| |
| |||||||
Alles rund um Windows: Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet vielWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
09.09.2014, 21:13
| #1 |
 |  Problem: Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Guten Tag zusammen, ich habe meinen Laptop nach einigen Monaten Fremdnutzung durch ein jüngeres Familienmitglied wieder bekommen und wundere mich etwas über die Performance des Rechners. Der Computer wird sehr heiß und scheint selbst im Leerlauf viel arbeiten zu müssen. Bei den Office-Programmen Windows und Excel kam es wiederholt zu "keine Rückmeldung" und automatischer Beendigung des Programms. Auch wenn der Internetzugang nur über einen USB-Stick erfolgt, ist die Nutzung des Internets gefühlt deutlich langsamer und es kommt vermehrt zu "keine Rückmeldung" und automatischer Beendigung des Internet-Explorers. Auf dem Rechner gespeicherte Audio- und Videomedien werden oftmals nicht ruckelfrei abgespielt, was vorher problemlos möglich war. Leider habe ich überhaupt keine Ahnung von Computern und deren Hard- und Software. Daher habe ich nach bestem Wissen und Gewissen die Anleitung zum akkumulieren der benötigten Informationen befolgt. Unglücklicherweise enthielt der Text bei meinem ersten Versuch zu posten zu viele Zeichen, weshalb ich hier ohne FRST poste und diese bei Bedarf gerne nachreiche. Ich wäre über jede Hilfe sehr dankbar, falls sich aus den unten aufgeführten Informationen aus Eurer Sicht sinnvolle Maßnahmen oder Tools ergeben. Vielen Dank für Eure Mühe und Zeit! LG Marcel Hier die Informationen: _____________ Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz RAM 4,00GB (2,96 GB verwendbar) 32 Bit _____________ Addition: Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-09-2014 Ran by ****** at 2014-09-09 20:40:57 Running from C:\Users\******\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft) µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33254 - BitTorrent Inc.) 32 Bit HP CIO Components Installer (Version: 6.1.2 - Hewlett-Packard) Hidden Adobe Acrobat 7.0 Professional (Version: 7.1.0 - Adobe Systems) Hidden Adobe Acrobat 7.1.0 Professional (HKLM\...\Adobe Acrobat 7.0 Professional) (Version: 7.1.0 - Adobe Systems) Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated) Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Reader 9.4.7 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A94000000001}) (Version: 9.4.7 - Adobe Systems Incorporated) ALDI TALK Verbindungsassistent (HKLM\...\ALDITALKVerbindungsassistent) (Version: ALDI TALK 4.0 - ALDI TALK Verbindungsassistent) Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.) Avira (HKLM\...\{e67154a7-9cc5-4167-b782-f3982bc6c70d}) (Version: 1.1.19.30000 - Avira Operations GmbH & Co. KG) Avira (Version: 1.1.19.30000 - Avira Operations GmbH & Co. KG) Hidden Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.6.570 - Avira) Canon MP Navigator EX 1.0 (HKLM\...\MP Navigator EX 1.0) (Version: - ) GIMP 2.6.8 (HKLM\...\WinGimp-2.0_is1) (Version: - ) iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.) IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.27 - Irfan Skiljan) iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.) Java Auto Updater (Version: 2.0.7.1 - Sun Microsystems, Inc.) Hidden Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle) Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation) Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) neroxml (Version: 1.0.0 - Nero AG) Hidden QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.) Safari (HKLM\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.) Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.3.0 - Synaptics Incorporated) Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft) Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883097) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B2260BC9-D561-46EE-B33D-739CF760A2A9}) (Version: - Microsoft) Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft) Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft) Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft) VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN) WinRAR (HKLM\...\WinRAR archiver) (Version: - ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1524326991-2445942720-3436998146-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\******\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {151FF12D-ADF8-4F3A-BD38-BCEF3F6185AF} - System32\Tasks\APSnotifierPP3 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {244B04CA-E241-481E-BF75-6C2E79955F94} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {25A1E566-D013-4194-B473-33B32903B9AD} - System32\Tasks\APSnotifierPP2 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {401A8ECE-9A07-49B5-9D79-8BB8EF9BE355} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup Task: {42DEED7E-CDA8-4C46-A285-459A6C50AE4A} - System32\Tasks\APSnotifierPP1 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {4DC94271-DFE2-481C-8218-20CCCD668DC0} - System32\Tasks\Ad-Aware Update (Daily 3) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {87D83740-CBAC-4465-A329-659526C1FC99} - System32\Tasks\{2ADF7B21-0589-4944-AC43-5F58E8B6CA34} => C:\Program Files\Skype\Phone\Skype.exe Task: {8C114D9A-4D77-4A5B-8B8B-ECBA00900DC1} - System32\Tasks\SmartDefrag3_Startup => C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe Task: {9E157639-B621-44A8-8121-7BA0B4CBECE9} - System32\Tasks\{9FE159AC-B86F-4EC0-ACBF-83BF95C53952} => C:\Program Files\Microsoft Office\Office12\POWERPNT.EXE [2011-05-31] (Microsoft Corporation) Task: {9EFCE3B5-8872-42B9-83DE-E56A6EB44849} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09] (Adobe Systems Incorporated) Task: {AAFF2CE9-5119-4670-AE15-38533AD9B8FC} - System32\Tasks\SmartDefrag3_Update => C:\Program Files\IObit\Smart Defrag 3\AutoUpdate.exe Task: {ABAFDF82-6741-4249-BABA-2E23D6159D3B} - System32\Tasks\Ad-Aware Update (Daily 4) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {B1AF3746-8B7E-4FE7-AE70-59718A47F9E9} - System32\Tasks\Ad-Aware Update (Daily 1) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {BBE82FCA-E9C0-472E-997A-9A24A3EF9155} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe Task: {D528C896-64FE-4CDB-8A4B-F2DEA08BA359} - System32\Tasks\Driver Booster SkipUAC (******) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe Task: {FFBC413C-0999-441E-9F84-4635F568B5FD} - System32\Tasks\Ad-Aware Update (Daily 2) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Ad-Aware Update (Daily 1).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Ad-Aware Update (Daily 2).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Ad-Aware Update (Daily 3).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Ad-Aware Update (Daily 4).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Ad-Aware Update (Weekly).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION ==================== Loaded Modules (whitelisted) ============= 2009-12-29 21:13 - 2001-10-28 18:42 - 00116224 _____ () C:\Windows\System32\pdfcmnnt.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00358968 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe 2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2014-08-04 14:20 - 2014-08-04 14:20 - 00139056 _____ () C:\Program Files\Avira\My Avira\Avira.OE.NativeCore.dll 2014-08-04 14:20 - 2014-08-04 14:20 - 00067832 _____ () C:\Program Files\Avira\My Avira\Avira.OE.AvConnectorNative.dll 2009-12-28 16:44 - 2009-12-12 16:12 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll 2014-09-07 18:11 - 2014-08-04 14:20 - 00052472 _____ () C:\Users\******\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00510520 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe 2014-09-07 18:08 - 2014-09-07 18:16 - 01792568 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe 2014-09-07 18:08 - 2014-09-07 18:16 - 00102400 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDatabase.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00106496 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgUtil.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00090112 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgPorts.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00200704 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDetection.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00086016 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDialup.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00012288 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGDebugs.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00073728 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDriverInstall.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00569344 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgCore.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00139264 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgBluetooth.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00204800 _____ () C:\Program Files\ALDITALKVerbindungsassistent\LiveBoxCM.dll 2014-09-07 18:08 - 2007-02-27 19:44 - 00823296 ____N () C:\Program Files\ALDITALKVerbindungsassistent\LIBEAY32.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00126976 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgWiFi.dll 2014-09-07 18:08 - 2010-12-02 08:33 - 01097728 ____N () C:\Program Files\ALDITALKVerbindungsassistent\NDISAPI.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00614400 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGXMLUtil.dll 2014-09-07 18:08 - 2014-09-07 18:16 - 00303104 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGSMSPCClient.Dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Acrobat Assistant 7.0 => c:\program files\adobe\acrobat 7.0\distillr\acrotray.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/09/2014 04:44:40 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm iexplore.exe, Version 11.0.9600.17239 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: cc4 Startzeit: 01cfcc3a88908c27 Endzeit: 30 Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe Berichts-ID: 21b8519e-382f-11e4-9430-001e101fb4df Error: (09/08/2014 06:11:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 11.0.9600.17239, Zeitstempel: 0x53d22946 Name des fehlerhaften Moduls: Flash32_14_0_0_145.ocx, Version: 14.0.0.145, Zeitstempel: 0x53aa18ec Ausnahmecode: 0xc0000005 Fehleroffset: 0x002c46f4 ID des fehlerhaften Prozesses: 0xe90 Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0 Pfad der fehlerhaften Anwendung: iexplore.exe1 Pfad des fehlerhaften Moduls: iexplore.exe2 Berichtskennung: iexplore.exe3 Error: (09/07/2014 05:33:59 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: Avira.OE.ServiceHost.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.ComponentModel.Composition.CompositionException Stapel: bei System.ComponentModel.Composition.Hosting.CompositionServices.GetExportedValueFromComposedPart(System.ComponentModel.Composition.Hosting.ImportEngine, System.ComponentModel.Composition.Primitives.ComposablePart, System.ComponentModel.Composition.Primitives.ExportDefinition) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider.GetExportedValue(CatalogPart, System.ComponentModel.Composition.Primitives.ExportDefinition, Boolean) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider+CatalogExport.GetExportedValueCore() bei System.ComponentModel.Composition.Primitives.Export.get_Value() bei System.ComponentModel.Composition.ExportServices.GetCastedExportedValue[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.ComponentModel.Composition.Primitives.Export) bei System.ComponentModel.Composition.Hosting.ExportProvider.GetExportedValueCore[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.String, System.ComponentModel.Composition.Primitives.ImportCardinality) bei Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object) bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() bei System.Threading.ThreadPoolWorkQueue.Dispatch() bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (09/07/2014 05:33:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: Avira.OE.ServiceHost.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.ComponentModel.Composition.CompositionException Stapel: bei System.ComponentModel.Composition.Hosting.CompositionServices.GetExportedValueFromComposedPart(System.ComponentModel.Composition.Hosting.ImportEngine, System.ComponentModel.Composition.Primitives.ComposablePart, System.ComponentModel.Composition.Primitives.ExportDefinition) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider.GetExportedValue(CatalogPart, System.ComponentModel.Composition.Primitives.ExportDefinition, Boolean) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider+CatalogExport.GetExportedValueCore() bei System.ComponentModel.Composition.Primitives.Export.get_Value() bei System.ComponentModel.Composition.ExportServices.GetCastedExportedValue[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.ComponentModel.Composition.Primitives.Export) bei System.ComponentModel.Composition.Hosting.ExportProvider.GetExportedValueCore[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.String, System.ComponentModel.Composition.Primitives.ImportCardinality) bei Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object) bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() bei System.Threading.ThreadPoolWorkQueue.Dispatch() bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (09/07/2014 05:33:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Avira.OE.Systray.exe, Version: 1.1.19.30000, Zeitstempel: 0x53df7a63 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x531599f6 Ausnahmecode: 0xe0434352 Fehleroffset: 0x0000812f ID des fehlerhaften Prozesses: 0xa54 Startzeit der fehlerhaften Anwendung: 0xAvira.OE.Systray.exe0 Pfad der fehlerhaften Anwendung: Avira.OE.Systray.exe1 Pfad des fehlerhaften Moduls: Avira.OE.Systray.exe2 Berichtskennung: Avira.OE.Systray.exe3 Error: (09/07/2014 05:33:26 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: Avira.OE.Systray.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.Net.Sockets.SocketException Stapel: bei System.Net.SafeCloseSocketAndEvent.CreateWSASocketWithEvent(System.Net.Sockets.AddressFamily, System.Net.Sockets.SocketType, System.Net.Sockets.ProtocolType, Boolean, Boolean) bei System.Net.NetworkInformation.NetworkChange+AddressChangeListener.StartHelper(System.Net.NetworkInformation.NetworkAddressChangedEventHandler, Boolean, System.Net.NetworkInformation.StartIPOptions) bei Avira.OE.WinCore.NetworkStatusListener..ctor() bei Avira.OE.WinCore.InternetConnectionMonitor..ctor() bei Avira.OE.Systray.SystrayIcon..ctor(Avira.OE.WinCore.Interface.IServiceStatusMonitor, Avira.OE.Communicator.Interface.ICommunicatorClientProxy, Avira.OE.MiniGui.IMiniGuiWindow) bei Avira.OE.Systray.SystrayIcon..ctor() bei Avira.OE.Systray.Program.Main(System.String[]) Error: (09/07/2014 05:33:19 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Anwendung: Avira.OE.ServiceHost.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet. Ausnahmeinformationen: System.ComponentModel.Composition.CompositionException Stapel: bei System.ComponentModel.Composition.Hosting.CompositionServices.GetExportedValueFromComposedPart(System.ComponentModel.Composition.Hosting.ImportEngine, System.ComponentModel.Composition.Primitives.ComposablePart, System.ComponentModel.Composition.Primitives.ExportDefinition) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider.GetExportedValue(CatalogPart, System.ComponentModel.Composition.Primitives.ExportDefinition, Boolean) bei System.ComponentModel.Composition.Hosting.CatalogExportProvider+CatalogExport.GetExportedValueCore() bei System.ComponentModel.Composition.Primitives.Export.get_Value() bei System.ComponentModel.Composition.ExportServices.GetCastedExportedValue[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.ComponentModel.Composition.Primitives.Export) bei System.ComponentModel.Composition.Hosting.ExportProvider.GetExportedValueCore[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.String, System.ComponentModel.Composition.Primitives.ImportCardinality) bei Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object) bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() bei System.Threading.ThreadPoolWorkQueue.Dispatch() bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (09/07/2014 05:33:00 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (09/07/2014 05:26:37 PM) (Source: Schedule) (EventID: 0) (User: ) Description: Schedule error: 10106Initialize call failed, bailing out Error: (09/07/2014 05:24:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: Avira.OE.Systray.exe, Version: 1.1.19.30000, Zeitstempel: 0x53df7a63 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x531599f6 Ausnahmecode: 0xe0434352 Fehleroffset: 0x0000812f ID des fehlerhaften Prozesses: 0xc9c Startzeit der fehlerhaften Anwendung: 0xAvira.OE.Systray.exe0 Pfad der fehlerhaften Anwendung: Avira.OE.Systray.exe1 Pfad des fehlerhaften Moduls: Avira.OE.Systray.exe2 Berichtskennung: Avira.OE.Systray.exe3 System errors: ============= Error: (09/09/2014 06:28:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "IMF Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 Error: (09/09/2014 06:27:49 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (09/09/2014 06:27:49 PM) (Source: atikmdag) (EventID: 19468) (User: ) Description: CPLIB :: General - Invalid Parameter Error: (09/09/2014 04:42:00 PM) (Source: volsnap) (EventID: 14) (User: ) Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen. Error: (09/09/2014 04:36:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht. Error: (09/09/2014 04:35:27 PM) (Source: atapi) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort1 gefunden. Error: (09/09/2014 04:35:27 PM) (Source: atapi) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort1 gefunden. Error: (09/09/2014 04:27:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "IMF Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 Error: (09/09/2014 04:27:10 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (09/09/2014 04:27:10 PM) (Source: atikmdag) (EventID: 19468) (User: ) Description: CPLIB :: General - Invalid Parameter Microsoft Office Sessions: ========================= Error: (08/23/2014 03:01:34 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 131 seconds with 120 seconds of active time. This session ended with a crash. Error: (06/16/2010 09:36:31 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1831 seconds with 180 seconds of active time. This session ended with a crash. Error: (06/07/2010 05:35:52 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 18826 seconds with 7620 seconds of active time. This session ended with a crash. Error: (05/26/2010 06:01:02 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6524.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 31613 seconds with 6000 seconds of active time. This session ended with a crash. Error: (05/11/2010 10:58:23 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7071 seconds with 480 seconds of active time. This session ended with a crash. Error: (12/28/2009 00:02:20 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 4242 seconds with 540 seconds of active time. This session ended with a crash. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz Percentage of memory in use: 43% Total physical RAM: 3036.87 MB Available physical RAM: 1720.68 MB Total Pagefile: 6072.03 MB Available Pagefile: 4671.88 MB Total Virtual: 2047.88 MB Available Virtual: 1900.36 MB ==================== Drives ================================ Drive c: (Vista) (Fixed) (Total:232.88 GB) (Free:192.98 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive e: (Data) (Fixed) (Total:209.93 GB) (Free:71.34 GB) NTFS Drive f: (Disk) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS Drive m: (Volume) (Fixed) (Total:21.48 GB) (Free:18.65 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7878FC96) Partition 1: (Not Active) - (Size=1.5 GB) - (Type=27) Partition 2: (Active) - (Size=232.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=209.9 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=21.5 GB) - (Type=OF Extended) ==================== End Of Log ============================ Defogger defogger_disable by jpshortstuff (23.02.10.1) Log created at 20:36 on 09/09/2014 (******) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=- ______________________________ Gmer Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-09-2014 Ran by ****** (administrator) on ******-PC on 09-09-2014 20:40:08 Running from C:\Users\******\Desktop Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1557800 2009-08-28] (Synaptics Incorporated) HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-09-08] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-30] (Adobe Systems Incorporated) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-07] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.) HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [161584 2014-08-04] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\Run: [updateMgr] => C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe [313472 2006-03-30] (Adobe Systems Incorporated) HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: F - F:\.\Setup.exe AUTORUN=1 HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: G - G:\.\Setup.exe AUTORUN=1 HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: {4a84b98b-36a7-11e4-a4ae-00235afe286c} - F:\.\Setup.exe AUTORUN=1 HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: {69de16ea-f3dc-11e3-b45c-0024d2d95ef8} - F:\.\Setup.exe AUTORUN=1 HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\MountPoints2: {69de1724-f3dc-11e3-b45c-0024d2d95ef8} - G:\.\Setup.exe AUTORUN=1 Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk ShortcutTarget: Launcher.lnk -> C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe () GroupPolicy: Group Policy on Chrome detected <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StLKYZZHUxozG7WbG8M4ZbpPFmdMdnxsM5TEzN82KkLVDC7nIWUVyhe8-jGmFHKigyiibi5_wvx2BTfa2y-JqDdfzYF1WK3XQ13JA9dG80JaqP1vUr-RfvY7fVa-nAl3Ac4CqITLtkUZ7zvzaoZMTXpr0Sai5HpOjNHfpzC0Mq70ZZqFR0XMrz7cDJaLqKPFAVCHhwBOWZYw,,&q={searchTerms} HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.de/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1409577493&from=irs&uid=TOSHIBAXMK5055GSX_79HDF2VVSXX79HDF2VVS&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1409577493&from=irs&uid=TOSHIBAXMK5055GSX_79HDF2VVSXX79HDF2VVS&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1409577493&from=irs&uid=TOSHIBAXMK5055GSX_79HDF2VVSXX79HDF2VVS SearchScopes: HKCU - DefaultScope {6503D225-0679-4A45-BF32-E6813F160CFD} URL = https://www.google.com/search?q={searchTerms} SearchScopes: HKCU - {6503D225-0679-4A45-BF32-E6813F160CFD} URL = https://www.google.com/search?q={searchTerms} BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\..\Interfaces\{82091C62-541E-41CD-A865-F884D15D3A24}: [NameServer] 212.23.115.84 212.23.115.150 FireFox: ======== FF ProfilePath: C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default FF DefaultSearchEngine: Yahoo FF SelectedSearchEngine: Yahoo FF Homepage: hxxp://go.microsoft.com/fwlink/?LinkId=69157 FF Keyword.URL: hxxp://de.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p= FF NewTab: about:newtab FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @java.com/JavaPlugin -> E:\Avira\bin\plugin2\npjp2.dll No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\******\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.) FF SearchPlugin: C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\searchplugins\iminent.xml FF Extension: Ant Video Downloader - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\anttoolbar@ant.com [2012-05-20] FF Extension: NoSquint - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\nosquint@urandom.ca [2012-05-20] FF Extension: No Name - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} [2014-06-16] FF Extension: Iminent - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\firefoxmini@go.im.xpi [2014-09-03] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2012-03-23] FF Extension: No Name - C:\Program Files\Common Files\Spigot\wtxpcom [Not Found] FF Extension: No Name - C:\Program Files\YTD Toolbar\FF [Not Found] FF Extension: No Name - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\ascsurfingprotection@iobit.com [Not Found] FF Extension: No Name - C:\Program Files\IObit Apps Toolbar\FF [Not Found] FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] Chrome: ======= ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [69632 2010-07-05] (Adobe Systems) [File not signed] R2 ALDITALKVerbindungsassistent_Service; C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe [358968 2014-09-07] () R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG) R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [149296 2014-08-04] (Avira Operations GmbH & Co. KG) R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-09-01] (Cherished Technololgy LIMITED) S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-09-04] (IObit) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [File not signed] S2 SkypeUpdate; E:\Program Files\Skype\Updater\Updater.exe [172192 2013-10-23] (Skype Technologies) S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X] S2 IMFservice; No ImagePath ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [97648 2014-07-03] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-05-09] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2014-05-09] (Avira Operations GmbH & Co. KG) S3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [28944 2008-02-29] (Logitech, Inc.) R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7523840 2014-09-02] (Intel Corporation) R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624 2014-06-04] (IObit) R1 SSHDRV82; C:\Windows\system32\drivers\SSHDRV82.sys [76288 2011-03-27] () [File not signed] R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2014-05-09] (Avira GmbH) S3 FileMonitor; No ImagePath S3 UrlFilter; No ImagePath S3 WinRing0_1_2_0; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-09 20:40 - 2014-09-09 20:40 - 00015313 _____ () C:\Users\******\Desktop\FRST.txt 2014-09-09 20:39 - 2014-09-09 20:40 - 00000000 ____D () C:\FRST 2014-09-09 20:38 - 2014-09-09 20:38 - 01097728 _____ (Farbar) C:\Users\******\Desktop\FRST.exe 2014-09-09 20:36 - 2014-09-09 20:36 - 00000000 _____ () C:\Users\******\defogger_reenable 2014-09-09 20:35 - 2014-09-09 20:35 - 00050477 _____ () C:\Users\******\Desktop\Defogger.exe 2014-09-09 20:33 - 2014-09-09 20:34 - 00050477 _____ () C:\Users\******\Downloads\Defogger.exe 2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-09-07 18:10 - 2014-09-09 12:28 - 00001216 _____ () C:\Windows\PFRO.log 2014-09-07 18:09 - 2014-09-09 18:28 - 00001131 _____ () C:\Windows\setupact.log 2014-09-07 18:09 - 2014-09-07 18:09 - 00000000 _____ () C:\Windows\setuperr.log 2014-09-07 18:08 - 2014-09-07 18:08 - 00002196 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\ALDI TALK Verbindungsassistent.lnk 2014-09-07 18:08 - 2014-09-07 18:08 - 00002190 _____ () C:\Users\Public\Desktop\ALDI TALK Verbindungsassistent.lnk 2014-09-07 18:08 - 2014-09-07 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALDI TALK Verbindungsassistent 2014-09-07 17:35 - 2014-09-08 02:00 - 00000000 ____D () C:\Users\******\AppData\Roaming\ALDITALKVerbindungsassistent 2014-09-07 17:35 - 2014-09-07 18:16 - 00000000 ____D () C:\Program Files\ALDITALKVerbindungsassistent 2014-09-07 17:03 - 2014-09-07 17:29 - 00000421 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Die Seite kann nicht angezeigt werden..website 2014-09-07 15:45 - 2014-09-07 15:45 - 00000000 ____D () C:\ProgramData\2308189059 2014-09-07 15:40 - 2014-09-07 15:40 - 00000000 ____D () C:\Users\******\Documents\Optimizer Pro 2014-09-07 15:34 - 2014-09-07 17:54 - 00000000 ____D () C:\Program Files\Common Files\ShopperPro 2014-09-07 15:34 - 2014-09-07 17:53 - 00000000 ____D () C:\ProgramData\ShopperPro 2014-09-07 15:34 - 2014-09-07 16:29 - 00000000 ____D () C:\Program Files\ShopperPro 2014-09-07 15:34 - 2014-09-07 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator 2014-09-07 15:34 - 2014-09-07 15:34 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro 2014-09-07 15:33 - 2014-09-07 15:35 - 00000000 ____D () C:\Program Files\IminentToolbar 2014-09-07 15:32 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\PodoWeb 2014-09-05 23:00 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-09-05 14:40 - 2014-05-08 11:06 - 02742784 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-09-05 14:40 - 2014-05-08 11:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-09-05 03:42 - 2014-09-05 03:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in 2014-09-05 03:42 - 2012-08-23 16:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2014-09-05 03:42 - 2012-08-23 16:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2014-09-05 03:42 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2014-09-05 03:41 - 2014-09-07 17:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-09-05 03:41 - 2013-10-02 02:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2014-09-05 03:41 - 2013-10-02 02:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2014-09-05 03:41 - 2013-10-02 02:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2014-09-05 03:41 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2014-09-05 03:41 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2014-09-05 03:41 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-09-05 03:41 - 2013-10-02 01:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2014-09-05 03:41 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2014-09-05 03:41 - 2013-10-02 01:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2014-09-05 03:41 - 2013-10-02 00:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2014-09-05 03:41 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-09-05 03:40 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-09-05 03:38 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2014-09-05 03:38 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-09-04 01:19 - 2014-09-09 14:35 - 00000194 _____ () C:\Users\******\BullseyeCoverageError.txt 2014-09-03 19:10 - 2014-09-03 19:20 - 00000000 ____D () C:\Windows\Minidump 2014-09-03 18:09 - 2014-09-03 18:09 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled 2014-09-03 16:34 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\YTAHelper 2014-09-03 16:34 - 2014-09-07 16:03 - 00000000 ____D () C:\ProgramData\TEMP 2014-09-03 16:34 - 2014-09-07 15:34 - 00000000 ____D () C:\ProgramData\YTAHelper 2014-09-03 16:34 - 2014-09-03 16:34 - 00000000 ____D () C:\Users\Public\Documents\YTAHelper 2014-09-03 16:34 - 2014-09-03 16:34 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO 2014-09-03 15:30 - 2014-09-03 17:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam 2014-09-03 15:30 - 2014-09-03 15:30 - 00000000 ____D () C:\Users\******\AppData\Local\CrashRpt 2014-09-03 15:26 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\SupTab 2014-09-03 14:00 - 2014-09-03 14:00 - 00000000 ____D () C:\Users\******\AppData\Roaming\AVS4YOU 2014-09-03 13:59 - 2014-09-03 14:00 - 00000000 ____D () C:\ProgramData\AVS4YOU 2014-09-02 18:42 - 2014-09-04 14:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3 2014-09-02 18:38 - 2014-09-02 18:38 - 00000000 ____D () C:\Windows\Tasks\TaskDisabled 2014-09-02 14:34 - 2014-06-04 15:17 - 00031008 _____ (IObit) C:\Windows\system32\SmartDefragBootTime.exe 2014-09-02 14:32 - 2014-09-04 14:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3 2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll20140902193225.dll 2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll20140902143413.dll 2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll 2014-09-02 14:32 - 2014-06-04 15:17 - 00018624 _____ (IObit) C:\Windows\system32\Drivers\SmartDefragDriver.sys 2014-09-02 14:24 - 2014-09-02 14:24 - 07523840 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwNs32.sys 2014-09-02 14:24 - 2014-09-02 14:24 - 02760704 _____ (Intel Corporation) C:\Windows\system32\NETwNr32.dll 2014-09-02 14:24 - 2014-09-02 14:24 - 00684032 _____ (Intel Corporation) C:\Windows\system32\NETwNc32.dll 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Windows\system32\RTCOM 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Program Files\Realtek 2014-09-02 14:22 - 2014-09-02 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat 2014-09-02 14:22 - 2014-09-02 14:22 - 28062296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 14585432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 11821656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO30.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 07162128 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 06177624 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-09-02 14:22 - 2014-09-02 14:22 - 05086984 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 03683416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 03086040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys 2014-09-02 14:22 - 2014-09-02 14:22 - 02566872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02474200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02421792 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02140976 _____ () C:\Windows\system32\SStudio.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01940056 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01892056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl 2014-09-02 14:22 - 2014-09-02 14:22 - 01823320 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01691224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01509480 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01490264 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01379760 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01292904 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01220200 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01116248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO60.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-09-02 14:22 - 2014-09-02 14:22 - 00987224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00966904 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00966744 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00948336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00916696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00890160 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00819648 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00818936 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00798296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00654952 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00631400 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00606968 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00601704 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00458344 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00389736 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00375400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00357712 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00352016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00274264 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00265376 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00221528 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00219896 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218216 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00214368 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00188696 _____ () C:\Windows\system32\AcpiServiceVnA.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00134584 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00106768 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00091920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00074080 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00068960 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00062224 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00058264 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00029496 _____ () C:\Windows\system32\audioLibVc.