| |
| |||||||
Log-Analyse und Auswertung: Laptop läuft langsam und fehlerhaft - auch nach NeuaufsetzungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
27.01.2015, 13:39
| #1 |
| |  Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung Hallo, ich habe das Problem, dass mein Notebook (Compaq 610, Win7, 32Bit) langsam und fehlerhaft läuft. Davon betroffen sind alle Programmstarts, das Hoch- und Runterfahren des Rechners, der Explorer hängt sich ständig auf, der Flash im Mozilla funktioniert nie (trotz aktueller Versionen). Alles sehr ähnlich der Fehlerbeschreibung von User Sparko-> http://www.trojaner-board.de/162929-...tuerzt-ab.html Daher habe ich den Rechner vor einigen Tagen neu aufgesetzt, was die Probleme nicht beseitigen konnte. Nach einer Virenmeldung von Antivir (ich habe mir den Schädling nicht gemerkt und "Entfernen" angeklickt) ließ sich Antivir nicht mehr starten (auch nicht im abgesicherten Modus) und ich habe es neu installiert. Gestern habe ich nach Bereinigung durch den CCleaner, Antivir erneut scannen lassen - zwei Mal über mehrere Stunden - wobei das Programm beide Male bei folgender Datei hängengeblieben ist: a774c93b-f231-4570-a1e0-e6803e8a-7da3.extra Im Ordnerpfad User/AppData/Roaming konnte ich die Datei aber nicht, wie von Antivir vorgegeben, auffinden. Die entsprechenden Skripte von Defogger, FRST, GMER und Oldtimer (heute erstellt) hänge ich unterhalb an. Vielen Dank. GMER Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-01-27 13:17:08
Windows 6.1.7600 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 TOSHIBA_ rev.LH01 298,09GB
Running: Gmer-19357.exe; Driver: C:\Users\jonas\AppData\Local\Temp\ufldypow.sys
---- System - GMER 2.1 ----
SSDT 8ECC8776 ZwCreateSection
SSDT 8ECC8780 ZwRequestWaitReplyPort
SSDT 8ECC877B ZwSetContextThread
SSDT 8ECC8785 ZwSetSecurityObject
SSDT 8ECC878A ZwSystemDebugControl
SSDT 8ECC8717 ZwTerminateProcess
---- Kernel code sections - GMER 2.1 ----
.text ntkrnlpa.exe!ZwSaveKeyEx + 13BD 82A8A569 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 82AAF092 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text ntkrnlpa.exe!RtlSidHashLookup + 340 82AB6950 4 Bytes [76, 87, CC, 8E]
.text ntkrnlpa.exe!RtlSidHashLookup + 69C 82AB6CAC 4 Bytes [80, 87, CC, 8E]
.text ntkrnlpa.exe!RtlSidHashLookup + 6E0 82AB6CF0 4 Bytes [7B, 87, CC, 8E]
.text ntkrnlpa.exe!RtlSidHashLookup + 75C 82AB6D6C 4 Bytes [85, 87, CC, 8E]
.text ntkrnlpa.exe!RtlSidHashLookup + 7B0 82AB6DC0 4 Bytes [8A, 87, CC, 8E]
.text ...
---- Devices - GMER 2.1 ----
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys
AttachedDevice \Driver\tdx \Device\Tcp mfetdik.sys
AttachedDevice \Driver\tdx \Device\Udp mfetdik.sys
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\70f3952f6334
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\70f3952f6334@001ddf301588 0x4A 0xA4 0x2D 0x0E ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\70f3952f6334 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\70f3952f6334@001ddf301588 0x4A 0xA4 0x2D 0x0E ...
---- EOF - GMER 2.1 ----
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-01-2015 01
Ran by jonas at 2015-01-27 12:53:55
Running from C:\Users\jonas\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (Version: - Microsoft) Hidden
2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6215.1000 - Microsoft Corporation)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
ActiveCheck component for HP Active Support Library (Version: 3.0.0.1 - Hewlett-Packard) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.6.0.19140 - Adobe Systems Incorporated)
Adobe Audition 3.0 (HKLM\...\Adobe Audition 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Photoshop CS5.1 (HKLM\...\{9158FF30-78D7-40EF-B83E-451AC5334640}) (Version: 12.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CS3 (HKLM\...\Adobe_32fdd767b4383606e8168e834af5d90) (Version: 3 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira (HKLM\...\{bd538030-07d4-4999-a525-7fafa2483f56}) (Version: 1.1.30.21727 - Avira Operations & Co. KG)
Avira (Version: 1.1.30.21727 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.60.18.12 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
CPQ Wallpaper (HKLM\...\{F173C2B3-296F-458C-98FF-1676A42EBA02}) (Version: 1.0.1.1 - Hewlett-Packard)
DirectX 9 Runtime (Version: 1.00.0000 - Sonic Solutions) Hidden
HP Advisor (HKLM\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard)
HP Common Access Service Library (HKLM\...\{87CA636B-85B8-4611-A81D-F97E71024AFD}) (Version: 3.0.28.1 - Hewlett-Packard)
HP Customer Experience Enhancements (HKLM\...\{5B295588-59C1-4386-9F85-BB4BEDCB0D22}) (Version: 5.7.0.3036 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM\...\{FFBDA363-A033-4F32-8DE0-AEF0F105410E}) (Version: 1.0.3.1 - Hewlett-Packard)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.4.2 - Hewlett-Packard)
HP Setup (HKLM\...\{D0BFE65D-C320-4FC9-88D2-B9C32FB95DA0}) (Version: 1.2.3215.3078 - Hewlett-Packard)
HP Software Setup (HKLM\...\{76AF1F61-BB44-4694-A0EA-C6830C8BEF41}) (Version: 1.0.0.15 - Hewlett-Packard)
HP Support Assistant (HKLM\...\{4F46FDB9-B906-47BF-B3D5-C62E01B3C5EE}) (Version: 4.1.11.3 - Hewlett-Packard)
HP User Guides 0140 (HKLM\...\{9CDFC149-8359-4C4B-9DA0-BA1F773CD70C}) (Version: 1.02.0006 - Hewlett-Packard)
HP Webcam (HKLM\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
HP Webcam Driver (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50008.0 - Sonix)
HP Wireless Assistant (HKLM\...\{54CC7901-804D-4155-B353-21F0CC9112AB}) (Version: 3.50.9.1 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.0.2 - Hewlett-Packard) Hidden
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6222.0 - IDT)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java(TM) 6 Update 22 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
LightScribe System Software (HKLM\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.1.94 - LSI Corporation)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 10.70.5.3 - Marvell)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 35.0.1 (x86 de) (HKLM\...\Mozilla Firefox 35.0.1 (x86 de)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 35.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Norton Online Backup (HKLM\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.20.0 - Symantec)
o2 Surfstick (HKLM\...\{AEFF9E60-3E93-41EE-9895-311F7D1C5FFD}) (Version: 1.0.0.2 - ZTE Corporation)
OpenOffice.org 3.3 (HKLM\...\{4286716B-1287-48E7-9078-3DC8248DBA96}) (Version: 3.3.9567 - OpenOffice.org)
PDF Complete Special Edition (HKLM\...\PDF Complete) (Version: 3.5.108 - PDF Complete, Inc)
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Skype™ 4.0 (HKLM\...\{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}) (Version: 4.0.227 - Skype Technologies S.A.)
SUPER © Version 2010.bld.38 (May 2, 2010) (HKLM\...\SUPER ©) (Version: Version 2010.bld.38 (May 2, 2010) - eRightSoft)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.2 - Synaptics Incorporated)
VirtualCloneDrive (HKLM\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
VLC media player 1.1.11 (HKLM\...\VLC media player) (Version: 1.1.11 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.622 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-1705445277-862492693-3926336516-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows 7 Codec Pack 4.1.0 (HKLM\...\Windows 7 - Codec Pack) (Version: 4.1.0 - Windows 7 Codec Pack)
Windows 7 Default Setting (HKLM\...\{5BF8E079-D6E2-4323-B794-75152371122A}) (Version: 1.0.1.4 - Hewlett-Packard Company)
Windows Live Anmelde-Assistent (HKLM\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
27-01-2015 00:37:19 Removed 2007 Microsoft Office system
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2010-06-11 23:04 - 00002112 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobe-dns-5.adobe.com
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 practivate.adobe.newoa
127.0.0.1 practivate.adobe.ntp
127.0.0.1 practivate.adobe.ipp
127.0.0.1 ereg.adobe.com
127.0.0.1 ereg.wip.adobe.com
127.0.0.1 ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.wip4.adobe.com
There are 13 more lines.
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0EF224C4-2976-4D4E-ADD0-BED2E40660C2} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\windows\SYSTEM32\OOBE\SETUPSQM.EXE [2009-07-14] (Microsoft Corporation)
Task: {107EDE3F-1989-432F-BA23-0C2B1C28EA13} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {49DCDB18-B0B9-4042-BE05-F276F48EAD0F} - System32\Tasks\Hewlett-Packard\HP Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2009-07-10] (Hewlett-Packard)
Task: {79C307CB-F6FA-40A3-9FB8-CDFBC02BAD8B} - System32\Tasks\AdobeAAMUpdater-1.0-mother-jonas => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15] (Adobe Systems Incorporated)
Task: {93AD1023-FA7E-484A-B453-2B1ABF1B157C} - System32\Tasks\Hewlett-Packard\HP Assistant\PC Tuneup => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2009-07-10] (Hewlett-Packard)
Task: {F2342E1D-A382-4FB2-B119-85C7CD19E14B} - System32\Tasks\{1B366A83-6C4B-421D-A3AD-A4DCB0A0572C} => pcalua.exe -a "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" -c /uninstall PROHYBRIDR /dll OSETUP.DLL
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Loaded Modules (whitelisted) =============
2015-01-19 12:03 - 2015-01-19 12:03 - 00245760 _____ () C:\Program Files\Avira\My Avira\System.ComponentModel.Composition.dll
2015-01-21 18:54 - 2013-05-10 12:03 - 00419072 _____ () C:\Program Files\Hostless Modem\o2 Surfstick\CheckNDISPort_df.exe
2015-01-21 18:54 - 2013-05-10 12:03 - 00446720 _____ () C:\Program Files\Hostless Modem\o2 Surfstick\CancelAutoPlay_df.exe
2011-01-17 16:19 - 2015-01-21 15:21 - 00985088 _____ () C:\Program Files\OpenOffice.org 3\program\libxml2.dll
2010-11-19 18:45 - 2015-01-21 15:21 - 00170496 _____ () C:\Program Files\OpenOffice.org 3\program\libxslt.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\jonas\Documents\[2008] Burn After Reading.avi:AFP_Resource
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: NortonOnlineBackupReminder => "C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
========================= Accounts: ==========================
Administrator (S-1-5-21-1705445277-862492693-3926336516-500 - Administrator - Disabled)
Gast (S-1-5-21-1705445277-862492693-3926336516-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1705445277-862492693-3926336516-1003 - Limited - Enabled)
jonas (S-1-5-21-1705445277-862492693-3926336516-1001 - Administrator - Enabled) => C:\Users\jonas
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/27/2015 00:32:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0006bdfe
ID des fehlerhaften Prozesses: 0xec8
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:32:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000c0a8d
ID des fehlerhaften Prozesses: 0x196c
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:31:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000c0a8d
ID des fehlerhaften Prozesses: 0x1fd0
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:31:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000c0a8d
ID des fehlerhaften Prozesses: 0x1f48
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:31:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000c0a8d
ID des fehlerhaften Prozesses: 0x1f64
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:31:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000c0a8d
ID des fehlerhaften Prozesses: 0x1148
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:30:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0006bdfe
ID des fehlerhaften Prozesses: 0x1b70
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:30:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0006bdfe
ID des fehlerhaften Prozesses: 0x1e28
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:30:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000c0a8d
ID des fehlerhaften Prozesses: 0x19c4
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
Error: (01/27/2015 00:30:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Name des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe, Version: 16.0.0.257, Zeitstempel: 0x54925c1d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000c0a8d
ID des fehlerhaften Prozesses: 0x1940
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_16_0_0_257.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_16_0_0_257.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_16_0_0_257.exe2
Berichtskennung: FlashPlayerPlugin_16_0_0_257.exe3
System errors:
=============
Error: (01/27/2015 01:14:10 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (01/27/2015 01:14:10 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (01/27/2015 01:14:09 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (01/27/2015 01:14:08 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (01/27/2015 00:47:53 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk0\DR0 gefunden.
Error: (01/27/2015 00:47:53 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk0\DR0 gefunden.
Error: (01/27/2015 00:47:53 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk0\DR0 gefunden.
Error: (01/27/2015 00:47:53 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk0\DR0 gefunden.
Error: (01/27/2015 00:47:53 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk0\DR0 gefunden.
