| |
| |||||||
Log-Analyse und Auswertung: PC nach Download eines Programms extrem langsam (Win 8)Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
18.03.2014, 16:43
| #1 |
| |  PC nach Download eines Programms extrem langsam (Win 8) Hallo! Ich habe die Tage leider als ich in Eile war mir irgendetwas eingefangen als ich bei einem Programm die Standard-Installation gewählt habe. Seitdem ist der Pc super langsam, nicht mal Tippen läuft flüssig. Deinstallation der Programme und Toolbars hat bisher nicht zum Erfolg geführt. Ich hoffe, es kann mir jemand weiterhelfen. Viele Grüße, Nina |
|
18.03.2014, 17:56
| #2 |
| /// the machine /// TB-Ausbilder    | PC nach Download eines Programms extrem langsam (Win 8) hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
18.03.2014, 18:27
| #3 |
| | PC nach Download eines Programms extrem langsam (Win 8) FRST Logfile:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Nina (administrator) on NINÄ on 18-03-2014 18:13:53
Running from C:\Users\Nina\AppData\Local\Microsoft\Windows\INetCache\IE\72D1S6N6
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Smartbar) C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Spotify Ltd) C:\Users\Nina\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(The MathWorks, Inc) e:\bin\win64\setup.exe
() C:\Users\Nina\AppData\Local\Smartbar\Application\Lrcnta.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2894152 2013-09-13] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-12] (CyberLink Corp.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] ( (Atheros Communications))
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\Run: [Spotify Web Helper] - C:\Users\Nina\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-13] (Spotify Ltd)
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\Run: [RGSC] - C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [305064 2008-11-14] (Take-Two Interactive Software, Inc.)
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\Run: [Browser Infrastructure Helper] - C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.exe [21536 2014-02-09] (Smartbar)
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\MountPoints2: {d63e8fc7-9bc2-11e2-be91-20689dd6ee4f} - "E:\LaunchU3.exe" -a
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\MountPoints2: {ef518092-aeb1-11e3-bec8-50b7c373cad4} - "E:\setup.exe"
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\MountPoints2: {efe34efb-8b45-11e3-bec2-50b7c373cad4} - "F:\setup.exe"
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [184048 2013-11-11] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [184048 2013-11-11] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [156256 2013-11-11] (NVIDIA Corporation)
Startup: C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Nina\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TimeLeft.lnk
ShortcutTarget: TimeLeft.lnk -> C:\Program Files (x86)\TimeLeft3\TimeLeft.exe (NesterSoft Inc.)
Startup: C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoM,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoM,&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=cmi_14_11_ff&cd=2XzuyEtN2Y1L1QzuyDtD0ByB0CtAyBtA0C0A0DyEtBzzyDyCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyC0E0EyD0CtAzztGtA0F0FtCtGzyyB0F0CtGyByE0A0DtGtAyCtDtA0B0AtA0EzztDtC0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0CtBtA0ByCtC0DtGtByBtD0BtGtA0FtAtBtG0EtByD0EtGtC0AtAtAyEtByDtAtA0Fzy0E2Q&cr=1863242975&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=cmi_14_11_ff&cd=2XzuyEtN2Y1L1QzuyDtD0ByB0CtAyBtA0C0A0DyEtBzzyDyCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyC0E0EyD0CtAzztGtA0F0FtCtGzyyB0F0CtGyByE0A0DtGtAyCtDtA0B0AtA0EzztDtC0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0CtBtA0ByCtC0DtGtByBtD0BtGtA0FtAtBtG0EtByD0EtGtC0AtAtAyEtByDtAtA0Fzy0E2Q&cr=1863242975&ir=
SearchScopes: HKLM - DefaultScope {29B1A520-C273-44ED-A82A-DB524E785CA0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {29B1A520-C273-44ED-A82A-DB524E785CA0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoA,&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoA,&q={searchTerms}
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoM,&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoM,&q={searchTerms}
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoA,&q={searchTerms}
BHO: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\WINDOWS\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Toolbar: HKLM - Shopping Helper Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Shopping Helper Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\WINDOWS\SysWOW64\mscoree.dll (Microsoft Corporation)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default
FF user.js: detected! => C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\searchplugins\Mysearchdial.xml
FF SearchPlugin: C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Youtube MP3 Podcaster - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\youtubemp3podcaster@jeremy.d.gregorio.com [2014-03-14]
FF Extension: YouTube Unblocker - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\youtubeunblocker@unblocker.yt [2014-03-14]
FF Extension: Shopping Helper Smartbar - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{f5faedf0-95b6-7f41-115b-1dc9ec1a58bc} [2014-03-14]
FF Extension: {7232b622-1e2c-469d-8c59-f451ffbe683e} - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{7232b622-1e2c-469d-8c59-f451ffbe683e}.xpi [2013-11-12]
FF Extension: MySearchDial - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}.xpi [2014-03-18]
FF Extension: QuickTime Player Plus - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{bd870469-ddc2-4719-b3ef-eb4684d9113e}.xpi [2013-11-14]
FF Extension: Adblock Plus - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-24]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-23] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593976 2012-09-05] (Samsung Electronics CO., LTD.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100104 2013-09-06] (ELAN Microelectronics Corp.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-19] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-02-05] (Disc Soft Ltd)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 LUMDriver; C:\windows\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2012-10-20] (Windows (R) 2003 DDK 3790 provider)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
S3 AthBTPort; \SystemRoot\system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; \SystemRoot\system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; \SystemRoot\system32\drivers\btath_avdt.sys [X]
S3 BTATH_HCRP; \SystemRoot\System32\drivers\btath_hcrp.sys [X]
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; \SystemRoot\System32\drivers\btath_rcp.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-18 18:13 - 2014-03-18 18:13 - 00000000 ____D () C:\FRST