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll 2014-09-02 14:21 - 2014-09-02 14:21 - 00084480 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll 2014-09-02 14:21 - 2014-09-02 14:21 - 00077824 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys 2014-09-02 14:20 - 2014-09-02 14:20 - 00718552 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys 2014-09-02 14:20 - 2014-09-02 14:20 - 00100896 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll 2014-09-02 14:20 - 2014-09-02 14:20 - 00076872 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll 2014-09-02 14:19 - 2014-09-07 18:08 - 00106880 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys 2014-09-02 14:19 - 2014-09-02 14:19 - 00377856 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys 2014-09-02 13:11 - 2014-09-02 13:11 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 32219136 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00061440 _____ () C:\Windows\system32\config\SAM.iodefrag.bak 2014-09-01 22:31 - 2014-09-04 22:31 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP3.job 2014-09-01 22:31 - 2014-09-02 22:31 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP2.job 2014-09-01 22:31 - 2014-09-01 22:51 - 00000366 _____ () C:\Windows\Tasks\APSnotifierPP1.job 2014-09-01 22:31 - 2014-09-01 22:31 - 00000320 _____ () C:\Users\******\AppData\Roaming\aps.uninstall.scan.results 2014-09-01 22:29 - 2014-09-01 22:29 - 00631728 _____ (ClickMeIn Limited) C:\Users\******\AppData\Local\nsu410C.tmp 2014-09-01 21:15 - 2014-09-01 21:15 - 00002512 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk 2014-09-01 21:13 - 2014-09-01 21:13 - 00000000 ____D () C:\Users\******\AppData\Local\Maxiget 2014-09-01 17:42 - 2014-02-17 13:41 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe 2014-09-01 17:40 - 2014-09-07 18:04 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iobit 2014-09-01 17:40 - 2014-09-07 18:04 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iobit 2014-09-01 17:40 - 2014-09-07 18:04 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iobit 2014-09-01 17:40 - 2014-09-07 18:04 - 00061440 _____ () C:\Windows\system32\config\SAM.iobit 2014-09-01 17:40 - 2014-09-06 16:55 - 32497664 _____ () C:\Windows\system32\config\components.iobit 2014-09-01 16:55 - 2014-09-01 16:55 - 00000000 ____D () C:\Users\******\AppData\Roaming\Unity 2014-09-01 15:20 - 2014-09-01 15:20 - 00000000 ____D () C:\ProgramData\IePluginServices 2014-09-01 15:18 - 2014-09-05 13:14 - 00000306 __RSH () C:\ProgramData\ntuser.pol 2014-09-01 15:17 - 2014-09-01 17:12 - 00000000 ____D () C:\Users\******\AppData\Roaming\InetStat 2014-09-01 15:17 - 2014-09-01 15:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf 2014-08-31 21:56 - 2014-08-31 21:56 - 01575960 _____ () C:\Users\******\Downloads\The_Office_Season_8.exe 2014-08-31 21:51 - 2014-09-09 01:16 - 00000000 ____D () C:\Users\******\AppData\Roaming\uTorrent 2014-08-31 21:50 - 2014-08-31 21:50 - 01938256 _____ (BitTorrent Inc.) C:\Users\******\Downloads\uTorrent_3.4.2.33254.exe 2014-08-28 12:01 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-28 12:01 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-27 19:34 - 2014-09-07 17:54 - 00000000 ____D () C:\Users\******\AppData\Roaming\ProductData 2014-08-27 19:33 - 2014-09-09 12:30 - 00000000 ____D () C:\ProgramData\ProductData 2014-08-27 19:32 - 2014-09-07 17:53 - 00000000 ____D () C:\ProgramData\IObit 2014-08-27 19:32 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} 2014-08-27 19:31 - 2014-09-08 23:08 - 00000000 ____D () C:\Program Files\IObit 2014-08-27 19:29 - 2014-09-07 17:54 - 00000000 ____D () C:\Users\******\AppData\Roaming\IObit 2014-08-27 19:27 - 2014-08-27 19:29 - 38672200 _____ (IObit ) C:\Users\******\Downloads\asc-setup_7.3.0.454.exe 2014-08-27 18:32 - 2014-08-27 18:32 - 00001100 _____ () C:\Users\Public\Desktop\Avira.lnk 2014-08-26 18:41 - 2014-08-26 18:41 - 00001758 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-08-26 18:41 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-08-26 18:41 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys 2014-08-26 18:40 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-08-26 18:40 - 2014-08-26 18:41 - 00000000 ____D () C:\Program Files\iTunes 2014-08-26 18:40 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iPod 2014-08-26 18:34 - 2014-08-26 18:38 - 111978832 _____ (Apple Inc.) C:\Users\******\Downloads\iTunesSetup (1).exe 2014-08-26 18:26 - 2014-08-26 18:26 - 00152904 ____H () C:\Windows\system32\mlfcache.dat 2014-08-26 15:43 - 2014-08-26 15:43 - 00000000 ____D () C:\Users\******\AppData\Roaming\AppSplash 2014-08-26 15:38 - 2014-08-26 15:38 - 00642592 _____ () C:\Users\******\Downloads\Easy Torrent.exe 2014-08-26 15:36 - 2014-08-26 15:36 - 00001024 _____ () C:\.rnd 2014-08-26 15:34 - 2014-09-01 15:20 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect 2014-08-26 15:33 - 2014-08-26 15:49 - 00000000 ____D () C:\Program Files\OneBrowse 2014-08-26 15:31 - 2014-08-26 15:31 - 00033608 _____ () C:\Users\******\Downloads\122309-pthc-collection-cp.torrent 2014-08-23 14:59 - 2014-09-09 19:40 - 184894464 _____ () C:\Users\Public\Documents\Outlook_Export_MS.pst 2014-08-22 15:47 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-08-22 15:47 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-08-22 15:47 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-08-22 15:47 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-08-22 15:47 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-08-22 15:47 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-08-22 15:47 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-08-22 15:46 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-08-22 15:46 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-08-14 17:06 - 2014-08-14 17:06 - 00001490 _____ () C:\Users\******\.recently-used.xbel 2014-08-13 17:07 - 2014-08-13 17:07 - 00000000 ____D () C:\Users\******\.thumbnails 2014-08-13 16:46 - 2014-08-14 17:07 - 00000000 ____D () C:\Users\******\.gimp-2.6 2014-08-13 06:34 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2014-08-13 06:34 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-13 06:34 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2014-08-13 06:34 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2014-08-13 06:10 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-08-13 06:10 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-13 06:10 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-13 06:10 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-08-13 06:10 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-08-13 06:10 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-08-13 06:10 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-08-13 06:10 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-08-13 06:10 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-13 06:10 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-13 06:10 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-08-13 06:10 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-08-13 06:10 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-08-13 06:10 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-08-13 06:10 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-08-13 06:10 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-13 06:10 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-08-13 06:10 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-13 06:10 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-08-13 06:10 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-08-13 06:10 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-13 06:10 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-13 06:10 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-13 06:10 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-08-13 06:10 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-13 06:10 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-08-13 06:10 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-13 06:10 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-08-13 06:10 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-13 06:10 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-13 06:10 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-13 06:10 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-13 06:10 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2014-08-13 06:10 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2014-08-13 06:09 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-08-13 06:08 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-13 06:08 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL 2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL 2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL 2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2014-08-13 06:08 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL 2014-08-13 06:08 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls 2014-08-13 06:08 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-08-13 06:08 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-13 06:08 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-13 06:08 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-13 06:08 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-09 20:40 - 2014-09-09 20:40 - 00015313 _____ () C:\Users\******\Desktop\FRST.txt 2014-09-09 20:40 - 2014-09-09 20:39 - 00000000 ____D () C:\FRST 2014-09-09 20:38 - 2014-09-09 20:38 - 01097728 _____ (Farbar) C:\Users\******\Desktop\FRST.exe 2014-09-09 20:37 - 2014-08-05 15:54 - 00000000 ____D () C:\Users\******\Desktop\Neuer Ordner 2014-09-09 20:36 - 2014-09-09 20:36 - 00000000 _____ () C:\Users\******\defogger_reenable 2014-09-09 20:36 - 2009-12-27 15:17 - 00000000 ____D () C:\Users\****** 2014-09-09 20:35 - 2014-09-09 20:35 - 00050477 _____ () C:\Users\******\Desktop\Defogger.exe 2014-09-09 20:34 - 2014-09-09 20:33 - 00050477 _____ () C:\Users\******\Downloads\Defogger.exe 2014-09-09 20:22 - 2012-05-20 18:06 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-09-09 20:22 - 2012-05-20 18:06 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-09-09 20:22 - 2011-12-21 23:21 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-09-09 19:40 - 2014-08-23 14:59 - 184894464 _____ () C:\Users\Public\Documents\Outlook_Export_MS.pst 2014-09-09 18:36 - 2009-07-14 06:34 - 00022832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-09-09 18:36 - 2009-07-14 06:34 - 00022832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-09-09 18:28 - 2014-09-07 18:09 - 00001131 _____ () C:\Windows\setupact.log 2014-09-09 18:28 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-09-09 14:35 - 2014-09-04 01:19 - 00000194 _____ () C:\Users\******\BullseyeCoverageError.txt 2014-09-09 12:30 - 2014-08-27 19:33 - 00000000 ____D () C:\ProgramData\ProductData 2014-09-09 12:28 - 2014-09-07 18:10 - 00001216 _____ () C:\Windows\PFRO.log 2014-09-09 03:26 - 2010-09-17 02:28 - 00000000 ____D () C:\Users\******\AppData\Roaming\vlc 2014-09-09 03:26 - 2009-12-27 15:02 - 01400650 _____ () C:\Windows\WindowsUpdate.log 2014-09-09 01:16 - 2014-08-31 21:51 - 00000000 ____D () C:\Users\******\AppData\Roaming\uTorrent 2014-09-09 00:28 - 2010-09-17 02:28 - 00000784 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2014-09-09 00:28 - 2010-09-17 02:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-09-09 00:24 - 2010-07-28 18:47 - 00000000 ____D () C:\Users\******\VLC 2014-09-08 23:08 - 2014-08-27 19:31 - 00000000 ____D () C:\Program Files\IObit 2014-09-08 11:56 - 2009-12-27 15:21 - 01619284 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-09-08 03:01 - 2014-06-16 14:35 - 00002687 _____ () C:\Users\Public\Desktop\Skype.lnk 2014-09-08 03:01 - 2010-04-09 17:06 - 00000000 ____D () C:\ProgramData\Skype 2014-09-08 03:00 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE 2014-09-08 02:00 - 2014-09-07 17:35 - 00000000 ____D () C:\Users\******\AppData\Roaming\ALDITALKVerbindungsassistent 2014-09-07 23:43 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2014-09-07 18:16 - 2014-09-07 17:35 - 00000000 ____D () C:\Program Files\ALDITALKVerbindungsassistent 2014-09-07 18:09 - 2014-09-07 18:09 - 00000000 _____ () C:\Windows\setuperr.log 2014-09-07 18:08 - 2014-09-07 18:08 - 00002196 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\ALDI TALK Verbindungsassistent.lnk 2014-09-07 18:08 - 2014-09-07 18:08 - 00002190 _____ () C:\Users\Public\Desktop\ALDI TALK Verbindungsassistent.lnk 2014-09-07 18:08 - 2014-09-07 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALDI TALK Verbindungsassistent 2014-09-07 18:08 - 2014-09-02 14:19 - 00106880 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 01112288 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll 2014-09-07 18:08 - 2014-06-14 18:11 - 01112288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll 2014-09-07 18:08 - 2014-06-14 18:11 - 00860928 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00116736 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00102784 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00082816 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00072576 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00051456 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00026496 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00023424 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys 2014-09-07 18:08 - 2014-06-14 18:11 - 00011136 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys 2014-09-07 18:04 - 2014-09-01 17:40 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iobit 2014-09-07 18:04 - 2014-09-01 17:40 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iobit 2014-09-07 18:04 - 2014-09-01 17:40 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iobit 2014-09-07 18:04 - 2014-09-01 17:40 - 00061440 _____ () C:\Windows\system32\config\SAM.iobit 2014-09-07 17:55 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp 2014-09-07 17:54 - 2014-09-07 15:34 - 00000000 ____D () C:\Program Files\Common Files\ShopperPro 2014-09-07 17:54 - 2014-08-27 19:34 - 00000000 ____D () C:\Users\******\AppData\Roaming\ProductData 2014-09-07 17:54 - 2014-08-27 19:29 - 00000000 ____D () C:\Users\******\AppData\Roaming\IObit 2014-09-07 17:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF 2014-09-07 17:53 - 2014-09-07 15:34 - 00000000 ____D () C:\ProgramData\ShopperPro 2014-09-07 17:53 - 2014-09-07 15:32 - 00000000 ____D () C:\Program Files\PodoWeb 2014-09-07 17:53 - 2014-09-05 03:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-09-07 17:53 - 2014-09-05 03:40 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-09-07 17:53 - 2014-09-03 16:34 - 00000000 ____D () C:\Program Files\YTAHelper 2014-09-07 17:53 - 2014-09-03 15:26 - 00000000 ____D () C:\Program Files\SupTab 2014-09-07 17:53 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\IObit 2014-09-07 17:53 - 2012-03-31 11:12 - 00000000 ____D () C:\Program Files\Safari 2014-09-07 17:53 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration 2014-09-07 17:29 - 2014-09-07 17:03 - 00000421 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Die Seite kann nicht angezeigt werden..website 2014-09-07 17:08 - 2010-05-28 11:33 - 00000000 ____D () C:\Users\******\AppData\Local\Apple Computer 2014-09-07 16:29 - 2014-09-07 15:34 - 00000000 ____D () C:\Program Files\ShopperPro 2014-09-07 16:03 - 2014-09-03 16:34 - 00000000 ____D () C:\ProgramData\TEMP 2014-09-07 15:47 - 2014-09-07 15:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator 2014-09-07 15:45 - 2014-09-07 15:45 - 00000000 ____D () C:\ProgramData\2308189059 2014-09-07 15:40 - 2014-09-07 15:40 - 00000000 ____D () C:\Users\******\Documents\Optimizer Pro 2014-09-07 15:35 - 2014-09-07 15:33 - 00000000 ____D () C:\Program Files\IminentToolbar 2014-09-07 15:34 - 2014-09-07 15:34 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro 2014-09-07 15:34 - 2014-09-03 16:34 - 00000000 ____D () C:\ProgramData\YTAHelper 2014-09-06 16:55 - 2014-09-01 17:40 - 32497664 _____ () C:\Windows\system32\config\components.iobit 2014-09-05 13:14 - 2014-09-01 15:18 - 00000306 __RSH () C:\ProgramData\ntuser.pol 2014-09-05 03:46 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2014-09-05 03:44 - 2009-07-14 10:47 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE 2014-09-05 03:42 - 2014-09-05 03:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in 2014-09-04 22:31 - 2014-09-01 22:31 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP3.job 2014-09-04 14:56 - 2009-12-27 15:59 - 00000000 ____D () C:\Users\******\AppData\Local\Microsoft Help 2014-09-04 14:08 - 2014-09-02 18:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3 2014-09-04 14:07 - 2014-09-02 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3 2014-09-04 03:01 - 2009-12-27 15:59 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-09-04 01:19 - 2014-07-26 23:35 - 00000000 ____D () C:\Users\******\AppData\Local\Unity 2014-09-04 01:19 - 2014-07-26 23:35 - 00000000 ____D () C:\Users\******\AppData\Local\Deployment 2014-09-03 19:20 - 2014-09-03 19:10 - 00000000 ____D () C:\Windows\Minidump 2014-09-03 18:16 - 2009-07-14 10:56 - 00000000 ___RD () C:\Users\Public\Recorded TV 2014-09-03 18:09 - 2014-09-03 18:09 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled 2014-09-03 17:21 - 2014-09-03 15:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam 2014-09-03 16:34 - 2014-09-03 16:34 - 00000000 ____D () C:\Users\Public\Documents\YTAHelper 2014-09-03 16:34 - 2014-09-03 16:34 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO 2014-09-03 15:30 - 2014-09-03 15:30 - 00000000 ____D () C:\Users\******\AppData\Local\CrashRpt 2014-09-03 14:00 - 2014-09-03 14:00 - 00000000 ____D () C:\Users\******\AppData\Roaming\AVS4YOU 2014-09-03 14:00 - 2014-09-03 13:59 - 00000000 ____D () C:\ProgramData\AVS4YOU 2014-09-02 22:31 - 2014-09-01 22:31 - 00000364 _____ () C:\Windows\Tasks\APSnotifierPP2.job 2014-09-02 18:38 - 2014-09-02 18:38 - 00000000 ____D () C:\Windows\Tasks\TaskDisabled 2014-09-02 14:24 - 2014-09-02 14:24 - 07523840 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwNs32.sys 2014-09-02 14:24 - 2014-09-02 14:24 - 02760704 _____ (Intel Corporation) C:\Windows\system32\NETwNr32.dll 2014-09-02 14:24 - 2014-09-02 14:24 - 00684032 _____ (Intel Corporation) C:\Windows\system32\NETwNc32.dll 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Windows\system32\RTCOM 2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Program Files\Realtek 2014-09-02 14:22 - 2014-09-02 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat 2014-09-02 14:22 - 2014-09-02 14:22 - 28062296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 14585432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 11821656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO30.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 07162128 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 06177624 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-09-02 14:22 - 2014-09-02 14:22 - 05086984 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 03683416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 03086040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys 2014-09-02 14:22 - 2014-09-02 14:22 - 02566872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02474200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02421792 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 02140976 _____ () C:\Windows\system32\SStudio.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01940056 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01892056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl 2014-09-02 14:22 - 2014-09-02 14:22 - 01823320 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01691224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01509480 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01490264 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01379760 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01292904 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01220200 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01116248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO60.