| |
| |||||||
Log-Analyse und Auswertung: Win8 Mc Afee Echtzeitscan laesst sich nicht mehr ausführenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
23.01.2014, 20:49
| #1 |
| |  Win8 Mc Afee Echtzeitscan laesst sich nicht mehr ausführen Hallo! Nachdem mein Win8 Rechner sehr langsam geworden ist (wahrscheinlich nicht ganz ohne Grund) habe ich ihn heute neu aufgesetzt. Nun meldet sich Mc Afee, dass der Rechner nicht mehr geschützt ist, da der Echtzeitscan deaktiviert ist. Leider laesst sich dieser nicht mehr aktivieren und die Normale Scan bricht mit einer Fehlermeldung ab. Ich glaub ich liege nicht falsch, wenn ich davon ausgehe, dass ich mir was eingefangen habe! Anbei die Logs: Defogger: Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 20:04 on 23/01/2014 (Felix)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-01-2014
Ran by Felix (administrator) on FE on 23-01-2014 20:06:06
Running from C:\Users\Felix\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(McAfee, Inc.) C:\Program Files\mcafee\AppStats\MfeASUM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(Pokki) C:\Users\Felix\AppData\Local\Pokki\Engine\pokki.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Felix\Downloads\FRST64 (1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13427784 2013-03-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1278024 2013-03-08] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3010800 2013-01-17] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [1527896 2012-06-22] (McAfee, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376 2013-12-19] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [131712 2013-01-24] ( (Atheros Communications))
HKCU\...\Run: [Pokki] - C:\WINDOWS\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\Default\...\Run: [Pokki] - C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\Default\...\RunOnce: [RegAutoPlay] - C:\Program Files (x86)\Acer\clear.fi Media\RegAutoplay.exe [1845832 2013-02-20] (Acer Incorporated)
HKU\Default User\...\Run: [Pokki] - C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\Default User\...\RunOnce: [RegAutoPlay] - C:\Program Files (x86)\Acer\clear.fi Media\RegAutoplay.exe [1845832 2013-02-20] (Acer Incorporated)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [245872 2013-02-20] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [201576 2013-02-20] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKLM - DefaultScope {A049C712-FCA9-46AE-971B-CF2298D0856E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {A049C712-FCA9-46AE-971B-CF2298D0856E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://at.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {A049C712-FCA9-46AE-971B-CF2298D0856E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {A049C712-FCA9-46AE-971B-CF2298D0856E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://at.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {A049C712-FCA9-46AE-971B-CF2298D0856E} URL =
SearchScopes: HKCU - {A049C712-FCA9-46AE-971B-CF2298D0856E} URL =
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://at.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 213.153.32.129 213.153.32.1
Chrome:
=======
CHR Extension: (Docs) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-23]
CHR Extension: (Google Drive) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-23]
CHR Extension: (YouTube) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-23]
CHR Extension: (Spry this!) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam [2014-01-23]
CHR Extension: (Google Search) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-23]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2014-01-23]
==================== Services (Whitelisted) =================
U2 0053841390503144mcinstcleanup; C:\WINDOWS\TEMP\005384~1.EXE [833616 2013-01-30] (McAfee, Inc.)
U2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-24] (Qualcomm Atheros Commnucations)
U2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated)
U3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-04-30] (Acer Incorporated)
U3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
U3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-01-30] (Intel Corporation)
U2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-17] (Acer Incorporate)
U2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
U4 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [383608 2012-05-22] (McAfee, Inc.)
U2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U4 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [237920 2012-06-22] (McAfee, Inc.)
U2 MfeASUM; C:\Program Files\McAfee\AppStats\MfeASUM.exe [335216 2014-01-23] (McAfee, Inc.)
U2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
U2 mfevtp; C:\windows\system32\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
U2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4230016 2013-01-28] (Symantec Corporation)
U2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-10-31] (Microsoft Corporation)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
U3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation)
U3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-24] (Qualcomm Atheros)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
U3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
U3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
U3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-21] (McAfee, Inc.)
U3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
U3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
U1 MfeASKM; C:\Program Files\McAfee\AppStats\MfeASKM.sys [31408 2014-01-23] (McAfee, Inc.)
U3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
U0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69344 2013-11-04] (McAfee, Inc.)
U3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
U0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
U3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc.)