Error: (01/27/2015 00:47:53 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk0\DR0 gefunden.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Processor: Genuine Intel(R) CPU T1500 @ 1.86GHz
Percentage of memory in use: 52%
Total physical RAM: 2039.3 MB
Available physical RAM: 970.66 MB
Total Pagefile: 4078.61 MB
Available Pagefile: 2585.88 MB
Total Virtual: 2047.88 MB
Available Virtual: 1894.11 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:282.8 GB) (Free:130.47 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: DE166A10)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=282.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
27.01.2015, 13:40
| #2 |
| /// the machine /// TB-Ausbilder    | Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
27.01.2015, 13:44
| #3 |
| | Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung FRST
__________________FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-01-2015 01 Ran by jonas (administrator) on MOTHER on 27-01-2015 12:52:52 Running from C:\Users\jonas\Downloads Loaded Profiles: jonas (Available profiles: jonas) Platform: Microsoft Windows 7 Home Premium (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\stacsv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe (Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\AEstSrv.exe (LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Apple Computer, Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe (PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe (Microsoft Corp.) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe (Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe () C:\Program Files\Hostless Modem\o2 Surfstick\CheckNDISPort_df.exe () C:\Program Files\Hostless Modem\o2 Surfstick\CancelAutoPlay_df.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe (OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe (OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-17] (Intel Corporation) HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete Inc) HKLM\...\Run: [WirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [458844 2009-07-14] (IDT, Inc.) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.) HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated) HKLM\...\Run: [CheckNDISPortF0acA7] => C:\Program Files\Hostless Modem\o2 Surfstick\CheckNDISPort_df.exe [419072 2013-05-10] () HKLM\...\Run: [CancelAutoPlay_df] => C:\Program Files\Hostless Modem\o2 Surfstick\CancelAutoPlay_df.exe [446720 2013-05-10] () HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [126712 2015-01-19] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [702768 2014-11-24] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-1705445277-862492693-3926336516-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5489944 2014-12-12] (Piriform Ltd) HKU\S-1-5-21-1705445277-862492693-3926336516-1001\...\MountPoints2: {8fd57ea1-a180-11e4-9664-d8d3853fd6a4} - D:\AutoRun.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\System32\C2MP\UpdateChecker.exe () ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCOM/10 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM/10 HKU\S-1-5-21-1705445277-862492693-3926336516-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCOM/10 HKU\S-1-5-21-1705445277-862492693-3926336516-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM/10 SearchScopes: HKLM -> DefaultScope {1BA281F0-7349-4A8C-85A9-947ECBC99703} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox SearchScopes: HKLM -> {1BA281F0-7349-4A8C-85A9-947ECBC99703} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-1705445277-862492693-3926336516-1001 -> DefaultScope {1BA281F0-7349-4A8C-85A9-947ECBC99703} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-1705445277-862492693-3926336516-1001 -> {1BA281F0-7349-4A8C-85A9-947ECBC99703} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.) BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) BHO: Windows Live Toolbar Helper -> {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} -> C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File Toolbar: HKLM - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) Toolbar: HKU\S-1-5-21-1705445277-862492693-3926336516-1001 -> &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1 FireFox: ======== FF ProfilePath: C:\Users\jonas\AppData\Roaming\Mozilla\Firefox\Profiles\ndabpe8t.default FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll () FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF user.js: detected! => C:\Users\jonas\AppData\Roaming\Mozilla\Firefox\Profiles\ndabpe8t.default\user.js FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.) FF Extension: Avira Browser Safety - C:\Users\jonas\AppData\Roaming\Mozilla\Firefox\Profiles\ndabpe8t.default\Extensions\abs@avira.com [2015-01-26] FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\jonas\AppData\Roaming\Mozilla\Firefox\Profiles\ndabpe8t.default\Extensions\artur.dubovoy@gmail.com [2015-01-27] FF Extension: DownloadHelper - C:\Users\jonas\AppData\Roaming\Mozilla\Firefox\Profiles\ndabpe8t.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2015-01-21] FF Extension: VideoPark Video Downloader - C:\Users\jonas\AppData\Roaming\Mozilla\Firefox\Profiles\ndabpe8t.default\Extensions\downloader@video-park.de.xpi [2015-01-21] FF Extension: Preispilot - C:\Users\jonas\AppData\Roaming\Mozilla\Firefox\Profiles\ndabpe8t.default\Extensions\extension@preispilot.com.xpi [2015-01-21] Chrome: ======= CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-01-21] (Adobe Systems) [File not signed] R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-07-27] (LSI Corporation) R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG) R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [182520 2015-01-19] (Avira Operations GmbH & Co. KG) R2 Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed] S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-01-21] (Macrovision Europe Ltd.) [File not signed] R2 HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [124928 2009-07-10] (Hewlett-Packard) [File not signed] R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not signed] R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2009-06-18] (PDF Complete Inc) R2 STacSV; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\STacSV.exe [221266 2009-07-14] (IDT, Inc.) S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [98160 2014-11-24] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [136216 2014-11-24] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [37352 2014-11-24] (Avira Operations GmbH & Co. KG) R1 ElbyCDIO; C:\windows\System32\Drivers\ElbyCDIO.sys [26024 2009-12-17] (Elaborate Bytes AG) R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [114904 2015-01-27] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2014-11-21] (Malwarebytes Corporation) S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.) S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.) R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.) S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.) R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.) R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1765168 2009-07-02] () R1 ssmdrv; C:\windows\System32\DRIVERS\ssmdrv.sys [28520 2014-11-24] (Avira GmbH) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-27 12:52 - 2015-01-27 12:53 - 00014435 _____ () C:\Users\jonas\Downloads\FRST.txt 2015-01-27 12:52 - 2015-01-27 12:52 - 00000000 ____D () C:\FRST 2015-01-27 12:50 - 2015-01-27 12:51 - 00000472 _____ () C:\Users\jonas\Downloads\defogger_disable.log 2015-01-27 12:50 - 2015-01-27 12:50 - 00000000 _____ () C:\Users\jonas\defogger_reenable 2015-01-27 12:42 - 2015-01-27 12:42 - 00380416 _____ () C:\Users\jonas\Downloads\Gmer-19357.exe 2015-01-27 12:42 - 2015-01-27 12:42 - 00050477 _____ () C:\Users\jonas\Downloads\Defogger.exe 2015-01-27 12:32 - 2015-01-27 12:32 - 16466552 _____ (Malwarebytes Corp.) C:\Users\jonas\Downloads\mbar-1.08.3.1004.exe 2015-01-27 12:28 - 2015-01-27 12:28 - 04197016 _____ (Kaspersky Lab ZAO) C:\Users\jonas\Downloads\tdsskiller.exe 2015-01-27 12:25 - 2015-01-27 12:25 - 01120768 _____ (Farbar) C:\Users\jonas\Downloads\FRST.exe 2015-01-27 00:27 - 2015-01-27 11:55 - 00114904 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys 2015-01-27 00:27 - 2015-01-27 00:27 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-01-27 00:27 - 2015-01-27 00:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-01-27 00:27 - 2015-01-27 00:27 - 00000000 ____D () C:\ProgramData\Malwarebytes 2015-01-27 00:27 - 2015-01-27 00:27 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 2015-01-27 00:27 - 2014-11-21 06:14 - 00075480 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys 2015-01-27 00:27 - 2014-11-21 06:14 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys 2015-01-27 00:27 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys 2015-01-27 00:23 - 2015-01-27 00:23 - 00133890 _____ () C:\Users\jonas\Downloads\OTL.Txt 2015-01-27 00:23 - 2015-01-27 00:23 - 00063254 _____ () C:\Users\jonas\Downloads\Extras.Txt 2015-01-27 00:07 - 2015-01-27 00:07 - 00000000 ____D () C:\AdwCleaner 2015-01-27 00:03 - 2015-01-27 00:04 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\jonas\Downloads\mbam-setup-2.0.4.1028.exe 2015-01-27 00:03 - 2015-01-27 00:04 - 02194432 _____ () C:\Users\jonas\Downloads\AdwCleaner_4.109.exe 2015-01-26 23:59 - 2015-01-26 23:59 - 00602112 _____ (OldTimer Tools) C:\Users\jonas\Downloads\OTL.exe 2015-01-26 23:17 - 2015-01-26 23:17 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2015-01-26 23:17 - 2015-01-26 23:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-01-26 23:17 - 2015-01-26 23:17 - 00000000 ____D () C:\Program Files\CCleaner 2015-01-26 23:16 - 2015-01-26 23:16 - 04188536 _____ (Piriform Ltd) C:\Users\jonas\Downloads\ccsetup501_slim.exe 2015-01-26 22:17 - 2015-01-26 23:03 - 00000138 _____ () C:\windows\WININIT.INI 2015-01-26 22:10 - 2015-01-26 22:10 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Roxio Log Files 2015-01-26 19:59 - 2015-01-26 19:54 - 00037384 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avnetflt.sys 2015-01-26 19:54 - 2015-01-26 19:54 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Avira 2015-01-26 19:51 - 2014-11-24 10:23 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avipbb.sys 2015-01-26 19:51 - 2014-11-24 10:23 - 00098160 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avgntflt.sys 2015-01-26 19:51 - 2014-11-24 10:23 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avkmgr.sys 2015-01-26 19:51 - 2014-11-24 10:23 - 00028520 _____ (Avira GmbH) C:\windows\system32\Drivers\ssmdrv.sys 2015-01-26 19:42 - 2015-01-26 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-01-26 19:42 - 2015-01-26 19:51 - 00000000 ____D () C:\ProgramData\Avira 2015-01-26 19:42 - 2015-01-26 19:42 - 00000000 ____D () C:\ProgramData\Package Cache 2015-01-26 19:37 - 2015-01-26 19:39 - 04515896 _____ (Avira Operations & Co. KG) C:\Users\jonas\Downloads\avira_de_av_5808548757__ws.exe 2015-01-26 19:24 - 2015-01-26 19:24 - 00053814 _____ () C:\Users\jonas\Documents\cc_20150126_192419.reg 2015-01-22 13:54 - 2015-01-22 13:54 - 04171576 _____ (Broadcom Corporation.) C:\Users\jonas\Downloads\SetupBtwDownloadSE.exe 2015-01-21 23:37 - 2015-01-27 12:49 - 00805184 _____ () C:\windows\WindowsUpdate.log 2015-01-21 23:35 - 2015-01-21 23:35 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_SynTP_01007.Wdf 2015-01-21 23:35 - 2015-01-21 23:35 - 00000000 ____D () C:\Program Files\Synaptics 2015-01-21 23:35 - 2015-01-21 14:46 - 00000000 ____D () C:\windows\system32\Lang 2015-01-21 23:35 - 2009-09-23 19:30 - 01002008 ____N (Intel Corporation) C:\windows\system32\igxpun.exe 2015-01-21 22:20 - 2015-01-23 00:12 - 00000000 ____D () C:\windows\Minidump 2015-01-21 21:24 - 2015-01-21 21:30 - 00000000 ____D () C:\windows\system32\MRT 2015-01-21 21:23 - 2015-01-21 21:23 - 00000000 ____D () C:\windows\system32\x64 2015-01-21 21:23 - 2014-12-31 13:15 - 110348472 ____N (Microsoft Corporation) C:\windows\system32\MRT.exe 2015-01-21 21:21 - 2015-01-21 21:21 - 00000000 ____D () C:\Program Files\MSXML 4.0 2015-01-21 21:20 - 2011-04-09 07:13 - 03957632 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe 2015-01-21 21:20 - 2011-04-09 07:13 - 03901824 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe 2015-01-21 21:20 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe 2015-01-21 21:20 - 2010-12-18 06:29 - 00541184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll 2015-01-21 21:16 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll 2015-01-21 21:16 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll 2015-01-21 21:16 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe 2015-01-21 21:16 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll 2015-01-21 21:16 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\windows\system32\wups.dll 2015-01-21 21:16 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll 2015-01-21 21:16 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll 2015-01-21 21:16 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll 2015-01-21 21:16 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe 2015-01-21 20:04 - 2015-01-21 20:04 - 00000000 ____D () C:\Users\jonas\AppData\Local\Macromedia 2015-01-21 19:57 - 2015-01-21 19:57 - 00701616 ____N (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe 2015-01-21 19:57 - 2015-01-21 19:57 - 00071344 ____N (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl 2015-01-21 19:51 - 2015-01-22 23:26 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\vlc 2015-01-21 19:34 - 2015-01-21 19:34 - 00000000 ____D () C:\Users\jonas\Desktop\Tor Browser 2015-01-21 19:04 - 2015-01-27 00:51 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2015-01-21 19:04 - 2015-01-21 19:04 - 00000000 ____D () C:\ProgramData\Mozilla 2015-01-21 18:58 - 2015-01-26 19:51 - 00000000 ____D () C:\Program Files\Avira 2015-01-21 18:54 - 2015-01-21 18:54 - 00000000 ____D () C:\windows\system32\SupportAppPBHostless Modem 2015-01-21 18:54 - 2015-01-21 18:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2 Surfstick 2015-01-21 18:54 - 2015-01-21 18:54 - 00000000 ____D () C:\Program Files\Hostless Modem 2015-01-21 18:45 - 2015-01-21 18:45 - 00000000 ____D () C:\Users\jonas\Downloads\Songs Einzeln 2015-01-21 18:40 - 2015-01-22 15:19 - 00000000 ____D () C:\Users\jonas\Desktop\MittWeida Trial 2015-01-21 18:35 - 2015-01-21 18:35 - 00000000 ____D () C:\Program Files\AviSynth 2.5 2015-01-21 18:35 - 2009-09-27 09:39 - 00369152 ____N (The Public) C:\windows\system32\avisynth.dll 2015-01-21 18:35 - 2005-07-14 12:31 - 00027648 ____N () C:\windows\system32\AVSredirect.dll 