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-09-02 14:22 - 2014-09-02 14:22 - 00987224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00966904 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00966744 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00948336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00916696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00890160 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00819648 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00818936 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00798296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00654952 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00631400 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00606968 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00601704 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00458344 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00389736 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00375400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00357712 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00352016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00274264 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00265376 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00221528 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00219896 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00218216 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00214368 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00188696 _____ () C:\Windows\system32\AcpiServiceVnA.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00134584 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00106768 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00091920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00074080 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00068960 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00062224 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00058264 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00029496 _____ () C:\Windows\system32\audioLibVc.dll 2014-09-02 14:22 - 2014-09-02 14:22 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll 2014-09-02 14:21 - 2014-09-02 14:21 - 00084480 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll 2014-09-02 14:21 - 2014-09-02 14:21 - 00077824 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys 2014-09-02 14:20 - 2014-09-02 14:20 - 00718552 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys 2014-09-02 14:20 - 2014-09-02 14:20 - 00100896 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll 2014-09-02 14:20 - 2014-09-02 14:20 - 00076872 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll 2014-09-02 14:19 - 2014-09-02 14:19 - 00377856 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys 2014-09-02 13:32 - 2009-12-28 10:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-09-02 13:28 - 2014-07-10 13:23 - 00000000 ____D () C:\Program Files\QuickTime 2014-09-02 13:28 - 2010-05-07 11:01 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-09-02 13:28 - 2009-12-29 16:37 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2014-09-02 13:28 - 2009-12-28 10:13 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8 2014-09-02 13:28 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar 2014-09-02 13:28 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-09-02 13:11 - 2014-09-02 13:11 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 32219136 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak 2014-09-02 13:11 - 2014-09-02 13:11 - 00061440 _____ () C:\Windows\system32\config\SAM.iodefrag.bak 2014-09-01 22:51 - 2014-09-01 22:31 - 00000366 _____ () C:\Windows\Tasks\APSnotifierPP1.job 2014-09-01 22:31 - 2014-09-01 22:31 - 00000320 _____ () C:\Users\******\AppData\Roaming\aps.uninstall.scan.results 2014-09-01 22:29 - 2014-09-01 22:29 - 00631728 _____ (ClickMeIn Limited) C:\Users\******\AppData\Local\nsu410C.tmp 2014-09-01 21:15 - 2014-09-01 21:15 - 00002512 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk 2014-09-01 21:13 - 2014-09-01 21:13 - 00000000 ____D () C:\Users\******\AppData\Local\Maxiget 2014-09-01 17:28 - 2014-04-13 16:56 - 00000000 ____D () C:\Program Files\Avira 2014-09-01 17:24 - 2010-06-16 11:25 - 00000000 ____D () C:\ProgramData\Nero 2014-09-01 17:22 - 2010-04-16 17:21 - 00000000 ____D () C:\Program Files\Common Files\ArcSoft 2014-09-01 17:21 - 2010-04-09 10:40 - 00000000 ____D () C:\Users\******\AppData\Roaming\Canon 2014-09-01 17:21 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\twain_32 2014-09-01 17:20 - 2010-04-08 15:49 - 00000000 ____D () C:\ProgramData\TOSHIBA 2014-09-01 17:18 - 2014-06-16 00:16 - 00000000 ____D () C:\Users\******\AppData\Local\PokerStars.EU 2014-09-01 17:16 - 2014-08-01 16:58 - 00000000 ____D () C:\Users\******\AppData\Roaming\DVDVideoSoft 2014-09-01 17:15 - 2009-12-27 15:17 - 00001418 _____ () C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-09-01 17:12 - 2014-09-01 15:17 - 00000000 ____D () C:\Users\******\AppData\Roaming\InetStat 2014-09-01 16:55 - 2014-09-01 16:55 - 00000000 ____D () C:\Users\******\AppData\Roaming\Unity 2014-09-01 15:20 - 2014-09-01 15:20 - 00000000 ____D () C:\ProgramData\IePluginServices 2014-09-01 15:20 - 2014-08-26 15:34 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect 2014-09-01 15:17 - 2014-09-01 15:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf 2014-09-01 15:17 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy 2014-08-31 21:56 - 2014-08-31 21:56 - 01575960 _____ () C:\Users\******\Downloads\The_Office_Season_8.exe 2014-08-31 21:50 - 2014-08-31 21:50 - 01938256 _____ (BitTorrent Inc.) C:\Users\******\Downloads\uTorrent_3.4.2.33254.exe 2014-08-29 00:08 - 2009-07-14 06:33 - 00427048 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-27 20:08 - 2012-03-23 13:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader 2014-08-27 20:08 - 2010-06-17 15:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-08-27 20:08 - 2010-04-16 13:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux 2014-08-27 20:08 - 2009-12-29 21:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2014-08-27 20:07 - 2009-12-27 14:58 - 00000000 ____D () C:\Windows\Panther 2014-08-27 19:33 - 2010-05-28 11:33 - 00000000 ____D () C:\Users\******\AppData\Roaming\Apple Computer 2014-08-27 19:32 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} 2014-08-27 19:29 - 2014-08-27 19:27 - 38672200 _____ (IObit ) C:\Users\******\Downloads\asc-setup_7.3.0.454.exe 2014-08-27 18:32 - 2014-08-27 18:32 - 00001100 _____ () C:\Users\Public\Desktop\Avira.lnk 2014-08-27 18:32 - 2014-06-15 01:18 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-27 18:32 - 2014-06-15 01:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2014-08-26 18:41 - 2014-08-26 18:41 - 00001758 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-08-26 18:41 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-08-26 18:41 - 2014-08-26 18:40 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-08-26 18:41 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iTunes 2014-08-26 18:40 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iPod 2014-08-26 18:40 - 2012-03-23 13:24 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-08-26 18:38 - 2014-08-26 18:34 - 111978832 _____ (Apple Inc.) C:\Users\******\Downloads\iTunesSetup (1).exe 2014-08-26 18:26 - 2014-08-26 18:26 - 00152904 ____H () C:\Windows\system32\mlfcache.dat 2014-08-26 15:51 - 2013-09-22 14:51 - 00000000 ____D () C:\Users\******\Documents\Bluetooth 2014-08-26 15:49 - 2014-08-26 15:33 - 00000000 ____D () C:\Program Files\OneBrowse 2014-08-26 15:43 - 2014-08-26 15:43 - 00000000 ____D () C:\Users\******\AppData\Roaming\AppSplash 2014-08-26 15:38 - 2014-08-26 15:38 - 00642592 _____ () C:\Users\******\Downloads\Easy Torrent.exe 2014-08-26 15:36 - 2014-08-26 15:36 - 00001024 _____ () C:\.rnd 2014-08-26 15:31 - 2014-08-26 15:31 - 00033608 _____ () C:\Users\******\Downloads\122309-pthc-collection-cp.torrent 2014-08-23 03:46 - 2014-08-28 12:01 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-23 02:42 - 2014-08-28 12:01 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-15 15:41 - 2010-04-16 17:31 - 00000000 ____D () C:\ProgramData\ArcSoft 2014-08-14 17:07 - 2014-08-13 16:46 - 00000000 ____D () C:\Users\******\.gimp-2.6 2014-08-14 17:06 - 2014-08-14 17:06 - 00001490 _____ () C:\Users\******\.recently-used.xbel 2014-08-13 17:07 - 2014-08-13 17:07 - 00000000 ____D () C:\Users\******\.thumbnails 2014-08-13 17:07 - 2009-12-28 19:21 - 00000000 ____D () C:\Users\******\AppData\Roaming\gtk-2.0 2014-08-13 16:58 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-08-13 15:18 - 2014-06-15 09:08 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-13 06:39 - 2014-06-15 05:38 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-13 06:37 - 2009-12-29 11:15 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe Some content of TEMP: ==================== C:\Users\******\AppData\Local\Temp\1u3a0bqc.5h3.exe C:\Users\******\AppData\Local\Temp\avgnt.exe C:\Users\******\AppData\Local\Temp\BullseyeCoverage-2-x86.dll C:\Users\******\AppData\Local\Temp\Installer.exe C:\Users\******\AppData\Local\Temp\LiveSupport_setup.exe C:\Users\******\AppData\Local\Temp\optprosetup.exe C:\Users\******\AppData\Local\Temp\post1.exe C:\Users\******\AppData\Local\Temp\post2.dll C:\Users\******\AppData\Local\Temp\post2.exe C:\Users\******\AppData\Local\Temp\UNT3B8D.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3B9D.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BAE.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BAF.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BB0.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BB1.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BC2.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BC3.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BC4.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3BC5.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3C04.tmp.exe C:\Users\******\AppData\Local\Temp\UNT3C05.tmp.exe C:\Users\******\AppData\Local\Temp\v312dsua.2vf.exe C:\Users\******\AppData\Local\Temp\VersionUpdater.exe C:\Users\******\AppData\Local\Temp\VOPackage.exe C:\Users\******\AppData\Local\Temp\WtgZip.dll C:\Users\******\AppData\Local\Temp\xighxkwn.buq.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-09-06 06:39 ==================== End Of Log ============================ Logfiles Exportierte Ereignisse: 07.09.2014 15:44 [Echtzeit-Scanner] Malware gefunden In der Datei 'C:\Users\******\AppData\Local\Temp\nsy1922.tmp\WrapperUtils.dll' wurde ein Virus oder unerwünschtes Programm 'ADWARE/CrossRider.Gen2' [adware] gefunden. Ausgeführte Aktion: Übergeben an Scanner 07.09.2014 15:44 [Echtzeit-Scanner] Malware gefunden In der Datei 'C:\Users\******\AppData\Local\Temp\nsy1922.tmp\WrapperUtils.dll' wurde ein Virus oder unerwünschtes Programm 'ADWARE/CrossRider.Gen2' [adware] gefunden. Ausgeführte Aktion: Zugriff verweigern  |
|
09.09.2014, 22:59
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Anleitung / Hilfe Hallo und
__________________ Zitat:
Ist das (auch) ein gewerblich genutztes System?
__________________ |
|
09.09.2014, 23:55
| #3 |
| | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Details Hallo cosinus,
__________________das sind Programme, die noch aus der Zeit auf dem Rechner sind, als er zumindest teilweise durch mich zur Arbeit genutzt wurden, also in diesem Falle gewerblich (Home Office). Dies ist aber schon Jahre her und ansonsten wird der Rechner seit ca. 2 Jahren "nur noch" in der Familie genutzt. |
|
09.09.2014, 23:57
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Lösung: Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Ok  Dann bitte jetzt Combofix ausführen: Scan mit Combofix
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.09.2014, 16:43
| #5 |
| | Wie Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Hallo, besten Dank für Deine Hilfe! Hier die Combofix.txt. Ich hoffe, dass das auch in CODE-Tags ist, ansonsten bitte sei so nett und gib mir einen kleinen Hinweis...danke:-) Combofix Logfile: Code:
ATTFilter ComboFix 14-09-09.01 - Marcel 10.09.2014 17:12:50.1.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.3037.1853 [GMT 2:00]
ausgeführt von:: c:\users\Marcel\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe
c:\program files\ShopperPro
c:\programdata\2308189059
c:\programdata\2308189059\BIT80F8.tmp
c:\programdata\Microsoft\Windows\Start Menu\Programs\Wajam
c:\programdata\ShopperPro
c:\programdata\ShopperPro\config.json
c:\programdata\ShopperPro\database1_0_0.json
c:\users\Marcel\AppData\Local\Microsoft\Windows\Temporary Internet Files\PodoWeb_iels
c:\users\Marcel\AppData\Local\nsu410C.tmp
c:\users\Marcel\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
c:\users\Marcel\AppData\Roaming\LiveSupport.exe_log.txt
c:\users\Marcel\AppData\Roaming\regsvr32.exe_log.txt
c:\windows\wininit.ini
.
.
((((((((((((((((((((((( Dateien erstellt von 2014-08-10 bis 2014-09-10 ))))))))))))))))))))))))))))))
.
.
2014-09-09 18:39 . 2014-09-09 18:41 -------- d-----w- C:\FRST
2014-09-08 01:01 . 2014-09-08 01:01 -------- d-----w- c:\program files\Common Files\Skype
2014-09-07 15:35 . 2014-09-08 00:00 -------- d-----w- c:\users\Marcel\AppData\Roaming\ALDITALKVerbindungsassistent
2014-09-07 15:35 . 2014-09-10 15:18 -------- d-----w- c:\program files\ALDITALKVerbindungsassistent
2014-09-07 13:34 . 2014-09-07 15:54 -------- d-----w- c:\program files\Common Files\ShopperPro
2014-09-07 13:34 . 2014-09-07 15:53 -------- d-----w- c:\users\Marcel\AppData\Local\Installer
2014-09-07 13:33 . 2014-09-07 13:35 -------- d-----w- c:\program files\IminentToolbar
2014-09-07 13:32 . 2014-09-07 15:53 -------- d-----w- c:\program files\PodoWeb
2014-09-05 21:00 . 2014-01-09 02:22 5694464 ----a-w- c:\windows\system32\mstscax.dll
2014-09-05 12:40 . 2014-05-08 09:06 2742784 ----a-w- c:\windows\system32\rdpcorets.dll
2014-09-05 12:40 . 2014-05-08 09:06 13824 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2014-09-05 01:42 . 2012-08-23 14:44 14848 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2014-09-05 01:42 . 2012-08-23 14:48 221184 ----a-w- c:\windows\system32\rdpudd.dll
2014-09-05 01:42 . 2012-08-23 11:12 192000 ----a-w- c:\windows\system32\rdpendp_winip.dll
2014-09-05 01:41 . 2013-10-01 23:45 32256 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2014-09-05 01:41 . 2013-10-02 00:32 12800 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-09-05 01:41 . 2013-10-02 00:42 49152 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2014-09-05 01:41 . 2013-10-02 00:30 14336 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-09-05 01:41 . 2013-10-02 00:14 50176 ----a-w- c:\windows\system32\MsRdpWebAccess.dll
2014-09-05 01:41 . 2013-10-02 00:14 17920 ----a-w- c:\windows\system32\wksprtPS.dll
2014-09-05 01:41 . 2013-10-01 23:58 53248 ----a-w- c:\windows\system32\tsgqec.dll
2014-09-05 01:41 . 2013-10-01 23:08 855552 ----a-w- c:\windows\system32\rdvidcrl.dll
2014-09-05 01:41 . 2013-10-01 23:00 76288 ----a-w- c:\windows\system32\TSWbPrxy.exe
2014-09-05 01:41 . 2013-10-01 22:53 350208 ----a-w- c:\windows\system32\wksprt.exe
2014-09-05 01:41 . 2013-10-01 22:34 1068544 ----a-w- c:\windows\system32\mstsc.exe
2014-09-05 01:40 . 2014-09-07 15:53 -------- d-----w- c:\program files\Microsoft Silverlight
2014-09-05 01:38 . 2013-09-25 01:57 792576 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-09-05 01:38 . 2012-05-04 09:59 514560 ----a-w- c:\windows\system32\qdvd.dll
2014-09-03 14:34 . 2014-09-07 13:34 -------- d-----w- c:\programdata\YTAHelper
2014-09-03 14:34 . 2014-09-07 15:53 -------- d-----w- c:\program files\YTAHelper
2014-09-03 13:30 . 2014-09-03 13:30 -------- d-----w- c:\users\Marcel\AppData\Local\CrashRpt
2014-09-03 13:26 . 2014-09-07 15:53 -------- d-----w- c:\program files\SupTab
2014-09-03 12:00 . 2014-09-03 12:00 -------- d-----w- c:\users\Marcel\AppData\Roaming\AVS4YOU
2014-09-03 11:59 . 2014-09-03 12:00 -------- d-----w- c:\programdata\AVS4YOU
2014-09-02 12:34 . 2014-06-04 13:17 31008 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2014-09-02 12:32 . 2014-06-04 13:17 109856 ----a-w- c:\windows\system32\IObitSmartDefragExtension.dll
2014-09-02 12:32 . 2014-06-04 13:17 18624 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2014-09-02 12:24 . 2014-09-02 12:24 7523840 ----a-w- c:\windows\system32\drivers\NETwNs32.sys
2014-09-02 12:24 . 2014-09-02 12:24 684032 ----a-w- c:\windows\system32\NETwNc32.dll
2014-09-02 12:24 . 2014-09-02 12:24 2760704 ----a-w- c:\windows\system32\NETwNr32.dll
2014-09-02 12:23 . 2014-09-02 12:23 -------- d-----w- c:\windows\system32\RTCOM
2014-09-02 12:23 . 2014-09-02 12:23 -------- d-----w- c:\program files\Realtek
2014-09-02 12:21 . 2014-09-02 12:21 84480 ----a-w- c:\windows\system32\DelayAPO.dll
2014-09-02 12:21 . 2014-09-02 12:21 77824 ----a-w- c:\windows\system32\drivers\AtihdW73.sys
2014-09-02 12:20 . 2014-09-02 12:20 76872 ----a-w- c:\windows\system32\RtNicProp32.dll
2014-09-02 12:20 . 2014-09-02 12:20 718552 ----a-w- c:\windows\system32\drivers\Rt86win7.sys
2014-09-02 12:20 . 2014-09-02 12:20 100896 ----a-w- c:\windows\system32\RTNUninst32.dll
2014-09-02 12:19 . 2014-09-07 16:08 106880 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2014-09-02 12:19 . 2014-09-02 12:19 377856 ----a-w- c:\windows\system32\drivers\ewusbwwan.sys
2014-09-01 20:31 . 2014-09-01 20:31 -------- d-----w- c:\users\Marcel\AppData\Roaming\ap_logs
2014-09-01 19:13 . 2014-09-01 19:13 -------- d-----w- c:\users\Marcel\AppData\Local\Maxiget
2014-09-01 15:42 . 2014-02-17 11:41 24384 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2014-09-01 14:55 . 2014-09-01 14:55 -------- d-----w- c:\users\Marcel\AppData\Roaming\Unity
2014-09-01 13:20 . 2014-09-01 13:20 -------- d-----w- c:\programdata\IePluginServices
2014-09-01 13:17 . 2014-09-01 15:12 -------- d-----w- c:\users\Marcel\AppData\Roaming\InetStat
2014-08-31 19:51 . 2014-09-09 23:05 -------- d-----w- c:\users\Marcel\AppData\Roaming\uTorrent
2014-08-28 10:01 . 2014-08-23 01:46 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-08-28 10:01 . 2014-08-23 00:42 2352640 ----a-w- c:\windows\system32\win32k.sys
2014-08-27 17:34 . 2014-09-07 15:54 -------- d-----w- c:\users\Marcel\AppData\Roaming\ProductData
2014-08-27 17:33 . 2014-09-10 13:42 -------- d-----w- c:\programdata\ProductData
2014-08-27 17:32 . 2014-08-27 17:32 -------- d-----w- c:\programdata\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-08-27 17:32 . 2014-09-07 15:53 -------- d-----w- c:\programdata\IObit
2014-08-27 17:31 . 2014-09-08 21:08 -------- d-----w- c:\program files\IObit
2014-08-27 17:29 . 2014-09-07 15:54 -------- d-----w- c:\users\Marcel\AppData\Roaming\IObit
2014-08-26 16:41 . 2012-08-21 11:01 26840 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2014-08-26 16:40 . 2014-08-26 16:41 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-26 16:40 . 2014-08-26 16:41 -------- d-----w- c:\program files\iTunes
2014-08-26 16:40 . 2014-08-26 16:40 -------- d-----w- c:\program files\iPod
2014-08-26 13:43 . 2014-08-26 13:43 -------- d-----w- c:\users\Marcel\AppData\Roaming\AppSplash
2014-08-26 13:34 . 2014-09-01 13:20 -------- d-----w- c:\programdata\WindowsMangerProtect
2014-08-26 13:33 . 2014-08-26 13:49 -------- d-----w- c:\program files\OneBrowse
2014-08-22 13:47 . 2014-05-14 16:23 45536 ----a-w- c:\windows\system32\wups2.dll
2014-08-22 13:47 . 2014-05-14 16:23 54240 ----a-w- c:\windows\system32\wuauclt.exe
2014-08-22 13:47 . 2014-05-14 16:23 1973728 ----a-w- c:\windows\system32\wuaueng.dll
2014-08-22 13:47 . 2014-05-14 16:17 2425856 ----a-w- c:\windows\system32\wucltux.dll
2014-08-22 13:47 . 2014-05-14 16:23 36320 ----a-w- c:\windows\system32\wups.dll