2014-03-18 17:29 - 2014-03-18 17:29 - 00000000 ____D () C:\Program Files\MATLAB
2014-03-18 16:17 - 2014-03-18 16:17 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-03-18 16:16 - 2014-03-18 16:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-03-18 16:15 - 2014-03-18 16:16 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-03-18 16:15 - 2014-03-18 16:15 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-03-18 16:10 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-03-18 16:10 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-03-18 16:09 - 2014-03-18 17:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-18 16:09 - 2014-03-18 16:15 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-03-18 16:07 - 2014-03-18 16:07 - 00000000 __RHD () C:\MSOCache
2014-03-18 15:58 - 2014-03-18 15:58 - 00000000 ____D () C:\Program Files\office.tmp
2014-03-15 14:37 - 2014-03-15 14:38 - 00000000 ____D () C:\Users\Nina\Desktop\SoSe 2014
2014-03-14 00:31 - 2014-03-17 00:31 - 00000378 _____ () C:\WINDOWS\Tasks\APSnotifierPP3.job
2014-03-14 00:31 - 2014-03-16 04:40 - 00000378 _____ () C:\WINDOWS\Tasks\APSnotifierPP2.job
2014-03-14 00:31 - 2014-03-14 04:05 - 00000380 _____ () C:\WINDOWS\Tasks\APSnotifierPP1.job
2014-03-14 00:31 - 2014-03-14 04:05 - 00000160 _____ () C:\Users\Nina\AppData\Roaming\aps.uninstall.scan.results
2014-03-14 00:31 - 2014-03-14 00:31 - 00002808 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP1
2014-03-14 00:31 - 2014-03-14 00:31 - 00002806 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP3
2014-03-14 00:31 - 2014-03-14 00:31 - 00002806 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP2
2014-03-14 00:27 - 2014-03-14 00:27 - 00000046 _____ () C:\Users\Nina\AppData\Roaming\WB.CFG
2014-03-14 00:27 - 2014-03-13 16:24 - 00954784 _____ (AnyProtect.com) C:\Users\Nina\AppData\Local\AnyProtectScannerSetup.exe
2014-03-14 00:18 - 2014-03-14 00:18 - 01730272 _____ (Audible Inc.) C:\Users\Nina\Downloads\ActiveSetupN(1).exe
2014-03-14 00:14 - 2014-03-14 04:12 - 00000000 ____D () C:\Users\Nina\AppData\Local\Mobogenie
2014-03-14 00:14 - 2014-03-14 00:22 - 00000000 ____D () C:\Users\Nina\AppData\Local\cache
2014-03-14 00:14 - 2014-03-14 00:14 - 00000000 ____D () C:\Users\Nina\.android
2014-03-14 00:14 - 2014-03-14 00:14 - 00000000 _____ () C:\Users\Nina\daemonprocess.txt
2014-03-14 00:12 - 2014-03-14 04:06 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\Systweak
2014-03-14 00:12 - 2013-08-22 18:36 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\WINDOWS\system32\roboot64.exe
2014-03-14 00:11 - 2014-03-14 00:11 - 00000000 ____D () C:\Users\Nina\AppData\Local\Smartbar
2014-03-14 00:11 - 2014-03-14 00:11 - 00000000 ____D () C:\Users\Nina\AppData\Local\LPT
2014-03-13 16:10 - 2014-01-31 17:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-03-13 16:10 - 2014-01-31 17:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-03-13 16:10 - 2014-01-31 14:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-03-13 16:10 - 2014-01-29 10:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-03-13 16:10 - 2014-01-29 09:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-03-13 16:10 - 2014-01-29 09:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-03-13 16:10 - 2014-01-29 09:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-03-13 16:10 - 2014-01-29 09:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-03-13 16:10 - 2014-01-29 08:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-03-13 16:10 - 2014-01-29 08:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-03-13 16:10 - 2014-01-29 07:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-03-13 16:10 - 2014-01-29 01:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-03-13 16:10 - 2014-01-27 20:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-03-13 16:10 - 2014-01-27 19:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-03-13 16:10 - 2014-01-27 19:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-03-13 16:10 - 2014-01-27 18:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-03-13 16:10 - 2014-01-27 16:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-03-13 16:10 - 2014-01-27 16:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-03-13 16:10 - 2014-01-18 00:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-03-13 16:10 - 2014-01-17 22:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-03-13 16:10 - 2013-12-21 15:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-03-13 16:09 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-13 16:09 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-13 16:09 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-13 16:09 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-13 16:09 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-13 16:09 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-13 16:09 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-13 16:09 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-13 16:09 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-13 16:09 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-13 16:09 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-13 16:09 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-13 16:09 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-13 16:09 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-13 16:09 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-13 16:09 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-13 16:09 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-03-13 16:09 - 2014-01-31 17:15 - 00311640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-03-13 16:09 - 2014-01-31 10:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-03-13 16:09 - 2014-01-29 08:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-03-13 16:09 - 2014-01-27 20:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-03-13 16:09 - 2014-01-27 20:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-03-13 16:09 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-03-13 16:09 - 2014-01-27 19:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-03-13 16:09 - 2014-01-27 19:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-03-13 16:09 - 2014-01-27 18:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-03-13 16:09 - 2014-01-27 18:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-03-13 16:09 - 2014-01-27 12:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-03-13 16:09 - 2013-12-21 09:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-03-13 16:09 - 2013-12-20 11:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-03-13 16:09 - 2013-12-20 11:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-03-13 16:08 - 2014-02-11 04:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-03-13 16:08 - 2014-02-11 03:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-03-13 16:08 - 2014-02-11 03:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-03-13 16:08 - 2013-10-31 01:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-03-13 16:08 - 2013-10-31 01:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-03-13 16:08 - 2013-10-31 01:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-03-11 22:06 - 2014-03-11 22:06 - 00000000 ____D () C:\Users\Nina\Desktop\Audible
