Gdata TotalProtection -Dieses Programm wurde von Systemadministrator geblockt. ...

Markus1970 · 29.06.2014, 17:24

Ich habe mir das Programm Gdata TotalProtection gekauft! Nachdem ich es starten wollte, erschien die Meldung "Das Programm wurde vom Systemadministrator geblockt. Weitere Informationen erhalten Sie vom Systemadminstrator".

Bin mit meinem Latein am Ende... Wer kann helfen?

Gruß Markus

FRST.Txt

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:28-06-2014 02
Ran by Markus (administrator) on FAMILY-PC on 29-06-2014 18:05:32
Running from C:\Users\Markus\Downloads
Platform: Microsoft Windows 8.1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(G Data Software AG) C:\Program Files\G Data\TotalProtection\AVK\AVKService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(abilis GmbH) C:\Program Files\DriveOnWeb Client\DOWService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
() C:\Program Files\RrFilter\RrFilterService.exe
(Star Finanz-Software Entwicklung und Vertriebs GmbH) C:\Program Files\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
() C:\Program Files\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(abilis GmbH) C:\Program Files\DriveOnWeb Client\DriveOnWeb.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x86__8wekyb3d8bbwe\glcnd.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x86__8wekyb3d8bbwe\livecomm.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [2729800 2011-01-12] (O&O Software GmbH)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM\...\Run: [GDFirewallTray] => C:\Program Files\G Data\TotalProtection\Firewall\GDFirewallTray.exe [1724728 2013-12-19] (G Data Software AG)
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\McAfee <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\G DATA <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\Common Files\G DATA <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\G DATA <====== ATTENTION
HKU\.DEFAULT\...\Winlogon: [Shell] C:\Windows\explorer.exe [2088160 2014-03-04] (Microsoft Corporation) <==== ATTENTION 
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [2088160 2014-03-04] (Microsoft Corporation) <==== ATTENTION 
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [2088160 2014-03-04] (Microsoft Corporation) <==== ATTENTION 
HKU\S-1-5-21-3165100869-4291753369-2572973315-1001\...\MountPoints2: {ff6811f7-fb7b-11e3-9716-806e6f6e6963} - "I:\zdata\cobi.exe" 
HKU\S-1-5-21-3165100869-4291753369-2572973315-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2088160 2014-03-04] (Microsoft Corporation) <==== ATTENTION 
Startup: C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DriveOnWeb.lnk
ShortcutTarget: DriveOnWeb.lnk -> C:\Program Files\DriveOnWeb Client\DriveOnWeb.exe (abilis GmbH)
ShellIconOverlayIdentifiers: DriveOnWebOverlayIconUnsyn -> {83c71e86-6898-4d64-aa5b-6e1ef6d5542c} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DriveOnWebOverlaySyn -> {36141fd6-1a75-4307-8d61-33ecf92e756c} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.google.de/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3325376&octid=EB_ORIGINAL_CTID&ISID=M8DE136FA-6A08-4906-94EC-79D00B65A074&SearchSource=58&CUI=&UM=5&UP=SPC5F69086-E458-4593-8A7B-59877DAE3EF1&q={searchTerms}&SSPV=
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.0\ViProtocol.dll No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\icnut0cs.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1212152.dll (Adobe Systems, Inc.)
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.0\\npsitesafety.dll No File
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 - C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin: @staging.google.com/globalUpdate Update;version=4 - C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\icnut0cs.default\user.js
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: RrSavings - C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\icnut0cs.default\Extensions\RrSavings@jetpack [2014-06-25]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2014-06-25]

========================== Services (Whitelisted) =================

R2 AVKService; C:\Program Files\G Data\TotalProtection\AVK\AVKService.exe [914552 2013-12-19] (G Data Software AG)
S2 AVKWCtl; C:\Program Files\G Data\TotalProtection\AVK\AVKWCtl.exe [2159472 2014-03-25] (G Data Software AG)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-06-29] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1565880 2014-05-21] (Microsoft Corporation)
R2 DriveOnWeb Client Service; c:\Program Files\DriveOnWeb Client\DOWService.exe [15360 2014-06-17] (abilis GmbH) [File not signed]
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [757872 2014-06-19] (Cherished Technololgy LIMITED)
R3 InnovativeSolutions_monitor; C:\Program Files\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe [1064880 2014-06-04] ()
S2 iprip; C:\Windows\System32\iprip.dll [31744 2014-06-29] (Microsoft Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25088 2014-06-29] (Microsoft Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [2335560 2011-01-12] (O&O Software GmbH)
R2 RrFilterService; c:\Program Files\RrFilter\RrFilterService.exe [149504 2014-03-13] () [File not signed]
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [105472 2013-08-22] (Microsoft Corporation)
R2 StarMoney 9.0 OnlineUpdate; C:\Program Files\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe [663184 2014-01-27] (Star Finanz-Software Entwicklung und Vertriebs GmbH)
S3 TSNxGService; C:\Program Files\G Data\TotalProtection\TSNxG\TSNxGService.exe [255608 2014-02-03] (G Data Software)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [66560 2014-06-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [279784 2014-03-24] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [20992 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22224 2014-03-24] (Microsoft Corporation)
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1210368 2014-04-03] (Microsoft Corporation)
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /svc [X]
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /medsvc [X]
S2 PCSUService; C:\Program Files\PC Speed Up\PCSUService.exe [X]
S2 vToolbarUpdater18.1.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\ToolbarUpdater.exe [X]

