| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Browser aktualisiert sich automatisch / allgemeiner VirenscannWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
11.05.2014, 21:27
| #1 |
| |  Browser aktualisiert sich automatisch / allgemeiner Virenscann Hallo, mein Browser aktualisiert sich automatisch ohne mein zutun, so dass z.T. keine Eingabe mehr möglich ist/war. Seit zwei Tagen tritt es nicht mehr auf, habe die F5 Taste überprüft, daran kann es nicht gelegen haben. Es ist zwar jetzt nicht mehr da, aber iwie habe ich trzdem ein ungutes Gefühl dabei. Für Hilfe wäre ich sehr dankbar. Viele Grüße Feno |
|
12.05.2014, 06:52
| #2 |
| /// the machine /// TB-Ausbilder    | Browser aktualisiert sich automatisch / allgemeiner Virenscann hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
18.05.2014, 10:15
| #3 |
| | Browser aktualisiert sich automatisch / allgemeiner Virenscann Hallo,
__________________FRST.txt FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-05-2014
Ran by Niko (administrator) on NIKO-PC on 18-05-2014 11:04:23
Running from C:\Users\Niko\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe
(Schomäcker GmbH) C:\Program Files (x86)\Q Pilot - Client\Service\QPilot-Client-Service.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\loggingserver.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Spotify Ltd) C:\Users\Niko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\SmartAudio3.exe
() C:\Program Files (x86)\PicoZip\PicoZipTray.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Users\Niko\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Cloudfogger GmbH) C:\Program Files\Cloudfogger\Cloudfogger.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
(Dropbox, Inc.) C:\Users\Niko\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
() C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Schomäcker GmbH) C:\Program Files (x86)\Q Pilot - Client\GUI\QPilot-Client-GUI.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Cloudfogger GmbH) C:\Program Files\Cloudfogger\Cloudfogger.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
() C:\Program Files (x86)\Opera\21.0.1432.67\opera_crashreporter.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2894640 2012-03-14] (ELAN Microelectronics Corp.)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5752480 2012-07-11] (Dell Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SA3\SACpl.exe [1628288 2011-09-09] (Conexant Systems, Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [IntelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [4802864 2012-06-26] (Intel(R) Corporation)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [178960 2012-03-15] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11406608 2012-05-15] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-02] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2012-03-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-02] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] => C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-09-18] (CyberLink Corp.)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [577024 2012-03-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [162856 2013-03-20] (Geek Software GmbH)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2561560 2014-05-08] ()
HKLM-x32\...\Run: [TkBellExe] => c:\program files (x86)\real\realplayer\Update\realsched.exe [295512 2014-01-15] (RealNetworks, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
HKLM-x32\...\Run: [QPilotClientGUI] => C:\Program Files (x86)\Q Pilot - Client\GUI\QPilot-Client-GUI.exe [29561344 2012-05-09] (Schomäcker GmbH)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-04-23] (Samsung Electronics Co., Ltd.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [Spotify Web Helper] => C:\Users\Niko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-18] (Spotify Ltd)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [PicoZip] => C:\Program Files (x86)\PicoZip\PicoZipTray.exe [581632 2006-06-09] ()
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [KSS] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202296 2012-04-25] (Kaspersky Lab ZAO)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22415552 2014-04-25] (Google)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [SkyDrive] => C:\Users\Niko\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2014-05-14] (Microsoft Corporation)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2014-04-23] (Samsung)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [Cloudfogger] => C:\Program Files\Cloudfogger\Cloudfogger.exe [7173456 2013-02-25] (Cloudfogger GmbH)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [Kies3PDLR.exe] => C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [844360 2014-04-02] (Samsung)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Niko\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Detect -
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0080C422-C11C-4603-8360-040913F058BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MDDSJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0080C422-C11C-4603-8360-040913F058BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MDDSJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {0080C422-C11C-4603-8360-040913F058BC} URL =
SearchScopes: HKCU - {0080C422-C11C-4603-8360-040913F058BC} URL =
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=AAC96036DD5C0A3B&affID=121565&tsp=5020
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://mysearch.avg.com/search?cid={509F3EDD-C034-442F-BC21-521BF064B6A7}&mid=00e359e10c1447d38c6eb17f9bb8e3cd-58abb0e4cdbda5051e5de3fddd2d30c2e58b52c1&lang=ge/finishurl=hxxp://toolbar.avg.com/p-install?lang=ge&ds=ht011&coid=avgtbdisht&cmpid=&pr=sa&d=2014-02-10 12:05:33&v=18.0.5.292&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.5.512\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.5.512\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.5\ViProtocol.dll (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\oya0lr4b.default
FF user.js: detected! => C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\oya0lr4b.default\user.js
FF DefaultSearchEngine: sweet-page
FF SelectedSearchEngine: sweet-page
FF Homepage: hxxp://www.sweet-page.com/?type=hppp&ts=1399559133&from=cor&uid=_Xw
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.5\\npsitesafety.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 - C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: DKB-Cashback - C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\oya0lr4b.default\Extensions\crossriderapp16150@crossrider.com [2013-09-17]
FF Extension: No Name - C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2014-04-30]
FF Extension: No Name - C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\profiles\extensions\searchplugins [2013-09-10]
FF Extension: HDvid Codec - C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\profiles\extensions\hdvc@hdvc.com.xpi [2013-04-17]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com [2013-09-29]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\ []
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-03-12]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-05]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.1.5.512
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.1.5.512 [2014-05-08]
Chrome:
=======
CHR HomePage: hxxp://www.sweet-page.com/?type=hppp&ts=1399497393&from=cor&uid=_Xw
CHR StartupUrls: "hxxp://www.sweet-page.com/?type=hppp&ts=1399497393&from=cor&uid=_Xw"
CHR DefaultSearchKeyword: sweet-page
CHR DefaultSearchURL: hxxp://www.sweet-page.com/web/?type=dspp&ts=1399497392&from=cor&uid=_Xw&q={searchTerms}
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2013-09-12]
CHR Extension: (Google Docs) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-03-12]
CHR Extension: (Google Drive) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-03-12]
CHR Extension: (YouTube) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-03-12]
CHR Extension: (Google Search) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-03-12]
CHR Extension: (AdBlock) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-03-24]
CHR Extension: (Website Blocker (Beta)) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgegipaehbigmbhdpfapmjadbaldib [2013-05-04]
CHR Extension: (RealDownloader) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-03-13]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2013-10-01]
CHR Extension: (HeapNote Student) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdpkjlfphbilckljgefidcggjagliide [2013-09-12]
CHR Extension: (AVG SafeGuard) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-04-23]
CHR Extension: (DVDVideoSoft) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-09-29]
CHR Extension: (Google Wallet) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Gmail) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-03-12]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-09-29]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1017424 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 CxUtilSvc; C:\Program Files\Conexant\SA3\CxUtilSvc.exe [109184 2011-10-12] (Conexant Systems, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [705136 2014-04-11] (Cherished Technololgy LIMITED)
R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [192856 2012-02-25] (Intel Corporation)
R2 KSS; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202296 2012-04-25] (Kaspersky Lab ZAO)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272688 2012-06-26] ()
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)
R2 QPilotClientService; C:\Program Files (x86)\Q Pilot - Client\Service\QPilot-Client-Service.exe [25631744 2012-05-09] (Schomäcker GmbH)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S2 SystemStoreService; C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe [297984 2014-04-09] ()
R2 vToolbarUpdater18.1.5; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\ToolbarUpdater.exe [1801752 2014-05-08] (AVG Secure Search)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3325232 2012-06-26] (Intel® Corporation)
R2 postgresql-8.4; C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N "postgresql-8.4" -D "C:/Program Files (x86)/PostgreSQL/8.4/data" -w [X]
==================== Drivers (Whitelisted) ====================
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [31872 2012-02-01] (Advanced Micro Devices, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-05-08] (AVG Technologies)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-01] (Avira Operations GmbH & Co. KG)
R1 CBFilterFS; C:\Windows\system32\drivers\cbfltfs.sys [148312 2013-01-07] (EldoS Corporation)
R1 cbfs3; C:\Windows\system32\drivers\cbfs3.sys [352520 2012-12-04] (EldoS Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-25] (DT Soft Ltd)
R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-02-22] (Intel Corporation)
R3 stdriver; C:\Windows\System32\DRIVERS\stdriverx64.sys [33488 2014-05-11] ()
R3 ST_ACCEL; C:\Windows\System32\DRIVERS\ST_ACCEL.sys [67184 2012-01-04] (STMicroelectronics)
R1 {2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64; C:\Windows\System32\drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64.sys [61120 2014-04-29] (StdLib)
S1 bwfklzqh; \??\C:\Windows\system32\drivers\bwfklzqh.sys [X]
S1 fcuvqxuh; \??\C:\Windows\system32\drivers\fcuvqxuh.sys [X]
S1 filglntn; \??\C:\Windows\system32\drivers\filglntn.sys [X]
S1 hshropep; \??\C:\Windows\system32\drivers\hshropep.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-18 11:04 - 2014-05-18 11:04 - 00035417 _____ () C:\Users\Niko\Downloads\FRST.txt
2014-05-18 11:04 - 2014-05-18 11:04 - 00000000 ____D () C:\FRST
2014-05-18 11:03 - 2014-05-18 11:03 - 02067456 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2014-05-17 18:09 - 2014-05-18 11:02 - 00003222 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-16 15:37 - 2014-05-16 15:37 - 00281040 _____ () C:\Users\Niko\Downloads\Tarif Vorsorge.pptx
2014-05-16 15:37 - 2014-05-16 15:37 - 00000000 ____D () C:\Users\Niko\AppData\OICE_15_974FA576_32C1D314_2126
2014-05-16 07:59 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-16 07:59 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-16 07:59 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-16 07:59 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-16 07:59 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-16 07:59 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-15 17:15 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-15 17:15 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-15 17:15 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-15 17:15 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-15 17:15 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-15 17:15 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-15 17:15 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-15 17:15 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-15 17:15 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-15 17:15 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-15 17:15 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-15 17:15 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-15 17:15 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-15 17:15 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-15 17:15 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-15 17:15 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-15 17:15 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 17:15 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 17:15 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-15 17:15 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-11 23:01 - 2014-05-11 23:23 - 00004535 _____ () C:\Users\Niko\Downloads\Möbel.ods
2014-05-11 20:51 - 2014-05-11 20:51 - 00000000 ____D () C:\ProgramData\NCH Software
2014-05-11 20:49 - 2014-05-11 20:51 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00835096 _____ (NCH Software) C:\Users\Niko\Downloads\stsetup.exe
2014-05-11 20:49 - 2014-05-11 20:49 - 00686664 _____ ( ) C:\Users\Niko\Downloads\COMPUTER_BILD-Download-Manager_fuer_stsetup.exe
2014-05-11 20:49 - 2014-05-11 20:49 - 00033488 _____ () C:\Windows\system32\Drivers\stdriverx64.sys
2014-05-11 20:49 - 2014-05-11 20:49 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundTap Audiostream-Rekorder.lnk
2014-05-11 20:49 - 2014-05-11 20:49 - 00001181 _____ () C:\Users\Niko\AppData\Roaming\trace_FilterInstaller.txt
2014-05-11 20:49 - 2014-05-11 20:49 - 00001170 _____ () C:\Users\Public\Desktop\SoundTap Audiostream-Rekorder.lnk
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Produktpalette
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audioverwandte Programme
