Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   static.icmapp.com, WIN 8 (64 bit) (https://www.trojaner-board.de/146220-static-icmapp-com-win-8-64-bit.html)

ute4 16.12.2013 21:41
static.icmapp.com, WIN 8 (64 bit)
 
Hallo,

ich hab mir auch diese Adware eingefangen. FRST hab ich durchgeführt. Jetzt weiß ich nicht,
ob ich einfach so weitermachen soll, wie bei anderen Threads beschrieben, deshalb erstmal
die Ergebnisse:

Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-12-2013 02
Ran by Ute (administrator) on UTESPC on 16-12-2013 21:27:10
Running from C:\Users\Ute\Desktop
Windows 8 Pro N (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
(Star Finanz - Software Entwicklung und Vertriebs GmbH) C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Microsoft Corporation) C:\Windows\splwow64.exe

==================== Registry (Whitelisted) ==================

HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-10-28] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-10-28] (Samsung)
HKLM-x32\...\Run: [Samsung PanelMgr] - C:\Windows\Samsung\PanelMgr\SSMMgr.exe [688128 2011-08-01] ()
HKLM-x32\...\Run: [Sophos AutoUpdate Monitor] - C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe [900160 2013-10-16] (Sophos Limited)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-10-28] (Samsung Electronics Co., Ltd.)
AppInit_DLLs: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sophos_detoured_x64.dll [218256 2013-10-16] (Sophos Limited)
AppInit_DLLs-x32: C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL [221840 2013-10-16] (Sophos Limited)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x15FEFA665EE8CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=A6831C3E842C188E&affID=119357&tsp=5020
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Plus-HD-2.3 - {11111111-1111-1111-1111-110311341126} - C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-bho.dll (Plus HD)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GmbH)
Winsock: Catalog9 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 20 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9-x64 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 20 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Tcpip\..\Interfaces\{028FA9F4-24F0-4DA5-950D-A80695208D50}: [NameServer]192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default
FF user.js: detected! => C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\user.js
FF DefaultSearchEngine: Amazon
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\searchplugins\daemon-search.xml
FF SearchPlugin: C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\searchplugins\SweetIM Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Plus-HD-2.3 - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\7125a285-7e68-47aa-9d72-e81874f4d47e@d3fcdb92-135d-4a8a-8cf6-11e3b57c5fda.com
FF Extension: FRITZ!Box AddOn - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\fb_add_on@avm.de
FF Extension: Molecular Viewer Plugin - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\npcml@scarletline.com
FF Extension: Adblock Plus - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Plus-HD-2.3) - C:\Users\Ute\AppData\Local\Google\Chrome\User Data\Default\Extensions\omfoidjpeklpjhlhabhcomekbkclkbec\1.23.17_0

==================== Services (Whitelisted) =================

R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 SAVAdminService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [216640 2013-10-16] (Sophos Limited)
R2 SAVService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [139840 2013-10-16] (Sophos Limited)
R2 Sophos AutoUpdate Service; C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe [232512 2013-10-16] (Sophos Limited)
R2 Sophos Web Control Service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe [357400 2013-10-16] (Sophos Limited)
R2 StarMoney 8.0 OnlineUpdate; C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe [699680 2012-12-21] (Star Finanz - Software Entwicklung und Vertriebs GmbH)
R2 swi_service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [2869824 2013-10-16] (Sophos Limited)
S2 swi_update_64; C:\ProgramData\Sophos\Web Intelligence\swi_update_64.exe [1998400 2013-10-16] (Sophos Limited)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 SAVOnAccess; C:\Windows\System32\DRIVERS\savonaccess.sys [144672 2013-10-16] (Sophos Limited)
S3 sdcfilter; C:\Windows\system32\DRIVERS\sdcfilter.sys [36640 2013-10-16] (Sophos Limited)
S4 SophosBootDriver; C:\Windows\system32\DRIVERS\SophosBootDriver.sys [25608 2010-03-02] (Sophos Plc)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-16 21:27 - 2013-12-16 21:27 - 00010924 _____ C:\Users\Ute\Desktop\FRST.txt
2013-12-16 21:27 - 2013-12-16 21:27 - 00000000 ____D C:\FRST
2013-12-16 21:20 - 2013-12-16 21:20 - 01927940 _____ (Farbar) C:\Users\Ute\Desktop\FRST64.exe
2013-12-15 16:13 - 2013-12-15 16:13 - 00000117 _____ C:\Windows\system32\netcfg-650036094.txt
2013-12-15 15:33 - 2013-12-15 15:33 - 00000117 _____ C:\Windows\system32\netcfg-647627969.txt
2013-12-15 15:25 - 2013-12-15 15:25 - 00000117 _____ C:\Windows\system32\netcfg-647128016.txt
2013-12-14 20:18 - 2013-12-14 20:18 - 00000117 _____ C:\Windows\system32\netcfg-578324922.txt
2013-12-14 20:13 - 2013-12-14 20:13 - 00000117 _____ C:\Windows\system32\netcfg-578020954.txt
2013-12-14 20:12 - 2013-12-14 20:12 - 00000117 _____ C:\Windows\system32\netcfg-577966454.txt
2013-12-14 16:46 - 2013-12-14 16:46 - 00000117 _____ C:\Windows\system32\netcfg-565654719.txt
2013-12-14 13:07 - 2013-12-14 13:07 - 00000117 _____ C:\Windows\system32\netcfg-552470360.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\Windows\system32\netcfg-551497860.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\Windows\system32\netcfg-551478954.txt
2013-12-11 19:36 - 2013-12-14 12:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-09 20:48 - 2013-12-09 20:48 - 00000117 _____ C:\Windows\system32\netcfg-148135391.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\Windows\system32\netcfg-147392172.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\Windows\system32\netcfg-147368750.txt
2013-12-08 19:09 - 2013-12-08 19:09 - 00000117 _____ C:\Windows\system32\netcfg-55800172.txt
2013-12-07 21:15 - 2013-12-07 21:15 - 00000117 _____ C:\Windows\system32\netcfg--22984171.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\Windows\system32\netcfg--205948000.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\Windows\system32\netcfg--205923781.txt
2013-12-05 18:24 - 2013-12-05 18:24 - 00000117 _____ C:\Windows\system32\netcfg--206053812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\Windows\system32\netcfg--206265812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\Windows\system32\netcfg--206264156.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\Windows\system32\netcfg--207467218.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\Windows\system32\netcfg--207465437.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\Windows\system32\netcfg--207628796.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\Windows\system32\netcfg--207627015.txt
2013-12-05 17:55 - 2013-12-05 17:55 - 00000117 _____ C:\Windows\system32\netcfg--207798468.txt
2013-12-03 17:44 - 2013-12-03 17:44 - 00000117 _____ C:\Windows\system32\netcfg--381272406.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\Windows\system32\netcfg--381683109.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\Windows\system32\netcfg--381674156.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\Windows\system32\netcfg--382036625.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\Windows\system32\netcfg--382034843.txt
2013-12-03 17:25 - 2013-12-03 17:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2013-12-01 13:40 - 2013-12-01 13:40 - 00000117 _____ C:\Windows\system32\netcfg--568691640.txt
2013-12-01 13:39 - 2013-12-01 13:39 - 00000117 _____ C:\Windows\system32\netcfg--568738140.txt
2013-12-01 13:32 - 2013-12-01 13:32 - 00000117 _____ C:\Windows\system32\netcfg--569170109.txt
2013-12-01 13:32 - 2013-12-01 13:32 - 00000117 _____ C:\Windows\system32\netcfg--569168343.txt
2013-12-01 13:26 - 2013-12-01 13:26 - 00000117 _____ C:\Windows\system32\netcfg--569510375.txt
2013-12-01 13:26 - 2013-12-01 13:26 - 00000117 _____ C:\Windows\system32\netcfg--569508578.txt
2013-12-01 12:56 - 2013-12-01 12:56 - 00000117 _____ C:\Windows\system32\netcfg--571325156.txt
2013-12-01 12:52 - 2013-12-01 12:52 - 00000117 _____ C:\Windows\system32\netcfg--571576218.txt
2013-12-01 12:49 - 2013-12-01 12:49 - 00000117 _____ C:\Windows\system32\netcfg--571761109.txt
2013-12-01 12:49 - 2013-12-01 12:49 - 00000117 _____ C:\Windows\system32\netcfg--571756828.txt
2013-12-01 12:36 - 2013-12-01 12:36 - 00000117 _____ C:\Windows\system32\netcfg--572545203.txt
2013-12-01 12:36 - 2013-12-01 12:36 - 00000117 _____ C:\Windows\system32\netcfg--572535828.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572779625.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572768078.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572766281.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572742578.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572740781.txt
2013-12-01 12:31 - 2013-12-01 12:31 - 00000117 _____ C:\Windows\system32\netcfg--572800125.txt
2013-12-01 12:26 - 2013-12-01 12:26 - 00000117 _____ C:\Windows\system32\netcfg--573126125.txt
2013-12-01 12:26 - 2013-12-01 12:26 - 00000117 _____ C:\Windows\system32\netcfg--573124578.txt
2013-12-01 12:24 - 2013-12-01 12:24 - 00000117 _____ C:\Windows\system32\netcfg--573257500.txt
2013-12-01 12:24 - 2013-12-01 12:24 - 00000117 _____ C:\Windows\system32\netcfg--573255734.txt
2013-12-01 12:06 - 2013-12-01 12:06 - 00000117 _____ C:\Windows\system32\netcfg--574313359.txt
2013-11-30 11:41 - 2013-11-30 11:41 - 00000117 _____ C:\Windows\system32\netcfg--662222953.txt
2013-11-30 11:38 - 2013-11-30 11:38 - 00000117 _____ C:\Windows\system32\netcfg--662416046.txt
2013-11-30 11:38 - 2013-11-30 11:38 - 00000117 _____ C:\Windows\system32\netcfg--662398718.txt
2013-11-30 11:30 - 2013-11-30 11:30 - 00000117 _____ C:\Windows\system32\netcfg--662899609.txt
2013-11-30 11:30 - 2013-11-30 11:30 - 00000117 _____ C:\Windows\system32\netcfg--662886109.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663063718.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663061984.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663054546.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663039765.txt
2013-11-30 10:33 - 2013-11-30 10:33 - 00000117 _____ C:\Windows\system32\netcfg--666309421.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666500546.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666498765.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666463546.txt
2013-11-27 21:35 - 2013-11-27 21:35 - 00000117 _____ C:\Windows\system32\netcfg--885781578.txt
2013-11-27 21:35 - 2013-11-27 21:35 - 00000117 _____ C:\Windows\system32\netcfg--885779859.txt
2013-11-27 21:21 - 2013-11-27 21:21 - 00000117 _____ C:\Windows\system32\netcfg--886580437.txt
2013-11-25 19:59 - 2013-11-25 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1064321750.txt
2013-11-24 22:48 - 2013-11-24 22:48 - 00000117 _____ C:\Windows\system32\netcfg--1140586078.txt
2013-11-24 22:35 - 2013-11-24 22:47 - 00007589 _____ C:\Users\Ute\AppData\Roaming\SmarThruOptions.xml
2013-11-24 22:35 - 2013-11-24 22:35 - 00000000 ____D C:\Users\Ute\AppData\Roaming\SmarThru4
2013-11-24 22:35 - 2005-11-30 17:42 - 01693696 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LTCLR13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 01402368 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltdlg13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 01009664 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\Ltwvc13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00935088 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LTR13N.DLL
2013-11-24 22:35 - 2005-11-30 17:42 - 00747008 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltocx13n.ocx
2013-11-24 22:35 - 2005-11-30 17:42 - 00536752 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LTRVW13N.OCX
2013-11-24 22:35 - 2005-11-30 17:42 - 00470720 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LTRPR13n.DLL
2013-11-24 22:35 - 2005-11-30 17:42 - 00446464 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltkrn13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00445440 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltimg13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00427008 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LFCMP13s.DLL
2013-11-24 22:35 - 2005-11-30 17:42 - 00408576 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LFCMP13n.DLL
2013-11-24 22:35 - 2005-11-30 17:42 - 00313008 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LTRIO13N.DLL
2013-11-24 22:35 - 2005-11-30 17:42 - 00275456 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LFJ2K13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00271360 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LFJ2K13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00269312 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LTDIS13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00212480 _____ (Eastman Kodak) C:\Windows\SysWOW64\PCDLIB32.DLL
2013-11-24 22:35 - 2005-11-30 17:42 - 00206848 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltefx13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00185856 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\Lfpng13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00181760 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\Lfpng13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00172032 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lftif13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00158720 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\Ltpnt13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00146976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mfcoleui.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00144384 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltfil13n.DLL
2013-11-24 22:35 - 2005-11-30 17:42 - 00132096 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lftif13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00131584 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfjbg13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00114176 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LTOCR13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00114176 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lffax13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00111104 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfpsd13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00108032 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LTTLB13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00095232 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltpdg13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00090112 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfjbg13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00081920 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfeps13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00073728 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lffax13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00070656 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfbmp13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00069632 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltbar13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00068096 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfiff13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00065536 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfpcx13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00065536 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfani13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00065024 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfclp13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00062976 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LFPNM13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00060928 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfimg13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00060416 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfitg13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00059904 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfpcd13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00059392 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfmsp13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00058880 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfavi13s.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00055808 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfpsd13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00051200 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\ltlst13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00047616 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfeps13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00044032 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lttwn13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00032256 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lttmb13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00031744 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfclp13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00031232 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\LFPNM13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00030208 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfbmp13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00027648 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfiff13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00026624 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfpcx13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00025600 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfani13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00020992 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfimg13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00019968 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfpcd13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00019968 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfitg13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00018944 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfmsp13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00018944 _____ (LEAD Technologies, Inc.) C:\Windows\SysWOW64\lfavi13n.dll
2013-11-24 22:35 - 2005-11-30 17:42 - 00000422 _____ C:\Windows\SysWOW64\ltocx13.lic
2013-11-24 22:34 - 2013-11-24 22:35 - 00000162 _____ C:\Windows\setup.log
2013-11-24 22:34 - 2013-11-24 22:34 - 00000131 _____ C:\Windows\Readiris.ini
2013-11-24 22:34 - 2013-11-24 22:34 - 00000000 ____D C:\Program Files (x86)\Readiris
2013-11-24 22:34 - 1997-05-26 14:55 - 00023040 _____ C:\Windows\SysWOW64\irisco32.dll
2013-11-24 22:33 - 2013-11-24 22:35 - 00000000 ____D C:\Program Files (x86)\SmarThru 4
2013-11-24 22:33 - 2013-11-24 22:33 - 00000828 _____ C:\Users\Public\Desktop\SmarThru 4.lnk
2013-11-24 22:20 - 2013-11-24 22:20 - 00000750 _____ C:\SamsungPrinter_Update.log
2013-11-24 22:09 - 2013-11-24 22:09 - 00000117 _____ C:\Windows\system32\netcfg--1142937531.txt
2013-11-24 21:53 - 2013-11-24 21:53 - 00000117 _____ C:\Windows\system32\netcfg--1143865796.txt
2013-11-24 21:47 - 2013-11-24 21:47 - 00000117 _____ C:\Windows\system32\netcfg--1144217031.txt
2013-11-24 21:18 - 2013-12-15 20:35 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-24 21:18 - 2013-12-10 19:35 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-24 21:13 - 2013-11-24 21:13 - 00000117 _____ C:\Windows\system32\netcfg--1146291218.txt
2013-11-24 12:24 - 2013-11-24 12:24 - 00000117 _____ C:\Windows\system32\netcfg--1178017046.txt
2013-11-23 16:01 - 2013-11-23 16:01 - 00000000 ____D C:\Users\Ute\AppData\Local\Sophos
2013-11-23 15:48 - 2013-11-23 15:48 - 00000117 _____ C:\Windows\system32\netcfg--1252162109.txt
2013-11-23 15:48 - 2013-11-23 15:48 - 00000117 _____ C:\Windows\system32\netcfg--1252160734.txt
2013-11-22 19:44 - 2013-11-22 19:44 - 00000117 _____ C:\Windows\system32\netcfg--1324406062.txt
2013-11-21 15:09 - 2013-11-21 15:09 - 00000117 _____ C:\Windows\system32\netcfg--1427321687.txt
2013-11-21 15:00 - 2013-11-21 15:00 - 00000117 _____ C:\Windows\system32\netcfg--1427847843.txt
2013-11-21 15:00 - 2013-11-21 15:00 - 00000117 _____ C:\Windows\system32\netcfg--1427837093.txt
2013-11-21 14:53 - 2013-11-21 14:53 - 00000117 _____ C:\Windows\system32\netcfg--1428275390.txt
2013-11-21 14:52 - 2013-11-21 14:52 - 00000117 _____ C:\Windows\system32\netcfg--1428317375.txt
2013-11-20 19:24 - 2013-11-20 19:24 - 00000117 _____ C:\Windows\system32\netcfg--1498366375.txt
2013-11-20 19:18 - 2013-11-20 19:18 - 00000117 _____ C:\Windows\system32\netcfg--1498732640.txt
2013-11-19 20:20 - 2013-11-19 20:20 - 00000117 _____ C:\Windows\system32\netcfg--1581446765.txt
2013-11-19 20:12 - 2013-11-19 20:12 - 00000117 _____ C:\Windows\system32\netcfg--1581926421.txt
2013-11-19 20:12 - 2013-11-19 20:12 - 00000117 _____ C:\Windows\system32\netcfg--1581915265.txt
2013-11-19 20:11 - 2013-11-19 20:11 - 00000117 _____ C:\Windows\system32\netcfg--1581928171.txt
2013-11-19 19:59 - 2013-11-19 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1582691687.txt
2013-11-19 19:59 - 2013-11-19 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1582691656.txt
2013-11-19 19:59 - 2013-11-19 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1582651390.txt
2013-11-19 19:59 - 2013-11-19 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1582649562.txt
2013-11-19 19:31 - 2013-11-19 19:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-18 20:00 - 2013-11-18 20:00 - 00000117 _____ C:\Windows\system32\netcfg--1668983718.txt
2013-11-18 19:56 - 2013-11-18 19:56 - 00000117 _____ C:\Windows\system32\netcfg--1669226953.txt
2013-11-18 19:29 - 2013-11-18 19:29 - 00000117 _____ C:\Windows\system32\netcfg--1670890656.txt
2013-11-18 19:21 - 2013-11-18 19:21 - 00000117 _____ C:\Windows\system32\netcfg--1671348625.txt
2013-11-18 18:58 - 2013-11-18 18:58 - 00000117 _____ C:\Windows\system32\netcfg--1672756015.txt
2013-11-18 18:58 - 2013-11-18 18:58 - 00000117 _____ C:\Windows\system32\netcfg--1672755984.txt
2013-11-18 18:21 - 2013-11-18 18:21 - 00000117 _____ C:\Windows\system32\netcfg--1674982046.txt
2013-11-17 20:16 - 2013-11-17 20:16 - 00000117 _____ C:\Windows\system32\netcfg--1754448453.txt
2013-11-17 19:30 - 2013-11-17 19:30 - 00000117 _____ C:\Windows\system32\netcfg--1757234296.txt
2013-11-17 19:28 - 2013-11-17 19:28 - 00000117 _____ C:\Windows\system32\netcfg--1757325046.txt
2013-11-17 12:11 - 2013-11-17 12:11 - 00000117 _____ C:\Windows\system32\netcfg--1783553937.txt
2013-11-17 12:10 - 2013-11-17 12:10 - 00000117 _____ C:\Windows\system32\netcfg--1783588156.txt
2013-11-16 09:50 - 2013-11-16 09:50 - 00000117 _____ C:\Windows\system32\netcfg--1878419734.txt