U0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
U3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2013-01-17] (Synaptics Incorporated)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-23 20:06 - 2014-01-23 20:06 - 00017357 _____ C:\Users\Felix\Downloads\FRST.txt
2014-01-23 20:06 - 2014-01-23 20:06 - 00000000 ____D C:\FRST
2014-01-23 20:05 - 2014-01-23 20:05 - 02077184 _____ (Farbar) C:\Users\Felix\Downloads\FRST64.exe
2014-01-23 20:05 - 2014-01-23 20:05 - 02077184 _____ (Farbar) C:\Users\Felix\Downloads\FRST64 (1).exe
2014-01-23 20:04 - 2014-01-23 20:04 - 00000472 _____ C:\Users\Felix\Downloads\defogger_disable.log
2014-01-23 20:04 - 2014-01-23 20:04 - 00000000 _____ C:\Users\Felix\defogger_reenable
2014-01-23 20:03 - 2014-01-23 20:03 - 00050477 _____ C:\Users\Felix\Downloads\Defogger.exe
2014-01-23 19:38 - 2013-10-25 07:19 - 02241536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-01-23 19:38 - 2013-10-25 07:19 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-01-23 19:38 - 2013-10-25 07:19 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2014-01-23 19:38 - 2013-10-25 07:19 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-01-23 19:38 - 2013-10-25 07:18 - 19271168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-01-23 19:38 - 2013-10-25 07:18 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-01-23 19:38 - 2013-10-25 07:17 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-01-23 19:38 - 2013-10-25 07:17 - 03959808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-01-23 19:38 - 2013-10-25 07:17 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-01-23 19:38 - 2013-10-25 07:17 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-01-23 19:38 - 2013-10-25 05:45 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-01-23 19:38 - 2013-10-25 05:44 - 14356992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-01-23 19:38 - 2013-10-25 05:44 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-01-23 19:38 - 2013-10-25 05:43 - 13761536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-01-23 19:38 - 2013-10-25 05:43 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-01-23 19:38 - 2013-10-25 05:43 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-01-23 19:38 - 2013-10-25 05:43 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-01-23 19:38 - 2013-10-25 05:43 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-01-23 19:38 - 2013-07-02 01:44 - 00036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-01-23 19:38 - 2013-07-01 23:08 - 00247216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-01-23 19:38 - 2013-05-15 23:37 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-01-23 19:38 - 2013-05-15 23:35 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-01-23 19:38 - 2013-05-14 14:14 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-01-23 19:38 - 2013-05-14 10:23 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-01-23 19:37 - 2013-10-09 02:33 - 00059416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-01-23 19:37 - 2013-10-08 23:30 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-01-23 19:37 - 2013-10-08 23:30 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-01-23 19:37 - 2013-10-08 23:30 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-01-23 19:37 - 2013-10-08 23:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-01-23 19:37 - 2013-10-08 23:28 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-01-23 19:37 - 2013-10-08 23:27 - 03279872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-01-23 19:37 - 2013-10-08 23:27 - 01622016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-01-23 19:37 - 2013-10-08 23:27 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-01-23 19:37 - 2013-10-08 23:27 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-01-23 19:37 - 2013-10-08 23:27 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-01-23 19:37 - 2013-10-08 23:27 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-01-23 19:37 - 2013-10-08 23:27 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-01-23 19:37 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-23 19:37 - 2013-10-03 23:09 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2014-01-23 19:37 - 2013-10-02 03:50 - 00447320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-01-23 19:37 - 2013-09-28 06:48 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-01-23 19:37 - 2013-09-28 04:58 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-01-23 19:37 - 2013-09-19 08:32 - 01455448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-23 19:37 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2014-01-23 19:37 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-01-23 19:37 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2014-01-23 19:37 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2014-01-23 19:37 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2014-01-23 19:37 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-01-23 19:37 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2014-01-23 19:37 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2014-01-23 19:37 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2014-01-23 19:37 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-01-23 19:37 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-01-23 19:37 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-01-23 19:37 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-01-23 19:37 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2014-01-23 19:37 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-01-23 19:37 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-01-23 19:37 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-01-23 19:37 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-01-23 19:37 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2014-01-23 19:37 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2014-01-23 19:36 - 2013-08-10 06:21 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-01-23 19:36 - 2013-08-10 06:21 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2014-01-23 19:36 - 2013-08-10 04:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-01-23 19:36 - 2013-08-03 07:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2014-01-23 19:36 - 2013-08-03 07:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2014-01-23 19:36 - 2013-08-03 07:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2014-01-23 19:36 - 2013-08-03 06:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2014-01-23 19:36 - 2013-08-03 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2014-01-23 19:36 - 2013-08-03 06:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2014-01-23 19:36 - 2013-08-02 07:28 - 19758080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-01-23 19:36 - 2013-08-02 07:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2014-01-23 19:36 - 2013-08-02 06:08 - 17561088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-01-23 19:36 - 2013-08-02 06:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2014-01-23 19:36 - 2013-08-01 11:41 - 02233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-01-23 19:36 - 2013-07-25 00:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2014-01-23 19:36 - 2013-07-25 00:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2014-01-23 19:36 - 2013-04-10 00:17 - 01125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2014-01-23 19:36 - 2013-04-09 23:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2014-01-23 19:35 - 2013-10-31 06:56 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2014-01-23 19:35 - 2013-10-31 06:56 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2014-01-23 19:35 - 2013-10-31 05:01 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2014-01-23 19:35 - 2013-10-31 04:42 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2014-01-23 19:35 - 2013-10-28 06:50 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-01-23 19:35 - 2013-10-28 05:05 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2014-01-23 19:35 - 2013-10-13 21:49 - 00100696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2014-01-23 19:35 - 2013-08-27 06:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-01-23 19:35 - 2013-08-27 06:19 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2014-01-23 19:35 - 2013-08-26 23:29 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-01-23 19:35 - 2013-08-26 23:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2014-01-23 19:35 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-01-23 19:35 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-01-23 19:35 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-01-23 19:35 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2014-01-23 19:35 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-01-23 19:35 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-01-23 19:35 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll
2014-01-23 19:35 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2014-01-23 19:35 - 2013-07-06 01:16 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-01-23 19:35 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2014-01-23 19:35 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-23 19:35 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-01-23 19:35 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-23 19:35 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe
2014-01-23 19:35 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe
2014-01-23 19:35 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-01-23 19:35 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-01-23 19:35 - 2013-06-29 06:43 - 00327512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-01-23 19:35 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2014-01-23 19:35 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2014-01-23 19:35 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2014-01-23 19:35 - 2013-06-24 23:54 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2014-01-23 19:35 - 2013-06-24 23:54 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-01-23 19:35 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2014-01-23 19:35 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2014-01-23 19:35 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2014-01-23 19:35 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2014-01-23 19:35 - 2013-06-16 23:41 - 00997632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-01-23 19:35 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2014-01-23 19:35 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2014-01-23 19:35 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2014-01-23 19:35 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2014-01-23 19:35 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2014-01-23 19:35 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2014-01-23 19:35 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-01-23 19:35 - 2013-06-01 12:34 - 02391280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-01-23 19:35 - 2013-06-01 12:26 - 06987008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-23 19:35 - 2013-06-01 12:26 - 00327936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-01-23 19:35 - 2013-06-01 11:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-01-23 19:35 - 2013-06-01 10:25 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-01-23 19:35 - 2013-06-01 10:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2014-01-23 19:35 - 2013-06-01 10:24 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-01-23 19:35 - 2013-06-01 10:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2014-01-23 19:35 - 2013-06-01 10:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2014-01-23 19:35 - 2013-06-01 10:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-23 19:35 - 2013-06-01 10:23 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2014-01-23 19:35 - 2013-06-01 10:22 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-01-23 19:35 - 2013-06-01 10:22 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2014-01-23 19:35 - 2013-06-01 10:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2014-01-23 19:35 - 2013-06-01 10:21 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2014-01-23 19:35 - 2013-06-01 10:21 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2014-01-23 19:35 - 2013-06-01 10:20 - 02219520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-23 19:35 - 2013-06-01 10:20 - 01527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-01-23 19:35 - 2013-06-01 10:20 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2014-01-23 19:35 - 2013-06-01 10:20 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2014-01-23 19:35 - 2013-06-01 10:19 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-01-23 19:35 - 2013-06-01 10:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2014-01-23 19:35 - 2013-06-01 04:08 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2014-01-23 19:35 - 2013-05-24 23:09 - 01403296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-23 19:35 - 2013-05-24 23:09 - 01271584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-23 19:35 - 2013-05-24 23:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-23 19:35 - 2013-05-24 23:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-23 19:34 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2014-01-23 19:34 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-01-23 19:34 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-01-23 19:33 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-01-23 19:33 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2014-01-23 19:33 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-23 19:33 - 2013-08-16 06:32 - 00209200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe
2014-01-23 19:33 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-01-23 19:33 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2014-01-23 19:33 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2014-01-23 19:33 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-23 19:33 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2014-01-23 19:33 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2014-01-23 19:33 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2014-01-23 19:33 - 2013-08-16 06:20 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2014-01-23 19:33 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-23 19:33 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2014-01-23 19:33 - 2013-08-15 23:43 - 00083968 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-23 19:33 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2014-01-23 19:33 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2014-01-23 19:01 - 2014-01-23 19:10 - 00000000 ____D C:\Program Files\Adobe
2014-01-23 18:59 - 2014-01-23 19:09 - 00000000 ____D C:\Program Files\Common Files\Adobe
2014-01-23 18:48 - 2014-01-23 18:48 - 00000000 ____D C:\Users\Felix\AppData\Roaming\WinRAR
2014-01-23 18:47 - 2014-01-23 18:47 - 01977432 _____ C:\Users\Felix\Downloads\winrar-x64-501.exe
2014-01-23 18:47 - 2014-01-23 18:47 - 00001001 _____ C:\Users\Felix\Desktop\WinRAR.lnk
2014-01-23 18:47 - 2014-01-23 18:47 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-23 18:47 - 2014-01-23 18:47 - 00000000 ____D C:\Program Files\WinRAR
2014-01-23 18:34 - 2014-01-23 19:01 - 00000000 ____D C:\ProgramData\Adobe
2014-01-23 18:32 - 2014-01-23 19:10 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-23 18:32 - 2014-01-23 18:32 - 00001074 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2014-01-23 18:30 - 2014-01-23 19:53 - 00000000 ____D C:\Users\Felix\AppData\Local\Adobe
2014-01-23 18:30 - 2014-01-23 18:30 - 02844536 _____ (Adobe Systems Incorporated) C:\Users\Felix\Downloads\CreativeCloudSet-Up.exe
2014-01-23 18:26 - 2014-01-23 18:26 - 00002111 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-01-23 18:16 - 2014-01-23 18:23 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-23 17:54 - 2014-01-23 17:54 - 00001074 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-23 17:54 - 2014-01-23 17:54 - 00000000 ____D C:\Users\Felix\AppData\Roaming\vlc
