Bei mir erscheint ein neuer Tab bei Firefox: "Auf ihrem PC wurde Spyware entdeckt"

Raubkatze21 · 26.02.2014, 09:17

Hallo wenn ich im Firefox unterwegs bin, öffnet nach eine weile ein neuer Tab mit merkwürdigen themen. Oder Firefox öffnet selbstständig, mit "Auf ihrem PC wurde Spyware entdeckt". Was kann ich tun.

aharonov · 26.02.2014, 09:39

Hallo,

mach bitte einen FRST scan:

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Raubkatze21 · 26.02.2014, 20:19

Das habe ich gemacht. aber die datei ist zu groß um hier als anhang zu setzen

aharonov · 26.02.2014, 20:41

Hänge die Logfiles bitte nicht an (das erschwert mir das Auswerten massiv), sondern füge deren Inhalt direkt innerhalb von Codetags ein: [code]Inhalt Logfile[/code]. (Anleitung))
Falls es zu viele Zeichen sind, dann teile die Logfiles auf mehrere Posts auf.

Raubkatze21 · 26.02.2014, 20:44

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-02-2014
Ran by Geiger (administrator) on GEIGER-PC on 26-02-2014 09:00:18
Running from E:\
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Atheros) C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\system32\wbem\WMIADAP.EXE
==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [860040 2010-10-29] (Acer Incorporated)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-12] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Avira Systray] - C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [172600 2014-01-29] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-10-13] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1025616 2010-12-09] (Dritek System Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [icq] - C:\Users\Geiger\AppData\Roaming\ICQM\icq.exe [33664344 2014-02-15] (ICQ)
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [UpdateMyDrivers] - C:\Program Files (x86)\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [SpeedUpMyComputer] - C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [FixMyRegistry] - C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=01a34916-e7ba-ec79-0104-041828c7a219&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=15/02/2014&type=hp1000
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x421EB136402ACF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=01a34916-e7ba-ec79-0104-041828c7a219&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=15/02/2014&type=hp1000
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1392573655&from=smt&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX&q={searchTerms}
SearchScopes: HKLM - {6ADE8F7D-85A3-44F0-8214-34FCFB72D45A} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=01a34916-e7ba-ec79-0104-041828c7a219&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=15/02/2014&type=hp1000
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX&q={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=01a34916-e7ba-ec79-0104-041828c7a219&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=15/02/2014&type=hp1000
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Geiger\AppData\Roaming\Mozilla\Firefox\Profiles\pw8jl33x.default
FF user.js: detected! => C:\Users\Geiger\AppData\Roaming\Mozilla\Firefox\Profiles\pw8jl33x.default\user.js
FF NewTab: about:blank
FF SearchEngineOrder.1: SuchMaschine
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Geiger\AppData\Roaming\Mozilla\Firefox\Profiles\pw8jl33x.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [109112 2014-01-29] (Avira Operations GmbH & Co. KG)
R2 BRA_Scheduler; C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe [99328 2013-05-31] ()
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [57344 2011-08-10] (Atheros)
==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-18] (Avira Operations GmbH & Co. KG)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-02-26 08:59 - 2014-02-26 09:00 - 00000000 ____D () C:\FRST
2014-02-26 08:33 - 2014-02-26 17:52 - 00000000 ____D () C:\Users\Geiger\Portrait Professional Studio 9
2014-02-21 08:45 - 2014-02-21 08:45 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-02-21 08:25 - 2014-02-21 08:25 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-02-21 08:25 - 2014-02-21 08:25 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-02-20 17:45 - 2014-02-24 20:17 - 00470818 _____ () C:\Windows\system32\perfh001.dat
2014-02-20 17:45 - 2014-02-24 20:17 - 00094640 _____ () C:\Windows\system32\perfc001.dat
2014-02-20 17:45 - 2014-02-20 17:41 - 00289060 _____ () C:\Windows\system32\perfi001.dat
2014-02-20 17:45 - 2014-02-20 17:41 - 00042056 _____ () C:\Windows\system32\perfd001.dat
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\ar-SA
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Windows\SysWOW64\ar
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-02-20 17:42 - 2014-02-20 21:28 - 00000000 ____D () C:\Windows\system32\Drivers\ar-SA
2014-02-20 17:42 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\system32\ar
2014-02-20 17:42 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\ar-SA
2014-02-19 16:45 - 2014-02-24 20:17 - 00501218 _____ () C:\Windows\system32\perfh006.dat
2014-02-19 16:45 - 2014-02-24 20:17 - 00098526 _____ () C:\Windows\system32\perfc006.dat
2014-02-19 16:45 - 2014-02-19 16:41 - 00306636 _____ () C:\Windows\system32\perfi006.dat
2014-02-19 16:45 - 2014-02-19 16:41 - 00039236 _____ () C:\Windows\system32\perfd006.dat
2014-02-19 16:43 - 2014-02-19 16:43 - 00000000 ____D () C:\Windows\SysWOW64\da
2014-02-19 16:42 - 2014-02-19 16:42 - 00000000 ____D () C:\Windows\system32\da
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\ro-RO
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\system32\Drivers\ro-RO
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\ro-RO
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\hr-HR
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\system32\Drivers\hr-HR
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\hr-HR
2014-02-19 16:11 - 2014-02-24 20:17 - 00720822 _____ () C:\Windows\system32\prfh0816.dat
2014-02-19 16:11 - 2014-02-24 20:17 - 00152774 _____ () C:\Windows\system32\prfc0816.dat
2014-02-19 16:11 - 2014-02-19 16:08 - 00336656 _____ () C:\Windows\system32\prfi0816.dat
2014-02-19 16:11 - 2014-02-19 16:08 - 00040548 _____ () C:\Windows\system32\prfd0816.dat
2014-02-19 16:09 - 2014-02-19 16:09 - 00000000 ____D () C:\Windows\SysWOW64\pt
2014-02-19 16:09 - 2014-02-19 16:09 - 00000000 ____D () C:\Windows\system32\pt
2014-02-19 16:00 - 2014-02-24 20:17 - 00732162 _____ () C:\Windows\system32\perfh015.dat
2014-02-19 16:00 - 2014-02-24 20:17 - 00155740 _____ () C:\Windows\system32\perfc015.dat
2014-02-19 16:00 - 2014-02-19 15:57 - 00337158 _____ () C:\Windows\system32\perfi015.dat
2014-02-19 16:00 - 2014-02-19 15:57 - 00038710 _____ () C:\Windows\system32\perfd015.dat
2014-02-19 15:58 - 2014-02-19 15:58 - 00000000 ____D () C:\Windows\SysWOW64\pl
2014-02-19 15:57 - 2014-02-19 15:57 - 00000000 ____D () C:\Windows\system32\pl
2014-02-19 15:48 - 2014-02-24 20:17 - 00648486 _____ () C:\Windows\system32\perfh01F.dat
2014-02-19 15:48 - 2014-02-24 20:17 - 00139868 _____ () C:\Windows\system32\perfc01F.dat
2014-02-19 15:48 - 2014-02-19 15:45 - 00285034 _____ () C:\Windows\system32\perfi01F.dat
2014-02-19 15:48 - 2014-02-19 15:45 - 00037160 _____ () C:\Windows\system32\perfd01F.dat
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\tr-TR
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\SysWOW64\tr
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\tr-TR
2014-02-19 15:46 - 2014-02-19 17:19 - 00000000 ____D () C:\Windows\system32\Drivers\tr-TR
2014-02-19 15:46 - 2014-02-19 15:46 - 00000000 ____D () C:\Windows\system32\tr
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\bg-BG
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\system32\Drivers\bg-BG
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\bg-BG
2014-02-19 15:26 - 2014-02-19 15:26 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sr-Latn-CS
2014-02-19 15:26 - 2014-02-19 15:26 - 00000000 ____D () C:\Windows\sr-Latn-CS
2014-02-19 15:25 - 2014-02-19 15:25 - 00000000 ____D () C:\Windows\system32\Drivers\sr-Latn-CS
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\et-EE
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\system32\Drivers\et-EE
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\et-EE
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\lt-LT
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\system32\Drivers\lt-LT
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\lt-LT
2014-02-19 14:58 - 2014-02-24 20:17 - 00716404 _____ () C:\Windows\system32\perfh019.dat
2014-02-19 14:58 - 2014-02-24 20:17 - 00150710 _____ () C:\Windows\system32\perfc019.dat
2014-02-19 14:58 - 2014-02-19 14:55 - 00336704 _____ () C:\Windows\system32\perfi019.dat
2014-02-19 14:58 - 2014-02-19 14:55 - 00039446 _____ () C:\Windows\system32\perfd019.dat
2014-02-19 14:57 - 2014-02-19 14:57 - 00000000 ____D () C:\Windows\SysWOW64\ru
2014-02-19 14:56 - 2014-02-19 14:56 - 00000000 ____D () C:\Windows\system32\ru
2014-02-19 14:46 - 2014-02-24 20:17 - 00486318 _____ () C:\Windows\system32\perfh014.dat
2014-02-19 14:46 - 2014-02-24 20:17 - 00095272 _____ () C:\Windows\system32\perfc014.dat
2014-02-19 14:46 - 2014-02-19 14:43 - 00298300 _____ () C:\Windows\system32\perfi014.dat
2014-02-19 14:46 - 2014-02-19 14:43 - 00036156 _____ () C:\Windows\system32\perfd014.dat
2014-02-19 14:45 - 2014-02-19 14:45 - 00000000 ____D () C:\Windows\SysWOW64\no
2014-02-19 14:44 - 2014-02-19 14:44 - 00000000 ____D () C:\Windows\system32\no
2014-02-19 14:34 - 2014-02-24 20:17 - 00598792 _____ () C:\Windows\system32\perfh008.dat
2014-02-19 14:34 - 2014-02-24 20:17 - 00110996 _____ () C:\Windows\system32\perfc008.dat
2014-02-19 14:34 - 2014-02-19 14:31 - 00369984 _____ () C:\Windows\system32\perfi008.dat
2014-02-19 14:34 - 2014-02-19 14:31 - 00045182 _____ () C:\Windows\system32\perfd008.dat
2014-02-19 14:33 - 2014-02-19 14:33 - 00000000 ____D () C:\Windows\SysWOW64\el
2014-02-19 14:32 - 2014-02-19 14:32 - 00000000 ____D () C:\Windows\system32\el
2014-02-19 13:50 - 2014-02-24 20:17 - 00655524 _____ () C:\Windows\system32\perfh01D.dat
2014-02-19 13:50 - 2014-02-24 20:17 - 00142342 _____ () C:\Windows\system32\perfc01D.dat
2014-02-19 13:50 - 2014-02-19 13:47 - 00294764 _____ () C:\Windows\system32\perfi01D.dat
2014-02-19 13:50 - 2014-02-19 13:47 - 00037052 _____ () C:\Windows\system32\perfd01D.dat
2014-02-19 13:49 - 2014-02-19 13:49 - 00000000 ____D () C:\Windows\SysWOW64\sv
2014-02-19 13:48 - 2014-02-19 13:48 - 00000000 ____D () C:\Windows\system32\sv
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\th-TH
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\th-TH
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\system32\Drivers\th-TH
2014-02-19 13:32 - 2014-02-24 20:17 - 00735302 _____ () C:\Windows\system32\perfh013.dat
2014-02-19 13:32 - 2014-02-24 20:17 - 00152970 _____ () C:\Windows\system32\perfc013.dat
2014-02-19 13:32 - 2014-02-19 13:28 - 00341322 _____ () C:\Windows\system32\perfi013.dat
2014-02-19 13:32 - 2014-02-19 13:28 - 00043068 _____ () C:\Windows\system32\perfd013.dat
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\SysWOW64\nl
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\SysWOW64\0413
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\system32\nl
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\system32\0413
2014-02-19 13:21 - 2014-02-19 13:21 - 00000000 ____D () C:\Windows\lv-LV
2014-02-19 13:20 - 2014-02-19 13:20 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\lv-LV
2014-02-19 13:20 - 2014-02-19 13:20 - 00000000 ____D () C:\Windows\system32\Drivers\lv-LV
2014-02-19 13:13 - 2014-02-19 13:13 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\uk-UA
2014-02-19 13:12 - 2014-02-19 13:12 - 00000000 ____D () C:\Windows\uk-UA
2014-02-19 13:12 - 2014-02-19 13:12 - 00000000 ____D () C:\Windows\system32\Drivers\uk-UA
2014-02-19 13:05 - 2014-02-24 20:17 - 00384148 _____ () C:\Windows\system32\perfh00D.dat
2014-02-19 13:05 - 2014-02-24 20:17 - 00084626 _____ () C:\Windows\system32\perfc00D.dat
2014-02-19 13:05 - 2014-02-19 13:01 - 00229316 _____ () C:\Windows\system32\perfi00D.dat
2014-02-19 13:05 - 2014-02-19 13:01 - 00032166 _____ () C:\Windows\system32\perfd00D.dat
2014-02-19 13:03 - 2014-02-19 17:19 - 00000000 ____D () C:\Windows\system32\Drivers\he-IL
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\SysWOW64\he
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\he-IL
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\system32\he
2014-02-19 13:02 - 2014-02-19 13:02 - 00000000 ____D () C:\Windows\he-IL
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sl-SI
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\system32\Drivers\sl-SI
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\sl-SI
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sk-SK
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\system32\Drivers\sk-SK
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\sk-SK
2014-02-19 07:12 - 2014-02-19 07:12 - 00001164 _____ () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-02-18 12:03 - 2014-02-18 12:03 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-18 09:09 - 2014-02-19 19:49 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-18 09:09 - 2014-02-19 19:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-02-17 22:00 - 2014-02-17 22:00 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-02-17 22:00 - 2014-02-17 22:00 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-02-17 08:54 - 2014-02-17 08:54 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Windows\PCHEALTH
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-02-17 08:52 - 2014-02-17 08:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-02-17 08:51 - 2014-02-17 08:51 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-02-17 08:51 - 2014-02-17 08:51 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-02-17 08:50 - 2014-02-18 13:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-17 08:50 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Microsoft Help
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-02-17 08:47 - 2014-02-17 08:47 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\WinRAR
2014-02-17 08:46 - 2014-02-17 08:46 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-17 07:51 - 2014-02-17 09:00 - 00000000 ____D () C:\Users\Geiger\Desktop\wizard
2014-02-17 07:50 - 2014-02-17 10:36 - 00000000 ____D () C:\ProgramData\Adobe
2014-02-17 07:50 - 2014-02-17 07:50 - 00002023 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-02-17 07:50 - 2014-02-17 07:50 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-02-17 07:49 - 2014-02-17 07:52 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Adobe
2014-02-17 07:23 - 2014-02-24 07:29 - 00000066 _____ () C:\Users\Geiger\AppData\Roaming\WB.CFG
2014-02-16 21:45 - 2014-02-26 09:02 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-16 21:42 - 2014-02-16 21:42 - 00000184 _____ () C:\Windows\LMv4.UNI
2014-02-16 21:42 - 2014-02-16 21:42 - 00000000 ____D () C:\Program Files (x86)\Launch Manager
2014-02-16 21:24 - 2014-02-16 21:27 - 00000000 ____D () C:\Program Files\DivX
2014-02-16 21:24 - 2014-02-16 21:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\DivX
2014-02-16 21:23 - 2014-02-24 20:23 - 00000296 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-16 21:23 - 2014-02-16 21:30 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\sweet-page
2014-02-16 21:23 - 2014-02-16 21:29 - 00000000 ____D () C:\Program Files (x86)\PC Speed Maximizer
2014-02-16 21:23 - 2014-02-16 21:28 - 00000000 ____D () C:\Program Files (x86)\DSP-worx
2014-02-16 21:23 - 2014-02-16 21:27 - 00000000 ____D () C:\ProgramData\DivX
2014-02-16 21:23 - 2014-02-16 21:23 - 00003240 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\LavFilters
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\DigitalSites
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\CDXReader
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ATI
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\Users\Geiger\AppData\Local\ATI
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\ProgramData\ATI
2014-02-16 21:16 - 2014-02-16 21:16 - 00000000 ____D () C:\ProgramData\RegClean
2014-02-16 19:36 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-02-16 19:36 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-02-16 19:35 - 2011-03-17 13:51 - 00003929 _____ () C:\Windows\SysWOW64\atipblup.dat
2014-02-16 19:35 - 2011-03-17 13:51 - 00003929 _____ () C:\Windows\system32\atipblup.dat
2014-02-16 19:34 - 2014-02-16 19:35 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-02-16 19:32 - 2014-02-16 19:32 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-02-16 19:31 - 2014-02-16 19:31 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect
2014-02-16 19:31 - 2011-08-10 07:51 - 00067685 _____ () C:\Windows\system32\athrextx.cat
2014-02-16 19:31 - 2011-08-05 16:33 - 02768384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2014-02-16 19:31 - 2011-08-05 16:33 - 02768384 _____ (Atheros Communications, Inc.) C:\Windows\system32\athrx.sys
2014-02-16 19:27 - 2010-07-20 17:43 - 00247400 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2014-02-16 19:27 - 2010-07-20 17:42 - 09112168 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUStoricon.dll
2014-02-16 19:27 - 2010-07-20 17:42 - 00422504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUStor.dll
2014-02-16 19:17 - 2014-02-16 19:17 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer
2014-02-16 19:17 - 2014-02-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-02-16 19:01 - 2014-02-26 09:01 - 00000284 _____ () C:\Windows\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}.job
2014-02-16 19:01 - 2014-02-16 21:30 - 00000000 ____D () C:\ProgramData\WPM
2014-02-16 19:01 - 2014-02-16 19:06 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\awesomehp
2014-02-16 19:01 - 2014-02-16 19:06 - 00000000 ____D () C:\ProgramData\IePluginService
2014-02-16 19:01 - 2014-02-16 19:06 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-02-16 19:01 - 2014-02-16 19:01 - 00003252 _____ () C:\Windows\System32\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}
2014-02-16 19:00 - 2014-02-19 07:11 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-02-16 18:42 - 2014-02-16 18:42 - 00000456 _____ () C:\Users\Geiger\Desktop\Router-Einstellungen.txt
2014-02-16 18:23 - 2014-02-16 18:23 - 00000000 ____D () C:\ProgramData\Sun
2014-02-16 18:23 - 2014-02-16 18:23 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-16 18:23 - 2014-02-16 18:22 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-16 18:22 - 2014-02-16 18:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-16 17:36 - 2014-02-16 17:36 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\vlc