==================== Drivers (Whitelisted) ====================

R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [42272 2014-06-24] (AVG Technologies)
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [25600 2014-03-18] (Microsoft Corporation)
R2 easycvfs; C:\Windows\system32\drivers\easycvfs.sys [108680 2014-06-02] () [File not signed]
R3 gddcd; C:\Windows\system32\drivers\gddcd32.sys [69632 2014-06-25] (G Data Software AG)
R1 gddcv; C:\Windows\system32\drivers\gddcv32.sys [52352 2014-06-25] (G Data Software AG)
R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt32.sys [20736 2014-06-25] (G Data Software AG)
S3 GPIO; C:\Windows\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [131072 2014-06-29] (Microsoft Corporation)
R1 netfilter; C:\Windows\System32\drivers\netfilter.sys [31744 2014-02-13] (NetFilterSDK.com) [File not signed]
R0 TS4NT; C:\Windows\System32\Drivers\TS4nt.sys [103928 2014-06-29] (G Data Software)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [92504 2014-03-24] (Microsoft Corporation)
R0 Wof; C:\Windows\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
S0 GDBehave; system32\drivers\GDBehave.sys [X]
S1 GDMnIcpt; \??\C:\Windows\system32\drivers\MiniIcpt.sys [X]
S1 HookCentre; \??\C:\Windows\system32\drivers\HookCentre.sys [X]
S1 MpKsl0e36eb62; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0F368FEC-B3E0-42D5-A814-CBA86BEFCAB4}\MpKsl0e36eb62.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-29 18:05 - 2014-06-29 18:06 - 00013088 _____ () C:\Users\Markus\Downloads\FRST.txt
2014-06-29 18:05 - 2014-06-29 18:05 - 01073664 _____ (Farbar) C:\Users\Markus\Downloads\FRST.exe
2014-06-29 18:05 - 2014-06-29 18:05 - 00000000 ____D () C:\FRST
2014-06-29 17:56 - 2014-06-29 17:57 - 00033287 _____ () C:\Windows\iis.log
2014-06-29 17:55 - 2014-06-29 17:55 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\mqsnap.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\mqutil.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\mqoa.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\mqrt.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\mqoa.tlb
2014-06-29 17:55 - 2014-06-29 17:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\evntagnt.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\mqoa30.tlb
2014-06-29 17:55 - 2014-06-29 17:55 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\tlntsess.exe
2014-06-29 17:55 - 2014-06-29 17:55 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\mqoa20.tlb
2014-06-29 17:55 - 2014-06-29 17:55 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\lmmib2.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\mqoa10.tlb
2014-06-29 17:55 - 2014-06-29 17:55 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iprip.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\evntcmd.exe
2014-06-29 17:55 - 2014-06-29 17:55 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\simptcp.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\mqcertui.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00009096 _____ () C:\Windows\system32\msmqtrc.mof
2014-06-29 17:55 - 2014-06-29 17:55 - 00000862 _____ () C:\Windows\system32\termcap
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IIS
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\Windows\system32\msmq
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\Windows\system32\inetsrv
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\Windows\system32\BestPractices
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\Program Files\Windows Identity Foundation
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\inetpub
2014-06-29 17:54 - 2014-06-29 17:54 - 01003520 _____ (Microsoft Corporation) C:\Windows\system32\mqqm.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\mqsec.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\snmpsnap.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\mqad.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\tlntsvr.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\telnet.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\mqmigplugin.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mqac.sys
2014-06-29 17:54 - 2014-06-29 17:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\mqcmiplugin.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00107882 _____ () C:\Windows\system32\mib_ii.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mqlogmgr.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\evntwin.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\tlntadmn.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00048593 _____ () C:\Windows\system32\hostmib.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\snmp.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\mqbkup.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\hostmib.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00034317 _____ () C:\Windows\system32\msiprip2.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00030448 _____ () C:\Windows\system32\mcastmib.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00026236 _____ () C:\Windows\system32\wins.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00026100 _____ () C:\Windows\system32\lmmib2.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\aspperf.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\mqsvc.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00022462 _____ () C:\Windows\system32\rfc2571.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TFTP.EXE
2014-06-29 17:54 - 2014-06-29 17:54 - 00021271 _____ () C:\Windows\system32\http.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00015799 _____ () C:\Windows\system32\ipforwd.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00015032 _____ () C:\Windows\system32\authserv.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00014032 _____ () C:\Windows\system32\accserv.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00013767 _____ () C:\Windows\system32\msipbtp.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\snmpmib.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00006179 _____ () C:\Windows\system32\ftp.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00004597 _____ () C:\Windows\system32\dhcp.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00004411 _____ () C:\Windows\system32\smi.mib
2014-06-29 11:39 - 2014-06-29 11:39 - 00002025 _____ () C:\Users\Public\Desktop\G Data TotalProtection.lnk
2014-06-29 11:39 - 2014-06-29 11:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G Data TotalProtection
2014-06-29 11:38 - 2014-06-29 11:38 - 00103928 _____ (G Data Software) C:\Windows\system32\Drivers\TS4nt.sys
2014-06-29 11:36 - 2014-06-29 11:36 - 00000000 ____D () C:\ProgramData\G DATA Software
2014-06-29 11:28 - 2014-06-29 11:31 - 00000000 ____D () C:\Program Files\Common Files\G Data
2014-06-29 11:25 - 2014-06-29 11:25 - 00411144 _____ () C:\Users\Markus\Downloads\AVCleaner.exe
2014-06-29 10:15 - 2014-06-29 10:15 - 00000384 _____ () C:\Users\Markus\Downloads\TuneUpUtilities2014_de-DE(2).exe
2014-06-28 18:40 - 2014-06-28 18:41 - 28367756 _____ () C:\Users\Markus\Downloads\TuneUpUtilities2014_de-DE(1).exe
2014-06-28 18:33 - 2014-06-28 18:34 - 00000000 ____D () C:\Windows\system32\C2MP
2014-06-28 18:33 - 2014-06-28 18:33 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Lern-o-Mat
2014-06-28 18:33 - 2014-06-28 18:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cole2k Media - Codec Pack
2014-06-28 18:32 - 2012-05-02 11:17 - 01070152 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCTL.OCX
2014-06-28 18:32 - 2006-02-22 18:59 - 00194168 _____ (Infragistics, Inc.) C:\Windows\system32\IGScroll40.ocx
2014-06-28 18:32 - 2004-03-09 00:00 - 01010720 _____ (Microsoft Corporation) C:\Windows\system32\MSCHRT20.OCX
2014-06-28 18:32 - 2000-10-02 11:27 - 00125712 _____ (Microsoft Corporation) C:\Windows\system32\VB6DE.DLL
2014-06-28 18:32 - 1998-06-18 00:00 - 00089360 _____ (Microsoft Corporation) C:\Windows\system32\VB5DB.DLL
2014-06-28 18:30 - 2014-06-28 18:39 - 28442216 _____ () C:\Users\Markus\Downloads\TuneUpUtilities2014_de-DE.exe
2014-06-28 18:29 - 2014-06-28 18:32 - 00000949 _____ () C:\Users\Public\Desktop\Lern-o-Mat.lnk
2014-06-28 18:29 - 2014-06-28 18:32 - 00000000 ____D () C:\Program Files\Lern-o-Mat
2014-06-28 18:29 - 2014-06-28 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lern-o-Mat
2014-06-28 18:28 - 2014-06-28 18:28 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-06-28 18:24 - 2014-06-28 18:24 - 00724348 _____ ( ) C:\Users\Markus\Downloads\total-commander.exe
2014-06-28 18:04 - 2014-06-29 10:02 - 00000950 _____ () C:\Users\Markus\AppData\Local\83fb16eddf0dc6581e646116f1ed9285
2014-06-28 18:04 - 2014-06-28 19:03 - 00000000 ____D () C:\Users\Markus\Silver Projects Elements
2014-06-28 18:04 - 2014-06-28 18:04 - 00000000 ____D () C:\Users\Markus\Projects Series
2014-06-28 18:03 - 2014-06-28 18:03 - 00001299 _____ () C:\Users\Public\Desktop\SILVER projects elements (32-Bit).lnk
2014-06-28 18:03 - 2014-06-28 18:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Franzis
2014-06-28 18:02 - 2014-06-28 18:02 - 00000000 ____D () C:\Windows\system32\AIM
2014-06-28 18:02 - 2014-06-28 18:02 - 00000000 ____D () C:\Program Files\Franzis
2014-06-28 18:02 - 2003-12-04 15:58 - 00000696 _____ () C:\Windows\system32\jetodbc.rsp
2014-06-28 18:02 - 2002-12-11 19:12 - 00760968 _____ (Microsoft Corporation) C:\Windows\system32\WMSDMOD.DLL
2014-06-28 18:02 - 2002-12-11 19:12 - 00316040 _____ (Microsoft Corporation) C:\Windows\system32\MP43DMOD.DLL
2014-06-28 18:02 - 2002-12-11 19:10 - 00816264 _____ (Microsoft Corporation) C:\Windows\system32\WMVDMOD.DLL
2014-06-28 18:02 - 2002-12-11 17:34 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DMOD.DLL
2014-06-28 18:02 - 2002-12-11 15:16 - 00384512 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDMOD.DLL
2014-06-28 18:02 - 2002-08-29 03:43 - 00278559 _____ (Microsoft Corporation) C:\Windows\system32\WMV8DS32.AX
2014-06-28 18:02 - 2002-08-29 03:43 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\WMVDS32.AX
2014-06-28 18:02 - 2002-08-29 03:43 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\MSADDS32.AX
2014-06-28 18:02 - 2002-04-29 19:47 - 00121160 _____ (Microsoft Corporation) C:\Windows\system32\mscal.ocx
2014-06-28 18:02 - 2000-06-13 00:00 - 01046288 _____ (Microsoft Corporation) C:\Windows\system32\MSJET35.DLL
2014-06-28 18:02 - 2000-06-13 00:00 - 00415504 _____ (Microsoft Corporation) C:\Windows\system32\MSREPL35.DLL
2014-06-28 18:02 - 1999-03-05 22:15 - 00074000 _____ (Microsoft Corporation) C:\Windows\system32\msrclr40.dll
2014-06-28 18:02 - 1999-03-05 22:15 - 00028944 _____ (Microsoft Corporation) C:\Windows\system32\msrecr40.dll
2014-06-28 18:02 - 1998-04-24 00:00 - 00368912 _____ (Microsoft Corporation) C:\Windows\system32\VBAR332.DLL
2014-06-28 18:02 - 1998-04-24 00:00 - 00148240 _____ (Microsoft Corporation) C:\Windows\system32\MSJINT35.DLL
2014-06-28 18:02 - 1997-07-01 10:45 - 00250128 _____ (Microsoft Corporation) C:\Windows\system32\MSEXCL35.DLL
2014-06-28 18:02 - 1997-06-23 09:06 - 00330000 _____ (Microsoft Corporation) C:\Windows\system32\MSEXCH35.DLL
2014-06-28 18:02 - 1997-06-23 09:06 - 00287504 _____ (Microsoft Corporation) C:\Windows\system32\MSXBSE35.DLL
2014-06-28 18:02 - 1997-06-23 09:06 - 00252176 _____ (Microsoft Corporation) C:\Windows\system32\MSRD2X35.DLL
2014-06-28 18:02 - 1997-06-23 09:06 - 00250128 _____ (Microsoft Corporation) C:\Windows\system32\MSPDOX35.DLL
2014-06-28 18:02 - 1997-06-23 09:06 - 00166160 _____ (Microsoft Corporation) C:\Windows\system32\MSLTUS35.DLL
2014-06-28 18:02 - 1997-06-23 09:06 - 00165648 _____ (Microsoft Corporation) C:\Windows\system32\MSTEXT35.DLL