==================== One Month Modified Files and Folders =======

2013-12-16 21:27 - 2013-12-16 21:27 - 00010924 _____ C:\Users\Ute\Desktop\FRST.txt
2013-12-16 21:27 - 2013-12-16 21:27 - 00000000 ____D C:\FRST
2013-12-16 21:21 - 2013-08-17 17:46 - 02063644 _____ C:\Windows\WindowsUpdate.log
2013-12-16 21:20 - 2013-12-16 21:20 - 01927940 _____ (Farbar) C:\Users\Ute\Desktop\FRST64.exe
2013-12-16 21:02 - 2013-09-07 10:53 - 00000000 ____D C:\Program Files (x86)\StarMoney 8.0
2013-12-16 21:01 - 2013-09-29 10:44 - 00001208 _____ C:\Windows\Tasks\Plus-HD-2.3-codedownloader.job
2013-12-16 21:01 - 2013-09-29 10:44 - 00001204 _____ C:\Windows\Tasks\Plus-HD-2.3-updater.job
2013-12-16 21:01 - 2013-09-29 10:44 - 00001108 _____ C:\Windows\Tasks\Plus-HD-2.3-enabler.job
2013-12-16 21:01 - 2013-09-29 10:43 - 00001916 _____ C:\Windows\Tasks\Plus-HD-2.3-chromeinstaller.job
2013-12-16 21:01 - 2013-09-29 10:43 - 00001840 _____ C:\Windows\Tasks\Plus-HD-2.3-firefoxinstaller.job
2013-12-16 21:00 - 2012-07-26 09:13 - 00000000 ____D C:\Windows\system32\sru
2013-12-15 20:35 - 2013-11-24 21:18 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-15 16:13 - 2013-12-15 16:13 - 00000117 _____ C:\Windows\system32\netcfg-650036094.txt
2013-12-15 15:33 - 2013-12-15 15:33 - 00000117 _____ C:\Windows\system32\netcfg-647627969.txt
2013-12-15 15:25 - 2013-12-15 15:25 - 00000117 _____ C:\Windows\system32\netcfg-647128016.txt
2013-12-14 20:18 - 2013-12-14 20:18 - 00000117 _____ C:\Windows\system32\netcfg-578324922.txt
2013-12-14 20:13 - 2013-12-14 20:13 - 00000117 _____ C:\Windows\system32\netcfg-578020954.txt
2013-12-14 20:12 - 2013-12-14 20:12 - 00000117 _____ C:\Windows\system32\netcfg-577966454.txt
2013-12-14 16:46 - 2013-12-14 16:46 - 00000117 _____ C:\Windows\system32\netcfg-565654719.txt
2013-12-14 13:07 - 2013-12-14 13:07 - 00000117 _____ C:\Windows\system32\netcfg-552470360.txt
2013-12-14 12:56 - 2013-12-11 19:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\Windows\system32\netcfg-551497860.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\Windows\system32\netcfg-551478954.txt
2013-12-10 19:35 - 2013-11-24 21:18 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-09 20:48 - 2013-12-09 20:48 - 00000117 _____ C:\Windows\system32\netcfg-148135391.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\Windows\system32\netcfg-147392172.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\Windows\system32\netcfg-147368750.txt
2013-12-08 19:09 - 2013-12-08 19:09 - 00000117 _____ C:\Windows\system32\netcfg-55800172.txt
2013-12-07 21:18 - 2012-07-26 11:24 - 00746048 _____ C:\Windows\system32\perfh007.dat
2013-12-07 21:18 - 2012-07-26 11:24 - 00151906 _____ C:\Windows\system32\perfc007.dat
2013-12-07 21:18 - 2012-07-26 08:27 - 01734214 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-07 21:15 - 2013-12-07 21:15 - 00000117 _____ C:\Windows\system32\netcfg--22984171.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\Windows\system32\netcfg--205948000.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\Windows\system32\netcfg--205923781.txt
2013-12-05 18:24 - 2013-12-05 18:24 - 00000117 _____ C:\Windows\system32\netcfg--206053812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\Windows\system32\netcfg--206265812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\Windows\system32\netcfg--206264156.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\Windows\system32\netcfg--207467218.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\Windows\system32\netcfg--207465437.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\Windows\system32\netcfg--207628796.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\Windows\system32\netcfg--207627015.txt
2013-12-05 17:55 - 2013-12-05 17:55 - 00000117 _____ C:\Windows\system32\netcfg--207798468.txt
2013-12-03 17:44 - 2013-12-03 17:44 - 00000117 _____ C:\Windows\system32\netcfg--381272406.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\Windows\system32\netcfg--381683109.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\Windows\system32\netcfg--381674156.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\Windows\system32\netcfg--382036625.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\Windows\system32\netcfg--382034843.txt
2013-12-03 17:28 - 2012-07-26 08:21 - 00029209 _____ C:\Windows\setupact.log
2013-12-03 17:25 - 2013-12-03 17:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2013-12-01 13:40 - 2013-12-01 13:40 - 00000117 _____ C:\Windows\system32\netcfg--568691640.txt
2013-12-01 13:39 - 2013-12-01 13:39 - 00000117 _____ C:\Windows\system32\netcfg--568738140.txt
2013-12-01 13:32 - 2013-12-01 13:32 - 00000117 _____ C:\Windows\system32\netcfg--569170109.txt
2013-12-01 13:32 - 2013-12-01 13:32 - 00000117 _____ C:\Windows\system32\netcfg--569168343.txt
2013-12-01 13:26 - 2013-12-01 13:26 - 00000117 _____ C:\Windows\system32\netcfg--569510375.txt
2013-12-01 13:26 - 2013-12-01 13:26 - 00000117 _____ C:\Windows\system32\netcfg--569508578.txt
2013-12-01 12:56 - 2013-12-01 12:56 - 00000117 _____ C:\Windows\system32\netcfg--571325156.txt
2013-12-01 12:52 - 2013-12-01 12:52 - 00000117 _____ C:\Windows\system32\netcfg--571576218.txt
2013-12-01 12:49 - 2013-12-01 12:49 - 00000117 _____ C:\Windows\system32\netcfg--571761109.txt
2013-12-01 12:49 - 2013-12-01 12:49 - 00000117 _____ C:\Windows\system32\netcfg--571756828.txt
2013-12-01 12:36 - 2013-12-01 12:36 - 00000117 _____ C:\Windows\system32\netcfg--572545203.txt
2013-12-01 12:36 - 2013-12-01 12:36 - 00000117 _____ C:\Windows\system32\netcfg--572535828.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572779625.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572768078.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572766281.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572742578.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572740781.txt
2013-12-01 12:31 - 2013-12-01 12:31 - 00000117 _____ C:\Windows\system32\netcfg--572800125.txt
2013-12-01 12:26 - 2013-12-01 12:26 - 00000117 _____ C:\Windows\system32\netcfg--573126125.txt
2013-12-01 12:26 - 2013-12-01 12:26 - 00000117 _____ C:\Windows\system32\netcfg--573124578.txt
2013-12-01 12:24 - 2013-12-01 12:24 - 00000117 _____ C:\Windows\system32\netcfg--573257500.txt
2013-12-01 12:24 - 2013-12-01 12:24 - 00000117 _____ C:\Windows\system32\netcfg--573255734.txt
2013-12-01 12:06 - 2013-12-01 12:06 - 00000117 _____ C:\Windows\system32\netcfg--574313359.txt
2013-11-30 11:41 - 2013-11-30 11:41 - 00000117 _____ C:\Windows\system32\netcfg--662222953.txt
2013-11-30 11:38 - 2013-11-30 11:38 - 00000117 _____ C:\Windows\system32\netcfg--662416046.txt
2013-11-30 11:38 - 2013-11-30 11:38 - 00000117 _____ C:\Windows\system32\netcfg--662398718.txt
2013-11-30 11:30 - 2013-11-30 11:30 - 00000117 _____ C:\Windows\system32\netcfg--662899609.txt
2013-11-30 11:30 - 2013-11-30 11:30 - 00000117 _____ C:\Windows\system32\netcfg--662886109.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663063718.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663061984.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663054546.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663039765.txt
2013-11-30 10:33 - 2013-11-30 10:33 - 00000117 _____ C:\Windows\system32\netcfg--666309421.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666500546.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666498765.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666463546.txt
2013-11-27 21:35 - 2013-11-27 21:35 - 00000117 _____ C:\Windows\system32\netcfg--885781578.txt
2013-11-27 21:35 - 2013-11-27 21:35 - 00000117 _____ C:\Windows\system32\netcfg--885779859.txt
2013-11-27 21:21 - 2013-11-27 21:21 - 00000117 _____ C:\Windows\system32\netcfg--886580437.txt
2013-11-25 19:59 - 2013-11-25 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1064321750.txt
2013-11-24 22:48 - 2013-11-24 22:48 - 00000117 _____ C:\Windows\system32\netcfg--1140586078.txt
2013-11-24 22:47 - 2013-11-24 22:35 - 00007589 _____ C:\Users\Ute\AppData\Roaming\SmarThruOptions.xml
2013-11-24 22:47 - 2013-10-19 11:22 - 00000000 ____D C:\Users\Ute\AppData\Roaming\Samsung
2013-11-24 22:35 - 2013-11-24 22:35 - 00000000 ____D C:\Users\Ute\AppData\Roaming\SmarThru4
2013-11-24 22:35 - 2013-11-24 22:34 - 00000162 _____ C:\Windows\setup.log
2013-11-24 22:35 - 2013-11-24 22:33 - 00000000 ____D C:\Program Files (x86)\SmarThru 4
2013-11-24 22:34 - 2013-11-24 22:34 - 00000131 _____ C:\Windows\Readiris.ini
2013-11-24 22:34 - 2013-11-24 22:34 - 00000000 ____D C:\Program Files (x86)\Readiris
2013-11-24 22:34 - 2013-09-07 10:53 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-24 22:33 - 2013-11-24 22:33 - 00000828 _____ C:\Users\Public\Desktop\SmarThru 4.lnk
2013-11-24 22:20 - 2013-11-24 22:20 - 00000750 _____ C:\SamsungPrinter_Update.log
2013-11-24 22:09 - 2013-11-24 22:09 - 00000117 _____ C:\Windows\system32\netcfg--1142937531.txt
2013-11-24 21:53 - 2013-11-24 21:53 - 00000117 _____ C:\Windows\system32\netcfg--1143865796.txt
2013-11-24 21:47 - 2013-11-24 21:47 - 00000117 _____ C:\Windows\system32\netcfg--1144217031.txt
2013-11-24 21:18 - 2013-11-01 11:46 - 00000000 ____D C:\Users\Ute\AppData\Local\Adobe
2013-11-24 21:13 - 2013-11-24 21:13 - 00000117 _____ C:\Windows\system32\netcfg--1146291218.txt
2013-11-24 12:24 - 2013-11-24 12:24 - 00000117 _____ C:\Windows\system32\netcfg--1178017046.txt
2013-11-23 16:01 - 2013-11-23 16:01 - 00000000 ____D C:\Users\Ute\AppData\Local\Sophos
2013-11-23 15:48 - 2013-11-23 15:48 - 00000117 _____ C:\Windows\system32\netcfg--1252162109.txt
2013-11-23 15:48 - 2013-11-23 15:48 - 00000117 _____ C:\Windows\system32\netcfg--1252160734.txt
2013-11-22 19:44 - 2013-11-22 19:44 - 00000117 _____ C:\Windows\system32\netcfg--1324406062.txt
2013-11-21 15:09 - 2013-11-21 15:09 - 00000117 _____ C:\Windows\system32\netcfg--1427321687.txt
2013-11-21 15:00 - 2013-11-21 15:00 - 00000117 _____ C:\Windows\system32\netcfg--1427847843.txt
2013-11-21 15:00 - 2013-11-21 15:00 - 00000117 _____ C:\Windows\system32\netcfg--1427837093.txt
2013-11-21 14:53 - 2013-11-21 14:53 - 00000117 _____ C:\Windows\system32\netcfg--1428275390.txt
2013-11-21 14:52 - 2013-11-21 14:52 - 00000117 _____ C:\Windows\system32\netcfg--1428317375.txt
2013-11-21 14:52 - 2013-10-28 19:50 - 00000000 _____ C:\Windows\system32\vireng.log
2013-11-20 19:24 - 2013-11-20 19:24 - 00000117 _____ C:\Windows\system32\netcfg--1498366375.txt
2013-11-20 19:18 - 2013-11-20 19:18 - 00000117 _____ C:\Windows\system32\netcfg--1498732640.txt
2013-11-19 20:20 - 2013-11-19 20:20 - 00000117 _____ C:\Windows\system32\netcfg--1581446765.txt
2013-11-19 20:12 - 2013-11-19 20:12 - 00000117 _____ C:\Windows\system32\netcfg--1581926421.txt
2013-11-19 20:12 - 2013-11-19 20:12 - 00000117 _____ C:\Windows\system32\netcfg--1581915265.txt
2013-11-19 20:11 - 2013-11-19 20:11 - 00000117 _____ C:\Windows\system32\netcfg--1581928171.txt
2013-11-19 19:59 - 2013-11-19 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1582691687.txt
2013-11-19 19:59 - 2013-11-19 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1582691656.txt
2013-11-19 19:59 - 2013-11-19 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1582651390.txt
2013-11-19 19:59 - 2013-11-19 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1582649562.txt
2013-11-19 19:31 - 2013-11-19 19:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-18 20:00 - 2013-11-18 20:00 - 00000117 _____ C:\Windows\system32\netcfg--1668983718.txt
2013-11-18 19:56 - 2013-11-18 19:56 - 00000117 _____ C:\Windows\system32\netcfg--1669226953.txt
2013-11-18 19:29 - 2013-11-18 19:29 - 00000117 _____ C:\Windows\system32\netcfg--1670890656.txt
2013-11-18 19:21 - 2013-11-18 19:21 - 00000117 _____ C:\Windows\system32\netcfg--1671348625.txt
2013-11-18 18:58 - 2013-11-18 18:58 - 00000117 _____ C:\Windows\system32\netcfg--1672756015.txt
2013-11-18 18:58 - 2013-11-18 18:58 - 00000117 _____ C:\Windows\system32\netcfg--1672755984.txt
2013-11-18 18:21 - 2013-11-18 18:21 - 00000117 _____ C:\Windows\system32\netcfg--1674982046.txt
2013-11-17 20:16 - 2013-11-17 20:16 - 00000117 _____ C:\Windows\system32\netcfg--1754448453.txt
2013-11-17 19:30 - 2013-11-17 19:30 - 00000117 _____ C:\Windows\system32\netcfg--1757234296.txt
2013-11-17 19:28 - 2013-11-17 19:28 - 00000117 _____ C:\Windows\system32\netcfg--1757325046.txt
2013-11-17 12:11 - 2013-11-17 12:11 - 00000117 _____ C:\Windows\system32\netcfg--1783553937.txt
2013-11-17 12:10 - 2013-11-17 12:10 - 00000117 _____ C:\Windows\system32\netcfg--1783588156.txt
2013-11-16 09:50 - 2013-11-16 09:50 - 00000117 _____ C:\Windows\system32\netcfg--1878419734.txt