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 _____ () C:\Users\Niko\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2014-05-11 20:47 - 2014-05-11 20:47 - 00000000 ____D () C:\Users\Niko\AppData\Local\TuneUp Software
2014-05-11 20:46 - 2014-05-11 20:46 - 11282136 _____ (Copyright© 2005-2014 FreeSoundRecorder Technologies, Inc. ) C:\Users\Niko\Downloads\FreeSoundRecorder.exe
2014-05-11 20:46 - 2014-05-11 20:46 - 00001249 _____ () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Free Sound Recorder.lnk
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Users\Niko\Documents\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Program Files (x86)\Free Sound Recorder
2014-05-11 20:46 - 2006-03-23 12:56 - 00113486 _____ () C:\Windows\SysWOW64\NCTWMAProfiles.prx
2014-05-11 20:46 - 2005-05-18 11:52 - 01212416 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2014-05-11 20:46 - 2005-05-17 12:37 - 01986560 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2014-05-11 20:46 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2014-05-11 20:46 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2014-05-11 20:46 - 2005-04-15 12:08 - 00880640 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2014-05-11 20:46 - 2005-04-04 17:21 - 00602112 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2014-05-11 20:46 - 2005-03-28 15:54 - 00479232 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioVisualization2.dll
2014-05-11 20:46 - 2005-03-28 15:52 - 00417792 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTTextToAudio2.dll
2014-05-11 20:46 - 2005-02-24 11:51 - 00348160 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTWMAFile2.dll
2014-05-11 20:46 - 2004-11-04 13:31 - 00835584 _____ (NCT) C:\Windows\SysWOW64\NCTAudioCDGrabber2.dll
2014-05-11 20:46 - 2002-01-05 16:37 - 00344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2014-05-11 20:45 - 2014-05-11 20:45 - 00686664 _____ ( ) C:\Users\Niko\Downloads\COMPUTER_BILD-Download-Manager_fuer_FreeSoundRecorder.exe
2014-05-11 20:41 - 2014-05-11 20:48 - 00001474 _____ () C:\Users\Niko\AppData\Local\RecConfig.xml
2014-05-11 20:39 - 2014-05-11 20:39 - 02497825 _____ (No23) C:\Users\Niko\Downloads\No23Recorder2103.exe
2014-05-11 20:39 - 2014-05-11 20:39 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No23 Recorder
2014-05-11 20:39 - 2014-05-11 20:39 - 00000000 ____D () C:\Users\Niko\AppData\Local\No23 Recorder
2014-05-10 17:09 - 2014-05-10 17:09 - 00002000 _____ () C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2014-05-10 17:09 - 2014-05-10 17:09 - 00001990 _____ () C:\Users\Public\Desktop\Samsung Kies.lnk
2014-05-10 17:02 - 2014-04-11 10:39 - 00206080 _____ (DEVGURU Co., LTD.(???? | ????? ???? ?????.)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-05-10 17:02 - 2014-04-11 10:39 - 00110336 _____ (DEVGURU Co., LTD.(???? | ????? ???? ?????.)) C:\Windows\system32\Drivers\ssudbus.sys
2014-05-10 17:01 - 2014-05-10 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
2014-05-10 16:39 - 2014-05-10 16:42 - 75879368 _____ (Samsung Electronics Co., Ltd.) C:\Users\Niko\Downloads\KiesSetup263.exe
2014-05-10 16:35 - 2014-05-10 17:02 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-05-08 22:18 - 2014-05-08 22:18 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-05-08 18:32 - 2014-05-08 18:32 - 00001832 _____ () C:\Windows\system32\ricdb.ini
2014-05-08 18:32 - 2014-05-08 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q Pilot - Client
2014-05-08 18:32 - 2007-05-11 05:43 - 00026112 _____ (RICOH CO.,Ltd.) C:\Windows\system32\rc4mon64.DLL
2014-05-08 18:31 - 2014-05-08 18:32 - 00000000 ____D () C:\Program Files (x86)\Q Pilot - Client
2014-05-06 10:56 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-05-06 10:56 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-05-06 08:40 - 2014-05-16 16:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-06 00:28 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-05-06 00:28 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-06 00:28 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-06 00:28 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-05-06 00:28 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-05-06 00:28 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-05-06 00:28 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-06 00:28 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-05-06 00:28 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-05-06 00:28 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-05-06 00:28 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-05-06 00:28 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-05-06 00:28 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-05-06 00:28 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-05-06 00:28 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-05-06 00:28 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-05-06 00:28 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-05-06 00:28 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-05-06 00:28 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-05-06 00:28 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-06 00:28 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-05-06 00:28 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-05-06 00:28 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-05-06 00:27 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-05-06 00:27 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-05-06 00:27 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-05-06 00:27 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-05-06 00:25 - 2014-05-06 00:25 - 01069776 _____ (Solid State Networks) C:\Users\Niko\Downloads\install_flashplayer13x32_chrd_awc_aih.exe
2014-05-06 00:25 - 2014-05-06 00:25 - 00002992 _____ () C:\Windows\System32\Tasks\{5799A3AA-EEB4-458E-9D95-BB72C4CDAC37}
2014-05-06 00:04 - 2014-05-06 00:04 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-06 00:04 - 2014-05-06 00:04 - 00002021 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-05-05 18:14 - 2014-05-05 18:14 - 00000000 __SHD () C:\Users\Niko\AppData\Local\EmieUserList
2014-05-05 18:14 - 2014-05-05 18:14 - 00000000 __SHD () C:\Users\Niko\AppData\Local\EmieSiteList
2014-05-05 17:38 - 2014-05-05 17:38 - 00008610 _____ () C:\Users\Niko\Documents\CFAufg83..xlsx
2014-05-04 14:58 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-04 14:58 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-04 14:58 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-04 14:58 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-04 14:58 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-04 14:58 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-04 14:58 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-04 14:58 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-04 14:58 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-04 14:58 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-04 14:58 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-04 14:58 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-04 14:58 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-04 14:58 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-04 14:58 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-04 14:58 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-04 14:58 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-04 14:58 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-04 14:58 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-04 14:58 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-04 14:58 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-04 14:58 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-04 14:58 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-04 14:58 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-04 14:58 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-04 14:57 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-04 14:57 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-04 14:57 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-04 14:57 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-04 14:57 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-04 14:57 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-04 14:57 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-04 14:57 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-04 14:57 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-04 14:57 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-04 14:57 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-04 14:57 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-04 14:57 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-04 14:57 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-04 14:57 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-04 14:57 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-04 14:57 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-04 14:57 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-04 14:57 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-03 11:10 - 2014-05-03 11:14 - 85943098 _____ () C:\Users\Niko\Downloads\qyYio5ySJHYo.mp4
2014-05-03 08:09 - 2014-05-03 08:09 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\DropboxMaster
2014-05-02 10:53 - 2014-05-02 10:54 - 02821509 _____ () C:\Users\Niko\Downloads\excelPivotTable (1).zip
2014-05-02 10:42 - 2014-05-02 10:42 - 00007859 _____ () C:\Users\Niko\Downloads\Zahlenbeispiel.zip
2014-05-01 22:20 - 2014-04-29 16:49 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64.sys
2014-05-01 13:00 - 2011-03-14 03:03 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YD4BJJE.DLL
2014-05-01 13:00 - 2007-04-10 01:06 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2014-04-30 19:10 - 2014-04-30 19:09 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-30 19:09 - 2014-04-30 19:09 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-30 19:09 - 2014-04-30 19:09 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-30 19:09 - 2014-04-30 19:09 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-04-30 19:09 - 2014-04-30 19:09 - 00000000 ____D () C:\Program Files\Java
2014-04-30 18:58 - 2014-04-30 19:19 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-04-30 18:58 - 2014-04-30 18:58 - 00001999 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
2014-04-30 18:58 - 2014-04-30 18:58 - 00001943 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
2014-04-30 18:58 - 2014-04-30 18:58 - 00001922 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
2014-04-30 18:57 - 2014-05-08 10:24 - 00000000 ____D () C:\ProgramData\WPM
2014-04-30 18:57 - 2014-04-30 18:57 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\SupTab
2014-04-30 18:57 - 2014-04-30 18:57 - 00000000 ____D () C:\ProgramData\IePluginService
2014-04-30 18:57 - 2014-04-30 18:57 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-04-30 18:34 - 2013-03-30 23:19 - 00003120 _____ () C:\Users\Niko\Downloads\restore2013.nfo
2014-04-30 18:34 - 2013-03-30 12:36 - 583008256 _____ () C:\Users\Niko\Downloads\v2bniex13.iso
2014-04-30 17:32 - 2014-04-30 17:36 - 28201502 _____ () C:\Users\Niko\Downloads\rar32071.rar
2014-04-30 17:10 - 2014-04-30 17:10 - 39941308 _____ () C:\Users\Niko\Downloads\OMT_Entscheidungsmodelle.mp4
2014-04-28 12:29 - 2014-05-10 16:30 - 00001967 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk
2014-04-28 07:55 - 2014-02-03 20:48 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll
2014-04-25 10:49 - 2014-04-25 10:49 - 00000000 ___SD () C:\Users\Niko\Documents\Meine Datenquellen
2014-04-25 10:37 - 2014-04-25 10:37 - 00009929 _____ () C:\Users\Niko\Documents\Bachelorstudium.xlsx
2014-04-24 16:14 - 2012-09-27 11:02 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YLMJJE.DLL
2014-04-22 23:03 - 2014-04-22 23:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-04-22 22:12 - 2014-04-22 22:12 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-22 22:12 - 2014-04-22 22:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-22 22:11 - 2014-04-22 22:12 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-22 22:11 - 2014-04-22 22:12 - 00000000 ____D () C:\Program Files\iTunes
2014-04-22 22:11 - 2014-04-22 22:12 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-22 22:11 - 2014-04-22 22:11 - 00000000 ____D () C:\Program Files\iPod
2014-04-22 21:58 - 2014-04-22 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-04-22 09:54 - 2014-04-22 09:54 - 02821509 _____ () C:\Users\Niko\Downloads\excelPivotTable.zip
2014-04-21 20:42 - 2014-05-14 19:45 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2609863520-929445052-6182941-1000
==================== One Month Modified Files and Folders =======
2014-05-18 11:04 - 2014-05-18 11:04 - 00035417 _____ () C:\Users\Niko\Downloads\FRST.txt
2014-05-18 11:04 - 2014-05-18 11:04 - 00000000 ____D () C:\FRST
2014-05-18 11:03 - 2014-05-18 11:03 - 02067456 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2014-05-18 11:03 - 2013-03-15 14:48 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Skype
2014-05-18 11:03 - 2013-03-13 15:58 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Dropbox
2014-05-18 11:02 - 2014-05-17 18:09 - 00003222 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-18 11:02 - 2013-10-17 15:12 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-05-18 11:02 - 2013-10-17 15:11 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Cloudfogger
2014-05-18 11:02 - 2013-08-21 10:38 - 00005128 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Niko-PC-Niko Niko-PC
2014-05-18 11:02 - 2013-08-21 10:00 - 00000000 ___RD () C:\Users\Niko\SkyDrive
2014-05-18 11:02 - 2013-03-13 17:42 - 00003358 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-18 11:02 - 2013-03-13 16:07 - 00000000 ___RD () C:\Users\Niko\Dropbox
2014-05-18 11:02 - 2013-03-12 16:33 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-18 11:02 - 2012-12-28 00:48 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-05-18 11:02 - 2012-12-28 00:48 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-05-18 11:02 - 2012-12-28 00:43 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-05-18 11:01 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-18 11:01 - 2009-07-14 06:51 - 00111100 _____ () C:\Windows\setupact.log
2014-05-18 04:55 - 2012-12-28 00:16 - 01083816 _____ () C:\Windows\WindowsUpdate.log
2014-05-18 04:31 - 2013-03-12 16:33 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-18 04:28 - 2013-03-25 09:28 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Spotify