2014-01-23 17:53 - 2014-01-23 17:53 - 00001184 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Startfenster.lnk
2014-01-23 17:53 - 2014-01-23 17:53 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2014-01-23 17:52 - 2014-01-23 17:52 - 24951496 _____ C:\Users\Felix\Downloads\vlc-2.1.2-win32.exe
2014-01-23 17:50 - 2014-01-23 17:45 - 00675988 _____ C:\Users\Felix\Desktop\Minecraft.exe
2014-01-23 17:49 - 2014-01-23 19:23 - 00000000 ____D C:\Users\Felix\AppData\Roaming\NVIDIA
2014-01-23 17:47 - 2014-01-23 17:49 - 00000000 ____D C:\Users\Felix\AppData\Roaming\.minecraft
2014-01-23 17:46 - 2014-01-23 17:46 - 00675988 _____ C:\Users\Felix\Downloads\Minecraft (1).exe
2014-01-23 17:46 - 2014-01-23 17:46 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-01-23 17:46 - 2014-01-23 17:46 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-01-23 17:46 - 2014-01-23 17:46 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-01-23 17:46 - 2014-01-23 17:46 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-01-23 17:46 - 2014-01-23 17:46 - 00000000 ____D C:\ProgramData\Sun
2014-01-23 17:46 - 2014-01-23 17:46 - 00000000 ____D C:\ProgramData\Oracle
2014-01-23 17:46 - 2014-01-23 17:46 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-23 17:45 - 2014-01-23 19:58 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3957300480-2974764531-1482231021-1002
2014-01-23 17:45 - 2014-01-23 17:45 - 00921000 _____ (Oracle Corporation) C:\Users\Felix\Downloads\chromeinstall-7u51.exe
2014-01-23 17:45 - 2014-01-23 17:45 - 00675988 _____ C:\Users\Felix\Downloads\Minecraft.exe
2014-01-23 17:39 - 2014-01-23 17:39 - 00002178 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 17:39 - 2014-01-23 17:39 - 00002128 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 17:39 - 2014-01-23 17:39 - 00002128 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 17:39 - 2014-01-23 17:39 - 00000000 ___RD C:\Users\Felix\SkyDrive
2014-01-23 17:39 - 2014-01-23 17:39 - 00000000 ____D C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 17:38 - 2014-01-23 17:38 - 00000000 ____D C:\ProgramData\Microsoft SkyDrive
2014-01-23 17:35 - 2014-01-23 19:43 - 00000000 ____D C:\Program Files\Microsoft Office 15
2014-01-23 17:33 - 2014-01-23 17:33 - 00002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-23 17:32 - 2014-01-23 19:53 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-23 17:32 - 2014-01-23 19:42 - 00001114 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-23 17:32 - 2014-01-23 17:54 - 00000000 ____D C:\Users\Felix\AppData\Local\Deployment
2014-01-23 17:32 - 2014-01-23 17:37 - 00004086 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-23 17:32 - 2014-01-23 17:37 - 00003850 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-23 17:32 - 2014-01-23 17:33 - 00000000 ____D C:\Users\Felix\AppData\Local\Google
2014-01-23 17:32 - 2014-01-23 17:33 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-23 17:32 - 2014-01-23 17:32 - 00000000 ____D C:\Users\Felix\AppData\Local\Apps\2.0
2014-01-23 13:02 - 2014-01-23 13:02 - 00000000 ____D C:\Users\Felix\PicStream
2014-01-23 13:02 - 2014-01-23 13:02 - 00000000 ____D C:\Users\Felix\AppData\Local\clear.fi
2014-01-23 08:40 - 2014-01-23 08:42 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-23 08:40 - 2014-01-06 16:20 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-23 08:37 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-23 08:37 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-23 08:37 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2014-01-23 08:37 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2014-01-23 08:35 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-01-23 08:35 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-01-23 08:30 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2014-01-23 08:30 - 2013-07-05 23:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2014-01-23 08:30 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2014-01-23 08:30 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2014-01-23 08:30 - 2013-06-29 04:07 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2014-01-23 08:30 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2014-01-23 08:30 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2014-01-23 08:27 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2014-01-23 08:27 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-01-23 08:27 - 2013-05-24 00:02 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2014-01-23 08:27 - 2013-05-23 23:25 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2014-01-23 08:27 - 2013-03-02 11:57 - 00332520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-01-23 08:27 - 2013-03-02 11:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2014-01-23 08:27 - 2013-03-02 11:39 - 00495336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2014-01-23 08:27 - 2013-03-02 09:23 - 01338880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-01-23 08:27 - 2013-03-02 09:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-01-23 08:27 - 2013-03-02 09:23 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2014-01-23 08:27 - 2013-03-02 09:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-01-23 08:27 - 2013-03-02 09:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll
2014-01-23 08:27 - 2013-03-02 09:22 - 05091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-01-23 08:27 - 2013-03-02 09:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2014-01-23 08:27 - 2013-03-02 09:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2014-01-23 08:27 - 2013-03-02 09:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2014-01-23 08:27 - 2013-03-02 09:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsquirt.exe
2014-01-23 08:27 - 2013-03-02 03:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2014-01-23 08:27 - 2013-03-02 03:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2014-01-23 08:27 - 2013-03-02 03:44 - 05978624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-01-23 08:27 - 2013-03-02 03:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2014-01-23 08:27 - 2013-03-02 03:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-01-23 08:27 - 2013-03-02 03:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2014-01-23 08:27 - 2013-03-02 03:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2014-01-23 08:27 - 2013-03-02 03:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2014-01-23 08:27 - 2013-03-02 03:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2014-01-23 08:27 - 2013-03-02 03:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2014-01-23 08:27 - 2013-03-01 05:56 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-01-23 08:27 - 2013-03-01 05:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2014-01-23 08:27 - 2013-03-01 05:55 - 01175040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-01-23 08:23 - 2013-11-07 00:18 - 04036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-23 08:23 - 2013-07-19 23:13 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-23 08:23 - 2013-07-19 23:13 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-23 08:23 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-23 08:23 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2014-01-23 08:23 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-01-23 08:23 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-01-23 08:23 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-01-23 08:23 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-01-23 08:23 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-01-23 08:23 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-01-23 08:23 - 2013-05-31 00:24 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-01-23 08:23 - 2013-05-31 00:08 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-01-23 08:23 - 2013-05-15 03:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2014-01-23 08:23 - 2013-05-15 03:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-01-23 08:23 - 2013-05-15 03:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2014-01-23 08:23 - 2013-05-15 03:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-01-23 08:23 - 2013-05-04 08:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2014-01-23 08:23 - 2013-05-04 07:59 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-01-23 08:23 - 2013-05-04 07:59 - 01483776 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-01-23 08:23 - 2013-05-04 07:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2014-01-23 08:23 - 2013-05-04 07:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2014-01-23 08:23 - 2013-05-04 07:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2014-01-23 08:23 - 2013-05-04 07:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-01-23 08:23 - 2013-05-04 07:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-01-23 08:23 - 2013-05-04 07:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2014-01-23 08:23 - 2013-05-04 07:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-01-23 08:23 - 2013-05-04 07:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-23 08:23 - 2013-05-04 07:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-23 08:23 - 2013-05-04 07:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-01-23 08:23 - 2013-05-04 07:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2014-01-23 08:23 - 2013-05-04 07:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2014-01-23 08:23 - 2013-05-04 07:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-01-23 08:23 - 2013-05-04 07:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2014-01-23 08:23 - 2013-05-04 07:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll
2014-01-23 08:23 - 2013-05-04 07:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2014-01-23 08:23 - 2013-05-04 05:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2014-01-23 08:23 - 2013-05-04 05:57 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-01-23 08:23 - 2013-05-04 05:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2014-01-23 08:23 - 2013-05-04 05:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2014-01-23 08:23 - 2013-05-04 05:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2014-01-23 08:23 - 2013-05-04 05:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2014-01-23 08:23 - 2013-05-04 05:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll
2014-01-23 08:23 - 2013-05-04 05:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2014-01-23 08:23 - 2013-05-04 05:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-01-23 08:23 - 2013-05-04 05:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2014-01-23 08:23 - 2013-05-04 05:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2014-01-23 08:23 - 2013-05-04 05:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2014-01-23 08:23 - 2013-05-04 05:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2014-01-23 08:23 - 2013-05-04 05:48 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2014-01-23 08:23 - 2013-05-04 05:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-01-23 08:23 - 2013-05-04 05:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2014-01-23 08:23 - 2013-04-24 00:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2014-01-23 08:23 - 2013-04-24 00:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2014-01-23 08:23 - 2013-04-23 23:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2014-01-23 08:23 - 2013-04-23 23:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2014-01-23 08:23 - 2013-04-11 23:30 - 01421312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2014-01-23 08:23 - 2013-04-11 23:22 - 01838080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2014-01-23 08:23 - 2013-03-02 03:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2014-01-23 08:23 - 2013-03-02 03:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2014-01-23 08:22 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-01-23 08:22 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-01-23 08:22 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2014-01-23 08:22 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2014-01-23 08:22 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-23 08:22 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2014-01-23 08:22 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-01-23 08:22 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2014-01-23 08:22 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-23 08:22 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-01-23 08:22 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-23 08:22 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-23 08:22 - 2013-08-07 06:15 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2014-01-23 08:22 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-01-23 08:22 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2014-01-23 08:22 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2014-01-23 08:22 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2014-01-23 08:22 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2014-01-23 08:22 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2014-01-23 08:22 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2014-01-23 08:22 - 2013-06-01 10:25 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-01-23 08:22 - 2013-06-01 10:21 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-01-23 08:22 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2014-01-23 08:22 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2014-01-23 08:22 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2014-01-23 08:22 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2014-01-23 08:22 - 2013-04-27 06:20 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-01-23 08:22 - 2013-04-03 00:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll
2014-01-23 08:22 - 2013-04-03 00:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2014-01-23 08:22 - 2013-03-02 10:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-01-23 08:22 - 2012-11-10 05:23 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-01-23 08:22 - 2012-11-10 05:23 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-01-23 08:22 - 2012-11-10 05:22 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDWebAI.dll
2014-01-23 08:22 - 2012-11-10 05:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmHostAI.dll
2014-01-23 08:22 - 2012-11-10 05:20 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appserverai.dll
2014-01-23 08:21 - 2013-12-07 07:37 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-23 08:21 - 2013-12-07 07:37 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-23 08:21 - 2013-12-07 06:15 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-23 08:21 - 2013-12-07 06:15 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-23 08:21 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-01-23 08:21 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-01-23 08:21 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-01-23 08:21 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-01-23 08:21 - 2013-08-16 06:21 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-01-23 08:21 - 2013-08-15 23:43 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2014-01-23 08:21 - 2013-08-02 07:28 - 10116608 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-23 08:21 - 2013-08-02 06:08 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-23 08:21 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2014-01-23 08:21 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2014-01-23 08:18 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-01-23 08:18 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-01-23 08:05 - 2014-01-23 08:05 - 00000000 ____D C:\ProgramData\Pokki
2014-01-23 08:03 - 2014-01-23 19:53 - 00000000 ___RD C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-23 08:03 - 2014-01-23 19:53 - 00000000 ___RD C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-23 08:03 - 2014-01-23 08:03 - 00002609 _____ C:\Users\Public\Desktop\eBay.lnk