2015-01-21 18:35 - 2004-02-22 10:11 - 00719872 ____N (Abysmal Software) C:\windows\system32\devil.dll 2015-01-21 18:35 - 2004-01-25 00:00 - 00070656 ____N (www.helixcommunity.org) C:\windows\system32\yv12vfw.dll 2015-01-21 18:35 - 2004-01-25 00:00 - 00070656 ____N (www.helixcommunity.org) C:\windows\system32\i420vfw.dll 2015-01-21 18:05 - 2015-01-21 18:05 - 00000000 ____D () C:\Users\jonas\Downloads\luebke 2015-01-21 18:04 - 2015-01-21 18:05 - 00000000 ____D () C:\Users\jonas\Downloads\avv2 2015-01-21 17:58 - 2015-01-24 12:42 - 00000000 ____D () C:\Users\jonas\Downloads\2015 MUSIK 2015-01-21 17:58 - 2015-01-21 18:03 - 00000000 ____D () C:\Users\jonas\Downloads\avv 2015-01-21 17:52 - 2015-01-22 22:23 - 00000000 ____D () C:\Users\jonas\Downloads\2014 MUSIK 2015-01-21 17:50 - 2015-01-21 17:52 - 00000000 ____D () C:\Users\jonas\Downloads\2013 MUSIK 2015-01-21 17:50 - 2015-01-21 17:50 - 00000000 ____D () C:\Users\jonas\Downloads\[ musik2 2015-01-21 17:48 - 2015-01-21 17:50 - 00000000 ____D () C:\Users\jonas\Downloads\[ musik 2015-01-21 17:44 - 2015-01-25 22:27 - 00000000 ____D () C:\Users\jonas\Downloads\[ Movie ] 2015-01-21 17:27 - 2015-01-23 01:37 - 00007679 _____ () C:\Users\jonas\Documents\2015 - 01 - 03.xspf 2015-01-21 17:27 - 2015-01-21 13:31 - 00049640 _____ () C:\Users\jonas\Documents\2015-02.m3u 2015-01-21 17:27 - 2015-01-16 03:08 - 00007054 _____ () C:\Users\jonas\Documents\2015 - 01 - 02.xspf 2015-01-21 17:27 - 2015-01-10 00:32 - 00010399 _____ () C:\Users\jonas\Documents\2015 - 01 - 01.xspf 2015-01-21 17:27 - 2015-01-06 13:42 - 00032379 _____ () C:\Users\jonas\Documents\2015-01.m3u 2015-01-21 17:27 - 2014-12-31 23:29 - 00006653 _____ () C:\Users\jonas\Documents\2014-12- post weihnachten.xspf 2015-01-21 17:27 - 2014-12-20 19:36 - 00000297 _____ () C:\Users\jonas\Documents\bundesliga tip.txt 2015-01-21 17:27 - 2014-12-19 01:19 - 00005204 _____ () C:\Users\jonas\Documents\2014-12- XMAS-01.xspf 2015-01-21 17:27 - 2014-12-18 03:08 - 00019123 _____ () C:\Users\jonas\Documents\2014-12-01.xspf 2015-01-21 17:27 - 2014-12-06 01:17 - 00011801 _____ () C:\Users\jonas\Documents\2014_11 (NOV.xspf 2015-01-21 17:27 - 2014-11-30 16:24 - 00009944 _____ () C:\Users\jonas\Documents\2014-12-2.m3u 2015-01-21 17:27 - 2014-11-27 16:32 - 00095146 _____ () C:\Users\jonas\Documents\2014-12.m3u 2015-01-21 17:27 - 2014-11-02 12:16 - 00074332 _____ () C:\Users\jonas\Documents\11-2014.m3u 2015-01-21 17:27 - 2014-10-19 00:46 - 00016266 _____ () C:\Users\jonas\Documents\2014-09__03.xspf 2015-01-21 17:27 - 2014-09-22 20:35 - 00020627 _____ () C:\Users\jonas\Documents\2014-09__02.xspf 2015-01-21 17:27 - 2014-09-11 19:59 - 00093269 _____ () C:\Users\jonas\Documents\2014-09.m3u 2015-01-21 17:27 - 2014-09-11 11:49 - 00013203 _____ () C:\Users\jonas\Documents\2014_09 (SEP).xspf 2015-01-21 17:27 - 2014-08-13 20:15 - 00005492 _____ () C:\Users\jonas\Documents\08-2014.xspf 2015-01-21 17:27 - 2014-05-29 20:06 - 00033856 _____ () C:\Users\jonas\Documents\2014_08 (MAI).xspf 2015-01-21 17:27 - 2014-05-17 17:35 - 00031955 _____ () C:\Users\jonas\Documents\2014_07 (MAI).xspf 2015-01-21 17:27 - 2014-05-13 20:21 - 00031665 _____ () C:\Users\jonas\Documents\2014_06 (MAR).xspf 2015-01-21 17:27 - 2014-03-15 21:46 - 00017949 _____ () C:\Users\jonas\Documents\2014_05 (FEB).xspf 2015-01-21 17:27 - 2014-02-18 21:52 - 00012906 _____ () C:\Users\jonas\Documents\2014_04 (FEB).xspf 2015-01-21 17:27 - 2014-02-15 11:14 - 00015344 _____ () C:\Users\jonas\Documents\2014_03 (FEB).xspf 2015-01-21 17:27 - 2014-01-16 18:22 - 00012303 _____ () C:\Users\jonas\Documents\2014_02 (JAN).xspf 2015-01-21 17:27 - 2014-01-04 17:53 - 00074237 _____ () C:\Users\jonas\Documents\2014_01 (JAN).m3u 2015-01-21 17:27 - 2013-12-29 15:36 - 00004212 _____ () C:\Users\jonas\Documents\anzügliche poesi2.txt 2015-01-21 17:27 - 2013-12-26 23:42 - 00003263 _____ () C:\Users\jonas\Documents\anzügliche poesi.txt 2015-01-21 17:27 - 2013-10-07 17:51 - 00002804 _____ () C:\Users\jonas\Documents\10-2013 Viewlist.xspf 2015-01-21 17:27 - 2013-09-22 11:54 - 00156080 _____ () C:\Users\jonas\Documents\2013 _09.m3u 2015-01-21 17:27 - 2013-09-05 22:47 - 00010367 _____ () C:\Users\jonas\Documents\2013 - Playliste - 09.xspf 2015-01-21 17:27 - 2013-08-24 23:46 - 00010020 _____ () C:\Users\jonas\Documents\2013 - Playliste - 08.xspf 2015-01-21 17:27 - 2013-07-31 01:32 - 00013680 _____ () C:\Users\jonas\Documents\2013 - Playliste - 07.xspf 2015-01-21 17:27 - 2013-07-25 23:51 - 00009426 _____ () C:\Users\jonas\Documents\2013 - Playliste - 06.xspf 2015-01-21 17:27 - 2013-07-20 00:35 - 00075258 _____ () C:\Users\jonas\Documents\2013 - Playliste - 05.xspf 2015-01-21 17:27 - 2013-05-30 18:37 - 00129847 _____ () C:\Users\jonas\Documents\2013 _06.m3u 2015-01-21 17:27 - 2013-05-15 23:20 - 00038446 _____ () C:\Users\jonas\Documents\2013 - Playliste - 04.xspf 2015-01-21 17:27 - 2013-05-01 12:17 - 00055389 _____ () C:\Users\jonas\Documents\2013 _05.m3u 2015-01-21 17:27 - 2013-04-01 09:56 - 00049304 _____ () C:\Users\jonas\Documents\2013 - Playliste - 03 - synchro.xspf 2015-01-21 17:27 - 2013-03-17 11:18 - 00011057 _____ () C:\Users\jonas\Documents\2013 - Playliste - 03.xspf 2015-01-21 17:27 - 2013-02-25 09:39 - 00044744 _____ () C:\Users\jonas\Documents\2013 - Playliste - 02.xspf 2015-01-21 17:27 - 2013-02-25 09:39 - 00008972 _____ () C:\Users\jonas\Documents\2013 - Playliste - 02 - synchro.xspf 2015-01-21 17:27 - 2013-02-16 19:17 - 00053816 _____ () C:\Users\jonas\Documents\2013 _04.m3u 2015-01-21 17:27 - 2013-01-26 10:37 - 00099460 _____ () C:\Users\jonas\Documents\2013 _03.m3u 2015-01-21 17:27 - 2013-01-24 23:08 - 00005830 _____ () C:\Users\jonas\Documents\2013 - Playliste - 01.xspf 2015-01-21 17:27 - 2013-01-18 14:30 - 00081825 _____ () C:\Users\jonas\Documents\2013 _02.m3u 2015-01-21 17:27 - 2013-01-03 21:06 - 00073283 _____ () C:\Users\jonas\Documents\2013 _01.m3u 2015-01-21 17:27 - 2013-01-03 20:53 - 00124620 _____ () C:\Users\jonas\Documents\12-2012.m3u 2015-01-21 17:27 - 2012-11-18 11:09 - 00121079 _____ () C:\Users\jonas\Documents\11-2012.m3u 2015-01-21 17:27 - 2012-11-15 22:48 - 00000863 _____ () C:\Users\jonas\Documents\Claptraptraktak - 2012 LP.txt 2015-01-21 17:27 - 2012-10-11 15:20 - 00015898 _____ () C:\Users\jonas\Documents\11-10-12.m3u 2015-01-21 17:27 - 2012-10-01 20:42 - 00169512 _____ () C:\Users\jonas\Documents\10-2012.m3u 2015-01-21 17:27 - 2012-08-24 09:44 - 00006354 _____ () C:\Users\jonas\Documents\AUGUST 2012.xspf 2015-01-21 17:27 - 2012-08-16 23:23 - 00004693 _____ () C:\Users\jonas\Documents\8-12.xspf 2015-01-21 17:27 - 2012-08-06 21:08 - 00075447 _____ () C:\Users\jonas\Documents\08-2012.m3u 2015-01-21 17:27 - 2012-07-24 21:21 - 00048943 _____ () C:\Users\jonas\Documents\24-07-2012.m3u 2015-01-21 17:27 - 2012-07-06 18:52 - 00000334 _____ () C:\Users\jonas\Documents\footbal.txt 2015-01-21 17:27 - 2012-06-27 01:43 - 00003072 _____ () C:\Users\jonas\Documents\07 medi.xspf 2015-01-21 17:26 - 2015-01-21 17:26 - 00000000 ____D () C:\Users\jonas\Documents\Such A Creep EP 2015-01-21 17:26 - 2008-12-09 00:23 - 734160896 _____ () C:\Users\jonas\Documents\[2008] Burn After Reading.avi 2015-01-21 17:22 - 2015-01-21 17:26 - 00000000 ____D () C:\Users\jonas\Documents\My Loops 2015-01-21 17:22 - 2015-01-21 17:22 - 00000000 ____D () C:\Users\jonas\Documents\Music Software 2015-01-21 17:22 - 2015-01-21 17:22 - 00000000 ____D () C:\Users\jonas\Documents\MITTWEIDA Skripte 2015-01-21 17:22 - 2015-01-21 17:22 - 00000000 ____D () C:\Users\jonas\Documents\Herr Kavka Am Strand - Von der Schwerkraft der Genügsamkeit 2015-01-21 17:21 - 2015-01-21 17:22 - 00000000 ____D () C:\Users\jonas\Documents\FUSSBALL MANAGER 10 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - The Heart Is A Soaking Blast (7'') 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - Test 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - Electro Eclectic 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - 2013 - November Dub Session 2 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - 2013 - Aural Pleasure Not Included 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - 2013 - Antrum (Single) 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - 2012 - Total Loss Forever EP 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - 2012 - Outtakes Vol.01 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - 2012 - Old Recordings 2015-01-21 17:21 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak - 2012 - November Dub Session 2015-01-21 17:20 - 2015-01-21 17:21 - 00000000 ____D () C:\Users\jonas\Documents\Claptraptraktak 2015-01-21 17:20 - 2015-01-21 17:20 - 00000000 ____D () C:\Users\jonas\Documents\BA ((-01-)) 2015-01-21 17:05 - 2015-01-21 17:05 - 00000000 ____D () C:\Users\jonas\Documents\Adobe 2015-01-21 17:01 - 2015-01-21 17:05 - 00000000 ____D () C:\Users\jonas\Documents\[[ Musik ]] 2015-01-21 17:01 - 2015-01-21 17:01 - 00000000 ____D () C:\Users\jonas\Documents\[ Works ] 2015-01-21 17:01 - 2015-01-21 17:01 - 00000000 ____D () C:\Users\jonas\Documents\[ Uni-tives ] 2015-01-21 17:01 - 2015-01-21 17:01 - 00000000 ____D () C:\Users\jonas\Documents\[ TEXTE ] 2015-01-21 17:00 - 2015-01-21 17:01 - 00000000 ____D () C:\Users\jonas\Documents\[ Die Drei Fragezeichen ] 2015-01-21 17:00 - 2015-01-21 17:00 - 00000000 ____D () C:\Users\jonas\Documents\[ BewerbungsUnterlagen ] 2015-01-21 16:59 - 2015-01-21 17:00 - 00000000 ____D () C:\Users\jonas\Documents\[ Audiospuren ] 2015-01-21 16:59 - 2014-12-25 03:54 - 00005992 _____ () C:\Users\jonas\Documents\xmas14.xspf 2015-01-21 16:59 - 2014-12-24 16:12 - 00000078 _____ () C:\Users\jonas\Documents\picture idea.txt 2015-01-21 16:59 - 2014-08-10 19:35 - 02560186 _____ () C:\Users\jonas\Documents\KUMMER - Drehbuch (White Edition).odt 2015-01-21 16:59 - 2014-02-18 21:50 - 00000059 _____ () C:\Users\jonas\Documents\melonkoly twiceshy.txt 2015-01-21 16:59 - 2014-01-29 20:58 - 00022914 _____ () C:\Users\jonas\Documents\jan14.xspf 2015-01-21 16:59 - 2013-12-26 23:41 - 00019602 _____ () C:\Users\jonas\Documents\xmas13.xspf 2015-01-21 16:59 - 2013-12-26 23:41 - 00006279 _____ () C:\Users\jonas\Documents\xmas13 fam guy.xspf 2015-01-21 16:59 - 2013-12-19 10:35 - 00009976 _____ () C:\Users\jonas\Documents\VLC PLAYLIST DEZEMBER 2013.xspf 2015-01-21 16:59 - 2013-05-30 11:33 - 04945603 _____ () C:\Users\jonas\Documents\Pop Of The 80s Cover.psd 2015-01-21 16:59 - 2013-03-28 21:48 - 00000926 _____ () C:\Users\jonas\Documents\Waxahatchee Lyrics.txt 2015-01-21 16:59 - 2013-03-08 10:38 - 00018756 _____ () C:\Users\jonas\Documents\praktikums test #2.odt 2015-01-21 16:59 - 2013-01-14 00:04 - 00042181 _____ () C:\Users\jonas\Documents\serien view list.xspf 2015-01-21 16:59 - 2012-12-26 15:37 - 03776182 _____ () C:\Users\jonas\Documents\Marlene Dietrich, Berlin _ So Lang Noch Untern Linden..mp4 2015-01-21 16:59 - 2012-12-24 15:53 - 00007633 _____ () C:\Users\jonas\Documents\X-MAS Playlist.xspf 2015-01-21 16:59 - 2012-12-16 13:23 - 25493234 _____ () C:\Users\jonas\Documents\Why Does The Mind Constantly Seek Pleasure_ - Krishnamurti.mp4 2015-01-21 16:59 - 2012-11-20 03:33 - 00014631 _____ () C:\Users\jonas\Documents\November 2012.xspf 2015-01-21 16:59 - 2012-07-21 14:06 - 00000146 _____ () C:\Users\jonas\Documents\möll.txt 2015-01-21 16:59 - 2012-07-12 12:13 - 00011889 _____ () C:\Users\jonas\Documents\juli 2012-2.m3u 2015-01-21 16:59 - 2012-07-11 21:24 - 00004249 _____ () C:\Users\jonas\Documents\juli 2012.xspf 2015-01-21 16:59 - 2012-07-06 01:27 - 00015876 _____ () C:\Users\jonas\Documents\VLC PLAYLIST JULI-7 2012.xspf 2015-01-21 16:59 - 2012-06-21 23:04 - 00024123 _____ () C:\Users\jonas\Documents\VLC PLAYLIST MAI-5 2012.xspf 2015-01-21 16:59 - 2012-05-29 01:38 - 00008857 _____ () C:\Users\jonas\Documents\VLC PLAYLIST MAI-4 2012.xspf 2015-01-21 16:59 - 2012-05-10 16:51 - 00002872 _____ () C:\Users\jonas\Documents\VLC PLAYLIST MAI-3 2012.xspf 2015-01-21 16:59 - 2012-05-08 00:04 - 00008809 _____ () C:\Users\jonas\Documents\VLC PLAYLIST MAIh 2012.xspf 2015-01-21 16:59 - 2012-05-07 21:48 - 00008826 _____ () C:\Users\jonas\Documents\VLC PLAYLIST MAI 2012.xspf 2015-01-21 16:59 - 2012-03-18 03:28 - 00002437 _____ () C:\Users\jonas\Documents\VLC PLAYLIST MÄRZ 2012.xspf 2015-01-21 16:59 - 2011-03-19 03:25 - 00000056 _____ () C:\Users\jonas\Documents\kfw.txt 2015-01-21 16:46 - 2015-01-21 16:46 - 00000000 ____D () C:\Program Files\Bonjour 2015-01-21 16:45 - 2015-01-21 16:45 - 00001361 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk 2015-01-21 16:45 - 2015-01-21 16:45 - 00001150 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk 2015-01-21 16:44 - 2015-01-21 16:44 - 00001057 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk 2015-01-21 16:42 - 2015-01-21 16:42 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared 2015-01-21 16:33 - 2015-01-21 16:33 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 2015-01-21 16:33 - 2015-01-21 16:33 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Adobe Mini Bridge CS5.1 2015-01-21 16:26 - 2015-01-21 16:33 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe 2015-01-21 16:25 - 2015-01-21 16:25 - 00001236 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS5.5.lnk 2015-01-21 16:25 - 2015-01-21 16:25 - 00001143 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS5.1.lnk 2015-01-21 16:24 - 2015-01-21 16:24 - 00001509 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS5.5.lnk 2015-01-21 16:24 - 2015-01-21 16:24 - 00001337 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS5.5.lnk 2015-01-21 16:24 - 2015-01-21 16:24 - 00000967 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk 2015-01-21 16:24 - 2015-01-21 16:24 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia 2015-01-21 16:24 - 2015-01-21 16:24 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia 2015-01-21 16:24 - 2015-01-21 16:24 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR 2015-01-21 16:19 - 2015-01-21 23:23 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Adobe 2015-01-21 16:19 - 2015-01-21 23:23 - 00000000 ____D () C:\Users\jonas\AppData\Local\Adobe 2015-01-21 16:19 - 2015-01-21 16:19 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Macromedia 2015-01-21 16:18 - 2015-01-21 16:18 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Apple Computer 2015-01-21 15:59 - 2015-01-21 15:59 - 00002011 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition 3.0.lnk 2015-01-21 15:59 - 2015-01-21 15:59 - 00000000 ____D () C:\Program Files\Common Files\Adobe Systems Shared 2015-01-21 15:58 - 2015-01-22 02:00 - 00000000 ____D () C:\ProgramData\Adobe 2015-01-21 15:58 - 2015-01-21 16:47 - 00000000 ____D () C:\Program Files\Adobe 2015-01-21 15:58 - 2015-01-21 16:46 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2015-01-21 