| |
| |||||||
Alles rund um Windows: Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet vielWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
09.09.2014, 21:13
| #1 |
 |  Problem: Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Guten Tag zusammen, ich habe meinen Laptop nach einigen Monaten Fremdnutzung durch ein jüngeres Familienmitglied wieder bekommen und wundere mich etwas über die Performance des Rechners. Der Computer wird sehr heiß und scheint selbst im Leerlauf viel arbeiten zu müssen. Bei den Office-Programmen Windows und Excel kam es wiederholt zu "keine Rückmeldung" und automatischer Beendigung des Programms. Auch wenn der Internetzugang nur über einen USB-Stick erfolgt, ist die Nutzung des Internets gefühlt deutlich langsamer und es kommt vermehrt zu "keine Rückmeldung" und automatischer Beendigung des Internet-Explorers. Auf dem Rechner gespeicherte Audio- und Videomedien werden oftmals nicht ruckelfrei abgespielt, was vorher problemlos möglich war. Leider habe ich überhaupt keine Ahnung von Computern und deren Hard- und Software. Daher habe ich nach bestem Wissen und Gewissen die Anleitung zum akkumulieren der benötigten Informationen befolgt. Unglücklicherweise enthielt der Text bei meinem ersten Versuch zu posten zu viele Zeichen, weshalb ich hier ohne FRST poste und diese bei Bedarf gerne nachreiche. Ich wäre über jede Hilfe sehr dankbar, falls sich aus den unten aufgeführten Informationen aus Eurer Sicht sinnvolle Maßnahmen oder Tools ergeben. Vielen Dank für Eure Mühe und Zeit! LG Marcel Hier die Informationen: _____________ Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz RAM 4,00GB (2,96 GB verwendbar) 32 Bit _____________ Addition: Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-09-2014 Ran by ****** at 2014-09-09 20:40:57 Running from C:\Users\******\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft) µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33254 - BitTorrent Inc.) 32 Bit HP CIO Components Installer (Version: 6.1.2 - Hewlett-Packard) Hidden Adobe Acrobat 7.0 Professional (Version: 7.1.0 - Adobe Systems) Hidden Adobe Acrobat 7.1.0 Professional (HKLM\...\Adobe Acrobat 7.0 Professional) (Version: 7.1.0 - Adobe Systems) Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated) Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Reader 9.4.7 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A94000000001}) (Version: 9.4.7 - Adobe Systems Incorporated) ALDI TALK Verbindungsassistent (HKLM\...\ALDITALKVerbindungsassistent) (Version: ALDI TALK 4.0 - ALDI TALK Verbindungsassistent) Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.) Avira (HKLM\...\{e67154a7-9cc5-4167-b782-f3982bc6c70d}) (Version: 1.1.19.30000 - Avira Operations GmbH & Co. KG) Avira (Version: 1.1.19.30000 - Avira Operations GmbH & Co. KG) Hidden Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.6.570 - Avira) Canon MP Navigator EX 1.0 (HKLM\...\MP Navigator EX 1.0) (Version: - ) GIMP 2.6.8 (HKLM\...\WinGimp-2.0_is1) (Version: - ) iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.) IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.27 - Irfan Skiljan) iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.) Java Auto Updater (Version: 2.0.7.1 - Sun Microsystems, Inc.) Hidden Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle) Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation) Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) neroxml (Version: 1.0.0 - Nero AG) Hidden QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.) Safari (HKLM\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.) Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.3.0 - Synaptics Incorporated) Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft) Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883097) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B2260BC9-D561-46EE-B33D-739CF760A2A9}) (Version: - Microsoft) Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft) Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft) Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft) VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN) WinRAR (HKLM\...\WinRAR archiver) (Version: - ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1524326991-2445942720-3436998146-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\******\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {151FF12D-ADF8-4F3A-BD38-BCEF3F6185AF} - System32\Tasks\APSnotifierPP3 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {244B04CA-E241-481E-BF75-6C2E79955F94} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {25A1E566-D013-4194-B473-33B32903B9AD} - System32\Tasks\APSnotifierPP2 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {401A8ECE-9A07-49B5-9D79-8BB8EF9BE355} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup Task: {42DEED7E-CDA8-4C46-A285-459A6C50AE4A} - System32\Tasks\APSnotifierPP1 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {4DC94271-DFE2-481C-8218-20CCCD668DC0} - System32\Tasks\Ad-Aware Update (Daily 3) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {87D83740-CBAC-4465-A329-659526C1FC99} - System32\Tasks\{2ADF7B21-0589-4944-AC43-5F58E8B6CA34} => C:\Program Files\Skype\Phone\Skype.exe Task: {8C114D9A-4D77-4A5B-8B8B-ECBA00900DC1} - System32\Tasks\SmartDefrag3_Startup => C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe Task: {9E157639-B621-44A8-8121-7BA0B4CBECE9} - System32\Tasks\{9FE159AC-B86F-4EC0-ACBF-83BF95C53952} => C:\Program Files\Microsoft Office\Office12\POWERPNT.EXE [2011-05-31] (Microsoft Corporation) Task: {9EFCE3B5-8872-42B9-83DE-E56A6EB44849} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09] (Adobe Systems Incorporated) Task: {AAFF2CE9-5119-4670-AE15-38533AD9B8FC} - System32\Tasks\SmartDefrag3_Update => C:\Program Files\IObit\Smart Defrag 3\AutoUpdate.exe Task: {ABAFDF82-6741-4249-BABA-2E23D6159D3B} - System32\Tasks\Ad-Aware Update (Daily 4) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {B1AF3746-8B7E-4FE7-AE70-59718A47F9E9} - System32\Tasks\Ad-Aware Update (Daily 1) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {BBE82FCA-E9C0-472E-997A-9A24A3EF9155} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe Task: {D528C896-64FE-4CDB-8A4B-F2DEA08BA359} - System32\Tasks\Driver Booster SkipUAC (******) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe Task: {FFBC413C-0999-441E-9F84-4635F568B5FD} - System32\Tasks\Ad-Aware Update (Daily 2) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Ad-Aware Update (Daily 1).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Ad-Aware Update (Daily 2).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Ad-Aware Update (Daily 3).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Ad-Aware Update (Daily 4).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Ad-Aware Update (Weekly).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION ==================== Loaded Modules (whitelisted) ============= 2009-12-29 21:13 - 2001-10-28 18:42 - 00116224 _____ () C:\Windows\System32\pdfcmnnt.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00358968 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe 2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2014-08-04 14:20 - 2014-08-04 14:20 - 00139056 _____ () C:\Program Files\Avira\My Avira\Avira.OE.NativeCore.dll 2014-08-04 14:20 - 2014-08-04 14:20 - 00067832 _____ () C:\Program Files\Avira\My Avira\Avira.OE.AvConnectorNative.dll 2009-12-28 16:44 - 2009-12-12 16:12 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll 2014-09-07 18:11 - 2014-08-04 14:20 - 00052472 _____ () C:\Users\******\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00510520 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe 2014-09-07 18:08 - 2014-09-07 18:16 - 01792568 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe 2014-09-07 18:08 - 2014-09-07 18:16 - 00102400 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDatabase.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00106496 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgUtil.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00090112 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgPorts.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00200704 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDetection.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00086016 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDialup.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00012288 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGDebugs.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00073728 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDriverInstall.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00569344 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgCore.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00139264 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgBluetooth.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00204800 _____ () C:\Program Files\ALDITALKVerbindungsassistent\LiveBoxCM.dll 2014-09-07 18:08 - 2007-02-27 19:44 - 00823296 ____N () C:\Program Files\ALDITALKVerbindungsassistent\LIBEAY32.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00126976 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgWiFi.dll 2014-09-07 18:08 - 2010-12-02 08:33 - 01097728 ____N () C:\Program Files\ALDITALKVerbindungsassistent\NDISAPI.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00614400 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGXMLUtil.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00303104 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGSMSPCClient.Dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Acrobat Assistant 7.0 => c:\program files\adobe\acrobat 7.0\distillr\acrotray.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/09/2014 04:44:40 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm iexplore.exe, Version 11.0.9600.17239 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: cc4 Startzeit: 01cfcc3a88908c27 Endzeit: 30 Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe Berichts-ID: 21b8519e-382f-11e4-9430-001e101fb4df Error: (09/08/2014 06:11:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 11.0.9600.17239, Zeitstempel: 0x53d22946 Name des fehlerhaften Moduls: Flash32_14_0_0_145.ocx, Version: 14.0.0.145, Zeitstempel: 0x53aa18ec Ausnahmecode: 0xc0000005 Fehleroffset: 0x002c46f4 ID des fehlerhaften Prozesses: 0xe90 Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0 Pfad der fehlerhaften Anwendung: iexplore.exe1 Pfad des fehlerhaften Moduls: iexplore.exe2 Berichtskennung: iexplore.exe3 Error: (09/07/2014 05:33:59 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: Avira.OE.ServiceHost.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.ComponentModel.Composition.CompositionException Stapel: bei System.ComponentModel.Composition.Hosting.CompositionServices.GetExportedValueFromComposedPart(System.ComponentModel.Composition.Hosting.ImportEngine, System.ComponentModel.Composition.Primitives.ComposablePart, System.ComponentModel.Composition.Primitives.ExportDefinition) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider.GetExportedValue(CatalogPart, System.ComponentModel.Composition.Primitives.ExportDefinition, Boolean) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider+CatalogExport.GetExportedValueCore() bei System.ComponentModel.Composition.Primitives.Export.get_Value() bei System.ComponentModel.Composition.ExportServices.GetCastedExportedValue[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.ComponentModel.Composition.Primitives.Export) bei System.ComponentModel.Composition.Hosting.ExportProvider.GetExportedValueCore[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.String, System.ComponentModel.Composition.Primitives.ImportCardinality) bei Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object) bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() bei System.Threading.ThreadPoolWorkQueue.Dispatch() bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (09/07/2014 05:33:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: Avira.OE.ServiceHost.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.ComponentModel.Composition.CompositionException Stapel: bei System.ComponentModel.Composition.Hosting.CompositionServices.GetExportedValueFromComposedPart(System.ComponentModel.Composition.Hosting.ImportEngine, System.ComponentModel.Composition.Primitives.ComposablePart, System.ComponentModel.Composition.Primitives.ExportDefinition) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider.GetExportedValue(CatalogPart, System.ComponentModel.Composition.Primitives.ExportDefinition, Boolean) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider+CatalogExport.GetExportedValueCore() bei System.ComponentModel.Composition.Primitives.Export.get_Value() bei System.ComponentModel.Composition.ExportServices.GetCastedExportedValue[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.ComponentModel.Composition.Primitives.Export) bei System.ComponentModel.Composition.Hosting.ExportProvider.GetExportedValueCore[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.String, System.ComponentModel.Composition.Primitives.ImportCardinality) bei Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object) bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() bei System.Threading.ThreadPoolWorkQueue.Dispatch() bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (09/07/2014 05:33:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Avira.OE.Systray.exe, Version: 1.1.19.30000, Zeitstempel: 0x53df7a63 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x531599f6 Ausnahmecode: 0xe0434352 Fehleroffset: 0x0000812f ID des fehlerhaften Prozesses: 0xa54 Startzeit der fehlerhaften Anwendung: 0xAvira.OE.Systray.exe0 Pfad der fehlerhaften Anwendung: Avira.OE.Systray.exe1 Pfad des fehlerhaften Moduls: Avira.OE.Systray.exe2 Berichtskennung: Avira.OE.Systray.exe3 Error: (09/07/2014 05:33:26 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: Avira.OE.Systray.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.Net.Sockets.SocketException Stapel: bei System.Net.SafeCloseSocketAndEvent.CreateWSASocketWithEvent(System.Net.Sockets.AddressFamily, System.Net.Sockets.SocketType, System.Net.Sockets.ProtocolType, Boolean, Boolean) bei System.Net.NetworkInformation.NetworkChange+AddressChangeListener.StartHelper(System.Net.NetworkInformation.NetworkAddressChangedEventHandler, Boolean, System.Net.NetworkInformation.StartIPOptions) bei Avira.OE.WinCore.NetworkStatusListener..ctor() bei Avira.OE.WinCore.InternetConnectionMonitor..ctor() bei Avira.OE.Systray.SystrayIcon..ctor(Avira.OE.WinCore.Interface.IServiceStatusMonitor, Avira.OE.Communicator.Interface.ICommunicatorClientProxy, Avira.OE.MiniGui.IMiniGuiWindow) bei Avira.OE.Systray.SystrayIcon..ctor() bei Avira.OE.Systray.Program.Main(System.String[]) Error: (09/07/2014 05:33:19 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: Avira.OE.ServiceHost.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.ComponentModel.Composition.CompositionException Stapel: bei System.ComponentModel.Composition.Hosting.CompositionServices.GetExportedValueFromComposedPart(System.ComponentModel.Composition.Hosting.ImportEngine, System.ComponentModel.Composition.Primitives.ComposablePart, System.ComponentModel.Composition.Primitives.ExportDefinition) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider.GetExportedValue(CatalogPart, System.ComponentModel.Composition.Primitives.ExportDefinition, Boolean) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider+CatalogExport.GetExportedValueCore() bei System.ComponentModel.Composition.Primitives.Export.get_Value() bei System.ComponentModel.Composition.ExportServices.GetCastedExportedValue[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.ComponentModel.Composition.Primitives.Export) bei System.ComponentModel.Composition.Hosting.ExportProvider.GetExportedValueCore[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.String, System.ComponentModel.Composition.Primitives.ImportCardinality) bei Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object) bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() bei System.Threading.ThreadPoolWorkQueue.Dispatch() bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (09/07/2014 05:33:00 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (09/07/2014 05:26:37 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (09/07/2014 05:24:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Avira.OE.Systray.exe, Version: 1.1.19.30000, Zeitstempel: 0x53df7a63 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x531599f6 Ausnahmecode: 0xe0434352 Fehleroffset: 0x0000812f ID des fehlerhaften Prozesses: 0xc9c Startzeit der fehlerhaften Anwendung: 0xAvira.OE.Systray.exe0 Pfad der fehlerhaften Anwendung: Avira.OE.Systray.exe1 Pfad des fehlerhaften Moduls: Avira.OE.Systray.exe2 Berichtskennung: Avira.OE.Systray.exe3 System errors: ============= Error: (09/09/2014 