2014-05-18 04:11 - 2012-12-28 00:17 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-17 20:26 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-17 19:48 - 2009-07-14 06:45 - 00021088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-17 19:48 - 2009-07-14 06:45 - 00021088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-17 18:13 - 2010-11-21 08:50 - 00721922 _____ () C:\Windows\system32\perfh007.dat
2014-05-17 18:13 - 2010-11-21 08:50 - 00156938 _____ () C:\Windows\system32\perfc007.dat
2014-05-17 18:13 - 2009-07-14 07:13 - 01662108 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-17 18:12 - 2013-04-09 17:33 - 00004208 _____ () C:\Windows\System32\Tasks\Software Updater
2014-05-17 10:44 - 2013-09-17 10:49 - 00000000 ____D () C:\Program Files (x86)\DKB-Cashback
2014-05-16 22:42 - 2013-10-17 15:29 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-05-16 16:03 - 2013-03-13 15:58 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-16 16:03 - 2013-03-12 16:05 - 00000000 ___RD () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 16:02 - 2013-03-12 16:05 - 00000000 ___RD () C:\Users\Niko\Virtual Machines
2014-05-16 16:02 - 2013-03-12 16:05 - 00000000 ___RD () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 16:00 - 2014-05-06 08:40 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-16 16:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-16 15:37 - 2014-05-16 15:37 - 00281040 _____ () C:\Users\Niko\Downloads\Tarif Vorsorge.pptx
2014-05-16 15:37 - 2014-05-16 15:37 - 00000000 ____D () C:\Users\Niko\AppData\OICE_15_974FA576_32C1D314_2126
2014-05-16 07:59 - 2013-07-16 09:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-16 07:57 - 2013-03-19 18:04 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-16 07:52 - 2013-05-03 23:57 - 00000000 ____D () C:\Users\postgres
2014-05-14 23:15 - 2012-12-28 00:17 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 23:15 - 2012-12-28 00:17 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 23:15 - 2012-12-28 00:17 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-14 22:17 - 2013-03-12 18:10 - 00002507 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Standard.lnk
2014-05-14 22:17 - 2013-03-12 18:10 - 00002465 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
2014-05-14 22:15 - 2014-02-20 21:25 - 00002190 _____ () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-05-14 22:15 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-05-14 19:45 - 2014-04-21 20:42 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-14 19:45 - 2014-04-01 22:32 - 00003200 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-12 19:17 - 2013-03-25 09:29 - 00000000 ____D () C:\Users\Niko\AppData\Local\Spotify
2014-05-12 19:17 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-12 19:08 - 2010-11-21 05:47 - 00231888 _____ () C:\Windows\PFRO.log
2014-05-11 23:23 - 2014-05-11 23:01 - 00004535 _____ () C:\Users\Niko\Downloads\Möbel.ods
2014-05-11 21:16 - 2013-04-14 15:45 - 00000000 ____D () C:\Users\Niko\AppData\Local\PokerStars.EU
2014-05-11 20:51 - 2014-05-11 20:51 - 00000000 ____D () C:\ProgramData\NCH Software
2014-05-11 20:51 - 2014-05-11 20:49 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00835096 _____ (NCH Software) C:\Users\Niko\Downloads\stsetup.exe
2014-05-11 20:49 - 2014-05-11 20:49 - 00686664 _____ ( ) C:\Users\Niko\Downloads\COMPUTER_BILD-Download-Manager_fuer_stsetup.exe
2014-05-11 20:49 - 2014-05-11 20:49 - 00033488 _____ () C:\Windows\system32\Drivers\stdriverx64.sys
2014-05-11 20:49 - 2014-05-11 20:49 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundTap Audiostream-Rekorder.lnk
2014-05-11 20:49 - 2014-05-11 20:49 - 00001181 _____ () C:\Users\Niko\AppData\Roaming\trace_FilterInstaller.txt
2014-05-11 20:49 - 2014-05-11 20:49 - 00001170 _____ () C:\Users\Public\Desktop\SoundTap Audiostream-Rekorder.lnk
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Produktpalette
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audioverwandte Programme
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 _____ () C:\Users\Niko\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2014-05-11 20:48 - 2014-05-11 20:41 - 00001474 _____ () C:\Users\Niko\AppData\Local\RecConfig.xml
2014-05-11 20:47 - 2014-05-11 20:47 - 00000000 ____D () C:\Users\Niko\AppData\Local\TuneUp Software
2014-05-11 20:47 - 2013-09-29 19:40 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-11 20:46 - 2014-05-11 20:46 - 11282136 _____ (Copyright© 2005-2014 FreeSoundRecorder Technologies, Inc. ) C:\Users\Niko\Downloads\FreeSoundRecorder.exe
2014-05-11 20:46 - 2014-05-11 20:46 - 00001249 _____ () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Free Sound Recorder.lnk
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Users\Niko\Documents\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Program Files (x86)\Free Sound Recorder
2014-05-11 20:46 - 2013-09-29 19:38 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\OpenCandy
2014-05-11 20:45 - 2014-05-11 20:45 - 00686664 _____ ( ) C:\Users\Niko\Downloads\COMPUTER_BILD-Download-Manager_fuer_FreeSoundRecorder.exe
2014-05-11 20:39 - 2014-05-11 20:39 - 02497825 _____ (No23) C:\Users\Niko\Downloads\No23Recorder2103.exe
2014-05-11 20:39 - 2014-05-11 20:39 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No23 Recorder
2014-05-11 20:39 - 2014-05-11 20:39 - 00000000 ____D () C:\Users\Niko\AppData\Local\No23 Recorder
2014-05-11 18:17 - 2013-03-15 14:40 - 00000000 ____D () C:\Users\Niko\Downloads\Studium
2014-05-11 18:06 - 2014-03-01 13:50 - 00000000 ____D () C:\Users\Niko\Downloads\Nikolai Westall
2014-05-10 17:30 - 2013-09-28 17:27 - 00000000 ____D () C:\Users\Niko\Documents\SelfMV
2014-05-10 17:30 - 2013-09-28 17:13 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Samsung
2014-05-10 17:30 - 2013-09-28 17:13 - 00000000 ____D () C:\Users\Niko\AppData\Local\Samsung
2014-05-10 17:09 - 2014-05-10 17:09 - 00002000 _____ () C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2014-05-10 17:09 - 2014-05-10 17:09 - 00001990 _____ () C:\Users\Public\Desktop\Samsung Kies.lnk
2014-05-10 17:02 - 2014-05-10 16:35 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-05-10 17:02 - 2013-09-28 16:52 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-05-10 17:01 - 2014-05-10 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
2014-05-10 17:01 - 2013-09-28 16:56 - 00000000 ____D () C:\Program Files (x86)\MyFree Codec
2014-05-10 16:52 - 2013-09-28 16:52 - 00000000 ____D () C:\ProgramData\Samsung
2014-05-10 16:51 - 2013-03-15 15:05 - 00000000 ____D () C:\Users\Niko\AppData\Local\Downloaded Installations
2014-05-10 16:42 - 2014-05-10 16:39 - 75879368 _____ (Samsung Electronics Co., Ltd.) C:\Users\Niko\Downloads\KiesSetup263.exe
2014-05-10 16:30 - 2014-04-28 12:29 - 00001967 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk
2014-05-09 08:14 - 2014-05-15 17:15 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-15 17:15 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 22:18 - 2014-05-08 22:18 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-05-08 22:18 - 2013-09-10 13:40 - 00050464 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-05-08 22:18 - 2013-09-10 13:40 - 00003800 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2014-05-08 22:18 - 2013-09-10 13:40 - 00000000 ____D () C:\Program Files (x86)\AVG SafeGuard toolbar
2014-05-08 18:32 - 2014-05-08 18:32 - 00001832 _____ () C:\Windows\system32\ricdb.ini
2014-05-08 18:32 - 2014-05-08 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q Pilot - Client
2014-05-08 18:32 - 2014-05-08 18:31 - 00000000 ____D () C:\Program Files (x86)\Q Pilot - Client
2014-05-08 10:26 - 2013-07-09 12:35 - 00000000 ____D () C:\Program Files (x86)\Goals
2014-05-08 10:25 - 2014-03-16 21:33 - 00000000 ____D () C:\Program Files (x86)\Achtung, die Kurve!
2014-05-08 10:24 - 2014-04-30 18:57 - 00000000 ____D () C:\ProgramData\WPM
2014-05-08 10:22 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-05-08 09:49 - 2013-08-06 14:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-05-07 14:55 - 2013-03-12 16:01 - 00000000 ____D () C:\Users\Niko
2014-05-06 08:41 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-06 08:26 - 2013-03-12 16:33 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-06 08:26 - 2013-03-12 16:33 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-06 06:40 - 2014-05-16 07:59 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-16 07:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-16 07:59 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-16 07:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-16 07:59 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-16 07:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-06 00:28 - 2011-02-11 19:45 - 01640132 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-06 00:26 - 2013-04-10 19:20 - 00007680 _____ () C:\Users\Niko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-06 00:25 - 2014-05-06 00:25 - 01069776 _____ (Solid State Networks) C:\Users\Niko\Downloads\install_flashplayer13x32_chrd_awc_aih.exe
2014-05-06 00:25 - 2014-05-06 00:25 - 00002992 _____ () C:\Windows\System32\Tasks\{5799A3AA-EEB4-458E-9D95-BB72C4CDAC37}
2014-05-06 00:13 - 2013-03-12 21:24 - 00000000 ____D () C:\Users\Niko\AppData\Local\Adobe
2014-05-06 00:04 - 2014-05-06 00:04 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-06 00:04 - 2014-05-06 00:04 - 00002021 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-05-06 00:04 - 2012-12-28 00:53 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-06 00:04 - 2012-12-28 00:53 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-05 18:14 - 2014-05-05 18:14 - 00000000 __SHD () C:\Users\Niko\AppData\Local\EmieUserList
2014-05-05 18:14 - 2014-05-05 18:14 - 00000000 __SHD () C:\Users\Niko\AppData\Local\EmieSiteList
2014-05-05 17:38 - 2014-05-05 17:38 - 00008610 _____ () C:\Users\Niko\Documents\CFAufg83..xlsx
2014-05-03 11:14 - 2014-05-03 11:10 - 85943098 _____ () C:\Users\Niko\Downloads\qyYio5ySJHYo.mp4
2014-05-03 08:09 - 2014-05-03 08:09 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\DropboxMaster
2014-05-02 10:54 - 2014-05-02 10:53 - 02821509 _____ () C:\Users\Niko\Downloads\excelPivotTable (1).zip
2014-05-02 10:42 - 2014-05-02 10:42 - 00007859 _____ () C:\Users\Niko\Downloads\Zahlenbeispiel.zip
2014-05-01 13:01 - 2014-04-03 07:21 - 00000928 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk
2014-05-01 13:01 - 2014-04-02 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2014-05-01 12:59 - 2014-04-02 19:32 - 00000000 ____D () C:\ProgramData\EPSON
2014-04-30 19:19 - 2014-04-30 18:58 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-04-30 19:09 - 2014-04-30 19:10 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-30 19:09 - 2014-04-30 19:09 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-30 19:09 - 2014-04-30 19:09 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-30 19:09 - 2014-04-30 19:09 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-04-30 19:09 - 2014-04-30 19:09 - 00000000 ____D () C:\Program Files\Java
2014-04-30 18:58 - 2014-04-30 18:58 - 00001999 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
2014-04-30 18:58 - 2014-04-30 18:58 - 00001943 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
2014-04-30 18:58 - 2014-04-30 18:58 - 00001922 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
2014-04-30 18:57 - 2014-04-30 18:57 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\SupTab
2014-04-30 18:57 - 2014-04-30 18:57 - 00000000 ____D () C:\ProgramData\IePluginService
2014-04-30 18:57 - 2014-04-30 18:57 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-04-30 17:36 - 2014-04-30 17:32 - 28201502 _____ () C:\Users\Niko\Downloads\rar32071.rar
2014-04-30 17:10 - 2014-04-30 17:10 - 39941308 _____ () C:\Users\Niko\Downloads\OMT_Entscheidungsmodelle.mp4
2014-04-29 16:49 - 2014-05-01 22:20 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64.sys
2014-04-28 12:29 - 2013-09-28 16:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2014-04-28 07:55 - 2012-12-28 00:31 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-25 10:49 - 2014-04-25 10:49 - 00000000 ___SD () C:\Users\Niko\Documents\Meine Datenquellen
2014-04-25 10:37 - 2014-04-25 10:37 - 00009929 _____ () C:\Users\Niko\Documents\Bachelorstudium.xlsx
2014-04-22 23:03 - 2014-04-22 23:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-04-22 22:12 - 2014-04-22 22:12 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-22 22:12 - 2014-04-22 22:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-22 22:12 - 2014-04-22 22:11 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-22 22:12 - 2014-04-22 22:11 - 00000000 ____D () C:\Program Files\iTunes
2014-04-22 22:12 - 2014-04-22 22:11 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-22 22:11 - 2014-04-22 22:11 - 00000000 ____D () C:\Program Files\iPod
2014-04-22 22:09 - 2013-07-03 20:39 - 00000000 ____D () C:\ProgramData\Apple
2014-04-22 21:58 - 2014-04-22 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-04-22 09:54 - 2014-04-22 09:54 - 02821509 _____ () C:\Users\Niko\Downloads\excelPivotTable.zip
Some content of TEMP:
====================
C:\Users\Niko\AppData\Local\Temp\56087uninstall.exe
C:\Users\Niko\AppData\Local\Temp\AskSLib.dll
C:\Users\Niko\AppData\Local\Temp\avgnt.exe
C:\Users\Niko\AppData\Local\Temp\bitool.dll
C:\Users\Niko\AppData\Local\Temp\bundlesweetimsetup.exe
C:\Users\Niko\AppData\Local\Temp\Creative Cloud Helper.exe
C:\Users\Niko\AppData\Local\Temp\DeltaTB.exe
C:\Users\Niko\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9jialg.dll
C:\Users\Niko\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Niko\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Niko\AppData\Local\Temp\Execute2App.exe
C:\Users\Niko\AppData\Local\Temp\install_flashplayer11x32au_mssa_aaa_aih.exe
C:\Users\Niko\AppData\Local\Temp\JDSetup130433506157661872.exe
C:\Users\Niko\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Niko\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Niko\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Niko\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Niko\AppData\Local\Temp\Kies2RemoveAll.exe
C:\Users\Niko\AppData\Local\Temp\lowproc.exe
C:\Users\Niko\AppData\Local\Temp\mirc725.exe
C:\Users\Niko\AppData\Local\Temp\msvcp90.dll
C:\Users\Niko\AppData\Local\Temp\msvcr90.dll
C:\Users\Niko\AppData\Local\Temp\MyBabylonTB.exe
C:\Users\Niko\AppData\Local\Temp\OfficeSetup.exe
C:\Users\Niko\AppData\Local\Temp\oi_{BBD3436D-9477-4145-9C8B-7AF5E2A4779D}.exe
C:\Users\Niko\AppData\Local\Temp\OptimizerPro.exe
C:\Users\Niko\AppData\Local\Temp\pricepeep_130001_1001.exe
C:\Users\Niko\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Niko\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Niko\AppData\Local\Temp\Setup.X86.de-DE_O365HomePremRetail_e7881186-5ff3-4cd5-b2b4-2b449443f15e_TX_DB_.exe
C:\Users\Niko\AppData\Local\Temp\SIInvoker.exe