2014-03-11 22:05 - 2014-03-11 22:05 - 01730272 _____ (Audible Inc.) C:\Users\Nina\Downloads\ActiveSetupN.exe
2014-03-11 21:58 - 2014-03-14 00:19 - 00001985 _____ () C:\Users\UpdatusUser\Desktop\Audible Manager.lnk
2014-03-11 21:58 - 2014-03-14 00:19 - 00001985 _____ () C:\Users\Nina\Desktop\Audible Manager.lnk
2014-03-11 21:58 - 2014-03-12 22:41 - 00000000 ____D () C:\Users\Nina\AppData\Local\Audible
2014-03-11 21:58 - 2014-03-11 21:58 - 00255352 _____ (Audible, Inc.) C:\WINDOWS\SysWOW64\awrdscdc.ax
2014-03-11 21:58 - 2003-03-18 21:20 - 01060864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2014-03-11 21:57 - 2014-03-14 00:19 - 00000000 ____D () C:\Program Files (x86)\Audible
2014-03-11 21:57 - 2014-03-11 21:58 - 00000000 ____D () C:\Users\Nina\Documents\Audible
2014-03-11 21:57 - 2014-03-11 21:57 - 00000000 ____D () C:\Users\Public\Documents\Audible
2014-03-03 17:00 - 2014-03-03 17:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2014-03-03 17:00 - 2014-03-03 17:00 - 00000000 ____D () C:\WINDOWS\system32\NV
2014-03-01 13:56 - 2014-03-15 14:38 - 00000000 ____D () C:\Users\Nina\Desktop\Windows 7
2014-03-01 13:56 - 2014-03-10 19:03 - 00034886 _____ () C:\Users\Nina\Desktop\SecureDownloadManager.log
2014-03-01 13:55 - 2014-03-01 13:55 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\e-academy Inc
2014-03-01 13:55 - 2014-03-01 13:55 - 00000000 ____D () C:\Users\Nina\AppData\Local\e-academy Inc
2014-03-01 12:53 - 2013-11-27 16:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-01 12:53 - 2013-11-27 14:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-03-01 12:53 - 2013-11-26 10:21 - 18577920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-03-01 12:53 - 2013-11-23 12:49 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-03-01 12:53 - 2013-11-23 04:57 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-03-01 12:53 - 2013-11-23 04:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-03-01 12:53 - 2013-11-23 04:25 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-03-01 12:53 - 2013-11-23 04:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-03-01 12:52 - 2013-12-09 01:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-03-01 12:52 - 2013-12-09 01:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-03-01 12:52 - 2013-11-27 16:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-01 12:52 - 2013-11-27 15:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-03-01 12:52 - 2013-11-27 13:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-03-01 12:52 - 2013-11-27 11:54 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-03-01 12:52 - 2013-11-27 11:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-01 12:52 - 2013-11-27 11:08 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-03-01 12:52 - 2013-11-27 10:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-03-01 12:52 - 2013-11-27 10:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-01 12:52 - 2013-11-27 10:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-01 12:52 - 2013-11-27 10:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-03-01 12:52 - 2013-11-27 09:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-03-01 12:52 - 2013-11-27 09:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-03-01 12:52 - 2013-11-26 14:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-01 12:52 - 2013-11-26 14:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-01 12:52 - 2013-11-26 12:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-03-01 12:52 - 2013-11-26 09:28 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-03-01 12:52 - 2013-11-25 02:45 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-03-01 12:52 - 2013-11-25 02:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-03-01 12:52 - 2013-11-25 00:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-03-01 12:52 - 2013-11-25 00:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-03-01 12:52 - 2013-11-23 13:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-03-01 12:52 - 2013-11-23 09:19 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-03-01 12:52 - 2013-11-23 08:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-03-01 12:52 - 2013-11-23 08:13 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-03-01 12:52 - 2013-11-23 08:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-03-01 12:52 - 2013-11-23 05:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-01 12:52 - 2013-11-23 04:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-03-01 12:52 - 2013-11-23 04:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-03-01 12:52 - 2013-11-21 07:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-03-01 12:52 - 2013-11-21 07:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-03-01 12:52 - 2013-11-15 15:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-03-01 12:52 - 2013-11-15 15:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-03-01 12:52 - 2013-11-15 15:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-03-01 12:52 - 2013-11-15 14:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-03-01 12:52 - 2013-10-31 01:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-03-01 12:52 - 2013-10-31 00:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-02-26 22:18 - 2014-02-26 22:18 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-26 22:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-02-26 22:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-26 22:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-02-26 22:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-26 22:16 - 2014-02-26 22:18 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-26 22:16 - 2013-11-10 22:32 - 06610720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 03477280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 01042720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 00920864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2014-02-26 22:16 - 2013-11-10 22:32 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2014-02-26 22:16 - 2013-11-06 21:10 - 03457007 _____ () C:\WINDOWS\system32\nvcoproc.bin