06:28:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "IMF Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 Error: (09/09/2014 06:27:49 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (09/09/2014 06:27:49 PM) (Source: atikmdag) (EventID: 19468) (User: ) Description: CPLIB :: General - Invalid Parameter Error: (09/09/2014 04:42:00 PM) (Source: volsnap) (EventID: 14) (User: ) Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen. Error: (09/09/2014 04:36:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht. Error: (09/09/2014 04:35:27 PM) (Source: atapi) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort1 gefunden. Error: (09/09/2014 04:35:27 PM) (Source: atapi) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort1 gefunden. Error: (09/09/2014 04:27:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "IMF Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 Error: (09/09/2014 04:27:10 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (09/09/2014 04:27:10 PM) (Source: atikmdag) (EventID: 19468) (User: ) Description: CPLIB :: General - Invalid Parameter Microsoft Office Sessions: ========================= Error: (08/23/2014 03:01:34 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 131 seconds with 120 seconds of active time. This session ended with a crash. Error: (06/16/2010 09:36:31 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1831 seconds with 180 seconds of active time. This session ended with a crash. Error: (06/07/2010 05:35:52 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 18826 seconds with 7620 seconds of active time. This session ended with a crash. Error: (05/26/2010 06:01:02 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6524.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 31613 seconds with 6000 seconds of active time. This session ended with a crash. Error: (05/11/2010 10:58:23 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7071 seconds with 480 seconds of active time. This session ended with a crash. Error: (12/28/2009 00:02:20 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 4242 seconds with 540 seconds of active time. This session ended with a crash. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz Percentage of memory in use: 43% Total physical RAM: 3036.87 MB Available physical RAM: 1720.68 MB Total Pagefile: 6072.03 MB Available Pagefile: 4671.88 MB Total Virtual: 2047.88 MB Available Virtual: 1900.36 MB ==================== Drives ================================ Drive c: (Vista) (Fixed) (Total:232.88 GB) (Free:192.98 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive e: (Data) (Fixed) (Total:209.93 GB) (Free:71.34 GB) NTFS Drive f: (Disk) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS Drive m: (Volume) (Fixed) (Total:21.48 GB) (Free:18.65 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7878FC96) Partition 1: (Not Active) - (Size=1.5 GB) - (Type=27) Partition 2: (Active) - (Size=232.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=209.9 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=21.5 GB) - (Type=OF Extended) ==================== End Of Log ============================ Defogger defogger_disable by jpshortstuff (23.02.10.1) Log created at 20:36 on 09/09/2014 (******) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=- ______________________________ Gmer Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-09-2014 Ran by ****** (administrator) on ******-PC on 09-09-2014 20:40:08 Running from C:\Users\******\Desktop Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1557800 2009-08-28] (Synaptics Incorporated) HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-09-08] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-30] (Adobe Systems Incorporated) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-07] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.) HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [161584 2014-08-04] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\Run: [updateMgr] => C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe [313472 2006-03-30] (Adobe Systems Incorporated) HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: F - F:\.\Setup.exe AUTORUN=1 HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: G - G:\.\Setup.exe AUTORUN=1 HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: {4a84b98b-36a7-11e4-a4ae-00235afe286c} - F:\.\Setup.exe AUTORUN=1 HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: {69de16ea-f3dc-11e3-b45c-0024d2d95ef8} - F:\.\Setup.exe AUTORUN=1 HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: {69de1724-f3dc-11e3-b45c-0024d2d95ef8} - G:\.\Setup.exe AUTORUN=1 Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk ShortcutTarget: Launcher.lnk -> C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe () GroupPolicy: Group Policy on Chrome detected <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StLKYZZHUxozG7WbG8M4ZbpPFmdMdnxsM5TEzN82KkLVDC7nIWUVyhe8-jGmFHKigyiibi5_wvx2BTfa2y-JqDdfzYF1WK3XQ13JA9dG80JaqP1vUr-RfvY7fVa-nAl3Ac4CqITLtkUZ7zvzaoZMTXpr0Sai5HpOjNHfpzC0Mq70ZZqFR0XMrz7cDJaLqKPFAVCHhwBOWZYw,,&q={searchTerms} HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.de/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1409577493&from=irs&uid=TOSHIBAXMK5055GSX_79HDF2VVSXX79HDF2VVS&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1409577493&from=irs&uid=TOSHIBAXMK5055GSX_79HDF2VVSXX79HDF2VVS&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1409577493&from=irs&uid=TOSHIBAXMK5055GSX_79HDF2VVSXX79HDF2VVS SearchScopes: HKCU - DefaultScope {6503D225-0679-4A45-BF32-E6813F160CFD} URL = https://www.google.com/search?q={searchTerms} SearchScopes: HKCU - {6503D225-0679-4A45-BF32-E6813F160CFD} URL = https://www.google.com/search?q={searchTerms} BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\..\Interfaces\{82091C62-541E-41CD-A865-F884D15D3A24}: [NameServer] 212.23.115.84 212.23.115.150 FireFox: ======== FF ProfilePath: C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default FF DefaultSearchEngine: Yahoo FF SelectedSearchEngine: Yahoo FF Homepage: hxxp://go.microsoft.com/fwlink/?LinkId=69157 FF Keyword.URL: hxxp://de.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p= FF NewTab: about:newtab FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @java.com/JavaPlugin -> E:\Avira\bin\plugin2\npjp2.dll No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\******\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.) FF SearchPlugin: C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\searchplugins\iminent.xml FF Extension: Ant Video Downloader - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\anttoolbar@ant.com [2012-05-20] FF Extension: NoSquint - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\nosquint@urandom.ca [2012-05-20] FF Extension: No Name - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} [2014-06-16] FF Extension: Iminent - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\firefoxmini@go.im.xpi [2014-09-03] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2012-03-23] FF Extension: No Name - C:\Program Files\Common Files\Spigot\wtxpcom [Not Found] FF Extension: No Name - C:\Program Files\YTD Toolbar\FF [Not Found] FF Extension: No Name - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\ascsurfingprotection@iobit.com [Not Found] FF Extension: No Name - C:\Program Files\IObit Apps Toolbar\FF [Not Found] FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] Chrome: ======= ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [69632 2010-07-05] (Adobe Systems) [File not signed] R2 ALDITALKVerbindungsassistent_Service; C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe [358968 2014-09-07] () R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG) R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [149296 2014-08-04] (Avira Operations GmbH & Co. KG) R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-09-01] (Cherished Technololgy LIMITED) S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-09-04] (IObit) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [File not signed] S2 SkypeUpdate; E:\Program Files\Skype\Updater\Updater.exe [172192 2013-10-23] (Skype Technologies) S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X] S2 IMFservice; No ImagePath ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [97648 2014-07-03] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-05-09] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2014-05-09] (Avira Operations GmbH & Co. KG) S3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [28944 2008-02-29] (Logitech, Inc.) R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7523840 2014-09-02] (Intel Corporation) R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624 2014-06-04] (IObit) R1 SSHDRV82; C:\Windows\system32\drivers\SSHDRV82.sys [76288 2011-03-27] () [File not signed] R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2014-05-09] (Avira GmbH) S3 FileMonitor; No ImagePath S3 UrlFilter; No ImagePath S3 WinRing0_1_2_0; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-09 20:40 - 2014-09-09 20:40 - 00015313 _____ () C:\Users\******\Desktop\FRST.txt 2014-09-09 20:39 - 2014-09-09 20:40 - 00000000 ____D () C:\FRST 2014-09-09 20:38 - 2014-09-09 20:38 - 01097728 _____ (Farbar) C:\Users\******\Desktop\FRST.exe 2014-09-09 20:36 - 2014-09-09 20:36 - 00000000 _____ () C:\Users\******\defogger_reenable 2014-09-09 20:35 - 2014-09-09 20:35 - 00050477 _____ () C:\Users\******\Desktop\Defogger.exe 2014-09-09 20:33 - 2014-09-09 20:34 - 00050477 _____ () C:\Users\******\Downloads\Defogger.exe 2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-09-07 18:10 - 2014-09-09 12:28 - 00001216 _____ () C:\Windows\PFRO.log 2014-09-07 18:09 - 2014-09-09 18:28 - 00001131 _____ () C:\Windows\setupact.log 2014-09-07 18:09 - 2014-09-07 18:09 - 00000000 _____ () C:\Windows\setuperr.log 2014-09-07 18:08 - 2014-09-07 18:08 - 00002196 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\ALDI TALK Verbindungsassistent.lnk 2014-09-07 18:08 - 2014-09-07 18:08 - 00002190 _____ () C:\Users\Public\Desktop\ALDI TALK Verbindungsassistent.lnk 2014-09-07 18:08 - 2014-09-07 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALDI TALK Verbindungsassistent 2014-09-07 17:35 - 2014-09-08 02:00 - 00000000 ____D () C:\Users\******\AppData\Roaming\ALDITALKVerbindungsassistent 2014-09-07 17:35 - 2014-09-07 18:16 - 00000000 ____D () C:\Program Files\ALDITALKVerbindungsassistent 2014-09-07 17:03 - 2014-09-07 17:29 - 00000421 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Die Seite kann nicht angezeigt werden..website 2014-09-07 15:45 - 2014-09-07 15:45 - 00000000 ____D () C:\ProgramData\2308189059 2014-09-07 15:40 - 2014-09-07 15:40 - 00000000 ____D () C:\Users\******\Documents\Optimizer Pro 2014-09-07 15:34 - 2014-09-07 17:54 - 00000000 ____D () C:\Program Files\Common Files\ShopperPro 2014-09-07 15:34 - 2014-09-07 17:53 - 00000000 ____D () C:\ProgramData\ShopperPro 2014-09-07 15:34 - 2014-09-07 16:29 - 00000000 ____D () C:\Program Files\ShopperPro 2014-09-07 15:34 - 2014-09-07 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator 2014-09-07 15:34 - 2014-09-07 15:34 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro 2014-09-07 15:33 - 2014-09-07 15:35 - 00000000 ____D () C:\Program Files\IminentToolbar 2014-09-07 15:32 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\PodoWeb 2014-09-05 23:00 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-09-05 14:40 - 2014-05-08 11:06 - 02742784 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-09-05 14:40 - 2014-05-08 11:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-09-05 03:42 - 2014-09-05 03:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in 2014-09-05 03:42 - 2012-08-23 16:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2014-09-05 03:42 - 2012-08-23 16:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2014-09-05 03:42 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2014-09-05 03:41 - 2014-09-07 17:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-09-05 03:41 - 2013-10-02 02:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2014-09-05 03:41 - 2013-10-02 02:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2014-09-05 03:41 - 2013-10-02 02:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2014-09-05 03:41 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2014-09-05 03:41 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2014-09-05 03:41 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-09-05 03:41 - 2013-10-02 01:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2014-09-05 03:41 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2014-09-05 03:41 - 2013-10-02 01:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2014-09-05 03:41 - 2013-10-02 00:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2014-09-05 03:41 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-09-05 03:40 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-09-05 03:38 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2014-09-05 03:38 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-09-04 01:19 - 2014-09-09 14:35 - 00000194 _____ () C:\Users\******\BullseyeCoverageError.txt 2014-09-03 19:10 - 2014-09-03 19:20 - 00000000 ____D () C:\Windows\Minidump 2014-09-03 18:09 - 2014-09-03 18:09 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled 2014-09-03 16:34 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\YTAHelper 2014-09-03 16:34 - 2014-09-07 16:03 - 00000000 ____D () C:\ProgramData\TEMP 2014-09-03 16:34 - 2014-09-07 15:34 - 00000000 ____D () C:\ProgramData\YTAHelper 2014-09-03 16:34 - 2014-09-03 16:34 - 00000000 ____D () C:\Users\Public\Documents\YTAHelper 2014-09-03 16:34 - 2014-09-03 16:34 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO 2014-09-03 15:30 - 2014-09-03 17:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam 2014-09-03 15:30 - 2014-09-03 15:30 - 00000000 ____D () C:\Users\******\AppData\Local\CrashRpt 2014-09-03 15:26 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\SupTab 2014-09-03 14:00 - 2014-09-03 14:00 - 00000000 ____D () C:\Users\******\AppData\Roaming\AVS4YOU 2014-09-03 13:59 - 2014-09-03 14:00 - 00000000 ____D () C:\ProgramData\AVS4YOU 2014-09-02 18:42 - 2014-09-04 14:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3 2014-09-02 18:38 - 2014-09-02 18:38 - 00000000 ____D () C:\Windows\Tasks\TaskDisabled 2014-09-02 14:34 - 2014-06-04 15:17 - 00031008 _____ (IObit) C:\Windows\system32\SmartDefragBootTime.exe 2014-09-02 14:32 - 2014-09-04 14:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3 2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll20140902193225.dll 2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll20140902143413.dll 2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll 2014-09-02 14:32 - 2014-06-04 15:17 - 00018624 _____ (IObit) C:\Windows\system32\Drivers\SmartDefragDriver.sys 2014-09-02 14:24 - 2014-09-02 14:24 - 07523840 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwNs32.sys 2014-09-02 14:24 - 2014-09-02 14:24 - 02760704 _____ (Intel Corporation) C:\Windows\system32\NETwNr32.dll 2014-09-02 14:24 - 2014-09-02 14:24 - 00684032 _____ (Intel Corporation) C:\Windows\system32\NETwNc32.dll 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Windows\system32\RTCOM 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Program Files\Realtek 2014-09-02 14:22 - 2014-09-02 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat 2014-09-02 14:22 - 2014-09-02 14:22 - 28062296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 14585432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 11821656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO30.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 07162128 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 06177624 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-09-02 14:22 - 2014-09-02 14:22 - 05086984 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 03683416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 03086040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys 2014-09-02 14:22 - 2014-09-02 14:22 - 02566872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02474200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02421792 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02140976 _____ () C:\Windows\system32\SStudio.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01940056 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01892056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl 2014-09-02 14:22 - 2014-09-02 14:22 - 01823320 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01691224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01509480 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01490264 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01379760 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01292904 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01220200 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01116248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO60.