15:43 - 2015-01-21 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes 2015-01-21 15:43 - 2015-01-21 15:43 - 00000000 ____D () C:\Program Files\Elaborate Bytes 2015-01-21 15:31 - 2015-01-21 15:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 - Codec Pack 2015-01-21 15:30 - 2015-01-21 15:31 - 00000000 ____D () C:\windows\system32\C2MP 2015-01-21 15:26 - 2015-01-21 15:26 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\OpenOffice.org 2015-01-21 15:21 - 2015-01-21 15:22 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3 2015-01-21 15:21 - 2015-01-21 15:21 - 00000000 ____D () C:\Program Files\OpenOffice.org 3 2015-01-21 15:20 - 2015-01-21 15:20 - 00472808 ____N (Sun Microsystems, Inc.) C:\windows\system32\deployJava1.dll 2015-01-21 15:20 - 2015-01-21 15:20 - 00153376 ____N (Sun Microsystems, Inc.) C:\windows\system32\javaws.exe 2015-01-21 15:20 - 2015-01-21 15:20 - 00145184 ____N (Sun Microsystems, Inc.) C:\windows\system32\javaw.exe 2015-01-21 15:20 - 2015-01-21 15:20 - 00145184 ____N (Sun Microsystems, Inc.) C:\windows\system32\java.exe 2015-01-21 15:20 - 2015-01-21 15:20 - 00000000 ____D () C:\ProgramData\Sun 2015-01-21 15:20 - 2015-01-21 15:20 - 00000000 ____D () C:\Program Files\Java 2015-01-21 15:20 - 2015-01-21 15:20 - 00000000 ____D () C:\Program Files\Common Files\Java 2015-01-21 15:15 - 2015-01-21 15:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2015-01-21 15:14 - 2015-01-21 18:57 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Winamp 2015-01-21 15:14 - 2015-01-21 15:15 - 00000000 ____D () C:\Program Files\Winamp 2015-01-21 15:14 - 2015-01-21 15:14 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in 2015-01-21 15:14 - 2015-01-21 15:14 - 00000000 ____D () C:\Program Files\Winamp Detect 2015-01-21 15:13 - 2015-01-21 15:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-01-21 15:13 - 2015-01-21 15:13 - 00000000 ____D () C:\Program Files\VideoLAN 2015-01-21 15:11 - 2015-01-21 19:04 - 00000000 ____D () C:\Users\jonas\AppData\Local\Mozilla 2015-01-21 15:11 - 2015-01-21 15:12 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Mozilla 2015-01-21 15:11 - 2015-01-21 15:11 - 00002006 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © Uninstall.lnk 2015-01-21 15:11 - 2015-01-21 15:11 - 00002000 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\SUPER © Uninstall.lnk 2015-01-21 15:11 - 2015-01-21 15:11 - 00001982 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER ©.lnk 2015-01-21 15:11 - 2015-01-21 15:11 - 00001976 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\SUPER ©.lnk 2015-01-21 15:11 - 2015-01-21 15:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © Version 2010.bld.38 (May 2, 2010) 2015-01-21 15:11 - 2015-01-21 15:11 - 00000000 ____D () C:\Program Files\eRightSoft 2015-01-21 15:11 - 2009-03-17 09:38 - 00070656 ____N () C:\windows\system32\RLAPEDec.ax 2015-01-21 15:11 - 2009-01-18 16:15 - 00120832 ____N () C:\windows\system32\MPCDx.ax 2015-01-21 15:11 - 2009-01-18 11:03 - 00107520 ____N () C:\windows\system32\RLMPCDec.ax 2015-01-21 15:11 - 2008-03-16 13:30 - 00216064 ____N (MONOGRAM Multimedia, s.r.o.) C:\windows\system32\nbDX.dll 2015-01-21 15:11 - 2007-02-21 11:47 - 00031232 ____N (Hans Mayerl) C:\windows\system32\msfDX.dll 2015-01-21 15:11 - 2006-09-12 11:46 - 00227328 ____N () C:\windows\system32\ac3DX.ax 2015-01-21 15:11 - 2006-08-16 14:53 - 00175104 ____N () C:\windows\system32\CoreAAC.ax 2015-01-21 15:11 - 2006-05-03 10:06 - 00163328 ____N (Gabest) C:\windows\system32\flvDX.dll 2015-01-21 15:11 - 2006-03-10 21:48 - 00169472 ____N (Gabest) C:\windows\system32\MatroskaDX.ax 2015-01-21 15:11 - 2006-01-12 23:23 - 00123904 ____N (CoreCodec) C:\windows\system32\AVCDX.ax 2015-01-21 15:11 - 2005-11-25 20:46 - 00161792 ____N (Gabest) C:\windows\system32\RealMediaDX.ax 2015-01-21 15:11 - 2005-02-22 16:55 - 00081920 ____N () C:\windows\system32\aac_parser.ax 2015-01-21 15:11 - 2005-02-12 23:00 - 00186880 ____N (RadLight) C:\windows\system32\RLOgg.ax 2015-01-21 15:11 - 2005-02-12 23:00 - 00067584 ____N (RadLight, LLC) C:\windows\system32\RLTheoraDec.ax 2015-01-21 15:11 - 2005-02-12 23:00 - 00051712 ____N () C:\windows\system32\RLSpeexDec.ax 2015-01-21 15:11 - 2005-02-05 23:00 - 00092672 ____N (RadLight) C:\windows\system32\RLVorbisDec.ax 2015-01-21 15:11 - 2005-01-17 23:26 - 00179200 ____N (Gabest) C:\windows\system32\DiracSplitter.ax 2015-01-21 15:11 - 2004-10-10 08:50 - 00278528 ____N (Real Networks, Inc) C:\windows\system32\pncrt.dll 2015-01-21 15:11 - 2004-09-17 03:07 - 00090112 ____N (-) C:\windows\system32\TTADSSplitter.ax 2015-01-21 15:11 - 2004-08-22 10:56 - 00090112 ____N (-) C:\windows\system32\TTADSDecoder.ax 2015-01-21 15:11 - 2003-12-07 07:59 - 00097280 ____N () C:\windows\system32\FLACDX.ax 2015-01-21 15:09 - 2015-01-21 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime 2015-01-21 15:09 - 2015-01-21 15:09 - 00000000 ____D () C:\ProgramData\Apple Computer 2015-01-21 15:09 - 2015-01-21 15:09 - 00000000 ____D () C:\Program Files\QuickTime 2015-01-21 15:08 - 2015-01-21 15:08 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2015-01-21 15:08 - 2015-01-21 15:08 - 00000000 ____D () C:\Users\jonas\AppData\Local\Apple 2015-01-21 15:08 - 2015-01-21 15:08 - 00000000 ____D () C:\ProgramData\Apple 2015-01-21 15:08 - 2015-01-21 15:08 - 00000000 ____D () C:\Program Files\Common Files\Apple 2015-01-21 15:08 - 2015-01-21 15:08 - 00000000 ____D () C:\Program Files\Apple Software Update 2015-01-21 15:07 - 2015-01-26 23:53 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-01-21 15:07 - 2015-01-21 19:04 - 00001117 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-01-21 15:07 - 2015-01-21 15:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2015-01-21 15:07 - 2015-01-21 15:07 - 00000000 ____D () C:\Program Files\7-Zip 2015-01-21 15:07 - 2008-05-22 11:15 - 00000434 _____ () C:\windows\myClean.bat 2015-01-21 15:04 - 2015-01-23 20:06 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\Hewlett-Packard 2015-01-21 15:04 - 2015-01-21 15:04 - 00000000 ____D () C:\Users\jonas\AppData\Local\PDFC 2015-01-21 15:04 - 2015-01-21 15:04 - 00000000 _____ () C:\Users\jonas\AppData\Local\QSwitch.txt 2015-01-21 15:04 - 2015-01-21 15:04 - 00000000 _____ () C:\Users\jonas\AppData\Local\DSwitch.txt 2015-01-21 15:04 - 2015-01-21 15:04 - 00000000 _____ () C:\Users\jonas\AppData\Local\AtStart.txt 2015-01-21 15:03 - 2015-01-21 15:04 - 00000000 ____D () C:\Users\jonas\AppData\Local\Hewlett-Packard 2015-01-21 15:03 - 2015-01-21 15:03 - 00001409 _____ () C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-01-21 15:03 - 2015-01-21 15:03 - 00000000 ____D () C:\Users\jonas\AppData\Local\Hewlett-Packard_Company 2015-01-21 15:02 - 2015-01-21 15:02 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\HP TCS 2015-01-21 15:01 - 2015-01-21 15:01 - 00000000 ____D () C:\ProgramData\Symantec 2015-01-21 15:01 - 2015-01-21 15:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Online Backup 2015-01-21 15:01 - 2015-01-21 15:01 - 00000000 ____D () C:\Program Files\Symantec 2015-01-21 15:00 - 2015-01-21 15:00 - 00000000 ___RD () C:\Program Files\Skype 2015-01-21 15:00 - 2015-01-21 15:00 - 00000000 ____D () C:\ProgramData\Skype 2015-01-21 15:00 - 2015-01-21 15:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-01-21 15:00 - 2015-01-21 15:00 - 00000000 ____D () C:\Program Files\Common Files\Skype 2015-01-21 14:59 - 2015-01-21 14:59 - 00000000 ____D () C:\Program Files\Windows Live SkyDrive 2015-01-21 14:59 - 2015-01-21 14:59 - 00000000 ____D () C:\Program Files\Windows Live 2015-01-21 14:59 - 2015-01-21 14:59 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2015-01-21 14:58 - 2015-01-26 23:52 - 00143976 _____ () C:\Users\jonas\AppData\Local\GDIPFONTCACHEV1.DAT 2015-01-21 14:58 - 2015-01-21 14:58 - 00000000 ____D () C:\Program Files\Common Files\Windows Live 2015-01-21 14:57 - 2015-01-21 14:57 - 00000000 ____D () C:\Program Files\Common Files\SNP2UVC 2015-01-21 14:57 - 2009-07-02 10:40 - 01765168 _____ () C:\windows\system32\Drivers\snp2uvc.sys 2015-01-21 14:57 - 2009-07-02 10:40 - 00313904 ____N (Sonix) C:\windows\system32\vsnp2uvc.dll 2015-01-21 14:57 - 2009-07-02 10:40 - 00027184 _____ () C:\windows\snuvcdsm.exe 2015-01-21 14:57 - 2009-07-02 10:39 - 00256560 ____N ( ) C:\windows\system32\rsnp2uvc.dll 2015-01-21 14:57 - 2009-07-02 10:39 - 00203312 ____N ( ) C:\windows\system32\csnp2uvc.dll 2015-01-21 14:57 - 2009-07-02 10:39 - 00034480 _____ () C:\windows\system32\Drivers\sncduvc.sys 2015-01-21 14:57 - 2006-05-20 02:53 - 00013022 _____ () C:\windows\snp2uvc.src 2015-01-21 14:57 - 2006-05-20 02:39 - 00015497 _____ () C:\windows\snp2uvc.ini 2015-01-21 14:56 - 2015-01-21 14:56 - 00000000 ____D () C:\windows\Options 2015-01-21 14:56 - 2015-01-21 14:56 - 00000000 ____D () C:\Program Files\LSI SoftModem 2015-01-21 14:56 - 2009-07-27 16:52 - 00061440 ____N (LSI Corporation) C:\windows\system32\agrsmdel.exe 2015-01-21 14:56 - 2009-07-27 16:52 - 00014848 ____N (LSI Corporation) C:\windows\system32\agrsco64.dll 2015-01-21 14:55 - 2015-01-21 14:56 - 00000000 ____D () C:\windows\HPQ 2015-01-21 14:55 - 2015-01-21 14:55 - 03866624 ____N (Broadcom Corporation) C:\windows\system32\bcmihvsrv.dll 2015-01-21 14:55 - 2015-01-21 14:55 - 03555328 ____N (Broadcom Corporation) C:\windows\system32\bcmihvui.dll 2015-01-21 14:55 - 2015-01-21 14:55 - 02661368 _____ (Broadcom Corporation) C:\windows\system32\Drivers\BCMWL6.SYS 2015-01-21 14:55 - 2015-01-21 14:55 - 00091376 ____N (Broadcom Corporation) C:\windows\system32\bcmwlcoi.dll 2015-01-21 14:55 - 2015-01-21 14:55 - 00006656 ____N () C:\windows\system32\bcmwlrc.dll 2015-01-21 14:55 - 2015-01-21 14:55 - 00001731 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\IDT Audio Control Panel.lnk 2015-01-21 14:55 - 2015-01-21 14:55 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\InstallShield 2015-01-21 14:55 - 2015-01-21 14:55 - 00000000 ____D () C:\Program Files\Broadcom 2015-01-21 14:54 - 2009-07-14 00:56 - 12030044 ____N (IDT, Inc.) C:\windows\system32\idtcpl.cpl 2015-01-21 14:54 - 2009-07-14 00:56 - 03600384 ____N (IDT, Inc.) C:\windows\system32\stlang.dll 2015-01-21 14:54 - 2009-07-14 00:56 - 00490496 ____N (IDT, Inc.) C:\windows\system32\stapi32.dll 2015-01-21 14:54 - 2009-07-14 00:56 - 00458844 _____ (IDT, Inc.) C:\windows\sttray.exe 2015-01-21 14:54 - 2009-03-02 21:57 - 00142848 ____N (Andrea Electronics Corporation) C:\windows\system32\aestacap.dll 2015-01-21 14:54 - 2009-03-02 21:57 - 00061440 ____N (Andrea Electronics Corporation) C:\windows\system32\aestaren.dll 2015-01-21 14:54 - 2009-03-02 21:47 - 00086016 ____N (Andrea Electronics Corporation) C:\windows\system32\AESTCom.dll 2015-01-21 14:54 - 2009-03-02 21:08 - 00368640 ____N (Andrea Electronics Corporation) C:\windows\system32\aestecap.dll 2015-01-21 14:53 - 2015-01-21 14:54 - 00000000 ____D () C:\Program Files\IDT 2015-01-21 14:53 - 2009-07-14 00:56 - 00915456 ____N (IDT, Inc.) C:\windows\system32\stapo.dll 2015-01-21 14:53 - 2009-07-14 00:56 - 00408576 _____ (IDT, Inc.) C:\windows\system32\Drivers\stwrt.sys 2015-01-21 14:53 - 2009-07-14 00:56 - 00405504 ____N (IDT, Inc.) C:\windows\system32\stcplx.dll 2015-01-21 14:53 - 2009-07-14 00:56 - 00175616 ____N (IDT, Inc.) C:\windows\system32\st326222.dll 2015-01-21 14:47 - 2015-01-21 14:47 - 00014808 ____N () C:\windows\system32\results.xml 2015-01-21 14:47 - 2015-01-21 14:47 - 00000000 __RSH () C:\windows\system32\Drivers\103C_HP_bNB_610_Y5336AN_0U_QCNU0261HVW_E571397-A43_4A_I308A_SHP_V26.08_68PVU F.0F_T100224_WU3-0_L407_M2040_J320_7Intel_86FD_91.86_#100116_N11AB4357;14E44315_(VQ611EA#ABD)_XMOBILE_CN10_Z_2F.0F_G80862A12;80862A13.MRK 2015-01-21 14:47 - 2015-01-21 14:47 - 00000000 ____D () C:\Users\jonas\AppData\Roaming\hpqLog 2015-01-21 14:46 - 2015-01-27 12:50 - 00000000 ____D () C:\Users\jonas 2015-01-21 14:46 - 2015-01-21 23:21 - 00000000 ____D () C:\Users\jonas\AppData\Local\VirtualStore 2015-01-21 14:46 - 2015-01-21 14:46 - 00000000 _SHDL () C:\Users\jonas\Startmenü 2015-01-21 14:46 - 2015-01-21 14:46 - 00000000 _SHDL () C:\Users\jonas\Netzwerkumgebung 2015-01-21 14:46 - 2015-01-21 14:46 - 00000000 _SHDL () C:\Users\jonas\Druckumgebung 2015-01-21 14:46 - 2015-01-21 14:46 - 00000000 _SHDL () C:\Users\jonas\Documents\Eigene Musik 2015-01-21 14:46 - 2015-01-21 14:46 - 00000000 _SHDL () C:\Users\jonas\Documents\Eigene Bilder 2015-01-21 14:46 - 2015-01-21 14:46 - 00000000 _SHDL () C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-01-21 14:46 - 2015-01-21 14:46 - 00000000 _SHDL () C:\Users\jonas\AppData\Local\Verlauf 2015-01-21 14:46 - 2009-09-23 11:50 - 00398336 ____N (Intel(R) Corporation) C:\windows\system32\TVWizudlg.exe 2015-01-21 14:46 - 2009-09-23 11:49 - 00140288 ____N () C:\windows\system32\igfxtvcx.dll 2015-01-21 14:46 - 2009-09-23 11:47 - 00121232 ____N () C:\windows\system32\IScrNB.bmp 2015-01-21 14:46 - 2009-07-27 08:37 - 00000020 ___SH () C:\Users\jonas\ntuser.ini 2015-01-21 14:46 - 2009-07-14 05:42 - 00000000 ___RD () C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-01-21 14:46 - 2009-07-14 05:37 - 00000000 ___RD () C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-27 12:28 - 2009-07-14 05:34 - 00019536 _____ () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-01-27 12:28 - 2009-07-14 05:34 - 00019536 _____ () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-01-27 11:57 - 2010-01-16 23:14 - 00681356 _____ () C:\windows\system32\perfh013.dat 2015-01-27 11:57 - 2010-01-16 23:14 - 00129608 _____ () C:\windows\system32\perfc013.dat 2015-01-27 11:57 - 2010-01-16 23:08 - 00680010 _____ () C:\windows\system32\perfh010.dat 2015-01-27 11:57 - 2010-01-16 23:08 - 00124006 _____ () C:\windows\system32\perfc010.dat 2015-01-27 11:57 - 2010-01-16 22:35 - 03894956 _____ () C:\windows\system32\PerfStringBackup.INI 2015-01-27 00:52 - 2009-07-14 05:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT 2015-01-26 23:50 - 2009-07-14 05:33 - 07698968 _____ () C:\windows\system32\FNTCACHE.DAT 2015-01-26 23:02 - 2010-01-16 22:50 - 00000000 ____D () C:\Program Files\Common Files\Roxio Shared 2015-01-26 23:00 - 2010-01-16 22:51 - 00000000 ____D () C:\ProgramData\Roxio 2015-01-26 23:00 - 2010-01-16 22:50 - 00000000 ____D () C:\Program Files\Common Files\PX Storage Engine 2015-01-23 00:30 - 2009-07-27 12:08 - 00000000 ___RD () C:\Users\Public\Recorded TV 2015-01-23 00:12 - 2009-07-27 09:31 - 00000000 ____D () C:\windows\Panther 2015-01-22 20:04 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\LogFiles 2015-01-21 23:20 - 2009-07-14 05:57 - 00025600 ___SH () C:\windows\system32\config\BCD-Template.LOG 2015-01-21 23:20 - 2009-07-14 05:52 - 00028672 _____ () C:\windows\system32\config\BCD-Template 2015-01-21 21:32 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\nl-NL 