2014-02-26 22:15 - 2014-02-26 22:15 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-23 19:37 - 2013-11-11 04:27 - 29339936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 25256224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 22103840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 15930288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 15699056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 13656024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 12947384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 11313952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2014-02-23 19:37 - 2013-11-11 04:27 - 09221632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 07721112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 07648512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 06330064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02990792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02971424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02789664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02633376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02367776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02007840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6432768.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 01515296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6432768.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 01421584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 01230576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00681760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00603424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00586016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00515360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00353504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00305600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00184048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00156256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2014-02-23 19:37 - 2013-11-11 04:27 - 00022814 _____ () C:\WINDOWS\system32\nvinfo.pb
==================== One Month Modified Files and Folders =======
2014-03-18 18:13 - 2014-03-18 18:13 - 00000000 ____D () C:\FRST
2014-03-18 18:10 - 2013-10-23 17:25 - 01430921 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-18 18:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-03-18 17:29 - 2014-03-18 17:29 - 00000000 ____D () C:\Program Files\MATLAB
2014-03-18 17:26 - 2013-04-04 18:11 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-03-18 17:24 - 2013-11-06 19:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-18 17:18 - 2012-12-01 13:53 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3777642976-2438380877-1723110391-1002
2014-03-18 17:13 - 2014-03-18 16:09 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-18 16:17 - 2014-03-18 16:17 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-03-18 16:17 - 2013-09-30 04:59 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-03-18 16:17 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-18 16:16 - 2014-03-18 16:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-03-18 16:16 - 2014-03-18 16:15 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-03-18 16:15 - 2014-03-18 16:15 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-03-18 16:15 - 2014-03-18 16:09 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-03-18 16:14 - 2013-10-23 18:39 - 00003910 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3A4D2D99-FF87-4C43-84E8-B39F8B1D66AF}
2014-03-18 16:11 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-03-18 16:11 - 2013-08-22 14:25 - 00000167 _____ () C:\WINDOWS\win.ini
2014-03-18 16:10 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-03-18 16:10 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-03-18 16:10 - 2012-09-10 13:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-03-18 16:07 - 2014-03-18 16:07 - 00000000 __RHD () C:\MSOCache
2014-03-18 15:58 - 2014-03-18 15:58 - 00000000 ____D () C:\Program Files\office.tmp
2014-03-18 15:57 - 2014-02-05 19:21 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-03-18 15:56 - 2014-02-05 19:23 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\DAEMON Tools Lite
2014-03-17 20:21 - 2012-12-04 20:45 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\Spotify
2014-03-17 19:45 - 2012-12-04 20:47 - 00000000 ____D () C:\Users\Nina\AppData\Local\Spotify
2014-03-17 19:37 - 2013-03-06 23:18 - 00000000 ____D () C:\Users\Nina\AppData\Local\CrashDumps
2014-03-17 00:31 - 2014-03-14 00:31 - 00000378 _____ () C:\WINDOWS\Tasks\APSnotifierPP3.job
2014-03-16 16:06 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-03-16 13:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-03-16 04:45 - 2012-09-10 12:47 - 00000000 ____D () C:\ProgramData\WinClon
2014-03-16 04:40 - 2014-03-14 00:31 - 00000378 _____ () C:\WINDOWS\Tasks\APSnotifierPP2.job
2014-03-16 04:40 - 2013-09-29 20:04 - 00010900 _____ () C:\WINDOWS\PFRO.log
2014-03-16 04:40 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-03-16 04:40 - 2013-08-22 15:44 - 00518320 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-16 04:39 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-03-16 04:38 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-16 04:38 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-16 04:38 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-16 04:38 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-15 14:38 - 2014-03-15 14:37 - 00000000 ____D () C:\Users\Nina\Desktop\SoSe 2014
2014-03-15 14:38 - 2014-03-01 13:56 - 00000000 ____D () C:\Users\Nina\Desktop\Windows 7
2014-03-15 14:38 - 2012-12-19 14:24 - 00000000 ____D () C:\Users\Nina\Documents\HAW Hamburg
2014-03-15 13:10 - 2012-09-10 12:50 - 00000000 ____D () C:\ProgramData\Samsung
2014-03-15 13:10 - 2012-09-10 11:50 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-03-14 04:12 - 2014-03-14 00:14 - 00000000 ____D () C:\Users\Nina\AppData\Local\Mobogenie
2014-03-14 04:11 - 2012-12-01 11:09 - 00000000 ___RD () C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-14 04:06 - 2014-03-14 00:12 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\Systweak
2014-03-14 04:05 - 2014-03-14 00:31 - 00000380 _____ () C:\WINDOWS\Tasks\APSnotifierPP1.job
2014-03-14 04:05 - 2014-03-14 00:31 - 00000160 _____ () C:\Users\Nina\AppData\Roaming\aps.uninstall.scan.results
2014-03-14 00:56 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-03-14 00:31 - 2014-03-14 00:31 - 00002808 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP1
2014-03-14 00:31 - 2014-03-14 00:31 - 00002806 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP3
2014-03-14 00:31 - 2014-03-14 00:31 - 00002806 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP2
2014-03-14 00:27 - 2014-03-14 00:27 - 00000046 _____ () C:\Users\Nina\AppData\Roaming\WB.CFG
2014-03-14 00:22 - 2014-03-14 00:14 - 00000000 ____D () C:\Users\Nina\AppData\Local\cache
2014-03-14 00:19 - 2014-03-11 21:58 - 00001985 _____ () C:\Users\UpdatusUser\Desktop\Audible Manager.lnk
