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\BMExplorer
2014-01-07 02:36 - 2013-09-13 05:58 - 00000000 ____D C:\ProgramData\Atheros
2014-01-07 02:35 - 2013-11-29 20:40 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2014-01-07 02:34 - 2014-01-07 02:34 - 00001458 _____ C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-07 02:34 - 2014-01-07 01:50 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-07 02:34 - 2013-11-29 20:39 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-07 02:34 - 2013-11-29 20:39 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-07 02:33 - 2014-01-07 02:33 - 00000020 ___SH C:\Users\Gertrud1\ntuser.ini
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-07 02:25 - 2014-01-07 02:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-07 02:25 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2014-01-07 02:25 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2014-01-07 02:24 - 2014-01-07 02:24 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-07 02:24 - 2014-01-07 01:58 - 00028578 _____ C:\WINDOWS\diagwrn.xml
2014-01-07 02:24 - 2014-01-07 01:58 - 00028578 _____ C:\WINDOWS\diagerr.xml
2014-01-07 02:15 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2014-01-07 02:03 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2014-01-07 02:03 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2014-01-07 02:03 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2014-01-07 02:02 - 2014-01-07 02:02 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2014-01-07 02:01 - 2013-11-30 13:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-07 02:01 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2014-01-07 02:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2014-01-07 02:01 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2014-01-07 02:01 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-07 02:00 - 2014-01-07 01:52 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-07 02:00 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2014-01-07 02:00 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-07 02:00 - 2013-06-04 05:11 - 00000000 ____D C:\ProgramData\PRICache
2014-01-07 01:59 - 2014-01-07 01:59 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-07 01:59 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:59 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Gertrud1\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2014-01-07 01:58 - 2014-01-07 01:58 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-07 01:58 - 2013-06-04 05:11 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-07 01:53 - 2014-01-07 01:53 - 00000000 ____D C:\Program Files\Realtek
2014-01-07 01:53 - 2014-01-07 01:52 - 00000000 ____D C:\Program Files\Elantech
2014-01-07 01:50 - 2014-01-07 01:50 - 00000000 __SHD C:\Recovery
2014-01-07 01:49 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2014-01-07 01:48 - 2014-01-07 01:48 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-07 01:48 - 2014-01-07 01:48 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-07 01:48 - 2014-01-07 01:48 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-07 01:48 - 2014-01-07 01:48 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-07 01:48 - 2014-01-07 01:48 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2014-01-07 01:48 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2014-01-07 01:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2014-01-07 01:46 - 2014-01-07 01:46 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files\MSBuild
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-07 01:45 - 2014-01-07 01:45 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-07 01:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-07 01:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2014-01-07 00:54 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2014-01-02 18:22 - 2013-11-29 21:46 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\Mozilla
2013-12-31 20:14 - 2013-12-31 20:14 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Chat Undetected
2013-12-29 10:51 - 2013-12-29 10:48 - 15046700 _____ C:\Users\01 - andrea rischka - wenn du wüsstest.wav
2013-12-29 10:51 - 2013-11-29 22:37 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\CrashDumps
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2014-01-07 01:52 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-12-21 00:02 - 2014-01-07 01:52 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07877120 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06202368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-17 14:30 - 2013-11-29 19:45 - 00001712 _____ C:\Users\Gertrud1\daemonprocess.txt
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\Documents\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Roaming\CyberLink
2013-12-16 13:24 - 2013-12-16 13:24 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\Cyberlink
2013-12-16 13:24 - 2013-09-13 06:13 - 00000000 ____D C:\ProgramData\CyberLink
2013-12-15 19:14 - 2013-11-30 13:31 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-15 00:34 - 2013-12-15 00:42 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:34 - 2013-12-15 00:42 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:33 - 2013-12-15 00:42 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-13 17:01 - 2013-12-13 16:43 - 00000000 ____D C:\Users\Gertrud1\AppData\Local\cache
2013-12-13 16:43 - 2013-12-13 16:43 - 00000000 ____D C:\Users\wangzhisong\AppData\Local\Mobogenie
2013-12-13 16:42 - 2013-12-13 16:42 - 24039048 _____ (Mozilla) C:\Users\Gertrud1\Downloads\FirefoxSetup.exe
2013-12-12 12:14 - 2013-12-12 12:14 - 00000000 ____D C:\Users\Gertrud1\Documents\Fax
2013-12-11 17:42 - 2013-11-29 23:03 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-11 15:25 - 2013-09-13 06:08 - 00000000 ____D C:\ProgramData\Norton
2013-12-11 15:25 - 2013-06-04 05:28 - 00000000 ____D C:\Program Files (x86)\McAfee

Some content of TEMP:
====================
C:\Users\Gertrud1\AppData\Local\Temp\0278211389346029mcinst.exe
C:\Users\Gertrud1\AppData\Local\Temp\avgnt.exe
C:\Users\Gertrud1\AppData\Local\Temp\Offercast_AVIRAV7_.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-07 01:50

==================== End Of Log ============================
--- --- ---

--- --- ---

Alt 11.01.2014, 13:29   #9
schrauber
/// the machine
/// TB-Ausbilder
 
Avira blockiert? - Standard

Avira blockiert?