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-09-02 14:22 - 2014-09-02 14:22 - 00987224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00966904 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00966744 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00948336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00916696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00890160 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00819648 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00818936 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00798296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00654952 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00631400 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00606968 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00601704 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00458344 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00389736 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00375400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00357712 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00352016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00274264 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00265376 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00221528 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00219896 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218216 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00214368 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00188696 _____ () C:\Windows\system32\AcpiServiceVnA.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00134584 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00106768 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00091920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00074080 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00068960 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00062224 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00058264 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00029496 _____ () C:\Windows\system32\audioLibVc.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll 2014-09-02 14:21 - 2014-09-02 14:21 - 00084480 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll 2014-09-02 14:21 - 2014-09-02 14:21 - 00077824 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys 2014-09-02 14:20 - 2014-09-02 14:20 - 00718552 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys 2014-09-02 14:20 - 2014-09-02 14:20 - 00100896 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll 2014-09-02 14:20 - 2014-09-02 14:20 - 00076872 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll 2014-09-02 14:19 - 2014-09-07 18:08 - 00106880 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys 2014-09-02 14:19 - 2014-09-02 14:19 - 00377856 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys 2014-09-02 13:11 - 2014-09-02 13:11 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 32219136 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00061440 _____ () C:\Windows\system32\config\SAM.iodefrag.bak 2014-09-01 22:31 - 2014-09-04 22:31 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP3.job 2014-09-01 22:31 - 2014-09-02 22:31 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP2.job 2014-09-01 22:31 - 2014-09-01 22:51 - 00000366 _____ () C:\Windows\Tasks\APSnotifierPP1.job 2014-09-01 22:31 - 2014-09-01 22:31 - 00000320 _____ () C:\Users\******\AppData\Roaming\aps.uninstall.scan.results 2014-09-01 22:29 - 2014-09-01 22:29 - 00631728 _____ (ClickMeIn Limited) C:\Users\******\AppData\Local\nsu410C.tmp 2014-09-01 21:15 - 2014-09-01 21:15 - 00002512 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk 2014-09-01 21:13 - 2014-09-01 21:13 - 00000000 ____D () C:\Users\******\AppData\Local\Maxiget 2014-09-01 17:42 - 2014-02-17 13:41 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe 2014-09-01 17:40 - 2014-09-07 18:04 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iobit 2014-09-01 17:40 - 2014-09-07 18:04 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iobit 2014-09-01 17:40 - 2014-09-07 18:04 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iobit 2014-09-01 17:40 - 2014-09-07 18:04 - 00061440 _____ () C:\Windows\system32\config\SAM.iobit 2014-09-01 17:40 - 2014-09-06 16:55 - 32497664 _____ () C:\Windows\system32\config\components.iobit 2014-09-01 16:55 - 2014-09-01 16:55 - 00000000 ____D () C:\Users\******\AppData\Roaming\Unity 2014-09-01 15:20 - 2014-09-01 15:20 - 00000000 ____D () C:\ProgramData\IePluginServices 2014-09-01 15:18 - 2014-09-05 13:14 - 00000306 __RSH () C:\ProgramData\ntuser.pol 2014-09-01 15:17 - 2014-09-01 17:12 - 00000000 ____D () C:\Users\******\AppData\Roaming\InetStat 2014-09-01 15:17 - 2014-09-01 15:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf 2014-08-31 21:56 - 2014-08-31 21:56 - 01575960 _____ () C:\Users\******\Downloads\The_Office_Season_8.exe 2014-08-31 21:51 - 2014-09-09 01:16 - 00000000 ____D () C:\Users\******\AppData\Roaming\uTorrent 2014-08-31 21:50 - 2014-08-31 21:50 - 01938256 _____ (BitTorrent Inc.) C:\Users\******\Downloads\uTorrent_3.4.2.33254.exe 2014-08-28 12:01 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-28 12:01 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-27 19:34 - 2014-09-07 17:54 - 00000000 ____D () C:\Users\******\AppData\Roaming\ProductData 2014-08-27 19:33 - 2014-09-09 12:30 - 00000000 ____D () C:\ProgramData\ProductData 2014-08-27 19:32 - 2014-09-07 17:53 - 00000000 ____D () C:\ProgramData\IObit 2014-08-27 19:32 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} 2014-08-27 19:31 - 2014-09-08 23:08 - 00000000 ____D () C:\Program Files\IObit 2014-08-27 19:29 - 2014-09-07 17:54 - 00000000 ____D () C:\Users\******\AppData\Roaming\IObit 2014-08-27 19:27 - 2014-08-27 19:29 - 38672200 _____ (IObit ) C:\Users\******\Downloads\asc-setup_7.3.0.454.exe 2014-08-27 18:32 - 2014-08-27 18:32 - 00001100 _____ () C:\Users\Public\Desktop\Avira.lnk 2014-08-26 18:41 - 2014-08-26 18:41 - 00001758 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-08-26 18:41 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-08-26 18:41 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys 2014-08-26 18:40 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-08-26 18:40 - 2014-08-26 18:41 - 00000000 ____D () C:\Program Files\iTunes 2014-08-26 18:40 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iPod 2014-08-26 18:34 - 2014-08-26 18:38 - 111978832 _____ (Apple Inc.) C:\Users\******\Downloads\iTunesSetup (1).exe 2014-08-26 18:26 - 2014-08-26 18:26 - 00152904 ____H () C:\Windows\system32\mlfcache.dat 2014-08-26 15:43 - 2014-08-26 15:43 - 00000000 ____D () C:\Users\******\AppData\Roaming\AppSplash 2014-08-26 15:38 - 2014-08-26 15:38 - 00642592 _____ () C:\Users\******\Downloads\Easy Torrent.exe 2014-08-26 15:36 - 2014-08-26 15:36 - 00001024 _____ () C:\.rnd 2014-08-26 15:34 - 2014-09-01 15:20 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect 2014-08-26 15:33 - 2014-08-26 15:49 - 00000000 ____D () C:\Program Files\OneBrowse 2014-08-26 15:31 - 2014-08-26 15:31 - 00033608 _____ () C:\Users\******\Downloads\122309-pthc-collection-cp.torrent 2014-08-23 14:59 - 2014-09-09 19:40 - 184894464 _____ () C:\Users\Public\Documents\Outlook_Export_MS.pst 2014-08-22 15:47 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-08-22 15:47 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-08-22 15:47 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-08-22 15:47 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-08-22 15:47 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-08-22 15:47 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-08-22 15:47 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-08-22 15:46 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-08-22 15:46 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-08-14 17:06 - 2014-08-14 17:06 - 00001490 _____ () C:\Users\******\.recently-used.xbel 2014-08-13 17:07 - 2014-08-13 17:07 - 00000000 ____D () C:\Users\******\.thumbnails 2014-08-13 16:46 - 2014-08-14 17:07 - 00000000 ____D () C:\Users\******\.gimp-2.6 2014-08-13 06:34 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2014-08-13 06:34 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-13 06:34 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2014-08-13 06:34 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2014-08-13 