2014-03-14 00:19 - 2014-03-11 21:58 - 00001985 _____ () C:\Users\Nina\Desktop\Audible Manager.lnk
2014-03-14 00:19 - 2014-03-11 21:57 - 00000000 ____D () C:\Program Files (x86)\Audible
2014-03-14 00:18 - 2014-03-14 00:18 - 01730272 _____ (Audible Inc.) C:\Users\Nina\Downloads\ActiveSetupN(1).exe
2014-03-14 00:14 - 2014-03-14 00:14 - 00000000 ____D () C:\Users\Nina\.android
2014-03-14 00:14 - 2014-03-14 00:14 - 00000000 _____ () C:\Users\Nina\daemonprocess.txt
2014-03-14 00:14 - 2013-10-23 17:32 - 00000000 ____D () C:\Users\Nina
2014-03-14 00:11 - 2014-03-14 00:11 - 00000000 ____D () C:\Users\Nina\AppData\Local\Smartbar
2014-03-14 00:11 - 2014-03-14 00:11 - 00000000 ____D () C:\Users\Nina\AppData\Local\LPT
2014-03-13 16:24 - 2014-03-14 00:27 - 00954784 _____ (AnyProtect.com) C:\Users\Nina\AppData\Local\AnyProtectScannerSetup.exe
2014-03-12 22:41 - 2014-03-11 21:58 - 00000000 ____D () C:\Users\Nina\AppData\Local\Audible
2014-03-11 22:06 - 2014-03-11 22:06 - 00000000 ____D () C:\Users\Nina\Desktop\Audible
2014-03-11 22:05 - 2014-03-11 22:05 - 01730272 _____ (Audible Inc.) C:\Users\Nina\Downloads\ActiveSetupN.exe
2014-03-11 21:58 - 2014-03-11 21:58 - 00255352 _____ (Audible, Inc.) C:\WINDOWS\SysWOW64\awrdscdc.ax
2014-03-11 21:58 - 2014-03-11 21:57 - 00000000 ____D () C:\Users\Nina\Documents\Audible
2014-03-11 21:57 - 2014-03-11 21:57 - 00000000 ____D () C:\Users\Public\Documents\Audible
2014-03-11 21:27 - 2013-04-04 18:11 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-03-10 19:09 - 2013-09-30 05:14 - 01780340 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-10 19:09 - 2013-09-30 04:56 - 00766620 _____ () C:\WINDOWS\system32\perfh007.dat
2014-03-10 19:09 - 2013-09-30 04:56 - 00159902 _____ () C:\WINDOWS\system32\perfc007.dat
2014-03-10 19:06 - 2013-08-22 15:46 - 00341830 _____ () C:\WINDOWS\setupact.log
2014-03-10 19:03 - 2014-03-01 13:56 - 00034886 _____ () C:\Users\Nina\Desktop\SecureDownloadManager.log
2014-03-09 23:22 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-03-09 23:17 - 2012-12-01 11:06 - 00000000 ____D () C:\Users\Nina\AppData\Local\Packages
2014-03-04 23:53 - 2013-11-15 10:30 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-03-04 23:53 - 2013-11-15 10:30 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-03 17:02 - 2012-12-01 11:09 - 00000000 ___RD () C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-03 17:00 - 2014-03-03 17:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2014-03-03 17:00 - 2014-03-03 17:00 - 00000000 ____D () C:\WINDOWS\system32\NV
2014-03-03 16:57 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-03-03 16:57 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-03-03 16:57 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-03-01 20:07 - 2013-09-24 11:37 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-01 20:07 - 2013-09-24 11:37 - 00000000 ____D () C:\ProgramData\Skype
2014-03-01 13:55 - 2014-03-01 13:55 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\e-academy Inc
2014-03-01 13:55 - 2014-03-01 13:55 - 00000000 ____D () C:\Users\Nina\AppData\Local\e-academy Inc
2014-03-01 12:44 - 2013-09-07 17:24 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-01 12:39 - 2012-12-11 22:13 - 88567024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-01 07:05 - 2014-03-13 16:09 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-01 05:58 - 2014-03-13 16:09 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-01 05:30 - 2014-03-13 16:09 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-01 05:17 - 2014-03-13 16:09 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-01 04:54 - 2014-03-13 16:09 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-01 04:47 - 2014-03-13 16:09 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-01 04:42 - 2014-03-13 16:09 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-01 04:18 - 2014-03-13 16:09 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-01 04:14 - 2014-03-13 16:09 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-01 04:10 - 2014-03-13 16:09 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-01 04:03 - 2014-03-13 16:09 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-01 03:57 - 2014-03-13 16:09 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-01 03:38 - 2014-03-13 16:09 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-01 03:32 - 2014-03-13 16:09 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-01 03:27 - 2014-03-13 16:09 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-01 03:25 - 2014-03-13 16:09 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-01 03:25 - 2014-03-13 16:09 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-26 22:18 - 2014-02-26 22:18 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-26 22:18 - 2014-02-26 22:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-26 22:18 - 2013-10-23 17:25 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-26 22:18 - 2013-10-23 17:25 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-26 22:16 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Help
2014-02-26 22:15 - 2014-02-26 22:15 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-26 20:11 - 2012-12-01 18:41 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\vlc
Files to move or delete:
====================
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
Some content of TEMP:
====================
C:\Users\Nina\AppData\Local\Temp\avgnt.exe
C:\Users\Nina\AppData\Local\Temp\ose00000.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2014-03-13 16:09] - [2014-01-31 17:15] - 0311640 ____A (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02
LastRegBack: 2014-03-16 13:43
==================== End Of Log ============================
Addition.txt: --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Nina at 2014-03-18 18:17:41
Running from C:\Users\Nina\AppData\Local\Microsoft\Windows\INetCache\IE\72D1S6N6
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
Allshare Play Link (HKLM-x32\...\{91786428-D4AA-476D-8AF9-A63FFAC2901F}) (Version: 1.0.0 - Samsung)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 2893968.4759644.48.2147344384 - Audible, Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.1912 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.1912 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Dassault Systemes Software B19 (HKLM\...\Dassault Systemes B19_0) (Version: - )
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
Dassault Systemes Software VC9 Prerequisites x86-x64 (HKLM\...\{F2F2DEA7-36AB-4E13-907C-D8BDE775EF97}) (Version: 9.1.2 - Dassault Systemes)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.48.5 - Electronic Arts)
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
EA Download Manager (HKLM-x32\...\EADM) (Version: 5.0.0.255 - Electronic Arts, Inc.)