2014-06-28 18:02 - 1997-06-23 09:06 - 00024848 _____ (Microsoft Corporation) C:\Windows\system32\MSJTER35.DLL
2014-06-28 18:00 - 2014-06-28 18:00 - 00001996 _____ () C:\Users\Public\Desktop\Fischer Weltalmanach 2014.lnk
2014-06-28 18:00 - 2014-06-28 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fischer Weltalmanach
2014-06-28 17:59 - 2014-06-28 17:59 - 00000000 ____D () C:\Program Files\USM
2014-06-28 17:51 - 2014-06-28 17:51 - 00000000 ____D () C:\ProgramData\TEMP
2014-06-28 17:49 - 2014-06-28 17:49 - 00377856 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\dplayx.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dpwsockx.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-06-28 17:49 - 2014-06-28 17:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\dplaysvr.exe
2014-06-28 17:49 - 2014-06-28 17:49 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\dpmodemx.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2014-06-28 09:37 - 2014-06-28 09:37 - 11161780 _____ () C:\Users\Markus\Downloads\MyMicroBalance_2.5.5_DE.msi
2014-06-28 09:35 - 2014-06-28 09:36 - 07047460 _____ () C:\Users\Markus\Downloads\MyMicroBalance_3.0.0_DE.msi
2014-06-27 14:33 - 2014-06-29 11:25 - 00000000 ____D () C:\ProgramData\AzoshOfitw
2014-06-26 11:08 - 2014-06-26 11:08 - 00262144 _____ () C:\Windows\system32\18
2014-06-26 11:08 - 2014-06-26 11:08 - 00000000 __SHD () C:\#GDATA.Trash.Store#
2014-06-26 10:24 - 2014-06-26 10:24 - 00262144 _____ () C:\Windows\system32\Ĕ
2014-06-25 21:44 - 2014-06-25 21:45 - 00000000 ____D () C:\Users\Markus\.weasis
2014-06-25 21:43 - 2014-06-25 21:43 - 00000000 ____D () C:\ProgramData\Sun
2014-06-25 21:43 - 2014-06-25 21:43 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-25 21:43 - 2014-06-25 21:42 - 00472808 _____ (Sun Microsystems, Inc.) C:\Windows\system32\deployJava1.dll
2014-06-25 21:43 - 2014-06-25 21:42 - 00157472 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaws.exe
2014-06-25 21:43 - 2014-06-25 21:42 - 00149280 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaw.exe
2014-06-25 21:43 - 2014-06-25 21:42 - 00149280 _____ (Sun Microsystems, Inc.) C:\Windows\system32\java.exe
2014-06-25 21:42 - 2014-06-25 21:42 - 00000000 ____D () C:\Program Files\Java
2014-06-25 15:23 - 2014-06-25 15:23 - 00000000 ____D () C:\Users\Markus\AppData\Local\G DATA
2014-06-25 15:22 - 2014-06-25 15:22 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\G Data
2014-06-25 13:35 - 2014-06-25 13:35 - 00069632 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcd32.sys
2014-06-25 13:35 - 2014-06-25 13:35 - 00052352 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcv32.sys
2014-06-25 13:35 - 2014-06-25 13:35 - 00020736 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBFlt32.sys
2014-06-25 13:35 - 2014-06-25 13:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_GDKBFlt32_01007.Wdf
2014-06-25 13:35 - 2014-06-25 13:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_gddcd32_01007.Wdf
2014-06-25 13:33 - 2014-06-25 13:33 - 00000779 _____ () C:\Users\Markus\AppData\Roaming\gdscan.log
2014-06-25 13:33 - 2014-06-25 13:33 - 00000000 _____ () C:\Users\Markus\AppData\Roaming\gdfw.log
2014-06-25 13:30 - 2014-06-29 11:37 - 00051288 _____ () C:\Windows\DPINST.LOG
2014-06-25 13:18 - 2014-06-29 11:28 - 00000000 ____D () C:\Program Files\G Data
2014-06-25 13:16 - 2014-06-29 11:39 - 00000000 ____D () C:\ProgramData\G Data
2014-06-25 13:12 - 2014-06-25 13:12 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-06-25 13:12 - 2014-06-25 13:12 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-06-25 13:12 - 2014-06-25 13:12 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-06-25 13:11 - 2014-06-27 12:01 - 00000000 ____D () C:\Users\Markus\AppData\Local\Adobe
2014-06-25 13:09 - 2014-06-25 13:11 - 00000000 ____D () C:\Windows\system32\Adobe
2014-06-25 13:08 - 2014-06-25 13:16 - 502900048 _____ (G Data Software AG) C:\Users\Markus\Downloads\INT_R_FUL_2015_TP.exe
2014-06-25 13:08 - 2014-06-25 13:08 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-06-25 13:08 - 2014-06-25 13:08 - 00002009 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-06-25 13:07 - 2014-06-25 13:08 - 18732144 _____ (Adobe Systems Inc.) C:\Users\Markus\Downloads\AdobeAIRInstaller.exe
2014-06-25 13:06 - 2014-06-25 13:06 - 01057176 _____ (Adobe) C:\Users\Markus\Downloads\install_flashplayer14x32_mssd_aaa_aih.exe
2014-06-25 13:05 - 2014-06-25 13:12 - 00000000 ____D () C:\Program Files\Adobe
2014-06-25 13:05 - 2014-06-25 13:06 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-06-25 13:04 - 2014-06-28 17:56 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-25 12:49 - 2014-06-25 12:49 - 00817847 _____ () C:\Users\Markus\Downloads\flashplayerpro-setup.exe
2014-06-25 11:47 - 2014-06-29 11:04 - 00000000 ____D () C:\Program Files\RrFilter
2014-06-25 11:45 - 2014-06-25 11:48 - 00000000 ____D () C:\temp
2014-06-25 11:40 - 2014-06-25 13:56 - 00000000 ____D () C:\Program Files\002
2014-06-25 11:06 - 2014-06-25 11:06 - 00416229 _____ () C:\Users\Markus\Downloads\Sammelmappe.zip
2014-06-24 19:43 - 2014-06-24 20:13 - 00000000 ____D () C:\Windows\system32\oodag
2014-06-24 19:10 - 2014-06-24 19:10 - 00002705 _____ () C:\Users\Public\Desktop\O&O Defrag.lnk
2014-06-24 19:10 - 2014-06-24 19:10 - 00000000 ____D () C:\Users\Markus\AppData\Local\O&O
2014-06-24 19:10 - 2014-06-24 19:10 - 00000000 ____D () C:\Users\Markus\AppData\Local\Downloaded Installations
2014-06-24 19:10 - 2014-06-24 19:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software
2014-06-24 19:10 - 2014-06-24 19:10 - 00000000 ____D () C:\Program Files\OO Software
2014-06-24 18:59 - 2014-06-24 19:00 - 17968984 _____ () C:\Users\Markus\Downloads\OODefragFree32Ger.exe
2014-06-24 18:57 - 2014-06-25 11:43 - 00002401 _____ () C:\Users\Markus\Desktop\Advanced Uninstaller PRO 11.lnk
2014-06-24 18:56 - 2014-06-24 18:56 - 00000000 ____D () C:\Program Files\Innovative Solutions
2014-06-24 18:55 - 2014-06-24 18:55 - 16986520 _____ (Innovative Solutions ) C:\Users\Markus\Downloads\Advanced_Uninstaller11.39.exe
2014-06-24 18:48 - 2014-06-24 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-06-24 18:48 - 2014-06-24 18:48 - 00000000 ____D () C:\Program Files\7-Zip
2014-06-24 18:46 - 2014-06-24 18:47 - 02607142 _____ () C:\Users\Markus\Downloads\7-Zip_v9.34-Alpha.zip
2014-06-24 18:37 - 2014-06-24 15:32 - 00000030 _____ () C:\AVScanner.ini
2014-06-24 17:19 - 2014-06-24 17:19 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-06-24 16:07 - 2014-06-24 16:07 - 00000000 ____D () C:\ProgramData\StarMoney 9.0
2014-06-24 16:06 - 2014-06-24 16:07 - 00002145 _____ () C:\Users\Public\Desktop\StarMoney 9.0.lnk
2014-06-24 16:06 - 2014-06-24 16:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarMoney 9.0
2014-06-24 15:57 - 2014-06-24 15:57 - 00000000 ____D () C:\Program Files\Common Files\StarFinanz
2014-06-24 15:56 - 2014-06-28 18:29 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-06-24 15:56 - 2014-06-26 09:59 - 00000000 ____D () C:\Program Files\StarMoney 9.0
2014-06-24 15:52 - 2014-06-24 15:53 - 185324024 _____ () C:\Users\Markus\Downloads\smoney.exe
2014-06-24 15:52 - 2014-06-24 15:52 - 00000000 ____D () C:\Users\Markus\AppData\Local\Macromedia
2014-06-24 15:33 - 2014-06-24 15:33 - 00000000 ____D () C:\ProgramData\McAfee
2014-06-24 15:32 - 2014-06-29 11:19 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-24 15:20 - 2013-08-22 01:52 - 00002143 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk
2014-06-24 15:18 - 2014-05-31 07:13 - 00703992 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-24 15:18 - 2014-05-31 07:13 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-06-24 15:10 - 2014-06-24 15:19 - 00000000 ___RD () C:\Windows\BrowserChoice
2014-06-24 13:36 - 2014-06-24 18:36 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-06-24 13:32 - 2014-06-28 15:12 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\DriveOnWeb Online
2014-06-24 13:27 - 2014-06-24 13:27 - 00000000 ____D () C:\Users\Markus\Documents\PCSpeedUp
2014-06-24 13:02 - 2014-06-01 17:18 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-24 12:40 - 2014-06-25 11:43 - 00002285 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO 11.lnk
2014-06-24 12:40 - 2014-06-25 11:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO
2014-06-24 12:40 - 2014-06-24 18:57 - 00000000 ____D () C:\ProgramData\Innovative Solutions
2014-06-24 12:40 - 2014-06-24 12:40 - 00000000 ____D () C:\Users\Markus\AppData\Local\Innovative Solutions
2014-06-24 12:40 - 2014-06-24 12:40 - 00000000 ____D () C:\Program Files\Common Files\Innovative Solutions
2014-06-24 12:40 - 2014-03-07 10:25 - 00042496 _____ () C:\Windows\system32\AdvUninstCPL.cpl
2014-06-24 12:39 - 2014-06-24 12:39 - 00000000 ____D () C:\Users\Markus\AppData\Local\AVG Secure Search
2014-06-24 12:38 - 2014-06-24 12:36 - 00042272 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx86.sys
2014-06-24 12:23 - 2014-03-20 03:31 - 01037504 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-06-24 12:23 - 2014-03-20 03:12 - 00863552 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-06-24 12:23 - 2014-03-20 03:09 - 01679704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-06-24 12:23 - 2014-03-20 01:39 - 00800256 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-06-24 12:23 - 2014-03-20 01:36 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-06-24 12:23 - 2014-03-19 07:25 - 00491008 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-06-24 12:23 - 2014-03-13 12:12 - 00138584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2014-06-24 12:23 - 2014-03-11 16:28 - 00887296 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-06-24 12:23 - 2014-03-08 14:00 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2014-06-24 12:23 - 2014-03-08 13:34 - 01095488 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-06-24 12:23 - 2014-03-08 09:47 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-06-24 12:23 - 2014-03-08 09:12 - 01816576 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-06-24 12:23 - 2014-03-08 08:40 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-06-24 12:23 - 2014-03-06 13:19 - 00390488 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-06-24 12:23 - 2014-03-06 13:13 - 01779800 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-06-24 12:23 - 2014-03-06 13:13 - 00406912 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-06-24 12:23 - 2014-03-06 12:43 - 00321880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-06-24 12:23 - 2014-03-06 12:34 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-06-24 12:23 - 2014-03-06 10:23 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-06-24 12:23 - 2014-03-06 08:06 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2014-06-24 12:23 - 2014-03-04 13:16 - 02088160 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-06-24 12:23 - 2014-03-04 13:10 - 00355832 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-06-24 12:23 - 2014-03-04 08:32 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2014-06-24 12:22 - 2014-03-20 03:09 - 00283992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-06-24 12:22 - 2014-03-19 07:20 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-06-24 12:22 - 2014-03-19 07:08 - 01351168 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-06-24 12:22 - 2014-03-12 15:45 - 00387210 _____ () C:\Windows\system32\ApnDatabase.xml