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.3308.dll


Some content of TEMP:
====================
C:\Users\Ute\AppData\Local\Temp\BackupSetup.exe
C:\Users\Ute\AppData\Local\Temp\Foxit Updater.exe
C:\Users\Ute\AppData\Local\Temp\fp_pl_pfs_installer-1.exe
C:\Users\Ute\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Ute\AppData\Local\Temp\ICReinstall_ZipOpenerSetup.exe
C:\Users\Ute\AppData\Local\Temp\ose00000.exe
C:\Users\Ute\AppData\Local\Temp\uninst1.exe
C:\Users\Ute\AppData\Local\Temp\vcredist_x64.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-09 20:46

==================== End Of Log ============================
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-12-2013 02
Ran by Ute at 2013-12-16 21:27:48
Running from C:\Users\Ute\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Sophos Anti-Virus (Enabled - Up to date) {65FBD860-96D8-75EF-C7ED-7BE27E6C498A}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Sophos Anti-Virus (Enabled - Up to date) {DE9A3984-B0E2-7A61-FD5D-409005EB0337}

==================== Installed Programs ======================

Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170)
Definition update for Microsoft Office 2010 (KB982726) (x32)
Foxit Reader (x32 Version: 5.3.1.606)
Google Update Helper (x32 Version: 1.3.23.0)
Microsoft Office 2010 Service Pack 1 (SP1) (x32)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
MozBackup 1.5.1 (x32)
Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 24.2.0)
Mozilla Thunderbird 24.2.0 (x86 de) (x32 Version: 24.2.0)
MyFreeCodec (HKCU)
PDF Architect (x32 Version: 1.1.83.9982)
PDFCreator (x32 Version: 1.7.1)
Plus-HD-2.3 (x32 Version: 1.27.153.8) <==== ATTENTION
Readiris Pro 9 (x32)
Samsung Kies (x32 Version: 2.6.0.13091_9)
Samsung SCX-4x21 Series (x32)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
Secure Download Manager (x32 Version: 3.1.10)
SmarThru 4 (x32)
Sophos Anti-Virus (x32 Version: 10.0.11)
Sophos AutoUpdate (x32 Version: 2.7.4.317)
StarMoney (x32 Version: 3.0.6.28)
StarMoney 8.0  (x32 Version: 8.0)

==================== Restore Points  =========================

24-11-2013 21:33:40 Installiert SmarThru 4
08-12-2013 13:50:21 Geplanter Prüfpunkt
15-12-2013 19:10:20 Geplanter Prüfpunkt

==================== Hosts content: ==========================

2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0C09377F-A0C5-4BFA-B414-320AB95351BD} - System32\Tasks\Plus-HD-2.3-chromeinstaller => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-chromeinstaller.exe [2013-09-29] (Plus HD) <==== ATTENTION
Task: {2F9AAADC-A510-4E9C-A0D0-F61409025892} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector => Rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
Task: {313BA456-E34F-431C-9CD7-C8444DCE07A1} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {37C893E8-CA77-4905-8D4F-802BB879DDAB} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => Rundll32.exe /d acproxy.dll,PerformAutochkOperations
Task: {49857301-7A72-4742-AACA-9EFE39F17929} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {514F6EBA-9D7F-4601-806A-098C01F13756} - System32\Tasks\Plus-HD-2.3-updater => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-updater.exe [2013-09-29] (Plus HD) <==== ATTENTION
Task: {82542C6A-03EA-4A88-820C-74D98D625D3C} - System32\Tasks\Plus-HD-2.3-firefoxinstaller => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-firefoxinstaller.exe [2013-09-29] (Plus HD) <==== ATTENTION
Task: {8D5DF7C0-EE7A-4D28-9337-4B8174946E41} - System32\Tasks\Plus-HD-2.3-codedownloader => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-codedownloader.exe [2013-09-29] (Plus HD) <==== ATTENTION
Task: {97113878-87C2-41BE-B055-44641D44BCD9} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {A5A73D76-A23E-463B-9CEA-0A2BC9ED3FF2} - System32\Tasks\Plus-HD-2.3-enabler => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-enabler.exe [2013-09-29] (Plus HD) <==== ATTENTION
Task: {A63BB025-A33E-4E0E-B254-C53FFAA513F8} - System32\Tasks\Advanced System Protector => C:\Program Files (x86)\RegClean Pro\SystweakASP.exe <==== ATTENTION
Task: {A801E018-1A9D-492F-83DB-F1F386493BDF} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {C09AAABB-69EE-4FEB-9F1C-7D3BC8080F00} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {C6D8B276-1088-418D-8D2F-BF43706553CC} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => Rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
Task: {D3E9112C-95EE-409F-A3B6-6F2DB18687C8} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\Windows\System32\Dism.exe [2012-07-26] (Microsoft Corporation)
Task: {D964CEF0-DC7A-4F24-836C-A7E3EFB827D9} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {F9C11CB3-6B94-42C0-8BC7-E95097599407} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe aepdu.dll,AePduRunUpdate
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Plus-HD-2.3-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-chromeinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-2.3-codedownloader.job => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-2.3-enabler.job => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-2.3-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-2.3-updater.job => C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-updater.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2013-09-07 10:54 - 2011-01-13 09:44 - 00232800 _____ () C:\Program Files (x86)\StarMoney 8.0\ouservice\PATCHW32.dll
2013-12-11 19:37 - 2013-12-11 19:37 - 03017840 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2013-12-11 19:37 - 2013-12-11 19:37 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2013-12-11 19:37 - 2013-12-11 19:37 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2013-11-19 19:31 - 2013-11-19 19:31 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAVService => ""="service"

==================== Faulty Device Manager Devices =============

Name: High Definition Audio-Gerät
Description: High Definition Audio-Gerät
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HdAudAddService
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Qualcomm Atheros AR5BWB222-Funknetzwerkadapter
Description: Qualcomm Atheros AR5BWB222-Funknetzwerkadapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: athr
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: PCI-Kommunikationscontroller (einfach)
Description: PCI-Kommunikationscontroller (einfach)
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 3D-Videocontroller
Description: 3D-Videocontroller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/15/2013 03:33:01 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ALMon.exe, Version: 3.45.111.317, Zeitstempel: 0x4ff70377
Name des fehlerhaften Moduls: combase.dll, Version: 6.2.9200.16384, Zeitstempel: 0x50108858
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001334c
ID des fehlerhaften Prozesses: 0x1324
Startzeit der fehlerhaften Anwendung: 0xALMon.exe0
Pfad der fehlerhaften Anwendung: ALMon.exe1
Pfad des fehlerhaften Moduls: ALMon.exe2
Berichtskennung: ALMon.exe3
Vollständiger Name des fehlerhaften Pakets: ALMon.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ALMon.exe5

Error: (11/18/2013 07:14:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ALMon.exe, Version: 3.45.111.317, Zeitstempel: 0x4ff70377
Name des fehlerhaften Moduls: combase.dll, Version: 6.2.9200.16384, Zeitstempel: 0x50108858
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001334c
ID des fehlerhaften Prozesses: 0x15e4
Startzeit der fehlerhaften Anwendung: 0xALMon.exe0
Pfad der fehlerhaften Anwendung: ALMon.exe1
Pfad des fehlerhaften Moduls: ALMon.exe2
Berichtskennung: ALMon.exe3
Vollständiger Name des fehlerhaften Pakets: ALMon.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ALMon.exe5

Error: (10/27/2013 08:50:04 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ALMon.exe, Version: 3.45.111.317, Zeitstempel: 0x4ff70377
Name des fehlerhaften Moduls: combase.dll, Version: 6.2.9200.16384, Zeitstempel: 0x50108858
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001334c
ID des fehlerhaften Prozesses: 0x1070
Startzeit der fehlerhaften Anwendung: 0xALMon.exe0
Pfad der fehlerhaften Anwendung: ALMon.exe1
Pfad des fehlerhaften Moduls: ALMon.exe2
Berichtskennung: ALMon.exe3
Vollständiger Name des fehlerhaften Pakets: ALMon.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ALMon.exe5

Error: (10/19/2013 11:57:53 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16384, Zeitstempel: 0x50107ee0
Name des fehlerhaften Moduls: Plus-HD-2.3-bho.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x51b5cf67
Ausnahmecode: 0xc0000005
Fehleroffset: 0x034d0ef1
ID des fehlerhaften Prozesses: 0x300
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5

Error: (09/30/2013 05:39:05 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: SMConfigInstaller.exe, Version: 3.0.4506.6387, Zeitstempel: 0x4fee6b50
Name des fehlerhaften Moduls: bitguard.dll, Version: 2.6.1694.246, Zeitstempel: 0x52402c3e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0017966f
ID des fehlerhaften Prozesses: 0x728
Startzeit der fehlerhaften Anwendung: 0xSMConfigInstaller.exe0
Pfad der fehlerhaften Anwendung: SMConfigInstaller.exe1
Pfad des fehlerhaften Moduls: SMConfigInstaller.exe2
Berichtskennung: SMConfigInstaller.exe3
Vollständiger Name des fehlerhaften Pakets: SMConfigInstaller.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SMConfigInstaller.exe5

Error: (09/29/2013 10:52:21 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: SMConfigInstaller.exe, Version: 3.0.4506.6387, Zeitstempel: 0x4fee6b50
Name des fehlerhaften Moduls: bitguard.dll, Version: 2.6.1694.246, Zeitstempel: 0x52402c3e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0017966f
ID des fehlerhaften Prozesses: 0x90c
Startzeit der fehlerhaften Anwendung: 0xSMConfigInstaller.exe0
Pfad der fehlerhaften Anwendung: SMConfigInstaller.exe1
Pfad des fehlerhaften Moduls: SMConfigInstaller.exe2
Berichtskennung: SMConfigInstaller.exe3
Vollständiger Name des fehlerhaften Pakets: SMConfigInstaller.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SMConfigInstaller.exe5

Error: (09/29/2013 10:50:39 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: SMConfigInstaller.exe, Version: 3.0.4506.6387, Zeitstempel: 0x4fee6b50
Name des fehlerhaften Moduls: bitguard.dll, Version: 2.6.1694.246, Zeitstempel: 0x52402c3e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0017966f
ID des fehlerhaften Prozesses: 0x121c
Startzeit der fehlerhaften Anwendung: 0xSMConfigInstaller.exe0
Pfad der fehlerhaften Anwendung: SMConfigInstaller.exe1
Pfad des fehlerhaften Moduls: SMConfigInstaller.exe2
Berichtskennung: SMConfigInstaller.exe3
Vollständiger Name des fehlerhaften Pakets: SMConfigInstaller.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SMConfigInstaller.exe5

Error: (09/07/2013 09:38:05 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.

Error: (08/24/2013 04:05:56 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.1"1".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/20/2013 07:33:58 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.1"1".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".