Easy File Share (HKLM-x32\...\{A7C37D4B-F37A-42E8-9B6A-B28C18AD4C12}) (Version: 1.3.4 - Samsung Electronics CO.,LTD.)
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 14.3.20130522 - Landesfinanzdirektion Thüringen)
E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung Electronics CO., LTD.)
EPSON SX440 Series Printer Uninstall (HKLM\...\EPSON SX440 Series) (Version: - SEIKO EPSON Corporation)
ETDWare X64 11.7.18.2_WHQL (HKLM\...\Elantech) (Version: 11.7.18.2 - ELAN Microelectronic Corp.)
Extended Update (HKCU\...\UpdaterEX) (Version: - )
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
GIMP 2.8.2 (HKLM\...\GIMP-2_is1) (Version: 2.8.2 - The GIMP Team)
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Help Desk (HKLM\...\{AEC9D273-E162-4614-83F1-722B8C74B185}) (Version: 1.0.96 - Samsung Electronics CO., LTD.)
HP Deskjet 1050 J410 series - Grundlegende Software für das Gerät (HKLM\...\{C3F12DD0-54B1-4B2B-A82B-FA43502BC550}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33070) (Version: 3.6.1.33070.11 - Intel)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Access MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Groove MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 25.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 25.0 (x86 de)) (Version: 25.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 25.0 - Mozilla)
Mozilla Thunderbird 17.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 17.0 (x86 de)) (Version: 17.0 - Mozilla)
MSC Nastran 2012.2 Student Edition (HKLM-x32\...\{CA5CE004-973B-4316-9FD7-A8BBD6C52ED7}) (Version: 12.2.0 - MSC.Software Corporation)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
NVIDIA Grafiktreiber 327.68 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.68 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.141.953 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.14.17 (Version: 1.14.17 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Systemsteuerung 327.68 (Version: 327.68 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.0 - Frank Heindörfer, Philip Chinery)
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version: - PopCap Games)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.306 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Quick Starter (HKLM\...\{EC36E2BC-86F7-44C9-84B2-93930F0FBDBF}) (Version: 1.0.2 - Samsung Electronics CO., LTD.)
Raccolta foto (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.19.726.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7055 - Realtek Semiconductor Corp.)
Recovery (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 6.0.10.0 - Samsung Electronics CO., LTD.)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
RollerCoaster Tycoon 2 (HKLM-x32\...\{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}) (Version: - )
RollerCoaster Tycoon 2: Wacky Worlds (HKLM-x32\...\{B1AD83A0-DC92-41E3-B111-E9472349768C}) (Version: - )
S Agent (Version: 1.1.45 - Samsung Electronics CO., LTD.) Hidden
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Settings (HKLM-x32\...\{52E5DE60-C96B-42CC-9A37-FE04725940AE}) (Version: 2.0.0 - Samsung Electronics CO., LTD.)
Shopping Helper Smartbar (HKLM-x32\...\{AC6E9B2A-A7E6-4B17-8A6C-29D519673E12}) (Version: 10.215.63.15249 - ReSoft Ltd.) <==== ATTENTION
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
Support Center (HKLM\...\{843A1BDC-0879-4E5B-83E1-B81CC0CF3580}) (Version: 2.1.1201 - Samsung Electronics CO., LTD.)
Support Center FAQ (x32 Version: 1.0.1 - Samsung Electronics CO., LTD.) Hidden
SW Update (HKLM-x32\...\{DA06101F-FD76-4BF0-88BD-B26A197005E3}) (Version: 2.1.21 - Samsung Electronics CO., LTD.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TimeLeft (HKLM-x32\...\TIMELEFT3_is1) (Version: 3.62 - NesterSoft Inc.)
User Guide (HKLM-x32\...\{039EA659-E421-45C6-8913-BED5D69B5536}) (Version: 1.1.00 - Samsung Electronics CO., LTD.)