2014-08-22 13:47 . 2014-05-14 16:23 581600 ----a-w- c:\windows\system32\wuapi.dll
2014-08-22 13:47 . 2014-05-14 16:17 92672 ----a-w- c:\windows\system32\wudriver.dll
2014-08-22 13:46 . 2014-05-14 07:23 179656 ----a-w- c:\windows\system32\wuwebv.dll
2014-08-22 13:46 . 2014-05-14 07:17 33792 ----a-w- c:\windows\system32\wuapp.exe
2014-08-13 15:07 . 2014-08-13 15:07 -------- d-----w- c:\users\Marcel\.thumbnails
2014-08-13 14:46 . 2014-08-14 15:07 -------- d-----w- c:\users\Marcel\.gimp-2.6
2014-08-13 04:34 . 2014-03-09 21:47 99480 ----a-w- c:\windows\system32\infocardapi.dll
2014-08-13 04:34 . 2014-06-30 22:14 8856 ----a-w- c:\windows\system32\icardres.dll
2014-08-13 04:34 . 2014-03-09 21:47 619672 ----a-w- c:\windows\system32\icardagt.exe
2014-08-13 04:34 . 2014-06-06 06:16 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-08-13 04:09 . 2014-07-16 02:46 2048 ----a-w- c:\windows\system32\tzres.dll
2014-08-13 04:08 . 2014-06-03 09:30 101824 ----a-w- c:\windows\system32\consent.exe
2014-08-13 04:08 . 2014-06-03 09:29 337408 ----a-w- c:\windows\system32\msihnd.dll
2014-08-13 04:08 . 2014-06-03 09:29 2363392 ----a-w- c:\windows\system32\msi.dll
2014-08-13 04:08 . 2014-06-03 09:29 1805824 ----a-w- c:\windows\system32\authui.dll
2014-08-13 04:08 . 2014-08-07 01:43 412160 ----a-w- c:\windows\system32\aepdu.dll
2014-08-13 04:08 . 2014-08-07 01:39 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-08-13 04:08 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDYAK.DLL
2014-08-13 04:08 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDBASH.DLL
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-09 18:22 . 2012-05-20 16:06 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-09-09 18:22 . 2011-12-21 21:21 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-07 16:08 . 2014-06-14 16:11 860928 ----a-w- c:\windows\system32\drivers\mod7700.sys
2014-09-07 16:08 . 2014-06-14 16:11 82816 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys
2014-09-07 16:08 . 2014-06-14 16:11 72576 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys
2014-09-07 16:08 . 2014-06-14 16:11 51456 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys
2014-09-07 16:08 . 2014-06-14 16:11 26496 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys
2014-09-07 16:08 . 2014-06-14 16:11 23424 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2014-09-07 16:08 . 2014-06-14 16:11 116736 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2014-09-07 16:08 . 2014-06-14 16:11 11136 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
2014-09-07 16:08 . 2014-06-14 16:11 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2014-09-07 16:08 . 2014-06-14 16:11 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2014-09-07 16:08 . 2014-06-14 16:11 102784 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
2014-07-08 10:21 . 2014-06-14 23:27 35848 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2014-07-03 21:20 . 2014-06-14 23:24 97648 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2014-06-18 01:51 . 2014-07-09 13:27 646144 ----a-w- c:\windows\system32\osk.exe
2014-06-15 03:15 . 2014-06-15 03:15 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2014-06-15 03:15 . 2014-06-15 03:15 645120 ----a-w- c:\windows\system32\jsIntl.dll
2014-06-15 03:15 . 2014-06-15 03:15 62464 ----a-w- c:\windows\system32\tdc.ocx
2014-06-15 03:15 . 2014-06-15 03:15 194048 ----a-w- c:\windows\system32\elshyph.dll
2014-06-15 03:15 . 2014-06-15 03:15 182272 ----a-w- c:\windows\system32\msls31.dll
2014-06-15 03:15 . 2014-06-15 03:15 337408 ----a-w- c:\windows\system32\html.iec
2014-06-15 03:15 . 2014-06-15 03:15 24576 ----a-w- c:\windows\system32\licmgr10.dll
2014-06-15 03:15 . 2014-06-15 03:15 151552 ----a-w- c:\windows\system32\iexpress.exe
2014-06-15 03:15 . 2014-06-15 03:15 139264 ----a-w- c:\windows\system32\wextract.exe
2014-06-15 03:15 . 2014-06-15 03:15 13312 ----a-w- c:\windows\system32\mshta.exe
2014-06-15 03:15 . 2014-06-15 03:15 86016 ----a-w- c:\windows\system32\iesysprep.dll
2014-06-15 03:15 . 2014-06-15 03:15 74240 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2014-06-15 03:15 . 2014-06-15 03:15 48640 ----a-w- c:\windows\system32\mshtmler.dll
2014-06-15 03:15 . 2014-06-15 03:15 36352 ----a-w- c:\windows\system32\imgutil.dll
2014-06-15 03:15 . 2014-06-15 03:15 111616 ----a-w- c:\windows\system32\IEAdvpack.dll
2014-06-15 03:14 . 2014-06-15 03:14 69632 ----a-w- c:\windows\system32\smss.exe
2014-06-15 03:14 . 2014-06-15 03:14 640512 ----a-w- c:\windows\system32\advapi32.dll
2014-06-15 03:14 . 2014-06-15 03:14 619520 ----a-w- c:\windows\system32\tdh.dll
2014-06-15 03:14 . 2014-06-15 03:14 38912 ----a-w- c:\windows\system32\csrsrv.dll
2014-06-15 03:14 . 2014-06-15 03:14 1289096 ----a-w- c:\windows\system32\ntdll.dll
2014-06-15 03:14 . 2014-06-15 03:14 231424 ----a-w- c:\windows\system32\mswsock.dll
2014-06-15 03:13 . 2014-06-15 03:13 49152 ----a-w- c:\windows\system32\taskhost.exe
2014-06-15 03:12 . 2014-06-15 03:12 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-15 03:12 . 2014-06-15 03:12 906240 ----a-w- c:\windows\system32\FntCache.dll
2014-06-15 03:12 . 2014-06-15 03:12 604160 ----a-w- c:\windows\system32\d3d10level9.dll
2014-06-15 03:12 . 2014-06-15 03:12 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-15 03:12 . 2014-06-15 03:12 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-15 03:12 . 2014-06-15 03:12 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-15 03:12 . 2014-06-15 03:12 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-06-15 03:12 . 2014-06-15 03:12 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-15 03:12 . 2014-06-15 03:12 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-15 03:12 . 2014-06-15 03:12 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-15 03:12 . 2014-06-15 03:12 293376 ----a-w- c:\windows\system32\dxgi.dll
2014-06-15 03:12 . 2014-06-15 03:12 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-15 03:12 . 2014-06-15 03:12 249856 ----a-w- c:\windows\system32\d3d10_1core.dll
2014-06-15 03:12 . 2014-06-15 03:12 2284544 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2014-06-15 03:12 . 2014-06-15 03:12 220160 ----a-w- c:\windows\system32\d3d10core.dll
2014-06-15 03:12 . 2014-06-15 03:12 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2014-06-15 03:12 . 2014-06-15 03:12 187392 ----a-w- c:\windows\system32\UIAnimation.dll
2014-06-15 03:12 . 2014-06-15 03:12 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2014-06-15 03:12 . 2014-06-15 03:12 1247744 ----a-w- c:\windows\system32\DWrite.dll
2014-06-15 03:12 . 2014-06-15 03:12 1158144 ----a-w- c:\windows\system32\XpsPrint.dll
2014-06-15 03:12 . 2014-06-15 03:12 1080832 ----a-w- c:\windows\system32\d3d10.dll
2014-06-15 03:12 . 2014-06-15 03:12 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-15 03:10 . 2014-06-15 03:10 1505280 ----a-w- c:\windows\system32\d3d11.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"updateMgr"="c:\program files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe" [2006-03-30 313472]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-08-28 1557800]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-07-31 43816]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2014-08-07 751184]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2014-01-17 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2014-08-01 152392]
"Avira Systray"="c:\program files\Avira\My Avira\Avira.OE.Systray.exe" [2014-08-04 161584]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Acrobat Speed Launcher.lnk - c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe [2010-7-5 25214]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0]
2008-04-23 00:08 483328 ----a-w- c:\program files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
.
R2 IMFservice;IMF Service; [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [2014-09-04 2175264]
R2 SkypeUpdate;Skype Updater;e:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2014-09-07 102784]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2014-09-07 116736]
R3 FileMonitor;FileMonitor; [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-07-25 108032]
R3 NETw5s32;Intel(R) Wireless WiFi Link Adaptertreiber für Windows 7 32-Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2010-01-13 6755840]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000-Serie - Adaptertreiber für Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 UrlFilter;UrlFilter; [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0; [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 18624]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2014-05-09 37352]
S1 SSHDRV82;SSHDRV82;c:\windows\system32\drivers\SSHDRV82.sys [2011-03-27 76288]
S2 ALDITALKVerbindungsassistent_Service;ALDITALKVerbindungsassistent_Service;c:\program files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe [2014-09-07 358968]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 176128]
S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2014-08-07 430160]
S2 Avira.OE.ServiceHost;Avira Service Host;c:\program files\Avira\My Avira\Avira.OE.ServiceHost.exe [2014-08-04 149296]
S2 IePluginServices;IePlugin Services;c:\programdata\IePluginServices\PluginService.exe [2014-09-01 715656]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2014-09-02 77824]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [2014-09-02 377856]
S3 NETwNs32;___ Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 7 32-Bit;c:\windows\system32\DRIVERS\NETwNs32.sys [2014-09-02 7523840]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2014-09-02 718552]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Inhalt des "geplante Tasks" Ordners
.
2014-09-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-20 18:22]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.bing.de/
mStart Page = about:blank
uSearchAssistant = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StLKYZZHUxozG7WbG8M4ZbpPFmdMdnxsM5TEzN82KkLVDC7nIWUVyhe8-jGmFHKigyiibi5_wvx2BTfa2y-JqDdfzYF1WK3XQ13JA9dG80JaqP1vUr-RfvY7fVa-nAl3Ac4CqITLtkUZ7zvzaoZMTXpr0Sai5HpOjNHfpzC0Mq70ZZqFR0XMrz7cDJaLqKPFAVCHhwBOWZYw,,&q={searchTerms}
Trusted Zone: eventimsports.de\www
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk - c:\program files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-1524326991-2445942720-3436998146-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:c1,19,7b,15,f5,eb,da,27,ed,a7,cb,81,69,d7,26,02,cb,be,64,34,a6,ea,5d,
b8,f5,ec,32,38,de,42,68,6a,32,90,05,6e,5d,0d,06,75,8c,ae,80,67,18,a2,37,ca,\
"??"=hex:72,f0,7a,bd,7f,09,ac,f4,b7,0c,e4,c8,03,0b,7c,7e
.
[HKEY_USERS\S-1-5-21-1524326991-2445942720-3436998146-1000\Software\SecuROM\License information*]
@Allowed: (Read) (RestrictedCode)
"datasecu"=hex:88,79,13,a1,79,d1,47,70,bb,9b,c3,f2,d4,29,34,96,b6,6f,b2,de,bb,
ba,d9,80,dd,c7,d9,59,6f,9e,39,d2,a4,c4,d9,b6,25,7d,3c,e4,3c,9d,45,d5,ec,6b,\
"rkeysecu"=hex:2f,19,b9,2f,7a,83,db,eb,22,38,f8,1d,2d,72,74,6f
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\System32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\sdclt.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-09-10 17:26:25 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2014-09-10 15:26
.
Vor Suchlauf: 9 Verzeichnis(se), 205.161.422.848 Bytes frei
Nach Suchlauf: 16 Verzeichnis(se), 205.187.887.104 Bytes frei
.
- - End Of File - - 7848D907020A93B2A9FC76E634D3C0FA
A36C5E4F47E84449FF07ED3517B43A31 |
|
10.09.2014, 23:19
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Wo Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Lösung! Adware/Junkware/Toolbars entfernen (alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!) 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
3. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ --> Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel |
|
11.09.2014, 00:18
| #7 |
| | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Nabend;-) AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.309 - Bericht erstellt am 11/09/2014 um 00:59:16
# Aktualisiert 02/09/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (32 bits)
# Benutzername : Marcel - MARCEL-PC
# Gestartet von : C:\Users\Marcel\Desktop\adwcleaner_3.309.exe
# Option : Löschen
***** [ Dienste ] *****
Dienst Gelöscht : IePluginServices
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\IePluginServices
Ordner Gelöscht : C:\ProgramData\WindowsMangerProtect
Ordner Gelöscht : C:\ProgramData\YTAHelper
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
[/!\] Nicht Gelöscht ( Junction ) : C:\Program Files\Gemeinsame Dateien
Ordner Gelöscht : C:\Program Files\IminentToolbar
Ordner Gelöscht : C:\Program Files\PodoWeb
Ordner Gelöscht : C:\Program Files\SupTab
Ordner Gelöscht : C:\Program Files\YTAHelper
Ordner Gelöscht : C:\Program Files\Common Files\ShopperPro
Ordner Gelöscht : C:\Users\Marcel\AppData\Local\OpenCandy
Ordner Gelöscht : C:\Users\Marcel\AppData\LocalLow\Goobzo
Ordner Gelöscht : C:\Users\Marcel\AppData\LocalLow\IminentToolbar
Ordner Gelöscht : C:\Users\Marcel\AppData\Roaming\InetStat
Ordner Gelöscht : C:\Users\Marcel\Documents\Optimizer Pro
Ordner Gelöscht : C:\Users\Public\Documents\Goobzo
Ordner Gelöscht : C:\Users\Public\Documents\ShopperPro
Ordner Gelöscht : C:\Users\Public\Documents\YTAHelper
Ordner Gelöscht : C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\anttoolbar@ant.com
Datei Gelöscht : C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\firefoxmini@go.im.xpi
Datei Gelöscht : C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\wtxpcom@mybrowserbar.com
Datei Gelöscht : C:\Users\Marcel\AppData\Roaming\aps.uninstall.scan.results
Datei Gelöscht : C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\searchplugins\iminent.xml
***** [ Tasks ] *****
***** [ Verknüpfungen ] *****
Verknüpfung Desinfiziert : C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\pdfforgeToolbar-stub-1_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\pdfforgeToolbar-stub-1_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SafeFinder_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SafeFinder_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SearchSettings_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SearchSettings_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\smartbar_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\smartbar_rasmancs
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : HKCU\Software\AnyProtect
Schlüssel Gelöscht : HKCU\Software\Ciuvo
Schlüssel Gelöscht : HKCU\Software\InetStat
Schlüssel Gelöscht : HKCU\Software\InstallCore
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\SupHpUISoft
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\blockAndSurf
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Search Settings
Schlüssel Gelöscht : HKLM\SOFTWARE\SupTab
Schlüssel Gelöscht : HKLM\SOFTWARE\supWindowsMangerProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\supWPM
Schlüssel Gelöscht : HKLM\SOFTWARE\Uniblue
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17280
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
-\\ Mozilla Firefox v
[ Datei : C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\prefs.js ]
Zeile gelöscht : user_pref("CT427937.ValidationData_Toolbar", 0);
*************************
AdwCleaner[R0].txt - [7027 octets] - [11/09/2014 00:57:21]
AdwCleaner[S0].txt - [5983 octets] - [11/09/2014 00:59:16]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6043 octets] ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.4 (04.06.2014:1) OS: Windows 7 Home Premium x86 Ran by Marcel on 11.09.2014 at 1:08:18,10 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 11.09.2014 at 1:10:34,27 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-09-2014
Ran by Marcel (administrator) on MARCEL-PC on 11-09-2014 01:12:50
Running from C:\Users\Marcel\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
() C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avcenter.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1557800 2009-08-28] (Synaptics Incorporated)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-09-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-07] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [164656 2014-08-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1524326991-2445942720-3436998146-1000\...\Run: [updateMgr] => C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe [313472 2006-03-30] (Adobe Systems Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Bing
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - DefaultScope {6503D225-0679-4A45-BF32-E6813F160CFD} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {6503D225-0679-4A45-BF32-E6813F160CFD} URL = https://www.google.com/search?q={searchTerms}
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{35924BBF-A5CC-484F-A75D-E61356EA5E2A}: [NameServer] 212.23.115.84 212.23.115.150
FireFox:
========
FF ProfilePath: C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default
FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF Homepage: hxxp://go.microsoft.com/fwlink/?LinkId=69157
FF Keyword.URL: hxxp://de.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=
FF NewTab: about:newtab
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/JavaPlugin -> E:\Avira\bin\plugin2\npjp2.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> E:\Program Files\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Marcel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Extension: NoSquint - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\nosquint@urandom.ca [2012-05-20]
FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} [2014-06-16]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2012-03-23]
FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\anttoolbar@ant.com [Not Found]
FF Extension: No Name - C:\Program Files\Common Files\Spigot\wtxpcom [Not Found]
FF Extension: No Name - C:\Program Files\YTD Toolbar\FF [Not Found]
FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\ascsurfingprotection@iobit.com [Not Found]
FF Extension: No Name - C:\Program Files\IObit Apps Toolbar\FF [Not Found]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
Chrome:
=======
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [69632 2010-07-05] (Adobe Systems) [File not signed]
R2 ALDITALKVerbindungsassistent_Service; C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe [358968 2014-09-07] ()
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-07] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [160048 2014-08-27] (Avira Operations GmbH & Co. KG)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-09-04] (IObit)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [File not signed]
S2 SkypeUpdate; E:\Program Files\Skype\Updater\Updater.exe [172192 2013-10-23] (Skype Technologies)
S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]
S2 IMFservice; No ImagePath
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [97648 2014-07-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2014-05-09] (Avira Operations GmbH & Co. KG)
S3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [28944 2008-02-29] (Logitech, Inc.)
