|
Plagegeister aller Art und deren Bekämpfung: wie codec performer deinstallieren ?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
30.06.2014, 13:07 | #1 |
| wie codec performer deinstallieren ? Halli hallo, hab bereits öfter auf Internetseiten die Aufforderung zum Update vom Codec Perfomer gefunden. Heute habe ich draufgeklickt und es wurde angezeigt, dass es downgeloaded wurde. Habe erst danach gelesen, dass es sich um einen Virus handelt. Hab sofort den PC- neu gestartet und dann habe ich versucht das Programm selbst zu deinstallieren. Ich habe alle Programme, die ich heute downgeloaded habe, über die Systemsteuerung - gelöscht. Aber ein Codec Perfomer Update genanntes Programm habe ich nicht entdeckt (ich weiß auch, dass sie oft anders benannt werden)- was soll ich tun? Wie finde ich den Virus? Hab Kaspersky Antivirus Programmm installiert und lasse ihn gerade eine vollständige Untersuchung durchführen- bis jetzt hat Kaspersky nichts gefunden. Vielen Dank für eure Hilfe im Voraus. |
30.06.2014, 13:13 | #2 |
/// the machine /// TB-Ausbilder | wie codec performer deinstallieren ? hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
30.06.2014, 15:17 | #3 |
| wie codec performer deinstallieren ? hi,
__________________das sind die Logdaten: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-06-2014 02 Ran by acer (administrator) on ACER-PC on 30-06-2014 16:12:47 Running from C:\Users\acer\Downloads Platform: Windows 8 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 10 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe (Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe (globalUpdate) C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe (Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Pokki) C:\Users\acer\AppData\Local\Pokki\Engine\pokki.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SwitchToDesktop] => C:\OEM\preload\command\AlaunchX\SendDesktop.scf HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13427784 2013-03-18] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3016944 2013-06-14] (Synaptics Incorporated) HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642816 2013-06-13] (Advanced Micro Devices, Inc.) HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Atheros Communications)) HKU\S-1-5-21-1753396763-3054627270-4281515375-1001\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform HKU\S-1-5-21-1753396763-3054627270-4281515375-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [405504 2012-07-26] (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.at/ HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login. SearchScopes: HKLM - DefaultScope {CD86F796-A97F-4BB3-9C4F-E10ABBA23588} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} SearchScopes: HKLM - {CD86F796-A97F-4BB3-9C4F-E10ABBA23588} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS SearchScopes: HKLM-x32 - DefaultScope {CD86F796-A97F-4BB3-9C4F-E10ABBA23588} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} SearchScopes: HKLM-x32 - {CD86F796-A97F-4BB3-9C4F-E10ABBA23588} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS SearchScopes: HKCU - DefaultScope {CD86F796-A97F-4BB3-9C4F-E10ABBA23588} URL = SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} SearchScopes: HKCU - {CD86F796-A97F-4BB3-9C4F-E10ABBA23588} URL = BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21 FireFox: ======== FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll (Skype) FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin.dll (Skype) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll () FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com FF Extension: 卡巴斯基網址顧問 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2014-06-07] FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com FF Extension: 虛擬鍵盤 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-06-07] FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com FF Extension: 惡意網站攔截器 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2014-06-07] FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2014-06-07] FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2014-06-07] Chrome: ======= CHR Extension: (Google Docs) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-07] CHR Extension: (Google Drive) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-07] CHR Extension: (YouTube) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-07] CHR Extension: (Google-Suche) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-07] CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-06-07] CHR Extension: (The weDownload Manager) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecoccdldklbjglocbgbfpmpehjegkode [2014-06-11] CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-06-07] CHR Extension: (Modul zum Sperren von gefährlichen Webseiten) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-06-07] CHR Extension: (Virtual Keyboard) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-06-07] CHR Extension: (Google Wallet) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-07] CHR Extension: (Google Mail) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-07] CHR Extension: (Anti-Banner) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-06-07] CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - https://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa [2014-06-07] CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-17] CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-10-17] CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-17] CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-10-17] CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-17] ==================== Services (Whitelisted) ================= R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider) R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-17] (Kaspersky Lab ZAO) R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated) S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-05-01] (Acer Incorporated) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent) S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-10] (globalUpdate) [File not signed] R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-04-26] (Acer Incorporate) S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4230016 2013-01-28] (Symantec Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation) S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X] ==================== Drivers (Whitelisted) ==================== R2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (AppEx Networks Corporation) R3 AthrSdSrv; C:\Windows\system32\DRIVERS\athrsd.sys [48760 2012-12-01] (Qualcomm Atheros, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98744 2013-04-23] (Advanced Micro Devices) S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros) S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation) S3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-06-07] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2014-06-07] (Kaspersky Lab) S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-06-07] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625760 2014-06-07] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-10-17] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2014-06-07] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-10-17] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [65120 2014-06-07] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2014-06-07] (Kaspersky Lab ZAO) R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated) R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated) S3 PCDSRVC{11725DDC-02E8046C-06020200}_0; \??