2014-01-23 08:03 - 2014-01-23 08:03 - 00001776 _____ C:\Users\Public\Desktop\Online kaufen.lnk
2014-01-23 08:03 - 2014-01-23 08:03 - 00001446 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Synaptics
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Atheros
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\ProgramData\OEM_YAHOO
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\Program Files\Accessory Store
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\Program Files (x86)\OEM
2014-01-23 08:02 - 2014-01-23 19:23 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Adobe
2014-01-23 08:02 - 2014-01-23 08:02 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Macromedia
2014-01-23 08:02 - 2014-01-23 08:02 - 00000000 ____D C:\Users\Felix\AppData\Local\VirtualStore
2014-01-23 08:01 - 2014-01-23 20:04 - 00000000 ____D C:\Users\Felix
2014-01-23 08:01 - 2014-01-23 18:26 - 00000000 ____D C:\Users\Felix\AppData\Local\Pokki
2014-01-23 08:01 - 2014-01-23 18:23 - 00000000 ____D C:\Users\Felix\AppData\Local\Packages
2014-01-23 08:01 - 2014-01-23 08:01 - 00000020 ___SH C:\Users\Felix\ntuser.ini
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Vorlagen
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Startmenü
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Netzwerkumgebung
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Lokale Einstellungen
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Eigene Dateien
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Druckumgebung
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Documents\Eigene Musik
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Documents\Eigene Bilder
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\AppData\Local\Verlauf
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\AppData\Local\Anwendungsdaten
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Anwendungsdaten
2014-01-23 08:01 - 2013-09-25 22:19 - 00000000 ___RD C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-23 08:01 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-23 08:01 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-23 08:01 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-22 23:15 - 2014-01-22 23:15 - 00000000 _____ C:\Recovery.txt
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Programme
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\ProgramData\Vorlagen
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\ProgramData\Startmenü
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\ProgramData\Dokumente
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Dokumente und Einstellungen
==================== One Month Modified Files and Folders =======
2014-01-23 20:06 - 2014-01-23 20:06 - 00017357 _____ C:\Users\Felix\Downloads\FRST.txt
2014-01-23 20:06 - 2014-01-23 20:06 - 00000000 ____D C:\FRST
2014-01-23 20:05 - 2014-01-23 20:05 - 02077184 _____ (Farbar) C:\Users\Felix\Downloads\FRST64.exe
2014-01-23 20:05 - 2014-01-23 20:05 - 02077184 _____ (Farbar) C:\Users\Felix\Downloads\FRST64 (1).exe
2014-01-23 20:04 - 2014-01-23 20:04 - 00000472 _____ C:\Users\Felix\Downloads\defogger_disable.log
2014-01-23 20:04 - 2014-01-23 20:04 - 00000000 _____ C:\Users\Felix\defogger_reenable
2014-01-23 20:04 - 2014-01-23 08:01 - 00000000 ____D C:\Users\Felix
2014-01-23 20:03 - 2014-01-23 20:03 - 00050477 _____ C:\Users\Felix\Downloads\Defogger.exe
2014-01-23 20:00 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-23 19:58 - 2014-01-23 17:45 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3957300480-2974764531-1482231021-1002
2014-01-23 19:57 - 2013-04-18 11:09 - 00001832 _____ C:\Users\Public\Desktop\McAfee Internet Security Suite.lnk
2014-01-23 19:56 - 2013-09-26 07:29 - 00753134 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-23 19:56 - 2013-09-26 07:29 - 00155826 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-23 19:56 - 2012-07-26 08:28 - 01745416 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-23 19:53 - 2014-01-23 18:30 - 00000000 ____D C:\Users\Felix\AppData\Local\Adobe
2014-01-23 19:53 - 2014-01-23 17:32 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-23 19:53 - 2014-01-23 08:03 - 00000000 ___RD C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-23 19:53 - 2014-01-23 08:03 - 00000000 ___RD C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-23 19:52 - 2013-04-18 11:08 - 00000000 ____D C:\Program Files (x86)\McAfee
2014-01-23 19:51 - 2012-07-26 08:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-23 19:50 - 2013-04-18 10:11 - 00008906 _____ C:\WINDOWS\PFRO.log
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ToastData
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-23 19:49 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-23 19:49 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-23 19:48 - 2013-09-25 21:46 - 01275669 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-23 19:43 - 2014-01-23 17:35 - 00000000 ____D C:\Program Files\Microsoft Office 15
2014-01-23 19:42 - 2014-01-23 17:32 - 00001114 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-23 19:23 - 2014-01-23 17:49 - 00000000 ____D C:\Users\Felix\AppData\Roaming\NVIDIA
2014-01-23 19:23 - 2014-01-23 08:02 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Adobe
2014-01-23 19:15 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\rescache
2014-01-23 19:10 - 2014-01-23 19:01 - 00000000 ____D C:\Program Files\Adobe
2014-01-23 19:10 - 2014-01-23 18:32 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-23 19:09 - 2014-01-23 18:59 - 00000000 ____D C:\Program Files\Common Files\Adobe
2014-01-23 19:01 - 2014-01-23 18:34 - 00000000 ____D C:\ProgramData\Adobe
2014-01-23 18:48 - 2014-01-23 18:48 - 00000000 ____D C:\Users\Felix\AppData\Roaming\WinRAR
2014-01-23 18:47 - 2014-01-23 18:47 - 01977432 _____ C:\Users\Felix\Downloads\winrar-x64-501.exe
2014-01-23 18:47 - 2014-01-23 18:47 - 00001001 _____ C:\Users\Felix\Desktop\WinRAR.lnk
2014-01-23 18:47 - 2014-01-23 18:47 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-23 18:47 - 2014-01-23 18:47 - 00000000 ____D C:\Program Files\WinRAR
2014-01-23 18:32 - 2014-01-23 18:32 - 00001074 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2014-01-23 18:30 - 2014-01-23 18:30 - 02844536 _____ (Adobe Systems Incorporated) C:\Users\Felix\Downloads\CreativeCloudSet-Up.exe
2014-01-23 18:26 - 2014-01-23 18:26 - 00002111 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-01-23 18:26 - 2014-01-23 08:01 - 00000000 ____D C:\Users\Felix\AppData\Local\Pokki
2014-01-23 18:23 - 2014-01-23 18:16 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-23 18:23 - 2014-01-23 08:01 - 00000000 ____D C:\Users\Felix\AppData\Local\Packages
2014-01-23 18:23 - 2013-04-18 11:08 - 00000000 ____D C:\ProgramData\McAfee
2014-01-23 18:23 - 2013-04-18 11:08 - 00000000 ____D C:\Program Files\mcafee
2014-01-23 18:23 - 2013-04-18 10:14 - 00000000 ____D C:\ProgramData\PRICache
2014-01-23 18:20 - 2012-07-26 06:37 - 00000000 ____D C:\WINDOWS\servicing
2014-01-23 18:20 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-23 18:16 - 2013-04-18 11:08 - 00000000 ____D C:\Program Files\Common Files\mcafee
2014-01-23 18:16 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-23 18:13 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-23 18:13 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-23 18:13 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-23 18:13 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2014-01-23 18:13 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2014-01-23 18:13 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2014-01-23 17:54 - 2014-01-23 17:54 - 00001074 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-23 17:54 - 2014-01-23 17:54 - 00000000 ____D C:\Users\Felix\AppData\Roaming\vlc
2014-01-23 17:54 - 2014-01-23 17:32 - 00000000 ____D C:\Users\Felix\AppData\Local\Deployment
2014-01-23 17:53 - 2014-01-23 17:53 - 00001184 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Startfenster.lnk