R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7523840 2014-09-02] (Intel Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624 2014-06-04] (IObit)
R1 SSHDRV82; C:\Windows\system32\drivers\SSHDRV82.sys [76288 2011-03-27] () [File not signed]
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2014-05-09] (Avira GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Marcel\AppData\Local\Temp\catchme.sys [X]
S3 FileMonitor; No ImagePath
S3 UrlFilter; No ImagePath
S3 WinRing0_1_2_0; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-11 01:12 - 2014-09-11 01:13 - 00013431 _____ () C:\Users\Marcel\Desktop\FRST.txt
2014-09-11 01:12 - 2014-09-11 01:12 - 01097728 _____ (Farbar) C:\Users\Marcel\Desktop\FRST.exe
2014-09-11 01:10 - 2014-09-11 01:10 - 00000626 _____ () C:\Users\Marcel\Desktop\JRT.txt
2014-09-11 01:08 - 2014-09-11 01:08 - 00000000 ____D () C:\Windows\ERUNT
2014-09-11 01:07 - 2014-09-11 01:07 - 01016261 _____ (Thisisu) C:\Users\Marcel\Desktop\JRT.exe
2014-09-11 01:07 - 2014-09-11 01:07 - 00001100 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-11 00:57 - 2014-09-11 00:59 - 00000000 ____D () C:\AdwCleaner
2014-09-11 00:56 - 2014-09-11 00:56 - 01370483 _____ () C:\Users\Marcel\Desktop\adwcleaner_3.309.exe
2014-09-10 23:17 - 2014-09-10 23:18 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\vlc
2014-09-10 23:17 - 2014-09-10 23:17 - 00000634 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-09-10 23:17 - 2014-09-10 23:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-09-10 22:55 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-10 22:55 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-10 22:55 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-10 22:55 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-10 22:55 - 2014-08-18 23:57 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-10 22:55 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-10 22:55 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-10 22:55 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-10 22:55 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-10 22:55 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-10 22:55 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-10 22:55 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-10 22:55 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-10 22:55 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-10 22:55 - 2014-08-18 23:36 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-10 22:55 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-10 22:55 - 2014-08-18 23:30 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-10 22:55 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-10 22:55 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-10 22:55 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-10 22:55 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-10 22:55 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-10 22:55 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-10 22:55 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-10 22:55 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-10 22:55 - 2014-08-18 23:08 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-10 22:55 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-10 22:55 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-10 22:55 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-10 22:55 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-10 22:54 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-10 22:31 - 2014-09-10 22:45 - 00000045 _____ () C:\Users\Marcel\Desktop\gc.log
2014-09-10 21:54 - 2014-09-10 21:54 - 382563663 _____ () C:\Windows\MEMORY.DMP
2014-09-10 21:54 - 2014-09-10 21:54 - 00149608 _____ () C:\Windows\Minidump\091014-21871-01.dmp
2014-09-10 18:12 - 2014-09-10 18:12 - 00002171 _____ () C:\Users\Marcel\.recently-used.xbel
2014-09-10 17:34 - 2014-07-07 03:40 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-10 17:34 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-10 17:33 - 2014-09-05 03:52 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-10 17:33 - 2014-09-05 03:47 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 17:33 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-10 17:33 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-10 17:26 - 2014-09-10 17:26 - 00023589 _____ () C:\ComboFix.txt
2014-09-10 17:10 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-09-10 17:10 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-09-10 17:10 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-09-10 17:10 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-09-10 17:10 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-09-10 17:10 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-09-10 17:10 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-09-10 17:10 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-09-10 17:09 - 2014-09-10 17:26 - 00000000 ____D () C:\Qoobox
2014-09-10 17:09 - 2014-09-10 17:25 - 00000000 ____D () C:\Windows\erdnt
2014-09-10 17:05 - 2014-09-10 17:05 - 05576885 ____R (Swearware) C:\Users\Marcel\Desktop\ComboFix.exe
2014-09-09 20:39 - 2014-09-11 01:12 - 00000000 ____D () C:\FRST
2014-09-09 20:36 - 2014-09-09 20:36 - 00000000 _____ () C:\Users\Marcel\defogger_reenable
2014-09-09 20:33 - 2014-09-09 20:34 - 00050477 _____ () C:\Users\Marcel\Downloads\Defogger.exe
2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-09-07 18:10 - 2014-09-11 01:00 - 00002074 _____ () C:\Windows\PFRO.log
2014-09-07 18:09 - 2014-09-11 01:00 - 00001411 _____ () C:\Windows\setupact.log
2014-09-07 18:09 - 2014-09-07 18:09 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-07 18:08 - 2014-09-07 18:08 - 00002196 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\ALDI TALK Verbindungsassistent.lnk
2014-09-07 18:08 - 2014-09-07 18:08 - 00002190 _____ () C:\Users\Public\Desktop\ALDI TALK Verbindungsassistent.lnk
2014-09-07 18:08 - 2014-09-07 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALDI TALK Verbindungsassistent
2014-09-07 17:35 - 2014-09-10 17:18 - 00000000 ____D () C:\Program Files\ALDITALKVerbindungsassistent
2014-09-07 17:35 - 2014-09-08 02:00 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\ALDITALKVerbindungsassistent
2014-09-07 17:03 - 2014-09-07 17:29 - 00000421 _____ () C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Die Seite kann nicht angezeigt werden..website
2014-09-05 23:00 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-09-05 14:40 - 2014-05-08 11:06 - 02742784 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-09-05 14:40 - 2014-05-08 11:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-09-05 03:42 - 2014-09-05 03:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2014-09-05 03:42 - 2012-08-23 16:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-09-05 03:42 - 2012-08-23 16:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-09-05 03:42 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-09-05 03:41 - 2014-09-07 17:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-05 03:41 - 2013-10-02 02:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-09-05 03:41 - 2013-10-02 02:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-09-05 03:41 - 2013-10-02 02:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-09-05 03:41 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-09-05 03:41 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-09-05 03:41 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-09-05 03:41 - 2013-10-02 01:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-09-05 03:41 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-09-05 03:41 - 2013-10-02 01:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-09-05 03:41 - 2013-10-02 00:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-09-05 03:41 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-09-05 03:40 - 2014-09-07 17:53 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-05 03:38 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-09-04 01:19 - 2014-09-11 00:52 - 00000238 _____ () C:\Users\Marcel\BullseyeCoverageError.txt
2014-09-03 19:10 - 2014-09-10 21:54 - 00000000 ____D () C:\Windows\Minidump
2014-09-03 18:09 - 2014-09-03 18:09 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-09-03 16:34 - 2014-09-07 16:03 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-03 15:30 - 2014-09-03 15:30 - 00000000 ____D () C:\Users\Marcel\AppData\Local\CrashRpt
2014-09-03 14:00 - 2014-09-03 14:00 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\AVS4YOU
2014-09-03 13:59 - 2014-09-03 14:00 - 00000000 ____D () C:\ProgramData\AVS4YOU
2014-09-02 18:42 - 2014-09-04 14:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3
2014-09-02 18:38 - 2014-09-02 18:38 - 00000000 ____D () C:\Windows\Tasks\TaskDisabled
2014-09-02 14:34 - 2014-06-04 15:17 - 00031008 _____ (IObit) C:\Windows\system32\SmartDefragBootTime.exe
2014-09-02 14:32 - 2014-09-04 14:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3
2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll20140902193225.dll
2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll20140902143413.dll
2014-09-02 14:32 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll
2014-09-02 14:32 - 2014-06-04 15:17 - 00018624 _____ (IObit) C:\Windows\system32\Drivers\SmartDefragDriver.sys
2014-09-02 14:24 - 2014-09-02 14:24 - 07523840 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwNs32.sys
2014-09-02 14:24 - 2014-09-02 14:24 - 02760704 _____ (Intel Corporation) C:\Windows\system32\NETwNr32.dll
2014-09-02 14:24 - 2014-09-02 14:24 - 00684032 _____ (Intel Corporation) C:\Windows\system32\NETwNc32.dll
2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Windows\system32\RTCOM
2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Program Files\Realtek
2014-09-02 14:22 - 2014-09-02 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2014-09-02 14:22 - 2014-09-02 14:22 - 28062296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 14585432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 11821656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO30.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 07162128 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 06177624 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-09-02 14:22 - 2014-09-02 14:22 - 05086984 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 03683416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 03086040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2014-09-02 14:22 - 2014-09-02 14:22 - 02566872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 02474200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 02421792 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 02140976 _____ () C:\Windows\system32\SStudio.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01940056 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01892056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2014-09-02 14:22 - 2014-09-02 14:22 - 01823320 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01691224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01509480 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01490264 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01379760 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01292904 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01220200 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01116248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO60.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-09-02 14:22 - 2014-09-02 14:22 - 00987224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00966904 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00966744 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00948336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00916696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00890160 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00819648 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00818936 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00798296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00654952 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00631400 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00606968 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00601704 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00458344 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00389736 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00375400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00357712 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00352016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00274264 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00265376 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00221528 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00219896 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00218216 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00214368 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00188696 _____ () C:\Windows\system32\AcpiServiceVnA.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00134584 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00106768 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00091920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00074080 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00068960 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00062224 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00058264 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00029496 _____ () C:\Windows\system32\audioLibVc.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2014-09-02 14:21 - 2014-09-02 14:21 - 00084480 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2014-09-02 14:21 - 2014-09-02 14:21 - 00077824 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2014-09-02 14:20 - 2014-09-02 14:20 - 00718552 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2014-09-02 14:20 - 2014-09-02 14:20 - 00100896 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2014-09-02 14:20 - 2014-09-02 14:20 - 00076872 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2014-09-02 14:19 - 2014-09-07 18:08 - 00106880 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys
2014-09-02 14:19 - 2014-09-02 14:19 - 00377856 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys
2014-09-02 13:11 - 2014-09-02 13:11 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-09-02 13:11 - 2014-09-02 13:11 - 32219136 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-09-02 13:11 - 2014-09-02 13:11 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-09-02 13:11 - 2014-09-02 13:11 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-09-02 13:11 - 2014-09-02 13:11 - 00061440 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-09-01 21:15 - 2014-09-11 00:59 - 00001067 _____ () C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-09-01 21:13 - 2014-09-01 21:13 - 00000000 ____D () C:\Users\Marcel\AppData\Local\Maxiget
2014-09-01 17:42 - 2014-02-17 13:41 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe
2014-09-01 17:40 - 2014-09-07 18:04 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-09-01 17:40 - 2014-09-07 18:04 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-09-01 17:40 - 2014-09-07 18:04 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-09-01 17:40 - 2014-09-07 18:04 - 00061440 _____ () C:\Windows\system32\config\SAM.iobit
2014-09-01 17:40 - 2014-09-06 16:55 - 32497664 _____ () C:\Windows\system32\config\components.iobit
2014-09-01 16:55 - 2014-09-01 16:55 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\Unity
2014-09-01 15:18 - 2014-09-05 13:14 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-09-01 15:17 - 2014-09-01 15:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf
2014-08-31 21:56 - 2014-08-31 21:56 - 01575960 _____ () C:\Users\Marcel\Downloads\The_Office_Season_8.exe
2014-08-31 21:51 - 2014-09-10 21:50 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\uTorrent
2014-08-31 21:50 - 2014-08-31 21:50 - 01938256 _____ (BitTorrent Inc.) C:\Users\Marcel\Downloads\uTorrent_3.4.2.33254.exe
2014-08-28 12:01 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 12:01 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-27 19:34 - 2014-09-07 17:54 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\ProductData
2014-08-27 19:33 - 2014-09-10 15:42 - 00000000 ____D () C:\ProgramData\ProductData
2014-08-27 19:32 - 2014-09-07 17:53 - 00000000 ____D () C:\ProgramData\IObit
2014-08-27 19:32 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-08-27 19:31 - 2014-09-08 23:08 - 00000000 ____D () C:\Program Files\IObit
2014-08-27 19:29 - 2014-09-07 17:54 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\IObit
2014-08-27 19:27 - 2014-08-27 19:29 - 38672200 _____ (IObit ) C:\Users\Marcel\Downloads\asc-setup_7.3.0.454.exe
2014-08-26 18:41 - 2014-08-26 18:41 - 00001758 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-26 18:41 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-26 18:41 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-08-26 18:40 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-26 18:40 - 2014-08-26 18:41 - 00000000 ____D () C:\Program Files\iTunes
2014-08-26 18:40 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iPod
2014-08-26 18:34 - 2014-08-26 18:38 - 111978832 _____ (Apple Inc.) C:\Users\Marcel\Downloads\iTunesSetup (1).exe
2014-08-26 18:26 - 2014-08-26 18:26 - 00152904 ____H () C:\Windows\system32\mlfcache.dat
2014-08-26 15:43 - 2014-08-26 15:43 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\AppSplash
2014-08-26 15:38 - 2014-08-26 15:38 - 00642592 _____ () C:\Users\Marcel\Downloads\Easy Torrent.exe
2014-08-26 15:36 - 2014-08-26 15:36 - 00001024 _____ () C:\.rnd
2014-08-26 15:33 - 2014-08-26 15:49 - 00000000 ____D () C:\Program Files\OneBrowse
2014-08-26 15:31 - 2014-08-26 15:31 - 00033608 _____ () C:\Users\Marcel\Downloads\122309-pthc-collection-cp.torrent
2014-08-23 14:59 - 2014-09-11 00:54 - 174736384 _____ () C:\Users\Public\Documents\Outlook_Export_MS.pst
2014-08-22 15:47 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-22 15:47 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-22 15:47 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-22 15:47 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-22 15:47 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-22 15:47 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-22 15:47 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-22 15:46 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-22 15:46 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-13 17:07 - 2014-08-13 17:07 - 00000000 ____D () C:\Users\Marcel\.thumbnails
2014-08-13 16:46 - 2014-09-10 18:39 - 00000000 ____D () C:\Users\Marcel\.gimp-2.6
2014-08-13 06:34 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-13 06:34 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-13 06:34 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-13 06:34 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 06:10 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 06:10 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 06:10 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-13 06:10 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-13 06:09 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 06:08 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 06:08 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 06:08 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 06:08 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 06:08 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 06:08 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 06:08 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 06:08 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-11 01:13 - 2014-09-11 01:12 - 00013431 _____ () C:\Users\Marcel\Desktop\FRST.txt
2014-09-11 01:12 - 2014-09-11 01:12 - 01097728 _____ (Farbar) C:\Users\Marcel\Desktop\FRST.exe
2014-09-11 01:12 - 2014-09-09 20:39 - 00000000 ____D () C:\FRST
2014-09-11 01:10 - 2014-09-11 01:10 - 00000626 _____ () C:\Users\Marcel\Desktop\JRT.txt
2014-09-11 01:08 - 2014-09-11 01:08 - 00000000 ____D () C:\Windows\ERUNT
2014-09-11 01:08 - 2009-07-14 06:34 - 00022832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-11 01:08 - 2009-07-14 06:34 - 00022832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-11 01:07 - 2014-09-11 01:07 - 01016261 _____ (Thisisu) C:\Users\Marcel\Desktop\JRT.exe
2014-09-11 01:07 - 2014-09-11 01:07 - 00001100 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-11 01:07 - 2014-06-15 01:18 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-11 01:07 - 2014-06-15 01:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-09-11 01:07 - 2014-04-13 16:56 - 00000000 ____D () C:\Program Files\Avira
2014-09-11 01:07 - 2009-12-27 15:02 - 01784468 _____ () C:\Windows\WindowsUpdate.log
2014-09-11 01:06 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-09-11 01:02 - 2014-08-05 15:54 - 00000000 ____D () C:\Users\Marcel\Desktop\Neuer Ordner
2014-09-11 01:00 - 2014-09-07 18:10 - 00002074 _____ () C:\Windows\PFRO.log
2014-09-11 01:00 - 2014-09-07 18:09 - 00001411 _____ () C:\Windows\setupact.log
2014-09-11 01:00 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-11 00:59 - 2014-09-11 00:57 - 00000000 ____D () C:\AdwCleaner
2014-09-11 00:59 - 2014-09-01 21:15 - 00001067 _____ () C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-09-11 00:56 - 2014-09-11 00:56 - 01370483 _____ () C:\Users\Marcel\Desktop\adwcleaner_3.309.exe
2014-09-11 00:54 - 2014-08-23 14:59 - 174736384 _____ () C:\Users\Public\Documents\Outlook_Export_MS.pst
2014-09-11 00:52 - 2014-09-04 01:19 - 00000238 _____ () C:\Users\Marcel\BullseyeCoverageError.txt