2014-06-24 12:22 - 2014-03-11 14:35 - 02317824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-06-24 12:22 - 2014-03-08 13:49 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-06-24 12:22 - 2014-03-08 13:45 - 00069464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-06-24 12:22 - 2014-03-08 10:44 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-06-24 12:22 - 2014-03-08 10:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2014-06-24 12:22 - 2014-03-08 09:40 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2014-06-24 12:22 - 2014-03-08 08:37 - 00755712 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-06-24 12:22 - 2014-03-08 08:37 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-06-24 12:22 - 2014-03-08 08:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2014-06-24 12:22 - 2014-03-08 08:25 - 00264192 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-06-24 12:22 - 2014-03-08 08:23 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-06-24 12:22 - 2014-03-08 07:58 - 00567296 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-06-24 12:22 - 2014-03-08 07:42 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-06-24 12:22 - 2014-03-08 07:16 - 00735232 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-06-24 12:22 - 2014-03-06 13:19 - 00094016 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-06-24 12:22 - 2014-03-06 12:46 - 01679128 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-24 12:22 - 2014-03-06 12:43 - 01326936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-06-24 12:22 - 2014-03-06 10:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-06-24 12:22 - 2014-03-06 10:24 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-06-24 12:22 - 2014-03-06 10:24 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-06-24 12:22 - 2014-03-06 10:22 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-06-24 12:22 - 2014-03-06 10:20 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-06-24 12:22 - 2014-03-06 10:20 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-06-24 12:22 - 2014-03-06 10:10 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2014-06-24 12:22 - 2014-03-06 09:47 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-06-24 12:22 - 2014-03-06 09:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-06-24 12:22 - 2014-03-06 09:16 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2014-06-24 12:22 - 2014-03-06 08:29 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-06-24 12:22 - 2014-03-06 08:23 - 02270208 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-06-24 12:22 - 2014-03-06 08:11 - 02030080 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-06-24 12:22 - 2014-03-06 08:09 - 01764864 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-06-24 12:22 - 2014-03-06 08:06 - 00386560 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-06-24 12:22 - 2014-03-06 08:04 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2014-06-24 12:22 - 2014-03-06 08:01 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-06-24 12:22 - 2014-03-06 07:51 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2014-06-24 12:22 - 2014-03-06 07:42 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-06-24 12:22 - 2014-03-04 08:42 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-06-24 12:22 - 2014-03-04 08:42 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-06-24 12:22 - 2014-03-04 08:39 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-06-24 12:22 - 2014-03-04 08:30 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2014-06-24 12:22 - 2014-03-04 08:26 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-06-24 12:22 - 2014-03-04 08:05 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2014-06-24 12:22 - 2014-03-04 07:54 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2014-06-24 12:22 - 2014-03-04 07:52 - 00605184 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-06-24 12:22 - 2013-12-24 01:28 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-06-24 12:21 - 2014-05-05 06:02 - 02826240 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-24 12:21 - 2014-05-03 08:36 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-24 12:21 - 2014-05-01 13:00 - 02257608 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2014-06-24 12:21 - 2014-05-01 08:51 - 02344448 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-06-24 12:21 - 2014-03-13 08:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-06-24 12:20 - 2014-05-01 13:00 - 00046512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2014-06-24 12:20 - 2014-05-01 08:42 - 02045440 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2014-06-24 12:20 - 2014-05-01 07:31 - 02366976 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-06-24 12:20 - 2014-04-30 12:10 - 01090296 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-24 12:20 - 2014-04-30 05:47 - 01509888 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-06-24 12:20 - 2014-04-30 05:43 - 01046016 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-06-24 12:20 - 2014-03-24 03:34 - 00219992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-06-24 12:20 - 2014-03-24 03:34 - 00092504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-06-24 12:20 - 2014-03-24 03:33 - 00030224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-06-24 12:19 - 2014-05-19 07:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-06-24 12:19 - 2014-05-19 07:23 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-06-24 12:19 - 2014-04-11 10:31 - 00049544 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-06-24 12:19 - 2014-04-11 10:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2014-06-24 12:19 - 2014-04-11 07:22 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-06-24 12:19 - 2014-04-11 05:41 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2014-06-24 12:19 - 2014-04-11 05:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-06-24 12:19 - 2014-04-11 05:05 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-06-24 12:19 - 2014-04-11 05:02 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-06-24 12:19 - 2014-04-11 05:01 - 00307712 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-06-24 12:19 - 2014-04-11 05:00 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-06-24 12:19 - 2014-04-11 04:59 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-06-24 12:19 - 2014-04-11 04:54 - 02818048 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-06-24 12:19 - 2014-04-11 04:47 - 01634304 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-06-24 12:19 - 2014-04-11 04:36 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-06-24 12:19 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll
2014-06-24 12:19 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll
2014-06-24 12:19 - 2014-03-06 10:20 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-06-24 12:18 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-24 12:18 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-24 12:18 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-24 12:18 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-24 12:18 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-24 12:18 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-24 12:18 - 2014-05-10 05:22 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-24 12:18 - 2014-05-09 01:08 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-06-24 12:18 - 2014-05-03 08:12 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe
2014-06-24 12:18 - 2014-05-03 06:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-24 12:18 - 2014-05-03 05:38 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-06-24 12:18 - 2014-02-06 12:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-24 12:18 - 2014-02-06 12:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-24 12:18 - 2014-02-06 11:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-24 12:18 - 2014-02-06 11:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-24 12:18 - 2014-02-06 11:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-24 12:18 - 2014-02-06 11:47 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-24 12:17 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-24 12:17 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-24 12:17 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-24 12:17 - 2014-05-30 09:57 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-24 12:17 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-24 12:17 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-24 12:17 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-24 12:17 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-24 12:17 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-24 12:17 - 2014-04-06 13:54 - 12711424 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-06-24 12:17 - 2014-04-03 05:46 - 01871704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-24 12:17 - 2014-04-03 05:46 - 00286040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-24 12:17 - 2014-03-18 06:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2014-06-24 12:17 - 2014-02-06 12:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-24 12:17 - 2014-02-06 11:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-24 12:16 - 2014-04-18 15:43 - 00031064 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2014-06-24 12:16 - 2014-04-18 15:29 - 01200288 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-06-24 12:16 - 2014-04-18 10:58 - 11792384 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-06-24 12:16 - 2014-04-18 10:51 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2014-06-24 12:16 - 2014-04-18 10:01 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-06-24 12:16 - 2014-04-18 09:51 - 00836608 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-06-24 12:16 - 2014-04-18 09:49 - 05833216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-06-24 12:16 - 2014-04-14 10:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2014-06-24 12:16 - 2014-04-11 06:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-06-24 12:16 - 2014-04-11 05:27 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2014-06-24 12:16 - 2014-04-09 12:47 - 00294744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-06-24 12:16 - 2014-04-09 07:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-06-24 12:16 - 2014-04-09 06:01 - 01089536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-06-24 12:16 - 2014-04-09 05:22 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-06-24 12:16 - 2014-04-08 01:47 - 00502104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-06-24 12:16 - 2014-04-06 17:27 - 00311128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-06-24 12:16 - 2014-04-06 17:27 - 00240472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-06-24 12:16 - 2014-04-06 17:23 - 00098584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-06-24 12:16 - 2014-04-06 17:22 - 18755672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-06-24 12:16 - 2014-04-06 17:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2014-06-24 12:16 - 2014-04-06 17:18 - 00271192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2014-06-24 12:16 - 2014-04-06 17:16 - 02144984 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 01159520 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 00707048 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 00406504 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 00326024 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 00305768 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-06-24 12:16 - 2014-04-06 17:16 - 00194752 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-06-24 12:16 - 2014-04-06 15:06 - 03497472 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-06-24 12:16 - 2014-04-06 14:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-06-24 12:16 - 2014-04-06 14:00 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-06-24 12:16 - 2014-04-06 13:47 - 00264704 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-06-24 12:16 - 2014-04-06 13:40 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-06-24 12:16 - 2014-04-06 12:58 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2014-06-24 12:16 - 2014-04-06 12:55 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-06-24 12:16 - 2014-04-06 12:44 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-06-24 12:16 - 2014-04-06 12:37 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-06-24 12:16 - 2014-04-06 12:36 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-06-24 12:16 - 2014-04-06 11:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2014-06-24 12:16 - 2014-04-03 06:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-06-24 12:16 - 2014-04-03 06:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2014-06-24 12:16 - 2014-04-03 05:53 - 01797896 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-06-24 12:16 - 2014-04-03 04:46 - 03563008 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-06-24 12:16 - 2014-04-03 04:45 - 00560128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-24 12:16 - 2014-04-03 04:44 - 01210368 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2014-06-24 12:16 - 2014-04-03 04:24 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-06-24 12:16 - 2014-04-03 04:24 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-06-24 12:16 - 2014-04-03 04:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2014-06-24 12:16 - 2014-04-01 07:09 - 00333656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-06-24 12:16 - 2014-03-31 05:34 - 05786968 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-06-24 12:16 - 2014-03-31 02:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\d3d8thk.dll