2015-01-21 21:32 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\it-IT 2015-01-21 21:32 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\fr-FR 2015-01-21 21:32 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\de-DE 2015-01-21 19:27 - 2009-07-14 03:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-01-21 19:23 - 2010-01-16 22:38 - 00000000 ____D () C:\ProgramData\PDFC 2015-01-21 18:56 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Public\Libraries 2015-01-21 15:42 - 2010-01-16 22:50 - 00000000 ____D () C:\ProgramData\Sonic 2015-01-21 15:03 - 2010-01-16 22:33 - 00000000 ____D () C:\ProgramData\Hewlett-Packard 2015-01-21 15:02 - 2010-01-16 22:38 - 00000000 ___RD () C:\Program Files\Online Services 2015-01-21 15:02 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Sidebar 2015-01-21 15:01 - 2009-08-11 17:01 - 00000000 ___HD () C:\SYSTEM.SAV 2015-01-21 15:00 - 2010-01-16 22:52 - 00000000 ____D () C:\ProgramData\Uninstall 2015-01-21 15:00 - 2010-01-16 22:39 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2015-01-21 15:00 - 2010-01-16 22:25 - 00000000 ____D () C:\Program Files\Hewlett-Packard 2015-01-21 14:59 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2015-01-21 14:57 - 2010-01-16 22:28 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2015-01-21 14:57 - 2009-07-14 05:52 - 00000000 ____D () C:\windows\twain_32 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\zh-TW 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\zh-HK 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\zh-CN 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\tr-TR 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\th-TH 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\sv-SE 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\sl-SI 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\sk-SK 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\ru-RU 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\ro-RO 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\pt-PT 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\pt-BR 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\pl-PL 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\nb-NO 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\lv-LV 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\lt-LT 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\ko-KR 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\ja-JP 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\hu-HU 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\hr-HR 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\he-IL 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\fi-FI 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\et-EE 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\el-GR 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\bg-BG 2015-01-21 14:55 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\ar-SA 2015-01-21 14:46 - 2010-01-16 22:29 - 00000000 ____D () C:\Program Files\Intel 2015-01-21 14:44 - 2009-07-14 05:52 - 00000000 ____D () C:\windows\system32\restore ==================== Files in the root of some directories ======= 2015-01-21 15:04 - 2015-01-21 15:04 - 0000000 _____ () C:\Users\jonas\AppData\Local\AtStart.txt 2015-01-21 15:04 - 2015-01-21 15:04 - 0000000 _____ () C:\Users\jonas\AppData\Local\DSwitch.txt 2015-01-21 15:04 - 2015-01-21 15:04 - 0000000 _____ () C:\Users\jonas\AppData\Local\QSwitch.txt 2010-01-16 22:58 - 2010-01-16 22:58 - 0000190 _____ () C:\ProgramData\HPWALog.txt Some content of TEMP: ==================== C:\Users\jonas\AppData\Local\Temp\avgnt.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\windows\explorer.exe => File is digitally signed C:\windows\system32\winlogon.exe => File is digitally signed C:\windows\system32\wininit.exe => File is digitally signed C:\windows\system32\svchost.exe => File is digitally signed C:\windows\system32\services.exe => File is digitally signed C:\windows\system32\User32.dll => File is digitally signed C:\windows\system32\userinit.exe => File is digitally signed C:\windows\system32\rpcss.dll => File is digitally signed C:\windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2009-07-27 08:32 ==================== End Of Log ============================ --- --- --- Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 12:51 on 27/01/2015 (jonas)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
Pardon, "anhängen" war undeutlich formuliert - ich meinte aber schon "reinkopieren" - hab mir die Richtlinien nämlich vorweg durchgelesen. |
|
27.01.2015, 13:50
| #4 |
| | Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung OTL Code:
ATTFilter OTL logfile created on: 1/27/2015 12:00:43 AM - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jonas\Downloads Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000409 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 1.99 Gb Total Physical Memory | 0.58 Gb Available Physical Memory | 28.94% Memory free 3.98 Gb Paging File | 2.36 Gb Available in Paging File | 59.24% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files Drive C: | 282.80 Gb Total Space | 131.08 Gb Free Space | 46.35% Space Free | Partition Type: NTFS Computer Name: MOTHER | User Name: jonas | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2015/01/26 23:59:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jonas\Downloads\OTL.exe PRC - [2015/01/26 23:53:03 | 000,338,032 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2015/01/19 12:06:46 | 000,126,712 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe PRC - [2015/01/19 12:06:40 | 000,182,520 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe PRC - [2014/12/12 18:21:24 | 005,489,944 | ---- | M] (Piriform Ltd) -- C:\Program Files\CCleaner\CCleaner.exe PRC - [2014/11/24 10:23:31 | 000,431,920 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2014/11/24 10:23:24 | 000,427,824 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2014/11/24 10:23:22 | 000,431,920 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2014/11/24 10:23:21 | 000,702,768 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2013/05/10 12:03:37 | 000,486,656 | ---- | M] () -- C:\Program Files\Hostless Modem\o2 Surfstick\ShowTip.exe PRC - [2013/05/10 12:03:37 | 000,446,720 | ---- | M] () -- C:\Program Files\Hostless Modem\o2 Surfstick\CancelAutoPlay_df.exe PRC - [2013/05/10 12:03:37 | 000,419,072 | ---- | M] () -- C:\Program Files\Hostless Modem\o2 Surfstick\CheckNDISPort_df.exe PRC - [2009/10/06 06:53:03 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009/07/27 16:52:16 | 000,014,336 | ---- | M] (LSI Corporation) -- C:\Program Files\LSI SoftModem\agrsmsvc.exe PRC - [2009/07/14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe PRC - [2009/07/14 02:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe PRC - [2009/07/14 00:56:02 | 000,458,844 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe PRC - [2009/07/14 00:56:02 | 000,221,266 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\stacsv.exe PRC - [2009/06/18 18:07:06 | 000,635,416 | ---- | M] (PDF Complete Inc) -- C:\Program Files\PDF Complete\pdfsvc.exe PRC - [2009/06/17 17:56:16 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe PRC - [2009/06/17 17:56:14 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe PRC - [2009/03/02 22:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\AEstSrv.exe ========== Modules (No Company Name) ========== MOD - [2015/01/26 23:53:01 | 003,925,104 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2015/01/19 12:03:00 | 000,245,760 | ---- | M] () -- C:\Program Files\Avira\My Avira\System.ComponentModel.Composition.dll MOD - [2014/12/12 23:24:58 | 000,047,104 | ---- | M] () -- C:\Program Files\CCleaner\lang\lang-1031.dll MOD - [2013/05/10 12:03:37 | 000,486,656 | ---- | M] () -- C:\Program Files\Hostless Modem\o2 Surfstick\ShowTip.exe MOD - [2013/05/10 12:03:37 | 000,446,720 | ---- | M] () -- C:\Program Files\Hostless Modem\o2 Surfstick\CancelAutoPlay_df.exe MOD - [2013/05/10 12:03:37 | 000,419,072 | ---- | M] () -- C:\Program Files\Hostless Modem\o2 Surfstick\CheckNDISPort_df.exe MOD - [2010/01/16 23:02:06 | 000,249,856 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_de_31bf3856ad364e35\PresentationFramework.resources.dll MOD - [2010/01/16 23:02:06 | 000,110,592 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_de_31bf3856ad364e35\PresentationCore.resources.dll MOD - [2010/01/16 23:01:41 | 000,315,392 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll MOD - [2010/01/16 23:01:38 | 000,040,960 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_de_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll MOD - [2009/07/14 05:45:49 | 000,997,888 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\6e033d390dc7e9567b6960b0f530cf30\System.Management.ni.dll MOD - [2009/07/14 05:45:34 | 001,072,128 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\e791f7aea04b8d379f6dbaadb5fdeb96\System.IdentityModel.ni.dll MOD - [2009/07/14 05:45:33 | 017,400,320 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\e1adf6b481f5120153829fa54ee8a041\System.ServiceModel.ni.dll MOD - [2009/07/14 05:43:53 | 002,347,008 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll MOD - [2009/07/14 05:43:53 | 000,256,000 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\81282964925798589021d3e0e6de779f\SMDiagnostics.ni.dll MOD - [2009/07/14 05:43:51 | 002,516,992 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\c69c5877e9c9033a6dc6dd35ef20a896\System.Data.Linq.ni.dll MOD - [2009/07/14 05:43:51 | 000,401,408 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\ad8a7493b8e2280fc404be082e295478\System.Xml.Linq.ni.dll MOD - [2009/07/14 05:43:48 | 002,295,296 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\1762137638019a091020b3baf52f6de3\System.Core.ni.dll MOD - [2009/07/14 05:43:44 | 000,368,128 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\39f5a71b5185d267b0f55cd4cea26d6b\PresentationFramework.Aero.ni.dll MOD - [2009/07/14 05:43:36 | 011,804,160 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\3871fc2b96345aa6f3be81d9e3c97160\System.Web.ni.dll MOD - [2009/07/14 05:43:28 | 006,618,624 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\7f457271e765b5d72f081942b829469c\System.Data.ni.dll MOD - [2009/07/14 05:43:20 | 014,318,592 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\68e5eeb3c6ef18ba2dc1ad70eb74aeee\PresentationFramework.ni.dll MOD - [2009/07/14 05:43:06 | 000,212,992 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\e71959f4ec6eb386889050ac139835c7\System.ServiceProcess.ni.dll MOD - [2009/07/14 05:43:04 | 012,430,848 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\fedf1ba58dced4f0b3f8c457648ceed9\System.Windows.Forms.ni.dll MOD - [2009/07/14 05:42:57 | 001,586,688 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll MOD - [2009/07/14 05:42:55 | 012,216,320 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b459c5815af8123e4bf30d4e05bba65\PresentationCore.ni.dll MOD - [2009/07/14 05:42:45 | 003,313,664 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll MOD - [2009/07/14 05:42:40 | 005,452,800 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll MOD - [2009/07/14 05:42:37 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll MOD - [2009/07/14 05:42:36 | 007,949,312 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll MOD - [2009/07/14 05:42:30 | 011,490,816 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll MOD - [2009/06/10 22:23:17 | 002,933,248 | ---- | M] () -- C:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll ========== Services (SafeList) ========== SRV - [2015/01/26 23:53:02 | 000,114,800 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2015/01/21 16:42:59 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2015/01/19 12:06:40 | 000,182,520 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe -- (Avira.OE.ServiceHost) SRV - [2014/11/24 10:23:31 | 000,431,920 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2014/11/24 10:23:22 | 000,431,920 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009/07/27 16:52:16 | 000,014,336 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agrsmsvc.exe -- (AgereModemAudio) SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009/07/14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend) SRV - [2009/07/14 00:56:02 | 000,221,266 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\stacsv.exe -- (STacSV) SRV - [2009/06/18 18:07:06 | 000,635,416 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files\PDF Complete\pdfsvc.exe -- (pdfcDispatcher) SRV - [2009/06/17 17:56:16 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON) SRV - [2009/03/02 22:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\AEstSrv.exe -- (AESTFilters) ========== Driver Services (SafeList) ========== DRV - [2014/11/24 10:23:32 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2014/11/24 10:23:23 | 000,037,352 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr) DRV - [2014/11/24 10:23:22 | 000,136,216 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb) DRV - [2014/11/24 10:23:21 | 000,098,160 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt) DRV - [2009/07/27 16:52:14 | 001,161,664 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2009/07/20 10:10:00 | 000,313,856 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7) DRV - [2009/07/14 00:56:02 | 000,408,576 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA) DRV - [2009/07/14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp) DRV - [2009/07/14 00:12:52 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tpm.sys -- (TPM) DRV - [2009/07/13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) DRV - [2009/07/02 10:40:34 | 001,765,168 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) DRV - [2009/05/16 03:15:14 | 000,214,024 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk) DRV - [2009/05/16 03:15:14 | 000,079,816 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfeavfk.sys -- (MfeAVFK) DRV - [2009/05/16 03:15:14 | 000,055,336 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mfetdik.sys -- (mfetdik) DRV - [2009/05/16 03:15:14 | 000,035,272 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfebopk.sys -- (MfeBOPK) DRV - [2009/05/16 03:15:14 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mferkdk.sys -- (MfeRKDK) DRV - [2009/04/29 17:46:54 | 000,015,872 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr) DRV - [2009/04/20 18:38:54 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBttn.sys -- (HBtnKey) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM/10 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCOM/10 IE - HKLM\..