VBA (3821b) (x32 Version: 6.01.00.1234 - Microsoft Corporation) Hidden
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
Windows Driver Package - Samsung Electronics Co. Ltd. (RadioHIDMini) HIDClass (07/27/2012 20.57.1.735) (HKLM\...\9F04C462DAB591BDCCE784F77E4D4F1736010B92) (Version: 07/27/2012 20.57.1.735 - Samsung Electronics Co. Ltd.)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
==================== Restore Points =========================
18-03-2014 15:06:37 Installed Microsoft Office Professional Plus 2013
18-03-2014 15:08:01 PROPLUSR
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {122F7C5D-A5BB-4442-8AFD-35C4515B0F7A} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {1DC19FEC-9FEB-4E10-80FA-27E0A2CDF341} - System32\Tasks\Settings => C:\Program Files (x86)\Samsung\Settings\sSettings.exe [2012-09-05] (Samsung Electronics CO., LTD.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {21606BA0-A48C-4A87-98F4-501D0F93F60B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {2C45A21A-C7B4-41CB-BE6B-81340F233C77} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11] (Adobe Systems Incorporated)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4A49376D-2E02-4DEA-9492-38EDFFB55B04} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {661A4E64-4165-4939-A4FD-C79518B3F231} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6C267B8D-AE54-48DC-802B-A0EACDF6CE3A} - System32\Tasks\MATLAB R2013b Startup Accelerator => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe [2013-08-05] ()
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7C71EB44-63F4-4D2A-8D3D-5A63BCF6A7A4} - System32\Tasks\WLANStartup => C:\Program Files (x86)\Samsung\Easy Settings\WLANStartup.exe
Task: {8326EA95-BA4E-4473-9C84-87DAA20D6E50} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-01] (Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9AF8E235-D3F0-499F-A457-B8650237C9FC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {C3291FA9-B876-4BD0-8937-17D9BC4552C4} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D6489B36-F1B8-4220-90F6-C5EC9AC6E7BD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {E8395A9C-4BB2-4F2D-8F6C-622F352B0E3E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {E99F740A-CFB4-448A-BF72-8C408CDC2042} - System32\Tasks\advRecovery => C:\Program Files\Samsung\Recovery\WCScheduler.exe [2013-08-23] (SEC)
Task: {EA833489-F06D-4081-8B80-F8FEE934AC03} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2013-10-16] (Samsung Electronics CO., LTD.)
Task: {F1A78784-A181-491A-8D71-D04C4383CF85} - \UpdaterEX No Task File
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe
Task: C:\WINDOWS\Tasks\MATLAB R2013b Startup Accelerator.job => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe
==================== Loaded Modules (whitelisted) =============
2012-09-05 08:50 - 2012-09-05 08:50 - 00085112 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
2013-09-25 03:04 - 2013-09-25 03:04 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-09-25 03:01 - 2013-09-25 03:01 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-09-25 03:08 - 2013-09-25 03:08 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2012-12-14 01:42 - 2012-12-14 01:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-10-16 19:15 - 2013-10-16 19:15 - 00088624 _____ () C:\Program Files\Samsung\S Agent\ToastX64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-08-05 23:20 - 2013-08-05 23:20 - 00022528 ____R () E:\bin\win64\nativewebproxy.dll
2014-03-18 17:13 - 2013-07-02 02:45 - 01420800 _____ () C:\Users\Nina\AppData\Local\Temp\TMWDF37.tmp\bin\win64\instutil.dll
2014-03-18 17:13 - 2013-08-05 23:20 - 00022528 _____ () C:\Users\Nina\AppData\Local\Temp\TMWDF37.tmp\bin\win64\nativewebproxy.dll
2013-07-02 02:45 - 2013-07-02 02:45 - 01420800 ____R () E:\bin\win64\instutil.dll
2014-03-18 17:13 - 2013-08-05 23:24 - 00089088 _____ () C:\Users\Nina\AppData\Local\Temp\TMWDF37.tmp\bin\win64\mwinstall.dll
2013-07-08 23:02 - 2013-07-08 23:02 - 00115712 ____R () e:\bin\win64\libmwwinreg.dll
2014-02-09 12:40 - 2014-02-09 12:40 - 00012832 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Lrcnta.exe
2013-03-14 18:07 - 2013-03-14 18:05 - 00397704 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00028792 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdWrapper.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 01012856 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmd.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00110712 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsBase.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00056440 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\HookDllPS2.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00211064 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\WinCRT.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00026744 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsAPI.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00110712 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsBase.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00060536 _____ () C:\Program Files (x86)\Samsung\Settings\EasyMovieEnhancer.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00103544 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsCmdClient.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00033824 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00063520 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srau.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00166432 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 02310688 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00058400 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\spbl.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00152608 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00013344 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\siem.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00054304 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\sppsm.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00728096 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00082464 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014368 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00017440 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00052256 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srut.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00020512 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srsbs.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00059424 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00037408 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srbu.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014368 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\sgml.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00053280 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014880 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srpdm.dll
2014-02-09 12:40 - 2014-02-09 12:40 - 00048160 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2014-02-09 12:37 - 2014-02-09 12:37 - 00026144 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00025632 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00193056 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\sgmu.dll
2014-02-09 12:37 - 2014-02-09 12:37 - 00061440 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00247328 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srns.dll
2012-09-10 12:55 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 03:34 - 2012-06-08 03:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-02-07 13:15 - 2013-09-16 12:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00141344 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\SmartbarInternetExplorerBHO.dll