C:\Users\Niko\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Niko\AppData\Local\Temp\Sqlite3.dll
C:\Users\Niko\AppData\Local\Temp\stubhelper.dll
C:\Users\Niko\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Niko\AppData\Local\Temp\uninst1.exe
C:\Users\Niko\AppData\Local\Temp\vlc-2.0.2-win32.exe
C:\Users\Niko\AppData\Local\Temp\vlc-2.0.6-win32.exe
C:\Users\Niko\AppData\Local\Temp\vlc-2.0.8-win32.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe
[2014-05-15 17:15] - [2014-03-04 11:43] - 0455168 ____A (Microsoft Corporation) 88AB9B72B4BF3963A0DE0820B4B0B06C
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-05-09 13:53
==================== End Of Log ============================
|
|
18.05.2014, 10:16
| #4 |
| | Browser aktualisiert sich automatisch / allgemeiner Virenscann Sowie Addition.txt Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-05-2014 Ran by Niko at 2014-05-18 11:05:07 Running from C:\Users\Niko\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) Acubix PicoZip 4.02 (HKLM-x32\...\Acubix PicoZip_is1) (Version: 4.02 - Acubix) Adobe Acrobat X Standard - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-BA7E-000000000005}) (Version: 10.1.10 - Adobe Systems) Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated) Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated) Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated) Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd) Alive Video Converter (version 5.2.0.2) (HKLM-x32\...\Alive Video Converter 5_is1) (Version: - AliveMedia, Inc.) AMD APP SDK Runtime (Version: 10.0.851.6 - Advanced Micro Devices Inc.) Hidden AMD AVIVO64 Codecs (Version: 12.2.0.20305 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Install Manager (HKLM\...\{D2EBABAC-7DA0-FAD4-7FAE-8D3C2EA779F3}) (Version: 3.0.859.0 - Advanced Micro Devices, Inc.) Anki (HKLM-x32\...\Anki) (Version: - ) Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.1.5.512 - AVG Technologies) Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira) Bing Bar (HKLM-x32\...\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}) (Version: 7.1.391.0 - Microsoft Corporation) Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Brother MFL-Pro Suite DCP-7055 (HKLM-x32\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.1.3.0 - Brother Industries, Ltd.) calibre (HKLM-x32\...\{5BE337EE-3815-4E5A-993D-B8C2546B69CF}) (Version: 1.0.0 - Kovid Goyal) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center (x32 Version: 2012.0305.348.6610 - Ihr Firmenname) Hidden Catalyst Control Center InstallProxy (x32 Version: 2012.0305.348.6610 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2012.0305.348.6610 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Profiles Mobile (x32 Version: 2012.0305.348.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2012.0305.0347.6610 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2012.0305.348.6610 - Advanced Micro Devices, Inc.) Hidden Cloudfogger (HKLM\...\{E5A0D9A8-3711-4DB2-833C-FF79EF65830D}_is1) (Version: 1.4.2143.0 - Cloudfogger GmbH) Conexant SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.29.0 - Conexant) CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.1.5425 - CyberLink Corp.) CyberLink PowerDVD 9.5 (x32 Version: 9.5.1.5425 - CyberLink Corp.) Hidden D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd) Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.67 - Dell Inc.) Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.67 - Dell Inc.) Dell Digital Delivery (HKLM-x32\...\{B96348BD-6B0D-42E3-80B1-FA6718067BFE}) (Version: 2.8.1000.0 - Dell Products, LP) Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc) Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.1.5907.16 - Dell Inc.) Dell Support Center (Version: 3.1.5907.16 - PC-Doctor, Inc.) Hidden Dell Touchpad (HKLM\...\Elantech) (Version: 10.3.2.2 - ELAN Microelectronic Corp.) Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.01.15 - Creative Technology Ltd) DigitalPersona Fingerprint Software 6.1 (HKLM\...\{208DCBFA-D02A-426B-865F-312529654438}) (Version: 6.1.0.279 - DigitalPersona, Inc.) DKB-Cashback (HKLM-x32\...\DKB-Cashback) (Version: 1.27.153.10 - dkbbrowserextension) Dropbox (HKCU\...\Dropbox) (Version: 2.6.33 - Dropbox, Inc.) Druckerdeinstallation für EPSON WF-3520 Series (HKLM\...\EPSON WF-3520 Series) (Version: - SEIKO EPSON Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON WF-2530 Series Printer Uninstall (HKLM\...\EPSON WF-2530 Series) (Version: - SEIKO EPSON Corporation) Evernote v. 4.6.7 (HKLM-x32\...\{A6563D7C-F3AD-11E2-A4DB-984BE15F174E}) (Version: 4.6.7.8409 - Evernote Corp.) ffdshow (HKLM-x32\...\ffdshow) (Version: 20051221-gcc4.0.2-sse-x264.nl - Milan Cutka) Free Sound Recorder v9.7.5 (HKLM-x32\...\Free Sound Recorder_is1) (Version: - Copyright(C) 2005-2014 FreeSoundRecorder Technologies, Inc.) Free YouTube to MP3 Converter version 3.12.13.925 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.13.925 - DVDVideoSoft Ltd.) FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 0.9.0 - ) Full Tilt Poker.Eu (HKLM-x32\...\{127BEFB3-24B2-4B44-8E99-AD22C2A5A8ED}) (Version: 4.57.4.WIN.FullTilt.EU - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.137 - Google Inc.) Google Drive (HKLM-x32\...\{418BAAD1-754D-48B4-B078-46EF4F25AF42}) (Version: 1.15.6556.8063 - Google, Inc.) Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden Holdem Manager (HKLM-x32\...\HoldemManager) (Version: - ) Holdem Manager 2 (HKLM-x32\...\HoldemManager2) (Version: - ) HP Deskjet 3050 J610 series - Grundlegende Software für das Gerät (HKLM\...\{4E863B34-E4A3-40E0-B6F1-35CF372A3CFF}) (Version: 22.50.231.0 - Hewlett-Packard Co.) HP Deskjet 3050 J610 series Hilfe (HKLM-x32\...\{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}) (Version: 140.0.63.63 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.3781 - HP Photo Creations Powered by RocketLife) HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard) HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.28.01 - Hyperionics Technology LLC) iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.) Intel PROSet Wireless (Version: - ) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3090 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.1.1399 - Intel Corporation) Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (HKLM\...\{BEE86606-EFB5-4353-9F34-29E0C59CDCFA}) (Version: 15.2.0.0284 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{3015F546-6C3E-4E6A-B564-BCDF88C0BA2A}) (Version: 2.1.1.0191 - Intel Corporation) Intel(R) Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1022 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation) Intel(R) WiDi (HKLM-x32\...\{7FCB8D5D-9396-4D17-8CFA-349D6D49CD32}) (Version: 3.0.13.0 - Intel Corporation) Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - ) Intel® PROSet/Wireless WiFi-Software (HKLM\...\{181BBF43-CA17-4E1A-A78D-81E67A57B8A4}) (Version: 15.02.0000.1258 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{538B98C3-773F-4F20-9C66-802D104DCBE2}) (Version: 1.23.219.2 - Intel Corporation) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan) iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.) Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.510 - Oracle) Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Kaspersky Security Scan (HKLM-x32\...\InstallWIX_{56009CA3-423B-41F8-884A-E5B049534F15}) (Version: 12.0.1.117 - Kaspersky Lab) Kaspersky Security Scan (x32 Version: 12.0.1.117 - Kaspersky Lab) Hidden McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft Office 365 Home Premium - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4551.1011 - Microsoft Corporation) Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) mIRC (HKLM-x32\...\mIRC) (Version: 7.25 - mIRC Co. Ltd.) Mozilla Firefox 23.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 23.0.1 (x86 en-US)) (Version: 23.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 23.0.1 - Mozilla) MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MyFreeCodec (HKCU\...\MyFreeCodec) (Version: - ) No23 Recorder (HKLM-x32\...\{22B0E143-2B0B-435B-9F56-136A3D16065F}) (Version: 2.1.0.3 - No23) Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1011 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation) Opera Stable 21.0.1432.67 (HKLM-x32\...\Opera 21.0.1432.67) (Version: 21.0.1432.67 - Opera Software ASA) Overtone Analyzer Free Edition 3.2.0 (HKLM-x32\...\{08C76EDE-65E2-4E98-92BE-6299244554AB}_is1) (Version: - Sygyt Software) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.) partypoker (HKLM-x32\...\PartyPoker) (Version: - PartyGaming) PDF24 Creator 5.4.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org) PicoZip Recovery Tool 1.02 (HKLM-x32\...\PicoZip Recovery Tool 1.02) (Version: 1.02 - Softchitect) PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu) PostgreSQL 8.4 (HKLM-x32\...\PostgreSQL 8.4) (Version: 8.4 - PostgreSQL Global Development Group) PowerXpressHybrid (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Q Pilot - Client (HKLM-x32\...\Q Pilot - Client 4.5.0.16224) (Version: 4.5.0.16224 - Schomäcker GmbH) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.005 - Dell Inc.) QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.) R for Windows 2.15.3 (HKLM\...\R for Windows 2.15.3_is1) (Version: 2.15.3 - R Core Team) RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.39019 - Realtek Semiconductor Corp.) RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044.14 - Samsung Electronics Co., Ltd.) Samsung Kies (x32 Version: 2.6.3.14044.14 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.14034.17 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.14034.17 - Samsung Electronics Co., Ltd.) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.43.0 - SAMSUNG Electronics Co., Ltd.) Secure Download Manager (HKLM-x32\...\{AA57D6F1-6360-4397-B2D9-B21C69863D97}) (Version: 3.1.0 - Kivuto Solutions Inc.) Shotcut (HKLM-x32\...\Shotcut) (Version: - ) Sibelius Scorch (Firefox, Opera, Netscape, Chrome only) (HKLM-x32\...\{41626CC0-A854-4402-AD06-D7939515C282}) (Version: 6.2.0 - Sibelius Software, a division of Avid Technology, Inc.) Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.) Software Updater (HKLM-x32\...\{C09D747A-BD47-42A9-915E-CEB6B1BB7C11}) (Version: 4.2.7 - SEIKO EPSON CORPORATION) SoundTap Audiostream-Rekorder (HKLM-x32\...\SoundTap) (Version: 2.27 - NCH Software) Spotify (HKCU\...\Spotify) (Version: 0.9.10.12.ga9ab7425 - Spotify AB) ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.11.0018 - ST Microelectronics) TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation) Überwachungstool für die Intel® Turbo-Boost-Technik 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel) Validity Sensors DDK (HKLM\...\{459CD4B8-A458-4100-91A5-3388354B3F7D}) (Version: 4.3.215.0 - Validity Sensors, Inc.) Video mp3 Extractor (HKLM-x32\...\Video mp3 Extractor_is1) (Version: - GeoVid) VLC media player 2.0.8 (HKLM-x32\...\VLC media player) (Version: 2.0.8 - VideoLAN) Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation) Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden WinRAR 5.00 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DB}) (Version: 17.5.10480 - WinZip Computing, S.L. ) ==================== Restore Points ========================= 10-05-2014 14:29:52 Installed Samsung Kies3 10-05-2014 14:52:21 Installed Samsung Kies 11-05-2014 18:39:30 No23 Recorder wird installiert 11-05-2014 19:03:58 TuneUp Utilities 2014 wird entfernt 11-05-2014 19:04:12 TuneUp Utilities 2014 (de-DE) wird entfernt 14-05-2014 19:13:00 Windows Update 15-05-2014 15:11:58 Windows Update 16-05-2014 05:57:06 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {025C4E70-F2B1-40A1-AFAB-6201E9407285} - System32\Tasks\{5799A3AA-EEB4-458E-9D95-BB72C4CDAC37} => C:\Users\Niko\Downloads\install_flashplayer13x32_chrd_awc_aih.exe [2014-05-06] (Solid State Networks) Task: {1684FF28-0231-4676-B8DC-BDEB8E982C54} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {2963CBD6-A5D8-4B29-9894-4BD6763C8B28} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-11-02] (Microsoft Corporation) Task: {3C9240F5-2E38-4E53-AF22-D72BC172105D} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2609863520-929445052-6182941-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.) Task: {5D900A38-E26B-467B-AC5E-EBCDFB24D635} - System32\Tasks\Intel® Rapid Start Technology Manager => C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe [2012-02-25] (Intel) Task: {A5B1C9F2-BF4C-43B8-B453-58E4D8DB5417} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2609863520-929445052-6182941-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.) Task: {AC381401-CA52-44A2-ADBE-A3FBA21DABAC} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Niko-PC-Niko Niko-PC => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2013-12-15] (Microsoft Corporation) Task: {ACB35755-4437-454D-BB9E-C9C7975FFCBC} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2013-12-15] (Microsoft Corporation) Task: {BD4E8FD9-5C75-4BA0-99D5-B48F9FF70DCD} - System32\Tasks\Software Updater Ui => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-12-18] () Task: {C0CA49C1-0A8B-4E9B-AD70-B66231176C40} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-12] (Google Inc.) Task: {C238C197-E077-4443-BBAE-F25CE9E50E7F} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2609863520-929445052-6182941-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.) Task: {D1986EB1-3D6B-4D96-BC88-2759D9E103E1} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2609863520-929445052-6182941-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.) Task: {E71F3F9A-572B-476F-80E9-EBE5C9B9E1E6} - System32\Tasks\Software Updater => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-12-18] () Task: {E859CD1A-6B59-4036-AA3F-BCD847E950B3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated) Task: {E92A924C-3702-4560-A0F3-8D2B918CFA4D} - System32\Tasks\Funmoods => C:\Users\Niko\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: {EC2820D7-4992-421E-8559-981F2067E76F} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2609863520-929445052-6182941-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.) Task: {F5BE70BC-EB24-4F54-B2B6-E7BB8DFCFC0D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-12] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-08-21 09:49 - 2013-08-23 15:45 - 00386216 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll 2013-08-21 09:49 - 2013-11-02 01:48 - 00520872 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll 2013-08-21 09:49 - 2013-11-02 01:49 - 00618152 _____ () C:\Program Files\Microsoft Office 15\ClientX64\StreamServer.dll 2013-08-14 15:19 - 2013-08-14 15:19 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe 2014-05-08 22:18 - 2014-05-08 22:18 - 00159768 