System errors:
=============
Error: (12/14/2013 08:12:20 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet:
%%1

Error: (11/24/2013 00:24:24 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (11/24/2013 00:24:24 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (11/22/2013 08:38:58 PM) (Source: DCOM) (User: UtesPC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (11/22/2013 08:38:58 PM) (Source: DCOM) (User: UtesPC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (11/22/2013 08:38:54 PM) (Source: DCOM) (User: UtesPC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (11/22/2013 08:38:54 PM) (Source: DCOM) (User: UtesPC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (11/22/2013 08:38:54 PM) (Source: DCOM) (User: UtesPC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (11/22/2013 08:38:54 PM) (Source: DCOM) (User: UtesPC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (11/18/2013 07:08:18 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet:
%%1


Microsoft Office Sessions:
=========================
Error: (12/15/2013 03:33:01 PM) (Source: Application Error)(User: )
Description: ALMon.exe3.45.111.3174ff70377combase.dll6.2.9200.1638450108858c00000050001334c132401cef8fd84e2ee39C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exeC:\Windows\SYSTEM32\combase.dllcc8fb411-6595-11e3-b31a-1c3e842c188e

Error: (11/18/2013 07:14:22 PM) (Source: Application Error)(User: )
Description: ALMon.exe3.45.111.3174ff70377combase.dll6.2.9200.1638450108858c00000050001334c15e401cee4863f0b5941C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exeC:\Windows\SYSTEM32\combase.dll3f33e83a-507d-11e3-b31a-1c3e842c188e

Error: (10/27/2013 08:50:04 PM) (Source: Application Error)(User: )
Description: ALMon.exe3.45.111.3174ff70377combase.dll6.2.9200.1638450108858c00000050001334c107001ced34c34e6b72cC:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exeC:\Windows\SYSTEM32\combase.dllf87dbce7-3f40-11e3-b31a-1c3e842c188e

Error: (10/19/2013 11:57:53 AM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.1638450107ee0Plus-HD-2.3-bho.dll_unloaded0.0.0.051b5cf67c0000005034d0ef130001ceccb93ea2714bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEPlus-HD-2.3-bho.dll4ce4d1c0-38ad-11e3-b31a-1c3e842c188e

Error: (09/30/2013 05:39:05 PM) (Source: Application Error)(User: )
Description: SMConfigInstaller.exe3.0.4506.63874fee6b50bitguard.dll2.6.1694.24652402c3ec00000050017966f72801cebdfb93375828C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMConfigInstaller.exec:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dlld16ca277-29ee-11e3-b316-1c3e842c188e

Error: (09/29/2013 10:52:21 AM) (Source: Application Error)(User: )
Description: SMConfigInstaller.exe3.0.4506.63874fee6b50bitguard.dll2.6.1694.24652402c3ec00000050017966f90c01cebcf9979e9b78C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMConfigInstaller.exec:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dlld567c45f-28ec-11e3-b316-1c3e842c188e

Error: (09/29/2013 10:50:39 AM) (Source: Application Error)(User: )
Description: SMConfigInstaller.exe3.0.4506.63874fee6b50bitguard.dll2.6.1694.24652402c3ec00000050017966f121c01cebcf95a96cafdC:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMConfigInstaller.exec:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dll987ef133-28ec-11e3-b316-1c3e842c188e

Error: (09/07/2013 09:38:05 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest\\IXI\ixi_d\download\SoftonicDownloader_fuer_tinycad.exe

Error: (08/24/2013 04:05:56 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.1"c:\program files (x86)\microsoft office\Office14\SETLANG.EXE

Error: (08/20/2013 07:33:58 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.1"C:\Program Files (x86)\Microsoft Office\Office14\SETLANG.EXE


==================== Memory info ===========================

Percentage of memory in use: 32%
Total physical RAM: 7848.36 MB
Available physical RAM: 5332.06 MB
Total Pagefile: 9000.36 MB
Available Pagefile: 6408.52 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:492.06 GB) (Free:453.27 GB) NTFS
Drive d: (Daten) (Fixed) (Total:341.46 GB) (Free:305.11 GB) NTFS
Drive f: (Volume) (Fixed) (Total:97.66 GB) (Free:81.96 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 3854F0CC)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=341 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=98 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=492 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Vielen Dank für die Hilfe
Ute

schrauber 17.12.2013 08:24
hi,

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

ute4 17.12.2013 21:42
Hallo Schrauber,

vielen Dank. Ich bitte dich um etwas Geduld.
Vor Donnerstag schaffe ich es nicht mehr, vllt wirds Wochenende.
Nur damit du nicht denkst, ich hätte kein Interesse.
Danke.
Viele Grüße
Ute

schrauber 18.12.2013 10:44
ok :)

ute4 25.12.2013 17:45
Hallo Schrauber,

es hat nun doch etwas länger gedauert. Sorry.
Hier nun die logs:

Code:
Malwarebytes Anti-Malware (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.25.03

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16384
Ute :: UTESPC [Administrator]

Schutz: Aktiviert

25.12.2013 16:36:08
mbam-log-2013-12-25 (16-36-08).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 211951
Laufzeit: 4 Minute(n), 36 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 14
C:\$Recycle.Bin\S-1-5-21-2707821562-3393655627-2175517270-1001\$RV0DXO6.exe (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\73C7D84B-BAB0-7891-BF0F-901C0DB4A8E1\Latest\BabMaint.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\73C7D84B-BAB0-7891-BF0F-901C0DB4A8E1\Latest\BExternal.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\73C7D84B-BAB0-7891-BF0F-901C0DB4A8E1\Latest\ccp.exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\73C7D84B-BAB0-7891-BF0F-901C0DB4A8E1\Latest\CrxInstaller.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\73C7D84B-BAB0-7891-BF0F-901C0DB4A8E1\Latest\DSearchLink.exe (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\73C7D84B-BAB0-7891-BF0F-901C0DB4A8E1\Latest\MntrDLLInstall.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\73C7D84B-BAB0-7891-BF0F-901C0DB4A8E1\Latest\MyDeltaTB.exe (PUP.Optional.Delta) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\73C7D84B-BAB0-7891-BF0F-901C0DB4A8E1\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\is1293689599\296801344_stp\DeltaTB.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\is1293689599\296801391_stp\rcpsetup_adppi_adppi.exe (PUP.Optional.RegCleanerPro) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\is1293689599\296801481_stp\plus-hd-2-3_DE.exe (PUP.Optional.CrossRider) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\is1293689599\296801661_stp\bd.exe (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Ute\AppData\Local\Temp\is357113909\DeltaTB.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
Code:
# AdwCleaner v3.016 - Bericht erstellt am 25/12/2013 um 17:15:39
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 8 Pro N  (64 bits)
# Benutzername : Ute - UTESPC
# Gestartet von : C:\Users\Ute\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16384


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [27906 octets] - [16/12/2013 21:53:14]
AdwCleaner[R1].txt - [1046 octets] - [25/12/2013 17:13:30]
AdwCleaner[R2].txt - [1107 octets] - [25/12/2013 17:15:20]
AdwCleaner[S0].txt - [26200 octets] - [16/12/2013 21:56:09]
AdwCleaner[S1].txt - [1029 octets] - [25/12/2013 17:15:39]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1089 octets] ##########
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8 Pro N x64
Ran by Ute on 25.12.2013 at 17:34:43,10
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 25.12.2013 at 17:37:36,19
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-12-2013
Ran by Ute (administrator) on UTESPC on 25-12-2013 17:39:43
Running from C:\Users\Ute\Desktop
Windows 8 Pro N (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(Star Finanz - Software Entwicklung und Vertriebs GmbH) C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Samsung PanelMgr] - C:\Windows\Samsung\PanelMgr\SSMMgr.exe [688128 2011-08-01] ()
HKLM-x32\...\Run: [Sophos AutoUpdate Monitor] - C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe [900160 2013-10-16] (Sophos Limited)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-10-28] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376 2013-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCEPServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-10-28] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-10-28] (Samsung)
AppInit_DLLs: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sophos_detoured_x64.dll [218256 2013-10-16] (Sophos Limited)
AppInit_DLLs-x32: C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL [221840 2013-10-16] (Sophos Limited)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x15FEFA665EE8CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Winsock: Catalog9 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 20 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9-x64 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 20 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Tcpip\..\Interfaces\{028FA9F4-24F0-4DA5-950D-A80695208D50}: [NameServer]192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default
FF DefaultSearchEngine: Amazon
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FRITZ!Box AddOn - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\fb_add_on@avm.de
FF Extension: Molecular Viewer Plugin - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\npcml@scarletline.com
FF Extension: Adblock Plus - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

==================== Services (Whitelisted) =================

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
S2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
S2 SAVAdminService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [216640 2013-10-16] (Sophos Limited)
S2 SAVService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [139840 2013-10-16] (Sophos Limited)
S2 Sophos AutoUpdate Service; C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe [232512 2013-10-16] (Sophos Limited)
R2 Sophos Web Control Service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe [357400 2013-10-16] (Sophos Limited)
R2 StarMoney 8.0 OnlineUpdate; C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe [699680 2012-12-21] (Star Finanz - Software Entwicklung und Vertriebs GmbH)
R2 swi_service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [2869824 2013-10-16] (Sophos Limited)
S2 swi_update_64; C:\ProgramData\Sophos\Web Intelligence\swi_update_64.exe [1998400 2013-10-16] (Sophos Limited)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R1 SAVOnAccess; C:\Windows\System32\DRIVERS\savonaccess.sys [144672 2013-10-16] (Sophos Limited)
S3 sdcfilter; C:\Windows\system32\DRIVERS\sdcfilter.sys [36640 2013-10-16] (Sophos Limited)
S4 SophosBootDriver; C:\Windows\system32\DRIVERS\SophosBootDriver.sys [25608 2010-03-02] (Sophos Plc)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-25 17:39 - 2013-12-25 17:39 - 00000000 ____D C:\Users\Ute\Desktop\FRST-OlderVersion
2013-12-25 17:37 - 2013-12-25 17:37 - 00000616 _____ C:\Users\Ute\Desktop\JRT.txt
2013-12-25 17:31 - 2013-12-25 17:31 - 00000000 ____D C:\Windows\ERUNT
2013-12-25 17:25 - 2013-12-25 17:25 - 01034531 _____ (Thisisu) C:\Users\Ute\Desktop\JRT.exe
2013-12-25 17:12 - 2013-12-25 17:12 - 01233962 _____ C:\Users\Ute\Desktop\adwcleaner.exe
2013-12-25 16:32 - 2013-12-25 16:32 - 00001154 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\Users\Ute\AppData\Roaming\Malwarebytes
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-25 16:32 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-25 16:24 - 2013-12-25 16:24 - 00000117 _____ C:\Windows\system32\netcfg-757439968.txt
2013-12-25 11:29 - 2013-12-25 11:29 - 00000117 _____ C:\Windows\system32\netcfg-739764515.txt
2013-12-25 10:38 - 2013-12-25 10:38 - 00000117 _____ C:\Windows\system32\netcfg-736684203.txt
2013-12-24 21:52 - 2013-12-24 21:52 - 00000132 _____ C:\Users\Ute\AppData\Roaming\Adobe IllExport-Filter CC - Voreinstellungen
2013-12-24 21:19 - 2013-12-24 21:19 - 00000117 _____ C:\Windows\system32\netcfg-688755234.txt
2013-12-24 14:33 - 2013-12-24 14:33 - 00003494 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-UtesPC-Ute
2013-12-24 14:33 - 2013-12-24 14:33 - 00000000 ____D C:\Users\Ute\AppData\Roaming\PDAppFlex
2013-12-24 14:33 - 2013-12-24 14:33 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-12-24 13:48 - 2013-12-24 13:57 - 00000000 ____D C:\Program Files\Adobe
2013-12-24 13:45 - 2013-12-24 13:56 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-24 13:07 - 2013-12-24 13:48 - 00000000 ____D C:\ProgramData\Adobe
2013-12-24 13:06 - 2013-12-24 13:06 - 00001074 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2013-12-24 13:05 - 2013-12-24 13:57 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-24 12:51 - 2013-12-24 12:52 - 00000000 ____D C:\Users\Ute\.gimp-2.8
2013-12-24 12:51 - 2013-12-24 12:51 - 00000000 ____D C:\Users\Ute\AppData\Local\gegl-0.2
2013-12-24 12:47 - 2013-12-24 12:48 - 00000000 ____D C:\Program Files\GIMP 2
2013-12-24 12:43 - 2013-12-24 12:43 - 00000117 _____ C:\Windows\system32\netcfg-657816296.txt
2013-12-24 12:42 - 2013-12-24 12:42 - 00000117 _____ C:\Windows\system32\netcfg-657753468.txt
2013-12-22 21:11 - 2013-12-22 21:11 - 00000117 _____ C:\Windows\system32\netcfg-515455984.txt
2013-12-21 15:30 - 2013-12-21 15:30 - 00000117 _____ C:\Windows\system32\netcfg-408638093.txt
2013-12-21 15:30 - 2013-12-21 15:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-21 15:02 - 2013-12-21 15:02 - 00000117 _____ C:\Windows\system32\netcfg-406938156.txt
2013-12-21 15:02 - 2013-12-21 15:02 - 00000117 _____ C:\Windows\system32\netcfg-406936437.txt
2013-12-20 20:41 - 2013-12-20 20:41 - 00000117 _____ C:\Windows\system32\netcfg-340913500.txt
2013-12-20 20:40 - 2013-12-20 20:40 - 00000117 _____ C:\Windows\system32\netcfg-340828406.txt
2013-12-20 20:39 - 2013-12-20 20:39 - 00000117 _____ C:\Windows\system32\netcfg-340782046.txt
2013-12-20 20:39 - 2013-12-20 20:39 - 00000117 _____ C:\Windows\system32\netcfg-340764625.txt
2013-12-20 20:30 - 2013-12-20 20:30 - 00000117 _____ C:\Windows\system32\netcfg-340234609.txt
2013-12-20 20:30 - 2013-12-20 20:30 - 00000117 _____ C:\Windows\system32\netcfg-340201703.txt
2013-12-19 20:15 - 2013-12-19 20:15 - 00000117 _____ C:\Windows\system32\netcfg-252931718.txt
2013-12-19 20:15 - 2013-12-19 20:15 - 00000117 _____ C:\Windows\system32\netcfg-252916437.txt
2013-12-19 19:46 - 2013-12-19 19:46 - 00000117 _____ C:\Windows\system32\netcfg-251188093.txt
2013-12-19 19:42 - 2013-12-19 19:42 - 00000117 _____ C:\Windows\system32\netcfg-250923640.txt
2013-12-19 19:41 - 2013-12-19 19:41 - 00000117 _____ C:\Windows\system32\netcfg-250917078.txt
2013-12-19 19:41 - 2013-12-19 19:41 - 00000117 _____ C:\Windows\system32\netcfg-250915265.txt
2013-12-19 19:39 - 2013-12-19 19:39 - 00000117 _____ C:\Windows\system32\netcfg-250803453.txt
2013-12-19 19:39 - 2013-12-19 19:39 - 00000117 _____ C:\Windows\system32\netcfg-250766968.txt
2013-12-19 19:36 - 2013-12-19 19:36 - 00000117 _____ C:\Windows\system32\netcfg-250619453.txt
2013-12-17 22:19 - 2013-12-17 22:19 - 00000117 _____ C:\Windows\system32\netcfg-87549171.txt
2013-12-17 22:18 - 2013-12-17 22:18 - 00000117 _____ C:\Windows\system32\netcfg-87533562.txt
2013-12-17 21:51 - 2013-12-17 21:51 - 00000117 _____ C:\Windows\system32\netcfg-85899156.txt
2013-12-17 21:37 - 2013-12-17 21:37 - 00000117 _____ C:\Windows\system32\netcfg-85041812.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\Windows\system32\netcfg-84990609.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\Windows\system32\netcfg-84984187.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\Windows\system32\netcfg-84982468.txt
2013-12-17 21:35 - 2013-12-17 21:35 - 00000117 _____ C:\Windows\system32\netcfg-84928578.txt
2013-12-17 21:35 - 2013-12-17 21:35 - 00000117 _____ C:\Windows\system32\netcfg-84927156.txt
2013-12-17 21:33 - 2013-12-17 21:33 - 00000117 _____ C:\Windows\system32\netcfg-84802734.txt
2013-12-16 22:04 - 2013-12-16 22:04 - 00000117 _____ C:\Windows\system32\netcfg-280593.txt
2013-12-16 21:53 - 2013-12-25 17:15 - 00000000 ____D C:\AdwCleaner
2013-12-16 21:27 - 2013-12-25 17:39 - 00010684 _____ C:\Users\Ute\Desktop\FRST.txt
2013-12-16 21:27 - 2013-12-25 17:39 - 00000000 ____D C:\FRST
2013-12-16 21:27 - 2013-12-16 21:28 - 00022853 _____ C:\Users\Ute\Desktop\Addition.txt
2013-12-16 21:20 - 2013-12-25 17:39 - 01928716 _____ (Farbar) C:\Users\Ute\Desktop\FRST64.exe
2013-12-15 16:13 - 2013-12-15 16:13 - 00000117 _____ C:\Windows\system32\netcfg-650036094.txt
2013-12-15 15:33 - 2013-12-15 15:33 - 00000117 _____ C:\Windows\system32\netcfg-647627969.txt
2013-12-15 15:25 - 2013-12-15 15:25 - 00000117 _____ C:\Windows\system32\netcfg-647128016.txt
2013-12-14 20:18 - 2013-12-14 20:18 - 00000117 _____ C:\Windows\system32\netcfg-578324922.txt
2013-12-14 20:13 - 2013-12-14 20:13 - 00000117 _____ C:\Windows\system32\netcfg-578020954.txt
2013-12-14 20:12 - 2013-12-14 20:12 - 00000117 _____ C:\Windows\system32\netcfg-577966454.txt
2013-12-14 16:46 - 2013-12-14 16:46 - 00000117 _____ C:\Windows\system32\netcfg-565654719.txt
2013-12-14 13:07 - 2013-12-14 13:07 - 00000117 _____ C:\Windows\system32\netcfg-552470360.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\Windows\system32\netcfg-551497860.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\Windows\system32\netcfg-551478954.txt
2013-12-11 19:36 - 2013-12-14 12:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-09 20:48 - 2013-12-09 20:48 - 00000117 _____ C:\Windows\system32\netcfg-148135391.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\Windows\system32\netcfg-147392172.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\Windows\system32\netcfg-147368750.txt
2013-12-08 19:09 - 2013-12-08 19:09 - 00000117 _____ C:\Windows\system32\netcfg-55800172.txt
2013-12-07 21:15 - 2013-12-07 21:15 - 00000117 _____ C:\Windows\system32\netcfg--22984171.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\Windows\system32\netcfg--205948000.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\Windows\system32\netcfg--205923781.txt
2013-12-05 18:24 - 2013-12-05 18:24 - 00000117 _____ C:\Windows\system32\netcfg--206053812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\Windows\system32\netcfg--206265812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\Windows\system32\netcfg--206264156.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\Windows\system32\netcfg--207467218.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\Windows\system32\netcfg--207465437.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\Windows\system32\netcfg--207628796.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\Windows\system32\netcfg--207627015.txt
2013-12-05 17:55 - 2013-12-05 17:55 - 00000117 _____ C:\Windows\system32\netcfg--207798468.txt
2013-12-03 17:44 - 2013-12-03 17:44 - 00000117 _____ C:\Windows\system32\netcfg--381272406.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\Windows\system32\netcfg--381683109.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\Windows\system32\netcfg--381674156.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\Windows\system32\netcfg--382036625.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\Windows\system32\netcfg--382034843.txt
2013-12-03 17:25 - 2013-12-03 17:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2013-12-01 13:40 - 2013-12-01 13:40 - 00000117 _____ C:\Windows\system32\netcfg--568691640.txt
2013-12-01 13:39 - 2013-12-01 13:39 - 00000117 _____ C:\Windows\system32\netcfg--568738140.txt
2013-12-01 13:32 - 2013-12-01 13:32 - 00000117 _____ C:\Windows\system32\netcfg--569170109.txt
2013-12-01 13:32 - 2013-12-01 13:32 - 00000117 _____ C:\Windows\system32\netcfg--569168343.txt
2013-12-01 13:26 - 2013-12-01 13:26 - 00000117 _____ C:\Windows\system32\netcfg--569510375.txt
2013-12-01 13:26 - 2013-12-01 13:26 - 00000117 _____ C:\Windows\system32\netcfg--569508578.txt
2013-12-01 12:56 - 2013-12-01 12:56 - 00000117 _____ C:\Windows\system32\netcfg--571325156.txt
2013-12-01 12:52 - 2013-12-01 12:52 - 00000117 _____ C:\Windows\system32\netcfg--571576218.txt
2013-12-01 12:49 - 2013-12-01 12:49 - 00000117 _____ C:\Windows\system32\netcfg--571761109.txt
2013-12-01 12:49 - 2013-12-01 12:49 - 00000117 _____ C:\Windows\system32\netcfg--571756828.txt
2013-12-01 12:36 - 2013-12-01 12:36 - 00000117 _____ C:\Windows\system32\netcfg--572545203.txt
2013-12-01 12:36 - 2013-12-01 12:36 - 00000117 _____ C:\Windows\system32\netcfg--572535828.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572779625.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572768078.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572766281.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572742578.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572740781.txt
2013-12-01 12:31 - 2013-12-01 12:31 - 00000117 _____ C:\Windows\system32\netcfg--572800125.txt
2013-12-01 12:26 - 2013-12-01 12:26 - 00000117 _____ C:\Windows\system32\netcfg--573126125.txt
2013-12-01 12:26 - 2013-12-01 12:26 - 00000117 _____ C:\Windows\system32\netcfg--573124578.txt
2013-12-01 12:24 - 2013-12-01 12:24 - 00000117 _____ C:\Windows\system32\netcfg--573257500.txt
2013-12-01 12:24 - 2013-12-01 12:24 - 00000117 _____ C:\Windows\system32\netcfg--573255734.txt
2013-12-01 12:06 - 2013-12-01 12:06 - 00000117 _____ C:\Windows\system32\netcfg--574313359.txt
2013-11-30 11:41 - 2013-11-30 11:41 - 00000117 _____ C:\Windows\system32\netcfg--662222953.txt
2013-11-30 11:38 - 2013-11-30 11:38 - 00000117 _____ C:\Windows\system32\netcfg--662416046.txt
2013-11-30 11:38 - 2013-11-30 11:38 - 00000117 _____ C:\Windows\system32\netcfg--662398718.txt
2013-11-30 11:30 - 2013-11-30 11:30 - 00000117 _____ C:\Windows\system32\netcfg--662899609.txt
2013-11-30 11:30 - 2013-11-30 11:30 - 00000117 _____ C:\Windows\system32\netcfg--662886109.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663063718.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663061984.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663054546.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663039765.txt
2013-11-30 10:33 - 2013-11-30 10:33 - 00000117 _____ C:\Windows\system32\netcfg--666309421.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666500546.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666498765.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666463546.txt
2013-11-27 21:35 - 2013-11-27 21:35 - 00000117 _____ C:\Windows\system32\netcfg--885781578.txt
2013-11-27 21:35 - 2013-11-27 21:35 - 00000117 _____ C:\Windows\system32\netcfg--885779859.txt
2013-11-27 21:21 - 2013-11-27 21:21 - 00000117 _____ C:\Windows\system32\netcfg--886580437.txt
2013-11-25 19:59 - 2013-11-25 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1064321750.txt