2014-01-23 17:53 - 2014-01-23 17:53 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2014-01-23 17:52 - 2014-01-23 17:52 - 24951496 _____ C:\Users\Felix\Downloads\vlc-2.1.2-win32.exe
2014-01-23 17:49 - 2014-01-23 17:47 - 00000000 ____D C:\Users\Felix\AppData\Roaming\.minecraft
2014-01-23 17:46 - 2014-01-23 17:46 - 00675988 _____ C:\Users\Felix\Downloads\Minecraft (1).exe
2014-01-23 17:46 - 2014-01-23 17:46 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-01-23 17:46 - 2014-01-23 17:46 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-01-23 17:46 - 2014-01-23 17:46 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-01-23 17:46 - 2014-01-23 17:46 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-01-23 17:46 - 2014-01-23 17:46 - 00000000 ____D C:\ProgramData\Sun
2014-01-23 17:46 - 2014-01-23 17:46 - 00000000 ____D C:\ProgramData\Oracle
2014-01-23 17:46 - 2014-01-23 17:46 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-23 17:45 - 2014-01-23 17:50 - 00675988 _____ C:\Users\Felix\Desktop\Minecraft.exe
2014-01-23 17:45 - 2014-01-23 17:45 - 00921000 _____ (Oracle Corporation) C:\Users\Felix\Downloads\chromeinstall-7u51.exe
2014-01-23 17:45 - 2014-01-23 17:45 - 00675988 _____ C:\Users\Felix\Downloads\Minecraft.exe
2014-01-23 17:39 - 2014-01-23 17:39 - 00002178 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 17:39 - 2014-01-23 17:39 - 00002128 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 17:39 - 2014-01-23 17:39 - 00002128 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 17:39 - 2014-01-23 17:39 - 00000000 ___RD C:\Users\Felix\SkyDrive
2014-01-23 17:39 - 2014-01-23 17:39 - 00000000 ____D C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 17:38 - 2014-01-23 17:38 - 00000000 ____D C:\ProgramData\Microsoft SkyDrive
2014-01-23 17:37 - 2014-01-23 17:32 - 00004086 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-23 17:37 - 2014-01-23 17:32 - 00003850 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-23 17:33 - 2014-01-23 17:33 - 00002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-23 17:33 - 2014-01-23 17:32 - 00000000 ____D C:\Users\Felix\AppData\Local\Google
2014-01-23 17:33 - 2014-01-23 17:32 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-23 17:32 - 2014-01-23 17:32 - 00000000 ____D C:\Users\Felix\AppData\Local\Apps\2.0
2014-01-23 13:02 - 2014-01-23 13:02 - 00000000 ____D C:\Users\Felix\PicStream
2014-01-23 13:02 - 2014-01-23 13:02 - 00000000 ____D C:\Users\Felix\AppData\Local\clear.fi
2014-01-23 08:42 - 2014-01-23 08:40 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-23 08:37 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\restore
2014-01-23 08:06 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-23 08:05 - 2014-01-23 08:05 - 00000000 ____D C:\ProgramData\Pokki
2014-01-23 08:03 - 2014-01-23 08:03 - 00002609 _____ C:\Users\Public\Desktop\eBay.lnk
2014-01-23 08:03 - 2014-01-23 08:03 - 00001776 _____ C:\Users\Public\Desktop\Online kaufen.lnk
2014-01-23 08:03 - 2014-01-23 08:03 - 00001446 _____ C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Synaptics
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Atheros
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\ProgramData\OEM_YAHOO
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\Program Files\Accessory Store
2014-01-23 08:03 - 2014-01-23 08:03 - 00000000 ____D C:\Program Files (x86)\OEM
2014-01-23 08:03 - 2013-09-25 22:49 - 00003550 _____ C:\WINDOWS\System32\Tasks\Norton Online Backup ARA
2014-01-23 08:03 - 2013-09-25 22:48 - 00000000 ____D C:\ProgramData\Norton
2014-01-23 08:03 - 2013-04-18 11:07 - 00000000 ___HD C:\OEM
2014-01-23 08:02 - 2014-01-23 08:02 - 00000000 ____D C:\Users\Felix\AppData\Roaming\Macromedia
2014-01-23 08:02 - 2014-01-23 08:02 - 00000000 ____D C:\Users\Felix\AppData\Local\VirtualStore
2014-01-23 08:01 - 2014-01-23 08:01 - 00000020 ___SH C:\Users\Felix\ntuser.ini
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Vorlagen
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Startmenü
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Netzwerkumgebung
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Lokale Einstellungen
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Eigene Dateien
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Druckumgebung
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Documents\Eigene Musik
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Documents\Eigene Bilder
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\AppData\Local\Verlauf
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\AppData\Local\Anwendungsdaten
2014-01-23 08:01 - 2014-01-23 08:01 - 00000000 _SHDL C:\Users\Felix\Anwendungsdaten
2014-01-23 08:01 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2014-01-23 06:33 - 2013-09-25 22:34 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2014-01-23 06:33 - 2013-09-25 22:34 - 00000000 ____D C:\WINDOWS\system32\NV
2014-01-22 23:15 - 2014-01-22 23:15 - 00000000 _____ C:\Recovery.txt
2014-01-22 23:15 - 2012-07-26 09:13 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Programme
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\ProgramData\Vorlagen
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\ProgramData\Startmenü
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\ProgramData\Dokumente
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2014-01-22 22:16 - 2014-01-22 22:16 - 00000000 _SHDL C:\Dokumente und Einstellungen
2014-01-22 22:16 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT
2014-01-22 22:16 - 2012-07-26 06:37 - 00000000 __RHD C:\Users\Default
2014-01-09 09:02 - 2012-07-26 09:14 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-09 09:02 - 2012-07-26 09:14 - 00078296 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 16:20 - 2014-01-23 08:40 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
Some content of TEMP:
====================
C:\Users\Felix\AppData\Local\Temp\Creative Cloud Helper.exe
C:\Users\Felix\AppData\Local\Temp\octFD06.tmp.exe
C:\Users\Felix\AppData\Local\Temp\OfficeSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-04-18 10:11
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-01-2014
Ran by Felix at 2014-01-23 20:06:40
Running from C:\Users\Felix\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Disabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
==================== Installed Programs ======================
clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
Acer Device Fast-lane (Version: 1.00.3013 - Acer Incorporated)
Acer Games (HKCU Version: 1.1.7.42206 - Pokki)
Acer Launch Manager (Version: 8.00.3005 - Acer Incorporated)
Acer Power Management (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (Version: 6.00.3016 - Acer Incorporated)
Acer USB Charge Manager (Version: 2.00.3004 - Acer Incorporated)
AcerCloud Docs (x32 Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (x32 Version: 2.02.2022 - Acer Incorporated)
Adobe Creative Cloud (x32 Version: 2.3.0.322 - Adobe Systems Incorporated)
Adobe Photoshop CC (x32 Version: 14.0 - Adobe Systems Incorporated)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
clear.fi Media (x32 Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (x32 Version: 2.02.2016 - Acer Incorporated)
Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
Dolby Home Theater v4 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc)
eBay Worldwide (x32 Version: 2.4.0105 - OEM)
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
Identity Card (x32 Version: 2.00.3006 - Acer Incorporated)
Intel(R) Management Engine Components (x32 Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 9.18.10.3089 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.0.0.1083 - Intel Corporation) Hidden
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 3.0.0.63463 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Live Updater (x32 Version: 2.00.3010 - Acer Incorporated)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
McAfee Internet Security Suite (x32 Version: 11.6.385 - McAfee, Inc.)