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\loggingserver.exe 2012-12-28 01:59 - 2012-03-19 12:09 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2012-12-28 00:30 - 2012-01-10 23:36 - 00159360 _____ () C:\Program Files\Conexant\SA3\MaxxAudioWrapper.dll 2013-04-09 17:44 - 2006-06-09 00:00 - 00581632 _____ () C:\Program Files (x86)\PicoZip\PicoZipTray.exe 2012-12-28 00:43 - 2012-01-27 05:49 - 02751808 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE 2013-09-10 13:40 - 2014-05-08 22:18 - 02561560 _____ () C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe 2014-05-16 22:42 - 2014-05-12 07:51 - 01397880 _____ () C:\Program Files (x86)\Opera\21.0.1432.67\opera_crashreporter.exe 2013-03-18 12:11 - 2013-03-18 12:10 - 00397704 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll 2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2013-05-03 23:56 - 2011-01-28 07:15 - 00172032 _____ () C:\Program Files (x86)\PostgreSQL\8.4\bin\LIBPQ.dll 2014-05-08 18:31 - 2011-09-16 02:27 - 00020480 _____ () C:\Program Files (x86)\Q Pilot - Client\Common\Java\bin\jetvm\jvm.dll 2014-05-08 18:31 - 2011-09-16 02:27 - 00069632 _____ () C:\Program Files (x86)\Q Pilot - Client\Common\Java\bin\java.dll 2014-05-08 18:31 - 2011-09-16 02:29 - 00126976 _____ () C:\Program Files (x86)\Q Pilot - Client\Common\Java\bin\zip.dll 2014-05-08 18:31 - 2011-09-16 02:26 - 00176128 _____ () C:\Program Files (x86)\Q Pilot - Client\Common\Java\jetrt\baseline760.dll 2013-05-03 23:56 - 2009-02-12 21:01 - 00976384 _____ () C:\Program Files (x86)\PostgreSQL\8.4\bin\libxml2.dll 2013-05-03 23:56 - 2005-07-20 12:48 - 00059904 _____ () C:\Program Files (x86)\PostgreSQL\8.4\bin\zlib1.dll 2014-05-08 22:18 - 2014-05-08 22:18 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\log4cplusU.dll 2012-04-25 19:52 - 2012-04-25 19:52 - 02126224 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\QtCore4.dll 2012-04-25 19:52 - 2012-04-25 19:52 - 07422352 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\QtGui4.dll 2012-04-25 19:52 - 2012-04-25 19:52 - 02453904 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\QtDeclarative4.dll 2012-04-25 19:52 - 2012-04-25 19:52 - 01270160 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\QtScript4.dll 2012-04-25 19:52 - 2012-04-25 19:52 - 00192912 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\QtSql4.dll 2012-04-25 19:52 - 2012-04-25 19:52 - 00795024 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\QtNetwork4.dll 2013-10-17 15:11 - 2013-02-25 16:36 - 00054608 _____ () C:\Program Files\Cloudfogger\CfInstall.dll 2013-10-17 15:11 - 2012-11-16 11:31 - 00055296 _____ () C:\Program Files\Cloudfogger\CrashRpt1300.dll 2014-05-18 11:02 - 2014-05-18 11:02 - 00041984 _____ () c:\users\niko\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9jialg.dll 2013-10-19 01:55 - 2013-10-19 01:55 - 25100288 _____ () C:\Users\Niko\AppData\Roaming\Dropbox\bin\libcef.dll 2012-09-08 13:16 - 2012-09-08 13:16 - 00433664 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll 2012-09-08 13:16 - 2012-09-08 13:16 - 00315392 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll 2014-05-08 13:22 - 2014-05-08 13:22 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\de_de\acrotray.deu 2014-05-18 11:02 - 2014-05-18 11:02 - 00098816 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32api.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00110080 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\pywintypes27.dll 2014-05-18 11:02 - 2014-05-18 11:02 - 00364544 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\pythoncom27.dll 2014-05-18 11:02 - 2014-05-18 11:02 - 00045568 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\_socket.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 01159680 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\_ssl.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00320512 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32com.shell.shell.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00713216 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\_hashlib.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 01175040 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\wx._core_.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00805888 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\wx._gdi_.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00811008 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\wx._windows_.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 01062400 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\wx._controls_.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00735232 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\wx._misc_.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00128512 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\_elementtree.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00127488 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\pyexpat.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00557056 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\pysqlite2._sqlite.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00087552 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\_ctypes.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00119808 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32file.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00108544 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32security.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00018432 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32event.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00038912 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32inet.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00070656 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\wx._html2.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00167936 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32gui.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00011264 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32crypt.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00027136 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\_multiprocessing.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00122368 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\wx._wizard.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00010240 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\select.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00024064 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32pipe.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00686080 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\unicodedata.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00025600 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32pdh.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00525640 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\windows._lib_cacheinvalidation.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00035840 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32process.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00017408 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32profile.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00022528 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\win32ts.pyd 2014-05-18 11:02 - 2014-05-18 11:02 - 00078336 _____ () C:\Users\Niko\AppData\Local\Temp\_MEI51364\wx._animate.pyd 2014-05-16 22:42 - 2014-05-12 07:51 - 00877688 _____ () C:\Program Files (x86)\Opera\21.0.1432.67\libglesv2.dll 2014-05-16 22:42 - 2014-05-12 07:51 - 00135800 _____ () C:\Program Files (x86)\Opera\21.0.1432.67\libegl.dll 2014-05-16 22:42 - 2014-05-12 07:51 - 00957048 _____ () C:\Program Files (x86)\Opera\21.0.1432.67\ffmpegsumo.dll 2014-05-14 23:15 - 2014-05-14 23:15 - 16361136 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll 2013-12-15 00:23 - 2013-12-15 00:23 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll 2013-12-15 00:23 - 2013-12-15 00:23 - 00359592 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\c2r32.dll 2013-12-15 00:17 - 2013-12-15 00:17 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll 2013-12-15 00:17 - 2013-12-15 00:17 - 00359592 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\c2r32.dll 2013-11-12 11:04 - 2013-11-12 11:04 - 00110088 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll 2014-02-13 11:14 - 2014-02-13 11:14 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\00a0b4a9df6e4abf30ae2af3624a77ce\IsdiInterop.ni.dll 2012-12-28 00:31 - 2012-02-02 00:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2012-12-28 00:30 - 2012-01-21 13:23 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== EXE Association (whitelisted) ============= ==================== Disabled items from MSCONFIG ============== MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Spotify => "C:\Users\Niko\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Microsoft-Teredo-Tunneling-Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (05/18/2014 11:03:07 AM) (Source: MsiInstaller) (EventID: 1024) (User: Niko-PC) Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011007}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127 Error: (05/18/2014 11:02:04 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (05/18/2014 01:07:43 AM) (Source: SideBySide) (EventID: 63) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3. Der Wert "x64" des "processorArchitecture"-Attributs im assemblyIdentity-Element ist ungültig. Error: (05/18/2014 01:06:11 AM) (Source: SideBySide) (EventID: 9) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (05/17/2014 08:21:19 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3. Der Wert "x64" des "processorArchitecture"-Attributs im assemblyIdentity-Element ist ungültig. Error: (05/17/2014 08:19:09 PM) (Source: SideBySide) (EventID: 9) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (05/17/2014 08:18:55 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: Volume "Cloudfogger" wurde aufgrund eines Fehlers nicht defragmentiert: Unzulässige Funktion. (0x80070001) Error: (05/17/2014 07:46:20 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 5545524 Error: (05/17/2014 07:46:20 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 5545524 Error: (05/17/2014 07:46:20 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second System errors: ============= Error: (05/18/2014 04:55:38 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (05/17/2014 06:08:36 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 17.05.2014 um 18:07:34 unerwartet heruntergefahren. Error: (05/16/2014 04:00:12 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (05/16/2014 07:52:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "System Store" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (05/16/2014 07:52:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst System Store erreicht. Error: (05/16/2014 07:52:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "IePlugin Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (05/16/2014 07:52:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst IePlugin Service erreicht. Error: (05/16/2014 07:51:48 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 16.05.2014 um 01:27:11 unerwartet heruntergefahren. Error: (05/14/2014 10:44:03 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (05/14/2014 10:15:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "IePlugin Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Microsoft Office Sessions: ========================= Error: (05/18/2014 11:03:07 AM) (Source: MsiInstaller) (EventID: 1024) (User: Niko-PC) Description: Adobe Reader XI - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011007}1625(NULL)(NULL)(NULL) Error: (05/18/2014 11:02:04 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (05/18/2014 01:07:43 AM) (Source: SideBySide) (EventID: 63) (User: ) Description: assemblyIdentityprocessorArchitecturex64c:\program files\R\r-2.15.3\Tcl\bin64\tk85.dllc:\program files\R\r-2.15.3\Tcl\bin64\tk85.dll9 Error: (05/18/2014 01:06:11 AM) (Source: SideBySide) (EventID: 9) (User: ) Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2 Error: (05/17/2014 08:21:19 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: assemblyIdentityprocessorArchitecturex64c:\program files\R\r-2.15.3\Tcl\bin64\tk85.dllc:\program files\R\r-2.15.3\Tcl\bin64\tk85.dll9 Error: (05/17/2014 08:19:09 PM) (Source: SideBySide) (EventID: 9) (User: ) Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2 Error: (05/17/2014 08:18:55 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: CloudfoggerUnzulässige Funktion. (0x80070001) Error: (05/17/2014 07:46:20 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 5545524 Error: (05/17/2014 07:46:20 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 5545524 Error: (05/17/2014 07:46:20 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second CodeIntegrity Errors: =================================== Date: 2014-05-18 11:02:18.466 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-18 11:02:18.369 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-18 11:02:18.284 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-18 11:02:18.193 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-17 18:11:03.981 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-17 18:11:03.877 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-17 18:11:03.787 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-17 18:11:03.719 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-16 16:02:37.377 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2014-05-16 16:02:37.151 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Memory info =========================== Percentage of memory in use: 53% Total physical RAM: 8067.31 MB Available physical RAM: 3739.02 MB Total Pagefile: 16132.8 MB Available Pagefile: 11052.6 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:450.96 GB) (Free:276 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: 2D0B651A) Partition 1: (Not Active) - (Size=39 MB) - (Type=DE) Partition 2: (Active) - (Size=15 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 8 GB) (Disk ID: 2D0B683E) Partition 1: (Not Active) - (Size=8 GB) - (Type=84) ==================== End Of Log ============================ Vielen vielen Dank  |
|
19.05.2014, 08:26
| #5 |
| /// the machine /// TB-Ausbilder | Browser aktualisiert sich automatisch / allgemeiner Virenscann Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.06.2014, 19:48
| #6 |