2014-06-24 12:16 - 2014-03-31 01:26 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2014-06-24 12:16 - 2014-03-31 01:13 - 00667136 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2014-06-24 12:16 - 2014-03-31 00:37 - 01167360 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-06-24 12:16 - 2014-03-31 00:35 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2014-06-24 12:16 - 2014-03-31 00:09 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-06-24 12:16 - 2014-03-30 23:49 - 00672256 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-06-24 12:16 - 2014-03-28 11:04 - 00328984 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-06-24 12:16 - 2014-03-27 07:21 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-06-24 12:16 - 2014-03-27 06:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-06-24 12:16 - 2014-03-27 06:19 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-06-24 12:16 - 2014-03-27 05:22 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-06-24 12:16 - 2014-03-27 05:03 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2014-06-24 12:16 - 2014-03-27 04:59 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-06-24 12:16 - 2014-03-25 00:57 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-06-24 12:16 - 2014-03-20 03:20 - 00229344 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-06-24 12:16 - 2014-03-20 01:33 - 05774848 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-06-24 12:16 - 2014-03-19 09:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-06-24 12:16 - 2014-03-19 09:09 - 00375296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-06-24 12:16 - 2014-03-19 07:56 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-06-24 12:16 - 2014-03-19 07:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-06-24 12:16 - 2014-03-19 06:51 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-06-24 12:16 - 2014-03-19 06:47 - 01309184 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-06-24 12:16 - 2014-03-19 06:23 - 01631232 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-06-24 12:16 - 2014-03-19 06:14 - 02130432 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-06-24 12:16 - 2014-03-18 09:22 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-06-24 12:16 - 2014-03-17 06:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-06-24 12:16 - 2014-03-17 04:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-06-24 12:16 - 2014-03-17 04:36 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-06-24 12:16 - 2014-03-14 08:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2014-06-24 12:16 - 2014-03-11 15:02 - 00629760 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-06-24 12:16 - 2014-03-08 13:53 - 00147800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-06-24 12:16 - 2014-03-08 13:49 - 00482416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-06-24 12:16 - 2014-03-06 12:37 - 00264536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-06-24 12:16 - 2014-03-06 10:20 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-06-24 12:16 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-06-24 12:13 - 2014-01-19 09:37 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-06-24 12:05 - 2014-06-24 12:05 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2014-06-24 12:05 - 2014-06-24 12:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2014-06-24 12:05 - 2014-06-24 12:05 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2014-06-24 12:05 - 2014-06-24 12:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2014-06-24 12:05 - 2014-06-24 12:05 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2014-06-24 12:05 - 2014-06-24 12:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2014-06-24 11:57 - 2014-06-24 11:57 - 00000000 ____D () C:\ProgramData\WindowsProtectManger
2014-06-24 11:57 - 2014-06-24 11:57 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-06-24 11:55 - 2014-06-27 11:55 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP3.job
2014-06-24 11:55 - 2014-06-25 11:55 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP2.job
2014-06-24 11:55 - 2014-06-24 12:15 - 00000366 _____ () C:\Windows\Tasks\APSnotifierPP1.job
2014-06-24 11:55 - 2014-06-24 11:58 - 00000314 _____ () C:\Users\Markus\AppData\Roaming\aps.uninstall.scan.results
2014-06-24 11:55 - 2014-06-23 13:57 - 00608121 _____ (Click Me In Limited) C:\Users\Markus\AppData\Local\AnyProtectScannerSetup.exe
2014-06-24 11:53 - 2014-06-29 11:57 - 00000338 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2014-06-24 11:53 - 2014-06-24 11:53 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-06-24 11:53 - 2014-06-24 11:53 - 00000000 ____D () C:\Program Files\MSBuild
2014-06-24 11:52 - 2014-06-29 10:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-06-24 11:52 - 2014-06-24 11:52 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-06-24 11:49 - 2014-06-29 11:06 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-06-24 11:48 - 2014-06-24 11:48 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Mozilla
2014-06-24 11:48 - 2014-06-24 11:48 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\dlg
2014-06-24 11:48 - 2014-06-24 11:48 - 00000000 ____D () C:\Users\Markus\AppData\Local\Mozilla
2014-06-24 11:47 - 2014-06-24 11:47 - 00001133 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-24 11:47 - 2014-06-24 11:47 - 00001121 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-24 11:47 - 2014-06-24 11:47 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-24 11:47 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-06-24 11:47 - 2013-08-03 06:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-24 11:47 - 2013-08-03 06:41 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-06-24 11:45 - 2014-06-25 21:43 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-24 11:45 - 2014-06-25 10:53 - 00000000 ____D () C:\Windows\Panther
2014-06-24 11:45 - 2014-06-24 11:45 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-06-24 11:37 - 2014-06-29 17:50 - 00000972 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-06-24 11:37 - 2014-06-29 17:47 - 00000968 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-06-24 11:37 - 2014-06-24 11:37 - 00000000 ____D () C:\Users\Markus\AppData\Local\globalUpdate
2014-06-24 11:31 - 2014-06-24 11:31 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Macromedia
2014-06-24 11:18 - 2014-06-24 11:21 - 00001787 _____ () C:\Users\Markus\Desktop\Microsoft Powerpoint 2013.lnk
2014-06-24 11:18 - 2014-06-24 11:21 - 00001776 _____ () C:\Users\Markus\Desktop\Microsoft Word 2013.lnk
2014-06-24 11:18 - 2014-06-24 11:20 - 00001776 _____ () C:\Users\Markus\Desktop\Microsoft Outlook 2013.lnk
2014-06-24 11:18 - 2014-06-24 11:19 - 00001756 _____ () C:\Users\Markus\Desktop\Microsoft Excel 2013.lnk
2014-06-24 11:17 - 2014-06-24 11:17 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-06-24 11:16 - 2014-06-24 11:16 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-06-24 11:15 - 2014-06-24 13:32 - 00000000 ____D () C:\Users\Markus\DOW
2014-06-24 11:15 - 2014-06-24 11:15 - 00000000 ___DL () C:\DriveOnWeb
2014-06-24 11:14 - 2014-06-24 11:15 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\DriveOnWeb
2014-06-24 11:13 - 2014-06-24 11:13 - 00002547 _____ () C:\Users\Public\Desktop\DriveOnWeb Client.lnk
2014-06-24 11:13 - 2014-06-24 11:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriveOnWeb Client
2014-06-24 11:13 - 2014-06-24 11:13 - 00000000 ____D () C:\Program Files\DriveOnWeb Client
2014-06-24 11:08 - 2014-06-24 11:08 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-24 11:06 - 2014-06-24 11:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-06-24 11:04 - 2014-06-24 11:05 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-06-24 11:02 - 2014-06-24 11:02 - 00000425 _____ () C:\Windows\BRWMARK.INI
2014-06-24 11:02 - 2014-06-24 11:02 - 00000000 __SHD () C:\Users\Markus\AppData\Local\EmieUserList
2014-06-24 11:02 - 2014-06-24 11:02 - 00000000 __SHD () C:\Users\Markus\AppData\Local\EmieSiteList
2014-06-24 11:01 - 2014-06-29 17:48 - 00000000 __RDO () C:\Users\Markus\OneDrive
2014-06-24 10:55 - 2014-06-24 10:57 - 00000000 ____D () C:\Users\Markus\AppData\Local\PackageStaging
2014-06-24 10:54 - 2014-06-27 12:01 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Adobe
2014-06-24 10:54 - 2014-06-25 21:44 - 00000000 ____D () C:\Users\Markus\AppData\Local\VirtualStore
2014-06-24 10:54 - 2014-06-24 10:54 - 00001454 _____ () C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-24 10:53 - 2014-06-28 18:04 - 00000000 ____D () C:\Users\Markus
2014-06-24 10:53 - 2014-06-24 10:53 - 00000020 ___SH () C:\Users\Markus\ntuser.ini
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Startmenü
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Netzwerkumgebung
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Druckumgebung
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Documents\Eigene Musik
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Documents\Eigene Bilder
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\AppData\Local\Verlauf
2014-06-24 10:53 - 2014-03-18 10:17 - 00000000 ___RD () C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-24 10:53 - 2014-03-18 10:17 - 00000000 ___RD () C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-24 10:53 - 2013-08-22 10:17 - 00000000 ___RD () C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-24 10:53 - 2013-08-22 10:17 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-24 10:52 - 2014-06-29 18:03 - 01060658 _____ () C:\Windows\WindowsUpdate.log
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Programme
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-24 10:50 - 2014-06-24 10:50 - 00000000 __SHD () C:\Recovery
2014-06-24 10:47 - 2014-06-24 10:47 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-06-02 10:37 - 2014-06-02 10:37 - 00108680 _____ () C:\Windows\system32\Drivers\easycvfs.sys
2014-06-02 10:37 - 2014-06-02 10:37 - 00077897 _____ () C:\Windows\system32\easycnp.dll