\SearchScopes,DefaultScope = {1BA281F0-7349-4A8C-85A9-947ECBC99703} IE - HKLM\..\SearchScopes\{1BA281F0-7349-4A8C-85A9-947ECBC99703}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM/10 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCOM/10 IE - HKCU\..\SearchScopes,DefaultScope = {1BA281F0-7349-4A8C-85A9-947ECBC99703} IE - HKCU\..\SearchScopes\{1BA281F0-7349-4A8C-85A9-947ECBC99703}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.isUS: false FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..extensions.enabledAddons: downloader%40video-park.de:1.3.3 FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.24 FF - prefs.js..extensions.enabledAddons: artur.dubovoy%40gmail.com:6.9.3 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:35.0.1 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2015/01/21 19:04:08 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2015/01/21 15:20:35 | 000,000,000 | ---D | M] [2015/01/21 15:12:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jonas\AppData\Roaming\mozilla\Extensions [2015/01/26 23:55:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jonas\AppData\Roaming\mozilla\Firefox\Profiles\ndabpe8t.default\extensions [2015/01/21 19:14:05 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\jonas\AppData\Roaming\mozilla\Firefox\Profiles\ndabpe8t.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2015/01/26 19:46:48 | 000,000,000 | ---D | M] (Avira Browser Safety) -- C:\Users\jonas\AppData\Roaming\mozilla\Firefox\Profiles\ndabpe8t.default\extensions\abs@avira.com [2015/01/21 19:14:03 | 000,000,000 | ---D | M] ("Flash Video Downloader - YouTube HD Download [4K]") -- C:\Users\jonas\AppData\Roaming\mozilla\Firefox\Profiles\ndabpe8t.default\extensions\artur.dubovoy@gmail.com [2015/01/26 23:56:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jonas\AppData\Roaming\mozilla\Firefox\Profiles\ndabpe8t.default\extensions\staged [2011/12/08 12:44:06 | 000,040,484 | ---- | M] () (No name found) -- C:\Users\jonas\AppData\Roaming\mozilla\firefox\profiles\ndabpe8t.default\extensions\downloader@video-park.de.xpi [2014/10/28 20:03:37 | 000,085,592 | ---- | M] () (No name found) -- C:\Users\jonas\AppData\Roaming\mozilla\firefox\profiles\ndabpe8t.default\extensions\extension@preispilot.com.xpi [2013/04/16 09:10:15 | 000,002,123 | ---- | M] () -- C:\Users\jonas\AppData\Roaming\mozilla\firefox\profiles\ndabpe8t.default\searchplugins\google-us.xml [2015/01/21 19:04:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions [2015/01/26 23:53:05 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2015/01/26 23:05:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\updated\browser\extensions [2015/01/26 23:10:01 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2015/01/21 15:20:27 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011/10/26 19:49:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll O1 HOSTS File: ([2010/06/11 23:04:37 | 000,002,112 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O1 - Hosts: 127.0.0.1 adobeereg.com O1 - Hosts: 127.0.0.1 activate-sea.adobe.com O1 - Hosts: 127.0.0.1 3dns.adobe.com O1 - Hosts: 127.0.0.1 3dns-1.adobe.com O1 - Hosts: 127.0.0.1 3dns-2.adobe.com O1 - Hosts: 127.0.0.1 3dns-3.adobe.com O1 - Hosts: 127.0.0.1 3dns-4.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-1.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-4.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-5.adobe.com O1 - Hosts: 127.0.0.1 activate.wip.adobe.com O1 - Hosts: 127.0.0.1 activate.wip1.adobe.com O1 - Hosts: 127.0.0.1 activate.wip2.adobe.com O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com O1 - Hosts: 127.0.0.1 activate.wip4.adobe.com O1 - Hosts: 127.0.0.1 practivate.adobe.com O1 - Hosts: 127.0.0.1 practivate.adobe.newoa O1 - Hosts: 127.0.0.1 practivate.adobe.ntp O1 - Hosts: 127.0.0.1 practivate.adobe.ipp O1 - Hosts: 127.0.0.1 ereg.adobe.com O1 - Hosts: 127.0.0.1 ereg.wip.adobe.com O1 - Hosts: 18 more lines... O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found. O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [Avira Systray] C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [CancelAutoPlay_df] C:\Program Files\Hostless Modem\o2 Surfstick\CancelAutoPlay_df.exe () O4 - HKLM..\Run: [CheckNDISPortF0acA7] C:\Program Files\Hostless Modem\o2 Surfstick\CheckNDISPort_df.exe () O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation) O4 - HKLM..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe (PDF Complete Inc) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.) O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O13 - gopher Prefix: missing O15 - HKLM\..Trusted Domains: //about.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //Exclude.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //LanguageSelection.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //Message.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //MyAgttryCmd.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //MyAgttryNag.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //MyNotification.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //NOCLessUpdate.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //quarantine.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //ScanNow.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //strings.vbs/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //Template.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //Update.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: //VirFound.htm/ ([]myui in Trusted sites) O15 - HKLM\..Trusted Domains: mcafee.com ([*] http in Trusted sites) O15 - HKLM\..Trusted Domains: mcafee.com ([*] https in Trusted sites) O15 - HKLM\..Trusted Domains: mcafeeasap.com ([betavscan] http in Trusted sites) O15 - HKLM\..Trusted Domains: mcafeeasap.com ([betavscan] https in Trusted sites) O15 - HKLM\..Trusted Domains: mcafeeasap.com ([vs] http in Trusted sites) O15 - HKLM\..Trusted Domains: mcafeeasap.com ([vs] https in Trusted sites) O15 - HKLM\..Trusted Domains: mcafeeasap.com ([www] http in Trusted sites) O15 - HKLM\..Trusted Domains: mcafeeasap.com ([www] https in Trusted sites) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{295E2856-9F9B-41FD-A0F1-0C67226B107E}: DhcpNameServer = 192.168.0.1 192.168.0.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - c:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{8fd57ea1-a180-11e4-9664-d8d3853fd6a4}\Shell - "" = AutoRun O33 - MountPoints2\{8fd57ea1-a180-11e4-9664-d8d3853fd6a4}\Shell\AutoRun\command - "" = D:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2015/01/27 00:09:39 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Programs [2015/01/26 23:17:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2015/01/26 23:17:11 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2015/01/26 22:10:46 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Roxio Log Files [2015/01/26 19:59:09 | 000,037,384 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avnetflt.sys [2015/01/26 19:54:00 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Avira [2015/01/26 19:51:45 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\windows\System32\drivers\ssmdrv.sys [2015/01/26 19:51:43 | 000,136,216 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avipbb.sys [2015/01/26 19:51:43 | 000,037,352 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avkmgr.sys [2015/01/26 19:51:42 | 000,098,160 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avgntflt.sys [2015/01/26 19:42:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2015/01/26 19:42:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2015/01/26 19:42:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2015/01/21 23:37:06 | 000,000,000 | ---D | C] -- C:\windows\SoftwareDistribution [2015/01/21 23:35:52 | 000,000,000 | ---D | C] -- C:\windows\System32\Lang [2015/01/21 23:35:51 | 001,002,008 | ---- | C] (Intel Corporation) -- C:\windows\System32\igxpun.exe [2015/01/21 23:35:41 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2015/01/21 23:34:33 | 000,000,000 | ---D | C] -- C:\windows\Prefetch [2015/01/21 23:19:26 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2015/01/21 22:20:43 | 000,000,000 | ---D | C] -- C:\windows\Minidump [2015/01/21 21:24:02 | 000,000,000 | ---D | C] -- C:\windows\System32\MRT [2015/01/21 21:23:23 | 000,000,000 | ---D | C] -- C:\windows\System32\x64 [2015/01/21 21:21:29 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2015/01/21 21:20:44 | 003,957,632 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntkrnlpa.exe [2015/01/21 21:20:43 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntoskrnl.exe [2015/01/21 21:20:41 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\poqexec.exe [2015/01/21 21:16:32 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wucltux.dll [2015/01/21 21:16:32 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wups2.dll [2015/01/21 21:16:16 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wuapi.dll [2015/01/21 21:16:16 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wudriver.dll [2015/01/21 21:16:16 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wups.dll [2015/01/21 21:16:07 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wuwebv.dll [2015/01/21 21:16:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wuapp.exe [2015/01/21 21:15:13 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Diagnostics [2015/01/21 20:04:59 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Macromedia [2015/01/21 19:57:53 | 000,701,616 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerApp.exe [2015/01/21 19:57:53 | 000,071,344 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerCPLApp.cpl [2015/01/21 19:52:55 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\ElevatedDiagnostics [2015/01/21 19:51:34 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\vlc [2015/01/21 19:34:10 | 000,000,000 | ---D | C] -- C:\Users\jonas\Desktop\Tor Browser [2015/01/21 19:04:22 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2015/01/21 19:04:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla [2015/01/21 18:58:10 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2015/01/21 18:54:47 | 000,000,000 | ---D | C] -- C:\windows\System32\SupportAppPBHostless Modem [2015/01/21 18:54:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2 Surfstick [2015/01/21 18:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Hostless Modem [2015/01/21 18:40:16 | 000,000,000 | ---D | C] -- C:\Users\jonas\Desktop\MittWeida Trial [2015/01/21 18:35:36 | 000,719,872 | ---- | C] (Abysmal Software) -- C:\windows\System32\devil.dll [2015/01/21 18:35:36 | 000,369,152 | ---- | C] (The Public) -- C:\windows\System32\avisynth.dll [2015/01/21 18:35:35 | 000,070,656 | ---- | C] (www.helixcommunity.org) -- C:\windows\System32\yv12vfw.dll [2015/01/21 18:35:35 | 000,070,656 | ---- | C] (www.helixcommunity.org) -- C:\windows\System32\i420vfw.dll [2015/01/21 18:35:34 | 000,000,000 | ---D | C] -- C:\Program Files\AviSynth 2.5 [2015/01/21 18:03:26 | 000,000,000 | ---D | C] -- C:\Users\jonas\Former Desktop [2015/01/21 17:26:53 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\VLC Listen [2015/01/21 17:26:34 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Such A Creep EP [2015/01/21 17:22:58 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\My Loops [2015/01/21 17:22:43 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Music Software [2015/01/21 17:22:43 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\MITTWEIDA Skripte [2015/01/21 17:22:37 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Herr Kavka Am Strand - Von der Schwerkraft der Genügsamkeit [2015/01/21 17:21:52 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\FUSSBALL MANAGER 10 [2015/01/21 17:21:44 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Downloads [2015/01/21 17:21:44 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - The Heart Is A Soaking Blast (7'') [2015/01/21 17:21:39 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - Test [2015/01/21 17:21:39 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - Electro Eclectic [2015/01/21 17:21:26 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - 2013 - November Dub Session 2 [2015/01/21 17:21:21 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - 2013 - Aural Pleasure Not Included [2015/01/21 17:21:21 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - 2013 - Antrum (Single) [2015/01/21 17:21:20 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - 2012 - Total Loss Forever EP [2015/01/21 17:21:19 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - 2012 - Outtakes Vol.01 [2015/01/21 17:21:17 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - 2012 - Old Recordings [2015/01/21 17:21:10 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak - 2012 - November Dub Session [2015/01/21 17:20:45 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Claptraptraktak [2015/01/21 17:20:42 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\BA ((-01-)) [2015/01/21 17:05:13 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\Adobe [2015/01/21 17:01:07 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\[[ Musik ]] [2015/01/21 17:01:06 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\[ Works ] [2015/01/21 17:01:05 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\[ Uni-tives ] [2015/01/21 17:01:04 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\[ TEXTE ] [2015/01/21 17:00:29 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\[ Die Drei Fragezeichen ] [2015/01/21 17:00:29 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\[ BewerbungsUnterlagen ] [2015/01/21 16:59:43 | 000,000,000 | ---D | C] -- C:\Users\jonas\Documents\[ Audiospuren ] [2015/01/21 16:46:33 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour [2015/01/21 16:42:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared [2015/01/21 16:33:56 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Adobe Mini Bridge CS5.1 [2015/01/21 16:33:55 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2015/01/21 16:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe [2015/01/21 16:24:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR [2015/01/21 16:19:58 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Macromedia [2015/01/21 16:19:53 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Adobe [2015/01/21 16:19:39 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Adobe [2015/01/21 16:18:07 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Apple Computer [2015/01/21 15:59:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe Systems Shared [2015/01/21 