==================== One Month Modified Files and Folders =======

2013-12-25 17:39 - 2013-12-25 17:39 - 00000000 ____D C:\Users\Ute\Desktop\FRST-OlderVersion
2013-12-25 17:39 - 2013-12-16 21:27 - 00010684 _____ C:\Users\Ute\Desktop\FRST.txt
2013-12-25 17:39 - 2013-12-16 21:27 - 00000000 ____D C:\FRST
2013-12-25 17:39 - 2013-12-16 21:20 - 01928716 _____ (Farbar) C:\Users\Ute\Desktop\FRST64.exe
2013-12-25 17:37 - 2013-12-25 17:37 - 00000616 _____ C:\Users\Ute\Desktop\JRT.txt
2013-12-25 17:35 - 2013-11-24 21:18 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-25 17:31 - 2013-12-25 17:31 - 00000000 ____D C:\Windows\ERUNT
2013-12-25 17:25 - 2013-12-25 17:25 - 01034531 _____ (Thisisu) C:\Users\Ute\Desktop\JRT.exe
2013-12-25 17:23 - 2013-08-16 23:14 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2707821562-3393655627-2175517270-1001
2013-12-25 17:16 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-25 17:16 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-12-25 17:15 - 2013-12-16 21:53 - 00000000 ____D C:\AdwCleaner
2013-12-25 17:12 - 2013-12-25 17:12 - 01233962 _____ C:\Users\Ute\Desktop\adwcleaner.exe
2013-12-25 17:00 - 2012-07-26 09:13 - 00000000 ____D C:\Windows\system32\sru
2013-12-25 16:51 - 2012-07-26 08:19 - 05090456 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-25 16:50 - 2013-08-17 19:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-25 16:50 - 2013-08-16 22:48 - 00012122 _____ C:\Windows\PFRO.log
2013-12-25 16:32 - 2013-12-25 16:32 - 00001154 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\Users\Ute\AppData\Roaming\Malwarebytes
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-25 16:24 - 2013-12-25 16:24 - 00000117 _____ C:\Windows\system32\netcfg-757439968.txt
2013-12-25 11:49 - 2013-08-17 17:46 - 01185091 _____ C:\Windows\WindowsUpdate.log
2013-12-25 11:29 - 2013-12-25 11:29 - 00000117 _____ C:\Windows\system32\netcfg-739764515.txt
2013-12-25 11:17 - 2013-08-16 23:08 - 00000000 ____D C:\Users\Ute\AppData\Roaming\Adobe
2013-12-25 10:41 - 2013-11-01 11:46 - 00000000 ____D C:\Users\Ute\AppData\Local\Adobe
2013-12-25 10:38 - 2013-12-25 10:38 - 00000117 _____ C:\Windows\system32\netcfg-736684203.txt
2013-12-24 21:52 - 2013-12-24 21:52 - 00000132 _____ C:\Users\Ute\AppData\Roaming\Adobe IllExport-Filter CC - Voreinstellungen
2013-12-24 21:31 - 2012-07-26 11:24 - 00746048 _____ C:\Windows\system32\perfh007.dat
2013-12-24 21:31 - 2012-07-26 11:24 - 00151906 _____ C:\Windows\system32\perfc007.dat
2013-12-24 21:31 - 2012-07-26 08:27 - 01734214 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-24 21:22 - 2012-07-26 08:21 - 00033487 _____ C:\Windows\setupact.log
2013-12-24 21:19 - 2013-12-24 21:19 - 00000117 _____ C:\Windows\system32\netcfg-688755234.txt
2013-12-24 14:33 - 2013-12-24 14:33 - 00003494 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-UtesPC-Ute
2013-12-24 14:33 - 2013-12-24 14:33 - 00000000 ____D C:\Users\Ute\AppData\Roaming\PDAppFlex
2013-12-24 14:33 - 2013-12-24 14:33 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-12-24 13:57 - 2013-12-24 13:48 - 00000000 ____D C:\Program Files\Adobe
2013-12-24 13:57 - 2013-12-24 13:05 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-24 13:56 - 2013-12-24 13:45 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-24 13:48 - 2013-12-24 13:07 - 00000000 ____D C:\ProgramData\Adobe
2013-12-24 13:06 - 2013-12-24 13:06 - 00001074 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2013-12-24 12:52 - 2013-12-24 12:51 - 00000000 ____D C:\Users\Ute\.gimp-2.8
2013-12-24 12:51 - 2013-12-24 12:51 - 00000000 ____D C:\Users\Ute\AppData\Local\gegl-0.2
2013-12-24 12:51 - 2013-08-16 23:08 - 00000000 ____D C:\Users\Ute
2013-12-24 12:48 - 2013-12-24 12:47 - 00000000 ____D C:\Program Files\GIMP 2
2013-12-24 12:43 - 2013-12-24 12:43 - 00000117 _____ C:\Windows\system32\netcfg-657816296.txt
2013-12-24 12:42 - 2013-12-24 12:42 - 00000117 _____ C:\Windows\system32\netcfg-657753468.txt
2013-12-22 21:30 - 2013-10-28 19:50 - 00000000 _____ C:\Windows\system32\vireng.log
2013-12-22 21:11 - 2013-12-22 21:11 - 00000117 _____ C:\Windows\system32\netcfg-515455984.txt
2013-12-21 15:30 - 2013-12-21 15:30 - 00000117 _____ C:\Windows\system32\netcfg-408638093.txt
2013-12-21 15:30 - 2013-12-21 15:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-21 15:02 - 2013-12-21 15:02 - 00000117 _____ C:\Windows\system32\netcfg-406938156.txt
2013-12-21 15:02 - 2013-12-21 15:02 - 00000117 _____ C:\Windows\system32\netcfg-406936437.txt
2013-12-21 14:48 - 2013-09-07 10:53 - 00000000 ____D C:\Program Files (x86)\StarMoney 8.0
2013-12-20 20:41 - 2013-12-20 20:41 - 00000117 _____ C:\Windows\system32\netcfg-340913500.txt
2013-12-20 20:40 - 2013-12-20 20:40 - 00000117 _____ C:\Windows\system32\netcfg-340828406.txt
2013-12-20 20:39 - 2013-12-20 20:39 - 00000117 _____ C:\Windows\system32\netcfg-340782046.txt
2013-12-20 20:39 - 2013-12-20 20:39 - 00000117 _____ C:\Windows\system32\netcfg-340764625.txt
2013-12-20 20:30 - 2013-12-20 20:30 - 00000117 _____ C:\Windows\system32\netcfg-340234609.txt
2013-12-20 20:30 - 2013-12-20 20:30 - 00000117 _____ C:\Windows\system32\netcfg-340201703.txt
2013-12-19 20:15 - 2013-12-19 20:15 - 00000117 _____ C:\Windows\system32\netcfg-252931718.txt
2013-12-19 20:15 - 2013-12-19 20:15 - 00000117 _____ C:\Windows\system32\netcfg-252916437.txt
2013-12-19 19:46 - 2013-12-19 19:46 - 00000117 _____ C:\Windows\system32\netcfg-251188093.txt
2013-12-19 19:42 - 2013-12-19 19:42 - 00000117 _____ C:\Windows\system32\netcfg-250923640.txt
2013-12-19 19:41 - 2013-12-19 19:41 - 00000117 _____ C:\Windows\system32\netcfg-250917078.txt
2013-12-19 19:41 - 2013-12-19 19:41 - 00000117 _____ C:\Windows\system32\netcfg-250915265.txt
2013-12-19 19:39 - 2013-12-19 19:39 - 00000117 _____ C:\Windows\system32\netcfg-250803453.txt
2013-12-19 19:39 - 2013-12-19 19:39 - 00000117 _____ C:\Windows\system32\netcfg-250766968.txt
2013-12-19 19:36 - 2013-12-19 19:36 - 00000117 _____ C:\Windows\system32\netcfg-250619453.txt
2013-12-17 22:19 - 2013-12-17 22:19 - 00000117 _____ C:\Windows\system32\netcfg-87549171.txt
2013-12-17 22:18 - 2013-12-17 22:18 - 00000117 _____ C:\Windows\system32\netcfg-87533562.txt
2013-12-17 21:51 - 2013-12-17 21:51 - 00000117 _____ C:\Windows\system32\netcfg-85899156.txt
2013-12-17 21:37 - 2013-12-17 21:37 - 00000117 _____ C:\Windows\system32\netcfg-85041812.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\Windows\system32\netcfg-84990609.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\Windows\system32\netcfg-84984187.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\Windows\system32\netcfg-84982468.txt
2013-12-17 21:35 - 2013-12-17 21:35 - 00000117 _____ C:\Windows\system32\netcfg-84928578.txt
2013-12-17 21:35 - 2013-12-17 21:35 - 00000117 _____ C:\Windows\system32\netcfg-84927156.txt
2013-12-17 21:33 - 2013-12-17 21:33 - 00000117 _____ C:\Windows\system32\netcfg-84802734.txt
2013-12-16 22:04 - 2013-12-16 22:04 - 00000117 _____ C:\Windows\system32\netcfg-280593.txt
2013-12-16 21:28 - 2013-12-16 21:27 - 00022853 _____ C:\Users\Ute\Desktop\Addition.txt
2013-12-15 16:13 - 2013-12-15 16:13 - 00000117 _____ C:\Windows\system32\netcfg-650036094.txt
2013-12-15 15:33 - 2013-12-15 15:33 - 00000117 _____ C:\Windows\system32\netcfg-647627969.txt
2013-12-15 15:25 - 2013-12-15 15:25 - 00000117 _____ C:\Windows\system32\netcfg-647128016.txt
2013-12-14 20:18 - 2013-12-14 20:18 - 00000117 _____ C:\Windows\system32\netcfg-578324922.txt
2013-12-14 20:13 - 2013-12-14 20:13 - 00000117 _____ C:\Windows\system32\netcfg-578020954.txt
2013-12-14 20:12 - 2013-12-14 20:12 - 00000117 _____ C:\Windows\system32\netcfg-577966454.txt
2013-12-14 16:46 - 2013-12-14 16:46 - 00000117 _____ C:\Windows\system32\netcfg-565654719.txt
2013-12-14 13:07 - 2013-12-14 13:07 - 00000117 _____ C:\Windows\system32\netcfg-552470360.txt
2013-12-14 12:56 - 2013-12-11 19:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\Windows\system32\netcfg-551497860.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\Windows\system32\netcfg-551478954.txt
2013-12-10 19:35 - 2013-11-24 21:18 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-09 20:48 - 2013-12-09 20:48 - 00000117 _____ C:\Windows\system32\netcfg-148135391.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\Windows\system32\netcfg-147392172.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\Windows\system32\netcfg-147368750.txt
2013-12-08 19:09 - 2013-12-08 19:09 - 00000117 _____ C:\Windows\system32\netcfg-55800172.txt
2013-12-07 21:15 - 2013-12-07 21:15 - 00000117 _____ C:\Windows\system32\netcfg--22984171.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\Windows\system32\netcfg--205948000.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\Windows\system32\netcfg--205923781.txt
2013-12-05 18:24 - 2013-12-05 18:24 - 00000117 _____ C:\Windows\system32\netcfg--206053812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\Windows\system32\netcfg--206265812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\Windows\system32\netcfg--206264156.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\Windows\system32\netcfg--207467218.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\Windows\system32\netcfg--207465437.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\Windows\system32\netcfg--207628796.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\Windows\system32\netcfg--207627015.txt
2013-12-05 17:55 - 2013-12-05 17:55 - 00000117 _____ C:\Windows\system32\netcfg--207798468.txt
2013-12-03 17:44 - 2013-12-03 17:44 - 00000117 _____ C:\Windows\system32\netcfg--381272406.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\Windows\system32\netcfg--381683109.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\Windows\system32\netcfg--381674156.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\Windows\system32\netcfg--382036625.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\Windows\system32\netcfg--382034843.txt
2013-12-03 17:25 - 2013-12-03 17:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2013-12-01 13:40 - 2013-12-01 13:40 - 00000117 _____ C:\Windows\system32\netcfg--568691640.txt
2013-12-01 13:39 - 2013-12-01 13:39 - 00000117 _____ C:\Windows\system32\netcfg--568738140.txt
2013-12-01 13:32 - 2013-12-01 13:32 - 00000117 _____ C:\Windows\system32\netcfg--569170109.txt
2013-12-01 13:32 - 2013-12-01 13:32 - 00000117 _____ C:\Windows\system32\netcfg--569168343.txt
2013-12-01 13:26 - 2013-12-01 13:26 - 00000117 _____ C:\Windows\system32\netcfg--569510375.txt
2013-12-01 13:26 - 2013-12-01 13:26 - 00000117 _____ C:\Windows\system32\netcfg--569508578.txt
2013-12-01 12:56 - 2013-12-01 12:56 - 00000117 _____ C:\Windows\system32\netcfg--571325156.txt
2013-12-01 12:52 - 2013-12-01 12:52 - 00000117 _____ C:\Windows\system32\netcfg--571576218.txt
2013-12-01 12:49 - 2013-12-01 12:49 - 00000117 _____ C:\Windows\system32\netcfg--571761109.txt
2013-12-01 12:49 - 2013-12-01 12:49 - 00000117 _____ C:\Windows\system32\netcfg--571756828.txt
2013-12-01 12:36 - 2013-12-01 12:36 - 00000117 _____ C:\Windows\system32\netcfg--572545203.txt
2013-12-01 12:36 - 2013-12-01 12:36 - 00000117 _____ C:\Windows\system32\netcfg--572535828.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572779625.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572768078.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572766281.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572742578.txt
2013-12-01 12:32 - 2013-12-01 12:32 - 00000117 _____ C:\Windows\system32\netcfg--572740781.txt
2013-12-01 12:31 - 2013-12-01 12:31 - 00000117 _____ C:\Windows\system32\netcfg--572800125.txt
2013-12-01 12:26 - 2013-12-01 12:26 - 00000117 _____ C:\Windows\system32\netcfg--573126125.txt
2013-12-01 12:26 - 2013-12-01 12:26 - 00000117 _____ C:\Windows\system32\netcfg--573124578.txt
2013-12-01 12:24 - 2013-12-01 12:24 - 00000117 _____ C:\Windows\system32\netcfg--573257500.txt
2013-12-01 12:24 - 2013-12-01 12:24 - 00000117 _____ C:\Windows\system32\netcfg--573255734.txt
2013-12-01 12:06 - 2013-12-01 12:06 - 00000117 _____ C:\Windows\system32\netcfg--574313359.txt
2013-11-30 11:41 - 2013-11-30 11:41 - 00000117 _____ C:\Windows\system32\netcfg--662222953.txt
2013-11-30 11:38 - 2013-11-30 11:38 - 00000117 _____ C:\Windows\system32\netcfg--662416046.txt
2013-11-30 11:38 - 2013-11-30 11:38 - 00000117 _____ C:\Windows\system32\netcfg--662398718.txt
2013-11-30 11:30 - 2013-11-30 11:30 - 00000117 _____ C:\Windows\system32\netcfg--662899609.txt
2013-11-30 11:30 - 2013-11-30 11:30 - 00000117 _____ C:\Windows\system32\netcfg--662886109.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663063718.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663061984.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663054546.txt
2013-11-30 11:27 - 2013-11-30 11:27 - 00000117 _____ C:\Windows\system32\netcfg--663039765.txt
2013-11-30 10:33 - 2013-11-30 10:33 - 00000117 _____ C:\Windows\system32\netcfg--666309421.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666500546.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666498765.txt
2013-11-30 10:30 - 2013-11-30 10:30 - 00000117 _____ C:\Windows\system32\netcfg--666463546.txt
2013-11-27 21:35 - 2013-11-27 21:35 - 00000117 _____ C:\Windows\system32\netcfg--885781578.txt
2013-11-27 21:35 - 2013-11-27 21:35 - 00000117 _____ C:\Windows\system32\netcfg--885779859.txt
2013-11-27 21:21 - 2013-11-27 21:21 - 00000117 _____ C:\Windows\system32\netcfg--886580437.txt
2013-11-25 19:59 - 2013-11-25 19:59 - 00000117 _____ C:\Windows\system32\netcfg--1064321750.txt