\c:\users\acer\appdata\local\temp\rruz9_sscgmg\pcdrdiag\bin\pcdsrvc_x64.pkms [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-06-30 16:12 - 2014-06-30 16:13 - 00016233 _____ () C:\Users\acer\Downloads\FRST.txt 2014-06-30 16:12 - 2014-06-30 16:12 - 00000000 ____D () C:\FRST 2014-06-30 16:11 - 2014-06-30 16:12 - 02083328 _____ (Farbar) C:\Users\acer\Downloads\FRST64.exe 2014-06-30 16:10 - 2014-06-30 16:10 - 01073664 _____ (Farbar) C:\Users\acer\Downloads\FRST.exe 2014-06-30 13:49 - 2014-06-30 14:00 - 00019628 _____ () C:\Windows\WindowsUpdate.log 2014-06-30 13:06 - 2014-06-30 13:06 - 00001991 _____ () C:\Users\acer\Desktop\Speed Test.lnk 2014-06-30 13:06 - 2014-06-30 13:06 - 00001058 _____ () C:\Users\Public\Desktop\PC Performer.lnk 2014-06-30 13:06 - 2014-06-30 13:06 - 00000000 ____D () C:\Users\acer\AppData\Local\PCPerformer 2014-06-30 13:06 - 2014-06-30 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Performer 2014-06-30 13:06 - 2014-06-30 13:06 - 00000000 ____D () C:\Program Files (x86)\SpeedAnalysis 2014-06-30 13:06 - 2014-06-30 13:06 - 00000000 ____D () C:\Program Files (x86)\PC Performer 2014-06-30 13:06 - 2013-06-19 14:58 - 00019456 _____ () C:\Windows\system32\roboot64.exe 2014-06-30 13:05 - 2014-06-30 13:05 - 01317032 _____ (CodecPerformer) C:\Users\acer\Downloads\CodecPerformerSetup.exe 2014-06-30 13:00 - 2014-06-30 13:16 - 00000000 ____D () C:\Program Files (x86)\ZooToolbar 2014-06-30 12:59 - 2014-06-30 12:59 - 00919560 _____ ( ) C:\Users\acer\Downloads\1Player.exe 2014-06-24 19:07 - 2014-06-24 19:07 - 00000869 _____ () C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4 (en-US) Installation Files.lnk 2014-06-24 19:04 - 2014-06-24 19:06 - 00000000 ____D () C:\Users\acer\Desktop\jakob.schmidsfelden 2014-06-23 22:36 - 2014-06-23 22:36 - 08424604 _____ () C:\Users\acer\Downloads\Lösungen Mikro.zip 2014-06-23 22:35 - 2014-06-23 22:36 - 10253214 _____ () C:\Users\acer\Downloads\Lösungen Makro.zip 2014-06-23 19:16 - 2014-06-23 19:16 - 00018824 _____ () C:\Users\acer\Documents\Untitled 1.odt 2014-06-23 16:20 - 2014-06-23 16:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-06-18 19:01 - 2014-06-27 11:12 - 00000000 ____D () C:\Users\acer\Desktop\lisa 2014-06-16 13:37 - 2014-06-16 13:37 - 00000000 ____D () C:\Program Files (x86)\SkypeWebPlugin 2014-06-16 13:22 - 2014-06-16 13:22 - 05353472 _____ () C:\Users\acer\Downloads\SkypeWebPlugin-2.9.13008.18866.msi 2014-06-13 18:47 - 2014-06-13 18:48 - 01975603 _____ () C:\Users\acer\Documents\Bewerbung Praktikantenstelle OM.odt 2014-06-13 18:11 - 2014-06-13 18:12 - 01975697 _____ () C:\Users\acer\Documents\Bewerbung Praktikantenstelle.odt 2014-06-13 13:54 - 2014-06-13 13:54 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-06-13 13:54 - 2014-06-13 13:54 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-06-13 13:54 - 2014-06-13 13:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-06-13 13:54 - 2014-06-13 13:54 - 00000000 ____D () C:\Program Files\CCleaner 2014-06-13 13:52 - 2014-06-13 13:53 - 03673664 _____ (Piriform Ltd) C:\Users\acer\Downloads\ccsetup414_slim.exe 2014-06-13 12:21 - 2014-06-13 12:21 - 00307848 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-06-11 12:13 - 2014-05-24 04:47 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-06-11 12:13 - 2014-05-24 04:46 - 19290112 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-06-11 12:13 - 2014-05-24 04:46 - 15368704 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-06-11 12:13 - 2014-05-24 04:46 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-06-11 12:13 - 2014-05-24 04:46 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-06-11 12:13 - 2014-05-24 04:45 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-06-11 12:13 - 2014-05-24 04:45 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-06-11 12:13 - 2014-05-24 04:45 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-06-11 12:13 - 2014-05-24 03:26 - 14365696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-06-11 12:13 - 2014-05-24 03:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-06-11 12:13 - 2014-05-24 03:25 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-06-11 12:13 - 2014-05-24 03:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-06-11 12:13 - 2014-05-24 03:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-06-11 12:13 - 2014-05-03 07:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-06-11 12:13 - 2014-05-03 05:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2014-06-11 12:13 - 2014-04-30 00:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-06-11 12:13 - 2014-04-30 00:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-06-11 12:13 - 2014-04-03 13:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2014-06-11 12:13 - 2014-04-03 05:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2014-06-11 12:13 - 2014-04-01 00:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml 2014-06-11 12:13 - 2014-03-25 01:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe 2014-06-11 12:13 - 2014-03-25 00:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe 2014-06-11 12:12 - 2014-05-24 04:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-06-11 12:12 - 2014-05-24 04:47 - 01366016 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-06-11 12:12 - 2014-05-24 04:47 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2014-06-11 12:12 - 2014-05-24 04:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2014-06-11 12:12 - 2014-05-24 04:46 - 02650112 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-06-11 12:12 - 2014-05-24 04:46 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-06-11 12:12 - 2014-05-24 04:46 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-06-11 12:12 - 2014-05-24 04:46 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-06-11 12:12 - 2014-05-24 04:46 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-06-11 12:12 - 2014-05-24 04:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-06-11 12:12 - 2014-05-24 04:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-06-11 12:12 - 2014-05-24 04:46 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-06-11 12:12 - 2014-05-24 03:26 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-06-11 12:12 - 2014-05-24 03:26 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-06-11 12:12 - 2014-05-24 03:26 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-06-11 12:12 - 2014-05-24 03:26 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-06-11 12:12 - 2014-05-24 03:26 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll 2014-06-11 12:12 - 2014-05-24 03:25 - 13731328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-06-11 12:12 - 2014-05-24 03:25 - 02862080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-06-11 12:12 - 2014-05-24 03:25 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-06-11 12:12 - 2014-05-24 03:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-06-11 12:12 - 2014-05-24 03:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-06-11 12:12 - 2014-05-24 03:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-06-11 12:12 - 2014-05-24 03:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-06-11 12:12 - 2014-05-24 03:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-06-11 12:12 - 2014-05-24 03:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-06-11 12:12 - 2014-05-24 03:03 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-06-11 12:12 - 2014-05-24 00:37 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll 2014-06-11 12:12 - 2014-04-03 13:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-06-11 12:12 - 2014-03-07 02:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-06-11 12:12 - 2014-03-07 02:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-06-11 12:05 - 2014-06-11 12:05 - 00000000 ____D () C:\Users\Public\OEM 2014-06-11 12:05 - 2014-06-11 12:05 - 00000000 ____D () C:\Users\acer\PicStream 2014-06-11 12:05 - 2014-06-11 12:05 - 00000000 ____D () C:\Users\acer\Documents\clear.fi 2014-06-11 12:04 - 2014-06-29 01:16 - 00000000 ____D () C:\Users\acer\AppData\Local\clear.fi 2014-06-10 20:42 - 2014-06-10 20:44 - 01969043 _____ () C:\Users\acer\Documents\Lisa Bewerbung.odt 2014-06-10 20:26 - 2014-06-10 20:36 - 00016746 _____ () C:\Users\acer\Documents\Anschreiben.odt 2014-06-10 20:03 - 2014-06-24 18:08 - 00017832 _____ () C:\Users\acer\Documents\Lebenslauf Lisa.odt 2014-06-10 20:00 - 2014-06-10 20:00 - 00000000 ____D () C:\Users\acer\AppData\Roaming\OpenOffice.org 2014-06-10 19:58 - 2014-06-10 19:58 - 00001168 _____ () C:\Users\Public\Desktop\OpenOffice.org 3.4.lnk 2014-06-10 19:58 - 2014-06-10 19:58 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4 2014-06-10 19:57 - 2014-06-10 19:57 - 00000000 ____D () C:\Program Files (x86)\OpenOffice.org 3 2014-06-10 19:56 - 2014-06-10 19:56 - 00000000 ____D () C:\Users\acer\Desktop\OpenOffice.org 3.4 (en-US) Installation Files 2014-06-10 19:51 - 2014-06-30 13:56 - 00003830 _____ () C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-3.job 2014-06-10 19:51 - 2014-06-30 13:56 - 00000946 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-06-10 19:51 - 2014-06-30 13:51 - 00002402 _____ () C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-4.job 2014-06-10 19:51 - 2014-06-30 13:51 - 00001474 _____ () C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-1.job 2014-06-10 19:51 - 2014-06-30 13:13 - 00000942 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job 2014-06-10 19:51 - 2014-06-10 19:51 - 00557200 _____ () C:\Users\acer\Downloads\openoffice setup (1).exe 2014-06-10 19:51 - 2014-06-10 19:51 - 00006834 _____ () C:\Windows\System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-3 2014-06-10 19:51 - 2014-06-10 19:51 - 00005406 _____ () C:\Windows\System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-4 2014-06-10 19:51 - 2014-06-10 19:51 - 00004478 _____ () C:\Windows\System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-1 2014-06-10 19:51 - 2014-06-10 19:51 - 00003918 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA 2014-06-10 19:51 - 2014-06-10 19:51 - 00003682 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore 2014-06-10 19:51 - 2014-06-10 19:51 - 00000121 _____ () C:\Windows\wininit.ini 2014-06-10 19:51 - 2014-06-10 19:51 - 00000000 ____D () C:\Users\acer\AppData\Local\globalUpdate 2014-06-10 19:51 - 2014-06-10 19:51 - 00000000 ____D () C:\Program Files (x86)\The weDownload Manager 2014-06-10 19:51 - 2014-06-10 19:51 - 00000000 ____D () C:\Program Files (x86)\globalUpdate 2014-06-10 19:50 - 2014-06-10 19:53 - 151801119 _____ () C:\Users\acer\Downloads\Apache-OpenOffice-incubating-3.4.0-Win-x86-install-en-US.exe 2014-06-10 19:47 - 2014-06-10 19:47 - 00557200 _____ () C:\Users\acer\Downloads\openoffice setup.exe 2014-06-10 00:32 - 2014-06-11 12:34 - 00000000 ____D () C:\Windows\system32\MRT 2014-06-10 00:32 - 2014-06-11 12:32 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-06-08 17:16 - 2014-04-19 11:39 - 00628024 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe 2014-06-08 17:16 - 2014-04-19 10:45 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-06-08 17:16 - 2014-04-19 10:45 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-06-08 17:16 - 2014-04-19 08:57 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2014-06-08 17:16 - 2014-04-19 08:57 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-06-07 20:41 - 2014-06-13 13:55 - 00000000 ____D () C:\Users\acer\AppData\Local\CrashDumps 2014-06-07 20:39 - 2014-06-22 20:16 - 00000000 ____D () C:\Users\acer\AppData\Roaming\WildTangent 2014-06-07 20:33 - 2014-03-28 21:19 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2014-06-07 20:33 - 2014-03-24 00:11 - 00269592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2014-06-07 20:29 - 2014-03-28 10:23 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2014-06-07 20:29 - 2013-12-05 01:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll 2014-06-07 20:29 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll 2014-06-07 20:28 - 2014-01-31 02:48 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2014-06-07 20:28 - 2014-01-31 02:06 - 01628160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2014-06-07 20:28 - 2013-11-23 08:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2014-06-07 20:28 - 2013-11-23 07:05 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2014-06-07 20:28 - 2013-08-23 09:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2014-06-07 20:28 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2014-06-07 20:28 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2014-06-07 20:28 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2014-06-07 20:27 - 2013-10-02 01:37 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-06-07 20:27 - 2013-10-02 01:26 - 02304512 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-06-07 20:26 - 2013-11-01 07:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2014-06-07 20:26 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll 2014-06-07 20:21 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys 2014-06-07 20:21 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys 2014-06-07 20:21 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2014-06-07 20:21 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS 2014-06-07 20:21 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-06-07 20:21 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-06-07 20:21 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-06-07 20:21 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-06-07 20:21 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-06-07 20:21 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-06-07 20:21 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2014-06-07 20:21 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2014-06-07 20:21 - 2013-05-24 01:02 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-06-07 20:21 - 2013-05-24 00:25 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2014-06-07 20:20 - 2013-07-06 02:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2014-06-07 20:20 - 2013-07-04 04:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2014-06-07 20:18 - 2013-10-19 07:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll 2014-06-07 20:18 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll 2014-06-07 20:18 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys 2014-06-07 20:17 - 2014-01-13 01:30 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-06-07 20:17 - 2014-01-13 01:30 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2014-06-07 20:17 - 2013-11-20 02:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2014-06-07 20:17 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2014-06-07 20:16 - 2013-08-10 07:21 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2014-06-07 20:16 - 2013-08-10 07:21 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncInfo.dll 2014-06-07 20:16 - 2013-08-10 05:58 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll 2014-06-07 20:16 - 2013-08-02 08:28 - 10116608 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-06-07 20:16 - 2013-08-02 08:28 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll 2014-06-07 20:16 - 2013-08-02 07:08 - 08858112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2014-06-07 20:16 - 2013-08-02 07:08 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll 2014-06-07 20:16 - 2013-07-25 01:10 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll 2014-06-07 20:16 - 2013-07-25 01:06 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll 2014-06-07 20:16 - 2013-07-20 00:13 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2014-06-07 20:16 - 2013-07-20 00:13 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2014-06-07 20:16 - 2013-04-10 01:17 - 01125888 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll 2014-06-07 20:16 - 2013-04-10 00:29 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll 2014-06-07 20:15 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-06-07 20:15 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2014-06-07 20:15 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll 2014-06-07 20:15 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll 2014-06-07 20:15 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll 2014-06-07 20:15 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2014-06-07 20:15 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2014-06-07 20:15 - 2014-01-11 08:48 - 05979648 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-06-07 20:15 - 2014-01-11 07:06 - 05092352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-06-07 20:15 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2014-06-07 20:15 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-06-07 20:15 - 2013-08-03 08:40 - 01374208 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll 2014-06-07 20:15 - 2013-08-03 08:40 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll 2014-06-07 20:15 - 2013-08-03 08:40 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx 2014-06-07 20:15 - 2013-08-03 07:14 - 00399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx 2014-06-07 20:15 - 2013-08-03 07:13 - 01245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll 2014-06-07 20:15 - 2013-08-03 07:13 - 00437248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll 2014-06-07 20:14 - 2014-02-08 06:34 - 04036608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-06-07 20:14 - 2013-09-14 00:36 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll 2014-06-07 20:14 - 2013-09-14 00:33 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2014-06-07 20:14 - 2013-08-30 07:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys 2014-06-07 20:14 - 2013-08-30 07:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2014-06-07 20:14 - 2013-08-30 01:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2014-06-07 20:14 - 2013-08-21 08:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2014-06-07 20:14 - 2013-08-16 07:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-06-07 20:14 - 2013-08-16 07:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-06-07 20:14 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2014-06-07 20:14 - 2013-08-10 08:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys 2014-06-07 20:14 - 2013-08-07 07:15 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll 2014-06-07 20:14 - 2013-07-25 01:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-06-07 20:14 - 2013-07-25 01:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-06-07 20:13 - 2014-03-28 10:23 - 19759104 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-06-07 20:13 - 2014-03-28 08:18 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-06-07 20:12 - 2014-02-06 01:41 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2014-06-07 20:12 - 2014-02-06 01:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2014-06-07 20:12 - 2013-08-16 07:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys 2014-06-07 20:12 - 2013-08-16 07:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll 2014-06-07 20:12 - 2013-08-16 07:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2014-06-07 20:12 - 2013-08-16 07:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2014-06-07 20:12 - 2013-08-16 07:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2014-06-07 20:12 - 2013-08-16 07:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll 2014-06-07 20:12 - 2013-08-16 07:21 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2014-06-07 20:12 - 2013-08-16 07:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll 2014-06-07 20:12 - 2013-08-16 07:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll 2014-06-07 20:12 - 2013-08-16 07:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll 2014-06-07 20:12 - 2013-08-16 07:20 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2014-06-07 20:12 - 2013-08-16 00:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll 2014-06-07 20:12 - 2013-08-16 00:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll 2014-06-07 20:12 - 2013-08-16 00:43 - 00083968 _____ () C:\Windows\SysWOW64\OEMLicense.dll 2014-06-07 20:12 - 2013-08-16 00:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll 2014-06-07 20:12 - 2013-08-16 00:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll 2014-06-07 20:11 - 2013-12-09 02:45 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-06-07 20:11 - 2013-12-09 01:59 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-06-07 20:11 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-06-07 20:11 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2014-06-07 20:11 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll 2014-06-07 20:11 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll 2014-06-07 20:11 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-06-07 20:11 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll 2014-06-07 20:11 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll 2014-06-07 20:11 - 2013-05-27 01:17 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2014-06-07 20:11 - 2013-05-27 00:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2014-06-07 20:11 - 2013-05-25 05:15 - 00362496 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2014-06-07 20:11 - 2013-05-25 04:32 - 00300032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2014-06-07 20:10 - 2013-10-02 01:37 - 01569280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-06-07 20:10 - 2013-10-02 01:26 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-06-07 20:10 - 2013-09-28 05:35 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys 2014-06-07 20:09 - 2014-06-30 15:20 - 00001122 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-06-07 20:09 - 2014-06-30 13:13 - 00001118 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-06-07 20:09 - 2014-06-22 17:15 - 00004094 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-06-07 20:09 - 2014-06-22 17:15 - 00003858 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-06-07 20:09 - 2014-06-13 23:34 - 00002179 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-06-07 20:09 - 2014-06-07 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-06-07 20:09 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys 2014-06-07 20:09 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe 2014-06-07 20:09 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe 2014-06-07 20:09 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll 2014-06-07 20:09 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll 2014-06-07 20:09 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll 2014-06-07 20:09 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll 2014-06-07 20:09 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll 2014-06-07 20:09 - 2013-07-06 02:16 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-06-07 20:09 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll 2014-06-07 20:09 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2014-06-07 20:09 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2014-06-07 20:09 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll 2014-06-07 20:09 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe 2014-06-07 20:09 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe 2014-06-07 20:09 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2014-06-07 20:09 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2014-06-07 20:09 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2014-06-07 20:09 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys 2014-06-07 20:09 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2014-06-07 20:09 - 2013-06-25 00:54 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll 2014-06-07 20:09 - 2013-06-25 00:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll 2014-06-07 20:09 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll 2014-06-07 20:09 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll 2014-06-07 20:09 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll 2014-06-07 20:09 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll 2014-06-07 20:09 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll 2014-06-07 20:09 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll 2014-06-07 20:09 - 2013-06-10 21:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2014-06-07 20:09 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2014-06-07 20:09 - 2013-06-10 21:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2014-06-07 20:09 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2014-06-07 20:09 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2014-06-07 20:08 - 2014-06-07 20:09 - 00000000 ____D () C:\Users\acer\AppData\Local\Google 2014-06-07 20:08 - 2014-06-07 20:09 - 00000000 ____D () C:\Program Files (x86)\Google 2014-06-07 20:08 - 2013-10-09 03:33 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-06-07 20:08 - 2013-10-09 00:30 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2014-06-07 20:08 - 2013-10-09 00:30 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2014-06-07 20:08 - 2013-10-09 00:30 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2014-06-07 20:08 - 2013-10-09 00:30 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2014-06-07 20:08 - 2013-10-09 00:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-06-07 20:08 - 2013-10-09 00:27 - 03279872 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-06-07 20:08 - 2013-10-09 00:27 - 01622016 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-06-07 20:08 - 2013-10-09 00:27 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-06-07 20:08 - 2013-10-09 00:27 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2014-06-07 20:08 - 2013-10-09 00:27 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2014-06-07 20:08 - 2013-10-09 00:27 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-06-07 20:08 - 2013-10-09 00:27 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-06-07 20:08 - 2013-10-05 08:10 - 00285016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2014-06-07 20:08 - 2013-10-02 04:50 - 00447320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2014-06-07 20:08 - 2013-09-28 07:48 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2014-06-07 20:08 - 2013-09-28 05:58 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2014-06-07 20:08 - 2013-09-19 09:32 - 01455448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-06-07 20:08 - 2013-08-30 07:19 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll 2014-06-07 20:08 - 2013-08-30 07:18 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll 2014-06-07 20:08 - 2013-08-30 01:48 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll 2014-06-07 20:08 - 2013-08-30 01:47 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll 2014-06-07 20:07 - 2013-10-31 07:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2014-06-07 20:07 - 2013-10-31 07:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll 2014-06-07 20:07 - 2013-10-31 06:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll 2014-06-07 20:07 - 2013-10-31 05:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys 2014-06-07 20:07 - 2013-10-13 22:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys 2014-06-07 20:07 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe 2014-06-07 20:07 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll 2014-06-07 20:07 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll 2014-06-07 20:07 - 2013-10-10 11:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx 2014-06-07 20:07 - 2013-10-10 11:23 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe 2014-06-07 20:07 - 2013-10-10 11:22 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll 2014-06-07 20:07 - 2013-10-10 11:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll 2014-06-07 20:07 - 2013-09-04 05:11 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-06-07 20:07 - 2013-08-27 07:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2014-06-07 20:07 - 2013-08-27 07:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2014-06-07 20:07 - 2013-08-27 00:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2014-06-07 20:07 - 2013-08-27 00:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2014-06-07 20:04 - 2013-10-10 13:53 - 00096600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys 2014-06-07 20:04 - 2013-10-10 11:21 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2014-06-07 20:04 - 2013-10-10 11:20 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2014-06-07 19:58 - 2014-04-12 11:27 - 00172888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2014-06-07 19:58 - 2014-04-12 11:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2014-06-07 19:58 - 2014-04-12 11:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll 2014-06-07 19:58 - 2014-04-12 11:09 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll 2014-06-07 19:58 - 2014-04-12 11:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2014-06-07 19:58 - 2014-04-12 11:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-06-07 19:58 - 2014-04-12 11:08 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-06-07 19:58 - 2014-04-12 11:08 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-06-07 19:58 - 2014-04-12 11:08 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll 2014-06-07 19:58 - 2014-04-12 11:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2014-06-07 19:58 - 2014-04-12 11:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-06-07 19:58 - 2014-04-12 09:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll 2014-06-07 19:58 - 2014-04-12 09:23 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll 2014-06-07 19:58 - 2014-04-12 09:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2014-06-07 19:58 - 2014-04-12 09:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2014-06-07 19:58 - 2014-04-12 09:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-06-07 19:58 - 2014-04-12 09:22 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-06-07 19:58 - 2014-04-12 09:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-06-07 19:58 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll 2014-06-07 19:58 - 2014-03-11 05:32 - 06987096 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-06-07 19:58 - 2014-03-11 05:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2014-06-07 19:58 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll 2014-06-07 19:58 - 2014-03-11 02:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2014-06-07 19:58 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll 2014-06-07 19:58 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2014-06-07 19:58 - 2014-03-11 02:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2014-06-07 19:58 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll 2014-06-07 19:58 - 2014-03-11 02:38 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-06-07 19:58 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll 2014-06-07 19:58 - 2014-03-11 02:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2014-06-07 19:58 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll 2014-06-07 19:58 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2014-06-07 19:58 - 2014-03-10 05:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2014-06-07 19:58 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-06-07 19:58 - 2014-03-04 01:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2014-06-07 19:08 - 2014-06-07 19:08 - 00003546 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-06-07 19:08 - 2012-08-14 23:43 - 00002143 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk 2014-06-07 18:53 - 2014-06-07 18:53 - 00000000 ___RD () C:\Windows\BrowserChoice 2014-06-07 18:43 - 2014-03-01 11:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2014-06-07 18:43 - 2014-03-01 11:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll 2014-06-07 18:43 - 2014-03-01 10:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll 2014-06-07 18:43 - 2014-03-01 08:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2014-06-07 18:43 - 2014-02-27 01:18 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-06-07 18:43 - 2014-02-27 01:18 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2014-06-07 18:43 - 2014-02-27 01:18 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-06-07 18:43 - 2014-02-15 06:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys 2014-06-07 18:43 - 2013-11-26 01:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2014-06-07 18:43 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2014-06-07 18:26 - 2014-06-08 10:15 - 00002338 _____ () C:\Users\acer\Desktop\Sicherer Zahlungsverkehr.lnk 2014-06-07 18:26 - 2014-06-07 18:26 - 00001333 _____ () C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security.lnk 2014-06-07 18:25 - 2014-06-07 18:57 - 00001128 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2014-06-07 18:25 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2014-06-07 18:24 - 2014-06-30 14:12 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-06-07 18:24 - 2014-06-07 18:24 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab 2014-06-03 20:17 - 2014-06-03 20:17 - 00002078 _____ () C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk 2014-06-03 20:05 - 2014-01-19 09:33 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-06-03 19:59 - 2014-06-03 19:59 - 00000000 ____D () C:\Users\acer\AppData\Roaming\Macromedia ==================== One Month Modified Files and Folders ======= 2014-06-30 16:13 - 2014-06-30 16:12 - 00016233 _____ () C:\Users\acer\Downloads\FRST.txt 2014-06-30 16:12 - 2014-06-30 16:12 - 00000000 ____D () C:\FRST 2014-06-30 16:12 - 2014-06-30 16:11 - 02083328 _____ (Farbar) C:\Users\acer\Downloads\FRST64.exe 2014-06-30 16:10 - 2014-06-30 16:10 - 01073664 _____ (Farbar) C:\Users\acer\Downloads\FRST.exe 2014-06-30 15:20 - 2014-06-07 20:09 - 00001122 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-06-30 15:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru 2014-06-30 14:27 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\rescache 2014-06-30 14:12 - 2014-06-07 18:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-06-30 14:00 - 2014-06-30 13:49 - 00019628 _____ () C:\Windows\WindowsUpdate.log 2014-06-30 13:56 - 2014-06-10 19:51 - 00003830 _____ () C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-3.job 2014-06-30 13:56 - 2014-06-10 19:51 - 00000946 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-06-30 13:51 - 2014-06-10 19:51 - 00002402 _____ () C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-4.job 2014-06-30 13:51 - 2014-06-10 19:51 - 00001474 _____ () C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-1.job 2014-06-30 13:16 - 2014-06-30 13:00 - 00000000 ____D () C:\Program Files (x86)\ZooToolbar 2014-06-30 13:13 - 2014-06-10 19:51 - 00000942 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job 2014-06-30 13:13 - 2014-06-07 20:09 - 00001118 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-06-30 13:13 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-06-30 13:06 - 2014-06-30 13:06 - 00001991 _____ () C:\Users\acer\Desktop\Speed Test.lnk 2014-06-30 13:06 - 2014-06-30 13:06 - 00001058 _____ () C:\Users\Public\Desktop\PC Performer.lnk 2014-06-30 13:06 - 2014-06-30 