06:10 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-08-13 06:10 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-13 06:10 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-13 06:10 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-08-13 06:10 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-08-13 06:10 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-08-13 06:10 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-08-13 06:10 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-08-13 06:10 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-13 06:10 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-13 06:10 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-08-13 06:10 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-08-13 06:10 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-08-13 06:10 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-08-13 06:10 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-08-13 06:10 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-13 06:10 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-08-13 06:10 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-13 06:10 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-08-13 06:10 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-08-13 06:10 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-13 06:10 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-13 06:10 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-13 06:10 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-08-13 06:10 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-13 06:10 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-08-13 06:10 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-13 06:10 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-08-13 06:10 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-13 06:10 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-13 06:10 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-13 06:10 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-13 06:10 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2014-08-13 06:10 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2014-08-13 06:09 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-08-13 06:08 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-13 06:08 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL 2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL 2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL 2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2014-08-13 06:08 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL 2014-08-13 06:08 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls 2014-08-13 06:08 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-08-13 06:08 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-13 06:08 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-13 06:08 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-13 06:08 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-09 20:40 - 2014-09-09 20:40 - 00015313 _____ () C:\Users\******\Desktop\FRST.txt 2014-09-09 20:40 - 2014-09-09 20:39 - 00000000 ____D () C:\FRST 2014-09-09 20:38 - 2014-09-09 20:38 - 01097728 _____ (Farbar) C:\Users\******\Desktop\FRST.exe 2014-09-09 20:37 - 2014-08-05 15:54 - 00000000 ____D () C:\Users\******\Desktop\Neuer Ordner 2014-09-09 20:36 - 2014-09-09 20:36 - 00000000 _____ () C:\Users\******\defogger_reenable 2014-09-09 20:36 - 2009-12-27 15:17 - 00000000 ____D () C:\Users\****** 2014-09-09 20:35 - 2014-09-09 20:35 - 00050477 _____ () C:\Users\******\Desktop\Defogger.exe 2014-09-09 20:34 - 2014-09-09 20:33 - 00050477 _____ () C:\Users\******\Downloads\Defogger.exe 2014-09-09 20:22 - 2012-05-20 18:06 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-09-09 20:22 - 2012-05-20 18:06 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-09-09 20:22 - 2011-12-21 23:21 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-09-09 19:40 - 2014-08-23 14:59 - 184894464 _____ () C:\Users\Public\Documents\Outlook_Export_MS.pst 2014-09-09 18:36 - 2009-07-14 06:34 - 00022832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-09-09 18:36 - 2009-07-14 06:34 - 00022832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-09-09 18:28 - 2014-09-07 18:09 - 00001131 _____ () C:\Windows\setupact.log 2014-09-09 18:28 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-09-09 14:35 - 2014-09-04 01:19 - 00000194 _____ () C:\Users\******\BullseyeCoverageError.txt 2014-09-09 12:30 - 2014-08-27 19:33 - 00000000 ____D () C:\ProgramData\ProductData 2014-09-09 12:28 - 2014-09-07 18:10 - 00001216 _____ () C:\Windows\PFRO.log 2014-09-09 03:26 - 2010-09-17 02:28 - 00000000 ____D () C:\Users\******\AppData\Roaming\vlc 2014-09-09 03:26 - 2009-12-27 15:02 - 01400650 _____ () C:\Windows\WindowsUpdate.log 2014-09-09 01:16 - 2014-08-31 21:51 - 00000000 ____D () C:\Users\******\AppData\Roaming\uTorrent 2014-09-09 00:28 - 2010-09-17 02:28 - 00000784 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2014-09-09 00:28 - 2010-09-17 02:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-09-09 00:24 - 2010-07-28 18:47 - 00000000 ____D () C:\Users\******\VLC 2014-09-08 23:08 - 2014-08-27 19:31 - 00000000 ____D () C:\Program Files\IObit 2014-09-08 11:56 - 2009-12-27 15:21 - 01619284 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-09-08 03:01 - 2014-06-16 14:35 - 00002687 _____ () C:\Users\Public\Desktop\Skype.lnk 2014-09-08 03:01 - 2010-04-09 17:06 - 00000000 ____D () C:\ProgramData\Skype 2014-09-08 03:00 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE 2014-09-08 02:00 - 2014-09-07 17:35 - 00000000 ____D () C:\Users\******\AppData\Roaming\ALDITALKVerbindungsassistent 2014-09-07 23:43 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2014-09-07 18:16 - 2014-09-07 17:35 - 00000000 ____D () C:\Program Files\ALDITALKVerbindungsassistent 2014-09-07 18:09 - 2014-09-07 18:09 - 00000000 _____ () C:\Windows\setuperr.log 2014-09-07 18:08 - 2014-09-07 18:08 - 00002196 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\ALDI TALK Verbindungsassistent.lnk 2014-09-07 18:08 - 2014-09-07 18:08 - 00002190 _____ () C:\Users\Public\Desktop\ALDI TALK Verbindungsassistent.lnk 2014-09-07 18:08 - 2014-09-07 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALDI TALK Verbindungsassistent 2014-09-07 18:08 - 2014-09-02 14:19 - 00106880 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 01112288 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll 2014-09-07 18:08 - 2014-06-14 18:11 - 01112288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll 2014-09-07 18:08 - 2014-06-14 18:11 - 00860928 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00116736 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00102784 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00082816 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00072576 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00051456 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00026496 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00023424 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00011136 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys 2014-09-07 18:04 - 2014-09-01 17:40 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iobit 2014-09-07 18:04 - 2014-09-01 17:40 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iobit 2014-09-07 18:04 - 2014-09-01 17:40 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iobit 2014-09-07 18:04 - 2014-09-01 17:40 - 00061440 _____ () C:\Windows\system32\config\SAM.iobit 2014-09-07 17:55 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp 2014-09-07 17:54 - 2014-09-07 15:34 - 00000000 ____D () C:\Program Files\Common Files\ShopperPro 2014-09-07 17:54 - 2014-08-27 19:34 - 00000000 ____D () C:\Users\******\AppData\Roaming\ProductData 2014-09-07 17:54 - 2014-08-27 19:29 - 00000000 ____D () C:\Users\******\AppData\Roaming\IObit 2014-09-07 17:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF 2014-09-07 17:53 - 2014-09-07 15:34 - 00000000 ____D () C:\ProgramData\ShopperPro 2014-09-07 17:53 - 2014-09-07 15:32 - 00000000 ____D () C:\Program Files\PodoWeb 2014-09-07 17:53 - 2014-09-05 03:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-09-07 17:53 - 2014-09-05 03:40 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-09-07 17:53 - 2014-09-03 16:34 - 00000000 ____D () C:\Program Files\YTAHelper 2014-09-07 17:53 - 2014-09-03 15:26 - 00000000 ____D () C:\Program Files\SupTab 2014-09-07 17:53 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\IObit 2014-09-07 17:53 - 2012-03-31 11:12 - 00000000 ____D () C:\Program Files\Safari 2014-09-07 17:53 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration 2014-09-07 17:29 - 2014-09-07 17:03 - 00000421 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Die Seite kann nicht angezeigt werden..website 2014-09-07 17:08 - 2010-05-28 11:33 - 00000000 ____D () C:\Users\******\AppData\Local\Apple Computer 2014-09-07 16:29 - 2014-09-07 15:34 - 00000000 ____D () C:\Program Files\ShopperPro 2014-09-07 16:03 - 2014-09-03 16:34 - 00000000 ____D () C:\ProgramData\TEMP 2014-09-07 15:47 - 2014-09-07 15:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator 2014-09-07 15:45 - 2014-09-07 15:45 - 00000000 ____D () C:\ProgramData\2308189059 2014-09-07 15:40 - 2014-09-07 15:40 - 00000000 ____D () C:\Users\******\Documents\Optimizer Pro 2014-09-07 15:35 - 2014-09-07 15:33 - 00000000 ____D () C:\Program Files\IminentToolbar 2014-09-07 15:34 - 2014-09-07 15:34 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro 2014-09-07 15:34 - 2014-09-03 16:34 - 00000000 ____D () C:\ProgramData\YTAHelper 2014-09-06 16:55 - 2014-09-01 17:40 - 32497664 _____ () C:\Windows\system32\config\components.iobit 2014-09-05 13:14 - 2014-09-01 15:18 - 00000306 __RSH () C:\ProgramData\ntuser.pol 2014-09-05 03:46 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2014-09-05 03:44 - 2009-07-14 10:47 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE 2014-09-05 03:42 - 2014-09-05 03:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in 2014-09-04 22:31 - 2014-09-01 22:31 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP3.job 2014-09-04 14:56 - 2009-12-27 15:59 - 00000000 ____D () C:\Users\******\AppData\Local\Microsoft Help 2014-09-04 14:08 - 2014-09-02 18:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3 2014-09-04 14:07 - 2014-09-02 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3 2014-09-04 03:01 - 2009-12-27 15:59 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-09-04 01:19 - 2014-07-26 23:35 - 00000000 ____D () C:\Users\******\AppData\Local\Unity 2014-09-04 01:19 - 2014-07-26 23:35 - 00000000 ____D () C:\Users\******\AppData\Local\Deployment 2014-09-03 19:20 - 2014-09-03 19:10 - 00000000 ____D () C:\Windows\Minidump 2014-09-03 18:16 - 2009-07-14 10:56 - 00000000 ___RD () C:\Users\Public\Recorded TV 2014-09-03 18:09 - 2014-09-03 18:09 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled 2014-09-03 17:21 - 2014-09-03 15:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam 2014-09-03 16:34 - 2014-09-03 16:34 - 00000000 ____D () C:\Users\Public\Documents\YTAHelper 2014-09-03 16:34 - 2014-09-03 16:34 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO 2014-09-03 15:30 - 2014-09-03 15:30 - 00000000 ____D () C:\Users\******\AppData\Local\CrashRpt 2014-09-03 14:00 - 2014-09-03 14:00 - 00000000 ____D () C:\Users\******\AppData\Roaming\AVS4YOU 2014-09-03 14:00 - 2014-09-03 13:59 - 00000000 ____D () C:\ProgramData\AVS4YOU 2014-09-02 22:31 - 2014-09-01 22:31 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP2.job 2014-09-02 18:38 - 2014-09-02 18:38 - 00000000 ____D () C:\Windows\Tasks\TaskDisabled 2014-09-02 14:24 - 2014-09-02 14:24 - 07523840 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwNs32.sys 2014-09-02 14:24 - 2014-09-02 14:24 - 02760704 _____ (Intel Corporation) C:\Windows\system32\NETwNr32.dll 2014-09-02 14:24 - 2014-09-02 14:24 - 00684032 _____ (Intel Corporation) C:\Windows\system32\NETwNc32.dll 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Windows\system32\RTCOM 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Program Files\Realtek 2014-09-02 14:22 - 2014-09-02 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat 2014-09-02 14:22 - 2014-09-02 14:22 - 28062296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 14585432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 11821656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO30.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 07162128 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 06177624 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-09-02 14:22 - 2014-09-02 14:22 - 05086984 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 03683416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 03086040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys 2014-09-02 14:22 - 2014-09-02 14:22 - 02566872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02474200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02421792 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02140976 _____ () C:\Windows\system32\SStudio.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01940056 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01892056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl 2014-09-02 14:22 - 2014-09-02 14:22 - 01823320 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01691224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01509480 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01490264 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01379760 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01292904 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01220200 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01116248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO60.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-09-02 14:22 - 2014-09-02 14:22 - 00987224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00966904 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00966744 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00948336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00916696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00890160 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00819648 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00818936 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00798296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00654952 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00631400 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00606968 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00601704 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00458344 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00389736 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00375400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00357712 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00352016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00274264 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00265376 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00221528 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00219896 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218216 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00214368 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00188696 _____ () C:\Windows\system32\AcpiServiceVnA.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00134584 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00106768 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00091920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00074080 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00068960 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00062224 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00058264 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00029496 _____ () C:\Windows\system32\audioLibVc.