| | Browser aktualisiert sich automatisch / allgemeiner Virenscann Hallo, grade alle durchgezogen. Suchlauf Datum: 01.06.2014 Suchlauf-Zeit: 19:32:52 Logdatei: mbam.txt Administrator: Ja Version: 2.00.2.1012 Malware Datenbank: v2014.06.01.07 Rootkit Datenbank: v2014.05.21.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Self-protection: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Niko Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 345141 Verstrichene Zeit: 15 Min, 29 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristics: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 0 (No malicious items detected) Registrierungswerte: 0 (No malicious items detected) Registrierungsdaten: 0 (No malicious items detected) Ordner: 0 (No malicious items detected) Dateien: 0 (No malicious items detected) Physische Sektoren: 0 (No malicious items detected) (end) Hier die Ergebnisse.AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.211 - Bericht erstellt am 01/06/2014 um 20:06:34
# Aktualisiert 26/05/2014 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : Niko - NIKO-PC
# Gestartet von : C:\Users\Niko\Downloads\adwcleaner_3.211.exe
# Option : Löschen
***** [ Dienste ] *****
[#] Dienst Gelöscht : SystemStoreService
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\AVG SafeGuard toolbar
Ordner Gelöscht : C:\ProgramData\AVG Secure Search
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\BrowserProtect
Ordner Gelöscht : C:\ProgramData\DSearchLink
Ordner Gelöscht : C:\ProgramData\WPM
Ordner Gelöscht : C:\Program Files (x86)\AVG SafeGuard toolbar
Ordner Gelöscht : C:\Program Files (x86)\SoftwareUpdater
Ordner Gelöscht : C:\Program Files (x86)\Common Files\AVG Secure Search
[!] Ordner Gelöscht : C:\Users\Niko\AppData\Local\AVG SafeGuard toolbar
Ordner Gelöscht : C:\Users\Niko\AppData\Local\DownloadGuide
Ordner Gelöscht : C:\Users\Niko\AppData\Local\Software_Updater
Ordner Gelöscht : C:\Users\Niko\AppData\Local\SoftwareUpdater
Ordner Gelöscht : C:\Users\Niko\AppData\Local\Temp\WiseEnhance
Ordner Gelöscht : C:\Users\Niko\AppData\LocalLow\AVG SafeGuard toolbar
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\SupTab
Ordner Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Ordner Gelöscht : C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Ordner Gelöscht : C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\sweet-page.xml
Datei Gelöscht : C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
Datei Gelöscht : C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\oya0lr4b.default\user.js
Datei Gelöscht : C:\Windows\System32\Tasks\Funmoods
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater Ui
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\S
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\bi_client_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\bi_client_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\biclient_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\biclient_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220122612250}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550155615550}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660166616650}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440144614450}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550155615550}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660166616650}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\AVG SafeGuard toolbar
Schlüssel Gelöscht : HKCU\Software\BabSolution
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\Cr_Installer
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\installedbrowserextensions
Schlüssel Gelöscht : HKCU\Software\Myfree Codec
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software
Schlüssel Gelöscht : HKLM\Software\AVG SafeGuard toolbar
Schlüssel Gelöscht : HKLM\Software\AVG Security Toolbar
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\Myfree Codec
Schlüssel Gelöscht : HKLM\Software\SupTab
Schlüssel Gelöscht : HKLM\Software\supWPM
Schlüssel Gelöscht : HKLM\Software\Wpm
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17041
-\\ Mozilla Firefox v23.0.1 (en-US)
[ Datei : C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ]
[ Datei : C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\oya0lr4b.default\prefs.js ]
Zeile gelöscht : user_pref("avg.userPreferences.URLBarFocus.whiteList", "bing\\.com|google\\.\\w+|yahoo\\.\\w+|gmail\\.\\w+|hotmail\\.\\w+|live\\.\\w+|isearch\\.avg\\.com|mysearch\\.avg\\.com");
Zeile gelöscht : user_pref("browser.search.defaultenginename", "sweet-page");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "sweet-page");
Zeile gelöscht : user_pref("extensions.enabledAddons", "crossriderapp16150%40crossrider.com:0.91.42,ffxtlbr%40delta.com:1.5.0,%7BDF153AFF-6948-45d7-AC98-4FC4AF8A08E2%7D:1.3.3,web2pdfextension%40web2pdf.adobedotcom:1.2[...]
-\\ Google Chrome v35.0.1916.114
*************************
AdwCleaner[R0].txt - [15527 octets] - [01/06/2014 20:06:01]
AdwCleaner[S0].txt - [14740 octets] - [01/06/2014 20:06:34]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [14801 octets] ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.4 (04.06.2014:1) OS: Windows 7 Professional x64 Ran by Niko on 01.06.2014 at 20:30:16,45 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2609863520-929445052-6182941-1000\Software\sweetim Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111611150} ~~~ Files ~~~ Folders Failed to delete: [Folder] "C:\ProgramData\boost_interprocess" Successfully deleted: [Folder] "C:\Program Files (x86)\myfree codec" Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin" Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{6669DD1A-887E-462F-A7F1-3632F531C88A} Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{82CF2964-2F7C-4873-A0E3-80599CBB0117} Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A3D7A144-842E-47F6-8523-D0120E849899} ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 01.06.2014 at 20:37:47,89 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-06-2014 01
Ran by Niko (administrator) on NIKO-PC on 01-06-2014 20:45:37
Running from C:\Users\Niko\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AMD) C:\Windows\System32\atieclxx.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe
(Schomäcker GmbH) C:\Program Files (x86)\Q Pilot - Client\Service\QPilot-Client-Service.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\SmartAudio3.exe
(Spotify Ltd) C:\Users\Niko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
() C:\Program Files (x86)\PicoZip\PicoZipTray.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Users\Niko\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Cloudfogger GmbH) C:\Program Files\Cloudfogger\Cloudfogger.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Dropbox, Inc.) C:\Users\Niko\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Schomäcker GmbH) C:\Program Files (x86)\Q Pilot - Client\GUI\QPilot-Client-GUI.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Cloudfogger GmbH) C:\Program Files\Cloudfogger\Cloudfogger.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files (x86)\Opera\21.0.1432.67\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Thisisu) C:\Users\Niko\Downloads\JRT.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Hold'em Manager) C:\Program Files (x86)\RVG Software\Holdem Manager\HoldemManager.exe
(Farbar) C:\Users\Niko\Downloads\FRST64 (1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2894640 2012-03-14] (ELAN Microelectronics Corp.)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5752480 2012-07-11] (Dell Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SA3\SACpl.exe [1628288 2011-09-09] (Conexant Systems, Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [IntelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [4802864 2012-06-26] (Intel(R) Corporation)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [178960 2012-03-15] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11406608 2012-05-15] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-02] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2012-03-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-02] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] => C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-09-18] (CyberLink Corp.)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [577024 2012-03-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [737872 2014-05-22] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [162856 2013-03-20] (Geek Software GmbH)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [TkBellExe] => c:\program files (x86)\real\realplayer\Update\realsched.exe [295512 2014-01-15] (RealNetworks, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
HKLM-x32\...\Run: [QPilotClientGUI] => C:\Program Files (x86)\Q Pilot - Client\GUI\QPilot-Client-GUI.exe [29561344 2012-05-09] (Schomäcker GmbH)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-04-23] (Samsung Electronics Co., Ltd.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [Spotify Web Helper] => C:\Users\Niko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-18] (Spotify Ltd)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [PicoZip] => C:\Program Files (x86)\PicoZip\PicoZipTray.exe [581632 2006-06-09] ()
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [KSS] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202296 2012-04-25] (Kaspersky Lab ZAO)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22415552 2014-04-25] (Google)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [SkyDrive] => C:\Users\Niko\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2014-05-14] (Microsoft Corporation)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2014-04-23] (Samsung)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [Cloudfogger] => C:\Program Files\Cloudfogger\Cloudfogger.exe [7173456 2013-02-25] (Cloudfogger GmbH)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-2609863520-929445052-6182941-1000\...\Run: [Kies3PDLR.exe] => C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [844360 2014-04-02] (Samsung)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Niko\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://myfinancelab.mathxl.com/Info/Detect.aspx?detecttype=1&redirect=http%3A//myfinancelab.mathxl.com/Student/Announcements.aspx
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0080C422-C11C-4603-8360-040913F058BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MDDSJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0080C422-C11C-4603-8360-040913F058BC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MDDSJS
SearchScopes: HKCU - DefaultScope {0080C422-C11C-4603-8360-040913F058BC} URL =
SearchScopes: HKCU - {0080C422-C11C-4603-8360-040913F058BC} URL =
BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\oya0lr4b.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 - C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-05]
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-03-12]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\ []
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-03-12]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-05]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2013-09-12]
CHR Extension: (Google Docs) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-03-12]
CHR Extension: (Google Drive) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-03-12]
CHR Extension: (YouTube) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-03-12]
CHR Extension: (Google Search) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-03-12]
CHR Extension: (AdBlock) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-03-24]
CHR Extension: (Website Blocker (Beta)) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgegipaehbigmbhdpfapmjadbaldib [2013-05-04]
CHR Extension: (RealDownloader) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-03-13]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2013-10-01]
CHR Extension: (HeapNote Student) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdpkjlfphbilckljgefidcggjagliide [2013-09-12]
CHR Extension: (No Name) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-04-23]
CHR Extension: (No Name) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-09-29]
CHR Extension: (Google Wallet) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Gmail) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-03-12]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-05-22] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-05-22] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1039440 2014-05-22] (Avira Operations GmbH & Co. KG)
R2 CxUtilSvc; C:\Program Files\Conexant\SA3\CxUtilSvc.exe [109184 2011-10-12] (Conexant Systems, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [192856 2012-02-25] (Intel Corporation)
R2 KSS; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202296 2012-04-25] (Kaspersky Lab ZAO)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272688 2012-06-26] ()
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)
R2 QPilotClientService; C:\Program Files (x86)\Q Pilot - Client\Service\QPilot-Client-Service.exe [25631744 2012-05-09] (Schomäcker GmbH)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3325232 2012-06-26] (Intel® Corporation)
R2 postgresql-8.4; C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N "postgresql-8.4" -D "C:/Program Files (x86)/PostgreSQL/8.4/data" -w [X]
S2 vToolbarUpdater18.1.5; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\ToolbarUpdater.exe [X]
==================== Drivers (Whitelisted) ====================
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [31872 2012-02-01] (Advanced Micro Devices, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [112080 2014-05-22] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-05-08] (AVG Technologies)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-22] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-01] (Avira Operations GmbH & Co. KG)
R1 CBFilterFS; C:\Windows\system32\drivers\cbfltfs.sys [148312 2013-01-07] (EldoS Corporation)
R1 cbfs3; C:\Windows\system32\drivers\cbfs3.sys [352520 2012-12-04] (EldoS Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-25] (DT Soft Ltd)
R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-02-22] (Intel Corporation)
R3 stdriver; C:\Windows\System32\DRIVERS\stdriverx64.sys [33488 2014-05-11] ()
R3 ST_ACCEL; C:\Windows\System32\DRIVERS\ST_ACCEL.sys [67184 2012-01-04] (STMicroelectronics)
R1 {2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64; C:\Windows\System32\drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}w64.sys [61120 2014-04-29] (StdLib)
S1 bwfklzqh; \??\C:\Windows\system32\drivers\bwfklzqh.sys [X]
S1 fcuvqxuh; \??\C:\Windows\system32\drivers\fcuvqxuh.sys [X]
S1 filglntn; \??\C:\Windows\system32\drivers\filglntn.sys [X]
S1 hshropep; \??\C:\Windows\system32\drivers\hshropep.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-01 20:44 - 2014-06-01 20:44 - 02067456 _____ (Farbar) C:\Users\Niko\Downloads\FRST64 (1).exe