2014-02-16 17:28 - 2010-11-24 14:24 - 02815592 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-02-16 17:28 - 2010-11-02 09:35 - 00127832 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-02-16 17:28 - 2010-11-02 09:34 - 00421720 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-02-16 17:28 - 2010-11-02 09:34 - 00108888 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-02-16 10:13 - 2013-11-27 00:29 - 05693440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-16 10:13 - 2013-11-26 23:49 - 06573056 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-15 21:51 - 2014-02-15 21:51 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-02-15 20:58 - 2014-02-21 07:18 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Software
2014-02-15 20:58 - 2014-02-20 07:56 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inet Programme
2014-02-15 20:53 - 2014-02-17 09:01 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Zubehör
2014-02-15 20:52 - 2014-02-15 20:52 - 00000000 ____D () C:\ProgramData\OEM
2014-02-15 20:51 - 2014-02-15 20:52 - 00000000 ____D () C:\Program Files\Acer
2014-02-15 20:51 - 2014-02-15 20:51 - 00000000 ____D () C:\ProgramData\Acer
2014-02-15 20:38 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-15 20:38 - 2014-02-15 20:38 - 00000000 ____D () C:\Program Files\ATI
2014-02-15 20:37 - 2014-02-15 21:49 - 00000000 ____D () C:\AMD
2014-02-15 20:30 - 2014-02-15 20:30 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-02-15 20:24 - 2014-02-15 20:25 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-02-15 20:24 - 2014-02-15 20:24 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-02-15 20:24 - 2014-02-15 20:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\TuneUp Software
2014-02-15 20:23 - 2014-02-15 20:23 - 00001089 _____ () C:\Users\Geiger\Desktop\Cheat Engine.lnk
2014-02-15 20:23 - 2014-02-15 20:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\OpenCandy
2014-02-15 20:23 - 2014-02-15 20:23 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3
2014-02-15 20:19 - 2014-02-15 20:19 - 00001029 _____ () C:\Users\Public\Desktop\Biet-O-Matic.lnk
2014-02-15 20:18 - 2014-02-15 20:19 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-02-15 20:18 - 2014-02-15 20:18 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\BOM
2014-02-15 20:18 - 2003-01-07 02:22 - 00015873 _____ () C:\Windows\SysWOW64\Inetde.dll
2014-02-15 20:18 - 2000-12-05 23:00 - 00109248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mswinsck.ocx
2014-02-15 20:18 - 2000-10-01 23:00 - 00125712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb6de.dll
2014-02-15 20:18 - 2000-05-22 15:58 - 00115920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx
2014-02-15 20:18 - 2000-05-21 23:00 - 01066176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mscomctl.ocx
2014-02-15 20:18 - 2000-04-03 19:06 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winskde.dll
2014-02-15 20:18 - 2000-04-03 19:05 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
2014-02-15 20:18 - 1999-07-14 13:07 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stdftde.dll
2014-02-15 20:18 - 1998-07-05 23:00 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mscmcde.dll
2014-02-15 20:18 - 1998-07-05 23:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Tabctde.dll
2014-02-15 20:18 - 1998-06-23 23:00 - 00209192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Tabctl32.ocx
2014-02-15 20:17 - 2014-02-15 20:17 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-15 20:16 - 2014-02-15 20:16 - 00001953 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Canneverbe Limited
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-02-15 20:11 - 2014-02-18 21:53 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Skype
2014-02-15 20:11 - 2014-02-17 07:28 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ICQ-Profile
2014-02-15 20:11 - 2014-02-15 20:11 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-15 20:11 - 2014-02-15 20:11 - 00001771 _____ () C:\Users\Geiger\Desktop\ICQ.lnk
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ICQM
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Skype
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\ProgramData\Skype
2014-02-15 17:33 - 2014-02-15 17:33 - 00000000 ____D () C:\Windows.old
2014-02-15 13:56 - 2014-02-15 13:57 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 13:56 - 2014-02-04 19:09 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 13:55 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-15 13:55 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-15 13:55 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-15 13:55 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-15 13:55 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-15 13:55 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-15 13:55 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-15 13:55 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-02-15 13:55 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-02-15 13:55 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-02-15 13:55 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-15 13:55 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-15 13:55 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-02-15 13:55 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-15 13:55 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-02-15 13:55 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-02-15 13:46 - 2014-02-17 08:02 - 00000000 ____D () C:\Users\Geiger\Documents\Stephie´s Ordner
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Steuer-Sparbuch
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Peter´s Ordner
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Handbücher
2014-02-15 13:44 - 2014-02-15 13:45 - 00000000 ____D () C:\Users\Geiger\Documents\ASV 1935- Jugendleiter-Ordner
2014-02-15 13:44 - 2014-02-15 13:44 - 00000000 ____D () C:\Users\Geiger\Documents\ASV 1935
2014-02-15 13:43 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-15 13:43 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-15 13:42 - 2014-02-15 13:42 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01009.Wdf
2014-02-15 13:42 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-15 13:42 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-15 13:42 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-15 13:42 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-15 13:42 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-15 13:42 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-15 13:42 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-15 13:42 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-15 13:42 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-15 13:42 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-15 13:42 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-15 13:42 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-15 13:42 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-15 13:42 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-15 13:42 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-15 13:42 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-15 13:42 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-15 13:42 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-15 13:42 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-15 13:42 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-15 13:42 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-15 13:42 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-15 13:42 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-15 13:42 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-15 13:42 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-15 13:42 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-15 13:42 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-15 13:42 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-15 13:42 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-15 13:42 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-15 13:42 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-15 13:42 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-15 13:42 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-15 13:42 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-15 13:42 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-15 13:42 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-15 13:42 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-15 13:42 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-15 13:42 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-15 13:41 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-15 13:41 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-15 13:41 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-15 13:41 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-15 13:41 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-15 13:41 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-15 13:41 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-15 13:41 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-15 13:41 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-15 13:41 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-15 13:41 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-15 13:41 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-15 13:41 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-15 13:41 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-15 13:41 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-15 13:41 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-15 13:41 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-15 13:41 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-15 13:41 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-15 13:41 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-15 13:41 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-15 13:41 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-15 13:41 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-15 13:41 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-15 13:41 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-15 13:41 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-15 13:41 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-15 13:41 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-15 13:41 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-15 13:41 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-02-15 13:41 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-02-15 13:39 - 2014-02-15 13:39 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Avira
2014-02-15 13:33 - 2013-12-18 09:32 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-15 13:33 - 2013-12-18 09:32 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-15 13:33 - 2013-12-18 09:32 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-15 13:31 - 2014-02-15 13:33 - 00000000 ____D () C:\ProgramData\Avira
2014-02-15 13:31 - 2014-02-15 13:33 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-15 13:31 - 2014-02-15 13:31 - 00001141 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-02-15 13:30 - 2014-02-15 13:30 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-15 13:27 - 2014-02-23 15:35 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\UseNeXT
2014-02-15 13:27 - 2014-02-15 13:27 - 00001861 _____ () C:\Users\Geiger\Desktop\UseNeXT by Tangysoft.lnk
2014-02-15 13:27 - 2014-02-15 13:27 - 00000000 ____D () C:\Program Files (x86)\UseNeXT
2014-02-15 13:14 - 2014-02-15 13:14 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Macromedia
2014-02-15 13:14 - 2014-02-15 13:14 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Macromedia
2014-02-15 13:06 - 2014-02-24 20:16 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-15 13:06 - 2014-02-21 08:08 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-15 13:06 - 2014-02-21 08:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-15 13:06 - 2014-02-21 08:08 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-15 13:06 - 2014-02-15 13:06 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-02-15 13:06 - 2014-02-15 13:06 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-15 12:24 - 2014-02-16 21:30 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-15 12:24 - 2014-02-16 21:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Mozilla
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Mozilla
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\ProgramData\Mozilla
2014-02-15 12:10 - 2014-02-18 05:53 - 00109280 _____ () C:\Users\Geiger\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-15 12:10 - 2014-02-15 12:10 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Intel Corporation
2014-02-15 12:08 - 2014-02-16 19:32 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2014-02-15 12:08 - 2014-02-15 12:08 - 00000000 ____D () C:\Program Files\Broadcom
2014-02-15 12:05 - 2014-02-15 12:05 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-15 12:03 - 2014-02-15 12:03 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-02-15 12:02 - 2014-02-16 19:33 - 00000352 _____ () C:\Windows\RtlWlanInstall.log
2014-02-15 12:02 - 2014-02-16 19:33 - 00000000 ____D () C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
2014-02-15 12:02 - 2010-08-09 15:02 - 01113192 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192se.sys
2014-02-15 12:02 - 2009-02-05 02:49 - 00451072 _____ () C:\Windows\SysWOW64\ISSRemoveSP.exe
2014-02-15 11:53 - 2014-02-16 19:29 - 00000000 ____D () C:\Windows\SysWOW64\Atheros_L1e
2014-02-15 11:52 - 2010-10-04 13:02 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-02-15 11:51 - 2010-12-10 11:35 - 00003206 _____ () C:\Windows\system32\Drivers\RtPCEE4.DAT
2014-02-15 11:51 - 2010-11-29 08:17 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX0.dat
2014-02-15 11:51 - 2010-09-23 17:21 - 00039672 _____ () C:\Windows\system32\Drivers\RtPCEE3.DAT
2014-02-15 11:51 - 2010-03-22 13:21 - 00247560 _____ () C:\Windows\system32\Drivers\RTConvEQ.dat
2014-02-15 11:51 - 2010-03-22 13:21 - 00001448 _____ () C:\Windows\system32\Drivers\RtHdatEx.dat
2014-02-15 11:51 - 2010-03-15 16:59 - 00000024 _____ () C:\Windows\system32\Drivers\rtkhdaud.dat
2014-02-15 11:51 - 2010-02-11 15:45 - 00000176 _____ () C:\Windows\system32\Drivers\RTHDAEQ1.dat
2014-02-15 11:51 - 2010-01-26 21:52 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX3.dat
2014-02-15 11:51 - 2008-08-21 13:43 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX2.dat
2014-02-15 11:51 - 2005-06-27 05:29 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX1.dat
2014-02-15 11:50 - 2010-12-23 04:06 - 00008192 _____ () C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-02-15 11:49 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-02-15 11:49 - 2014-02-15 11:49 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\InstallShield
2014-02-15 11:49 - 2011-01-12 17:51 - 00439320 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys
2014-02-15 11:48 - 2014-02-15 11:48 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-02-15 11:16 - 2014-02-20 17:43 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-15 11:16 - 2014-02-16 19:27 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-02-15 11:15 - 2014-02-15 11:15 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-02-15 09:54 - 2014-02-17 07:52 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Adobe
2014-02-15 09:54 - 2014-02-16 17:47 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-15 09:54 - 2014-02-15 09:54 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-15 09:53 - 2014-02-15 09:53 - 00000020 ___SH () C:\Users\Geiger\ntuser.ini
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Vorlagen
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Startmenü
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Netzwerkumgebung
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Lokale Einstellungen
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Eigene Dateien
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Druckumgebung
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Documents\Eigene Musik
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Documents\Eigene Bilder
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Local\Verlauf
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Local\Anwendungsdaten
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Anwendungsdaten
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 ____D () C:\Users\Geiger\AppData\Local\VirtualStore
2014-02-15 09:53 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-15 09:52 - 2014-02-26 08:56 - 00000000 ____D () C:\Users\Geiger
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-02-15 08:54 - 2014-02-24 20:33 - 01671765 _____ () C:\Windows\WindowsUpdate.log
2014-02-15 08:52 - 2014-02-15 08:52 - 00000000 ____D () C:\Windows\CSC
2014-02-15 08:21 - 2014-02-15 08:21 - 00000000 _____ () C:\END
2014-01-29 23:02 - 2014-01-29 23:02 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 01981696 _____ () C:\Windows\system32\iglhxa64.cpa
2014-01-29 23:02 - 2014-01-29 23:02 - 00963452 _____ () C:\Windows\SysWOW64\igcodeckrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00963452 _____ () C:\Windows\system32\igcodeckrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00279000 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00272928 _____ () C:\Windows\SysWOW64\igvpkrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00272928 _____ () C:\Windows\system32\igvpkrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00059104 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00058796 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00058109 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00001074 _____ () C:\Windows\system32\iglhxa64.vp
2014-01-29 23:02 - 2011-08-09 01:25 - 06322688 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2014-01-29 23:02 - 2011-08-09 01:11 - 12339712 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-01-29 23:02 - 2011-08-09 00:53 - 00375808 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-01-29 23:02 - 2011-08-09 00:53 - 00062464 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2014-01-29 23:02 - 2011-08-09 00:53 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-01-29 23:02 - 2011-08-09 00:52 - 09014784 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-01-29 23:02 - 2011-08-09 00:52 - 00390144 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-01-29 23:02 - 2011-08-09 00:52 - 00110080 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
==================== One Month Modified Files and Folders =======