2014-09-11 00:22 - 2012-05-20 18:06 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-10 23:18 - 2014-09-10 23:17 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\vlc
2014-09-10 23:17 - 2014-09-10 23:17 - 00000634 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-09-10 23:17 - 2014-09-10 23:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-09-10 23:10 - 2010-07-28 18:47 - 00000000 ____D () C:\Users\Marcel\VLC
2014-09-10 22:56 - 2009-12-27 15:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-10 22:54 - 2014-06-15 05:38 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-10 22:51 - 2014-06-15 09:08 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-10 22:51 - 2009-12-29 11:15 - 98758480 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-10 22:48 - 2009-12-27 15:21 - 01593564 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-10 22:45 - 2014-09-10 22:31 - 00000045 _____ () C:\Users\Marcel\Desktop\gc.log
2014-09-10 22:23 - 2012-05-20 18:06 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-09-10 22:23 - 2011-12-21 23:21 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-09-10 21:54 - 2014-09-10 21:54 - 382563663 _____ () C:\Windows\MEMORY.DMP
2014-09-10 21:54 - 2014-09-10 21:54 - 00149608 _____ () C:\Windows\Minidump\091014-21871-01.dmp
2014-09-10 21:54 - 2014-09-03 19:10 - 00000000 ____D () C:\Windows\Minidump
2014-09-10 21:50 - 2014-08-31 21:51 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\uTorrent
2014-09-10 18:39 - 2014-08-13 16:46 - 00000000 ____D () C:\Users\Marcel\.gimp-2.6
2014-09-10 18:12 - 2014-09-10 18:12 - 00002171 _____ () C:\Users\Marcel\.recently-used.xbel
2014-09-10 18:12 - 2009-12-27 15:17 - 00000000 ____D () C:\Users\Marcel
2014-09-10 17:26 - 2014-09-10 17:26 - 00023589 _____ () C:\ComboFix.txt
2014-09-10 17:26 - 2014-09-10 17:09 - 00000000 ____D () C:\Qoobox
2014-09-10 17:26 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Default
2014-09-10 17:26 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-09-10 17:25 - 2014-09-10 17:09 - 00000000 ____D () C:\Windows\erdnt
2014-09-10 17:21 - 2009-07-14 04:04 - 00000215 _____ () C:\Windows\system.ini
2014-09-10 17:18 - 2014-09-07 17:35 - 00000000 ____D () C:\Program Files\ALDITALKVerbindungsassistent
2014-09-10 17:05 - 2014-09-10 17:05 - 05576885 ____R (Swearware) C:\Users\Marcel\Desktop\ComboFix.exe
2014-09-10 15:42 - 2014-08-27 19:33 - 00000000 ____D () C:\ProgramData\ProductData
2014-09-09 20:36 - 2014-09-09 20:36 - 00000000 _____ () C:\Users\Marcel\defogger_reenable
2014-09-09 20:34 - 2014-09-09 20:33 - 00050477 _____ () C:\Users\Marcel\Downloads\Defogger.exe
2014-09-08 23:08 - 2014-08-27 19:31 - 00000000 ____D () C:\Program Files\IObit
2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-08 03:01 - 2014-09-08 03:01 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-09-08 03:01 - 2014-06-16 14:35 - 00002687 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-09-08 03:01 - 2010-04-09 17:06 - 00000000 ____D () C:\ProgramData\Skype
2014-09-08 03:00 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-09-08 02:00 - 2014-09-07 17:35 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\ALDITALKVerbindungsassistent
2014-09-07 23:43 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-09-07 18:09 - 2014-09-07 18:09 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-07 18:08 - 2014-09-07 18:08 - 00002196 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\ALDI TALK Verbindungsassistent.lnk
2014-09-07 18:08 - 2014-09-07 18:08 - 00002190 _____ () C:\Users\Public\Desktop\ALDI TALK Verbindungsassistent.lnk
2014-09-07 18:08 - 2014-09-07 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALDI TALK Verbindungsassistent
2014-09-07 18:08 - 2014-09-02 14:19 - 00106880 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 01112288 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
2014-09-07 18:08 - 2014-06-14 18:11 - 01112288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2014-09-07 18:08 - 2014-06-14 18:11 - 00860928 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 00116736 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 00102784 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 00082816 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 00072576 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 00051456 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 00026496 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 00023424 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys
2014-09-07 18:08 - 2014-06-14 18:11 - 00011136 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys
2014-09-07 18:04 - 2014-09-01 17:40 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-09-07 18:04 - 2014-09-01 17:40 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-09-07 18:04 - 2014-09-01 17:40 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-09-07 18:04 - 2014-09-01 17:40 - 00061440 _____ () C:\Windows\system32\config\SAM.iobit
2014-09-07 17:55 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-09-07 17:54 - 2014-08-27 19:34 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\ProductData
2014-09-07 17:54 - 2014-08-27 19:29 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\IObit
2014-09-07 17:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-09-07 17:53 - 2014-09-05 03:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-07 17:53 - 2014-09-05 03:40 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-07 17:53 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\IObit
2014-09-07 17:53 - 2012-03-31 11:12 - 00000000 ____D () C:\Program Files\Safari
2014-09-07 17:53 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration
2014-09-07 17:29 - 2014-09-07 17:03 - 00000421 _____ () C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Die Seite kann nicht angezeigt werden..website
2014-09-07 17:08 - 2010-05-28 11:33 - 00000000 ____D () C:\Users\Marcel\AppData\Local\Apple Computer
2014-09-07 16:03 - 2014-09-03 16:34 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-06 16:55 - 2014-09-01 17:40 - 32497664 _____ () C:\Windows\system32\config\components.iobit
2014-09-05 13:14 - 2014-09-01 15:18 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-09-05 03:52 - 2014-09-10 17:33 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-05 03:47 - 2014-09-10 17:33 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-05 03:46 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-05 03:44 - 2009-07-14 10:47 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-09-05 03:42 - 2014-09-05 03:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2014-09-04 14:56 - 2009-12-27 15:59 - 00000000 ____D () C:\Users\Marcel\AppData\Local\Microsoft Help
2014-09-04 14:08 - 2014-09-02 18:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3
2014-09-04 14:07 - 2014-09-02 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3
2014-09-04 01:19 - 2014-07-26 23:35 - 00000000 ____D () C:\Users\Marcel\AppData\Local\Unity
2014-09-04 01:19 - 2014-07-26 23:35 - 00000000 ____D () C:\Users\Marcel\AppData\Local\Deployment
2014-09-03 18:16 - 2009-07-14 10:56 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-09-03 18:09 - 2014-09-03 18:09 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-09-03 15:30 - 2014-09-03 15:30 - 00000000 ____D () C:\Users\Marcel\AppData\Local\CrashRpt
2014-09-03 14:00 - 2014-09-03 14:00 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\AVS4YOU
2014-09-03 14:00 - 2014-09-03 13:59 - 00000000 ____D () C:\ProgramData\AVS4YOU
2014-09-02 18:38 - 2014-09-02 18:38 - 00000000 ____D () C:\Windows\Tasks\TaskDisabled
2014-09-02 14:24 - 2014-09-02 14:24 - 07523840 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwNs32.sys
2014-09-02 14:24 - 2014-09-02 14:24 - 02760704 _____ (Intel Corporation) C:\Windows\system32\NETwNr32.dll
2014-09-02 14:24 - 2014-09-02 14:24 - 00684032 _____ (Intel Corporation) C:\Windows\system32\NETwNc32.dll
2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Windows\system32\RTCOM
2014-09-02 14:23 - 2014-09-02 14:23 - 00000000 ____D () C:\Program Files\Realtek
2014-09-02 14:22 - 2014-09-02 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2014-09-02 14:22 - 2014-09-02 14:22 - 28062296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 14585432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 11821656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO30.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 07162128 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 06177624 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-09-02 14:22 - 2014-09-02 14:22 - 05086984 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 03683416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 03086040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2014-09-02 14:22 - 2014-09-02 14:22 - 02566872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 02474200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 02421792 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 02140976 _____ () C:\Windows\system32\SStudio.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01940056 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01892056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2014-09-02 14:22 - 2014-09-02 14:22 - 01823320 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01691224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01509480 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01490264 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01379760 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01292904 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01220200 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01116248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO60.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-09-02 14:22 - 2014-09-02 14:22 - 00987224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00966904 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00966744 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00948336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00916696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00890160 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00819648 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00818936 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00798296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00654952 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00631400 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00606968 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00601704 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00458344 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00389736 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00375400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00357712 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00352016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00274264 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00265376 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00221528 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00219896 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00218216 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00214368 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00188696 _____ () C:\Windows\system32\AcpiServiceVnA.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00134584 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00106768 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00091920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00074080 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00068960 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00062224 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00058264 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00029496 _____ () C:\Windows\system32\audioLibVc.dll
2014-09-02 14:22 - 2014-09-02 14:22 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2014-09-02 14:21 - 2014-09-02 14:21 - 00084480 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2014-09-02 14:21 - 2014-09-02 14:21 - 00077824 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2014-09-02 14:20 - 2014-09-02 14:20 - 00718552 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2014-09-02 14:20 - 2014-09-02 14:20 - 00100896 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2014-09-02 14:20 - 2014-09-02 14:20 - 00076872 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2014-09-02 14:19 - 2014-09-02 14:19 - 00377856 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys
2014-09-02 13:32 - 2009-12-28 10:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-09-02 13:28 - 2014-07-10 13:23 - 00000000 ____D () C:\Program Files\QuickTime
2014-09-02 13:28 - 2010-05-07 11:01 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-09-02 13:28 - 2009-12-29 16:37 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-09-02 13:28 - 2009-12-28 10:13 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8
2014-09-02 13:28 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-09-02 13:28 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-02 13:11 - 2014-09-02 13:11 - 54919168 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-09-02 13:11 - 2014-09-02 13:11 - 32219136 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-09-02 13:11 - 2014-09-02 13:11 - 00331776 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-09-02 13:11 - 2014-09-02 13:11 - 00167936 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-09-02 13:11 - 2014-09-02 13:11 - 00061440 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-09-01 21:13 - 2014-09-01 21:13 - 00000000 ____D () C:\Users\Marcel\AppData\Local\Maxiget
2014-09-01 17:24 - 2010-06-16 11:25 - 00000000 ____D () C:\ProgramData\Nero
2014-09-01 17:22 - 2010-04-16 17:21 - 00000000 ____D () C:\Program Files\Common Files\ArcSoft
2014-09-01 17:21 - 2010-04-09 10:40 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\Canon
2014-09-01 17:21 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\twain_32
2014-09-01 17:20 - 2010-04-08 15:49 - 00000000 ____D () C:\ProgramData\TOSHIBA
2014-09-01 17:18 - 2014-06-16 00:16 - 00000000 ____D () C:\Users\Marcel\AppData\Local\PokerStars.EU
2014-09-01 17:16 - 2014-08-01 16:58 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\DVDVideoSoft
2014-09-01 17:15 - 2009-12-27 15:17 - 00001418 _____ () C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-01 16:55 - 2014-09-01 16:55 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\Unity
2014-09-01 15:17 - 2014-09-01 15:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf
2014-09-01 15:17 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-31 21:56 - 2014-08-31 21:56 - 01575960 _____ () C:\Users\Marcel\Downloads\The_Office_Season_8.exe
2014-08-31 21:50 - 2014-08-31 21:50 - 01938256 _____ (BitTorrent Inc.) C:\Users\Marcel\Downloads\uTorrent_3.4.2.33254.exe
2014-08-29 00:08 - 2009-07-14 06:33 - 00427048 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-27 20:08 - 2012-03-23 13:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader
2014-08-27 20:08 - 2010-06-17 15:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView
2014-08-27 20:08 - 2010-04-16 13:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux
2014-08-27 20:08 - 2009-12-29 21:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-08-27 20:07 - 2009-12-27 14:58 - 00000000 ____D () C:\Windows\Panther
2014-08-27 19:33 - 2010-05-28 11:33 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\Apple Computer
2014-08-27 19:32 - 2014-08-27 19:32 - 00000000 ____D () C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-08-27 19:29 - 2014-08-27 19:27 - 38672200 _____ (IObit ) C:\Users\Marcel\Downloads\asc-setup_7.3.0.454.exe
2014-08-26 18:41 - 2014-08-26 18:41 - 00001758 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-26 18:41 - 2014-08-26 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-26 18:41 - 2014-08-26 18:40 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-26 18:41 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iTunes
2014-08-26 18:40 - 2014-08-26 18:40 - 00000000 ____D () C:\Program Files\iPod
2014-08-26 18:40 - 2012-03-23 13:24 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-26 18:38 - 2014-08-26 18:34 - 111978832 _____ (Apple Inc.) C:\Users\Marcel\Downloads\iTunesSetup (1).exe
2014-08-26 18:26 - 2014-08-26 18:26 - 00152904 ____H () C:\Windows\system32\mlfcache.dat
2014-08-26 15:51 - 2013-09-22 14:51 - 00000000 ____D () C:\Users\Marcel\Documents\Bluetooth
2014-08-26 15:49 - 2014-08-26 15:33 - 00000000 ____D () C:\Program Files\OneBrowse
2014-08-26 15:43 - 2014-08-26 15:43 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\AppSplash
2014-08-26 15:38 - 2014-08-26 15:38 - 00642592 _____ () C:\Users\Marcel\Downloads\Easy Torrent.exe
2014-08-26 15:36 - 2014-08-26 15:36 - 00001024 _____ () C:\.rnd
2014-08-26 15:31 - 2014-08-26 15:31 - 00033608 _____ () C:\Users\Marcel\Downloads\122309-pthc-collection-cp.torrent
2014-08-23 03:46 - 2014-08-28 12:01 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-28 12:01 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-19 19:39 - 2014-09-10 22:55 - 00327872 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-19 00:26 - 2014-09-10 22:55 - 17455104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-19 00:08 - 2014-09-10 22:55 - 04232704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-18 23:57 - 2014-09-10 22:55 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-18 23:57 - 2014-09-10 22:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-18 23:46 - 2014-09-10 22:55 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-18 23:45 - 2014-09-10 22:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-18 23:44 - 2014-09-10 22:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-18 23:44 - 2014-09-10 22:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-18 23:42 - 2014-09-10 22:55 - 02185728 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-18 23:39 - 2014-09-10 22:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-18 23:39 - 2014-09-10 22:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-18 23:37 - 2014-09-10 22:55 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-18 23:36 - 2014-09-10 22:55 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-18 23:36 - 2014-09-10 22:55 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-18 23:35 - 2014-09-10 22:55 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-18 23:30 - 2014-09-10 22:55 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-18 23:27 - 2014-09-10 22:55 - 00365056 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-18 23:22 - 2014-09-10 22:55 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-18 23:19 - 2014-09-10 22:55 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-18 23:17 - 2014-09-10 22:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-18 23:17 - 2014-09-10 22:55 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-18 23:15 - 2014-09-10 22:55 - 11769856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-18 23:09 - 2014-09-10 22:55 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-18 23:08 - 2014-09-10 22:55 - 02014208 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-18 23:08 - 2014-09-10 22:55 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-18 23:07 - 2014-09-10 22:55 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-18 22:46 - 2014-09-10 22:55 - 01812992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-18 22:38 - 2014-09-10 22:55 - 01190400 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-18 22:36 - 2014-09-10 22:55 - 00678400 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-15 15:41 - 2010-04-16 17:31 - 00000000 ____D () C:\ProgramData\ArcSoft
2014-08-13 17:07 - 2014-08-13 17:07 - 00000000 ____D () C:\Users\Marcel\.thumbnails
2014-08-13 17:07 - 2009-12-28 19:21 - 00000000 ____D () C:\Users\Marcel\AppData\Roaming\gtk-2.0
Some content of TEMP:
====================
C:\Users\Marcel\AppData\Local\Temp\avgnt.exe
C:\Users\Marcel\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
C:\Users\Marcel\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-06 06:39
==================== End Of Log ============================
|
|
11.09.2014, 09:42
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Bitte auch ne neue Addition.txt erstellen, dazu FRST starten und einen Haken setzen bei Addition.txt, dann auf Scan klicken. 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.09.2014, 15:52
| #9 |
| | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel Sorry! Hier die Addition.txt:FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-09-2014
Ran by Marcel at 2014-09-11 16:49:58
Running from C:\Users\Marcel\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33254 - BitTorrent Inc.)
32 Bit HP CIO Components Installer (Version: 6.1.2 - Hewlett-Packard) Hidden
Adobe Acrobat 7.0 Professional (Version: 7.1.0 - Adobe Systems) Hidden
Adobe Acrobat 7.1.0 Professional (HKLM\...\Adobe Acrobat 7.0 Professional) (Version: 7.1.0 - Adobe Systems)
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader 9.4.7 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A94000000001}) (Version: 9.4.7 - Adobe Systems Incorporated)
ALDI TALK Verbindungsassistent (HKLM\...\ALDITALKVerbindungsassistent) (Version: ALDI TALK 4.0 - ALDI TALK Verbindungsassistent)
Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.)
Avira (HKLM\...\{70e83cd8-4bd5-4039-ab5a-6b94a8abb641}) (Version: 1.1.21.25162 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.21.25162 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.6.570 - Avira)
Canon MP Navigator EX 1.0 (HKLM\...\MP Navigator EX 1.0) (Version: - )
GIMP 2.6.8 (HKLM\...\WinGimp-2.0_is1) (Version: - )
iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.27 - Irfan Skiljan)
iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.)