2014-02-09 12:40 - 2014-02-09 12:40 - 00020512 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\lrcnt.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Nina\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: EA Core => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MSCONFIG\startupreg: Epson Stylus SX440 => C:\windows\system32\spool\DRIVERS\x64\3\E_IATIHBE.EXE /FU "C:\Users\Nina\AppData\Local\Temp\E_S26FF.tmp" /EF "HKCU"
MSCONFIG\startupreg: Spotify => "C:\Users\Nina\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Nina\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/18/2014 05:31:54 PM) (Source: Application Hang) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.16518 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 332b4
Startzeit: 01cf42ba42a32de4
Endzeit: 125
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Berichts-ID: ce1764ce-aeba-11e3-bec8-50b7c373cad4
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/18/2014 05:12:27 PM) (Source: Application Hang) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.16518 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2ffcc
Startzeit: 01cf42b9a0c494f3
Endzeit: 46
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Berichts-ID: 16b889fa-aeb8-11e3-bec8-50b7c373cad4
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/18/2014 05:10:12 PM) (Source: Application Hang) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.16518 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1b2a8
Startzeit: 01cf4201b4e3bc3f
Endzeit: 364
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Berichts-ID: c524b8ec-aeb7-11e3-bec8-50b7c373cad4
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/18/2014 10:15:17 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/17/2014 07:37:39 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.16518, Zeitstempel: 0x52f347b2
Name des fehlerhaften Moduls: MSHTML.dll, Version: 11.0.9600.16521, Zeitstempel: 0x5311622b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001cb438
ID des fehlerhaften Prozesses: 0x16e00
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (03/17/2014 00:07:11 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/16/2014 00:07:10 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/15/2014 01:07:25 PM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/14/2014 08:09:47 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.16518, Zeitstempel: 0x52f347b2
Name des fehlerhaften Moduls: MSHTML.dll, Version: 11.0.9600.16518, Zeitstempel: 0x52f365cb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003681db
ID des fehlerhaften Prozesses: 0x5d0
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (03/14/2014 04:12:43 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: avgnt.exe, Version: 14.0.3.332, Zeitstempel: 0x52f8ba9d
Name des fehlerhaften Moduls: avgnt.exe, Version: 14.0.3.332, Zeitstempel: 0x52f8ba9d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000bb40
ID des fehlerhaften Prozesses: 0x1568
Startzeit der fehlerhaften Anwendung: 0xavgnt.exe0
Pfad der fehlerhaften Anwendung: avgnt.exe1
Pfad des fehlerhaften Moduls: avgnt.exe2
Berichtskennung: avgnt.exe3
Vollständiger Name des fehlerhaften Pakets: avgnt.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: avgnt.exe5
System errors:
=============
Error: (03/18/2014 04:40:18 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (03/18/2014 04:33:07 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (03/18/2014 10:06:20 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/18/2014 10:03:26 AM) (Source: DCOM) (User: Ninä)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (03/17/2014 10:08:31 PM) (Source: DCOM) (User: Ninä)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (03/17/2014 10:08:01 PM) (Source: DCOM) (User: Ninä)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (03/17/2014 10:00:01 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/16/2014 07:09:32 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (03/16/2014 06:56:35 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 107.
Error: (03/16/2014 06:56:35 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Eine SSL 3.0-Verbindungsanforderung wurde von einer Remoteclientanwendung übermittelt, jedoch werden keine der Verschlüsselungssammlungen, die von der Clientanwendung unterstützt werden, vom Server unterstützt. Fehler bei der SSL-Verbindungsanforderung.
Microsoft Office Sessions:
=========================
Error: (03/18/2014 05:31:54 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE11.0.9600.16518332b401cf42ba42a32de4125C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEce1764ce-aeba-11e3-bec8-50b7c373cad4
Error: (03/18/2014 05:12:27 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE11.0.9600.165182ffcc01cf42b9a0c494f346C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE16b889fa-aeb8-11e3-bec8-50b7c373cad4
Error: (03/18/2014 05:10:12 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE11.0.9600.165181b2a801cf4201b4e3bc3f364C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEc524b8ec-aeb7-11e3-bec8-50b7c373cad4
Error: (03/18/2014 10:15:17 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/17/2014 07:37:39 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.1651852f347b2MSHTML.dll11.0.9600.165215311622bc0000005001cb43816e0001cf420fe84e4529C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\WINDOWS\SYSTEM32\MSHTML.dll37769b4c-ae03-11e3-bec8-50b7c373cad4
Error: (03/17/2014 00:07:11 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/16/2014 00:07:10 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/15/2014 01:07:25 PM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/14/2014 08:09:47 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.1651852f347b2MSHTML.dll11.0.9600.1651852f365cbc0000005003681db5d001cf3fb8e60b450cC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\WINDOWS\SYSTEM32\MSHTML.dll34f16770-abac-11e3-bec7-50b7c373cad4
Error: (03/14/2014 04:12:43 AM) (Source: Application Error)(User: )
Description: avgnt.exe14.0.3.33252f8ba9davgnt.exe14.0.3.33252f8ba9dc00000050000bb40156801cf3ee08dc5b8a8C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exeC:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe820400a0-ab26-11e3-bec7-50b7c373cad4
CodeIntegrity Errors:
===================================
Date: 2014-02-26 22:18:12.708
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Definition Updates\{4C9F08D7-9A1F-4F4D-9ED6-85496CA6FA7C}\mpengine.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-02-26 22:18:10.145
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Definition Updates\{3A12E534-CA39-4781-90A4-B742B63663C8}\mpengine.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Percentage of memory in use: 47%
Total physical RAM: 7891.53 MB
Available physical RAM: 4108.28 MB
Total Pagefile: 9427.54 MB
Available Pagefile: 4972.69 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:440.15 GB) (Free:230.59 GB) NTFS
Drive e: (MATHWORKS_R2013B) (CDROM) (Total:6.75 GB) (Free:0 GB) CDFS
Drive f: (MATHWORKS_R2013B) (CDROM) (Total:6.75 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: CF3E648F)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
19.03.2014, 14:33
| #4 |
| /// the machine /// TB-Ausbilder | PC nach Download eines Programms extrem langsam (Win 8) Revo Uninstaller - Download - Filepony Damit alles deinstallieren was Du in der Additional.txt findest mit dem Zusatz <== ATTENTION Mit Revo auch Moderat die Reste entfernen lassen. Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu PC nach Download eines Programms extrem langsam (Win 8) |
| download, eingefangen, erfolg, extrem, extrem langsam, gefangen, hoffe, irgendetwas, langsam, nach download, programm, programme, super, tippen, toolbars, win, win 8 |
Linear-Darstellung