2014-02-26 17:52 - 2014-02-26 08:33 - 00000000 ____D () C:\Users\Geiger\Portrait Professional Studio 9
2014-02-26 17:52 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-26 09:02 - 2014-02-16 21:45 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-26 09:01 - 2014-02-16 19:01 - 00000284 _____ () C:\Windows\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}.job
2014-02-26 09:00 - 2014-02-26 08:59 - 00000000 ____D () C:\FRST
2014-02-26 08:59 - 2009-07-14 05:51 - 00043282 _____ () C:\Windows\setupact.log
2014-02-26 08:56 - 2014-02-15 09:52 - 00000000 ____D () C:\Users\Geiger
2014-02-26 08:56 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-24 20:33 - 2014-02-15 08:54 - 01671765 _____ () C:\Windows\WindowsUpdate.log
2014-02-24 20:23 - 2014-02-16 21:23 - 00000296 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-24 20:17 - 2014-02-20 17:45 - 00470818 _____ () C:\Windows\system32\perfh001.dat
2014-02-24 20:17 - 2014-02-20 17:45 - 00094640 _____ () C:\Windows\system32\perfc001.dat
2014-02-24 20:17 - 2014-02-19 16:45 - 00501218 _____ () C:\Windows\system32\perfh006.dat
2014-02-24 20:17 - 2014-02-19 16:45 - 00098526 _____ () C:\Windows\system32\perfc006.dat
2014-02-24 20:17 - 2014-02-19 16:11 - 00720822 _____ () C:\Windows\system32\prfh0816.dat
2014-02-24 20:17 - 2014-02-19 16:11 - 00152774 _____ () C:\Windows\system32\prfc0816.dat
2014-02-24 20:17 - 2014-02-19 16:00 - 00732162 _____ () C:\Windows\system32\perfh015.dat
2014-02-24 20:17 - 2014-02-19 16:00 - 00155740 _____ () C:\Windows\system32\perfc015.dat
2014-02-24 20:17 - 2014-02-19 15:48 - 00648486 _____ () C:\Windows\system32\perfh01F.dat
2014-02-24 20:17 - 2014-02-19 15:48 - 00139868 _____ () C:\Windows\system32\perfc01F.dat
2014-02-24 20:17 - 2014-02-19 14:58 - 00716404 _____ () C:\Windows\system32\perfh019.dat
2014-02-24 20:17 - 2014-02-19 14:58 - 00150710 _____ () C:\Windows\system32\perfc019.dat
2014-02-24 20:17 - 2014-02-19 14:46 - 00486318 _____ () C:\Windows\system32\perfh014.dat
2014-02-24 20:17 - 2014-02-19 14:46 - 00095272 _____ () C:\Windows\system32\perfc014.dat
2014-02-24 20:17 - 2014-02-19 14:34 - 00598792 _____ () C:\Windows\system32\perfh008.dat
2014-02-24 20:17 - 2014-02-19 14:34 - 00110996 _____ () C:\Windows\system32\perfc008.dat
2014-02-24 20:17 - 2014-02-19 13:50 - 00655524 _____ () C:\Windows\system32\perfh01D.dat
2014-02-24 20:17 - 2014-02-19 13:50 - 00142342 _____ () C:\Windows\system32\perfc01D.dat
2014-02-24 20:17 - 2014-02-19 13:32 - 00735302 _____ () C:\Windows\system32\perfh013.dat
2014-02-24 20:17 - 2014-02-19 13:32 - 00152970 _____ () C:\Windows\system32\perfc013.dat
2014-02-24 20:17 - 2014-02-19 13:05 - 00384148 _____ () C:\Windows\system32\perfh00D.dat
2014-02-24 20:17 - 2014-02-19 13:05 - 00084626 _____ () C:\Windows\system32\perfc00D.dat
2014-02-24 20:17 - 2014-01-13 19:45 - 00737260 _____ () C:\Windows\system32\perfh00A.dat
2014-02-24 20:17 - 2014-01-13 19:45 - 00158342 _____ () C:\Windows\system32\perfc00A.dat
2014-02-24 20:17 - 2014-01-13 19:43 - 00731850 _____ () C:\Windows\system32\perfh010.dat
2014-02-24 20:17 - 2014-01-13 19:43 - 00146714 _____ () C:\Windows\system32\perfc010.dat
2014-02-24 20:17 - 2014-01-13 19:41 - 00699342 _____ () C:\Windows\system32\perfh007.dat
2014-02-24 20:17 - 2014-01-13 19:41 - 00149450 _____ () C:\Windows\system32\perfc007.dat
2014-02-24 20:17 - 2014-01-13 19:39 - 00737520 _____ () C:\Windows\system32\perfh00C.dat
2014-02-24 20:17 - 2014-01-13 19:39 - 00149448 _____ () C:\Windows\system32\perfc00C.dat
2014-02-24 20:17 - 2014-01-13 19:37 - 00705684 _____ () C:\Windows\system32\prfh0416.dat
2014-02-24 20:17 - 2014-01-13 19:37 - 00147524 _____ () C:\Windows\system32\prfc0416.dat
2014-02-24 20:17 - 2009-07-14 06:13 - 13143578 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-24 20:16 - 2014-02-15 13:06 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-24 07:32 - 2009-07-14 05:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-24 07:32 - 2009-07-14 05:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-24 07:29 - 2014-02-17 07:23 - 00000066 _____ () C:\Users\Geiger\AppData\Roaming\WB.CFG
2014-02-23 15:35 - 2014-02-15 13:27 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\UseNeXT
2014-02-21 12:23 - 2014-01-13 20:51 - 12845082 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-21 12:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-02-21 12:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-21 12:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\he-IL
2014-02-21 12:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\he-IL
2014-02-21 12:15 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\ar-SA
2014-02-21 12:15 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-02-21 08:45 - 2014-02-21 08:45 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-02-21 08:25 - 2014-02-21 08:25 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-02-21 08:25 - 2014-02-21 08:25 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-02-21 08:08 - 2014-02-15 13:06 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 08:08 - 2014-02-15 13:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 08:08 - 2014-02-15 13:06 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-21 07:18 - 2014-02-15 20:58 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Software
2014-02-20 21:28 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\system32\Drivers\ar-SA
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\uk-UA
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\th-TH
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sr-Latn-CS
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sl-SI
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\ro-RO
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\lv-LV
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\lt-LT
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\hr-HR
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\et-EE
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\bg-BG
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\th-TH
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\et-EE
2014-02-20 20:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-02-20 17:49 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\ar-SA
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Windows\SysWOW64\ar
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-02-20 17:43 - 2014-02-15 11:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-20 17:43 - 2014-01-13 19:37 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-02-20 17:43 - 2011-04-12 09:28 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-20 17:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-02-20 17:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\servicing
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-20 17:42 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\system32\ar
2014-02-20 17:42 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\ar-SA
2014-02-20 17:42 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\system32\winrm
2014-02-20 17:42 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\system32\WCN
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\IME
2014-02-20 17:41 - 2014-02-20 17:45 - 00289060 _____ () C:\Windows\system32\perfi001.dat
2014-02-20 17:41 - 2014-02-20 17:45 - 00042056 _____ () C:\Windows\system32\perfd001.dat
2014-02-20 07:56 - 2014-02-15 20:58 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inet Programme
2014-02-19 19:49 - 2014-02-18 09:09 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-19 19:48 - 2014-02-18 09:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-02-19 17:19 - 2014-02-19 15:46 - 00000000 ____D () C:\Windows\system32\Drivers\tr-TR
2014-02-19 17:19 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\system32\Drivers\he-IL
2014-02-19 16:43 - 2014-02-19 16:43 - 00000000 ____D () C:\Windows\SysWOW64\da
2014-02-19 16:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-02-19 16:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-02-19 16:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\system32\slmgr
2014-02-19 16:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-02-19 16:42 - 2014-02-19 16:42 - 00000000 ____D () C:\Windows\system32\da
2014-02-19 16:42 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-02-19 16:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\com
2014-02-19 16:41 - 2014-02-19 16:45 - 00306636 _____ () C:\Windows\system32\perfi006.dat
2014-02-19 16:41 - 2014-02-19 16:45 - 00039236 _____ () C:\Windows\system32\perfd006.dat
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\ro-RO
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\system32\Drivers\ro-RO
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\ro-RO
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\hr-HR
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\system32\Drivers\hr-HR
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\hr-HR
2014-02-19 16:09 - 2014-02-19 16:09 - 00000000 ____D () C:\Windows\SysWOW64\pt
2014-02-19 16:09 - 2014-02-19 16:09 - 00000000 ____D () C:\Windows\system32\pt
2014-02-19 16:08 - 2014-02-19 16:11 - 00336656 _____ () C:\Windows\system32\prfi0816.dat
2014-02-19 16:08 - 2014-02-19 16:11 - 00040548 _____ () C:\Windows\system32\prfd0816.dat
2014-02-19 15:58 - 2014-02-19 15:58 - 00000000 ____D () C:\Windows\SysWOW64\pl
2014-02-19 15:57 - 2014-02-19 16:00 - 00337158 _____ () C:\Windows\system32\perfi015.dat
2014-02-19 15:57 - 2014-02-19 16:00 - 00038710 _____ () C:\Windows\system32\perfd015.dat
2014-02-19 15:57 - 2014-02-19 15:57 - 00000000 ____D () C:\Windows\system32\pl
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\tr-TR
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\SysWOW64\tr
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\tr-TR
2014-02-19 15:46 - 2014-02-19 15:46 - 00000000 ____D () C:\Windows\system32\tr
2014-02-19 15:45 - 2014-02-19 15:48 - 00285034 _____ () C:\Windows\system32\perfi01F.dat
2014-02-19 15:45 - 2014-02-19 15:48 - 00037160 _____ () C:\Windows\system32\perfd01F.dat
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\bg-BG
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\system32\Drivers\bg-BG
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\bg-BG
2014-02-19 15:26 - 2014-02-19 15:26 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sr-Latn-CS
2014-02-19 15:26 - 2014-02-19 15:26 - 00000000 ____D () C:\Windows\sr-Latn-CS
2014-02-19 15:25 - 2014-02-19 15:25 - 00000000 ____D () C:\Windows\system32\Drivers\sr-Latn-CS
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\et-EE
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\system32\Drivers\et-EE
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\et-EE
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\lt-LT
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\system32\Drivers\lt-LT
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\lt-LT
2014-02-19 14:57 - 2014-02-19 14:57 - 00000000 ____D () C:\Windows\SysWOW64\ru
2014-02-19 14:56 - 2014-02-19 14:56 - 00000000 ____D () C:\Windows\system32\ru
2014-02-19 14:55 - 2014-02-19 14:58 - 00336704 _____ () C:\Windows\system32\perfi019.dat
2014-02-19 14:55 - 2014-02-19 14:58 - 00039446 _____ () C:\Windows\system32\perfd019.dat
2014-02-19 14:45 - 2014-02-19 14:45 - 00000000 ____D () C:\Windows\SysWOW64\no
2014-02-19 14:44 - 2014-02-19 14:44 - 00000000 ____D () C:\Windows\system32\no
2014-02-19 14:43 - 2014-02-19 14:46 - 00298300 _____ () C:\Windows\system32\perfi014.dat
2014-02-19 14:43 - 2014-02-19 14:46 - 00036156 _____ () C:\Windows\system32\perfd014.dat
2014-02-19 14:33 - 2014-02-19 14:33 - 00000000 ____D () C:\Windows\SysWOW64\el
2014-02-19 14:32 - 2014-02-19 14:32 - 00000000 ____D () C:\Windows\system32\el
2014-02-19 14:31 - 2014-02-19 14:34 - 00369984 _____ () C:\Windows\system32\perfi008.dat
2014-02-19 14:31 - 2014-02-19 14:34 - 00045182 _____ () C:\Windows\system32\perfd008.dat
2014-02-19 13:49 - 2014-02-19 13:49 - 00000000 ____D () C:\Windows\SysWOW64\sv
2014-02-19 13:48 - 2014-02-19 13:48 - 00000000 ____D () C:\Windows\system32\sv
2014-02-19 13:47 - 2014-02-19 13:50 - 00294764 _____ () C:\Windows\system32\perfi01D.dat
2014-02-19 13:47 - 2014-02-19 13:50 - 00037052 _____ () C:\Windows\system32\perfd01D.dat
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\th-TH
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\th-TH
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\system32\Drivers\th-TH
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\SysWOW64\nl
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\SysWOW64\0413
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\system32\nl
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\system32\0413
2014-02-19 13:30 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-02-19 13:30 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-02-19 13:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-02-19 13:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-02-19 13:29 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-02-19 13:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-02-19 13:28 - 2014-02-19 13:32 - 00341322 _____ () C:\Windows\system32\perfi013.dat
2014-02-19 13:28 - 2014-02-19 13:32 - 00043068 _____ () C:\Windows\system32\perfd013.dat
2014-02-19 13:21 - 2014-02-19 13:21 - 00000000 ____D () C:\Windows\lv-LV
2014-02-19 13:20 - 2014-02-19 13:20 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\lv-LV
2014-02-19 13:20 - 2014-02-19 13:20 - 00000000 ____D () C:\Windows\system32\Drivers\lv-LV
2014-02-19 13:13 - 2014-02-19 13:13 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\uk-UA
2014-02-19 13:12 - 2014-02-19 13:12 - 00000000 ____D () C:\Windows\uk-UA
2014-02-19 13:12 - 2014-02-19 13:12 - 00000000 ____D () C:\Windows\system32\Drivers\uk-UA
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\SysWOW64\he
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\he-IL
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\system32\he
2014-02-19 13:02 - 2014-02-19 13:02 - 00000000 ____D () C:\Windows\he-IL
2014-02-19 13:01 - 2014-02-19 13:05 - 00229316 _____ () C:\Windows\system32\perfi00D.dat
2014-02-19 13:01 - 2014-02-19 13:05 - 00032166 _____ () C:\Windows\system32\perfd00D.dat
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sl-SI
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\system32\Drivers\sl-SI
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\sl-SI
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sk-SK
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\system32\Drivers\sk-SK
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\sk-SK
2014-02-19 07:12 - 2014-02-19 07:12 - 00001164 _____ () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-02-19 07:11 - 2014-02-16 19:00 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-02-18 21:53 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Skype
2014-02-18 13:02 - 2014-02-17 08:50 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-18 12:58 - 2009-07-14 03:34 - 00000478 _____ () C:\Windows\win.ini
2014-02-18 12:03 - 2014-02-18 12:03 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-18 05:53 - 2014-02-15 12:10 - 00109280 _____ () C:\Users\Geiger\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-18 05:52 - 2009-07-14 05:45 - 00418992 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-18 05:51 - 2010-11-21 04:47 - 00096318 _____ () C:\Windows\PFRO.log
2014-02-17 22:00 - 2014-02-17 22:00 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-02-17 22:00 - 2014-02-17 22:00 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-02-17 10:36 - 2014-02-17 07:50 - 00000000 ____D () C:\ProgramData\Adobe
2014-02-17 09:01 - 2014-02-15 20:53 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Zubehör
2014-02-17 09:00 - 2014-02-17 07:51 - 00000000 ____D () C:\Users\Geiger\Desktop\wizard
2014-02-17 08:54 - 2014-02-17 08:54 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Windows\PCHEALTH
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-02-17 08:53 - 2014-02-17 08:50 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-17 08:53 - 2011-04-12 09:28 - 00000000 ____D () C:\Windows\ShellNew
2014-02-17 08:53 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-02-17 08:53 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-02-17 08:52 - 2014-02-17 08:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-02-17 08:51 - 2014-02-17 08:51 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-02-17 08:51 - 2014-02-17 08:51 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Microsoft Help
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-02-17 08:47 - 2014-02-17 08:47 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\WinRAR
2014-02-17 08:46 - 2014-02-17 08:46 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-17 08:02 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Stephie´s Ordner
2014-02-17 07:52 - 2014-02-17 07:49 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Adobe
2014-02-17 07:52 - 2014-02-15 09:54 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Adobe
2014-02-17 07:50 - 2014-02-17 07:50 - 00002023 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-02-17 07:50 - 2014-02-17 07:50 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-02-17 07:28 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ICQ-Profile
2014-02-16 21:42 - 2014-02-16 21:42 - 00000184 _____ () C:\Windows\LMv4.UNI
2014-02-16 21:42 - 2014-02-16 21:42 - 00000000 ____D () C:\Program Files (x86)\Launch Manager
2014-02-16 21:30 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\sweet-page
2014-02-16 21:30 - 2014-02-16 19:01 - 00000000 ____D () C:\ProgramData\WPM
2014-02-16 21:30 - 2014-02-15 12:24 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-16 21:29 - 2014-02-16 21:23 - 00000000 ____D () C:\Program Files (x86)\PC Speed Maximizer
2014-02-16 21:28 - 2014-02-16 21:23 - 00000000 ____D () C:\Program Files (x86)\DSP-worx
2014-02-16 21:27 - 2014-02-16 21:24 - 00000000 ____D () C:\Program Files\DivX
2014-02-16 21:27 - 2014-02-16 21:23 - 00000000 ____D () C:\ProgramData\DivX
2014-02-16 21:24 - 2014-02-16 21:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\DivX
2014-02-16 21:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-16 21:23 - 2014-02-16 21:23 - 00003240 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\LavFilters
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\DigitalSites
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\CDXReader
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ATI
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\Users\Geiger\AppData\Local\ATI
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\ProgramData\ATI
2014-02-16 21:16 - 2014-02-16 21:16 - 00000000 ____D () C:\ProgramData\RegClean
2014-02-16 19:36 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-02-16 19:36 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-02-16 19:36 - 2014-02-15 20:38 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-16 19:36 - 2014-02-15 11:49 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-02-16 19:35 - 2014-02-16 19:34 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-02-16 19:33 - 2014-02-15 12:02 - 00000352 _____ () C:\Windows\RtlWlanInstall.log
2014-02-16 19:33 - 2014-02-15 12:02 - 00000000 ____D () C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
2014-02-16 19:32 - 2014-02-16 19:32 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-02-16 19:32 - 2014-02-15 12:08 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2014-02-16 19:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-16 19:31 - 2014-02-16 19:31 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect
2014-02-16 19:29 - 2014-02-15 11:53 - 00000000 ____D () C:\Windows\SysWOW64\Atheros_L1e
2014-02-16 19:27 - 2014-02-15 11:16 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-02-16 19:17 - 2014-02-16 19:17 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer
2014-02-16 19:17 - 2014-02-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-02-16 19:06 - 2014-02-16 19:01 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\awesomehp
2014-02-16 19:06 - 2014-02-16 19:01 - 00000000 ____D () C:\ProgramData\IePluginService
2014-02-16 19:06 - 2014-02-16 19:01 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-02-16 19:01 - 2014-02-16 19:01 - 00003252 _____ () C:\Windows\System32\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}
2014-02-16 18:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-16 18:42 - 2014-02-16 18:42 - 00000456 _____ () C:\Users\Geiger\Desktop\Router-Einstellungen.txt
2014-02-16 18:23 - 2014-02-16 18:23 - 00000000 ____D () C:\ProgramData\Sun
2014-02-16 18:23 - 2014-02-16 18:23 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-16 18:22 - 2014-02-16 18:23 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-16 18:22 - 2014-02-16 18:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-16 17:47 - 2014-02-15 09:54 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-16 17:36 - 2014-02-16 17:36 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\vlc
2014-02-15 21:51 - 2014-02-15 21:51 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-02-15 21:49 - 2014-02-15 20:37 - 00000000 ____D () C:\AMD
2014-02-15 20:52 - 2014-02-15 20:52 - 00000000 ____D () C:\ProgramData\OEM
2014-02-15 20:52 - 2014-02-15 20:51 - 00000000 ____D () C:\Program Files\Acer
2014-02-15 20:51 - 2014-02-15 20:51 - 00000000 ____D () C:\ProgramData\Acer
2014-02-15 20:38 - 2014-02-15 20:38 - 00000000 ____D () C:\Program Files\ATI
2014-02-15 20:30 - 2014-02-15 20:30 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-02-15 20:25 - 2014-02-15 20:24 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-02-15 20:24 - 2014-02-15 20:24 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-02-15 20:24 - 2014-02-15 20:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\TuneUp Software
2014-02-15 20:23 - 2014-02-15 20:23 - 00001089 _____ () C:\Users\Geiger\Desktop\Cheat Engine.lnk
2014-02-15 20:23 - 2014-02-15 20:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\OpenCandy
2014-02-15 20:23 - 2014-02-15 20:23 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3
2014-02-15 20:19 - 2014-02-15 20:19 - 00001029 _____ () C:\Users\Public\Desktop\Biet-O-Matic.lnk
2014-02-15 20:19 - 2014-02-15 20:18 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-02-15 20:18 - 2014-02-15 20:18 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\BOM
2014-02-15 20:17 - 2014-02-15 20:17 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-15 20:16 - 2014-02-15 20:16 - 00001953 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Canneverbe Limited
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-02-15 20:11 - 2014-02-15 20:11 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-15 20:11 - 2014-02-15 20:11 - 00001771 _____ () C:\Users\Geiger\Desktop\ICQ.lnk
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ICQM
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Skype
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\ProgramData\Skype
2014-02-15 17:50 - 2011-10-20 10:07 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-02-15 17:50 - 2009-07-14 06:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-02-15 17:50 - 2009-07-14 06:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-02-15 17:49 - 2009-07-14 05:45 - 00000000 ____D () C:\Windows\Setup
2014-02-15 17:33 - 2014-02-15 17:33 - 00000000 ____D () C:\Windows.old
2014-02-15 13:57 - 2014-02-15 13:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Steuer-Sparbuch
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Peter´s Ordner
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Handbücher
2014-02-15 13:45 - 2014-02-15 13:44 - 00000000 ____D () C:\Users\Geiger\Documents\ASV 1935- Jugendleiter-Ordner
2014-02-15 13:44 - 2014-02-15 13:44 - 00000000 ____D () C:\Users\Geiger\Documents\ASV 1935
2014-02-15 13:42 - 2014-02-15 13:42 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01009.Wdf
2014-02-15 13:39 - 2014-02-15 13:39 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Avira
2014-02-15 13:33 - 2014-02-15 13:31 - 00000000 ____D () C:\ProgramData\Avira
2014-02-15 13:33 - 2014-02-15 13:31 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-15 13:31 - 2014-02-15 13:31 - 00001141 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-02-15 13:30 - 2014-02-15 13:30 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-15 13:27 - 2014-02-15 13:27 - 00001861 _____ () C:\Users\Geiger\Desktop\UseNeXT by Tangysoft.lnk
2014-02-15 13:27 - 2014-02-15 13:27 - 00000000 ____D () C:\Program Files (x86)\UseNeXT
2014-02-15 13:14 - 2014-02-15 13:14 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Macromedia
2014-02-15 13:14 - 2014-02-15 13:14 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Macromedia
2014-02-15 13:06 - 2014-02-15 13:06 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-02-15 13:06 - 2014-02-15 13:06 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Mozilla
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Mozilla
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\ProgramData\Mozilla
2014-02-15 12:10 - 2014-02-15 12:10 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Intel Corporation
2014-02-15 12:08 - 2014-02-15 12:08 - 00000000 ____D () C:\Program Files\Broadcom
2014-02-15 12:05 - 2014-02-15 12:05 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-15 12:03 - 2014-02-15 12:03 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-02-15 11:49 - 2014-02-15 11:49 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\InstallShield
2014-02-15 11:48 - 2014-02-15 11:48 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-02-15 11:16 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\restore
2014-02-15 11:15 - 2014-02-15 11:15 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-02-15 09:54 - 2014-02-15 09:54 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-15 09:53 - 2014-02-15 09:53 - 00000020 ___SH () C:\Users\Geiger\ntuser.ini
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Vorlagen
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Startmenü
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Netzwerkumgebung
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Lokale Einstellungen
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Eigene Dateien
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Druckumgebung
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Documents\Eigene Musik
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Documents\Eigene Bilder
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Local\Verlauf
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Local\Anwendungsdaten
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Anwendungsdaten
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 ____D () C:\Users\Geiger\AppData\Local\VirtualStore
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-02-15 09:29 - 2013-05-16 09:47 - 00000000 __SHD () C:\Recovery
2014-02-15 09:29 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-15 09:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-02-15 09:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-02-15 09:25 - 2014-01-14 05:45 - 00000000 ____D () C:\Windows\Panther
2014-02-15 09:07 - 2009-07-14 05:51 - 00000275 _____ () C:\Windows\setuperr.log
2014-02-15 08:55 - 2009-07-14 05:46 - 00003806 _____ () C:\Windows\DtcInstall.log
2014-02-15 08:54 - 2014-01-13 20:48 - 00003652 _____ () C:\Windows\TSSysprep.log
2014-02-15 08:52 - 2014-02-15 08:52 - 00000000 ____D () C:\Windows\CSC
2014-02-15 08:21 - 2014-02-15 08:21 - 00000000 _____ () C:\END
2014-02-06 13:16 - 2014-02-15 13:42 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-15 13:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-15 13:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-15 13:42 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-15 13:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-15 13:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-15 13:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-15 13:42 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-15 13:42 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-15 13:42 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-15 13:42 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-15 13:42 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-15 13:42 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-15 13:42 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-15 13:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-15 13:42 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-15 13:42 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-15 13:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-15 13:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-15 13:42 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-15 13:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-15 13:42 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-15 13:42 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-15 13:42 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-15 13:42 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-15 13:42 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-15 13:42 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-15 13:42 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-15 13:42 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-15 13:42 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-15 13:42 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-15 13:42 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-15 13:42 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-15 13:42 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-15 13:42 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-15 13:42 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-15 13:42 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-15 13:42 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-15 13:42 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-04 19:09 - 2014-02-15 13:56 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 01981696 _____ () C:\Windows\system32\iglhxa64.cpa
2014-01-29 23:02 - 2014-01-29 23:02 - 00963452 _____ () C:\Windows\SysWOW64\igcodeckrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00963452 _____ () C:\Windows\system32\igcodeckrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00279000 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00272928 _____ () C:\Windows\SysWOW64\igvpkrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00272928 _____ () C:\Windows\system32\igvpkrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00059104 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00058796 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00058109 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00001074 _____ () C:\Windows\system32\iglhxa64.vp