==================== One Month Modified Files and Folders =======

2014-06-29 18:06 - 2014-06-29 18:05 - 00013088 _____ () C:\Users\Markus\Downloads\FRST.txt
2014-06-29 18:05 - 2014-06-29 18:05 - 01073664 _____ (Farbar) C:\Users\Markus\Downloads\FRST.exe
2014-06-29 18:05 - 2014-06-29 18:05 - 00000000 ____D () C:\FRST
2014-06-29 18:03 - 2014-06-24 10:52 - 01060658 _____ () C:\Windows\WindowsUpdate.log
2014-06-29 18:00 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\sru
2014-06-29 17:58 - 2013-08-22 10:05 - 00000000 ____D () C:\Windows\CbsTemp
2014-06-29 17:57 - 2014-06-29 17:56 - 00033287 _____ () C:\Windows\iis.log
2014-06-29 17:57 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-06-29 17:55 - 2014-06-29 17:55 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\mqsnap.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\mqutil.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\mqoa.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\mqrt.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\mqoa.tlb
2014-06-29 17:55 - 2014-06-29 17:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\evntagnt.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\mqoa30.tlb
2014-06-29 17:55 - 2014-06-29 17:55 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\tlntsess.exe
2014-06-29 17:55 - 2014-06-29 17:55 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\mqoa20.tlb
2014-06-29 17:55 - 2014-06-29 17:55 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\lmmib2.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\mqoa10.tlb
2014-06-29 17:55 - 2014-06-29 17:55 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iprip.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\evntcmd.exe
2014-06-29 17:55 - 2014-06-29 17:55 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\simptcp.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\mqcertui.dll
2014-06-29 17:55 - 2014-06-29 17:55 - 00009096 _____ () C:\Windows\system32\msmqtrc.mof
2014-06-29 17:55 - 2014-06-29 17:55 - 00000862 _____ () C:\Windows\system32\termcap
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IIS
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\Windows\system32\msmq
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\Windows\system32\inetsrv
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\Windows\system32\BestPractices
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\Program Files\Windows Identity Foundation
2014-06-29 17:55 - 2014-06-29 17:55 - 00000000 ____D () C:\inetpub
2014-06-29 17:55 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\de-DE
2014-06-29 17:55 - 2013-08-22 10:17 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-06-29 17:54 - 2014-06-29 17:54 - 01003520 _____ (Microsoft Corporation) C:\Windows\system32\mqqm.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\mqsec.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\snmpsnap.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\mqad.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\tlntsvr.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\telnet.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\mqmigplugin.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mqac.sys
2014-06-29 17:54 - 2014-06-29 17:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\mqcmiplugin.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00107882 _____ () C:\Windows\system32\mib_ii.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mqlogmgr.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\evntwin.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\tlntadmn.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00048593 _____ () C:\Windows\system32\hostmib.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\snmp.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\mqbkup.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\hostmib.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00034317 _____ () C:\Windows\system32\msiprip2.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00030448 _____ () C:\Windows\system32\mcastmib.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00026236 _____ () C:\Windows\system32\wins.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00026100 _____ () C:\Windows\system32\lmmib2.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\aspperf.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\mqsvc.exe
2014-06-29 17:54 - 2014-06-29 17:54 - 00022462 _____ () C:\Windows\system32\rfc2571.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TFTP.EXE
2014-06-29 17:54 - 2014-06-29 17:54 - 00021271 _____ () C:\Windows\system32\http.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00015799 _____ () C:\Windows\system32\ipforwd.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00015032 _____ () C:\Windows\system32\authserv.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00014032 _____ () C:\Windows\system32\accserv.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00013767 _____ () C:\Windows\system32\msipbtp.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\snmpmib.dll
2014-06-29 17:54 - 2014-06-29 17:54 - 00006179 _____ () C:\Windows\system32\ftp.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00004597 _____ () C:\Windows\system32\dhcp.mib
2014-06-29 17:54 - 2014-06-29 17:54 - 00004411 _____ () C:\Windows\system32\smi.mib
2014-06-29 17:50 - 2014-06-24 11:37 - 00000972 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-06-29 17:48 - 2014-06-24 11:01 - 00000000 __RDO () C:\Users\Markus\OneDrive
2014-06-29 17:47 - 2014-06-24 11:37 - 00000968 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-06-29 17:42 - 2013-08-22 09:23 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-29 17:41 - 2014-03-18 01:54 - 00213136 _____ () C:\Windows\PFRO.log
2014-06-29 11:57 - 2014-06-24 11:53 - 00000338 _____ () C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2014-06-29 11:39 - 2014-06-29 11:39 - 00002025 _____ () C:\Users\Public\Desktop\G Data TotalProtection.lnk
2014-06-29 11:39 - 2014-06-29 11:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G Data TotalProtection
2014-06-29 11:39 - 2014-06-25 13:16 - 00000000 ____D () C:\ProgramData\G Data
2014-06-29 11:38 - 2014-06-29 11:38 - 00103928 _____ (G Data Software) C:\Windows\system32\Drivers\TS4nt.sys
2014-06-29 11:37 - 2014-06-25 13:30 - 00051288 _____ () C:\Windows\DPINST.LOG
2014-06-29 11:36 - 2014-06-29 11:36 - 00000000 ____D () C:\ProgramData\G DATA Software
2014-06-29 11:31 - 2014-06-29 11:28 - 00000000 ____D () C:\Program Files\Common Files\G Data
2014-06-29 11:28 - 2014-06-25 13:18 - 00000000 ____D () C:\Program Files\G Data
2014-06-29 11:25 - 2014-06-29 11:25 - 00411144 _____ () C:\Users\Markus\Downloads\AVCleaner.exe
2014-06-29 11:25 - 2014-06-27 14:33 - 00000000 ____D () C:\ProgramData\AzoshOfitw
2014-06-29 11:19 - 2014-06-24 15:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-29 11:09 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\spool
2014-06-29 11:06 - 2014-06-24 11:49 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-06-29 11:06 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-06-29 11:04 - 2014-06-25 11:47 - 00000000 ____D () C:\Program Files\RrFilter
2014-06-29 10:58 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-29 10:56 - 2014-06-24 11:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-06-29 10:28 - 2013-08-22 08:13 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-06-29 10:15 - 2014-06-29 10:15 - 00000384 _____ () C:\Users\Markus\Downloads\TuneUpUtilities2014_de-DE(2).exe
2014-06-29 10:04 - 2013-08-22 10:17 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-06-29 10:04 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\winevt
2014-06-29 10:04 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\MUI
2014-06-29 10:04 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\Com
2014-06-29 10:04 - 2013-08-22 08:21 - 00000000 ____D () C:\Windows\system32\SMI
2014-06-29 10:02 - 2014-06-28 18:04 - 00000950 _____ () C:\Users\Markus\AppData\Local\83fb16eddf0dc6581e646116f1ed9285
2014-06-28 19:03 - 2014-06-28 18:04 - 00000000 ____D () C:\Users\Markus\Silver Projects Elements
2014-06-28 18:41 - 2014-06-28 18:40 - 28367756 _____ () C:\Users\Markus\Downloads\TuneUpUtilities2014_de-DE(1).exe
2014-06-28 18:39 - 2014-06-28 18:30 - 28442216 _____ () C:\Users\Markus\Downloads\TuneUpUtilities2014_de-DE.exe
2014-06-28 18:34 - 2014-06-28 18:33 - 00000000 ____D () C:\Windows\system32\C2MP
2014-06-28 18:33 - 2014-06-28 18:33 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Lern-o-Mat
2014-06-28 18:33 - 2014-06-28 18:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cole2k Media - Codec Pack
2014-06-28 18:32 - 2014-06-28 18:29 - 00000949 _____ () C:\Users\Public\Desktop\Lern-o-Mat.lnk
2014-06-28 18:32 - 2014-06-28 18:29 - 00000000 ____D () C:\Program Files\Lern-o-Mat
2014-06-28 18:29 - 2014-06-28 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lern-o-Mat
2014-06-28 18:29 - 2014-06-24 15:56 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-06-28 18:28 - 2014-06-28 18:28 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-06-28 18:24 - 2014-06-28 18:24 - 00724348 _____ ( ) C:\Users\Markus\Downloads\total-commander.exe
2014-06-28 18:04 - 2014-06-28 18:04 - 00000000 ____D () C:\Users\Markus\Projects Series
2014-06-28 18:04 - 2014-06-24 10:53 - 00000000 ____D () C:\Users\Markus
2014-06-28 18:03 - 2014-06-28 18:03 - 00001299 _____ () C:\Users\Public\Desktop\SILVER projects elements (32-Bit).lnk
2014-06-28 18:03 - 2014-06-28 18:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Franzis
2014-06-28 18:02 - 2014-06-28 18:02 - 00000000 ____D () C:\Windows\system32\AIM
2014-06-28 18:02 - 2014-06-28 18:02 - 00000000 ____D () C:\Program Files\Franzis
2014-06-28 18:02 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\Macromed
2014-06-28 18:00 - 2014-06-28 18:00 - 00001996 _____ () C:\Users\Public\Desktop\Fischer Weltalmanach 2014.lnk
2014-06-28 18:00 - 2014-06-28 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fischer Weltalmanach
2014-06-28 17:59 - 2014-06-28 17:59 - 00000000 ____D () C:\Program Files\USM
2014-06-28 17:56 - 2014-06-25 13:04 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-28 17:51 - 2014-06-28 17:51 - 00000000 ____D () C:\ProgramData\TEMP
2014-06-28 17:49 - 2014-06-28 17:49 - 00377856 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\dplayx.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dpwsockx.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-06-28 17:49 - 2014-06-28 17:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\dplaysvr.exe
2014-06-28 17:49 - 2014-06-28 17:49 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\dpmodemx.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2014-06-28 17:49 - 2014-06-28 17:49 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2014-06-28 15:12 - 2014-06-24 13:32 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\DriveOnWeb Online
2014-06-28 13:43 - 2014-03-18 10:05 - 01804472 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-28 13:30 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\rescache
2014-06-28 09:37 - 2014-06-28 09:37 - 11161780 _____ () C:\Users\Markus\Downloads\MyMicroBalance_2.5.5_DE.msi
2014-06-28 09:36 - 2014-06-28 09:35 - 07047460 _____ () C:\Users\Markus\Downloads\MyMicroBalance_3.0.0_DE.msi
2014-06-27 12:01 - 2014-06-25 13:11 - 00000000 ____D () C:\Users\Markus\AppData\Local\Adobe
2014-06-27 12:01 - 2014-06-24 10:54 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Adobe
2014-06-27 11:55 - 2014-06-24 11:55 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP3.job
2014-06-27 10:08 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\AppReadiness
2014-06-26 11:08 - 2014-06-26 11:08 - 00262144 _____ () C:\Windows\system32\18
2014-06-26 11:08 - 2014-06-26 11:08 - 00000000 __SHD () C:\#GDATA.Trash.Store#
2014-06-26 10:24 - 2014-06-26 10:24 - 00262144 _____ () C:\Windows\system32\Ĕ
2014-06-26 09:59 - 2014-06-24 15:56 - 00000000 ____D () C:\Program Files\StarMoney 9.0
2014-06-25 21:45 - 2014-06-25 21:44 - 00000000 ____D () C:\Users\Markus\.weasis
2014-06-25 21:44 - 2014-06-24 10:54 - 00000000 ____D () C:\Users\Markus\AppData\Local\VirtualStore
2014-06-25 21:43 - 2014-06-25 21:43 - 00000000 ____D () C:\ProgramData\Sun
2014-06-25 21:43 - 2014-06-25 21:43 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-25 21:43 - 2014-06-24 11:45 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-25 21:42 - 2014-06-25 21:43 - 00472808 _____ (Sun Microsystems, Inc.) C:\Windows\system32\deployJava1.dll
2014-06-25 21:42 - 2014-06-25 21:43 - 00157472 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaws.exe
2014-06-25 21:42 - 2014-06-25 21:43 - 00149280 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaw.exe
2014-06-25 21:42 - 2014-06-25 21:43 - 00149280 _____ (Sun Microsystems, Inc.) C:\Windows\system32\java.exe
2014-06-25 21:42 - 2014-06-25 21:42 - 00000000 ____D () C:\Program Files\Java
2014-06-25 15:23 - 2014-06-25 15:23 - 00000000 ____D () C:\Users\Markus\AppData\Local\G DATA
2014-06-25 15:22 - 2014-06-25 15:22 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\G Data
2014-06-25 13:56 - 2014-06-25 11:40 - 00000000 ____D () C:\Program Files\002
2014-06-25 13:35 - 2014-06-25 13:35 - 00069632 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcd32.sys
2014-06-25 13:35 - 2014-06-25 13:35 - 00052352 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcv32.sys