13:06 - 00000000 ____D () C:\Users\acer\AppData\Local\PCPerformer 2014-06-30 13:06 - 2014-06-30 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Performer 2014-06-30 13:06 - 2014-06-30 13:06 - 00000000 ____D () C:\Program Files (x86)\SpeedAnalysis 2014-06-30 13:06 - 2014-06-30 13:06 - 00000000 ____D () C:\Program Files (x86)\PC Performer 2014-06-30 13:05 - 2014-06-30 13:05 - 01317032 _____ (CodecPerformer) C:\Users\acer\Downloads\CodecPerformerSetup.exe 2014-06-30 12:59 - 2014-06-30 12:59 - 00919560 _____ ( ) C:\Users\acer\Downloads\1Player.exe 2014-06-30 12:34 - 2014-05-28 09:58 - 00000000 ____D () C:\Users\acer\AppData\Local\Pokki 2014-06-29 14:27 - 2014-05-28 08:42 - 00065536 _____ () C:\Windows\system32\spu_storage.bin 2014-06-29 01:16 - 2014-06-11 12:04 - 00000000 ____D () C:\Users\acer\AppData\Local\clear.fi 2014-06-27 11:12 - 2014-06-18 19:01 - 00000000 ____D () C:\Users\acer\Desktop\lisa 2014-06-24 19:07 - 2014-06-24 19:07 - 00000869 _____ () C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4 (en-US) Installation Files.lnk 2014-06-24 19:06 - 2014-06-24 19:04 - 00000000 ____D () C:\Users\acer\Desktop\jakob.schmidsfelden 2014-06-24 18:08 - 2014-06-10 20:03 - 00017832 _____ () C:\Users\acer\Documents\Lebenslauf Lisa.odt 2014-06-23 22:36 - 2014-06-23 22:36 - 08424604 _____ () C:\Users\acer\Downloads\Lösungen Mikro.zip 2014-06-23 22:36 - 2014-06-23 22:35 - 10253214 _____ () C:\Users\acer\Downloads\Lösungen Makro.zip 2014-06-23 19:16 - 2014-06-23 19:16 - 00018824 _____ () C:\Users\acer\Documents\Untitled 1.odt 2014-06-23 16:20 - 2014-06-23 16:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-06-23 16:20 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent 2014-06-22 20:55 - 2014-05-28 10:05 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1753396763-3054627270-4281515375-1001 2014-06-22 20:16 - 2014-06-07 20:39 - 00000000 ____D () C:\Users\acer\AppData\Roaming\WildTangent 2014-06-22 17:15 - 2014-06-07 20:09 - 00004094 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-06-22 17:15 - 2014-06-07 20:09 - 00003858 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-06-16 21:33 - 2014-05-28 18:16 - 00753134 _____ () C:\Windows\system32\perfh007.dat 2014-06-16 21:33 - 2014-05-28 18:16 - 00155826 _____ () C:\Windows\system32\perfc007.dat 2014-06-16 21:33 - 2012-07-26 09:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-06-16 16:02 - 2012-07-26 09:59 - 00000000 ____D () C:\Windows\CbsTemp 2014-06-16 13:37 - 2014-06-16 13:37 - 00000000 ____D () C:\Program Files (x86)\SkypeWebPlugin 2014-06-16 13:22 - 2014-06-16 13:22 - 05353472 _____ () C:\Users\acer\Downloads\SkypeWebPlugin-2.9.13008.18866.msi 2014-06-13 23:34 - 2014-06-07 20:09 - 00002179 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-06-13 18:48 - 2014-06-13 18:47 - 01975603 _____ () C:\Users\acer\Documents\Bewerbung Praktikantenstelle OM.odt 2014-06-13 18:12 - 2014-06-13 18:11 - 01975697 _____ () C:\Users\acer\Documents\Bewerbung Praktikantenstelle.odt 2014-06-13 13:55 - 2014-06-07 20:41 - 00000000 ____D () C:\Users\acer\AppData\Local\CrashDumps 2014-06-13 13:55 - 2014-04-07 18:54 - 00000000 ____D () C:\Windows\Panther 2014-06-13 13:54 - 2014-06-13 13:54 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-06-13 13:54 - 2014-06-13 13:54 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-06-13 13:54 - 2014-06-13 13:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-06-13 13:54 - 2014-06-13 13:54 - 00000000 ____D () C:\Program Files\CCleaner 2014-06-13 13:53 - 2014-06-13 13:52 - 03673664 _____ (Piriform Ltd) C:\Users\acer\Downloads\ccsetup414_slim.exe 2014-06-13 12:21 - 2014-06-13 12:21 - 00307848 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-06-13 01:57 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-06-13 01:55 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-06-13 01:55 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-06-13 01:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\WinStore 2014-06-13 01:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Defender 2014-06-13 01:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-06-13 01:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-06-11 22:11 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\LiveKernelReports 2014-06-11 12:34 - 2014-06-10 00:32 - 00000000 ____D () C:\Windows\system32\MRT 2014-06-11 12:32 - 2014-06-10 00:32 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-06-11 12:05 - 2014-06-11 12:05 - 00000000 ____D () C:\Users\Public\OEM 2014-06-11 12:05 - 2014-06-11 12:05 - 00000000 ____D () C:\Users\acer\PicStream 2014-06-11 12:05 - 2014-06-11 12:05 - 00000000 ____D () C:\Users\acer\Documents\clear.fi 2014-06-11 12:05 - 2014-05-28 09:58 - 00000000 ____D () C:\Users\acer 2014-06-10 20:44 - 2014-06-10 20:42 - 01969043 _____ () C:\Users\acer\Documents\Lisa Bewerbung.odt 2014-06-10 20:36 - 2014-06-10 20:26 - 00016746 _____ () C:\Users\acer\Documents\Anschreiben.odt 2014-06-10 20:00 - 2014-06-10 20:00 - 00000000 ____D () C:\Users\acer\AppData\Roaming\OpenOffice.org 2014-06-10 19:58 - 2014-06-10 19:58 - 00001168 _____ () C:\Users\Public\Desktop\OpenOffice.org 3.4.lnk 2014-06-10 19:58 - 2014-06-10 19:58 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4 2014-06-10 19:57 - 2014-06-10 19:57 - 00000000 ____D () C:\Program Files (x86)\OpenOffice.org 3 2014-06-10 19:56 - 2014-06-10 19:56 - 00000000 ____D () C:\Users\acer\Desktop\OpenOffice.org 3.4 (en-US) Installation Files 2014-06-10 19:53 - 2014-06-10 19:50 - 151801119 _____ () C:\Users\acer\Downloads\Apache-OpenOffice-incubating-3.4.0-Win-x86-install-en-US.exe 2014-06-10 19:51 - 2014-06-10 19:51 - 00557200 _____ () C:\Users\acer\Downloads\openoffice setup (1).exe 2014-06-10 19:51 - 2014-06-10 19:51 - 00006834 _____ () C:\Windows\System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-3 2014-06-10 19:51 - 2014-06-10 19:51 - 00005406 _____ () C:\Windows\System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-4 2014-06-10 19:51 - 2014-06-10 19:51 - 00004478 _____ () C:\Windows\System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-1 2014-06-10 19:51 - 2014-06-10 19:51 - 00003918 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA 2014-06-10 19:51 - 2014-06-10 19:51 - 00003682 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore 2014-06-10 19:51 - 2014-06-10 19:51 - 00000121 _____ () C:\Windows\wininit.ini 2014-06-10 19:51 - 2014-06-10 19:51 - 00000000 ____D () C:\Users\acer\AppData\Local\globalUpdate 2014-06-10 19:51 - 2014-06-10 19:51 - 00000000 ____D () C:\Program Files (x86)\The weDownload Manager 2014-06-10 19:51 - 2014-06-10 19:51 - 00000000 ____D () C:\Program Files (x86)\globalUpdate 2014-06-10 19:47 - 2014-06-10 19:47 - 00557200 _____ () C:\Users\acer\Downloads\openoffice setup.exe 2014-06-10 10:52 - 2014-05-28 09:06 - 00000000 ____D () C:\ProgramData\Norton 2014-06-10 00:43 - 2012-07-26 10:12 - 00000000 ___RD () C:\Windows\ToastData 2014-06-10 00:43 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-06-10 00:43 - 2012-07-26 07:38 - 00000000 ____D () C:\Windows\system32\oobe 2014-06-10 00:41 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates 2014-06-08 13:09 - 2014-04-07 18:56 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-06-08 13:09 - 2014-04-07 18:56 - 00000000 ____D () C:\ProgramData\WildTangent 2014-06-08 13:09 - 2014-04-07 18:56 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games 2014-06-08 10:15 - 2014-06-07 18:26 - 00002338 _____ () C:\Users\acer\Desktop\Sicherer Zahlungsverkehr.lnk 2014-06-07 20:09 - 2014-06-07 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-06-07 20:09 - 2014-06-07 20:08 - 00000000 ____D () C:\Users\acer\AppData\Local\Google 2014-06-07 20:09 - 2014-06-07 20:08 - 00000000 ____D () C:\Program Files (x86)\Google 2014-06-07 19:24 - 2013-10-17 15:47 - 00625760 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys 2014-06-07 19:24 - 2013-10-17 15:47 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys 2014-06-07 19:24 - 2013-10-17 15:47 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys 2014-06-07 19:24 - 2013-06-08 20:18 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys 2014-06-07 19:24 - 2013-06-06 17:38 - 00178272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys 2014-06-07 19:24 - 2013-05-07 17:56 - 00065120 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klwfp.sys 2014-06-07 19:24 - 2012-07-27 18:38 - 00029792 _____ (Kaspersky Lab) C:\Windows\system32\Drivers\klelam.sys 2014-06-07 19:08 - 2014-06-07 19:08 - 00003546 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-06-07 18:57 - 2014-06-07 