Microsoft Office Home and Student 2013 - de-de (Version: 15.0.4551.1512 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Nero BackItUp (x32 Version: 12.5.5000 - Nero AG) Hidden
Nero BackItUp 12 Essentials OEM.a01 (x32 Version: 12.5.00500 - Nero AG)
Nero BackItUp Help (CHM) (x32 Version: 12.0.10000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden
Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Norton Online Backup (x32 Version: 2.7.0.24 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.3.0.14 - Symantec Corporation) Hidden
NVIDIA Grafiktreiber 311.30 (Version: 311.30 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.109.706 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.11.3 (Version: 1.11.3 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Systemsteuerung 311.30 (Version: 311.30 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office Addin (x32 Version: 2.02.2008 - Acer)
Office Addin 2003 (x32 Version: 2.02.2008 - Acer)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Pokki (HKCU Version: 0.266.1.172 - Pokki)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (x32 Version: 11.39 - Qualcomm Atheros)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6865 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (x32 Version: 6.2.9200.28140 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Spotify (x32 Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Synaptics Pointing Device Driver (Version: 16.3.4.5 - Synaptics Incorporated)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (x32 Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (x32 Version: 1 - Microsoft Corporation)
VLC media player 2.1.2 (x32 Version: 2.1.2 - VideoLAN)
WildTangent Games (x32 Version: 1.0.4.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
WinRAR 5.01 (64-bit) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
23-01-2014 07:37:41 Windows Update
==================== Hosts content: ==========================
2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {00BF51CD-C468-429C-AA40-D652547F0F74} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-10-31] (Microsoft Corporation)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {21D382FB-DD35-4C0A-9715-9F4C185A0B55} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-06-17] (Acer Incorporate)
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2F59CB21-1599-47C8-B3C3-AEBEE9520E7C} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {3660DE0E-6128-404C-A58B-0446C3CAE519} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.3.0.14\\Ara.exe [2013-02-04] (Symantec Corporation)
Task: {75E03E9E-1FC0-4494-9937-915426CC5905} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated)
Task: {8074FDB4-E95D-4F5F-AE67-4B61BFBF1F46} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {8F2B5D50-FC49-4F37-99F2-E4CA803398A2} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {ACBA9B4F-C42D-4962-8F2D-879C4E0385C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-23] (Google Inc.)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {E0016269-49ED-4B59-9C2E-237CEE23361A} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] ()
Task: {E74987B2-5E1D-4906-B407-7DCA54CA9AAB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-23] (Google Inc.)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-12-13 12:20 - 2013-12-13 12:20 - 03359600 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2013-01-24 23:09 - 2013-01-24 23:09 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-24 23:05 - 2013-01-24 23:05 - 00084992 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-12-19 10:49 - 2013-12-19 10:49 - 32733080 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll
2013-09-25 22:51 - 2013-02-20 21:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
2013-09-25 22:24 - 2013-01-23 08:57 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-12-19 10:49 - 2013-12-19 10:49 - 00742808 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libglesv2.dll
2013-12-19 10:49 - 2013-12-19 10:49 - 00136600 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libegl.dll
2014-01-23 17:33 - 2014-01-11 11:28 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libglesv2.dll
2014-01-23 17:33 - 2014-01-11 11:28 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libegl.dll
2014-01-23 17:33 - 2014-01-11 11:29 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll
2014-01-23 17:33 - 2014-01-11 11:29 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
2014-01-23 17:33 - 2014-01-11 11:28 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
2014-01-23 17:33 - 2014-01-11 11:29 - 13615896 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== Faulty Device Manager Devices =============
Name: Bluetooth USB Module
Description: Bluetooth USB Module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Could not start eventlog service, could not read events.
Der angeforderte Dienst wurde bereits gestartet.
Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.
==================== Memory info ===========================
Percentage of memory in use: 23%
Total physical RAM: 8072.27 MB
Available physical RAM: 6192.45 MB
Total Pagefile: 12680.27 MB
Available Pagefile: 10667 MB
Total Virtual: 8192 MB
Available Virtual: 8191.75 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:913.36 GB) (Free:865.59 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 901F96D1)
Partition: GPT Partition Type
==================== End Of Log ============================
Als Anhang: logfiles.zip (wurde dazu aufgefordert) Vielen Dank für Eure tolle Hilfe und Euer Engagement! LG |
|
23.01.2014, 23:12
| #2 |
| /// the machine /// TB-Ausbilder    | Win8 Mc Afee Echtzeitscan laesst sich nicht mehr ausführen Hi,
__________________du musst schon richtig Gas geben um ein neu aufgesetztes System direkt zu verseuchen  Installier McAfee mal neu.
__________________ |
|
24.01.2014, 08:20
| #3 |
| | Win8 Mc Afee Echtzeitscan laesst sich nicht mehr ausführen Hallo Schrauber!
__________________Danke für Deine schnelle Antwort. Bin wohl ein wenig hypochondrisch veranlagt..... McAfee deinstalliert, Kaspersky installiert - soweit alles gut (schäm!) Danke für Deine Hilfe! LG |
|
25.01.2014, 11:04
| #4 |
| /// the machine /// TB-Ausbilder | Win8 Mc Afee Echtzeitscan laesst sich nicht mehr ausführen Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Win8 Mc Afee Echtzeitscan laesst sich nicht mehr ausführen |
| administrator, adobe, browser, cpu, defender, device driver, explorer, fehlermeldung, google, home, installation, langsam, launch, mc afee echtzeitscan, mcafee, nvidia, photoshop, pokki, realtek, registry, rundll, scan, services.exe, siteadvisor, software, svchost.exe, symantec, system, temp, wildtangent games, windowsapps, winlogon.exe |
Linear-Darstellung