2014-06-25 13:35 - 2014-06-25 13:35 - 00020736 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBFlt32.sys
2014-06-25 13:35 - 2014-06-25 13:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_GDKBFlt32_01007.Wdf
2014-06-25 13:35 - 2014-06-25 13:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_gddcd32_01007.Wdf
2014-06-25 13:35 - 2013-08-22 09:23 - 00016957 _____ () C:\Windows\setupact.log
2014-06-25 13:33 - 2014-06-25 13:33 - 00000779 _____ () C:\Users\Markus\AppData\Roaming\gdscan.log
2014-06-25 13:33 - 2014-06-25 13:33 - 00000000 _____ () C:\Users\Markus\AppData\Roaming\gdfw.log
2014-06-25 13:16 - 2014-06-25 13:08 - 502900048 _____ (G Data Software AG) C:\Users\Markus\Downloads\INT_R_FUL_2015_TP.exe
2014-06-25 13:12 - 2014-06-25 13:12 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-06-25 13:12 - 2014-06-25 13:12 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-06-25 13:12 - 2014-06-25 13:12 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-06-25 13:12 - 2014-06-25 13:05 - 00000000 ____D () C:\Program Files\Adobe
2014-06-25 13:11 - 2014-06-25 13:09 - 00000000 ____D () C:\Windows\system32\Adobe
2014-06-25 13:08 - 2014-06-25 13:08 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-06-25 13:08 - 2014-06-25 13:08 - 00002009 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-06-25 13:08 - 2014-06-25 13:07 - 18732144 _____ (Adobe Systems Inc.) C:\Users\Markus\Downloads\AdobeAIRInstaller.exe
2014-06-25 13:06 - 2014-06-25 13:06 - 01057176 _____ (Adobe) C:\Users\Markus\Downloads\install_flashplayer14x32_mssd_aaa_aih.exe
2014-06-25 13:06 - 2014-06-25 13:05 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-06-25 13:00 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\Resources
2014-06-25 12:49 - 2014-06-25 12:49 - 00817847 _____ () C:\Users\Markus\Downloads\flashplayerpro-setup.exe
2014-06-25 11:55 - 2014-06-24 11:55 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP2.job
2014-06-25 11:48 - 2014-06-25 11:45 - 00000000 ____D () C:\temp
2014-06-25 11:43 - 2014-06-24 18:57 - 00002401 _____ () C:\Users\Markus\Desktop\Advanced Uninstaller PRO 11.lnk
2014-06-25 11:43 - 2014-06-24 12:40 - 00002285 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO 11.lnk
2014-06-25 11:43 - 2014-06-24 12:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO
2014-06-25 11:06 - 2014-06-25 11:06 - 00416229 _____ () C:\Users\Markus\Downloads\Sammelmappe.zip
2014-06-25 10:53 - 2014-06-24 11:45 - 00000000 ____D () C:\Windows\Panther
2014-06-25 10:53 - 2013-08-22 08:21 - 00000000 __RHD () C:\Users\Default
2014-06-24 20:13 - 2014-06-24 19:43 - 00000000 ____D () C:\Windows\system32\oodag
2014-06-24 19:10 - 2014-06-24 19:10 - 00002705 _____ () C:\Users\Public\Desktop\O&O Defrag.lnk
2014-06-24 19:10 - 2014-06-24 19:10 - 00000000 ____D () C:\Users\Markus\AppData\Local\O&O
2014-06-24 19:10 - 2014-06-24 19:10 - 00000000 ____D () C:\Users\Markus\AppData\Local\Downloaded Installations
2014-06-24 19:10 - 2014-06-24 19:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software
2014-06-24 19:10 - 2014-06-24 19:10 - 00000000 ____D () C:\Program Files\OO Software
2014-06-24 19:00 - 2014-06-24 18:59 - 17968984 _____ () C:\Users\Markus\Downloads\OODefragFree32Ger.exe
2014-06-24 18:57 - 2014-06-24 12:40 - 00000000 ____D () C:\ProgramData\Innovative Solutions
2014-06-24 18:56 - 2014-06-24 18:56 - 00000000 ____D () C:\Program Files\Innovative Solutions
2014-06-24 18:55 - 2014-06-24 18:55 - 16986520 _____ (Innovative Solutions ) C:\Users\Markus\Downloads\Advanced_Uninstaller11.39.exe
2014-06-24 18:48 - 2014-06-24 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-06-24 18:48 - 2014-06-24 18:48 - 00000000 ____D () C:\Program Files\7-Zip
2014-06-24 18:47 - 2014-06-24 18:46 - 02607142 _____ () C:\Users\Markus\Downloads\7-Zip_v9.34-Alpha.zip
2014-06-24 18:36 - 2014-06-24 13:36 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-06-24 17:19 - 2014-06-24 17:19 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-06-24 17:18 - 2013-08-22 09:22 - 00367512 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-24 16:07 - 2014-06-24 16:07 - 00000000 ____D () C:\ProgramData\StarMoney 9.0
2014-06-24 16:07 - 2014-06-24 16:06 - 00002145 _____ () C:\Users\Public\Desktop\StarMoney 9.0.lnk
2014-06-24 16:07 - 2014-06-24 16:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarMoney 9.0
2014-06-24 16:00 - 2013-08-22 08:13 - 00017486 _____ () C:\Windows\system32\Drivers\etc\services
2014-06-24 15:57 - 2014-06-24 15:57 - 00000000 ____D () C:\Program Files\Common Files\StarFinanz
2014-06-24 15:53 - 2014-06-24 15:52 - 185324024 _____ () C:\Users\Markus\Downloads\smoney.exe
2014-06-24 15:52 - 2014-06-24 15:52 - 00000000 ____D () C:\Users\Markus\AppData\Local\Macromedia
2014-06-24 15:33 - 2014-06-24 15:33 - 00000000 ____D () C:\ProgramData\McAfee
2014-06-24 15:32 - 2014-06-24 18:37 - 00000030 _____ () C:\AVScanner.ini
2014-06-24 15:19 - 2014-06-24 15:10 - 00000000 ___RD () C:\Windows\BrowserChoice
2014-06-24 15:16 - 2013-08-22 10:17 - 00000000 ___RD () C:\Windows\ToastData
2014-06-24 15:16 - 2013-08-22 10:17 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-24 15:16 - 2013-08-22 10:17 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-24 15:16 - 2013-08-22 10:17 - 00000000 ____D () C:\Program Files\Windows Defender
2014-06-24 13:32 - 2014-06-24 11:15 - 00000000 ____D () C:\Users\Markus\DOW
2014-06-24 13:27 - 2014-06-24 13:27 - 00000000 ____D () C:\Users\Markus\Documents\PCSpeedUp
2014-06-24 13:10 - 2014-03-18 09:30 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-06-24 13:10 - 2013-08-22 10:17 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-06-24 13:10 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\WinStore
2014-06-24 12:44 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-06-24 12:40 - 2014-06-24 12:40 - 00000000 ____D () C:\Users\Markus\AppData\Local\Innovative Solutions
2014-06-24 12:40 - 2014-06-24 12:40 - 00000000 ____D () C:\Program Files\Common Files\Innovative Solutions
2014-06-24 12:39 - 2014-06-24 12:39 - 00000000 ____D () C:\Users\Markus\AppData\Local\AVG Secure Search
2014-06-24 12:36 - 2014-06-24 12:38 - 00042272 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx86.sys
2014-06-24 12:27 - 2013-08-22 08:13 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-06-24 12:15 - 2014-06-24 11:55 - 00000366 _____ () C:\Windows\Tasks\APSnotifierPP1.job
2014-06-24 12:05 - 2014-06-24 12:05 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2014-06-24 12:05 - 2014-06-24 12:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2014-06-24 12:05 - 2014-06-24 12:05 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2014-06-24 12:05 - 2014-06-24 12:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2014-06-24 12:05 - 2014-06-24 12:05 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2014-06-24 12:05 - 2014-06-24 12:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2014-06-24 11:58 - 2014-06-24 11:55 - 00000314 _____ () C:\Users\Markus\AppData\Roaming\aps.uninstall.scan.results
2014-06-24 11:57 - 2014-06-24 11:57 - 00000000 ____D () C:\ProgramData\WindowsProtectManger
2014-06-24 11:57 - 2014-06-24 11:57 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-06-24 11:53 - 2014-06-24 11:53 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-06-24 11:53 - 2014-06-24 11:53 - 00000000 ____D () C:\Program Files\MSBuild
2014-06-24 11:52 - 2014-06-24 11:52 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-06-24 11:48 - 2014-06-24 11:48 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Mozilla
2014-06-24 11:48 - 2014-06-24 11:48 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\dlg
2014-06-24 11:48 - 2014-06-24 11:48 - 00000000 ____D () C:\Users\Markus\AppData\Local\Mozilla
2014-06-24 11:47 - 2014-06-24 11:47 - 00001133 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-24 11:47 - 2014-06-24 11:47 - 00001121 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-24 11:47 - 2014-06-24 11:47 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-24 11:45 - 2014-06-24 11:45 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-06-24 11:45 - 2013-08-22 10:17 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2014-06-24 11:39 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\restore
2014-06-24 11:37 - 2014-06-24 11:37 - 00000000 ____D () C:\Users\Markus\AppData\Local\globalUpdate
2014-06-24 11:31 - 2014-06-24 11:31 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\Macromedia
2014-06-24 11:21 - 2014-06-24 11:18 - 00001787 _____ () C:\Users\Markus\Desktop\Microsoft Powerpoint 2013.lnk
2014-06-24 11:21 - 2014-06-24 11:18 - 00001776 _____ () C:\Users\Markus\Desktop\Microsoft Word 2013.lnk
2014-06-24 11:20 - 2014-06-24 11:18 - 00001776 _____ () C:\Users\Markus\Desktop\Microsoft Outlook 2013.lnk
2014-06-24 11:19 - 2014-06-24 11:18 - 00001756 _____ () C:\Users\Markus\Desktop\Microsoft Excel 2013.lnk
2014-06-24 11:17 - 2014-06-24 11:17 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-06-24 11:16 - 2014-06-24 11:16 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-06-24 11:16 - 2013-08-22 10:17 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-06-24 11:15 - 2014-06-24 11:15 - 00000000 ___DL () C:\DriveOnWeb
2014-06-24 11:15 - 2014-06-24 11:14 - 00000000 ____D () C:\Users\Markus\AppData\Roaming\DriveOnWeb
2014-06-24 11:13 - 2014-06-24 11:13 - 00002547 _____ () C:\Users\Public\Desktop\DriveOnWeb Client.lnk
2014-06-24 11:13 - 2014-06-24 11:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriveOnWeb Client
2014-06-24 11:13 - 2014-06-24 11:13 - 00000000 ____D () C:\Program Files\DriveOnWeb Client
2014-06-24 11:10 - 2014-06-24 11:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-06-24 11:08 - 2014-06-24 11:08 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-24 11:05 - 2014-06-24 11:04 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-06-24 11:03 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\twain_32
2014-06-24 11:02 - 2014-06-24 11:02 - 00000425 _____ () C:\Windows\BRWMARK.INI
2014-06-24 11:02 - 2014-06-24 11:02 - 00000000 __SHD () C:\Users\Markus\AppData\Local\EmieUserList
2014-06-24 11:02 - 2014-06-24 11:02 - 00000000 __SHD () C:\Users\Markus\AppData\Local\EmieSiteList
2014-06-24 10:57 - 2014-06-24 10:55 - 00000000 ____D () C:\Users\Markus\AppData\Local\PackageStaging
2014-06-24 10:55 - 2013-08-22 08:21 - 00000000 ___RD () C:\Users\Public
2014-06-24 10:54 - 2014-06-24 10:54 - 00001454 _____ () C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-24 10:53 - 2014-06-24 10:53 - 00000020 ___SH () C:\Users\Markus\ntuser.ini
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Startmenü
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Netzwerkumgebung
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Druckumgebung
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Documents\Eigene Musik
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\Documents\Eigene Bilder
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 10:53 - 2014-06-24 10:53 - 00000000 _SHDL () C:\Users\Markus\AppData\Local\Verlauf
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\Programme
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-24 10:51 - 2014-06-24 10:51 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-24 10:51 - 2013-08-22 10:17 - 00000000 ____D () C:\Program Files\Windows NT
2014-06-24 10:50 - 2014-06-24 10:50 - 00000000 __SHD () C:\Recovery
2014-06-24 10:50 - 2013-08-22 10:18 - 00002664 _____ () C:\Windows\DtcInstall.log
2014-06-24 10:50 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\Recovery
2014-06-24 10:47 - 2014-06-24 10:47 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-06-23 13:57 - 2014-06-24 11:55 - 00608121 _____ (Click Me In Limited) C:\Users\Markus\AppData\Local\AnyProtectScannerSetup.exe
2014-06-02 10:37 - 2014-06-02 10:37 - 00108680 _____ () C:\Windows\system32\Drivers\easycvfs.sys
2014-06-02 10:37 - 2014-06-02 10:37 - 00077897 _____ () C:\Windows\system32\easycnp.dll
2014-06-01 17:18 - 2014-06-24 13:02 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-31 07:13 - 2014-06-24 15:18 - 00703992 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-31 07:13 - 2014-06-24 15:18 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-30 11:18 - 2014-06-24 12:17 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 10:43 - 2014-06-24 12:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 10:38 - 2014-06-24 12:17 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 10:27 - 2014-06-24 12:18 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 10:16 - 2014-06-24 12:18 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 10:04 - 2014-06-24 12:18 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:02 - 2014-06-24 12:18 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 09:57 - 2014-06-24 12:17 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 09:56 - 2014-06-24 12:18 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 09:54 - 2014-06-24 12:17 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 09:49 - 2014-06-24 12:17 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 09:40 - 2014-06-24 12:17 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:21 - 2014-06-24 12:18 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:15 - 2014-06-24 12:17 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:13 - 2014-06-24 12:17 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-24 10:46