18:25 - 00001128 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2014-06-07 18:53 - 2014-06-07 18:53 - 00000000 ___RD () C:\Windows\BrowserChoice 2014-06-07 18:53 - 2014-05-28 09:58 - 00000000 ____D () C:\Users\acer\AppData\Local\Packages 2014-06-07 18:53 - 2014-04-07 18:10 - 00000000 ____D () C:\ProgramData\PRICache 2014-06-07 18:49 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\restore 2014-06-07 18:26 - 2014-06-07 18:26 - 00001333 _____ () C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security.lnk 2014-06-07 18:25 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-06-07 18:24 - 2014-06-07 18:24 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab 2014-06-07 18:24 - 2012-07-26 10:12 - 00000000 ___HD () C:\Windows\ELAMBKUP 2014-06-03 20:17 - 2014-06-03 20:17 - 00002078 _____ () C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk 2014-06-03 20:11 - 2014-04-07 18:59 - 00000000 ____D () C:\ProgramData\McAfee 2014-06-03 19:59 - 2014-06-03 19:59 - 00000000 ____D () C:\Users\acer\AppData\Roaming\Macromedia 2014-05-31 07:16 - 2014-04-07 18:55 - 00703992 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-05-31 07:16 - 2014-04-07 18:55 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl Some content of TEMP: ==================== C:\Users\acer\AppData\Local\Temp\app.exe C:\Users\acer\AppData\Local\Temp\CloudBackup4.exe C:\Users\acer\AppData\Local\Temp\ffdshow.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-06-20 10:32 ==================== End Of Log ============================ und hier ist der addition.txt:FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2014 02 Ran by acer at 2014-06-30 16:14:09 Running from C:\Users\acer\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD} ==================== Installed Programs ====================== clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3013 - Acer Incorporated) Acer Games (HKCU\...\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf) (Version: 1.1.7.42206 - Pokki) Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.3004 - Acer Incorporated) Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3013 - Acer Incorporated) Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated) AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated) AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2022 - Acer Incorporated) AMD Accelerated Video Transcoding (Version: 12.10.100.30613 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Install Manager (HKLM\...\{9770EA17-52C1-78A7-C3B3-59F0A2091BAE}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.) AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.4.4.2 - AppEx Networks) AMD VISION Engine Control Center (x32 Version: 2013.0613.2225.38432 - Ihr Firmenname) Hidden AMD Wireless Display v3.0 (Version: 1.0.0.10 - Advanced Micro Devices, Inc.) Hidden Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0613.2225.38432 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center InstallProxy (x32 Version: 2013.0613.2225.38432 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2013.0613.2225.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2013.0613.2224.38432 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2013.0613.2225.38432 - Advanced Micro Devices, Inc.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform) clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated) clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2016 - Acer Incorporated) Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3006 - Acer Incorporated) Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3010 - Acer Incorporated) Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden Nero BackItUp (x32 Version: 12.5.5000 - Nero AG) Hidden Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG) Nero BackItUp Help (CHM) (x32 Version: 12.0.10000 - Nero AG) Hidden Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.7.0.24 - Symantec Corporation) Norton Online Backup ARA (x32 Version: 4.3.0.14 - Symantec Corporation) Hidden OEM Application Profile (HKLM-x32\...\{276FD4A2-030F-8A24-7DFE-9B1384131BCD}) (Version: 1.00.0000 - Ihr Firmenname) Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer) Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2008 - Acer) OpenOffice.org 3.4 (HKLM-x32\...\{51071D66-D034-4239-94E0-723FCA10B6FE}) (Version: 3.4.9590 - OpenOffice.org) Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden Pokki (HKCU\...\Pokki) (Version: 0.266.1.172 - Pokki) Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden QCA CardReader Driver Installer (HKLM-x32\...\{4E0BC999-655B-421D-87F3-640C6F2BFC11}) (Version: 1.0.1.34 - Qualcomm Inc.) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications) Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.13 - Qualcomm Atheros Communications Inc.) Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6865 - Realtek Semiconductor Corp.) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Skype Web Plugin (HKLM-x32\...\{B51DD93B-3CB5-4D9D-BFF2-FD19DBBBFD9A}) (Version: 2.9.13008.18866 - Skype Technologies S.A.) Spielkanäle (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 8.1.0.17 - WildTangent, Inc.) Spielkanäle (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 8.1.0.17 - WildTangent, Inc.) Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.12.39 - Synaptics Incorporated) Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden The weDownload Manager (HKLM-x32\...\The weDownload Manager) (Version: 1.34.5.29 - weDownload) <==== ATTENTION Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden ==================== Restore Points ========================= 07-06-2014 16:49:46 Windows Update 10-06-2014 17:56:17 Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 16-06-2014 11:22:35 Installed Skype Web Plugin 24-06-2014 16:43:20 Geplanter Prüfpunkt 30-06-2014 11:48:37 Removed Norton Online Backup ==================== Hosts content: ========================== 2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {1A19C77F-6ABD-4DC2-8EE6-1582A0342079} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] () Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {277F020B-E437-4318-A063-31AD6D65B32F} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-01-23] (Acer Incorporated) Task: {4FF68AEA-0C67-4E4E-99FC-A458D9559C21} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-07] (Google Inc.) Task: {50C8B704-664F-40FB-8F00-8D60EF43D2FB} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-10] (globalUpdate) <==== ATTENTION Task: {575F35CE-86D5-48B6-9EEA-52F4396CA5C3} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2014-04-19] (Microsoft Corporation) Task: {581222EE-3720-4CE6-BC8B-07C322E4879C} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-04-26] (Acer Incorporate) Task: {6C8D4685-9EA0-47DA-9133-F3A825209752} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] () Task: {834739D3-0470-4DBB-A290-24789EA6B35A} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated) Task: {88A99478-109F-43C7-8A7C-3CC265DB26E3} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-10] (globalUpdate) <==== ATTENTION Task: {9F2843FD-F415-4261-A272-D5A11AE4E99F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd) Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing Task: {C5030D3D-7B50-422D-9181-622B65B74FFF} - System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-3 => C:\Program Files (x86)\The weDownload Manager\bc39018e-d2de-4d68-aa32-0afacbc16f5f-3.exe [2014-06-10] (weDownload) <==== ATTENTION Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {CE55DE98-C65A-4872-A6CF-E066659588DD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-07] (Google Inc.) Task: {E81E79B2-0FE3-4817-AA4F-A863E50A91DD} - System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-1 => C:\Program Files (x86)\The weDownload Manager\The weDownload Manager-codedownloader.exe [2014-06-10] (weDownload) <==== ATTENTION Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask Task: {EFA3C0DA-68CA-4885-B9D3-89133F7F1783} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-06-11] (Microsoft Corporation) Task: {F0145EE9-8F89-4A87-A426-CB6D59372153} - System32\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-4 => C:\Program Files (x86)\The weDownload Manager\bc39018e-d2de-4d68-aa32-0afacbc16f5f-4.exe [2014-06-10] (weDownload) <==== ATTENTION Task: {F80E0957-4828-4831-926F-6883710D808A} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.3.0.14\\Ara.exe [2013-08-27] (Symantec Corporation) Task: C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-1.job => C:\Program Files (x86)\The weDownload Manager\The weDownload Manager-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-3.job => C:\Program Files (x86)\The weDownload Manager\bc39018e-d2de-4d68-aa32-0afacbc16f5f-3.exe <==== ATTENTION Task: C:\Windows\Tasks\bc39018e-d2de-4d68-aa32-0afacbc16f5f-4.job => C:\Program Files (x86)\The weDownload Manager\bc39018e-d2de-4d68-aa32-0afacbc16f5f-4.