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.3308.dll


Some content of TEMP:
====================
C:\Users\Ute\AppData\Local\Temp\BackupSetup.exe
C:\Users\Ute\AppData\Local\Temp\Creative Cloud Helper.exe
C:\Users\Ute\AppData\Local\Temp\Foxit Updater.exe
C:\Users\Ute\AppData\Local\Temp\fp_pl_pfs_installer-1.exe
C:\Users\Ute\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Ute\AppData\Local\Temp\ICReinstall_ZipOpenerSetup.exe
C:\Users\Ute\AppData\Local\Temp\ose00000.exe
C:\Users\Ute\AppData\Local\Temp\Quarantine.exe
C:\Users\Ute\AppData\Local\Temp\uninst1.exe
C:\Users\Ute\AppData\Local\Temp\vcredist_x64.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-19 19:51

==================== End Of Log ============================
--- --- ---

--- --- ---


Danke und noch ein schönes "Rest"-Weihnachten.
Ute

schrauber 26.12.2013 14:33

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

ute4 29.12.2013 14:01
Hallo Schrauber,

im Anhang die log-Files (alle). Mein Sophos meldet immer noch: Adware/PUA Install Core click Software wurde erkannt und in Quarantäne verschoben.

Viele Grüße und danke
Ute

schrauber 30.12.2013 10:52
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307



Wo meldet Sophos das?

ute4 30.12.2013 20:23
Hallo Schrauber,

sorry, da stand man solls als zip im Anhang senden.

Ich hab Sophos das Problem bereinigen lassen. So wie es aussieht, scheint Ruhe zu herrschen.

Viele Grüße
Ute

schrauber 31.12.2013 15:14
Glaub ich zwar irgendwie nit dran, aber ok :)

ute4 01.01.2014 16:57
Hallo Schrauber,

also ich meinte nur, dass nun die Meldung von Sophos nicht mehr kommt.
Ob der Rest ok ist, musst natürlich du beurteilen.
Lg Ute

schrauber 02.01.2014 09:39
Dann poste mal ein frisches FRST log. Gibt es noch Probleme?