==================== End Of Log ============================

Adition.txt

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version:28-06-2014 02
Ran by Markus at 2014-06-29 18:09:18
Running from C:\Users\Markus\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

7-Zip 9.34 (HKLM\...\{23170F69-40C1-2701-0934-000001000000}) (Version: 9.34.00.0 - Igor Pavlov)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.2.152 - Adobe Systems, Inc.)
Advanced Uninstaller PRO - Version 11 (HKLM\...\AU11_is1) (Version: 11 - Innovative Solutions)
Cole2k Media - Codec Pack (Advanced) 8.0.2 (HKLM\...\Cole2k Media - Codec Pack) (Version: 8.0.2 - Cole2k Media)
DriveOnWeb Client (HKLM\...\{8345D8CD-364D-487D-8E24-D558EA7EF86F}) (Version: 12.1.3.0 - abilis GmbH)
Fischer Weltalmanach 2014 (HKLM\...\InstallShield_{1281E7EE-3274-4221-8C73-33C20181EE10}) (Version: 1.00.0000 - USM)
Fischer Weltalmanach 2014 (Version: 1.00.0000 - USM) Hidden
G Data TotalProtection (HKLM\...\{6715BEB5-01F1-41AC-B44B-0A78CD50C433}) (Version: 25.0.1.2 - G Data Software AG)
Java Auto Updater (Version: 2.0.7.1 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
Lern-o-Mat (HKLM\...\{386C7C71-2D1A-441F-A168-E49FEE93E634}) (Version:  - )
Microsoft Office Home and Business 2013 - de-de (HKLM\...\HomeBusinessRetail - de-de) (Version: 15.0.4623.1003 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.1165.0612 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 de) (HKLM\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
O&O Defrag Free Edition (HKLM\...\{7BAC6514-6CC1-4339-B20B-10A04301ECDB}) (Version: 14.1.425 - O&O Software GmbH)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
RrFilter (Version: 1.0.0.0 - RrFilter) Hidden
RrSavings (Version: 1.0.0.0 - RrSavings) Hidden <==== ATTENTION
SILVER projects elements (32-Bit) (HKLM\...\SILVER_PROJECTS_1_1_28B15F1D_is1) (Version: 1.14 - Franzis Verlag GmbH)
StarMoney (Version: 4.0.4.16 - StarFinanz) Hidden
StarMoney 9.0  (HKLM\...\{0A537602-AE84-4B9A-875D-F890663FC943}) (Version: 9.0 - Star Finanz GmbH)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

==================== Restore Points  =========================

25-06-2014 09:44:04 After installing Advanced Uninstaller PRO
28-06-2014 07:29:21 MyMicroBalance wird installiert
29-06-2014 15:53:41 Windows Modules Installer

==================== Hosts content: ==========================

2013-08-22 08:13 - 2013-08-22 08:13 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {00BC77BF-3352-4FE8-9617-4F1B27BEC19A} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {1192C8E0-3690-4910-927C-D3F3A652DCF0} - System32\Tasks\APSnotifierPP2 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {164C9BED-E3A7-4157-9DDB-909D8AE2DE94} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: {17233BE9-87E9-40B0-B003-AE9D2B92CBBE} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {193C44E4-9A1F-45D5-89BA-E7098077C911} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: {247BD142-0549-4E91-84B0-172C25563718} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {2A4BEC9F-C127-4FA4-94B6-EEC0FF404952} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Family-PC-Markus Family-PC => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2014-06-24] (Microsoft Corporation)
Task: {2BE65564-89D1-4396-A5CC-D7D9283FC4A1} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {331269D7-5A22-4D6D-BAE4-A15FBB6B7240} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {392EB017-207C-42BF-A061-F3BE721F456C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {4B7EF56A-8A42-4BD2-BB5C-7C389AC54A37} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {5700ACE8-D0AF-4BA7-98B6-1033521A877A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {6E84A59B-1863-4B21-8BD8-C9B20FD15484} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {6F544359-D776-4FD4-B555-7281CE005F61} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2014-05-13] (Microsoft Corporation)
Task: {76411015-7BEA-4F83-BCF7-7EF55E783297} - System32\Tasks\APSnotifierPP3 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {7C7CF1DA-F461-4850-96B2-ADCA8A67E59C} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {869FB91A-ED04-4CC6-902E-7A34C6391B8F} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {8B5819AE-7B44-478B-A3D3-8846AF160A8F} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {8F793B92-429F-4A9F-A1A1-8033D6C61A71} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-06-01] (Microsoft Corporation)
Task: {92ED6570-4654-4BFA-9A6C-1084C6939C16} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {997C8BBD-710B-4E66-B5BC-CC09575A58D2} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {9DA8AB7E-0D14-4CBC-9DB2-33385B08FDE2} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {A5380013-E8B7-4EE6-A324-2B4035830F5D} - System32\Tasks\APSnotifierPP1 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {A5D45ED3-F524-4574-8F39-527F3729D1E2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {C0D0F7C4-419F-41B3-90A2-FE79270B828A} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {CA9573FC-F6DE-47BA-9A94-FD77C5676341} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-03-18] (Microsoft Corporation)
Task: {CF5A1DDC-D14D-4D59-AD49-A19A645B087B} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {D2E055EB-7F59-4AA3-B44B-9A12423AFC9A} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3165100869-4291753369-2572973315-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {DCF55BED-B1DF-4ABF-8D85-6542C7007799} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {DE05071A-5290-47D6-8EFE-F949A6964E3F} - System32\Tasks\PC SpeedUp Service Deactivator => C:\Program Files\PC Speed Up\PCSUSD.exe <==== ATTENTION
Task: {E4C8774A-2818-45A4-8A6D-11DDF6348886} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {F40B45C8-8E3A-4081-AEC0-467FEB33DC0E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-24] (Adobe Systems Incorporated)
Task: {FAB49829-3EE7-4234-BE84-277862F2A57C} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {FD2D9617-8E09-421B-8A38-E01B36C758B7} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {FF901C1F-FFCE-4E2E-8F45-57576244E857} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files\PC Speed Up\PCSUSD.exe

==================== Loaded Modules (whitelisted) =============

2014-06-24 11:04 - 2013-10-31 18:14 - 00077992 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2014-03-13 16:34 - 2014-03-13 16:34 - 00149504 _____ () c:\Program Files\RrFilter\RrFilterService.exe
2014-03-04 14:25 - 2014-03-04 14:25 - 00102400 _____ () c:\Program Files\RrFilter\nfapi.dll
2014-03-04 14:25 - 2014-03-04 14:25 - 00233472 _____ () c:\Program Files\RrFilter\ProtocolFilters.dll
2014-06-24 16:02 - 2011-01-13 10:44 - 00232800 _____ () C:\Program Files\StarMoney 9.0\ouservice\PATCHW32.dll
2014-06-02 10:37 - 2014-06-02 10:37 - 00077897 _____ () C:\Windows\system32\easycnp.dll
2014-06-24 12:40 - 2014-06-04 13:35 - 01064880 _____ () C:\Program Files\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe
2014-06-17 10:02 - 2014-06-17 10:02 - 00171008 _____ () C:\Program Files\DriveOnWeb Client\DriveOnWebOnlineDrive.dll
2014-06-24 11:05 - 2014-06-24 11:08 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2014-06-24 11:04 - 2014-06-24 11:05 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll
2014-06-24 11:45 - 2014-06-06 06:38 - 03852912 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2014-06-24 15:32 - 2014-06-24 15:32 - 17024688 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Markus\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/29/2014 10:23:38 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Ungültige XML-Syntax.

Danke für Eure Hilfe...

schrauber · 29.06.2014, 17:54

hi,

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\McAfee <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\G DATA <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\Common Files\G DATA <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\G DATA <====== ATTENTION

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Adware & Co. deinstallieren

Lade Dir bitte von hier Revo Uninstaller herunter.
Installiere und starte das Programm.
Suche im Uninstallerfeld nach den Programmen, die unter:

diesen Zusatz haben:
Wähle die Programme nacheinander aus und klicke jedesmal auf Uninstall.
Wähle anschließend den Modus "Moderat" aus.
Reste löschen:
Klicke auf dann auf und dann auf .

Solltest Du ein Programm nicht finden oder nicht deinstallieren können, mache bitte mit dem nächsten Schritt weiter:

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Markus1970 · 29.06.2014, 18:58

Hallo...

Hier kommt die Fixlog.txt

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:28-06-2014 02
Ran by Markus at 2014-06-29 19:57:33 Run:1
Running from C:\Users\Markus\Downloads
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\McAfee <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\G DATA <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\Common Files\G DATA <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\G DATA <====== ATTENTION
         
*****************

HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.

==== End of Fixlog ====

Combofix konnte nicht gestartet werden. Fehlermeldung: "ComboFix ist not run in "Compatibility Mode". The program shall now exit.

Gruß Markus

schrauber · 30.06.2014, 13:20

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Gdata TotalProtection -Dieses Programm wurde von Systemadministrator geblockt. ...

Log-Analyse und Auswertung: Gdata TotalProtection -Dieses Programm wurde von Systemadministrator geblockt. ...