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2014-04-07 18:15 - 2013-07-02 09:43 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll 2013-09-07 01:48 - 2013-09-07 01:48 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2013-09-07 01:45 - 2013-09-07 01:45 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll 2013-09-07 01:52 - 2013-09-07 01:52 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe 2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll 2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll 2014-05-28 09:09 - 2013-02-20 22:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll 2014-06-13 23:34 - 2014-06-05 15:58 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll 2014-06-13 23:34 - 2014-06-05 15:58 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll 2014-06-13 23:34 - 2014-06-05 15:58 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll 2014-06-13 23:34 - 2014-06-05 15:58 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll 2014-06-13 23:34 - 2014-06-05 15:58 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll 2014-06-13 23:34 - 2014-06-05 15:58 - 14612296 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Association (whitelisted) ============= ==================== MSCONFIG/TASK MANAGER disabled items ========= ==================== Faulty Device Manager Devices ============= Name: Bluetooth USB Module Description: Bluetooth USB Module Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Qualcomm Atheros Communications Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (06/30/2014 02:17:47 PM) (Source: SideBySide) (EventID: 72) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (06/30/2014 02:17:47 PM) (Source: SideBySide) (EventID: 72) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (06/30/2014 02:17:47 PM) (Source: SideBySide) (EventID: 72) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (06/30/2014 01:13:54 PM) (Source: globalUpdate Update) (EventID: 1) (User: NT-AUTORITÄT) Description: globalUpdate Update has encountered a fatal error. ver=1.3.25.0.private;lang=en;id=;is_machine=1;upload=0;minidump=C:\Program Files (x86)\globalUpdate\CrashReports\4b81a123-a077-42e0-befa-84d9a1505b80.dmp Error: (06/28/2014 00:59:19 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80070005 Error: (06/27/2014 11:54:05 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: GoogleUpdate.exe, Version: 1.3.25.0, Zeitstempel: 0x53592941 Name des fehlerhaften Moduls: urlmon.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x537fca02 Ausnahmecode: 0xc00001a5 Fehleroffset: 0x75097d11 ID des fehlerhaften Prozesses: 0x1cf4 Startzeit der fehlerhaften Anwendung: 0xGoogleUpdate.exe0 Pfad der fehlerhaften Anwendung: GoogleUpdate.exe1 Pfad des fehlerhaften Moduls: GoogleUpdate.exe2 Berichtskennung: GoogleUpdate.exe3 Vollständiger Name des fehlerhaften Pakets: GoogleUpdate.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GoogleUpdate.exe5 Error: (06/27/2014 10:02:05 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80070005 Error: (06/26/2014 05:52:45 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80070005 Error: (06/26/2014 10:01:18 AM) (Source: globalUpdate Update) (EventID: 1) (User: NT-AUTORITÄT) Description: globalUpdate Update has encountered a fatal error. ver=1.3.25.0.private;lang=en;id=;is_machine=1;upload=0;minidump=C:\Program Files (x86)\globalUpdate\CrashReports\dec186c3-0337-427b-978c-93ff2112bb99.dmp Error: (06/25/2014 07:56:02 PM) (Source: globalUpdate Update) (EventID: 1) (User: NT-AUTORITÄT) Description: globalUpdate Update has encountered a fatal error. ver=1.3.25.0.private;lang=en;id=;is_machine=1;upload=0;minidump=C:\Program Files (x86)\globalUpdate\CrashReports\921531f3-4c70-46a7-8edc-26165a3300a8.dmp System errors: ============= Error: (06/30/2014 01:13:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (06/30/2014 01:13:13 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 30.06.2014 um 12:41:14 unerwartet heruntergefahren. Error: (06/24/2014 01:47:44 PM) (Source: DCOM) (EventID: 10010) (User: acer-PC) Description: Microsoft.Bing.wwa Error: (06/22/2014 01:49:20 PM) (Source: DCOM) (EventID: 10001) (User: acer-PC) Description: "C:\Windows\system32\wwahost.exe" -ServerName:Microsoft.ZuneVideo.wwa15616Microsoft.ZuneVideo.wwaNicht verfügbarNicht verfügbar Error: (06/22/2014 00:24:00 AM) (Source: DCOM) (EventID: 10010) (User: acer-PC) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (06/13/2014 00:21:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (06/10/2014 08:29:28 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (06/10/2014 00:37:32 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8007045b fehlgeschlagen: Update für Windows 8 für x64-Systeme (KB2957026) Error: (06/10/2014 00:37:32 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8007045b fehlgeschlagen: Update für Microsoft Camera Codec Pack unter Windows 8 für x64-basierte Systeme (KB2779444) Error: (06/10/2014 00:37:31 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8007045b fehlgeschlagen: Update für Windows 8 für x64-Systeme (KB2939153) Microsoft Office Sessions: ========================= Error: (06/30/2014 02:17:47 PM) (Source: SideBySide) (EventID: 72) (User: ) Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4 Error: (06/30/2014 02:17:47 PM) (Source: SideBySide) (EventID: 72) (User: ) Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4 Error: (06/30/2014 02:17:47 PM) (Source: SideBySide) (EventID: 72) (User: ) Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4 Error: (06/30/2014 01:13:54 PM) (Source: globalUpdate Update) (EventID: 1) (User: NT-AUTORITÄT) Description: globalUpdate Update has encountered a fatal error. ver=1.3.25.0.private;lang=en;id=;is_machine=1;upload=0;minidump=C:\Program Files (x86)\globalUpdate\CrashReports\4b81a123-a077-42e0-befa-84d9a1505b80.dmp Error: (06/28/2014 00:59:19 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80070005 Error: (06/27/2014 11:54:05 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: GoogleUpdate.exe1.3.25.053592941urlmon.dll_unloaded0.0.0.0537fca02c00001a575097d111cf401cf91edba1dff2bC:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exeurlmon.dllf90893ac-fde0-11e3-be79-3065ec1db3f4 Error: (06/27/2014 10:02:05 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80070005 Error: (06/26/2014 05:52:45 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80070005 Error: (06/26/2014 10:01:18 AM) (Source: globalUpdate Update) (EventID: 1) (User: NT-AUTORITÄT) Description: globalUpdate Update has encountered a fatal error. ver=1.3.25.0.private;lang=en;id=;is_machine=1;upload=0;minidump=C:\Program Files (x86)\globalUpdate\CrashReports\dec186c3-0337-427b-978c-93ff2112bb99.dmp Error: (06/25/2014 07:56:02 PM) (Source: globalUpdate Update) (EventID: 1) (User: NT-AUTORITÄT) Description: globalUpdate Update has encountered a fatal error. ver=1.3.25.0.private;lang=en;id=;is_machine=1;upload=0;minidump=C:\Program Files (x86)\globalUpdate\CrashReports\921531f3-4c70-46a7-8edc-26165a3300a8.dmp ==================== Memory info =========================== Percentage of memory in use: 30% Total physical RAM: 7621 MB Available physical RAM: 5321.24 MB Total Pagefile: 8773 MB Available Pagefile: 6163.41 MB Total Virtual: 8192 MB Available Virtual: 8191.77 MB ==================== Drives ================================ Drive c: (Acer) (Fixed) (Total:911.17 GB) (Free:864.47 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 932 GB) (Disk ID: 80E0163E) Partition: GPT Partition Type. ==================== End Of Log ============================ Danke! |
01.07.2014, 11:25 | #4 |
/// the machine /// TB-Ausbilder | wie codec performer deinstallieren ? Adware & Co. deinstallieren
Solltest Du ein Programm nicht finden oder nicht deinstallieren können, mache bitte mit dem nächsten Schritt weiter: Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu wie codec performer deinstallieren ? |
angezeigt, antivirus, aufforderung, deinstallieren, entdeck, entdeckt, gestartet, heute, installiert, interne, internetseite, internetseiten, kaspersky, neu, nichts, programm, programme, seite, seiten, sofort, systemsteuerung, untersuchung, update, versucht, virus, wie codec perfomrerm deinstallieren |