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll 2014-09-02 14:21 - 2014-09-02 14:21 - 00084480 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll 2014-09-02 14:21 - 2014-09-02 14:21 - 00077824 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys 2014-09-02 14:20 - 2014-09-02 14:20 - 00718552 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys 2014-09-02 14:20 - 2014-09-02 14:20 - 00100896 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll 2014-09-02 14:20 - 2014-09-02 14:20 - 00076872 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll 2014-09-02 14:19 - 2014-09-02 14:19 - 00377856 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys 2014-09-02 13:32 - 2009-12-28 10:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-09-02 13:28 - 2014-07-10 13:23 - 00000000 ____D () C:\Program Files\QuickTime 2014-09-02 13:28 - 2010-05-07 11:01 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-09-02 13:28 - 2009-12-29 16:37 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2014-09-02 13:28 - 2009-12-28 10:13 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8 2014-09-02 13:28 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar 2014-09-02 13:28 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-09-02 13:11 - 2014-09-02 13:11 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 32219136 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00061440 _____ () C:\Windows\system32\config\SAM.iodefrag.bak 2014-09-01 22:51 - 2014-09-01 22:31 - 00000366 _____ () C:\Windows\Tasks\APSnotifierPP1.job 2014-09-01 22:31 - 2014-09-01 22:31 - 00000320 _____ () C:\Users\******\AppData\Roaming\aps.uninstall.scan.results 2014-09-01 22:29 - 2014-09-01 22:29 - 00631728 _____ (ClickMeIn Limited) C:\Users\******\AppData\Local\nsu410C.tmp 2014-09-01 21:15 - 2014-09-01 21:15 - 00002512 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk 2014-09-01 21:13 - 2014-09-01 21:13 - 00000000 ____D () C:\Users\******\AppData\Local\Maxiget 2014-09-01 17:28 - 2014-04-13 16:56 - 00000000 ____D () C:\Program Files\Avira 2014-09-01 17:24 - 2010-06-16 11:25 - 00000000 ____D () C:\ProgramData\Nero 2014-09-01 17:22 - 2010-04-16 17:21 - 00000000 ____D () C:\Program Files\Common Files\ArcSoft 2014-09-01 17:21 - 2010-04-09 10:40 - 00000000 ____D () C:\Users\******\AppData\Roaming\Canon 2014-09-01 17:21 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\twain_32 2014-09-01 17:20 - 2010-04-08 15:49 - 00000000 ____D () C:\ProgramData\TOSHIBA 2014-09-01 17:18 - 2014-06-16 00:16 - 00000000 ____D () C:\Users\******\AppData\Local\PokerStars.EU 2014-09-01 17:16 - 2014-08-01 16:58 - 00000000 ____D () C:\Users\******\AppData\Roaming\DVDVideoSoft 2014-09-01 17:15 - 2009-12-27 15:17 - 00001418 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-09-01 17:12 - 2014-09-01 15:17 - 00000000 ____D () C:\Users\******\AppData\Roaming\InetStat 2014-09-01 16:55 - 2014-09-01 16:55 - 00000000 ____D () C:\Users\******\AppData\Roaming\Unity 2014-09-01 15:20 - 2014-09-01 15:20 - 00000000 ____D () C:\ProgramData\IePluginServices 2014-09-01 15:20 - 2014-08-26 15:34 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect 2014-09-01 15:17 - 2014-09-01 15:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf 2014-09-01 15:17 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy 2014-08-31 21:56 - 2014-08-31 21:56 - 01575960 _____ () C:\Users\******\Downloads\The_Office_Season_8.exe 2014-08-31 21:50 - 2014-08-31 21:50 - 01938256 _____ (BitTorrent Inc.) C:\Users\******\Downloads\uTorrent_3.4.2.33254.exe 2014-08-29 00:08 - 2009-07-14 06:33 - 00427048 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-27 20:08 - 2012-03-23 13:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader 2014-08-27 20:08 - 2010-06-17 15:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-08-27 20:08 - 2010-04-16 13:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux 2014-08-27 20:08 - 2009-12-29 21:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2014-08-27 20:07 - 2009-12-27 14:58 - 00000000 ____D () C:\Windows\Panther 2014-08-27 19:33 - 2010-05-28 11:33 - 00000000 ____D () C:\Users\******\AppData\Roaming\Apple Computer 2014-08-27 19:32 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} 2014-08-27 19:29 - 2014-08-27 19:27 - 38672200 _____ (IObit ) C:\Users\******\Downloads\asc-setup_7.3.0.454.exe 2014-08-27 18:32 - 2014-08-27 18:32 - 00001100 _____ () C:\Users\Public\Desktop\Avira.lnk 2014-08-27 18:32 - 2014-06-15 01:18 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-27 18:32 - 2014-06-15 01:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2014-08-26 18:41 - 2014-08-26 18:41 - 00001758 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-08-26 18:41 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-08-26 18:41 - 2014-08-26 18:40 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-08-26 18:41 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iTunes 2014-08-26 18:40 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iPod 2014-08-26 18:40 - 2012-03-23 13:24 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-08-26 18:38 - 2014-08-26 18:34 - 111978832 _____ (Apple Inc.) C:\Users\******\Downloads\iTunesSetup (1).exe 2014-08-26 18:26 - 2014-08-26 18:26 - 00152904 ____H () C:\Windows\system32\mlfcache.dat 2014-08-26 15:51 - 2013-09-22 14:51 - 00000000 ____D () C:\Users\******\Documents\Bluetooth 2014-08-26 15:49 - 2014-08-26 15:33 - 00000000 ____D () C:\Program Files\OneBrowse 2014-08-26 15:43 - 2014-08-26 15:43 - 00000000 ____D () C:\Users\******\AppData\Roaming\AppSplash 2014-08-26 15:38 - 2014-08-26 15:38 - 00642592 _____ () C:\Users\******\Downloads\Easy Torrent.exe 2014-08-26 15:36 - 2014-08-26 15:36 - 00001024 _____ () C:\.rnd 2014-08-26 15:31 - 2014-08-26 15:31 - 00033608 _____ () C:\Users\******\Downloads\122309-pthc-collection-cp.torrent 2014-08-23 03:46 - 2014-08-28 12:01 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-23 02:42 - 2014-08-28 12:01 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-15 15:41 - 2010-04-16 17:31 - 00000000 ____D () C:\ProgramData\ArcSoft 2014-08-14 17:07 - 2014-08-13 16:46 - 00000000 ____D () C:\Users\******\.gimp-2.6 2014-08-14 17:06 - 2014-08-14 17:06 - 00001490 _____ () C:\Users\******\.recently-used.xbel 2014-08-13 17:07 - 2014-08-13 17:07 - 00000000 ____D () C:\Users\******\.thumbnails 2014-08-13 17:07 - 2009-12-28 19:21 - 00000000 ____D () C:\Users\******\AppData\Roaming\gtk-2.0 2014-08-13 16:58 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-08-13 15:18 - 2014-06-15 09:08 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-13 06:39 - 2014-06-15 05:38 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-13 06:37 - 2009-12-29 11:15 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe Some content of TEMP: ==================== C:\Users\******\AppData\Local\Temp\1u3a0bqc.5h3.exe C:\Users\******\AppData\Local\Temp\avgnt.exe C:\Users\******\AppData\Local\Temp\BullseyeCoverage-2-x86.dll C:\Users\******\AppData\Local\Temp\Installer.exe C:\Users\******\AppData\Local\Temp\LiveSupport_setup.exe C:\Users\******\AppData\Local\Temp\optprosetup.exe C:\Users\******\AppData\Local\Temp\post1.exe C:\Users\******\AppData\Local\Temp\post2.dll C:\Users\******\AppData\Local\Temp\post2.exe C:\Users\******\AppData\Local\Temp\UNT3B8D.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3B9D.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BAE.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BAF.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BB0.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BB1.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BC2.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BC3.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BC4.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BC5.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3C04.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3C05.tmp.exe C:\Users\******\AppData\Local\Temp\v312dsua.2vf.exe C:\Users\******\AppData\Local\Temp\VersionUpdater.exe C:\Users\******\AppData\Local\Temp\VOPackage.exe C:\Users\******\AppData\Local\Temp\WtgZip.dll C:\Users\******\AppData\Local\Temp\xighxkwn.buq.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-09-06 06:39 ==================== End Of Log ============================ Logfiles Exportierte Ereignisse: 07.09.2014 15:44 [Echtzeit-Scanner] Malware gefunden In der Datei 'C:\Users\******\AppData\Local\Temp\nsy1922.tmp\WrapperUtils.dll' wurde ein Virus oder unerwünschtes Programm 'ADWARE/CrossRider.Gen2' [adware] gefunden. Ausgeführte Aktion: Übergeben an Scanner 07.09.2014 15:44 [Echtzeit-Scanner] Malware gefunden In der Datei 'C:\Users\******\AppData\Local\Temp\nsy1922.tmp\WrapperUtils.dll' wurde ein Virus oder unerwünschtes Programm 'ADWARE/CrossRider.Gen2' [adware] gefunden. Ausgeführte Aktion: Zugriff verweigern  |
| Themen zu Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel |
| adware/crossrider.gen, adware/crossrider.gen2, device driver, driver booster, fehlercode 0x5, fehlercode 0xc0000005, fehlercode 0xe0434352, flash player, iexplore.exe, internet explorer, msil/toolbar.linkury.c, msil/toolbar.linkury.e, msil/toolbar.linkury.f, msil/toolbar.linkury.g, newtab, performanceprobleme, svchost.exe, win32/bundled.toolbar.ask.d, win32/elex.am, win32/elex.av, win32/installcore.by, win32/opencandy.a, win32/shopperpro.a, win32/thinknice.e, win32/toolbar.iminent.i, win32/toolbar.widgi.b, windows |
Baum-Darstellung