Mach bitte mal einen Screenshot damit ich genau sehe wo Avira hängen bleibt
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 13.01.2014, 14:31   #10
Happyplace
 
Avira blockiert? - Standard

Avira blockiert?


hi,

Sorry, ich war krank, deswegen hab ich die letzten 2 Tage nicht geantwortet.
Also weiß der Geier, was nicht stimmt. Ansonsten läufts flüssiger aber Avira....keine Ahnung......hier der Screenshot. Lg



Zitat:
Zitat von Happyplace Beitrag anzeigen
hi,

Sorry, ich war krank, deswegen hab ich die letzten 2 Tage nicht geantwortet.
Also weiß der Geier, was nicht stimmt. Ansonsten läufts flüssiger aber Avira....keine Ahnung......hier der Screenshot. Lg
hxxp://www.directupload.net/index.php?mode=upload

hxxp://www.directupload.net/file/d/3501/hic5imgu_png.htm

er hängt und läuft dann zwar irgendwann weiter- aber er braucht für nen Scan über 2 Stunden- weiß nicht, ob das normal ist.

Alt 14.01.2014, 09:49   #11
schrauber
/// the machine
/// TB-Ausbilder
 
Avira blockiert? - Standard

Avira blockiert?


Je nach Datenmenge kann das schon hinkommen.

Avira mal deinstallieren und neu installieren.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Avira blockiert?
andere, avira blockiert, avira geht nicht mehr, erkennen, geht nicht mehr, gelaufen, installation, installiert, nicht mehr, pup.optional.browsefox.a, pup.optional.browsesmart.a, pup.optional.bundleinstaller.a, pup.optional.freemium.a, pup.optional.funmoods.a, pup.optional.iminent.a, pup.optional.installcore.a, pup.optional.mysearchdial.a, pup.optional.savesense, pup.optional.savesense.a, qllallaabva, schließe, super, taskmanager, vergleich, versuche, versucht, öffnet


« Lollipop & Spyhunter haben meinen pc infiziert | Telekom Mobilfunk RechnungOnline für Geschäftskunden »


Ähnliche Themen: Avira blockiert?


  1. Windows 7: Avira Updates werden blockiert
    Log-Analyse und Auswertung - 25.05.2015 (15)
  2. Win 7: RegSvr Fehler + Avira blockiert
    Plagegeister aller Art und deren Bekämpfung - 06.04.2015 (13)
  3. Win 7: Fehlermeldung bei Start; Avira wird blockiert
    Log-Analyse und Auswertung - 12.12.2014 (27)
  4. Avira Update blockiert alles
    Antiviren-, Firewall- und andere Schutzprogramme - 30.08.2014 (17)
  5. Avira durch gruppenrichtlinie blockiert
    Log-Analyse und Auswertung - 26.07.2014 (17)
  6. Avira Antivir wird blockiert
    Plagegeister aller Art und deren Bekämpfung - 23.07.2014 (31)
  7. Avira durch Gruppenrichtlinie blockiert
    Log-Analyse und Auswertung - 28.06.2014 (13)
  8. Avira Virenprogramm durch Gruppenrichtlinie blockiert
    Log-Analyse und Auswertung - 11.06.2014 (1)
  9. Win7 Pro - SP 1 - 32 Bit - Avira durch Gruppenrichtlinie blockiert
    Log-Analyse und Auswertung - 11.06.2014 (14)
  10. Windows 7: Avira wird blockiert
    Log-Analyse und Auswertung - 29.05.2014 (7)
  11. AVIRA durch eine Gruppenrichtlienie blockiert
    Plagegeister aller Art und deren Bekämpfung - 22.05.2014 (17)
  12. Win 7 x64, Avira blockiert & Verdacht auf Trojaner/Viren
    Log-Analyse und Auswertung - 22.04.2014 (9)
  13. Virus / Trojaner blockiert Avira "...wurde durch eine Gruppenrichtlinie blockiert"
    Log-Analyse und Auswertung - 20.03.2014 (7)
  14. meldung: "resistry blockiert" von avira free antivirus und touch pad blockiert
    Log-Analyse und Auswertung - 18.04.2012 (0)
  15. Avira-Windowssystem blockiert / BKA-Trojaner :(
    Plagegeister aller Art und deren Bekämpfung - 08.03.2012 (8)
  16. Avira blockiert Sicherheitstool und kämpft mit Speicherloch
    Nachrichten - 22.11.2010 (0)
  17. Avira Webguard blockiert youtube
    Antiviren-, Firewall- und andere Schutzprogramme - 05.11.2009 (0)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Avira blockiert? - Hallo, Oh, ich hoffe das ich so früh jetzt nicht totalen Mist schreibe, seid gnädig, ich versuche es halbwegs sinnvoll zu formulieren. Folgendes Problem. Laptop ist neu, noch keine 3 - Avira blockiert?...
Archiv
Du betrachtest: Avira blockiert? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131