Some content of TEMP:
====================
C:\Users\Geiger\AppData\Local\Temp\avgnt.exe
C:\Users\Geiger\AppData\Local\Temp\bitool.dll
C:\Users\Geiger\AppData\Local\Temp\blindbatSetup.exe
C:\Users\Geiger\AppData\Local\Temp\FixMyRegistry.exe
C:\Users\Geiger\AppData\Local\Temp\PrefJsonCpp.exe
C:\Users\Geiger\AppData\Local\Temp\smt_awesomehp_new.exe
C:\Users\Geiger\AppData\Local\Temp\SpeedUpMyComputer.exe
C:\Users\Geiger\AppData\Local\Temp\sqlite3.exe
C:\Users\Geiger\AppData\Local\Temp\v-bates.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-19 14:20

==================== End Of Log ============================

--- --- ---

Raubkatze21 · 26.02.2014, 20:45

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-02-2014
Ran by Geiger at 2014-02-26 09:02:37
Running from E:\
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3000 - Acer Incorporated)
Acer System Information (HKLM-x32\...\{72199E33-4F2A-4B7F-8E25-95DDDD50A678}) (Version: 1.0.0 - Acer)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3502 - Acer Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 2.5.775.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{EA4954FD-C685-1C7D-16F3-9BC2FD5E6BD3}) (Version: 3.0.847.0 - Advanced Micro Devices, Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
Avira (HKLM-x32\...\{166a49c9-9f8d-4d64-a131-ff053b76a081}) (Version: 1.0.5142.23462 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.0.5142.23462 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.338 - Avira)
Biet-O-Matic v2.14.12 (HKLM-x32\...\Biet-O-Matic v2.14.12) (Version: 2.14.12 - BOM Development Team)
BRAdmin Professional 3 (HKLM-x32\...\{75C885D4-C758-4896-A3B4-90DA34B44C31}) (Version: 3.51.0007 - Brother)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.100.235.19 - Broadcom Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center (x32 Version: 2011.1013.754.12275 - Ihr Firmenname) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.1013.754.12275 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.1013.754.12275 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2011.1013.754.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2011.1013.0753.12275 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2011.1013.754.12275 - Advanced Micro Devices, Inc.) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4478 - CDBurnerXP)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{3823EC5A-1CA4-42CA-9D5B-F94ABD65410D}) (Version:  - Microsoft)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
ICQ 8.2 (build 6901) (HKCU\...\ICQ) (Version: 8.2.6901.0 - ICQ)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 5.0.3 - Acer Inc.)
Microsoft .NET Framework 4.5.1 (ARA) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DAN) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (dansk) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1030) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (ELL) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (ESN) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (FRA) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HEB) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{7E59919F-564E-3FB5-B1FC-884251B18B06}) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (ITA) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Italiano) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (NLD) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (NOR) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (PLK) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Português) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2070) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (PTB) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (PTG) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (RUS) (Version: 4.5.51078 - Корпорация Майкрософт) Hidden
Microsoft .NET Framework 4.5.1 (SVE) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (svenska) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1053) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (TRK) (Version: 4.5.51078 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Ελληνικά) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1032) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.5.51078 - Корпорация Майкрософт)
Microsoft .NET Framework 4.5.1 (עברית) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1037) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (العربية) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1025) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1, norsk språkpakke (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1044) (Version: 4.5.51078 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Qualcomm Atheros Fast Reconnect (HKLM-x32\...\{0CA2063D-D43F-41F2-A8AC-A3C4A4C722D2}) (Version: 1.0 - QualComm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30123 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.10.0909 - REALTEK Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.26.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0 - Renesas Electronics Corporation) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Skype™ 6.13 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.13.104 - Skype Technologies S.A.)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{59446CD0-D49A-4154-BDD5-59CB3B6F89AC}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{1AA82E2E-7DB7-4C70-910C-BBB657A6B3A5}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{B6AD7E27-012A-4B63-82BA-AF62893E5435}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837583) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{FF62F7C1-9491-457C-BBAE-DBC6FD1DB968}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837583) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{FF62F7C1-9491-457C-BBAE-DBC6FD1DB968}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{64D96F30-CF4C-4CCE-AAF2-F8909348BF35}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{BA61259D-63F0-4177-A0E1-E4064EC2B470}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{9F6507AC-7D8F-46C1-B90F-59C7828E0E0D}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUS_{B2508D75-61CF-4CC0-84C0-CF257219201D}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DDDC32A5-9528-4771-B91A-97A8E1D7957B}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{6164E0E5-C903-488C-93AF-1B7AF7EBC331}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BEA3259E-14B5-4D89-87FF-ED9F1D0D81C8}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{BE1D254A-E5CD-4E76-9BE8-7B2E5FDBA6AF}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{DF33B92A-5381-4F03-AB54-2D67086B357E}) (Version:  - Microsoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version:  - Tangysoft Ltd.)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================

19-02-2014 16:09:47 Windows Update
19-02-2014 20:56:36 Windows Update
20-02-2014 06:02:30 Windows Update
20-02-2014 16:22:16 Windows Update
20-02-2014 18:43:13 Windows Update
20-02-2014 20:22:06 Windows Update
21-02-2014 05:24:34 Windows Update
21-02-2014 06:25:06 Windows Update
21-02-2014 07:14:39 Windows Update
21-02-2014 07:19:42 Windows Update
24-02-2014 19:33:10 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {5FF1B3D4-CD4C-4061-BB7A-65843A3FF6CF} - System32\Tasks\Digital Sites => C:\Users\Geiger\AppData\Roaming\DigitalSites\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {96CB11FD-9479-4506-AFF7-A3D3D9331B21} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)
Task: {CCFA5F5A-E7C0-4652-A36B-E4594950BED6} - System32\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4} => C:\Program Files\V-bates\PrefHelper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\Geiger\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}.job => C:\Program Files\V-bates\PrefHelper.exe

==================== Loaded Modules (whitelisted) =============

2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2014-02-20 17:43 - 2013-05-31 15:02 - 00099328 _____ () C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-10-13 07:52 - 2011-10-13 07:52 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-02-15 13:33 - 2013-12-18 09:32 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-01-29 13:04 - 2014-01-29 13:04 - 00300088 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.NativeCore.dll
2014-02-15 13:33 - 2014-01-29 13:04 - 00039480 _____ () C:\Users\Geiger\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
2014-02-15 13:33 - 2014-01-29 13:04 - 00300088 _____ () C:\Users\Geiger\AppData\Local\Temp\avgnt.exe\Avira.OE.NativeCore.dll
2014-01-29 13:04 - 2014-01-29 13:04 - 00077368 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2014-02-16 19:24 - 2014-02-16 19:24 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\6c712c9be7cce11c0c68039c762ff55a\IsdiInterop.ni.dll
2014-02-15 11:49 - 2011-01-12 17:56 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/26/2014 09:02:18 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/26/2014 07:05:46 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/25/2014 07:15:16 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/25/2014 05:56:40 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/24/2014 07:23:25 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/24/2014 05:57:08 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/23/2014 10:33:10 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000f269
ID des fehlerhaften Prozesses: 0x6bc
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (02/23/2014 10:32:00 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/22/2014 08:04:28 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/22/2014 06:16:47 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (02/26/2014 08:56:02 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Laden der Signaturen wurde von %60 ein Fehler festgestellt. Es wird versucht, einen als gültig bekannten Signatursatz wiederherzustellen.

	Versuchte Signaturen: %24

	Fehlercode: 0x80070002

	Fehlerbeschreibung: Das System kann die angegebene Datei nicht finden. 

	Signaturversion: 0.0.0.0;0.0.0.0

	Modulversion: %600

Error: (02/22/2014 06:17:12 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst ZAtheros Wlan Agent erreicht.

Error: (02/21/2014 00:15:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Internet Explorer 11-Sprachpaket für Windows 7 für x64-basierte Systeme

Error: (02/21/2014 08:45:37 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.167.333.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.4.0304.00

	Quellpfad: 4.4.0304.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (02/21/2014 08:45:37 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.167.333.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.4.0304.00

	Quellpfad: 4.4.0304.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (02/21/2014 08:45:37 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.167.333.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.4.0304.00

	Quellpfad: 4.4.0304.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (02/21/2014 08:28:21 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 0.0.0.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.4.0304.00

	Quellpfad: 4.4.0304.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (02/21/2014 08:28:21 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 0.0.0.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.4.0304.00

	Quellpfad: 4.4.0304.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (02/21/2014 08:28:21 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 0.0.0.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.4.0304.00

	Quellpfad: 4.4.0304.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (02/21/2014 08:17:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8024200d fehlgeschlagen: Sicherheitsupdate für Microsoft .NET Framework 3.5.1 unter Windows 7 und Windows Server 2008 R2 SP1 für x64-basierte Systeme (KB2756921)


Microsoft Office Sessions:
=========================
Error: (02/26/2014 09:02:18 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/26/2014 07:05:46 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/25/2014 07:15:16 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/25/2014 05:56:40 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/24/2014 07:23:25 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/24/2014 05:57:08 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/23/2014 10:33:10 AM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4ntdll.dll6.1.7601.18247521eaf24c0000005000000000000f2696bc01cf3079c6a63b7bC:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll82072300-9c6d-11e3-9d7f-dc0ea11c182a

Error: (02/23/2014 10:32:00 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/22/2014 08:04:28 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/22/2014 06:16:47 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info =========================== 

Percentage of memory in use: 30%
Total physical RAM: 5995.86 MB
Available physical RAM: 4175.38 MB
Total Pagefile: 11989.9 MB
Available Pagefile: 9832.78 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:449.66 GB) (Free:326.92 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (MIGHTYDRIVE) (Removable) (Total:0.24 GB) (Free:0.24 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 793EE922)
Partition 1: (Active) - (Size=450 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 246 MB) (Disk ID: 95D6719E)
Partition 1: (Active) - (Size=245 MB) - (Type=06)

==================== End Of Log ============================

aharonov · 26.02.2014, 21:08

ok.

Schritt 1

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2

Starte noch einmal FRST.

Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

Raubkatze21 · 27.02.2014, 09:34

So hier erstmal die AdwCleaner[S0] Textdatei

Code:

ATTFilter

# AdwCleaner v3.019 - Bericht erstellt am 27/02/2014 um 08:14:38
# Aktualisiert 17/02/2014 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzername : Geiger - GEIGER-PC
# Gestartet von : C:\Users\Geiger\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\ProgramData\IePluginService
Ordner Gelöscht : C:\ProgramData\RegClean
Ordner Gelöscht : C:\ProgramData\WPM
Ordner Gelöscht : C:\Program Files (x86)\PC Speed Maximizer
Ordner Gelöscht : C:\Program Files (x86)\SupTab
Ordner Gelöscht : C:\Users\Geiger\AppData\Roaming\DigitalSites
Ordner Gelöscht : C:\Users\Geiger\AppData\Roaming\OpenCandy
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\Geiger\AppData\Roaming\Mozilla\Firefox\Profiles\pw8jl33x.default\searchplugins\Web Search.xml
Datei Gelöscht : C:\Users\Geiger\AppData\Roaming\Mozilla\Firefox\Profiles\pw8jl33x.default\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\smartbar_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\smartbar_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Daten Wiederhergestellt : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Schlüssel Gelöscht : HKCU\Software\dsiteproducts
Schlüssel Gelöscht : HKCU\Software\InstallCore
Schlüssel Gelöscht : HKCU\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\smarttweak
Schlüssel Gelöscht : HKLM\Software\supTab
Schlüssel Gelöscht : HKLM\Software\supWPM
Schlüssel Gelöscht : HKLM\Software\sweet-pageSoftware
Schlüssel Gelöscht : HKLM\Software\Wpm
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16518

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v27.0.1 (de)

[ Datei : C:\Users\Geiger\AppData\Roaming\Mozilla\Firefox\Profiles\pw8jl33x.default\prefs.js ]

Zeile gelöscht : user_pref("accessibility.lightning.homepage", "hxxp://www.sweet-page.com/?type=hp&ts=1392582210&from=cor&uid=HitachiXHTS547550A9E384_J2100050HDM02BHDM02BX");
Zeile gelöscht : user_pref("extensions.helperbar.DockingPositionDown", false);
Zeile gelöscht : user_pref("extensions.helperbar.LastHiddenTime", 23208207);
Zeile gelöscht : user_pref("extensions.helperbar.SmartbarDisabled", true);
Zeile gelöscht : user_pref("extensions.helperbar.SmartbarStateMinimaized", true);

*************************

AdwCleaner[R0].txt - [7129 octets] - [27/02/2014 08:13:30]
AdwCleaner[S0].txt - [4978 octets] - [27/02/2014 08:14:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5038 octets] ##########