2014-06-01 20:37 - 2014-06-01 20:37 - 00001483 _____ () C:\Users\Niko\Desktop\JRT.txt
2014-06-01 20:30 - 2014-06-01 20:30 - 00000000 ____D () C:\Windows\ERUNT
2014-06-01 20:29 - 2014-06-01 20:29 - 01016261 _____ (Thisisu) C:\Users\Niko\Downloads\JRT.exe
2014-06-01 20:06 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-01 20:05 - 2014-06-01 20:07 - 00000000 ____D () C:\AdwCleaner
2014-06-01 20:05 - 2014-06-01 20:05 - 01327971 _____ () C:\Users\Niko\Downloads\adwcleaner_3.211.exe
2014-05-24 20:58 - 2014-06-01 19:18 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-24 20:57 - 2014-05-24 20:57 - 00001100 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-24 20:57 - 2014-05-24 20:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-05-24 20:57 - 2014-05-24 20:57 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-24 20:57 - 2014-05-24 20:57 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-05-24 20:57 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-24 20:57 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-24 20:57 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-24 20:55 - 2014-05-24 20:56 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Niko\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-18 11:13 - 2014-05-18 11:13 - 00027545 _____ () C:\Users\Niko\Downloads\Logfiles.rar
2014-05-18 11:05 - 2014-05-18 11:05 - 00047270 _____ () C:\Users\Niko\Downloads\Addition.txt
2014-05-18 11:04 - 2014-06-01 20:45 - 00031784 _____ () C:\Users\Niko\Downloads\FRST.txt
2014-05-18 11:04 - 2014-06-01 20:45 - 00000000 ____D () C:\FRST
2014-05-18 11:03 - 2014-05-18 11:03 - 02067456 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2014-05-17 18:09 - 2014-05-26 18:29 - 00003222 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-16 15:37 - 2014-05-16 15:37 - 00281040 _____ () C:\Users\Niko\Downloads\Tarif Vorsorge.pptx
2014-05-16 15:37 - 2014-05-16 15:37 - 00000000 ____D () C:\Users\Niko\AppData\OICE_15_974FA576_32C1D314_2126
2014-05-16 07:59 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-16 07:59 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-16 07:59 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-16 07:59 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-16 07:59 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-16 07:59 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-15 17:15 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-15 17:15 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-15 17:15 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-15 17:15 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-15 17:15 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-15 17:15 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-15 17:15 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-15 17:15 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-15 17:15 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-15 17:15 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-15 17:15 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-15 17:15 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-15 17:15 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-15 17:15 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-15 17:15 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-15 17:15 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-15 17:15 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-15 17:15 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-15 17:15 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 17:15 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 17:15 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-15 17:15 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-15 17:15 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-11 23:01 - 2014-05-11 23:23 - 00004535 _____ () C:\Users\Niko\Downloads\Möbel.ods
2014-05-11 20:51 - 2014-05-11 20:51 - 00000000 ____D () C:\ProgramData\NCH Software
2014-05-11 20:49 - 2014-05-11 20:51 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00835096 _____ (NCH Software) C:\Users\Niko\Downloads\stsetup.exe
2014-05-11 20:49 - 2014-05-11 20:49 - 00033488 _____ () C:\Windows\system32\Drivers\stdriverx64.sys
2014-05-11 20:49 - 2014-05-11 20:49 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundTap Audiostream-Rekorder.lnk
2014-05-11 20:49 - 2014-05-11 20:49 - 00001181 _____ () C:\Users\Niko\AppData\Roaming\trace_FilterInstaller.txt
2014-05-11 20:49 - 2014-05-11 20:49 - 00001170 _____ () C:\Users\Public\Desktop\SoundTap Audiostream-Rekorder.lnk
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Produktpalette
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audioverwandte Programme
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 _____ () C:\Users\Niko\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2014-05-11 20:47 - 2014-05-11 20:47 - 00000000 ____D () C:\Users\Niko\AppData\Local\TuneUp Software
2014-05-11 20:46 - 2014-05-11 20:46 - 00001249 _____ () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Free Sound Recorder.lnk
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Users\Niko\Documents\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Program Files (x86)\Free Sound Recorder
2014-05-11 20:46 - 2006-03-23 12:56 - 00113486 _____ () C:\Windows\SysWOW64\NCTWMAProfiles.prx
2014-05-11 20:46 - 2005-05-18 11:52 - 01212416 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2014-05-11 20:46 - 2005-05-17 12:37 - 01986560 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2014-05-11 20:46 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2014-05-11 20:46 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2014-05-11 20:46 - 2005-04-15 12:08 - 00880640 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2014-05-11 20:46 - 2005-04-04 17:21 - 00602112 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2014-05-11 20:46 - 2005-03-28 15:54 - 00479232 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioVisualization2.dll
2014-05-11 20:46 - 2005-03-28 15:52 - 00417792 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTTextToAudio2.dll
2014-05-11 20:46 - 2005-02-24 11:51 - 00348160 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTWMAFile2.dll
2014-05-11 20:46 - 2004-11-04 13:31 - 00835584 _____ (NCT) C:\Windows\SysWOW64\NCTAudioCDGrabber2.dll
2014-05-11 20:46 - 2002-01-05 16:37 - 00344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2014-05-11 20:41 - 2014-05-11 20:48 - 00001474 _____ () C:\Users\Niko\AppData\Local\RecConfig.xml
2014-05-11 20:39 - 2014-05-11 20:39 - 02497825 _____ (No23) C:\Users\Niko\Downloads\No23Recorder2103.exe
2014-05-11 20:39 - 2014-05-11 20:39 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No23 Recorder
2014-05-11 20:39 - 2014-05-11 20:39 - 00000000 ____D () C:\Users\Niko\AppData\Local\No23 Recorder
2014-05-10 17:09 - 2014-05-10 17:09 - 00002000 _____ () C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2014-05-10 17:09 - 2014-05-10 17:09 - 00001990 _____ () C:\Users\Public\Desktop\Samsung Kies.lnk
2014-05-10 17:02 - 2014-04-11 10:39 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-05-10 17:02 - 2014-04-11 10:39 - 00110336 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2014-05-10 17:01 - 2014-05-10 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
2014-05-10 16:39 - 2014-05-10 16:42 - 75879368 _____ (Samsung Electronics Co., Ltd.) C:\Users\Niko\Downloads\KiesSetup263.exe
2014-05-10 16:35 - 2014-05-10 17:02 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-05-08 18:32 - 2014-05-08 18:32 - 00001832 _____ () C:\Windows\system32\ricdb.ini
2014-05-08 18:32 - 2014-05-08 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q Pilot - Client
2014-05-08 18:32 - 2007-05-11 05:43 - 00026112 _____ (RICOH CO.,Ltd.) C:\Windows\system32\rc4mon64.DLL
2014-05-08 18:31 - 2014-05-08 18:32 - 00000000 ____D () C:\Program Files (x86)\Q Pilot - Client
2014-05-06 10:56 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-05-06 10:56 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-05-06 08:40 - 2014-05-16 16:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-06 00:28 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-05-06 00:28 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-06 00:28 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-06 00:28 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-05-06 00:28 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-05-06 00:28 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-05-06 00:28 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-06 00:28 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-05-06 00:28 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-05-06 00:28 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-05-06 00:28 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-05-06 00:28 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-05-06 00:28 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-05-06 00:28 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-05-06 00:28 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-05-06 00:28 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-05-06 00:28 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-05-06 00:28 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-05-06 00:28 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-05-06 00:28 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-06 00:28 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-05-06 00:28 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-05-06 00:28 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-05-06 00:27 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-05-06 00:27 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-05-06 00:27 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-05-06 00:27 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-05-06 00:25 - 2014-05-06 00:25 - 01069776 _____ (Solid State Networks) C:\Users\Niko\Downloads\install_flashplayer13x32_chrd_awc_aih.exe
2014-05-06 00:25 - 2014-05-06 00:25 - 00002992 _____ () C:\Windows\System32\Tasks\{5799A3AA-EEB4-458E-9D95-BB72C4CDAC37}
2014-05-06 00:04 - 2014-05-24 19:18 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-06 00:04 - 2014-05-06 00:04 - 00002021 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-05-05 18:14 - 2014-05-05 18:14 - 00000000 __SHD () C:\Users\Niko\AppData\Local\EmieUserList
2014-05-05 18:14 - 2014-05-05 18:14 - 00000000 __SHD () C:\Users\Niko\AppData\Local\EmieSiteList
2014-05-05 17:38 - 2014-05-05 17:38 - 00008610 _____ () C:\Users\Niko\Documents\CFAufg83..xlsx
2014-05-04 14:58 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-04 14:58 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-04 14:58 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-04 14:58 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-04 14:58 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-04 14:58 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-04 14:58 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-04 14:58 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-04 14:58 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-04 14:58 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-04 14:58 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-04 14:58 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-04 14:58 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-04 14:58 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-04 14:58 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-04 14:58 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-04 14:58 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-04 14:58 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-04 14:58 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-04 14:58 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-04 14:58 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-04 14:58 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-04 14:58 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-04 14:58 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-04 14:58 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-04 14:57 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-04 14:57 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-04 14:57 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-04 14:57 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-04 14:57 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-04 14:57 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-04 14:57 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-04 14:57 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-04 14:57 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-04 14:57 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-04 14:57 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-04 14:57 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-04 14:57 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-04 14:57 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-04 14:57 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-04 14:57 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-04 14:57 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-04 14:57 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-04 14:57 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-03 11:10 - 2014-05-03 11:14 - 85943098 _____ () C:\Users\Niko\Downloads\qyYio5ySJHYo.mp4
2014-05-03 08:09 - 2014-06-01 20:09 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\DropboxMaster
2014-05-02 10:53 - 2014-05-02 10:54 - 02821509 _____ () C:\Users\Niko\Downloads\excelPivotTable (1).zip
2014-05-02 10:42 - 2014-05-02 10:42 - 00007859 _____ () C:\Users\Niko\Downloads\Zahlenbeispiel.zip
==================== One Month Modified Files and Folders =======
2014-06-01 20:45 - 2014-05-18 11:04 - 00031784 _____ () C:\Users\Niko\Downloads\FRST.txt
2014-06-01 20:45 - 2014-05-18 11:04 - 00000000 ____D () C:\FRST
2014-06-01 20:45 - 2013-03-12 16:01 - 00000000 ____D () C:\Users\Niko\AppData\Local\Temp
2014-06-01 20:44 - 2014-06-01 20:44 - 02067456 _____ (Farbar) C:\Users\Niko\Downloads\FRST64 (1).exe
2014-06-01 20:43 - 2013-03-15 14:48 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Skype
2014-06-01 20:38 - 2013-10-17 15:11 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Cloudfogger
2014-06-01 20:37 - 2014-06-01 20:37 - 00001483 _____ () C:\Users\Niko\Desktop\JRT.txt
2014-06-01 20:31 - 2013-03-12 16:33 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-01 20:30 - 2014-06-01 20:30 - 00000000 ____D () C:\Windows\ERUNT
2014-06-01 20:29 - 2014-06-01 20:29 - 01016261 _____ (Thisisu) C:\Users\Niko\Downloads\JRT.exe