Java Auto Updater (Version: 2.0.7.1 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
neroxml (Version: 1.0.0 - Nero AG) Hidden
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Safari (HKLM\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.3.0 - Synaptics Incorporated)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2889914) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{F3F83933-75FC-4B60-84F2-3F8FA63D042E}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1524326991-2445942720-3436998146-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Marcel\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)
==================== Restore Points =========================
10-09-2014 15:10:08 ComboFix created restore point
10-09-2014 20:47:23 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2014-09-10 17:19 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {244B04CA-E241-481E-BF75-6C2E79955F94} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {401A8ECE-9A07-49B5-9D79-8BB8EF9BE355} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {4DC94271-DFE2-481C-8218-20CCCD668DC0} - System32\Tasks\Ad-Aware Update (Daily 3) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {87D83740-CBAC-4465-A329-659526C1FC99} - System32\Tasks\{2ADF7B21-0589-4944-AC43-5F58E8B6CA34} => C:\Program Files\Skype\Phone\Skype.exe
Task: {8C114D9A-4D77-4A5B-8B8B-ECBA00900DC1} - System32\Tasks\SmartDefrag3_Startup => C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe
Task: {9E157639-B621-44A8-8121-7BA0B4CBECE9} - System32\Tasks\{9FE159AC-B86F-4EC0-ACBF-83BF95C53952} => C:\Program Files\Microsoft Office\Office12\POWERPNT.EXE [2011-05-31] (Microsoft Corporation)
Task: {9EFCE3B5-8872-42B9-83DE-E56A6EB44849} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10] (Adobe Systems Incorporated)
Task: {AAFF2CE9-5119-4670-AE15-38533AD9B8FC} - System32\Tasks\SmartDefrag3_Update => C:\Program Files\IObit\Smart Defrag 3\AutoUpdate.exe
Task: {ABAFDF82-6741-4249-BABA-2E23D6159D3B} - System32\Tasks\Ad-Aware Update (Daily 4) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {B1AF3746-8B7E-4FE7-AE70-59718A47F9E9} - System32\Tasks\Ad-Aware Update (Daily 1) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {BBE82FCA-E9C0-472E-997A-9A24A3EF9155} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe
Task: {D528C896-64FE-4CDB-8A4B-F2DEA08BA359} - System32\Tasks\Driver Booster SkipUAC (Marcel) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe
Task: {FFBC413C-0999-441E-9F84-4635F568B5FD} - System32\Tasks\Ad-Aware Update (Daily 2) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2009-12-29 21:13 - 2001-10-28 18:42 - 00116224 _____ () C:\Windows\System32\pdfcmnnt.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00358968 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-08-27 15:00 - 2014-08-27 15:00 - 00139056 _____ () C:\Program Files\Avira\My Avira\Avira.OE.NativeCore.dll
2014-08-27 15:00 - 2014-08-27 15:00 - 00066864 _____ () C:\Program Files\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2009-12-28 16:44 - 2009-12-12 16:12 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll
2014-09-10 21:59 - 2014-08-27 15:00 - 00052472 _____ () C:\Users\Marcel\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 01792568 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe
2014-09-07 18:08 - 2014-09-07 18:16 - 00102400 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDatabase.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00106496 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgUtil.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00090112 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgPorts.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00200704 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDetection.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00086016 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDialup.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00012288 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGDebugs.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00073728 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgDriverInstall.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00569344 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgCore.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00139264 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgBluetooth.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00204800 _____ () C:\Program Files\ALDITALKVerbindungsassistent\LiveBoxCM.dll
2014-09-07 18:08 - 2007-02-27 19:44 - 00823296 ____N () C:\Program Files\ALDITALKVerbindungsassistent\LIBEAY32.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00126976 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WtgWiFi.dll
2014-09-07 18:08 - 2010-12-02 08:33 - 01097728 ____N () C:\Program Files\ALDITALKVerbindungsassistent\NDISAPI.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00614400 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGXMLUtil.dll
2014-09-07 18:08 - 2014-09-07 18:16 - 00303104 _____ () C:\Program Files\ALDITALKVerbindungsassistent\WTGSMSPCClient.Dll
2014-09-10 20:21 - 2014-09-10 20:21 - 00007224 _____ () C:\Users\Marcel\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: Acrobat Assistant 7.0 => c:\program files\adobe\acrobat 7.0\distillr\acrotray.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/11/2014 01:52:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: wmpnetwk.exe, Version: 12.0.7601.17514, Zeitstempel: 0x4ce7a4a7
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x57d95c60
ID des fehlerhaften Prozesses: 0xc10
Startzeit der fehlerhaften Anwendung: 0xwmpnetwk.exe0
Pfad der fehlerhaften Anwendung: wmpnetwk.exe1
Pfad des fehlerhaften Moduls: wmpnetwk.exe2
Berichtskennung: wmpnetwk.exe3
System errors:
=============
Error: (09/11/2014 01:42:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "IMF Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3
Error: (09/11/2014 01:42:52 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Error: (09/11/2014 01:42:52 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (09/11/2014 09:10:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "IMF Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3
Error: (09/11/2014 09:09:37 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Error: (09/11/2014 09:09:37 AM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (09/11/2014 01:54:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "IMF Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3
Error: (09/11/2014 01:54:45 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Error: (09/11/2014 01:54:45 AM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (09/11/2014 01:52:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Microsoft Office Sessions:
=========================
Error: (09/10/2014 09:51:34 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4820 seconds with 0 seconds of active time. This session ended with a crash.
Error: (08/23/2014 03:01:34 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 131 seconds with 120 seconds of active time. This session ended with a crash.
Error: (06/16/2010 09:36:31 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1831 seconds with 180 seconds of active time. This session ended with a crash.
Error: (06/07/2010 05:35:52 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 18826 seconds with 7620 seconds of active time. This session ended with a crash.
Error: (05/26/2010 06:01:02 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6524.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 31613 seconds with 6000 seconds of active time. This session ended with a crash.
Error: (05/11/2010 10:58:23 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7071 seconds with 480 seconds of active time. This session ended with a crash.
Error: (12/28/2009 00:02:20 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 4242 seconds with 540 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz
Percentage of memory in use: 38%
Total physical RAM: 3036.87 MB
Available physical RAM: 1876.01 MB
Total Pagefile: 6072.03 MB
Available Pagefile: 4651.84 MB
Total Virtual: 2047.88 MB
Available Virtual: 1926.42 MB
==================== Drives ================================
Drive c: (Vista) (Fixed) (Total:232.88 GB) (Free:190.88 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Data) (Fixed) (Total:209.93 GB) (Free:70.62 GB) NTFS
Drive f: (Disk) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS
Drive m: (Volume) (Fixed) (Total:21.48 GB) (Free:20.49 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7878FC96)
Partition 1: (Not Active) - (Size=1.5 GB) - (Type=27)
Partition 2: (Active) - (Size=232.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=209.9 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=21.5 GB) - (Type=OF Extended)
==================== End Of Log ============================
|
|
11.09.2014, 16:35
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel [gelöst] Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
FF NewTab: about:newtab
FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\anttoolbar@ant.com [Not Found]
FF Extension: No Name - C:\Program Files\Common Files\Spigot\wtxpcom [Not Found]
FF Extension: No Name - C:\Program Files\YTD Toolbar\FF [Not Found]
FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\ascsurfingprotection@iobit.com [Not Found]
FF Extension: No Name - C:\Program Files\IObit Apps Toolbar\FF [Not Found]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} [2014-06-16]
EmptyTemp::
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.09.2014, 19:42
| #11 |
| | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel [gelöst] Hallo cosinus, hier die Fixlog.txt nach dem Ausführen deiner Anleitung: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 10-09-2014 Ran by Marcel at 2014-09-11 20:36:56 Run:1 Running from C:\Users\Marcel\Desktop Boot Mode: Normal ============================================== Content of fixlist: ***************** GroupPolicy: Group Policy on Chrome detected <======= ATTENTION FF NewTab: about:newtab FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\anttoolbar@ant.com [Not Found] FF Extension: No Name - C:\Program Files\Common Files\Spigot\wtxpcom [Not Found] FF Extension: No Name - C:\Program Files\YTD Toolbar\FF [Not Found] FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\ascsurfingprotection@iobit.com [Not Found] FF Extension: No Name - C:\Program Files\IObit Apps Toolbar\FF [Not Found] FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] FF Extension: No Name - C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} [2014-06-16] EmptyTemp:: ***************** C:\Windows\system32\GroupPolicy\Machine => Moved successfully. C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully. Firefox newtab deleted successfully. C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\anttoolbar@ant.com => not found. C:\Program Files\Common Files\Spigot\wtxpcom => not found. C:\Program Files\YTD Toolbar\FF => not found. C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\extensions\ascsurfingprotection@iobit.com => not found. C:\Program Files\IObit Apps Toolbar\FF => not found. C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} => not found. C:\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} => Moved successfully. EmptyTemp: => Removed 282 MB temporary data. The system needed a reboot. ==== End of Fixlog ==== |
|
11.09.2014, 21:34
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel [gelöst] Okay, dann Kontrollscans mit MBAM und ESET bitte: Downloade Dir bitte  Malwarebytes Anti-Malware
ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.09.2014, 23:54
| #13 |
| | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel [gelöst] Hallo, hier die Daten aus den Scans: Malwarebytes Anti-Malware Malwarebytes | Free Anti-Malware & Internet Security Software Protection, 11.09.2014 22:43:15, SYSTEM, MARCEL-PC, Protection, Malware Protection, Starting, Protection, 11.09.2014 22:43:15, SYSTEM, MARCEL-PC, Protection, Malware Protection, Started, Protection, 11.09.2014 22:43:15, SYSTEM, MARCEL-PC, Protection, Malicious Website Protection, Starting, Update, 11.09.2014 22:44:05, SYSTEM, MARCEL-PC, Manual, Rootkit Database, 2014.2.20.1, 2014.9.10.2, Protection, 11.09.2014 22:44:08, SYSTEM, MARCEL-PC, Protection, Malicious Website Protection, Started, Update, 11.09.2014 22:44:32, SYSTEM, MARCEL-PC, Manual, Malware Database, 2014.3.4.9, 2014.9.11.7, Protection, 11.09.2014 22:44:34, SYSTEM, MARCEL-PC, Protection, Refresh, Starting, Protection, 11.09.2014 22:44:34, SYSTEM, MARCEL-PC, Protection, Malicious Website Protection, Stopping, Protection, 11.09.2014 22:44:34, SYSTEM, MARCEL-PC, Protection, Malicious Website Protection, Stopped, Protection, 11.09.2014 22:44:39, SYSTEM, MARCEL-PC, Protection, Refresh, Success, Protection, 11.09.2014 22:44:39, SYSTEM, MARCEL-PC, Protection, Malicious Website Protection, Starting, Protection, 11.09.2014 22:44:40, SYSTEM, MARCEL-PC, Protection, Malicious Website Protection, Started, Protection, 11.09.2014 23:05:28, SYSTEM, MARCEL-PC, Protection, Malware Protection, Starting, Protection, 11.09.2014 23:05:28, SYSTEM, MARCEL-PC, Protection, Malware Protection, Started, Protection, 11.09.2014 23:05:28, SYSTEM, MARCEL-PC, Protection, Malicious Website Protection, Starting, Protection, 11.09.2014 23:08:02, SYSTEM, MARCEL-PC, Protection, Malicious Website Protection, Started, (end) ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7623 # api_version=3.0.2 # EOSSerial=568a80791612814eac59419e3945c8eb # engine=20112 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2014-09-11 10:44:01 # local_time=2014-09-12 12:44:01 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1031 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode_1='Avira Desktop' # compatibility_mode=1810 16777213 100 100 39474 10848439 0 0 # compatibility_mode_1='' # compatibility_mode=5893 16776574 100 94 7659356 162106632 0 0 # scanned=178297 # found=20 # cleaned=0 # scan_time=4938 sh=53F226B3D1D3828304E40C6C7A50667ADF23B42A ft=1 fh=e1ea10a5e9416a5c vn="Win32/Thinknice.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\SupTab\DpInterface32.dll.vir" sh=36F969E522FD53A189312D946C430EFD02D5A982 ft=1 fh=5d022c015afe1524 vn="Variante von Win32/ELEX.AV evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\SupTab\SupIePluginServiceUpdate.exe.vir" sh=4139F95644E13A650D4827C943BCC9F2F0F6AA93 ft=1 fh=3b96e1736604b8bc vn="Win32/Thinknice.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\SupTab\uninstall.exe.vir" sh=36F969E522FD53A189312D946C430EFD02D5A982 ft=1 fh=5d022c015afe1524 vn="Variante von Win32/ELEX.AV evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir" sh=9C6C68EFAE364FC17008C32848E148F86D468C99 ft=1 fh=c71c0011e4b098f3 vn="Variante von Win32/ELEX.AM evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.vir" sh=25B0D10131D7E6CE06C35FC17D35FBC0155E3B92 ft=1 fh=be8ecd58c861b44a vn="Variante von Win32/ShopperPro.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\YTAHelper\YTAHelper.dll.vir" sh=605BC766EB0416B8978D431CFD7EFF9A09853D6F ft=0 fh=0000000000000000 vn="Win32/Toolbar.Iminent.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Marcel\AppData\Roaming\Mozilla\Firefox\Profiles\33nfirwz.default\Extensions\firefoxmini@go.im.xpi.vir" sh=B9A96D9AE94C4B42CA5499933F6DF218B3903768 ft=1 fh=966b3592656dc188 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung" ac=I fn="C:\Program Files\Avira\AntiVir Desktop\offercast_avirav7_.exe" sh=6CB695154B74584D4590FB313617F97F70354852 ft=1 fh=0ea7c25ce739bb52 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung" ac=I fn="C:\ProgramData\Avira\My Avira\Temp\antivirus.exe" sh=6CB695154B74584D4590FB313617F97F70354852 ft=1 fh=0ea7c25ce739bb52 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung" ac=I fn="C:\Users\All Users\Avira\My Avira\Temp\antivirus.exe" sh=33D9592C1F14E8EE335B0B8C375E6BDCA452C8C0 ft=1 fh=413633707921720c vn="Variante von Win32/Toolbar.Widgi.B evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Marcel\Downloads\asc-setup_7.3.0.454.exe" sh=746DF364CAA5697E4587D22A28EB4F3050893D00 ft=1 fh=c71c001174f85541 vn="Variante von Win32/InstallCore.BY evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Marcel\Downloads\Easy Torrent.exe" sh=5EC7B9914A223F42EA2D34457CE33E1B90A33812 ft=1 fh=22ad68d9cb7eb9be vn="Variante von Win32/OpenCandy.A potenziell unsichere Anwendung" ac=I fn="C:\Users\Marcel\Downloads\FreeYouTubeDownload-3.2.42.716.exe" sh=AE0496E8B7EF7260A5A9A03C5283D6345D09A13C ft=1 fh=d5332291c5aae89f vn="Variante von MSIL/Toolbar.Linkury.E evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI2F29.tmp-\Smartbar.Resources.LanguageSettings.resources.dll" sh=354DAE7D75BC3750A7C27F46E144689ADD69FECE ft=1 fh=56e124954a8ab304 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI2F29.tmp-\spbl.dll" sh=B54A10A054F72B438B85B8C01A2FDDB9E4AA9D95 ft=1 fh=bad654b42602edb0 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI2F29.tmp-\sppsm.dll" sh=74E1FD38F895EE603C538EEB0CB62D2B7AD1F9EF ft=1 fh=eadc0e05b009aa54 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI2F29.tmp-\spusm.dll" sh=C321BD2BA55FC1450102B52CF4320050F96E6ACE ft=1 fh=5f440c13eb246cc1 vn="Variante von MSIL/Toolbar.Linkury.C evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI2F29.tmp-\srbs.dll" sh=8BCF64604E5A8369D2032F0DEAD0FA65CED3959C ft=1 fh=de00f46990bdea72 vn="Variante von MSIL/Toolbar.Linkury.F evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI2F29.tmp-\srbu.dll" sh=39E0129484C7D4950D9E3ACB4016A95333C372C1 ft=1 fh=b2d51b366a5174b0 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI2F29.tmp-\srptc.dll" Mfg Marcel |
|
12.09.2014, 08:24
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel [gelöst] Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter C:\Users\Marcel\Downloads\asc-setup_7.3.0.454.exe
C:\Users\Marcel\Downloads\Easy Torrent.exe
C:\Users\Marcel\Downloads\FreeYouTubeDownload-3.2.42.716.exe
C:\Windows\Installer\MSI2F29.tmp-
EmptyTemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
|
12.09.2014, 13:10
| #15 |
| | Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel [gelöst] Hallo cosinus, hier die heutige Fixlog.txt: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 10-09-2014 Ran by Marcel at 2014-09-12 14:02:27 Run:2 Running from C:\Users\Marcel\Desktop Boot Mode: Normal ============================================== Content of fixlist: ***************** C:\Users\Marcel\Downloads\asc-setup_7.3.0.454.exe C:\Users\Marcel\Downloads\Easy Torrent.exe C:\Users\Marcel\Downloads\FreeYouTubeDownload-3.2.42.716.exe C:\Windows\Installer\MSI2F29.tmp- EmptyTemp: ***************** C:\Users\Marcel\Downloads\asc-setup_7.3.0.454.exe => Moved successfully. C:\Users\Marcel\Downloads\Easy Torrent.exe => Moved successfully. C:\Users\Marcel\Downloads\FreeYouTubeDownload-3.2.42.716.exe => Moved successfully. C:\Windows\Installer\MSI2F29.tmp- => Moved successfully. EmptyTemp: => Removed 225.8 MB temporary data. The system needed a reboot. ==== End of Fixlog ==== |
|
| Themen zu Windows7: Hitzeentwicklung, langsame Performance, CPU arbeitet viel |
| adware/crossrider.gen, adware/crossrider.gen2, device driver, driver booster, fehlercode 0x5, fehlercode 0xc0000005, fehlercode 0xe0434352, flash player, iexplore.exe, internet explorer, msil/toolbar.linkury.c, msil/toolbar.linkury.e, msil/toolbar.linkury.f, msil/toolbar.linkury.g, newtab, performanceprobleme, svchost.exe, win32/bundled.toolbar.ask.d, win32/elex.am, win32/elex.av, win32/installcore.by, win32/opencandy.a, win32/shopperpro.a, win32/thinknice.e, win32/toolbar.iminent.i, win32/toolbar.widgi.b, windows |
WARNUNG an die MITLESER: 
Linear-Darstellung