und hier der andere scan

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-02-2014 02
Ran by Geiger (administrator) on GEIGER-PC on 27-02-2014 09:31:28
Running from C:\Users\Geiger\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
() C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Atheros) C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [860040 2010-10-29] (Acer Incorporated)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-12] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Avira Systray] - C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [172600 2014-01-29] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-10-13] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1025616 2010-12-09] (Dritek System Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [601928 2013-06-19] (BlueStack Systems, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [icq] - C:\Users\Geiger\AppData\Roaming\ICQM\icq.exe [33664344 2014-02-15] (ICQ)
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [UpdateMyDrivers] - C:\Program Files (x86)\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [SpeedUpMyComputer] - C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [FixMyRegistry] - C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x421EB136402ACF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM - {6ADE8F7D-85A3-44F0-8214-34FCFB72D45A} URL = hxxp://www.sm.de/?q={searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Geiger\AppData\Roaming\Mozilla\Firefox\Profiles\pw8jl33x.default
FF NewTab: about:blank
FF SearchEngineOrder.1: SuchMaschine
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [109112 2014-01-29] (Avira Operations GmbH & Co. KG)
R2 BRA_Scheduler; C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe [99328 2013-05-31] ()
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-06-19] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-06-19] (BlueStack Systems, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [57344 2011-08-10] (Atheros)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-18] (Avira Operations GmbH & Co. KG)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-06-19] (BlueStack Systems)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-27 09:31 - 2014-02-27 09:31 - 00012788 _____ () C:\Users\Geiger\Desktop\FRST.txt
2014-02-27 08:20 - 2014-02-27 08:20 - 02155520 _____ (Farbar) C:\Users\Geiger\Desktop\FRST64.exe
2014-02-27 08:16 - 2014-02-27 08:16 - 00005146 _____ () C:\Users\Geiger\Desktop\AdwCleaner[S0].txt
2014-02-27 08:16 - 2014-02-27 08:16 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-27 08:13 - 2014-02-27 08:14 - 00000000 ____D () C:\AdwCleaner
2014-02-27 08:08 - 2014-02-27 08:08 - 01241834 _____ () C:\Users\Geiger\Desktop\adwcleaner.exe
2014-02-26 13:40 - 2014-01-09 03:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-26 13:40 - 2014-01-03 23:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-26 13:35 - 2014-02-26 13:35 - 00000000 ____D () C:\Program Files (x86)\BlueStacks
2014-02-26 13:34 - 2014-02-26 13:38 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-02-26 13:34 - 2014-02-26 13:36 - 00000000 ____D () C:\ProgramData\BlueStacks
2014-02-26 08:59 - 2014-02-27 08:22 - 00000000 ____D () C:\FRST
2014-02-26 08:33 - 2014-02-26 17:52 - 00000000 ____D () C:\Users\Geiger\Portrait Professional Studio 9
2014-02-21 08:45 - 2014-02-21 08:45 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-02-21 08:25 - 2014-02-21 08:25 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-02-21 08:25 - 2014-02-21 08:25 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-02-20 17:45 - 2014-02-26 20:10 - 00470818 _____ () C:\Windows\system32\perfh001.dat
2014-02-20 17:45 - 2014-02-26 20:10 - 00094640 _____ () C:\Windows\system32\perfc001.dat
2014-02-20 17:45 - 2014-02-20 17:41 - 00289060 _____ () C:\Windows\system32\perfi001.dat
2014-02-20 17:45 - 2014-02-20 17:41 - 00042056 _____ () C:\Windows\system32\perfd001.dat
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\ar-SA
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Windows\SysWOW64\ar
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-02-20 17:42 - 2014-02-20 21:28 - 00000000 ____D () C:\Windows\system32\Drivers\ar-SA
2014-02-20 17:42 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\system32\ar
2014-02-20 17:42 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\ar-SA
2014-02-19 16:45 - 2014-02-26 20:10 - 00501218 _____ () C:\Windows\system32\perfh006.dat
2014-02-19 16:45 - 2014-02-26 20:10 - 00098526 _____ () C:\Windows\system32\perfc006.dat
2014-02-19 16:45 - 2014-02-19 16:41 - 00306636 _____ () C:\Windows\system32\perfi006.dat
2014-02-19 16:45 - 2014-02-19 16:41 - 00039236 _____ () C:\Windows\system32\perfd006.dat
2014-02-19 16:43 - 2014-02-19 16:43 - 00000000 ____D () C:\Windows\SysWOW64\da
2014-02-19 16:42 - 2014-02-19 16:42 - 00000000 ____D () C:\Windows\system32\da
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\ro-RO
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\system32\Drivers\ro-RO
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\ro-RO
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\hr-HR
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\system32\Drivers\hr-HR
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\hr-HR
2014-02-19 16:11 - 2014-02-26 20:10 - 00720822 _____ () C:\Windows\system32\prfh0816.dat
2014-02-19 16:11 - 2014-02-26 20:10 - 00152774 _____ () C:\Windows\system32\prfc0816.dat
2014-02-19 16:11 - 2014-02-19 16:08 - 00336656 _____ () C:\Windows\system32\prfi0816.dat
2014-02-19 16:11 - 2014-02-19 16:08 - 00040548 _____ () C:\Windows\system32\prfd0816.dat
2014-02-19 16:09 - 2014-02-19 16:09 - 00000000 ____D () C:\Windows\SysWOW64\pt
2014-02-19 16:09 - 2014-02-19 16:09 - 00000000 ____D () C:\Windows\system32\pt
2014-02-19 16:00 - 2014-02-26 20:10 - 00732162 _____ () C:\Windows\system32\perfh015.dat
2014-02-19 16:00 - 2014-02-26 20:10 - 00155740 _____ () C:\Windows\system32\perfc015.dat
2014-02-19 16:00 - 2014-02-19 15:57 - 00337158 _____ () C:\Windows\system32\perfi015.dat
2014-02-19 16:00 - 2014-02-19 15:57 - 00038710 _____ () C:\Windows\system32\perfd015.dat
2014-02-19 15:58 - 2014-02-19 15:58 - 00000000 ____D () C:\Windows\SysWOW64\pl
2014-02-19 15:57 - 2014-02-19 15:57 - 00000000 ____D () C:\Windows\system32\pl
2014-02-19 15:48 - 2014-02-26 20:10 - 00648486 _____ () C:\Windows\system32\perfh01F.dat
2014-02-19 15:48 - 2014-02-26 20:10 - 00139868 _____ () C:\Windows\system32\perfc01F.dat
2014-02-19 15:48 - 2014-02-19 15:45 - 00285034 _____ () C:\Windows\system32\perfi01F.dat
2014-02-19 15:48 - 2014-02-19 15:45 - 00037160 _____ () C:\Windows\system32\perfd01F.dat
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\tr-TR
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\SysWOW64\tr
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\tr-TR
2014-02-19 15:46 - 2014-02-19 17:19 - 00000000 ____D () C:\Windows\system32\Drivers\tr-TR
2014-02-19 15:46 - 2014-02-19 15:46 - 00000000 ____D () C:\Windows\system32\tr
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\bg-BG
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\system32\Drivers\bg-BG
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\bg-BG
2014-02-19 15:26 - 2014-02-19 15:26 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sr-Latn-CS
2014-02-19 15:26 - 2014-02-19 15:26 - 00000000 ____D () C:\Windows\sr-Latn-CS
2014-02-19 15:25 - 2014-02-19 15:25 - 00000000 ____D () C:\Windows\system32\Drivers\sr-Latn-CS
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\et-EE
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\system32\Drivers\et-EE
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\et-EE
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\lt-LT
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\system32\Drivers\lt-LT
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\lt-LT
2014-02-19 14:58 - 2014-02-26 20:10 - 00716404 _____ () C:\Windows\system32\perfh019.dat
2014-02-19 14:58 - 2014-02-26 20:10 - 00150710 _____ () C:\Windows\system32\perfc019.dat
2014-02-19 14:58 - 2014-02-19 14:55 - 00336704 _____ () C:\Windows\system32\perfi019.dat
2014-02-19 14:58 - 2014-02-19 14:55 - 00039446 _____ () C:\Windows\system32\perfd019.dat
2014-02-19 14:57 - 2014-02-19 14:57 - 00000000 ____D () C:\Windows\SysWOW64\ru
2014-02-19 14:56 - 2014-02-19 14:56 - 00000000 ____D () C:\Windows\system32\ru
2014-02-19 14:46 - 2014-02-26 20:10 - 00486318 _____ () C:\Windows\system32\perfh014.dat
2014-02-19 14:46 - 2014-02-26 20:10 - 00095272 _____ () C:\Windows\system32\perfc014.dat
2014-02-19 14:46 - 2014-02-19 14:43 - 00298300 _____ () C:\Windows\system32\perfi014.dat
2014-02-19 14:46 - 2014-02-19 14:43 - 00036156 _____ () C:\Windows\system32\perfd014.dat
2014-02-19 14:45 - 2014-02-19 14:45 - 00000000 ____D () C:\Windows\SysWOW64\no
2014-02-19 14:44 - 2014-02-19 14:44 - 00000000 ____D () C:\Windows\system32\no
2014-02-19 14:34 - 2014-02-26 20:10 - 00598792 _____ () C:\Windows\system32\perfh008.dat
2014-02-19 14:34 - 2014-02-26 20:10 - 00110996 _____ () C:\Windows\system32\perfc008.dat
2014-02-19 14:34 - 2014-02-19 14:31 - 00369984 _____ () C:\Windows\system32\perfi008.dat
2014-02-19 14:34 - 2014-02-19 14:31 - 00045182 _____ () C:\Windows\system32\perfd008.dat
2014-02-19 14:33 - 2014-02-19 14:33 - 00000000 ____D () C:\Windows\SysWOW64\el
2014-02-19 14:32 - 2014-02-19 14:32 - 00000000 ____D () C:\Windows\system32\el
2014-02-19 13:50 - 2014-02-26 20:10 - 00655524 _____ () C:\Windows\system32\perfh01D.dat
2014-02-19 13:50 - 2014-02-26 20:10 - 00142342 _____ () C:\Windows\system32\perfc01D.dat
2014-02-19 13:50 - 2014-02-19 13:47 - 00294764 _____ () C:\Windows\system32\perfi01D.dat
2014-02-19 13:50 - 2014-02-19 13:47 - 00037052 _____ () C:\Windows\system32\perfd01D.dat
2014-02-19 13:49 - 2014-02-19 13:49 - 00000000 ____D () C:\Windows\SysWOW64\sv
2014-02-19 13:48 - 2014-02-19 13:48 - 00000000 ____D () C:\Windows\system32\sv
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\th-TH
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\th-TH
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\system32\Drivers\th-TH
2014-02-19 13:32 - 2014-02-26 20:10 - 00735302 _____ () C:\Windows\system32\perfh013.dat
2014-02-19 13:32 - 2014-02-26 20:10 - 00152970 _____ () C:\Windows\system32\perfc013.dat
2014-02-19 13:32 - 2014-02-19 13:28 - 00341322 _____ () C:\Windows\system32\perfi013.dat
2014-02-19 13:32 - 2014-02-19 13:28 - 00043068 _____ () C:\Windows\system32\perfd013.dat
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\SysWOW64\nl
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\SysWOW64\0413
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\system32\nl
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\system32\0413
2014-02-19 13:21 - 2014-02-19 13:21 - 00000000 ____D () C:\Windows\lv-LV
2014-02-19 13:20 - 2014-02-19 13:20 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\lv-LV
2014-02-19 13:20 - 2014-02-19 13:20 - 00000000 ____D () C:\Windows\system32\Drivers\lv-LV
2014-02-19 13:13 - 2014-02-19 13:13 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\uk-UA
2014-02-19 13:12 - 2014-02-19 13:12 - 00000000 ____D () C:\Windows\uk-UA
2014-02-19 13:12 - 2014-02-19 13:12 - 00000000 ____D () C:\Windows\system32\Drivers\uk-UA
2014-02-19 13:05 - 2014-02-26 20:10 - 00384148 _____ () C:\Windows\system32\perfh00D.dat
2014-02-19 13:05 - 2014-02-26 20:10 - 00084626 _____ () C:\Windows\system32\perfc00D.dat
2014-02-19 13:05 - 2014-02-19 13:01 - 00229316 _____ () C:\Windows\system32\perfi00D.dat
2014-02-19 13:05 - 2014-02-19 13:01 - 00032166 _____ () C:\Windows\system32\perfd00D.dat
2014-02-19 13:03 - 2014-02-19 17:19 - 00000000 ____D () C:\Windows\system32\Drivers\he-IL
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\SysWOW64\he
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\he-IL
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\system32\he
2014-02-19 13:02 - 2014-02-19 13:02 - 00000000 ____D () C:\Windows\he-IL
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sl-SI
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\system32\Drivers\sl-SI
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\sl-SI
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sk-SK
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\system32\Drivers\sk-SK
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\sk-SK
2014-02-19 07:12 - 2014-02-19 07:12 - 00001164 _____ () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-02-18 12:03 - 2014-02-18 12:03 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-18 09:09 - 2014-02-19 19:49 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-18 09:09 - 2014-02-19 19:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-02-17 22:00 - 2014-02-17 22:00 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-02-17 22:00 - 2014-02-17 22:00 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-02-17 08:54 - 2014-02-17 08:54 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Windows\PCHEALTH
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-02-17 08:52 - 2014-02-17 08:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-02-17 08:51 - 2014-02-17 08:51 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-02-17 08:51 - 2014-02-17 08:51 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-02-17 08:50 - 2014-02-18 13:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-17 08:50 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Microsoft Help
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-02-17 08:47 - 2014-02-17 08:47 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\WinRAR
2014-02-17 08:46 - 2014-02-17 08:46 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-17 07:51 - 2014-02-17 09:00 - 00000000 ____D () C:\Users\Geiger\Desktop\wizard
2014-02-17 07:50 - 2014-02-17 10:36 - 00000000 ____D () C:\ProgramData\Adobe
2014-02-17 07:50 - 2014-02-17 07:50 - 00002023 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-02-17 07:50 - 2014-02-17 07:50 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-02-17 07:49 - 2014-02-17 07:52 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Adobe
2014-02-17 07:23 - 2014-02-27 06:23 - 00000065 _____ () C:\Users\Geiger\AppData\Roaming\WB.CFG
2014-02-16 21:42 - 2014-02-16 21:42 - 00000184 _____ () C:\Windows\LMv4.UNI
2014-02-16 21:42 - 2014-02-16 21:42 - 00000000 ____D () C:\Program Files (x86)\Launch Manager
2014-02-16 21:24 - 2014-02-16 21:27 - 00000000 ____D () C:\Program Files\DivX
2014-02-16 21:24 - 2014-02-16 21:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\DivX
2014-02-16 21:23 - 2014-02-27 09:23 - 00000296 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-16 21:23 - 2014-02-16 21:30 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\sweet-page
2014-02-16 21:23 - 2014-02-16 21:28 - 00000000 ____D () C:\Program Files (x86)\DSP-worx
2014-02-16 21:23 - 2014-02-16 21:27 - 00000000 ____D () C:\ProgramData\DivX
2014-02-16 21:23 - 2014-02-16 21:23 - 00003240 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\LavFilters
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\CDXReader
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ATI
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\Users\Geiger\AppData\Local\ATI
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\ProgramData\ATI
2014-02-16 19:36 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-02-16 19:36 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-02-16 19:35 - 2011-03-17 13:51 - 00003929 _____ () C:\Windows\SysWOW64\atipblup.dat
2014-02-16 19:35 - 2011-03-17 13:51 - 00003929 _____ () C:\Windows\system32\atipblup.dat
2014-02-16 19:34 - 2014-02-16 19:35 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-02-16 19:32 - 2014-02-16 19:32 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-02-16 19:31 - 2014-02-16 19:31 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect
2014-02-16 19:31 - 2011-08-10 07:51 - 00067685 _____ () C:\Windows\system32\athrextx.cat
2014-02-16 19:31 - 2011-08-05 16:33 - 02768384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2014-02-16 19:31 - 2011-08-05 16:33 - 02768384 _____ (Atheros Communications, Inc.) C:\Windows\system32\athrx.sys
2014-02-16 19:27 - 2010-07-20 17:43 - 00247400 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2014-02-16 19:27 - 2010-07-20 17:42 - 09112168 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUStoricon.dll
2014-02-16 19:27 - 2010-07-20 17:42 - 00422504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUStor.dll
2014-02-16 19:17 - 2014-02-16 19:17 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer
2014-02-16 19:17 - 2014-02-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-02-16 19:01 - 2014-02-27 09:31 - 00000284 _____ () C:\Windows\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}.job
2014-02-16 19:01 - 2014-02-16 19:06 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\awesomehp
2014-02-16 19:01 - 2014-02-16 19:01 - 00003252 _____ () C:\Windows\System32\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}
2014-02-16 19:00 - 2014-02-19 07:11 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-02-16 18:42 - 2014-02-16 18:42 - 00000456 _____ () C:\Users\Geiger\Desktop\Router-Einstellungen.txt
2014-02-16 18:23 - 2014-02-16 18:23 - 00000000 ____D () C:\ProgramData\Sun
2014-02-16 18:23 - 2014-02-16 18:23 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-16 18:23 - 2014-02-16 18:22 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-16 18:22 - 2014-02-16 18:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-16 17:36 - 2014-02-16 17:36 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\vlc
2014-02-16 17:28 - 2010-11-24 14:24 - 02815592 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-02-16 17:28 - 2010-11-02 09:35 - 00127832 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-02-16 17:28 - 2010-11-02 09:34 - 00421720 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-02-16 17:28 - 2010-11-02 09:34 - 00108888 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-02-15 21:51 - 2014-02-15 21:51 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-02-15 20:58 - 2014-02-21 07:18 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Software
2014-02-15 20:58 - 2014-02-20 07:56 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inet Programme
2014-02-15 20:53 - 2014-02-17 09:01 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Zubehör
2014-02-15 20:52 - 2014-02-15 20:52 - 00000000 ____D () C:\ProgramData\OEM
2014-02-15 20:51 - 2014-02-15 20:52 - 00000000 ____D () C:\Program Files\Acer
2014-02-15 20:51 - 2014-02-15 20:51 - 00000000 ____D () C:\ProgramData\Acer
2014-02-15 20:38 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-15 20:38 - 2014-02-15 20:38 - 00000000 ____D () C:\Program Files\ATI
2014-02-15 20:37 - 2014-02-15 21:49 - 00000000 ____D () C:\AMD
2014-02-15 20:30 - 2014-02-15 20:30 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-02-15 20:24 - 2014-02-15 20:25 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-02-15 20:24 - 2014-02-15 20:24 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-02-15 20:24 - 2014-02-15 20:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\TuneUp Software
2014-02-15 20:23 - 2014-02-15 20:23 - 00001089 _____ () C:\Users\Geiger\Desktop\Cheat Engine.lnk
2014-02-15 20:23 - 2014-02-15 20:23 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3
2014-02-15 20:19 - 2014-02-15 20:19 - 00001029 _____ () C:\Users\Public\Desktop\Biet-O-Matic.lnk
2014-02-15 20:18 - 2014-02-15 20:19 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-02-15 20:18 - 2014-02-15 20:18 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\BOM
2014-02-15 20:18 - 2003-01-07 02:22 - 00015873 _____ () C:\Windows\SysWOW64\Inetde.dll
2014-02-15 20:18 - 2000-12-05 23:00 - 00109248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mswinsck.ocx
2014-02-15 20:18 - 2000-10-01 23:00 - 00125712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb6de.dll
2014-02-15 20:18 - 2000-05-22 15:58 - 00115920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx
2014-02-15 20:18 - 2000-05-21 23:00 - 01066176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mscomctl.ocx
2014-02-15 20:18 - 2000-04-03 19:06 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winskde.dll
2014-02-15 20:18 - 2000-04-03 19:05 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
2014-02-15 20:18 - 1999-07-14 13:07 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stdftde.dll
2014-02-15 20:18 - 1998-07-05 23:00 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mscmcde.dll
2014-02-15 20:18 - 1998-07-05 23:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Tabctde.dll
2014-02-15 20:18 - 1998-06-23 23:00 - 00209192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Tabctl32.ocx
2014-02-15 20:17 - 2014-02-15 20:17 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-15 20:16 - 2014-02-15 20:16 - 00001953 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Canneverbe Limited
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-02-15 20:11 - 2014-02-18 21:53 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Skype
2014-02-15 20:11 - 2014-02-17 07:28 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ICQ-Profile
2014-02-15 20:11 - 2014-02-15 20:11 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-15 20:11 - 2014-02-15 20:11 - 00001771 _____ () C:\Users\Geiger\Desktop\ICQ.lnk
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ICQM
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Skype
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\ProgramData\Skype
2014-02-15 17:33 - 2014-02-15 17:33 - 00000000 ____D () C:\Windows.old
2014-02-15 13:56 - 2014-02-15 13:57 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 13:56 - 2014-02-04 19:09 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 13:55 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-15 13:55 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-15 13:55 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-15 13:55 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-15 13:55 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-15 13:55 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-15 13:55 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-15 13:55 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-02-15 13:55 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-02-15 13:55 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-02-15 13:55 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-15 13:55 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-15 13:55 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-02-15 13:55 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-15 13:55 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-02-15 13:55 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-02-15 13:46 - 2014-02-26 14:23 - 00000000 ____D () C:\Users\Geiger\Documents\Stephie´s Ordner
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Steuer-Sparbuch
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Peter´s Ordner
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Handbücher
2014-02-15 13:44 - 2014-02-15 13:45 - 00000000 ____D () C:\Users\Geiger\Documents\ASV 1935- Jugendleiter-Ordner
2014-02-15 13:44 - 2014-02-15 13:44 - 00000000 ____D () C:\Users\Geiger\Documents\ASV 1935
2014-02-15 13:43 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-15 13:43 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-15 13:42 - 2014-02-15 13:42 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01009.Wdf
2014-02-15 13:42 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-15 13:42 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-15 13:42 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-15 13:42 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-15 13:42 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-15 13:42 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-15 13:42 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-15 13:42 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-15 13:42 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-15 13:42 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-15 13:42 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-15 13:42 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-15 13:42 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-15 13:42 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-15 13:42 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-15 13:42 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-15 13:42 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-15 13:42 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-15 13:42 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-15 13:42 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-15 13:42 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-15 13:42 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-15 13:42 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-15 13:42 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-15 13:42 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-15 13:42 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-15 13:42 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-15 13:42 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-15 13:42 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-15 13:42 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-15 13:42 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-15 13:42 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-15 13:42 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-15 13:42 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-15 13:42 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-15 13:42 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-15 13:42 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-15 13:42 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-15 13:42 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-15 13:41 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-15 13:41 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-15 13:41 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-15 13:41 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-15 13:41 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-15 13:41 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-15 13:41 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-15 13:41 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-15 13:41 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-15 13:41 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-15 13:41 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-15 13:41 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-15 13:41 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-15 13:41 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-15 13:41 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-15 13:41 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-15 13:41 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-15 13:41 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-15 13:41 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-15 13:41 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-15 13:41 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-15 13:41 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-15 13:41 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-15 13:41 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-15 13:41 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-15 13:41 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-15 13:41 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-02-15 13:41 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-15 13:41 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-15 13:41 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-15 13:41 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-02-15 13:41 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-02-15 13:39 - 2014-02-15 13:39 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Avira
2014-02-15 13:33 - 2013-12-18 09:32 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-15 13:33 - 2013-12-18 09:32 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-15 13:33 - 2013-12-18 09:32 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-15 13:31 - 2014-02-15 13:33 - 00000000 ____D () C:\ProgramData\Avira
2014-02-15 13:31 - 2014-02-15 13:33 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-15 13:31 - 2014-02-15 13:31 - 00001141 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-02-15 13:30 - 2014-02-15 13:30 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-15 13:27 - 2014-02-23 15:35 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\UseNeXT
2014-02-15 13:27 - 2014-02-15 13:27 - 00001861 _____ () C:\Users\Geiger\Desktop\UseNeXT by Tangysoft.lnk
2014-02-15 13:27 - 2014-02-15 13:27 - 00000000 ____D () C:\Program Files (x86)\UseNeXT
2014-02-15 13:14 - 2014-02-15 13:14 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Macromedia
2014-02-15 13:14 - 2014-02-15 13:14 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Macromedia
2014-02-15 13:06 - 2014-02-27 08:47 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-15 13:06 - 2014-02-21 08:08 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-15 13:06 - 2014-02-21 08:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-15 13:06 - 2014-02-21 08:08 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-15 13:06 - 2014-02-15 13:06 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-02-15 13:06 - 2014-02-15 13:06 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-15 12:24 - 2014-02-16 21:30 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-15 12:24 - 2014-02-16 21:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Mozilla
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Mozilla
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\ProgramData\Mozilla
2014-02-15 12:10 - 2014-02-18 05:53 - 00109280 _____ () C:\Users\Geiger\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-15 12:10 - 2014-02-15 12:10 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Intel Corporation
2014-02-15 12:08 - 2014-02-16 19:32 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2014-02-15 12:08 - 2014-02-15 12:08 - 00000000 ____D () C:\Program Files\Broadcom
2014-02-15 12:05 - 2014-02-15 12:05 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-15 12:03 - 2014-02-15 12:03 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-02-15 12:02 - 2014-02-16 19:33 - 00000352 _____ () C:\Windows\RtlWlanInstall.log
2014-02-15 12:02 - 2014-02-16 19:33 - 00000000 ____D () C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
2014-02-15 12:02 - 2010-08-09 15:02 - 01113192 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192se.sys
2014-02-15 12:02 - 2009-02-05 02:49 - 00451072 _____ () C:\Windows\SysWOW64\ISSRemoveSP.exe
2014-02-15 11:53 - 2014-02-16 19:29 - 00000000 ____D () C:\Windows\SysWOW64\Atheros_L1e
2014-02-15 11:52 - 2010-10-04 13:02 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-02-15 11:51 - 2010-12-10 11:35 - 00003206 _____ () C:\Windows\system32\Drivers\RtPCEE4.DAT
2014-02-15 11:51 - 2010-11-29 08:17 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX0.dat
2014-02-15 11:51 - 2010-09-23 17:21 - 00039672 _____ () C:\Windows\system32\Drivers\RtPCEE3.DAT
2014-02-15 11:51 - 2010-03-22 13:21 - 00247560 _____ () C:\Windows\system32\Drivers\RTConvEQ.dat
2014-02-15 11:51 - 2010-03-22 13:21 - 00001448 _____ () C:\Windows\system32\Drivers\RtHdatEx.dat
2014-02-15 11:51 - 2010-03-15 16:59 - 00000024 _____ () C:\Windows\system32\Drivers\rtkhdaud.dat
2014-02-15 11:51 - 2010-02-11 15:45 - 00000176 _____ () C:\Windows\system32\Drivers\RTHDAEQ1.dat
2014-02-15 11:51 - 2010-01-26 21:52 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX3.dat
2014-02-15 11:51 - 2008-08-21 13:43 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX2.dat
2014-02-15 11:51 - 2005-06-27 05:29 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX1.dat
2014-02-15 11:50 - 2010-12-23 04:06 - 00008192 _____ () C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-02-15 11:49 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-02-15 11:49 - 2014-02-15 11:49 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\InstallShield
2014-02-15 11:49 - 2011-01-12 17:51 - 00439320 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys
2014-02-15 11:48 - 2014-02-15 11:48 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-02-15 11:16 - 2014-02-20 17:43 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-15 11:16 - 2014-02-16 19:27 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-02-15 11:15 - 2014-02-15 11:15 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-02-15 09:54 - 2014-02-17 07:52 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Adobe
2014-02-15 09:54 - 2014-02-16 17:47 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-15 09:54 - 2014-02-15 09:54 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-15 09:53 - 2014-02-15 09:53 - 00000020 ___SH () C:\Users\Geiger\ntuser.ini
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Vorlagen
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Startmenü
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Netzwerkumgebung
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Lokale Einstellungen
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Eigene Dateien
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Druckumgebung
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Documents\Eigene Musik
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Documents\Eigene Bilder
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Local\Verlauf
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Local\Anwendungsdaten
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Anwendungsdaten
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 ____D () C:\Users\Geiger\AppData\Local\VirtualStore
2014-02-15 09:53 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-15 09:52 - 2014-02-27 08:05 - 00000000 ____D () C:\Users\Geiger
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-02-15 08:54 - 2014-02-27 08:24 - 01755739 _____ () C:\Windows\WindowsUpdate.log
2014-02-15 08:52 - 2014-02-15 08:52 - 00000000 ____D () C:\Windows\CSC
2014-01-29 23:02 - 2014-01-29 23:02 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 01981696 _____ () C:\Windows\system32\iglhxa64.cpa
2014-01-29 23:02 - 2014-01-29 23:02 - 00963452 _____ () C:\Windows\SysWOW64\igcodeckrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00963452 _____ () C:\Windows\system32\igcodeckrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00279000 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00272928 _____ () C:\Windows\SysWOW64\igvpkrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00272928 _____ () C:\Windows\system32\igvpkrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00059104 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00058796 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00058109 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00001074 _____ () C:\Windows\system32\iglhxa64.vp
2014-01-29 23:02 - 2011-08-09 01:25 - 06322688 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2014-01-29 23:02 - 2011-08-09 01:11 - 12339712 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-01-29 23:02 - 2011-08-09 00:53 - 00375808 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-01-29 23:02 - 2011-08-09 00:53 - 00062464 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2014-01-29 23:02 - 2011-08-09 00:53 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-01-29 23:02 - 2011-08-09 00:52 - 09014784 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-01-29 23:02 - 2011-08-09 00:52 - 00390144 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-01-29 23:02 - 2011-08-09 00:52 - 00110080 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll

==================== One Month Modified Files and Folders =======

2014-02-27 09:31 - 2014-02-27 09:31 - 00012788 _____ () C:\Users\Geiger\Desktop\FRST.txt
2014-02-27 09:31 - 2014-02-16 19:01 - 00000284 _____ () C:\Windows\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}.job
2014-02-27 09:23 - 2014-02-16 21:23 - 00000296 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-27 09:03 - 2014-02-15 08:54 - 01755739 _____ () C:\Windows\WindowsUpdate.log
2014-02-27 08:47 - 2014-02-15 13:06 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-27 08:26 - 2009-07-14 05:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-27 08:26 - 2009-07-14 05:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-27 08:22 - 2014-02-26 08:59 - 00000000 ____D () C:\FRST
2014-02-27 08:20 - 2014-02-27 08:20 - 02155520 _____ (Farbar) C:\Users\Geiger\Desktop\FRST64.exe
2014-02-27 08:16 - 2014-02-27 08:16 - 00005146 _____ () C:\Users\Geiger\Desktop\AdwCleaner[S0].txt
2014-02-27 08:16 - 2014-02-27 08:16 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-27 08:15 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-27 08:15 - 2009-07-14 05:51 - 00043506 _____ () C:\Windows\setupact.log
2014-02-27 08:14 - 2014-02-27 08:13 - 00000000 ____D () C:\AdwCleaner
2014-02-27 08:08 - 2014-02-27 08:08 - 01241834 _____ () C:\Users\Geiger\Desktop\adwcleaner.exe
2014-02-27 08:05 - 2014-02-15 09:52 - 00000000 ____D () C:\Users\Geiger
2014-02-27 06:23 - 2014-02-17 07:23 - 00000065 _____ () C:\Users\Geiger\AppData\Roaming\WB.CFG
2014-02-26 20:10 - 2014-02-20 17:45 - 00470818 _____ () C:\Windows\system32\perfh001.dat
2014-02-26 20:10 - 2014-02-20 17:45 - 00094640 _____ () C:\Windows\system32\perfc001.dat
2014-02-26 20:10 - 2014-02-19 16:45 - 00501218 _____ () C:\Windows\system32\perfh006.dat
2014-02-26 20:10 - 2014-02-19 16:45 - 00098526 _____ () C:\Windows\system32\perfc006.dat
2014-02-26 20:10 - 2014-02-19 16:11 - 00720822 _____ () C:\Windows\system32\prfh0816.dat
2014-02-26 20:10 - 2014-02-19 16:11 - 00152774 _____ () C:\Windows\system32\prfc0816.dat
2014-02-26 20:10 - 2014-02-19 16:00 - 00732162 _____ () C:\Windows\system32\perfh015.dat
2014-02-26 20:10 - 2014-02-19 16:00 - 00155740 _____ () C:\Windows\system32\perfc015.dat
2014-02-26 20:10 - 2014-02-19 15:48 - 00648486 _____ () C:\Windows\system32\perfh01F.dat
2014-02-26 20:10 - 2014-02-19 15:48 - 00139868 _____ () C:\Windows\system32\perfc01F.dat
2014-02-26 20:10 - 2014-02-19 14:58 - 00716404 _____ () C:\Windows\system32\perfh019.dat
2014-02-26 20:10 - 2014-02-19 14:58 - 00150710 _____ () C:\Windows\system32\perfc019.dat
2014-02-26 20:10 - 2014-02-19 14:46 - 00486318 _____ () C:\Windows\system32\perfh014.dat
2014-02-26 20:10 - 2014-02-19 14:46 - 00095272 _____ () C:\Windows\system32\perfc014.dat
2014-02-26 20:10 - 2014-02-19 14:34 - 00598792 _____ () C:\Windows\system32\perfh008.dat
2014-02-26 20:10 - 2014-02-19 14:34 - 00110996 _____ () C:\Windows\system32\perfc008.dat
2014-02-26 20:10 - 2014-02-19 13:50 - 00655524 _____ () C:\Windows\system32\perfh01D.dat
2014-02-26 20:10 - 2014-02-19 13:50 - 00142342 _____ () C:\Windows\system32\perfc01D.dat
2014-02-26 20:10 - 2014-02-19 13:32 - 00735302 _____ () C:\Windows\system32\perfh013.dat
2014-02-26 20:10 - 2014-02-19 13:32 - 00152970 _____ () C:\Windows\system32\perfc013.dat
2014-02-26 20:10 - 2014-02-19 13:05 - 00384148 _____ () C:\Windows\system32\perfh00D.dat
2014-02-26 20:10 - 2014-02-19 13:05 - 00084626 _____ () C:\Windows\system32\perfc00D.dat
2014-02-26 20:10 - 2014-01-13 19:45 - 00737260 _____ () C:\Windows\system32\perfh00A.dat
2014-02-26 20:10 - 2014-01-13 19:45 - 00158342 _____ () C:\Windows\system32\perfc00A.dat
2014-02-26 20:10 - 2014-01-13 19:43 - 00731850 _____ () C:\Windows\system32\perfh010.dat
2014-02-26 20:10 - 2014-01-13 19:43 - 00146714 _____ () C:\Windows\system32\perfc010.dat
2014-02-26 20:10 - 2014-01-13 19:41 - 00699342 _____ () C:\Windows\system32\perfh007.dat
2014-02-26 20:10 - 2014-01-13 19:41 - 00149450 _____ () C:\Windows\system32\perfc007.dat
2014-02-26 20:10 - 2014-01-13 19:39 - 00737520 _____ () C:\Windows\system32\perfh00C.dat
2014-02-26 20:10 - 2014-01-13 19:39 - 00149448 _____ () C:\Windows\system32\perfc00C.dat
2014-02-26 20:10 - 2014-01-13 19:37 - 00705684 _____ () C:\Windows\system32\prfh0416.dat
2014-02-26 20:10 - 2014-01-13 19:37 - 00147524 _____ () C:\Windows\system32\prfc0416.dat
2014-02-26 20:10 - 2009-07-14 06:13 - 13143578 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-26 17:52 - 2014-02-26 08:33 - 00000000 ____D () C:\Users\Geiger\Portrait Professional Studio 9
2014-02-26 17:52 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-26 14:23 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Stephie´s Ordner
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\uk-UA
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\th-TH
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sr-Latn-CS
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sl-SI
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\ro-RO
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\lv-LV
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\lt-LT
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\hr-HR
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\he-IL
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\et-EE
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\bg-BG
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\ar-SA
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\th-TH
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\he-IL
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\et-EE
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-02-26 14:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-02-26 13:38 - 2014-02-26 13:34 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-02-26 13:36 - 2014-02-26 13:34 - 00000000 ____D () C:\ProgramData\BlueStacks
2014-02-26 13:36 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-02-26 13:35 - 2014-02-26 13:35 - 00000000 ____D () C:\Program Files (x86)\BlueStacks
2014-02-23 15:35 - 2014-02-15 13:27 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\UseNeXT
2014-02-21 12:23 - 2014-01-13 20:51 - 12845082 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-21 08:45 - 2014-02-21 08:45 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-02-21 08:25 - 2014-02-21 08:25 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-02-21 08:25 - 2014-02-21 08:25 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-02-21 08:08 - 2014-02-15 13:06 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 08:08 - 2014-02-15 13:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 08:08 - 2014-02-15 13:06 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-21 07:18 - 2014-02-15 20:58 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Software
2014-02-20 21:28 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\system32\Drivers\ar-SA
2014-02-20 17:49 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\ar-SA
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Windows\SysWOW64\ar
2014-02-20 17:43 - 2014-02-20 17:43 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-02-20 17:43 - 2014-02-15 11:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-20 17:43 - 2014-01-13 19:37 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-02-20 17:43 - 2011-04-12 09:28 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-20 17:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-02-20 17:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-02-20 17:43 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\servicing
2014-02-20 17:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-20 17:42 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\system32\ar
2014-02-20 17:42 - 2014-02-20 17:42 - 00000000 ____D () C:\Windows\ar-SA
2014-02-20 17:42 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\system32\winrm
2014-02-20 17:42 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\system32\WCN
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-02-20 17:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\IME
2014-02-20 17:41 - 2014-02-20 17:45 - 00289060 _____ () C:\Windows\system32\perfi001.dat
2014-02-20 17:41 - 2014-02-20 17:45 - 00042056 _____ () C:\Windows\system32\perfd001.dat
2014-02-20 07:56 - 2014-02-15 20:58 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inet Programme
2014-02-19 19:49 - 2014-02-18 09:09 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-19 19:48 - 2014-02-18 09:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-02-19 17:19 - 2014-02-19 15:46 - 00000000 ____D () C:\Windows\system32\Drivers\tr-TR
2014-02-19 17:19 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\system32\Drivers\he-IL
2014-02-19 16:43 - 2014-02-19 16:43 - 00000000 ____D () C:\Windows\SysWOW64\da
2014-02-19 16:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-02-19 16:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-02-19 16:43 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\system32\slmgr
2014-02-19 16:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-02-19 16:42 - 2014-02-19 16:42 - 00000000 ____D () C:\Windows\system32\da
2014-02-19 16:42 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-02-19 16:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\com
2014-02-19 16:41 - 2014-02-19 16:45 - 00306636 _____ () C:\Windows\system32\perfi006.dat
2014-02-19 16:41 - 2014-02-19 16:45 - 00039236 _____ () C:\Windows\system32\perfd006.dat
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\ro-RO
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\system32\Drivers\ro-RO
2014-02-19 16:31 - 2014-02-19 16:31 - 00000000 ____D () C:\Windows\ro-RO
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\hr-HR
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\system32\Drivers\hr-HR
2014-02-19 16:21 - 2014-02-19 16:21 - 00000000 ____D () C:\Windows\hr-HR
2014-02-19 16:09 - 2014-02-19 16:09 - 00000000 ____D () C:\Windows\SysWOW64\pt
2014-02-19 16:09 - 2014-02-19 16:09 - 00000000 ____D () C:\Windows\system32\pt
2014-02-19 16:08 - 2014-02-19 16:11 - 00336656 _____ () C:\Windows\system32\prfi0816.dat
2014-02-19 16:08 - 2014-02-19 16:11 - 00040548 _____ () C:\Windows\system32\prfd0816.dat
2014-02-19 15:58 - 2014-02-19 15:58 - 00000000 ____D () C:\Windows\SysWOW64\pl
2014-02-19 15:57 - 2014-02-19 16:00 - 00337158 _____ () C:\Windows\system32\perfi015.dat
2014-02-19 15:57 - 2014-02-19 16:00 - 00038710 _____ () C:\Windows\system32\perfd015.dat
2014-02-19 15:57 - 2014-02-19 15:57 - 00000000 ____D () C:\Windows\system32\pl
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\tr-TR
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\SysWOW64\tr
2014-02-19 15:47 - 2014-02-19 15:47 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\tr-TR
2014-02-19 15:46 - 2014-02-19 15:46 - 00000000 ____D () C:\Windows\system32\tr
2014-02-19 15:45 - 2014-02-19 15:48 - 00285034 _____ () C:\Windows\system32\perfi01F.dat
2014-02-19 15:45 - 2014-02-19 15:48 - 00037160 _____ () C:\Windows\system32\perfd01F.dat
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\bg-BG
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\system32\Drivers\bg-BG
2014-02-19 15:36 - 2014-02-19 15:36 - 00000000 ____D () C:\Windows\bg-BG
2014-02-19 15:26 - 2014-02-19 15:26 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sr-Latn-CS
2014-02-19 15:26 - 2014-02-19 15:26 - 00000000 ____D () C:\Windows\sr-Latn-CS
2014-02-19 15:25 - 2014-02-19 15:25 - 00000000 ____D () C:\Windows\system32\Drivers\sr-Latn-CS
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\et-EE
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\system32\Drivers\et-EE
2014-02-19 15:15 - 2014-02-19 15:15 - 00000000 ____D () C:\Windows\et-EE
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\lt-LT
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\system32\Drivers\lt-LT
2014-02-19 15:06 - 2014-02-19 15:06 - 00000000 ____D () C:\Windows\lt-LT
2014-02-19 14:57 - 2014-02-19 14:57 - 00000000 ____D () C:\Windows\SysWOW64\ru
2014-02-19 14:56 - 2014-02-19 14:56 - 00000000 ____D () C:\Windows\system32\ru
2014-02-19 14:55 - 2014-02-19 14:58 - 00336704 _____ () C:\Windows\system32\perfi019.dat
2014-02-19 14:55 - 2014-02-19 14:58 - 00039446 _____ () C:\Windows\system32\perfd019.dat
2014-02-19 14:45 - 2014-02-19 14:45 - 00000000 ____D () C:\Windows\SysWOW64\no
2014-02-19 14:44 - 2014-02-19 14:44 - 00000000 ____D () C:\Windows\system32\no
2014-02-19 14:43 - 2014-02-19 14:46 - 00298300 _____ () C:\Windows\system32\perfi014.dat
2014-02-19 14:43 - 2014-02-19 14:46 - 00036156 _____ () C:\Windows\system32\perfd014.dat
2014-02-19 14:33 - 2014-02-19 14:33 - 00000000 ____D () C:\Windows\SysWOW64\el
2014-02-19 14:32 - 2014-02-19 14:32 - 00000000 ____D () C:\Windows\system32\el
2014-02-19 14:31 - 2014-02-19 14:34 - 00369984 _____ () C:\Windows\system32\perfi008.dat
2014-02-19 14:31 - 2014-02-19 14:34 - 00045182 _____ () C:\Windows\system32\perfd008.dat
2014-02-19 13:49 - 2014-02-19 13:49 - 00000000 ____D () C:\Windows\SysWOW64\sv
2014-02-19 13:48 - 2014-02-19 13:48 - 00000000 ____D () C:\Windows\system32\sv
2014-02-19 13:47 - 2014-02-19 13:50 - 00294764 _____ () C:\Windows\system32\perfi01D.dat
2014-02-19 13:47 - 2014-02-19 13:50 - 00037052 _____ () C:\Windows\system32\perfd01D.dat
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\th-TH
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\th-TH
2014-02-19 13:39 - 2014-02-19 13:39 - 00000000 ____D () C:\Windows\system32\Drivers\th-TH
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\SysWOW64\nl
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\SysWOW64\0413
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\system32\nl
2014-02-19 13:30 - 2014-02-19 13:30 - 00000000 ____D () C:\Windows\system32\0413
2014-02-19 13:30 - 2011-04-12 09:17 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-02-19 13:30 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-02-19 13:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-02-19 13:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-02-19 13:29 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-02-19 13:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-02-19 13:28 - 2014-02-19 13:32 - 00341322 _____ () C:\Windows\system32\perfi013.dat
2014-02-19 13:28 - 2014-02-19 13:32 - 00043068 _____ () C:\Windows\system32\perfd013.dat
2014-02-19 13:21 - 2014-02-19 13:21 - 00000000 ____D () C:\Windows\lv-LV
2014-02-19 13:20 - 2014-02-19 13:20 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\lv-LV
2014-02-19 13:20 - 2014-02-19 13:20 - 00000000 ____D () C:\Windows\system32\Drivers\lv-LV
2014-02-19 13:13 - 2014-02-19 13:13 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\uk-UA
2014-02-19 13:12 - 2014-02-19 13:12 - 00000000 ____D () C:\Windows\uk-UA
2014-02-19 13:12 - 2014-02-19 13:12 - 00000000 ____D () C:\Windows\system32\Drivers\uk-UA
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\SysWOW64\he
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\he-IL
2014-02-19 13:03 - 2014-02-19 13:03 - 00000000 ____D () C:\Windows\system32\he
2014-02-19 13:02 - 2014-02-19 13:02 - 00000000 ____D () C:\Windows\he-IL
2014-02-19 13:01 - 2014-02-19 13:05 - 00229316 _____ () C:\Windows\system32\perfi00D.dat
2014-02-19 13:01 - 2014-02-19 13:05 - 00032166 _____ () C:\Windows\system32\perfd00D.dat
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sl-SI
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\system32\Drivers\sl-SI
2014-02-19 12:51 - 2014-02-19 12:51 - 00000000 ____D () C:\Windows\sl-SI
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\sk-SK
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\system32\Drivers\sk-SK
2014-02-19 12:43 - 2014-02-19 12:43 - 00000000 ____D () C:\Windows\sk-SK
2014-02-19 07:12 - 2014-02-19 07:12 - 00001164 _____ () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-02-19 07:11 - 2014-02-16 19:00 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-02-18 21:53 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Skype
2014-02-18 13:02 - 2014-02-17 08:50 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-18 12:58 - 2009-07-14 03:34 - 00000478 _____ () C:\Windows\win.ini