15:58:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2015/01/21 15:58:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2015/01/21 15:58:45 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2015/01/21 15:43:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes [2015/01/21 15:43:22 | 000,000,000 | ---D | C] -- C:\Program Files\Elaborate Bytes [2015/01/21 15:31:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 - Codec Pack [2015/01/21 15:30:59 | 000,000,000 | ---D | C] -- C:\windows\System32\C2MP [2015/01/21 15:26:36 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\OpenOffice.org [2015/01/21 15:21:47 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3 [2015/01/21 15:21:08 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3 [2015/01/21 15:20:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2015/01/21 15:20:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2015/01/21 15:20:35 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\System32\deployJava1.dll [2015/01/21 15:20:35 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\System32\javaws.exe [2015/01/21 15:20:35 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\System32\javaw.exe [2015/01/21 15:20:35 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\System32\java.exe [2015/01/21 15:20:26 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2015/01/21 15:15:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp [2015/01/21 15:14:48 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in [2015/01/21 15:14:48 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2015/01/21 15:14:40 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Winamp [2015/01/21 15:14:40 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2015/01/21 15:13:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN [2015/01/21 15:13:29 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2015/01/21 15:11:57 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Mozilla [2015/01/21 15:11:57 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Mozilla [2015/01/21 15:11:52 | 000,186,880 | ---- | C] (RadLight) -- C:\windows\System32\RLOgg.ax [2015/01/21 15:11:52 | 000,092,672 | ---- | C] (RadLight) -- C:\windows\System32\RLVorbisDec.ax [2015/01/21 15:11:52 | 000,090,112 | ---- | C] (-) -- C:\windows\System32\TTADSSplitter.ax [2015/01/21 15:11:52 | 000,090,112 | ---- | C] (-) -- C:\windows\System32\TTADSDecoder.ax [2015/01/21 15:11:52 | 000,067,584 | ---- | C] (RadLight, LLC) -- C:\windows\System32\RLTheoraDec.ax [2015/01/21 15:11:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © Version 2010.bld.38 (May 2, 2010) [2015/01/21 15:11:51 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\windows\System32\pncrt.dll [2015/01/21 15:11:51 | 000,216,064 | ---- | C] (MONOGRAM Multimedia, s.r.o.) -- C:\windows\System32\nbDX.dll [2015/01/21 15:11:51 | 000,179,200 | ---- | C] (Gabest) -- C:\windows\System32\DiracSplitter.ax [2015/01/21 15:11:51 | 000,169,472 | ---- | C] (Gabest) -- C:\windows\System32\MatroskaDX.ax [2015/01/21 15:11:51 | 000,163,328 | ---- | C] (Gabest) -- C:\windows\System32\flvDX.dll [2015/01/21 15:11:51 | 000,161,792 | ---- | C] (Gabest) -- C:\windows\System32\RealMediaDX.ax [2015/01/21 15:11:51 | 000,123,904 | ---- | C] (CoreCodec) -- C:\windows\System32\AVCDX.ax [2015/01/21 15:11:51 | 000,031,232 | ---- | C] (Hans Mayerl) -- C:\windows\System32\msfDX.dll [2015/01/21 15:11:36 | 000,000,000 | ---D | C] -- C:\Program Files\eRightSoft [2015/01/21 15:09:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime [2015/01/21 15:09:38 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2015/01/21 15:09:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer [2015/01/21 15:08:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple [2015/01/21 15:08:47 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Apple [2015/01/21 15:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2015/01/21 15:08:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple [2015/01/21 15:07:52 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2015/01/21 15:07:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip [2015/01/21 15:07:17 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2015/01/21 15:04:18 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Hewlett-Packard [2015/01/21 15:04:13 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\PDFC [2015/01/21 15:03:56 | 000,000,000 | R--D | C] -- C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2015/01/21 15:03:56 | 000,000,000 | R--D | C] -- C:\Users\jonas\Searches [2015/01/21 15:03:56 | 000,000,000 | R--D | C] -- C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2015/01/21 15:03:48 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\Identities [2015/01/21 15:03:46 | 000,000,000 | R--D | C] -- C:\Users\jonas\Contacts [2015/01/21 15:03:34 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Hewlett-Packard [2015/01/21 15:03:33 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Hewlett-Packard_Company [2015/01/21 15:02:12 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\HP TCS [2015/01/21 15:01:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Symantec [2015/01/21 15:01:57 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec [2015/01/21 15:01:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Online Backup [2015/01/21 15:00:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2015/01/21 15:00:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2015/01/21 15:00:17 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2015/01/21 15:00:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2015/01/21 14:59:23 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live [2015/01/21 14:59:19 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft [2015/01/21 14:59:13 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive [2015/01/21 14:59:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework [2015/01/21 14:58:53 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft [2015/01/21 14:58:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live [2015/01/21 14:57:40 | 000,313,904 | ---- | C] (Sonix) -- C:\windows\System32\vsnp2uvc.dll [2015/01/21 14:57:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SNP2UVC [2015/01/21 14:56:56 | 000,061,440 | ---- | C] (LSI Corporation) -- C:\windows\System32\agrsmdel.exe [2015/01/21 14:56:56 | 000,014,848 | ---- | C] (LSI Corporation) -- C:\windows\System32\agrsco64.dll [2015/01/21 14:56:53 | 000,000,000 | ---D | C] -- C:\Program Files\LSI SoftModem [2015/01/21 14:56:44 | 000,000,000 | ---D | C] -- C:\windows\Options [2015/01/21 14:55:29 | 003,866,624 | ---- | C] (Broadcom Corporation) -- C:\windows\System32\bcmihvsrv.dll [2015/01/21 14:55:29 | 003,555,328 | ---- | C] (Broadcom Corporation) -- C:\windows\System32\bcmihvui.dll [2015/01/21 14:55:29 | 000,091,376 | ---- | C] (Broadcom Corporation) -- C:\windows\System32\bcmwlcoi.dll [2015/01/21 14:55:29 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom [2015/01/21 14:55:26 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\InstallShield [2015/01/21 14:55:19 | 000,000,000 | ---D | C] -- C:\windows\HPQ [2015/01/21 14:54:38 | 000,490,496 | ---- | C] (IDT, Inc.) -- C:\windows\System32\stapi32.dll [2015/01/21 14:54:17 | 000,368,640 | ---- | C] (Andrea Electronics Corporation) -- C:\windows\System32\aestecap.dll [2015/01/21 14:54:17 | 000,142,848 | ---- | C] (Andrea Electronics Corporation) -- C:\windows\System32\aestacap.dll [2015/01/21 14:54:17 | 000,086,016 | ---- | C] (Andrea Electronics Corporation) -- C:\windows\System32\AESTCom.dll [2015/01/21 14:54:17 | 000,061,440 | ---- | C] (Andrea Electronics Corporation) -- C:\windows\System32\aestaren.dll [2015/01/21 14:54:16 | 012,030,044 | ---- | C] (IDT, Inc.) -- C:\windows\System32\idtcpl.cpl [2015/01/21 14:54:16 | 003,600,384 | ---- | C] (IDT, Inc.) -- C:\windows\System32\stlang.dll [2015/01/21 14:54:16 | 000,458,844 | ---- | C] (IDT, Inc.) -- C:\windows\sttray.exe [2015/01/21 14:53:30 | 000,915,456 | ---- | C] (IDT, Inc.) -- C:\windows\System32\stapo.dll [2015/01/21 14:53:30 | 000,408,576 | ---- | C] (IDT, Inc.) -- C:\windows\System32\drivers\stwrt.sys [2015/01/21 14:53:30 | 000,405,504 | ---- | C] (IDT, Inc.) -- C:\windows\System32\stcplx.dll [2015/01/21 14:53:29 | 000,175,616 | ---- | C] (IDT, Inc.) -- C:\windows\System32\st326222.dll [2015/01/21 14:53:19 | 000,000,000 | ---D | C] -- C:\Program Files\IDT [2015/01/21 14:47:26 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Roaming\hpqLog [2015/01/21 14:46:59 | 000,398,336 | ---- | C] (Intel(R) Corporation) -- C:\windows\System32\TVWizudlg.exe [2015/01/21 14:46:39 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\VirtualStore [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Vorlagen [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\AppData\Local\Verlauf [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\AppData\Local\Temporary Internet Files [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Startmenü [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\SendTo [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Recent [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Netzwerkumgebung [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Lokale Einstellungen [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Documents\Eigene Videos [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Documents\Eigene Musik [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Eigene Dateien [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Documents\Eigene Bilder [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Druckumgebung [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Cookies [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\AppData\Local\Anwendungsdaten [2015/01/21 14:46:37 | 000,000,000 | -HSD | C] -- C:\Users\jonas\Anwendungsdaten [2015/01/21 14:46:36 | 000,000,000 | --SD | C] -- C:\Users\jonas\AppData\Roaming\Microsoft [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Videos [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Saved Games [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Pictures [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Music [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Links [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Favorites [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Downloads [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Documents [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\Desktop [2015/01/21 14:46:36 | 000,000,000 | R--D | C] -- C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2015/01/21 14:46:36 | 000,000,000 | -H-D | C] -- C:\Users\jonas\AppData [2015/01/21 14:46:36 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Temp [2015/01/21 14:46:36 | 000,000,000 | ---D | C] -- C:\Users\jonas\AppData\Local\Microsoft ========== Files - Modified Within 30 Days ========== [2015/01/27 00:01:36 | 000,019,536 | ---- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2015/01/27 00:01:36 | 000,019,536 | ---- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2015/01/26 23:54:48 | 000,684,954 | ---- | M] () -- C:\windows\System32\perfh00C.dat [2015/01/26 23:54:48 | 000,681,356 | ---- | M] () -- C:\windows\System32\perfh013.dat [2015/01/26 23:54:48 | 000,680,010 | ---- | M] () -- C:\windows\System32\perfh010.dat [2015/01/26 23:54:48 | 000,643,866 | ---- | M] () -- C:\windows\System32\perfh007.dat [2015/01/26 23:54:48 | 000,607,190 | ---- | M] () -- C:\windows\System32\perfh009.dat [2015/01/26 23:54:48 | 000,129,608 | ---- | M] () -- C:\windows\System32\perfc013.dat [2015/01/26 23:54:48 | 000,127,070 | ---- | M] () -- C:\windows\System32\perfc00C.dat [2015/01/26 23:54:48 | 000,126,394 | ---- | M] () -- C:\windows\System32\perfc007.dat [2015/01/26 23:54:48 | 000,124,006 | ---- | M] () -- C:\windows\System32\perfc010.dat [2015/01/26 23:54:48 | 000,103,568 | ---- | M] () -- C:\windows\System32\perfc009.dat [2015/01/26 23:50:56 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat [2015/01/26 23:50:55 | 007,698,968 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT [2015/01/26 23:49:37 | 1603,772,416 | -HS- | M] () -- C:\hiberfil.sys [2015/01/26 23:17:13 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2015/01/26 23:03:03 | 000,000,138 | ---- | M] () -- C:\windows\WININIT.INI [2015/01/26 19:54:44 | 000,037,384 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\windows\System32\drivers\avnetflt.sys [2015/01/26 19:24:38 | 000,053,814 | ---- | M] () -- C:\Users\jonas\Documents\cc_20150126_192419.reg [2015/01/23 01:37:08 | 000,007,679 | ---- | M] () -- C:\Users\jonas\Documents\2015 - 01 - 03.xspf [2015/01/21 23:42:07 | 000,052,953 | ---- | M] () -- C:\windows\System32\license.rtf [2015/01/21 23:35:45 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf [2015/01/21 19:57:54 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerApp.exe [2015/01/21 19:57:53 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerCPLApp.cpl [2015/01/21 15:31:12 | 000,001,873 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk [2015/01/21 15:20:27 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\System32\deployJava1.dll [2015/01/21 15:20:27 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\System32\javaws.exe [2015/01/21 15:20:27 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\System32\javaw.exe [2015/01/21 15:20:27 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\windows\System32\java.exe [2015/01/21 14:56:17 | 000,998,786 | ---- | M] () -- C:\windows\System32\oem12.inf [2015/01/21 14:55:22 | 000,091,376 | ---- | M] (Broadcom Corporation) -- C:\windows\System32\bcmwlcoi.dll [2015/01/21 14:55:22 | 000,006,656 | ---- | M] () -- C:\windows\System32\bcmwlrc.dll [2015/01/21 14:55:21 | 003,866,624 | ---- | M] (Broadcom Corporation) -- C:\windows\System32\bcmihvsrv.dll [2015/01/21 14:55:21 | 003,555,328 | ---- | M] (Broadcom Corporation) -- C:\windows\System32\bcmihvui.dll [2015/01/21 14:47:36 | 000,000,000 | RHS- | M] () -- C:\windows\System32\drivers\103C_HP_bNB_610_Y5336AN_0U_QCNU0261HVW_E571397-A43_4A_I308A_SHP_V26.08_68PVU F.0F_T100224_WU3-0_L407_M2040_J320_7Intel_86FD_91.86_#100116_N11AB4357;14E44315_(VQ611EA#ABD)_XMOBILE_CN10_Z_2F.0F_G80862A12;80862A13.MRK [2015/01/21 14:47:20 | 000,014,808 | ---- | M] () -- C:\windows\System32\results.xml [2015/01/21 13:31:25 | 000,049,640 | ---- | M] () -- C:\Users\jonas\Documents\2015-02.m3u [2015/01/16 03:08:37 | 000,007,054 | ---- | M] () -- C:\Users\jonas\Documents\2015 - 01 - 02.xspf [2015/01/10 00:32:19 | 000,010,399 | ---- | M] () -- C:\Users\jonas\Documents\2015 - 01 - 01.xspf [2015/01/06 13:42:28 | 000,032,379 | ---- | M] () -- C:\Users\jonas\Documents\2015-01.m3u [2014/12/31 23:29:01 | 