2014-06-01 20:29 - 2013-08-21 10:38 - 00005126 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Niko-PC-Niko Niko-PC
2014-06-01 20:15 - 2009-07-14 06:45 - 00021088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-01 20:15 - 2009-07-14 06:45 - 00021088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-01 20:12 - 2010-11-21 08:50 - 00721922 _____ () C:\Windows\system32\perfh007.dat
2014-06-01 20:12 - 2010-11-21 08:50 - 00156938 _____ () C:\Windows\system32\perfc007.dat
2014-06-01 20:12 - 2009-07-14 07:13 - 01662108 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-01 20:11 - 2012-12-28 00:17 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-01 20:10 - 2013-03-13 15:58 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Dropbox
2014-06-01 20:09 - 2014-05-03 08:09 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\DropboxMaster
2014-06-01 20:09 - 2013-08-21 10:00 - 00000000 ___RD () C:\Users\Niko\SkyDrive
2014-06-01 20:09 - 2013-03-13 16:07 - 00000000 ___RD () C:\Users\Niko\Dropbox
2014-06-01 20:08 - 2013-10-17 15:12 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-06-01 20:08 - 2013-09-10 13:41 - 00000000 ____D () C:\Users\Niko\AppData\Local\AVG SafeGuard toolbar
2014-06-01 20:08 - 2013-03-12 16:33 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-01 20:08 - 2012-12-28 00:48 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-06-01 20:08 - 2012-12-28 00:48 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-06-01 20:08 - 2012-12-28 00:43 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-06-01 20:08 - 2010-11-21 05:47 - 00303058 _____ () C:\Windows\PFRO.log
2014-06-01 20:08 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-01 20:08 - 2009-07-14 06:51 - 00112276 _____ () C:\Windows\setupact.log
2014-06-01 20:07 - 2014-06-01 20:05 - 00000000 ____D () C:\AdwCleaner
2014-06-01 20:07 - 2012-12-28 00:16 - 01370665 _____ () C:\Windows\WindowsUpdate.log
2014-06-01 20:05 - 2014-06-01 20:05 - 01327971 _____ () C:\Users\Niko\Downloads\adwcleaner_3.211.exe
2014-06-01 19:18 - 2014-05-24 20:58 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-30 13:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-28 22:26 - 2013-03-13 15:58 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-28 22:26 - 2013-03-12 16:05 - 00000000 ___RD () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-27 22:40 - 2014-03-01 13:50 - 00000000 ____D () C:\Users\Niko\Downloads\Nikolai Westall
2014-05-26 18:29 - 2014-05-17 18:09 - 00003222 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-26 18:29 - 2013-03-13 17:42 - 00003358 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-24 20:57 - 2014-05-24 20:57 - 00001100 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-24 20:57 - 2014-05-24 20:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-05-24 20:57 - 2014-05-24 20:57 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-24 20:57 - 2014-05-24 20:57 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-05-24 20:56 - 2014-05-24 20:55 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Niko\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-24 19:18 - 2014-05-06 00:04 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-22 13:19 - 2013-03-20 11:16 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-05-22 13:19 - 2013-03-20 11:16 - 00112080 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-05-18 11:13 - 2014-05-18 11:13 - 00027545 _____ () C:\Users\Niko\Downloads\Logfiles.rar
2014-05-18 11:05 - 2014-05-18 11:05 - 00047270 _____ () C:\Users\Niko\Downloads\Addition.txt
2014-05-18 11:03 - 2014-05-18 11:03 - 02067456 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2014-05-18 04:28 - 2013-03-25 09:28 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Spotify
2014-05-17 20:26 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-16 22:42 - 2013-10-17 15:29 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-05-16 16:02 - 2013-03-12 16:05 - 00000000 ___RD () C:\Users\Niko\Virtual Machines
2014-05-16 16:02 - 2013-03-12 16:05 - 00000000 ___RD () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 16:00 - 2014-05-06 08:40 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-16 16:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-16 15:37 - 2014-05-16 15:37 - 00281040 _____ () C:\Users\Niko\Downloads\Tarif Vorsorge.pptx
2014-05-16 15:37 - 2014-05-16 15:37 - 00000000 ____D () C:\Users\Niko\AppData\OICE_15_974FA576_32C1D314_2126
2014-05-16 07:59 - 2013-07-16 09:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-16 07:57 - 2013-03-19 18:04 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-16 07:52 - 2013-05-03 23:57 - 00000000 ____D () C:\Users\postgres
2014-05-14 23:15 - 2012-12-28 00:17 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 23:15 - 2012-12-28 00:17 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 23:15 - 2012-12-28 00:17 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-14 22:17 - 2013-03-12 18:10 - 00002507 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Standard.lnk
2014-05-14 22:17 - 2013-03-12 18:10 - 00002465 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
2014-05-14 22:15 - 2014-02-20 21:25 - 00002190 _____ () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-05-14 22:15 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-05-14 19:45 - 2014-04-21 20:42 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-14 19:45 - 2014-04-01 22:32 - 00003200 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2609863520-929445052-6182941-1000
2014-05-12 19:17 - 2013-03-25 09:29 - 00000000 ____D () C:\Users\Niko\AppData\Local\Spotify
2014-05-12 07:26 - 2014-05-24 20:57 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-24 20:57 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-24 20:57 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 23:23 - 2014-05-11 23:01 - 00004535 _____ () C:\Users\Niko\Downloads\Möbel.ods
2014-05-11 21:16 - 2013-04-14 15:45 - 00000000 ____D () C:\Users\Niko\AppData\Local\PokerStars.EU
2014-05-11 20:51 - 2014-05-11 20:51 - 00000000 ____D () C:\ProgramData\NCH Software
2014-05-11 20:51 - 2014-05-11 20:49 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00835096 _____ (NCH Software) C:\Users\Niko\Downloads\stsetup.exe
2014-05-11 20:49 - 2014-05-11 20:49 - 00033488 _____ () C:\Windows\system32\Drivers\stdriverx64.sys
2014-05-11 20:49 - 2014-05-11 20:49 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundTap Audiostream-Rekorder.lnk
2014-05-11 20:49 - 2014-05-11 20:49 - 00001181 _____ () C:\Users\Niko\AppData\Roaming\trace_FilterInstaller.txt
2014-05-11 20:49 - 2014-05-11 20:49 - 00001170 _____ () C:\Users\Public\Desktop\SoundTap Audiostream-Rekorder.lnk
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Produktpalette
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audioverwandte Programme
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-05-11 20:49 - 2014-05-11 20:49 - 00000000 _____ () C:\Users\Niko\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2014-05-11 20:48 - 2014-05-11 20:41 - 00001474 _____ () C:\Users\Niko\AppData\Local\RecConfig.xml
2014-05-11 20:47 - 2014-05-11 20:47 - 00000000 ____D () C:\Users\Niko\AppData\Local\TuneUp Software
2014-05-11 20:47 - 2013-09-29 19:40 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-11 20:46 - 2014-05-11 20:46 - 00001249 _____ () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Free Sound Recorder.lnk
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Users\Niko\Documents\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Sound Recorder
2014-05-11 20:46 - 2014-05-11 20:46 - 00000000 ____D () C:\Program Files (x86)\Free Sound Recorder
2014-05-11 20:39 - 2014-05-11 20:39 - 02497825 _____ (No23) C:\Users\Niko\Downloads\No23Recorder2103.exe
2014-05-11 20:39 - 2014-05-11 20:39 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No23 Recorder
2014-05-11 20:39 - 2014-05-11 20:39 - 00000000 ____D () C:\Users\Niko\AppData\Local\No23 Recorder
2014-05-11 18:17 - 2013-03-15 14:40 - 00000000 ____D () C:\Users\Niko\Downloads\Studium
2014-05-10 17:30 - 2013-09-28 17:27 - 00000000 ____D () C:\Users\Niko\Documents\SelfMV
2014-05-10 17:30 - 2013-09-28 17:13 - 00000000 ____D () C:\Users\Niko\AppData\Roaming\Samsung
2014-05-10 17:30 - 2013-09-28 17:13 - 00000000 ____D () C:\Users\Niko\AppData\Local\Samsung
2014-05-10 17:09 - 2014-05-10 17:09 - 00002000 _____ () C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2014-05-10 17:09 - 2014-05-10 17:09 - 00001990 _____ () C:\Users\Public\Desktop\Samsung Kies.lnk
2014-05-10 17:02 - 2014-05-10 16:35 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-05-10 17:02 - 2013-09-28 16:52 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-05-10 17:01 - 2014-05-10 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
2014-05-10 16:52 - 2013-09-28 16:52 - 00000000 ____D () C:\ProgramData\Samsung
2014-05-10 16:51 - 2013-03-15 15:05 - 00000000 ____D () C:\Users\Niko\AppData\Local\Downloaded Installations
2014-05-10 16:42 - 2014-05-10 16:39 - 75879368 _____ (Samsung Electronics Co., Ltd.) C:\Users\Niko\Downloads\KiesSetup263.exe
2014-05-10 16:30 - 2014-04-28 12:29 - 00001967 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk
2014-05-09 08:14 - 2014-05-15 17:15 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-15 17:15 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 22:18 - 2013-09-10 13:40 - 00050464 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-05-08 22:18 - 2013-09-10 13:40 - 00003800 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2014-05-08 18:32 - 2014-05-08 18:32 - 00001832 _____ () C:\Windows\system32\ricdb.ini
2014-05-08 18:32 - 2014-05-08 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q Pilot - Client
2014-05-08 18:32 - 2014-05-08 18:31 - 00000000 ____D () C:\Program Files (x86)\Q Pilot - Client
2014-05-08 10:26 - 2013-07-09 12:35 - 00000000 ____D () C:\Program Files (x86)\Goals
2014-05-08 10:25 - 2014-03-16 21:33 - 00000000 ____D () C:\Program Files (x86)\Achtung, die Kurve!
2014-05-08 10:22 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-05-08 09:49 - 2013-08-06 14:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-05-07 14:55 - 2013-03-12 16:01 - 00000000 ____D () C:\Users\Niko
2014-05-06 08:41 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-06 08:26 - 2013-03-12 16:33 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-06 08:26 - 2013-03-12 16:33 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-06 06:40 - 2014-05-16 07:59 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-16 07:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-16 07:59 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-16 07:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-16 07:59 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-16 07:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-06 00:28 - 2011-02-11 19:45 - 01640132 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-06 00:26 - 2013-04-10 19:20 - 00007680 _____ () C:\Users\Niko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-06 00:25 - 2014-05-06 00:25 - 01069776 _____ (Solid State Networks) C:\Users\Niko\Downloads\install_flashplayer13x32_chrd_awc_aih.exe
2014-05-06 00:25 - 2014-05-06 00:25 - 00002992 _____ () C:\Windows\System32\Tasks\{5799A3AA-EEB4-458E-9D95-BB72C4CDAC37}
2014-05-06 00:13 - 2013-03-12 21:24 - 00000000 ____D () C:\Users\Niko\AppData\Local\Adobe
2014-05-06 00:04 - 2014-05-06 00:04 - 00002021 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-05-06 00:04 - 2012-12-28 00:53 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-06 00:04 - 2012-12-28 00:53 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-05 18:14 - 2014-05-05 18:14 - 00000000 __SHD () C:\Users\Niko\AppData\Local\EmieUserList
2014-05-05 18:14 - 2014-05-05 18:14 - 00000000 __SHD () C:\Users\Niko\AppData\Local\EmieSiteList
2014-05-05 17:38 - 2014-05-05 17:38 - 00008610 _____ () C:\Users\Niko\Documents\CFAufg83..xlsx
2014-05-03 11:14 - 2014-05-03 11:10 - 85943098 _____ () C:\Users\Niko\Downloads\qyYio5ySJHYo.mp4
2014-05-02 10:54 - 2014-05-02 10:53 - 02821509 _____ () C:\Users\Niko\Downloads\excelPivotTable (1).zip
2014-05-02 10:42 - 2014-05-02 10:42 - 00007859 _____ () C:\Users\Niko\Downloads\Zahlenbeispiel.zip
Some content of TEMP:
====================
C:\Users\Niko\AppData\Local\Temp\56087uninstall.exe
C:\Users\Niko\AppData\Local\Temp\AskSLib.dll
C:\Users\Niko\AppData\Local\Temp\avgnt.exe
C:\Users\Niko\AppData\Local\Temp\bitool.dll
C:\Users\Niko\AppData\Local\Temp\Creative Cloud Helper.exe
C:\Users\Niko\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpwdqfmm.dll
C:\Users\Niko\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Niko\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Niko\AppData\Local\Temp\Execute2App.exe
C:\Users\Niko\AppData\Local\Temp\install_flashplayer11x32au_mssa_aaa_aih.exe
C:\Users\Niko\AppData\Local\Temp\JDSetup130433506157661872.exe
C:\Users\Niko\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Niko\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Niko\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Niko\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Niko\AppData\Local\Temp\Kies2RemoveAll.exe
C:\Users\Niko\AppData\Local\Temp\lowproc.exe
C:\Users\Niko\AppData\Local\Temp\mirc725.exe
C:\Users\Niko\AppData\Local\Temp\msvcp90.dll
C:\Users\Niko\AppData\Local\Temp\msvcr90.dll
C:\Users\Niko\AppData\Local\Temp\OfficeSetup.exe
C:\Users\Niko\AppData\Local\Temp\oi_{BBD3436D-9477-4145-9C8B-7AF5E2A4779D}.exe
C:\Users\Niko\AppData\Local\Temp\Quarantine.exe
C:\Users\Niko\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Niko\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Niko\AppData\Local\Temp\Setup.X86.de-DE_O365HomePremRetail_e7881186-5ff3-4cd5-b2b4-2b449443f15e_TX_DB_.exe
C:\Users\Niko\AppData\Local\Temp\SIInvoker.exe
C:\Users\Niko\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Niko\AppData\Local\Temp\Sqlite3.dll
C:\Users\Niko\AppData\Local\Temp\stubhelper.dll
C:\Users\Niko\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Niko\AppData\Local\Temp\uninst1.exe
C:\Users\Niko\AppData\Local\Temp\vlc-2.0.2-win32.exe
C:\Users\Niko\AppData\Local\Temp\vlc-2.0.6-win32.exe
C:\Users\Niko\AppData\Local\Temp\vlc-2.0.8-win32.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-05-29 08:40
==================== End Of Log ============================
Vielen Dank für deine Zeit. Liebe Grüße Feno |
|
02.06.2014, 18:34
| #7 |
| /// the machine /// TB-Ausbilder | Browser aktualisiert sich automatisch / allgemeiner VirenscannESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Browser aktualisiert sich automatisch / allgemeiner Virenscann |
| aktualisiert, allgemeiner, automatisch, browser, eingabe, gutes, hilfe, nicht mehr, scan, scann, sich automatisch, tagen, taste, tritt, virenscan, virenscann, überprüft, zutun |
Linear-Darstellung