2014-02-18 12:03 - 2014-02-18 12:03 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-18 05:53 - 2014-02-15 12:10 - 00109280 _____ () C:\Users\Geiger\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-18 05:52 - 2009-07-14 05:45 - 00418992 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-18 05:51 - 2010-11-21 04:47 - 00096318 _____ () C:\Windows\PFRO.log
2014-02-17 22:00 - 2014-02-17 22:00 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-02-17 22:00 - 2014-02-17 22:00 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-02-17 10:36 - 2014-02-17 07:50 - 00000000 ____D () C:\ProgramData\Adobe
2014-02-17 09:01 - 2014-02-15 20:53 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Zubehör
2014-02-17 09:00 - 2014-02-17 07:51 - 00000000 ____D () C:\Users\Geiger\Desktop\wizard
2014-02-17 08:54 - 2014-02-17 08:54 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Windows\PCHEALTH
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-02-17 08:53 - 2014-02-17 08:53 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-02-17 08:53 - 2014-02-17 08:50 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-17 08:53 - 2011-04-12 09:28 - 00000000 ____D () C:\Windows\ShellNew
2014-02-17 08:53 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-02-17 08:53 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-02-17 08:52 - 2014-02-17 08:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-02-17 08:51 - 2014-02-17 08:51 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-02-17 08:51 - 2014-02-17 08:51 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Microsoft Help
2014-02-17 08:50 - 2014-02-17 08:50 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-02-17 08:47 - 2014-02-17 08:47 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\WinRAR
2014-02-17 08:46 - 2014-02-17 08:46 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-17 07:52 - 2014-02-17 07:49 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Adobe
2014-02-17 07:52 - 2014-02-15 09:54 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Adobe
2014-02-17 07:50 - 2014-02-17 07:50 - 00002023 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-02-17 07:50 - 2014-02-17 07:50 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-02-17 07:28 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ICQ-Profile
2014-02-16 21:42 - 2014-02-16 21:42 - 00000184 _____ () C:\Windows\LMv4.UNI
2014-02-16 21:42 - 2014-02-16 21:42 - 00000000 ____D () C:\Program Files (x86)\Launch Manager
2014-02-16 21:30 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\sweet-page
2014-02-16 21:30 - 2014-02-15 12:24 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-16 21:28 - 2014-02-16 21:23 - 00000000 ____D () C:\Program Files (x86)\DSP-worx
2014-02-16 21:27 - 2014-02-16 21:24 - 00000000 ____D () C:\Program Files\DivX
2014-02-16 21:27 - 2014-02-16 21:23 - 00000000 ____D () C:\ProgramData\DivX
2014-02-16 21:24 - 2014-02-16 21:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\DivX
2014-02-16 21:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-16 21:23 - 2014-02-16 21:23 - 00003240 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\LavFilters
2014-02-16 21:23 - 2014-02-16 21:23 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\CDXReader
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ATI
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\Users\Geiger\AppData\Local\ATI
2014-02-16 21:17 - 2014-02-16 21:17 - 00000000 ____D () C:\ProgramData\ATI
2014-02-16 19:36 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-02-16 19:36 - 2014-02-16 19:36 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-02-16 19:36 - 2014-02-15 20:38 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-16 19:36 - 2014-02-15 11:49 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-02-16 19:35 - 2014-02-16 19:34 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-02-16 19:33 - 2014-02-15 12:02 - 00000352 _____ () C:\Windows\RtlWlanInstall.log
2014-02-16 19:33 - 2014-02-15 12:02 - 00000000 ____D () C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
2014-02-16 19:32 - 2014-02-16 19:32 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-02-16 19:32 - 2014-02-15 12:08 - 00006656 _____ () C:\Windows\system32\bcmwlrc.dll
2014-02-16 19:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-16 19:31 - 2014-02-16 19:31 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect
2014-02-16 19:29 - 2014-02-15 11:53 - 00000000 ____D () C:\Windows\SysWOW64\Atheros_L1e
2014-02-16 19:27 - 2014-02-15 11:16 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-02-16 19:17 - 2014-02-16 19:17 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer
2014-02-16 19:17 - 2014-02-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-02-16 19:06 - 2014-02-16 19:01 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\awesomehp
2014-02-16 19:01 - 2014-02-16 19:01 - 00003252 _____ () C:\Windows\System32\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}
2014-02-16 18:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-16 18:42 - 2014-02-16 18:42 - 00000456 _____ () C:\Users\Geiger\Desktop\Router-Einstellungen.txt
2014-02-16 18:23 - 2014-02-16 18:23 - 00000000 ____D () C:\ProgramData\Sun
2014-02-16 18:23 - 2014-02-16 18:23 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-16 18:22 - 2014-02-16 18:23 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-16 18:22 - 2014-02-16 18:22 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-16 18:22 - 2014-02-16 18:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-16 17:47 - 2014-02-15 09:54 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-16 17:36 - 2014-02-16 17:36 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\vlc
2014-02-15 21:51 - 2014-02-15 21:51 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-02-15 21:49 - 2014-02-15 20:37 - 00000000 ____D () C:\AMD
2014-02-15 20:52 - 2014-02-15 20:52 - 00000000 ____D () C:\ProgramData\OEM
2014-02-15 20:52 - 2014-02-15 20:51 - 00000000 ____D () C:\Program Files\Acer
2014-02-15 20:51 - 2014-02-15 20:51 - 00000000 ____D () C:\ProgramData\Acer
2014-02-15 20:38 - 2014-02-15 20:38 - 00000000 ____D () C:\Program Files\ATI
2014-02-15 20:30 - 2014-02-15 20:30 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-02-15 20:25 - 2014-02-15 20:24 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-02-15 20:24 - 2014-02-15 20:24 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-02-15 20:24 - 2014-02-15 20:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\TuneUp Software
2014-02-15 20:23 - 2014-02-15 20:23 - 00001089 _____ () C:\Users\Geiger\Desktop\Cheat Engine.lnk
2014-02-15 20:23 - 2014-02-15 20:23 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3
2014-02-15 20:19 - 2014-02-15 20:19 - 00001029 _____ () C:\Users\Public\Desktop\Biet-O-Matic.lnk
2014-02-15 20:19 - 2014-02-15 20:18 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-02-15 20:18 - 2014-02-15 20:18 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\BOM
2014-02-15 20:17 - 2014-02-15 20:17 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-15 20:16 - 2014-02-15 20:16 - 00001953 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Canneverbe Limited
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-15 20:16 - 2014-02-15 20:16 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-02-15 20:11 - 2014-02-15 20:11 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-15 20:11 - 2014-02-15 20:11 - 00001771 _____ () C:\Users\Geiger\Desktop\ICQ.lnk
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\ICQM
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Skype
2014-02-15 20:11 - 2014-02-15 20:11 - 00000000 ____D () C:\ProgramData\Skype
2014-02-15 17:50 - 2011-10-20 10:07 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-02-15 17:50 - 2009-07-14 06:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-02-15 17:50 - 2009-07-14 06:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-02-15 17:49 - 2009-07-14 05:45 - 00000000 ____D () C:\Windows\Setup
2014-02-15 17:33 - 2014-02-15 17:33 - 00000000 ____D () C:\Windows.old
2014-02-15 13:57 - 2014-02-15 13:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Steuer-Sparbuch
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Peter´s Ordner
2014-02-15 13:46 - 2014-02-15 13:46 - 00000000 ____D () C:\Users\Geiger\Documents\Handbücher
2014-02-15 13:45 - 2014-02-15 13:44 - 00000000 ____D () C:\Users\Geiger\Documents\ASV 1935- Jugendleiter-Ordner
2014-02-15 13:44 - 2014-02-15 13:44 - 00000000 ____D () C:\Users\Geiger\Documents\ASV 1935
2014-02-15 13:42 - 2014-02-15 13:42 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01009.Wdf
2014-02-15 13:39 - 2014-02-15 13:39 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Avira
2014-02-15 13:33 - 2014-02-15 13:31 - 00000000 ____D () C:\ProgramData\Avira
2014-02-15 13:33 - 2014-02-15 13:31 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-15 13:31 - 2014-02-15 13:31 - 00001141 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-02-15 13:30 - 2014-02-15 13:30 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-15 13:27 - 2014-02-15 13:27 - 00001861 _____ () C:\Users\Geiger\Desktop\UseNeXT by Tangysoft.lnk
2014-02-15 13:27 - 2014-02-15 13:27 - 00000000 ____D () C:\Program Files (x86)\UseNeXT
2014-02-15 13:14 - 2014-02-15 13:14 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Macromedia
2014-02-15 13:14 - 2014-02-15 13:14 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Macromedia
2014-02-15 13:06 - 2014-02-15 13:06 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-02-15 13:06 - 2014-02-15 13:06 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Mozilla
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\Users\Geiger\AppData\Local\Mozilla
2014-02-15 12:24 - 2014-02-15 12:24 - 00000000 ____D () C:\ProgramData\Mozilla
2014-02-15 12:10 - 2014-02-15 12:10 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\Intel Corporation
2014-02-15 12:08 - 2014-02-15 12:08 - 00000000 ____D () C:\Program Files\Broadcom
2014-02-15 12:05 - 2014-02-15 12:05 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-15 12:03 - 2014-02-15 12:03 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-02-15 11:49 - 2014-02-15 11:49 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\InstallShield
2014-02-15 11:48 - 2014-02-15 11:48 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-02-15 11:16 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\restore
2014-02-15 11:15 - 2014-02-15 11:15 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-02-15 09:54 - 2014-02-15 09:54 - 00000000 ___RD () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-15 09:53 - 2014-02-15 09:53 - 00000020 ___SH () C:\Users\Geiger\ntuser.ini
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Vorlagen
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Startmenü
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Netzwerkumgebung
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Lokale Einstellungen
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Eigene Dateien
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Druckumgebung
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Documents\Eigene Musik
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Documents\Eigene Bilder
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Local\Verlauf
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\AppData\Local\Anwendungsdaten
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 _SHDL () C:\Users\Geiger\Anwendungsdaten
2014-02-15 09:53 - 2014-02-15 09:53 - 00000000 ____D () C:\Users\Geiger\AppData\Local\VirtualStore
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-02-15 09:29 - 2014-02-15 09:29 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-02-15 09:29 - 2013-05-16 09:47 - 00000000 __SHD () C:\Recovery
2014-02-15 09:29 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-15 09:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-02-15 09:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-02-15 09:25 - 2014-01-14 05:45 - 00000000 ____D () C:\Windows\Panther
2014-02-15 09:07 - 2009-07-14 05:51 - 00000275 _____ () C:\Windows\setuperr.log
2014-02-15 08:55 - 2009-07-14 05:46 - 00003806 _____ () C:\Windows\DtcInstall.log
2014-02-15 08:54 - 2014-01-13 20:48 - 00003652 _____ () C:\Windows\TSSysprep.log
2014-02-15 08:52 - 2014-02-15 08:52 - 00000000 ____D () C:\Windows\CSC
2014-02-06 13:16 - 2014-02-15 13:42 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-15 13:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-15 13:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-15 13:42 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-15 13:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-15 13:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-15 13:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-15 13:42 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-15 13:42 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-15 13:42 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-15 13:42 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-15 13:42 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-15 13:42 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-15 13:42 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-15 13:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-15 13:42 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-15 13:42 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-15 13:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-15 13:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-15 13:42 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-15 13:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-15 13:42 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-15 13:42 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-15 13:42 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-15 13:42 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-15 13:42 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-15 13:42 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-15 13:42 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-15 13:42 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-15 13:42 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-15 13:42 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-15 13:42 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-15 13:42 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-15 13:42 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-15 13:42 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-15 13:42 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-15 13:42 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-15 13:42 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-15 13:42 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-04 19:09 - 2014-02-15 13:56 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 01981696 _____ () C:\Windows\system32\iglhxa64.cpa
2014-01-29 23:02 - 2014-01-29 23:02 - 00963452 _____ () C:\Windows\SysWOW64\igcodeckrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00963452 _____ () C:\Windows\system32\igcodeckrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00279000 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00272928 _____ () C:\Windows\SysWOW64\igvpkrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00272928 _____ () C:\Windows\system32\igvpkrng600.bin
2014-01-29 23:02 - 2014-01-29 23:02 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00059104 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00058796 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00058109 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-01-29 23:02 - 2014-01-29 23:02 - 00001074 _____ () C:\Windows\system32\iglhxa64.vp

Some content of TEMP:
====================
C:\Users\Geiger\AppData\Local\Temp\avgnt.exe
C:\Users\Geiger\AppData\Local\Temp\bitool.dll
C:\Users\Geiger\AppData\Local\Temp\blindbatSetup.exe
C:\Users\Geiger\AppData\Local\Temp\FixMyRegistry.exe
C:\Users\Geiger\AppData\Local\Temp\PrefJsonCpp.exe
C:\Users\Geiger\AppData\Local\Temp\Quarantine.exe
C:\Users\Geiger\AppData\Local\Temp\smt_awesomehp_new.exe
C:\Users\Geiger\AppData\Local\Temp\SpeedUpMyComputer.exe
C:\Users\Geiger\AppData\Local\Temp\sqlite3.exe
C:\Users\Geiger\AppData\Local\Temp\v-bates.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-19 14:20

==================== End Of Log ============================

--- --- ---

--- --- ---

aharonov · 27.02.2014, 09:47

Ok, wie läuft der Rechner nach diesen Schritten?