000,006,653 | ---- | M] () -- C:\Users\jonas\Documents\2014-12- post weihnachten.xspf ========== Files Created - No Company Name ========== [2015/01/26 23:17:13 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2015/01/26 22:17:00 | 000,000,138 | ---- | C] () -- C:\windows\WININIT.INI [2015/01/26 19:24:22 | 000,053,814 | ---- | C] () -- C:\Users\jonas\Documents\cc_20150126_192419.reg [2015/01/21 23:35:45 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf [2015/01/21 23:33:58 | 1603,772,416 | -HS- | C] () -- C:\hiberfil.sys [2015/01/21 18:35:35 | 000,027,648 | ---- | C] () -- C:\windows\System32\AVSredirect.dll [2015/01/21 17:27:17 | 000,169,512 | ---- | C] () -- C:\Users\jonas\Documents\10-2012.m3u [2015/01/21 17:27:17 | 000,156,080 | ---- | C] () -- C:\Users\jonas\Documents\2013 _09.m3u [2015/01/21 17:27:17 | 000,129,847 | ---- | C] () -- C:\Users\jonas\Documents\2013 _06.m3u [2015/01/21 17:27:17 | 000,124,620 | ---- | C] () -- C:\Users\jonas\Documents\12-2012.m3u [2015/01/21 17:27:17 | 000,121,079 | ---- | C] () -- C:\Users\jonas\Documents\11-2012.m3u [2015/01/21 17:27:17 | 000,099,460 | ---- | C] () -- C:\Users\jonas\Documents\2013 _03.m3u [2015/01/21 17:27:17 | 000,095,146 | ---- | C] () -- C:\Users\jonas\Documents\2014-12.m3u [2015/01/21 17:27:17 | 000,093,269 | ---- | C] () -- C:\Users\jonas\Documents\2014-09.m3u [2015/01/21 17:27:17 | 000,081,825 | ---- | C] () -- C:\Users\jonas\Documents\2013 _02.m3u [2015/01/21 17:27:17 | 000,075,447 | ---- | C] () -- C:\Users\jonas\Documents\08-2012.m3u [2015/01/21 17:27:17 | 000,075,258 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 05.xspf [2015/01/21 17:27:17 | 000,074,332 | ---- | C] () -- C:\Users\jonas\Documents\11-2014.m3u [2015/01/21 17:27:17 | 000,074,237 | ---- | C] () -- C:\Users\jonas\Documents\2014_01 (JAN).m3u [2015/01/21 17:27:17 | 000,073,283 | ---- | C] () -- C:\Users\jonas\Documents\2013 _01.m3u [2015/01/21 17:27:17 | 000,055,389 | ---- | C] () -- C:\Users\jonas\Documents\2013 _05.m3u [2015/01/21 17:27:17 | 000,053,816 | ---- | C] () -- C:\Users\jonas\Documents\2013 _04.m3u [2015/01/21 17:27:17 | 000,049,640 | ---- | C] () -- C:\Users\jonas\Documents\2015-02.m3u [2015/01/21 17:27:17 | 000,049,304 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 03 - synchro.xspf [2015/01/21 17:27:17 | 000,048,943 | ---- | C] () -- C:\Users\jonas\Documents\24-07-2012.m3u [2015/01/21 17:27:17 | 000,044,744 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 02.xspf [2015/01/21 17:27:17 | 000,038,446 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 04.xspf [2015/01/21 17:27:17 | 000,033,856 | ---- | C] () -- C:\Users\jonas\Documents\2014_08 (MAI).xspf [2015/01/21 17:27:17 | 000,032,379 | ---- | C] () -- C:\Users\jonas\Documents\2015-01.m3u [2015/01/21 17:27:17 | 000,031,955 | ---- | C] () -- C:\Users\jonas\Documents\2014_07 (MAI).xspf [2015/01/21 17:27:17 | 000,031,665 | ---- | C] () -- C:\Users\jonas\Documents\2014_06 (MAR).xspf [2015/01/21 17:27:17 | 000,020,627 | ---- | C] () -- C:\Users\jonas\Documents\2014-09__02.xspf [2015/01/21 17:27:17 | 000,019,123 | ---- | C] () -- C:\Users\jonas\Documents\2014-12-01.xspf [2015/01/21 17:27:17 | 000,017,949 | ---- | C] () -- C:\Users\jonas\Documents\2014_05 (FEB).xspf [2015/01/21 17:27:17 | 000,016,266 | ---- | C] () -- C:\Users\jonas\Documents\2014-09__03.xspf [2015/01/21 17:27:17 | 000,015,898 | ---- | C] () -- C:\Users\jonas\Documents\11-10-12.m3u [2015/01/21 17:27:17 | 000,015,344 | ---- | C] () -- C:\Users\jonas\Documents\2014_03 (FEB).xspf [2015/01/21 17:27:17 | 000,013,680 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 07.xspf [2015/01/21 17:27:17 | 000,013,203 | ---- | C] () -- C:\Users\jonas\Documents\2014_09 (SEP).xspf [2015/01/21 17:27:17 | 000,012,906 | ---- | C] () -- C:\Users\jonas\Documents\2014_04 (FEB).xspf [2015/01/21 17:27:17 | 000,012,303 | ---- | C] () -- C:\Users\jonas\Documents\2014_02 (JAN).xspf [2015/01/21 17:27:17 | 000,011,801 | ---- | C] () -- C:\Users\jonas\Documents\2014_11 (NOV.xspf [2015/01/21 17:27:17 | 000,011,057 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 03.xspf [2015/01/21 17:27:17 | 000,010,399 | ---- | C] () -- C:\Users\jonas\Documents\2015 - 01 - 01.xspf [2015/01/21 17:27:17 | 000,010,367 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 09.xspf [2015/01/21 17:27:17 | 000,010,020 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 08.xspf [2015/01/21 17:27:17 | 000,009,944 | ---- | C] () -- C:\Users\jonas\Documents\2014-12-2.m3u [2015/01/21 17:27:17 | 000,009,426 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 06.xspf [2015/01/21 17:27:17 | 000,008,972 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 02 - synchro.xspf [2015/01/21 17:27:17 | 000,007,679 | ---- | C] () -- C:\Users\jonas\Documents\2015 - 01 - 03.xspf [2015/01/21 17:27:17 | 000,007,054 | ---- | C] () -- C:\Users\jonas\Documents\2015 - 01 - 02.xspf [2015/01/21 17:27:17 | 000,006,653 | ---- | C] () -- C:\Users\jonas\Documents\2014-12- post weihnachten.xspf [2015/01/21 17:27:17 | 000,006,354 | ---- | C] () -- C:\Users\jonas\Documents\AUGUST 2012.xspf [2015/01/21 17:27:17 | 000,005,830 | ---- | C] () -- C:\Users\jonas\Documents\2013 - Playliste - 01.xspf [2015/01/21 17:27:17 | 000,005,492 | ---- | C] () -- C:\Users\jonas\Documents\08-2014.xspf [2015/01/21 17:27:17 | 000,005,204 | ---- | C] () -- C:\Users\jonas\Documents\2014-12- XMAS-01.xspf [2015/01/21 17:27:17 | 000,004,693 | ---- | C] () -- C:\Users\jonas\Documents\8-12.xspf [2015/01/21 17:27:17 | 000,003,072 | ---- | C] () -- C:\Users\jonas\Documents\07 medi.xspf [2015/01/21 17:27:17 | 000,002,804 | ---- | C] () -- C:\Users\jonas\Documents\10-2013 Viewlist.xspf [2015/01/21 17:26:53 | 734,160,896 | ---- | C] () -- C:\Users\jonas\Documents\[2008] Burn After Reading.avi [2015/01/21 16:59:43 | 000,019,602 | ---- | C] () -- C:\Users\jonas\Documents\xmas13.xspf [2015/01/21 16:59:43 | 000,007,633 | ---- | C] () -- C:\Users\jonas\Documents\X-MAS Playlist.xspf [2015/01/21 16:59:43 | 000,006,279 | ---- | C] () -- C:\Users\jonas\Documents\xmas13 fam guy.xspf [2015/01/21 16:59:43 | 000,005,992 | ---- | C] () -- C:\Users\jonas\Documents\xmas14.xspf [2015/01/21 16:59:42 | 025,493,234 | ---- | C] () -- C:\Users\jonas\Documents\Why Does The Mind Constantly Seek Pleasure_ - Krishnamurti.mp4 [2015/01/21 16:59:42 | 004,945,603 | ---- | C] () -- C:\Users\jonas\Documents\Pop Of The 80s Cover.psd [2015/01/21 16:59:42 | 003,776,182 | ---- | C] () -- C:\Users\jonas\Documents\Marlene Dietrich, Berlin _ So Lang Noch Untern Linden..mp4 [2015/01/21 16:59:42 | 002,560,186 | ---- | C] () -- C:\Users\jonas\Documents\KUMMER - Drehbuch (White Edition).odt [2015/01/21 16:59:42 | 000,324,002 | R--- | C] () -- C:\Users\jonas\Documents\Tiermetaphern.pdf [2015/01/21 16:59:42 | 000,115,413 | ---- | C] () -- C:\Users\jonas\Documents\PDFC-BaFöG.pdf [2015/01/21 16:59:42 | 000,042,181 | ---- | C] () -- C:\Users\jonas\Documents\serien view list.xspf [2015/01/21 16:59:42 | 000,024,123 | ---- | C] () -- C:\Users\jonas\Documents\VLC PLAYLIST MAI-5 2012.xspf [2015/01/21 16:59:42 | 000,022,914 | ---- | C] () -- C:\Users\jonas\Documents\jan14.xspf [2015/01/21 16:59:42 | 000,018,756 | ---- | C] () -- C:\Users\jonas\Documents\praktikums test #2.odt [2015/01/21 16:59:42 | 000,015,876 | ---- | C] () -- C:\Users\jonas\Documents\VLC PLAYLIST JULI-7 2012.xspf [2015/01/21 16:59:42 | 000,014,631 | ---- | C] () -- C:\Users\jonas\Documents\November 2012.xspf [2015/01/21 16:59:42 | 000,011,889 | ---- | C] () -- C:\Users\jonas\Documents\juli 2012-2.m3u [2015/01/21 16:59:42 | 000,009,976 | ---- | C] () -- C:\Users\jonas\Documents\VLC PLAYLIST DEZEMBER 2013.xspf [2015/01/21 16:59:42 | 000,008,857 | ---- | C] () -- C:\Users\jonas\Documents\VLC PLAYLIST MAI-4 2012.xspf [2015/01/21 16:59:42 | 000,008,826 | ---- | C] () -- C:\Users\jonas\Documents\VLC PLAYLIST MAI 2012.xspf [2015/01/21 16:59:42 | 000,008,809 | ---- | C] () -- C:\Users\jonas\Documents\VLC PLAYLIST MAIh 2012.xspf [2015/01/21 16:59:42 | 000,004,249 | ---- | C] () -- C:\Users\jonas\Documents\juli 2012.xspf [2015/01/21 16:59:42 | 000,002,872 | ---- | C] () -- C:\Users\jonas\Documents\VLC PLAYLIST MAI-3 2012.xspf [2015/01/21 16:59:42 | 000,002,437 | ---- | C] () -- C:\Users\jonas\Documents\VLC PLAYLIST MÄRZ 2012.xspf [2015/01/21 16:45:24 | 000,001,361 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk [2015/01/21 16:45:13 | 000,001,150 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk [2015/01/21 16:44:14 | 000,001,057 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk [2015/01/21 16:25:38 | 000,001,143 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS5.1.lnk [2015/01/21 16:25:24 | 000,001,236 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS5.5.lnk [2015/01/21 16:24:36 | 000,001,337 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS5.5.lnk [2015/01/21 16:24:30 | 000,001,509 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS5.5.lnk [2015/01/21 16:24:09 | 000,000,967 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk [2015/01/21 15:59:15 | 000,002,011 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition 3.0.lnk [2015/01/21 15:31:12 | 000,001,873 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk [2015/01/21 15:11:52 | 000,107,520 | ---- | C] () -- C:\windows\System32\RLMPCDec.ax [2015/01/21 15:11:52 | 000,070,656 | ---- | C] () -- C:\windows\System32\RLAPEDec.ax [2015/01/21 15:11:52 | 000,051,712 | ---- | C] () -- C:\windows\System32\RLSpeexDec.ax [2015/01/21 15:11:52 | 000,002,006 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © Uninstall.lnk [2015/01/21 15:11:52 | 000,001,982 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER ©.lnk [2015/01/21 15:11:51 | 000,175,104 | ---- | C] () -- C:\windows\System32\CoreAAC.ax [2015/01/21 15:11:51 | 000,120,832 | ---- | C] () -- C:\windows\System32\MPCDx.ax [2015/01/21 15:11:51 | 000,097,280 | ---- | C] () -- C:\windows\System32\FLACDX.ax [2015/01/21 15:11:50 | 000,227,328 | ---- | C] () -- C:\windows\System32\ac3DX.ax [2015/01/21 15:11:50 | 000,081,920 | ---- | C] () -- C:\windows\System32\aac_parser.ax [2015/01/21 15:08:46 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk [2015/01/21 15:07:55 | 000,001,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2015/01/21 15:07:22 | 000,000,434 | ---- | C] () -- C:\windows\myClean.bat [2015/01/21 15:03:58 | 000,001,409 | ---- | C] () -- C:\Users\jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2015/01/21 14:57:41 | 000,256,560 | ---- | C] ( ) -- C:\windows\System32\rsnp2uvc.dll [2015/01/21 14:57:39 | 001,765,168 | ---- | C] () -- C:\windows\System32\drivers\snp2uvc.sys [2015/01/21 14:57:39 | 000,027,184 | ---- | C] () -- C:\windows\snuvcdsm.exe [2015/01/21 14:57:39 | 000,015,497 | ---- | C] () -- C:\windows\snp2uvc.ini [2015/01/21 14:57:39 | 000,013,022 | ---- | C] () -- C:\windows\snp2uvc.src [2015/01/21 14:57:38 | 000,203,312 | ---- | C] ( ) -- C:\windows\System32\csnp2uvc.dll [2015/01/21 14:57:38 | 000,034,480 | ---- | C] () -- C:\windows\System32\drivers\sncduvc.sys [2015/01/21 14:56:28 | 000,998,786 | ---- | C] () -- C:\windows\System32\oem12.inf [2015/01/21 14:55:29 | 000,006,656 | ---- | C] () -- C:\windows\System32\bcmwlrc.dll [2015/01/21 14:47:36 | 000,000,000 | RHS- | C] () -- C:\windows\System32\drivers\103C_HP_bNB_610_Y5336AN_0U_QCNU0261HVW_E571397-A43_4A_I308A_SHP_V26.08_68PVU F.0F_T100224_WU3-0_L407_M2040_J320_7Intel_86FD_91.86_#100116_N11AB4357;14E44315_(VQ611EA#ABD)_XMOBILE_CN10_Z_2F.0F_G80862A12;80862A13.MRK [2015/01/21 14:47:20 | 000,014,808 | ---- | C] () -- C:\windows\System32\results.xml [2015/01/21 14:46:59 | 000,140,288 | ---- | C] () -- C:\windows\System32\igfxtvcx.dll [2015/01/21 14:46:59 | 000,121,232 | ---- | C] () -- C:\windows\System32\IScrNB.bmp [2014/08/13 18:15:44 | 000,045,384 | ---- | C] () -- C:\windows\System32\DiscHandler.exe [2014/08/12 03:30:50 | 003,916,288 | ---- | C] () -- C:\windows\System32\ffmpeg.dll [2014/08/12 03:30:10 | 000,112,640 | ---- | C] () -- C:\windows\System32\ff_vfw.dll [2014/08/12 03:29:36 | 000,271,360 | ---- | C] () -- C:\windows\System32\TomsMoComp_ff.dll [2014/08/12 03:29:16 | 000,157,184 | ---- | C] () -- C:\windows\System32\ff_unrar.dll [2014/08/12 03:29:16 | 000,099,840 | ---- | C] () -- C:\windows\System32\ff_wmv9.dll [2014/08/12 03:29:14 | 001,525,760 | ---- | C] () -- C:\windows\System32\ff_samplerate.dll [2014/08/12 03:29:14 | 000,211,968 | ---- | C] () -- C:\windows\System32\ff_libdts.dll [2014/08/12 03:29:14 | 000,147,456 | ---- | C] () -- C:\windows\System32\ff_libmad.dll [2014/08/12 03:29:14 | 000,114,688 | ---- | C] () -- C:\windows\System32\ff_liba52.dll [2014/08/12 03:29:12 | 000,136,704 | ---- | C] () -- C:\windows\System32\libmpeg2_ff.dll [2014/06/12 11:49:24 | 000,240,784 | ---- | C] () -- C:\windows\System32\libbluray.dll [2014/04/08 21:50:26 | 000,235,520 | ---- | C] () -- C:\windows\System32\xvidvfw.dll [2014/04/08 21:50:16 | 000,632,320 | ---- | C] () -- C:\windows\System32\xvidcore.dll [2013/12/17 03:19:30 | 000,216,064 | ---- | C] ( ) -- C:\windows\System32\Lagarith.dll [2013/12/17 03:15:32 | 000,237,568 | ---- | C] () -- C:\windows\System32\OptimFROG.dll [2013/12/17 03:15:32 | 000,000,236 | ---- | C] () -- C:\windows\System32\Formats.ini [2013/12/17 03:15:30 | 000,047,104 | ---- | C] () -- C:\windows\System32\bass_tak.dll ========== ZeroAccess Check ========== [2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 02:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both < End of report > Wie sollte ich fortfahren? |
|
27.01.2015, 20:05
| #5 | |
| /// the machine /// TB-Ausbilder | Laptop läuft langsam und fehlerhaft - auch nach NeuaufsetzungZitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.01.2015, 20:05
| #6 | |
| /// the machine /// TB-Ausbilder | Laptop läuft langsam und fehlerhaft - auch nach NeuaufsetzungZitat:
__________________ --> Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung |
|
27.01.2015, 22:33
| #7 |
| | Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung Diese Antwort muss ich als "Du erhälst keine Hilfe" für mich deuten? Denn es liegt definitiv nicht an dieser Software. |
|
28.01.2015, 12:20
| #8 |
| /// the machine /// TB-Ausbilder | Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung Nee, deuten musst Du sie als "solange der Scheiss auf dem Rechner ist gibt es keine Hilfe"  .Runter mit dem Kram, auch mit allem andern was gecrackt sein könnte, dann gibt es Hilfe.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung |
| antivir, ccleaner, datei, device driver, entfernen, explorer, folge, funktioniert, gmer, hängt, langsam, laptop, launch, meldung, mozilla, neu, neuaufsetzung, nicht mehr, notebook, problem, probleme, runterfahren, scan, schädling, starten, win, win7 |
Linear-Darstellung