Schritt 1

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [UpdateMyDrivers] - C:\Program Files (x86)\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [SpeedUpMyComputer] - C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [FixMyRegistry] - C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
SearchScopes: HKLM - {6ADE8F7D-85A3-44F0-8214-34FCFB72D45A} URL = hxxp://www.sm.de/?q={searchTerms}
FF SearchEngineOrder.1: SuchMaschine
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
2014-02-16 21:23 - 2014-02-16 21:23 - 00003240 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-16 21:23 - 2014-02-27 09:23 - 00000296 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-16 21:23 - 2014-02-16 21:30 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\sweet-page
2014-02-16 19:01 - 2014-02-27 09:31 - 00000284 _____ () C:\Windows\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}.job
2014-02-16 19:01 - 2014-02-16 19:06 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\awesomehp
2014-02-16 19:01 - 2014-02-16 19:01 - 00003252 _____ () C:\Windows\System32\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}
2014-02-16 19:00 - 2014-02-19 07:11 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
C:\Users\Geiger\AppData\Local\Temp\*.exe

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Schritt 2

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 3

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Raubkatze21 · 27.02.2014, 16:37

also bißher läuft er so wie immer. ok der neustart war diesmal ein bißchen länger

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 27-02-2014 02
Ran by Geiger at 2014-02-27 10:46:19 Run:1
Running from C:\Users\Geiger\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [UpdateMyDrivers] - C:\Program Files (x86)\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [SpeedUpMyComputer] - C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\...\Run: [FixMyRegistry] - C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
SearchScopes: HKLM - {6ADE8F7D-85A3-44F0-8214-34FCFB72D45A} URL = hxxp://www.sm.de/?q={searchTerms}
FF SearchEngineOrder.1: SuchMaschine
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
2014-02-16 21:23 - 2014-02-16 21:23 - 00003240 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-16 21:23 - 2014-02-27 09:23 - 00000296 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-16 21:23 - 2014-02-16 21:30 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\sweet-page
2014-02-16 19:01 - 2014-02-27 09:31 - 00000284 _____ () C:\Windows\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}.job
2014-02-16 19:01 - 2014-02-16 19:06 - 00000000 ____D () C:\Users\Geiger\AppData\Roaming\awesomehp
2014-02-16 19:01 - 2014-02-16 19:01 - 00003252 _____ () C:\Windows\System32\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}
2014-02-16 19:00 - 2014-02-19 07:11 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
C:\Users\Geiger\AppData\Local\Temp\*.exe
         
*****************

HKU\S-1-5-21-3536636990-926426094-3709322888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\UpdateMyDrivers => Value deleted successfully.
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\SpeedUpMyComputer => Value deleted successfully.
HKU\S-1-5-21-3536636990-926426094-3709322888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\FixMyRegistry => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6ADE8F7D-85A3-44F0-8214-34FCFB72D45A} => Key deleted successfully.
HKCR\CLSID\{6ADE8F7D-85A3-44F0-8214-34FCFB72D45A} => Key not found.
Firefox SearchEngineOrder.1 deleted successfully.
HKLM\Software\Mozilla\Firefox\Extensions\\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744} => Value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744} => Value deleted successfully.
C:\Windows\System32\Tasks\Digital Sites => Moved successfully.
C:\Windows\Tasks\Digital Sites.job => Moved successfully.
C:\Users\Geiger\AppData\Roaming\sweet-page => Moved successfully.
C:\Windows\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4}.job => Moved successfully.
C:\Users\Geiger\AppData\Roaming\awesomehp => Moved successfully.
C:\Windows\System32\Tasks\FF Watcher {BECCBCC6-5298-4EBA-B833-B9975177EBD4} => Moved successfully.
C:\Program Files (x86)\SmartTweak => Moved successfully.

"C:\Users\Geiger\AppData\Local\Temp\*.exe" directory move:

Could not move "C:\Users\Geiger\AppData\Local\Temp\*.exe" directory. => Scheduled to move on reboot.


=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-02-27 10:51:01)<=

"C:\Users\Geiger\AppData\Local\Temp\*.exe" => Directory could not move.

==== End of Fixlog ====

hier der bericht von Malwarebytes Anti-Malware

Code:

ATTFilter

 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.02.27.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Geiger :: GEIGER-PC [Administrator]

Schutz: Aktiviert

27.02.2014 11:02:54
mbam-log-2014-02-27 (11-02-54).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 217023
Laufzeit: 14 Minute(n), 28 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 1
HKLM\Software\awesomehpSoftware (PUP.Optional.Awesomehp.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 9
C:\Users\Geiger\AppData\Local\Temp\bitool.dll (PUP.Optional.Somoto) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Geiger\AppData\Local\Temp\smt_awesomehp_new.exe (PUP.Optional.SkyTech.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Geiger\AppData\Local\Temp\fullpackage_temp1392573650\package1.zip (PUP.Optional.SkyTech.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Geiger\AppData\Local\Temp\fullpackage_temp1392573650\QQBrowserFrame.dll (PUP.Optional.SkyTech.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Geiger\AppData\Local\Temp\fullpackage_temp1392573650\tmp\SupTab.exe (PUP.Optional.SupTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Geiger\AppData\Local\Temp\fullpackage_temp1392582185\package1.zip (PUP.Optional.SkyTech.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Geiger\AppData\Local\Temp\fullpackage_temp1392582185\QQBrowserFrame.dll (PUP.Optional.SkyTech.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Geiger\AppData\Local\Temp\is357113909\13323201_stp\FEB12www.sweet-page.exe (PUP.Optional.SkyTech.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Geiger\AppData\Local\Temp\is357113909\13323212_stp\FindRightSetup.exe (PUP.Optional.FindRight.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

so und nun der letze log

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=95cd597dd596d74193625235581614be
# engine=17247
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-27 01:19:56
# local_time=2014-02-27 02:19:56 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 94 12276 6155221 5049 0
# compatibility_mode=5893 16776574 100 94 540140 145137046 0 0
# scanned=76572
# found=0
# cleaned=0
# scan_time=5698
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=95cd597dd596d74193625235581614be
# engine=17250
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-27 03:34:12
# local_time=2014-02-27 04:34:12 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 94 20332 6163277 13105 0
# compatibility_mode=5893 16776574 100 94 548196 145145102 0 0
# scanned=243277
# found=0
# cleaned=0
# scan_time=7969

aharonov · 27.02.2014, 16:39

Also ist jetzt alles in Ordnung?

Raubkatze21 · 27.02.2014, 16:43

Also ich hoffe es jetzt mal. Kann selber jetzt nichts sagen was die ganzen Log Dateien sprechen. Was sagst du.

aharonov · 27.02.2014, 17:11

Ja die Logfiles musst du nicht anschauen, keine Sorge..

Aber hast du keine zusätzlichen Tabs in Firefox (oder sonstige sichtbaren Probleme) mehr?

Raubkatze21 · 27.02.2014, 18:25

Also im moment öffnet sich ungewollt kein neuer tab. Das was mich aber stutzig macht wenn ich bei Google was eingeben und dann das jenige anklicke öffnet er das denn als Tab. Vorher war es immer so das man dann direkt auf der Seite gekommen ist, ohne neuen Tab. Oder liegt das jetzt an Google?

aharonov · 27.02.2014, 19:00

Zitat:

Das was mich aber stutzig macht wenn ich bei Google was eingeben und dann das jenige anklicke öffnet er das denn als Tab. Vorher war es immer so das man dann direkt auf der Seite gekommen ist, ohne neuen Tab. Oder liegt das jetzt an Google?

Das kannst du in den Google Sucheinstellungen entsprechend einstellen (als Option "Jedes ausgewählte Ergebnis in einem neuen Browserfenster öffnen").

Schritt 1

Lade dir

TFC (TempFileCleaner von Oldtimer) herunter und speichere es auf den Desktop.

Öffne die TFC.exe.
Vista und Win 7 User mit Rechtsklick "als Administrator starten".
Schließe alle anderen Programme.
Drücke auf den Button Start.
Falls du zu einem Neustart aufgefordert wirst, bestätige diesen.

Cleanup

Zum Schluss werden wir jetzt noch unsere Tools (inklusive der Quarantäne-Ordner) wegräumen, die verseuchten Systemwiederherstellungspunkte löschen und alle Einstellungen wieder herrichten. Auch diese Schritte sind noch wichtig und sollten in der angegebenen Reihenfolge ausgeführt werden.

Bei MBAM würd ich dir unbedingt empfehlen, es zu behalten und wöchentlich einen Quick-Scan durchzuführen. Wenn du es nicht weiter verwenden möchtest, kannst du es jetzt normal über die Systemsteuerung deinstallieren.
Auch den ESET Online Scanner kannst du behalten, um ab und zu (monatlich) für eine Zweitmeinung dein System damit zu scannen. Falls du ESET deinstallieren möchtest, dann kannst du das ebenfalls über die Systemsteuerung tun.
Downloade dir bitte auf jeden Fall DelFix auf deinen Desktop.
- Schliesse alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- DelFix entfernt u.a. alle von uns verwendeten Programme und löscht sich anschliessend selbst.
Wenn jetzt noch etwas übriggeblieben ist, dann kannst du es einfach manuell löschen.

>> OK <<
Wir sind durch, deine Logs sehen für mich im Moment sauber aus.

Ich habe dir nachfolgend ein paar Hinweise und Tipps zusammengestellt, die dazu beitragen sollen, dass du in Zukunft unsere Hilfe nicht mehr brauchen wirst.

Bitte gib mir danach noch eine kurze Rückmeldung, wenn auch von deiner Seite keine Probleme oder Fragen mehr offen sind, damit ich dieses Thema als erledigt betrachten kann.

Epilog: Tipps, Dos & Don'ts

Aktualität von System und Software

Das Betriebsystem Windows muss zwingend immer auf dem neusten Stand sein. Stelle sicher, dass die automatischen Updates aktiviert sind:

Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren

Auch die installierte Software sollte immer in der aktuellsten Version vorliegen.
Speziell gilt das für den Browser, Java, Flash-Player und PDF-Reader, denn bekannte Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim blossen Besuch einer präparierten Website per Drive-by Download Malware zu installieren. Das kann sogar auf normalerweise legitimen Websites geschehen, wenn es einem Angreifer gelungen ist, seinen Code in die Seite einzuschleusen, und ist deshalb relativ unberechenbar.

Mit diesem kleinen Plugin-Check kannst du regelmässig diese Komponenten auf deren Aktualität überprüfen.
Achte auch darauf, dass alte, nicht mehr verwendete Versionen deinstalliert sind.
Optional: Das Programm Secunia Personal Software Inspector kann dich dabei unterstützen, stets die aktuellen Versionen sämtlicher installierter Software zu nutzen.

Sicherheits-Software

Eine Bemerkung vorneweg: Jede Softwarelösung hat ihre Schwächen. Die gesamte Verantwortung für die Sicherheit auf Software zu übertragen und einen Rundum-Schutz zu erwarten, wäre eine gefährliche Illusion. Bei unbedachtem oder bewusst risikoreichem Verhalten wird auch das beste Programm früher oder später seinen Dienst versagen (z.B. ein Virenscanner, der eine verseuchte Datei nicht erkennt).
Trotzdem ist entsprechende Software natürlich wichtig und hilft dir in Kombination mit einem gut gewarteten (up-to-date) System und durchdachtem Verhalten, deinen Rechner sauber zu halten.

Nutze einen Virenscanner mit Hintergrundwächter mit stets aktueller Datenbank. Welches Produkt gewählt wird, spielt keine so entscheidende Rolle. Wenn du ein kommerzielles Programm kaufen möchtest, kann ich dir Emsisoft Anti-Malware empfehlen (die Freeware-Version davon reicht aber nicht, denn die hat keinen Hintergrundwächter). Bevorzugst du ein kostenloses Produkt, dann ist Avast! Free Antivirus eine gute Alternative.
Betreibe aber keinesfalls zwei Wächter parallel, die würden sich gegenseitig behindern.
Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.
Zusätzlich zum Virenscanner kannst du dein System regelmässig mit einem On-Demand Antimalwareprogramm scannen. Empfehlenswert ist die Free-Version von Malwarebytes Anti-Malware. Vor jedem Scan die Datenbank updaten.
Optional: Das Programm Sandboxie führt Anwendungen in einer isolierten Umgebung ("Sandkasten") aus, so dass keine Änderungen am System vorgenommen werden können. Wenn du deinen Browser darin startest, vermindert sich die Chance, dass beim Surfen eingefangene Malware sich dauerhaft im System festsetzen kann.
Optional: Das Addon WOT (web of trust) warnt dich vor einer als schädlich gemeldeten Website, bevor sie geladen wird. Für verschiedene Browser erhältlich.

Es liegt in der Natur der Sache, dass die am weitesten verbreitete Anwendungs-Software auch am häufigsten von Malware-Autoren attackiert wird. Es kann daher bereits einen kleinen Sicherheitsgewinn darstellen, wenn man alternative Software (z.B. einen alternativen PDF Reader) benutzt.
Anstelle des Internet Explorers kann man beispielsweise den Mozilla Firefox einsetzen, für welchen es zwei nützliche Addons zur Empfehlung gibt:

NoScript verhindert standardmässig das Ausführen von aktiven Inhalten (Java, JavaScript, Flash, ..) für sämtliche Websites. Du kannst selber nach dem Prinzip einer Whitelist festlegen, welchen Seiten du vertrauen und Scripts erlauben willst, auch temporär.
Adblock Plus blockt die meisten Werbebanner weg. Solche Banner können nebst ihrer störenden Erscheinung auch als Infektionsherde fungieren.

(Un-)Sicheres Verhalten im Internet

Nebst unbemerkten Drive-by Installationen wird Malware aber auch oft mehr oder weniger aktiv vom Benutzer selbst installiert.

Der Besuch zwielichtiger Websites kann bereits Risiken bergen. Und Downloads aus dubiosen Quellen sind immer russisches Roulette. Auch wenn der Virenscanner im Moment darin keine Bedrohung erkennt, muss das nichts bedeuten.

Illegale Cracks, Keygens und Serials sind ein ausgesprochen einfacher (und ein beliebter) Weg, um Malware zu verbreiten.
Bei Dateien aus Peer-to-Peer- und Filesharingprogrammen oder von Filehostern kannst du dir nie sicher sein, ob auch wirklich drin ist, was drauf steht.

Oft wird auch versucht, den Benutzer mit mehr oder weniger trickreichen Methoden dazu zu bringen, eine für ihn verhängnisvolle Handlung selbst auszuführen (Überbegriff Social Engineering).

Surfe mit Vorsicht und lass dich nicht von irgendwie interessant erscheinenden Elementen zu einem vorschnellen Klick verleiten. Lass dich nicht von Popups täuschen, die aussehen wie System- oder Virenmeldungen.
Sei skeptisch bei unerwarteten E-Mails, insbesondere wenn sie Anhänge enthalten. Auch wenn sie auf den ersten Blick authentisch wirken, persönliche Daten von dir enthalten oder vermeintlich von einem bekannten Absender stammen: Lieber nochmals in Ruhe überdenken oder nachfragen, anstatt einfach mal Links oder ausführbare Anhänge öffnen oder irgendwo deine Daten eingeben.
Auch in sozialen Netzwerken oder über Instant Messaging Systeme können schädliche Links oder Dateien die Runde machen. Erhältst du von einem deiner Freunde eine Nachricht, die merkwürdig ist oder so sensationell interessant oder skandalös tönt, dass man einfach draufklicken muss, dann hat bei ihm/ihr wahrscheinlich Neugier über Verstand gesiegt und du solltest nicht denselben Fehler machen.
Lass die Dateiendungen anzeigen, so dass du dich nicht täuschen lässt, wenn eine ausführbare Datei über ein doppelte Dateiendung kaschiert wird, z.B. Nacktfoto.jpg.exe.

Nervige Adware (Werbung) und unnötige Toolbars werden auch meist durch den Benutzer selbst mitinstalliert.

Lade Software in erster Priorität immer direkt vom Hersteller herunter. Viele Softwareportale (z.B. Softonic) packen noch unnützes Zeug mit in die Installation. Alternativ dazu wähle ein sauberes Portal wie Filepony oder heise.
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen fürs Programm irrelevanten Ergänzungen.

Allgemeine Hinweise

Abschliessend noch ein paar grundsätzliche Bemerkungen:

Dein Benutzerkonto für den alltäglichen Gebrauch sollte nicht über Administratorenrechte verfügen. Nutze ein Konto mit eingeschränkten Rechten (Windows XP) bzw. aktiviere die Benutzerkontensteuerung (UAC) auf der höchsten Stufe (Windows Vista / 7).
Erstelle regelmässig Backups deiner Daten und Dokumente auf externen Datenträgern, bei wichtigen Dateien mindestens zweifach. Nicht nur ein Malwarebefall kann schmerzhaften Datenverlust nach sich ziehen sondern auch ein gewöhnlicher Festplattendefekt.
Die Autorun/Autoplay-Funktion stellt ein Risiko dar, denn sie ermöglicht es, dass beispielsweise beim Einstecken eines entsprechend infizierten USB-Sticks der Befall auf den Rechner überspringt. Überlege dir, ob du diese Funktion nicht besser deaktivieren möchtest.
Wähle deine Passwörter gemäss den gängigen Regeln, um besser gegen Brute-Force- und Wörterbuchattacken gewappnet zu sein. Benutze jedes deiner Passwörter nur einmal und ändere sie regelmässig.
Der Nutzen von Registry-Cleanern zur Performancesteigerung ist umstritten. Auf jeden Fall lässt sich damit grosser Schaden anrichten, wenn man nicht weiss, was man tut. Wir empfehlen deshalb, die Finger von der Registry zu lassen. Um von Zeit zu Zeit die temporären Dateien zu löschen, genügt TFC.

Wenn du möchtest, kannst du das Forum mit einer kleinen Spende unterstützen.
Es bleibt mir nur noch, dir unbeschwertes und sicheres Surfen zu wünschen und dass wir uns hier so bald nicht wiedersehen.

26.02.2014, 20:41	#4
aharonov /// TB-Ausbilder	Bei mir erscheint ein neuer Tab bei Firefox: "Auf ihrem PC wurde Spyware entdeckt" Hänge die Logfiles bitte nicht an (das erschwert mir das Auswerten massiv), sondern füge deren Inhalt direkt innerhalb von Codetags ein: [code]Inhalt Logfile[/code]. (Anleitung)) Falls es zu viele Zeichen sind, dann teile die Logfiles auf mehrere Posts auf. __________________ cheers, Leo

27.02.2014, 16:39	#11
aharonov /// TB-Ausbilder	Bei mir erscheint ein neuer Tab bei Firefox: "Auf ihrem PC wurde Spyware entdeckt" Also ist jetzt alles in Ordnung? __________________ cheers, Leo

27.02.2014, 17:11	#13
aharonov /// TB-Ausbilder	Bei mir erscheint ein neuer Tab bei Firefox: "Auf ihrem PC wurde Spyware entdeckt" Ja die Logfiles musst du nicht anschauen, keine Sorge.. Aber hast du keine zusätzlichen Tabs in Firefox (oder sonstige sichtbaren Probleme) mehr? __________________ cheers, Leo

Bei mir erscheint ein neuer Tab bei Firefox: "Auf ihrem PC wurde Spyware entdeckt"

Log-Analyse und Auswertung: Bei mir erscheint ein neuer Tab bei Firefox: "Auf ihrem PC wurde Spyware entdeckt"