ute4 02.01.2014 13:43
Hallo Schrauber,
nein, es gibt keine Probleme mehr.
Hier das log-File:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2014 01
Ran by Ute (administrator) on UTESPC on 02-01-2014 12:17:10
Running from C:\Users\Ute\Desktop
Windows 8.1 Pro N (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(3S-Smart Software Solutions GmbH) C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\GatewayService.exe
(3S-Smart Software Solutions GmbH) C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\ServiceControl.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
(Star Finanz - Software Entwicklung und Vertriebs GmbH) C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(3S-Smart Software Solutions GmbH) C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\GatewaySysTray.exe
(3S-Smart Software Solutions GmbH) C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\CODESYSControlSysTray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Samsung PanelMgr] - C:\Windows\Samsung\PanelMgr\SSMMgr.exe [688128 2011-08-01] ()
HKLM-x32\...\Run: [Sophos AutoUpdate Monitor] - C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe [900160 2013-10-16] (Sophos Limited)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-10-28] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376 2013-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCEPServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GatewaySysTray] - C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\GatewaySysTray.exe [711168 2013-05-28] (3S-Smart Software Solutions GmbH)
HKLM-x32\...\Run: [CODESYSControlSysTray] - C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\CODESYSControlSysTray.exe [573952 2013-05-13] (3S-Smart Software Solutions GmbH)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-10-28] (Samsung)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-10-28] (Samsung)
HKU\Timo\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-09-05] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x15FEFA665EE8CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Winsock: Catalog9 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 09 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9-x64 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 09 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Tcpip\..\Interfaces\{028FA9F4-24F0-4DA5-950D-A80695208D50}: [NameServer]192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default
FF DefaultSearchEngine: Amazon
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FRITZ!Box AddOn - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\fb_add_on@avm.de
FF Extension: Molecular Viewer Plugin - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\npcml@scarletline.com
FF Extension: Adblock Plus - C:\Users\Ute\AppData\Roaming\Mozilla\Firefox\Profiles\mloo309d.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations)
S3 CODESYS Control Win V3; C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\CODESYSControlService.exe [120320 2013-05-13] (3S-Smart Software Solutions GmbH)
R2 CODESYS Gateway V3; C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\GatewayService.exe [656384 2013-05-28] (3S-Smart Software Solutions GmbH)
R2 CODESYS ServiceControl; C:\Program Files (x86)\Festo\CODESYSV3\GatewayPLC\ServiceControl.exe [275968 2013-05-13] (3S-Smart Software Solutions GmbH)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 SAVAdminService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [216640 2013-10-16] (Sophos Limited)
R2 SAVService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [139840 2013-10-16] (Sophos Limited)
R2 Sophos AutoUpdate Service; C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe [232512 2013-10-16] (Sophos Limited)
R2 Sophos Web Control Service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe [357400 2013-10-16] (Sophos Limited)
R2 StarMoney 8.0 OnlineUpdate; C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe [699680 2012-12-21] (Star Finanz - Software Entwicklung und Vertriebs GmbH)
R2 swi_service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [2869824 2013-10-16] (Sophos Limited)
S2 swi_update_64; C:\ProgramData\Sophos\Web Intelligence\swi_update_64.exe [1998400 2013-10-16] (Sophos Limited)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-26] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-11-14] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R1 SAVOnAccess; C:\Windows\System32\DRIVERS\savonaccess.sys [144672 2013-10-16] (Sophos Limited)
S3 sdcfilter; C:\Windows\system32\DRIVERS\sdcfilter.sys [36640 2013-10-16] (Sophos Limited)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-26] (Microsoft Corporation)
S4 SophosBootDriver; C:\Windows\system32\DRIVERS\SophosBootDriver.sys [25608 2010-03-02] (Sophos Plc)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-29 13:56 - 2013-12-29 13:56 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-12-29 13:39 - 2014-01-02 12:17 - 00015193 _____ C:\Users\Ute\Desktop\FRST.txt
2013-12-29 13:39 - 2014-01-02 12:17 - 00000000 ____D C:\Users\Ute\Desktop\FRST-OlderVersion
2013-12-29 13:36 - 2013-12-28 15:05 - 00891200 _____ C:\Users\Ute\Desktop\SecurityCheck.exe
2013-12-29 12:26 - 2013-12-29 12:26 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-27 10:11 - 2013-12-27 15:08 - 00000000 __RDO C:\Users\Ute\SkyDrive
2013-12-27 10:08 - 2013-12-27 15:14 - 00000652 __RSH C:\Users\Ute\ntuser.pol
2013-12-27 10:08 - 2013-12-27 10:08 - 00001495 _____ C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-27 10:07 - 2013-12-27 10:07 - 00000020 ___SH C:\Users\Ute\ntuser.ini
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-26 16:30 - 2013-12-26 16:30 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-26 16:28 - 2013-12-26 16:28 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-12-26 16:20 - 2013-12-26 16:20 - 00000000 ____D C:\Users\Default\AppData\Roaming\CoDeSys
2013-12-26 16:20 - 2013-12-26 16:20 - 00000000 ____D C:\Users\Default User\AppData\Roaming\CoDeSys
2013-12-26 16:16 - 2013-12-26 16:16 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-26 16:15 - 2013-12-27 15:14 - 00000000 ____D C:\Users\Ute
2013-12-26 16:15 - 2013-12-26 16:31 - 00040008 _____ C:\WINDOWS\diagwrn.xml
2013-12-26 16:15 - 2013-12-26 16:31 - 00040008 _____ C:\WINDOWS\diagerr.xml
2013-12-26 16:15 - 2013-12-26 16:27 - 00000000 ____D C:\Users\Timo
2013-12-26 16:15 - 2013-12-26 16:16 - 00000000 ___RD C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-26 16:15 - 2013-12-26 16:16 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-26 16:15 - 2013-12-26 16:16 - 00000000 ___RD C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Vorlagen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Startmenü
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Netzwerkumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Lokale Einstellungen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Eigene Dateien
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Druckumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Documents\Eigene Musik
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Documents\Eigene Bilder
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\AppData\Local\Verlauf
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\AppData\Local\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Vorlagen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Startmenü
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Netzwerkumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Lokale Einstellungen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Eigene Dateien
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Druckumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Documents\Eigene Musik
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Documents\Eigene Bilder
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\AppData\Local\Verlauf
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\AppData\Local\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Anwendungsdaten
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-26 16:15 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-26 16:11 - 2014-01-02 12:10 - 01671947 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-26 16:11 - 2013-12-26 16:24 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2013-12-26 16:11 - 2013-12-26 16:24 - 00000000 ____D C:\WINDOWS\system32\NV
2013-12-26 16:11 - 2013-12-26 16:19 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-26 16:11 - 2013-08-29 23:43 - 06599968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-12-26 16:11 - 2013-08-29 23:43 - 03452192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-12-26 16:11 - 2013-08-29 23:43 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-12-26 16:11 - 2013-08-29 23:43 - 01042208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2013-12-26 16:11 - 2013-08-29 23:43 - 00920864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-12-26 16:11 - 2013-08-29 23:43 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-12-26 16:11 - 2013-08-29 23:43 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2013-12-26 16:11 - 2013-08-29 23:43 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-12-26 16:11 - 2013-08-29 21:28 - 03349466 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-12-26 16:10 - 2013-12-26 16:19 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-26 16:10 - 2013-12-26 16:19 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-26 16:10 - 2013-12-26 16:10 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-26 16:10 - 2013-12-26 16:10 - 00000000 ____D C:\Program Files\Intel
2013-12-26 16:10 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-12-26 16:10 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-12-26 16:08 - 2013-12-28 13:29 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-26 16:07 - 2013-12-26 16:07 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-26 16:07 - 2013-12-26 16:07 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-26 16:06 - 2013-12-26 16:06 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-26 16:06 - 2013-12-26 16:06 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-26 16:06 - 2013-12-26 16:06 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-26 16:06 - 2013-12-26 16:06 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-26 16:06 - 2013-12-26 16:06 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-26 16:05 - 2013-12-26 16:05 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\Program Files\MSBuild
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-26 16:03 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-12-26 16:03 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-26 16:03 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-12-26 16:03 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-12-26 16:03 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-26 16:03 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-12-26 15:46 - 2013-12-26 16:31 - 00006597 _____ C:\WINDOWS\comsetup.log
2013-12-26 14:49 - 2013-12-26 14:49 - 00000000 ____D C:\Users\Ute\CODESYS OSCAT Network
2013-12-26 14:47 - 2013-12-26 14:47 - 00000000 ____D C:\Users\Ute\CODESYS OSCAT Basic
2013-12-26 14:38 - 2013-12-26 14:38 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\CoDeSys
2013-12-26 14:38 - 2013-12-26 14:38 - 00000000 ____D C:\Users\Timo\AppData\Roaming\CoDeSys
2013-12-26 14:27 - 2013-12-26 14:27 - 00000000 ____D C:\Users\Ute\AppData\Local\3S-Smart_Software_Solutio
2013-12-26 14:24 - 2013-12-26 14:24 - 00000000 ____D C:\Users\Ute\AppData\Roaming\OnlineHelp
2013-12-26 14:16 - 2013-12-26 14:16 - 00000000 ____D C:\Users\Ute\AppData\Roaming\CoDeSys
2013-12-26 14:15 - 2013-12-26 14:15 - 00002397 _____ C:\Users\Public\Desktop\CODESYS V3.5 SP3 Patch 2 pbF.lnk
2013-12-26 14:15 - 2013-12-26 14:15 - 00000000 ____D C:\ProgramData\CoDeSysOPC
2013-12-26 14:15 - 2013-12-26 14:15 - 00000000 ____D C:\ProgramData\CODESYS - Application Composer
2013-12-26 14:15 - 2013-12-26 14:15 - 00000000 ____D C:\ProgramData\AP
2013-12-26 14:11 - 2013-12-26 14:32 - 00000000 ____D C:\ProgramData\CODESYS
2013-12-26 14:11 - 2013-12-26 14:11 - 00000000 ____D C:\Program Files (x86)\Festo
2013-12-26 13:43 - 2013-12-26 13:43 - 00000117 _____ C:\WINDOWS\system32\netcfg-69582765.txt
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____D C:\Users\Ute\AppData\Local\Intel_Corporation
2013-12-26 11:38 - 2013-12-26 11:38 - 00000117 _____ C:\WINDOWS\system32\netcfg-62104953.txt
2013-12-26 11:37 - 2013-12-26 11:37 - 00000117 _____ C:\WINDOWS\system32\netcfg-61993500.txt
2013-12-26 11:20 - 2013-12-26 11:20 - 00000117 _____ C:\WINDOWS\system32\netcfg-61003875.txt
2013-12-25 20:48 - 2013-12-25 20:48 - 00000117 _____ C:\WINDOWS\system32\netcfg-8677859.txt
2013-12-25 20:07 - 2013-12-25 20:07 - 00000117 _____ C:\WINDOWS\system32\netcfg-6192656.txt
2013-12-25 20:04 - 2013-12-25 20:04 - 00000117 _____ C:\WINDOWS\system32\netcfg-6048078.txt
2013-12-25 20:01 - 2013-12-25 20:01 - 00000117 _____ C:\WINDOWS\system32\netcfg-5843078.txt
2013-12-25 20:01 - 2013-12-25 20:01 - 00000117 _____ C:\WINDOWS\system32\netcfg-5841281.txt
2013-12-25 19:59 - 2013-12-25 19:59 - 00000117 _____ C:\WINDOWS\system32\netcfg-5753750.txt
2013-12-25 19:59 - 2013-12-25 19:59 - 00000117 _____ C:\WINDOWS\system32\netcfg-5744609.txt
2013-12-25 19:44 - 2013-12-25 19:44 - 00000117 _____ C:\WINDOWS\system32\netcfg-4852515.txt
2013-12-25 19:44 - 2013-12-25 19:44 - 00000117 _____ C:\WINDOWS\system32\netcfg-4852109.txt
2013-12-25 19:20 - 2013-12-25 19:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-25 19:19 - 2013-12-01 14:42 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-25 19:10 - 2013-12-26 16:16 - 00000000 ___RD C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-25 19:10 - 2013-12-26 16:16 - 00000000 ___RD C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-25 19:10 - 2013-12-25 19:10 - 00000000 ____D C:\Users\Timo\AppData\Local\Adobe
2013-12-25 19:10 - 2013-12-25 19:10 - 00000000 ____D C:\Program Files (x86)\Intel
2013-12-25 19:10 - 2013-12-25 19:10 - 00000000 ____D C:\Intel
2013-12-25 19:09 - 2013-12-25 19:10 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Adobe
2013-12-25 19:08 - 2013-12-26 16:16 - 00000000 ____D C:\Users\Timo\AppData\Local\Packages
2013-12-25 19:08 - 2013-12-25 19:08 - 00000000 ____D C:\Users\Timo\AppData\Local\VirtualStore
2013-12-25 18:45 - 2013-05-04 05:51 - 00014848 ____N (Microsoft) C:\WINDOWS\system32\rars.rs
2013-12-25 18:45 - 2013-05-04 05:10 - 00014848 ____N (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2013-12-25 18:16 - 2013-12-25 18:16 - 00001095 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2013-12-25 18:16 - 2013-12-25 18:16 - 00000000 ____D C:\Program Files (x86)\FOXIT SOFTWARE
2013-12-25 17:31 - 2013-12-25 17:31 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-25 17:25 - 2013-12-25 17:25 - 01034531 _____ (Thisisu) C:\Users\Ute\Desktop\JRT.exe
2013-12-25 17:12 - 2013-12-25 17:12 - 01233962 _____ C:\Users\Ute\Desktop\adwcleaner.exe
2013-12-25 16:32 - 2013-12-25 16:32 - 00001154 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\Users\Ute\AppData\Roaming\Malwarebytes
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-25 16:32 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-12-25 16:24 - 2013-12-25 16:24 - 00000117 _____ C:\WINDOWS\system32\netcfg-757439968.txt
2013-12-25 11:29 - 2013-12-25 11:29 - 00000117 _____ C:\WINDOWS\system32\netcfg-739764515.txt
2013-12-25 10:38 - 2013-12-25 10:38 - 00000117 _____ C:\WINDOWS\system32\netcfg-736684203.txt
2013-12-24 21:52 - 2013-12-24 21:52 - 00000132 _____ C:\Users\Ute\AppData\Roaming\Adobe IllExport-Filter CC - Voreinstellungen
2013-12-24 21:19 - 2013-12-24 21:19 - 00000117 _____ C:\WINDOWS\system32\netcfg-688755234.txt
2013-12-24 14:33 - 2013-12-26 16:22 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-12-24 14:33 - 2013-12-24 14:33 - 00003494 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-UtesPC-Ute
2013-12-24 14:33 - 2013-12-24 14:33 - 00000000 ____D C:\Users\Ute\AppData\Roaming\PDAppFlex
2013-12-24 13:48 - 2013-12-24 13:57 - 00000000 ____D C:\Program Files\Adobe
2013-12-24 13:45 - 2013-12-24 13:56 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-24 13:07 - 2013-12-24 13:48 - 00000000 ____D C:\ProgramData\Adobe
2013-12-24 13:06 - 2013-12-24 13:06 - 00001074 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2013-12-24 13:05 - 2013-12-24 13:57 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-24 12:51 - 2014-01-01 19:35 - 00000000 ____D C:\Users\Ute\.gimp-2.8
2013-12-24 12:51 - 2013-12-24 12:51 - 00000000 ____D C:\Users\Ute\AppData\Local\gegl-0.2
2013-12-24 12:47 - 2013-12-24 12:48 - 00000000 ____D C:\Program Files\GIMP 2
2013-12-24 12:43 - 2013-12-24 12:43 - 00000117 _____ C:\WINDOWS\system32\netcfg-657816296.txt
2013-12-24 12:42 - 2013-12-24 12:42 - 00000117 _____ C:\WINDOWS\system32\netcfg-657753468.txt
2013-12-22 21:11 - 2013-12-22 21:11 - 00000117 _____ C:\WINDOWS\system32\netcfg-515455984.txt
2013-12-21 15:30 - 2013-12-21 15:30 - 00000117 _____ C:\WINDOWS\system32\netcfg-408638093.txt
2013-12-21 15:30 - 2013-12-21 15:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-21 15:02 - 2013-12-21 15:02 - 00000117 _____ C:\WINDOWS\system32\netcfg-406938156.txt
2013-12-21 15:02 - 2013-12-21 15:02 - 00000117 _____ C:\WINDOWS\system32\netcfg-406936437.txt
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07939584 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06276608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-20 20:41 - 2013-12-20 20:41 - 00000117 _____ C:\WINDOWS\system32\netcfg-340913500.txt
2013-12-20 20:40 - 2013-12-20 20:40 - 00000117 _____ C:\WINDOWS\system32\netcfg-340828406.txt
2013-12-20 20:39 - 2013-12-20 20:39 - 00000117 _____ C:\WINDOWS\system32\netcfg-340782046.txt
2013-12-20 20:39 - 2013-12-20 20:39 - 00000117 _____ C:\WINDOWS\system32\netcfg-340764625.txt
2013-12-20 20:30 - 2013-12-20 20:30 - 00000117 _____ C:\WINDOWS\system32\netcfg-340234609.txt
2013-12-20 20:30 - 2013-12-20 20:30 - 00000117 _____ C:\WINDOWS\system32\netcfg-340201703.txt
2013-12-19 20:15 - 2013-12-19 20:15 - 00000117 _____ C:\WINDOWS\system32\netcfg-252931718.txt
2013-12-19 20:15 - 2013-12-19 20:15 - 00000117 _____ C:\WINDOWS\system32\netcfg-252916437.txt
2013-12-19 19:46 - 2013-12-19 19:46 - 00000117 _____ C:\WINDOWS\system32\netcfg-251188093.txt
2013-12-19 19:42 - 2013-12-19 19:42 - 00000117 _____ C:\WINDOWS\system32\netcfg-250923640.txt
2013-12-19 19:41 - 2013-12-19 19:41 - 00000117 _____ C:\WINDOWS\system32\netcfg-250917078.txt
2013-12-19 19:41 - 2013-12-19 19:41 - 00000117 _____ C:\WINDOWS\system32\netcfg-250915265.txt
2013-12-19 19:39 - 2013-12-19 19:39 - 00000117 _____ C:\WINDOWS\system32\netcfg-250803453.txt
2013-12-19 19:39 - 2013-12-19 19:39 - 00000117 _____ C:\WINDOWS\system32\netcfg-250766968.txt
2013-12-19 19:36 - 2013-12-19 19:36 - 00000117 _____ C:\WINDOWS\system32\netcfg-250619453.txt
2013-12-17 22:19 - 2013-12-17 22:19 - 00000117 _____ C:\WINDOWS\system32\netcfg-87549171.txt
2013-12-17 22:18 - 2013-12-17 22:18 - 00000117 _____ C:\WINDOWS\system32\netcfg-87533562.txt
2013-12-17 21:51 - 2013-12-17 21:51 - 00000117 _____ C:\WINDOWS\system32\netcfg-85899156.txt
2013-12-17 21:37 - 2013-12-17 21:37 - 00000117 _____ C:\WINDOWS\system32\netcfg-85041812.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\WINDOWS\system32\netcfg-84990609.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\WINDOWS\system32\netcfg-84984187.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\WINDOWS\system32\netcfg-84982468.txt
2013-12-17 21:35 - 2013-12-17 21:35 - 00000117 _____ C:\WINDOWS\system32\netcfg-84928578.txt
2013-12-17 21:35 - 2013-12-17 21:35 - 00000117 _____ C:\WINDOWS\system32\netcfg-84927156.txt
2013-12-17 21:33 - 2013-12-17 21:33 - 00000117 _____ C:\WINDOWS\system32\netcfg-84802734.txt
2013-12-16 22:04 - 2013-12-16 22:04 - 00000117 _____ C:\WINDOWS\system32\netcfg-280593.txt
2013-12-16 21:53 - 2013-12-25 17:15 - 00000000 ____D C:\AdwCleaner
2013-12-16 21:27 - 2014-01-02 12:17 - 00000000 ____D C:\FRST
2013-12-16 21:20 - 2014-01-02 12:17 - 01931426 _____ (Farbar) C:\Users\Ute\Desktop\FRST64.exe
2013-12-15 16:13 - 2013-12-15 16:13 - 00000117 _____ C:\WINDOWS\system32\netcfg-650036094.txt
2013-12-15 15:33 - 2013-12-15 15:33 - 00000117 _____ C:\WINDOWS\system32\netcfg-647627969.txt
2013-12-15 15:25 - 2013-12-15 15:25 - 00000117 _____ C:\WINDOWS\system32\netcfg-647128016.txt
2013-12-15 00:42 - 2013-12-15 00:34 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:42 - 2013-12-15 00:34 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:42 - 2013-12-15 00:33 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-14 20:18 - 2013-12-14 20:18 - 00000117 _____ C:\WINDOWS\system32\netcfg-578324922.txt
2013-12-14 20:13 - 2013-12-14 20:13 - 00000117 _____ C:\WINDOWS\system32\netcfg-578020954.txt
2013-12-14 20:12 - 2013-12-14 20:12 - 00000117 _____ C:\WINDOWS\system32\netcfg-577966454.txt
2013-12-14 16:46 - 2013-12-14 16:46 - 00000117 _____ C:\WINDOWS\system32\netcfg-565654719.txt
2013-12-14 13:07 - 2013-12-14 13:07 - 00000117 _____ C:\WINDOWS\system32\netcfg-552470360.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\WINDOWS\system32\netcfg-551497860.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\WINDOWS\system32\netcfg-551478954.txt
2013-12-11 19:36 - 2013-12-14 12:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-09 20:48 - 2013-12-09 20:48 - 00000117 _____ C:\WINDOWS\system32\netcfg-148135391.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\WINDOWS\system32\netcfg-147392172.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\WINDOWS\system32\netcfg-147368750.txt
2013-12-08 19:09 - 2013-12-08 19:09 - 00000117 _____ C:\WINDOWS\system32\netcfg-55800172.txt
2013-12-07 21:15 - 2013-12-07 21:15 - 00000117 _____ C:\WINDOWS\system32\netcfg--22984171.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\WINDOWS\system32\netcfg--205948000.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\WINDOWS\system32\netcfg--205923781.txt
2013-12-05 18:24 - 2013-12-05 18:24 - 00000117 _____ C:\WINDOWS\system32\netcfg--206053812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\WINDOWS\system32\netcfg--206265812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\WINDOWS\system32\netcfg--206264156.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\WINDOWS\system32\netcfg--207467218.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\WINDOWS\system32\netcfg--207465437.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\WINDOWS\system32\netcfg--207628796.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\WINDOWS\system32\netcfg--207627015.txt
2013-12-05 17:55 - 2013-12-05 17:55 - 00000117 _____ C:\WINDOWS\system32\netcfg--207798468.txt
2013-12-03 17:44 - 2013-12-03 17:44 - 00000117 _____ C:\WINDOWS\system32\netcfg--381272406.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\WINDOWS\system32\netcfg--381683109.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\WINDOWS\system32\netcfg--381674156.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\WINDOWS\system32\netcfg--382036625.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\WINDOWS\system32\netcfg--382034843.txt
2013-12-03 17:25 - 2013-12-03 17:25 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf

==================== One Month Modified Files and Folders =======

2014-01-02 12:17 - 2013-12-29 13:39 - 00015193 _____ C:\Users\Ute\Desktop\FRST.txt
2014-01-02 12:17 - 2013-12-29 13:39 - 00000000 ____D C:\Users\Ute\Desktop\FRST-OlderVersion
2014-01-02 12:17 - 2013-12-16 21:27 - 00000000 ____D C:\FRST
2014-01-02 12:17 - 2013-12-16 21:20 - 01931426 _____ (Farbar) C:\Users\Ute\Desktop\FRST64.exe
2014-01-02 12:15 - 2013-12-26 16:11 - 01671947 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-02 12:15 - 2013-11-14 08:28 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-02 12:15 - 2013-11-14 08:14 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-02 12:15 - 2013-11-14 08:14 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-02 12:15 - 2013-11-01 11:46 - 00000000 ____D C:\Users\Ute\AppData\Local\Adobe
2014-01-02 12:09 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-01 19:35 - 2013-12-24 12:51 - 00000000 ____D C:\Users\Ute\.gimp-2.8
2014-01-01 19:35 - 2013-11-24 21:18 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-01 19:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-12-30 18:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-29 18:50 - 2013-10-28 19:50 - 00000000 _____ C:\WINDOWS\system32\vireng.log
2013-12-29 18:07 - 2013-08-16 23:14 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2707821562-3393655627-2175517270-1001
2013-12-29 17:44 - 2013-11-13 23:20 - 00002204 _____ C:\WINDOWS\PFRO.log
2013-12-29 14:02 - 2013-08-22 14:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2013-12-29 13:56 - 2013-12-29 13:56 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-12-29 12:33 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-12-29 12:26 - 2013-12-29 12:26 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-29 12:26 - 2013-08-16 23:08 - 00000000 ____D C:\Users\Ute\AppData\Local\Packages
2013-12-29 12:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-12-28 15:05 - 2013-12-29 13:36 - 00891200 _____ C:\Users\Ute\Desktop\SecurityCheck.exe
2013-12-28 13:29 - 2013-12-26 16:08 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-27 15:14 - 2013-12-27 10:08 - 00000652 __RSH C:\Users\Ute\ntuser.pol
2013-12-27 15:14 - 2013-12-26 16:15 - 00000000 ____D C:\Users\Ute
2013-12-27 15:08 - 2013-12-27 10:11 - 00000000 __RDO C:\Users\Ute\SkyDrive
2013-12-27 10:10 - 2013-08-22 15:45 - 00369183 _____ C:\WINDOWS\setupact.log
2013-12-27 10:10 - 2013-08-22 15:45 - 00000262 _____ C:\WINDOWS\setuperr.log
2013-12-27 10:08 - 2013-12-27 10:08 - 00001495 _____ C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-27 10:08 - 2013-08-16 23:08 - 00000000 ___RD C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-27 10:08 - 2013-08-16 23:08 - 00000000 ___RD C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-27 10:07 - 2013-12-27 10:07 - 00000020 ___SH C:\Users\Ute\ntuser.ini
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-26 16:32 - 2013-12-26 16:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-26 16:32 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2013-12-26 16:32 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2013-12-26 16:31 - 2013-12-26 16:15 - 00040008 _____ C:\WINDOWS\diagwrn.xml
2013-12-26 16:31 - 2013-12-26 16:15 - 00040008 _____ C:\WINDOWS\diagerr.xml
2013-12-26 16:31 - 2013-12-26 15:46 - 00006597 _____ C:\WINDOWS\comsetup.log
2013-12-26 16:31 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2013-12-26 16:30 - 2013-12-26 16:30 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-26 16:28 - 2013-12-26 16:28 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-12-26 16:27 - 2013-12-26 16:15 - 00000000 ____D C:\Users\Timo
2013-12-26 16:27 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2013-12-26 16:27 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-12-26 16:24 - 2013-12-26 16:11 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2013-12-26 16:24 - 2013-12-26 16:11 - 00000000 ____D C:\WINDOWS\system32\NV
2013-12-26 16:24 - 2013-08-22 15:44 - 05144536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-26 16:22 - 2013-12-24 14:33 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-12-26 16:22 - 2013-11-14 08:16 - 00000000 ____D C:\WINDOWS\ShellNew
2013-12-26 16:22 - 2013-08-22 14:25 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2013-12-26 16:20 - 2013-12-26 16:20 - 00000000 ____D C:\Users\Default\AppData\Roaming\CoDeSys
2013-12-26 16:20 - 2013-12-26 16:20 - 00000000 ____D C:\Users\Default User\AppData\Roaming\CoDeSys
2013-12-26 16:20 - 2013-11-14 08:14 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-12-26 16:20 - 2013-11-14 08:14 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-12-26 16:20 - 2013-11-14 08:14 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-12-26 16:20 - 2013-08-22 16:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2013-12-26 16:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-12-26 16:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-12-26 16:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-12-26 16:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-12-26 16:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-12-26 16:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2013-12-26 16:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-12-26 16:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-12-26 16:20 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-12-26 16:20 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2013-12-26 16:19 - 2013-12-26 16:11 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-26 16:19 - 2013-12-26 16:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-26 16:19 - 2013-12-26 16:10 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-26 16:19 - 2013-08-22 16:42 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-12-26 16:19 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-12-26 16:19 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-12-26 16:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2013-12-26 16:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2013-12-26 16:19 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-26 16:19 - 2013-08-16 23:08 - 00000000 ____D C:\ProgramData\PRICache
2013-12-26 16:16 - 2013-12-26 16:16 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-26 16:16 - 2013-12-26 16:15 - 00000000 ___RD C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-26 16:16 - 2013-12-26 16:15 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-26 16:16 - 2013-12-26 16:15 - 00000000 ___RD C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-26 16:16 - 2013-12-25 19:10 - 00000000 ___RD C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 16:16 - 2013-12-25 19:10 - 00000000 ___RD C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-26 16:16 - 2013-12-25 19:08 - 00000000 ____D C:\Users\Timo\AppData\Local\Packages
2013-12-26 16:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Vorlagen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Startmenü
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Netzwerkumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Lokale Einstellungen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Eigene Dateien
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Druckumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Documents\Eigene Musik
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Documents\Eigene Bilder
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\AppData\Local\Verlauf
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\AppData\Local\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Ute\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Vorlagen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Startmenü
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Netzwerkumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Lokale Einstellungen
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Eigene Dateien
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Druckumgebung
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Documents\Eigene Musik
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Documents\Eigene Bilder
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\AppData\Local\Verlauf
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\AppData\Local\Anwendungsdaten
2013-12-26 16:15 - 2013-12-26 16:15 - 00000000 _SHDL C:\Users\Timo\Anwendungsdaten
2013-12-26 16:13 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-12-26 16:10 - 2013-12-26 16:10 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-26 16:10 - 2013-12-26 16:10 - 00000000 ____D C:\Program Files\Intel
2013-12-26 16:07 - 2013-12-26 16:07 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-26 16:07 - 2013-12-26 16:07 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-26 16:07 - 2013-12-26 16:07 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-26 16:07 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-12-26 16:06 - 2013-12-26 16:06 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-26 16:06 - 2013-12-26 16:06 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-26 16:06 - 2013-12-26 16:06 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-26 16:06 - 2013-12-26 16:06 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-26 16:06 - 2013-12-26 16:06 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-26 16:06 - 2013-12-26 16:06 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-26 16:06 - 2013-12-26 16:06 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-26 16:06 - 2013-12-26 16:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-26 16:06 - 2013-12-26 16:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-26 16:06 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-12-26 16:06 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-12-26 16:06 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2013-12-26 16:06 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2013-12-26 16:06 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2013-12-26 16:05 - 2013-12-26 16:05 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\Program Files\MSBuild
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-26 16:03 - 2013-12-26 16:03 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-26 15:53 - 2013-08-17 17:46 - 01940073 _____ C:\WINDOWS\WindowsUpdate (1).log
2013-12-26 15:33 - 2012-07-26 09:13 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-12-26 14:49 - 2013-12-26 14:49 - 00000000 ____D C:\Users\Ute\CODESYS OSCAT Network
2013-12-26 14:47 - 2013-12-26 14:47 - 00000000 ____D C:\Users\Ute\CODESYS OSCAT Basic
2013-12-26 14:38 - 2013-12-26 14:38 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\CoDeSys
2013-12-26 14:38 - 2013-12-26 14:38 - 00000000 ____D C:\Users\Timo\AppData\Roaming\CoDeSys
2013-12-26 14:32 - 2013-12-26 14:11 - 00000000 ____D C:\ProgramData\CODESYS
2013-12-26 14:27 - 2013-12-26 14:27 - 00000000 ____D C:\Users\Ute\AppData\Local\3S-Smart_Software_Solutio
2013-12-26 14:24 - 2013-12-26 14:24 - 00000000 ____D C:\Users\Ute\AppData\Roaming\OnlineHelp
2013-12-26 14:16 - 2013-12-26 14:16 - 00000000 ____D C:\Users\Ute\AppData\Roaming\CoDeSys
2013-12-26 14:15 - 2013-12-26 14:15 - 00002397 _____ C:\Users\Public\Desktop\CODESYS V3.5 SP3 Patch 2 pbF.lnk
2013-12-26 14:15 - 2013-12-26 14:15 - 00000000 ____D C:\ProgramData\CoDeSysOPC
2013-12-26 14:15 - 2013-12-26 14:15 - 00000000 ____D C:\ProgramData\CODESYS - Application Composer
2013-12-26 14:15 - 2013-12-26 14:15 - 00000000 ____D C:\ProgramData\AP
2013-12-26 14:14 - 2013-09-07 10:53 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-26 14:11 - 2013-12-26 14:11 - 00000000 ____D C:\Program Files (x86)\Festo
2013-12-26 13:43 - 2013-12-26 13:43 - 00000117 _____ C:\WINDOWS\system32\netcfg-69582765.txt
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____D C:\Users\Ute\AppData\Local\Intel_Corporation
2013-12-26 11:38 - 2013-12-26 11:38 - 00000117 _____ C:\WINDOWS\system32\netcfg-62104953.txt
2013-12-26 11:37 - 2013-12-26 11:37 - 00000117 _____ C:\WINDOWS\system32\netcfg-61993500.txt
2013-12-26 11:20 - 2013-12-26 11:20 - 00000117 _____ C:\WINDOWS\system32\netcfg-61003875.txt
2013-12-25 20:48 - 2013-12-25 20:48 - 00000117 _____ C:\WINDOWS\system32\netcfg-8677859.txt
2013-12-25 20:07 - 2013-12-25 20:07 - 00000117 _____ C:\WINDOWS\system32\netcfg-6192656.txt
2013-12-25 20:04 - 2013-12-25 20:04 - 00000117 _____ C:\WINDOWS\system32\netcfg-6048078.txt
2013-12-25 20:01 - 2013-12-25 20:01 - 00000117 _____ C:\WINDOWS\system32\netcfg-5843078.txt
2013-12-25 20:01 - 2013-12-25 20:01 - 00000117 _____ C:\WINDOWS\system32\netcfg-5841281.txt
2013-12-25 19:59 - 2013-12-25 19:59 - 00000117 _____ C:\WINDOWS\system32\netcfg-5753750.txt
2013-12-25 19:59 - 2013-12-25 19:59 - 00000117 _____ C:\WINDOWS\system32\netcfg-5744609.txt
2013-12-25 19:44 - 2013-12-25 19:44 - 00000117 _____ C:\WINDOWS\system32\netcfg-4852515.txt
2013-12-25 19:44 - 2013-12-25 19:44 - 00000117 _____ C:\WINDOWS\system32\netcfg-4852109.txt
2013-12-25 19:21 - 2013-12-25 19:20 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-25 19:10 - 2013-12-25 19:10 - 00000000 ____D C:\Users\Timo\AppData\Local\Adobe
2013-12-25 19:10 - 2013-12-25 19:10 - 00000000 ____D C:\Program Files (x86)\Intel
2013-12-25 19:10 - 2013-12-25 19:10 - 00000000 ____D C:\Intel
2013-12-25 19:10 - 2013-12-25 19:09 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Adobe
2013-12-25 19:08 - 2013-12-25 19:08 - 00000000 ____D C:\Users\Timo\AppData\Local\VirtualStore
2013-12-25 18:16 - 2013-12-25 18:16 - 00001095 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2013-12-25 18:16 - 2013-12-25 18:16 - 00000000 ____D C:\Program Files (x86)\FOXIT SOFTWARE
2013-12-25 17:31 - 2013-12-25 17:31 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-25 17:25 - 2013-12-25 17:25 - 01034531 _____ (Thisisu) C:\Users\Ute\Desktop\JRT.exe
2013-12-25 17:15 - 2013-12-16 21:53 - 00000000 ____D C:\AdwCleaner
2013-12-25 17:12 - 2013-12-25 17:12 - 01233962 _____ C:\Users\Ute\Desktop\adwcleaner.exe
2013-12-25 16:50 - 2013-08-17 19:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-25 16:32 - 2013-12-25 16:32 - 00001154 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\Users\Ute\AppData\Roaming\Malwarebytes
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-25 16:32 - 2013-12-25 16:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-25 16:24 - 2013-12-25 16:24 - 00000117 _____ C:\WINDOWS\system32\netcfg-757439968.txt
2013-12-25 11:29 - 2013-12-25 11:29 - 00000117 _____ C:\WINDOWS\system32\netcfg-739764515.txt
2013-12-25 11:17 - 2013-08-16 23:08 - 00000000 ____D C:\Users\Ute\AppData\Roaming\Adobe
2013-12-25 10:38 - 2013-12-25 10:38 - 00000117 _____ C:\WINDOWS\system32\netcfg-736684203.txt
2013-12-24 21:52 - 2013-12-24 21:52 - 00000132 _____ C:\Users\Ute\AppData\Roaming\Adobe IllExport-Filter CC - Voreinstellungen
2013-12-24 21:19 - 2013-12-24 21:19 - 00000117 _____ C:\WINDOWS\system32\netcfg-688755234.txt
2013-12-24 14:33 - 2013-12-24 14:33 - 00003494 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-UtesPC-Ute
2013-12-24 14:33 - 2013-12-24 14:33 - 00000000 ____D C:\Users\Ute\AppData\Roaming\PDAppFlex
2013-12-24 13:57 - 2013-12-24 13:48 - 00000000 ____D C:\Program Files\Adobe
2013-12-24 13:57 - 2013-12-24 13:05 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-24 13:56 - 2013-12-24 13:45 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-12-24 13:48 - 2013-12-24 13:07 - 00000000 ____D C:\ProgramData\Adobe
2013-12-24 13:06 - 2013-12-24 13:06 - 00001074 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2013-12-24 12:51 - 2013-12-24 12:51 - 00000000 ____D C:\Users\Ute\AppData\Local\gegl-0.2
2013-12-24 12:48 - 2013-12-24 12:47 - 00000000 ____D C:\Program Files\GIMP 2
2013-12-24 12:43 - 2013-12-24 12:43 - 00000117 _____ C:\WINDOWS\system32\netcfg-657816296.txt
2013-12-24 12:42 - 2013-12-24 12:42 - 00000117 _____ C:\WINDOWS\system32\netcfg-657753468.txt
2013-12-22 21:11 - 2013-12-22 21:11 - 00000117 _____ C:\WINDOWS\system32\netcfg-515455984.txt
2013-12-21 15:30 - 2013-12-21 15:30 - 00000117 _____ C:\WINDOWS\system32\netcfg-408638093.txt
2013-12-21 15:30 - 2013-12-21 15:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-21 15:02 - 2013-12-21 15:02 - 00000117 _____ C:\WINDOWS\system32\netcfg-406938156.txt
2013-12-21 15:02 - 2013-12-21 15:02 - 00000117 _____ C:\WINDOWS\system32\netcfg-406936437.txt
2013-12-21 14:48 - 2013-09-07 10:53 - 00000000 ____D C:\Program Files (x86)\StarMoney 8.0
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2013-12-26 16:10 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-12-21 00:02 - 2013-12-26 16:10 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07939584 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06276608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-20 20:41 - 2013-12-20 20:41 - 00000117 _____ C:\WINDOWS\system32\netcfg-340913500.txt
2013-12-20 20:40 - 2013-12-20 20:40 - 00000117 _____ C:\WINDOWS\system32\netcfg-340828406.txt
2013-12-20 20:39 - 2013-12-20 20:39 - 00000117 _____ C:\WINDOWS\system32\netcfg-340782046.txt
2013-12-20 20:39 - 2013-12-20 20:39 - 00000117 _____ C:\WINDOWS\system32\netcfg-340764625.txt
2013-12-20 20:30 - 2013-12-20 20:30 - 00000117 _____ C:\WINDOWS\system32\netcfg-340234609.txt
2013-12-20 20:30 - 2013-12-20 20:30 - 00000117 _____ C:\WINDOWS\system32\netcfg-340201703.txt
2013-12-19 20:15 - 2013-12-19 20:15 - 00000117 _____ C:\WINDOWS\system32\netcfg-252931718.txt
2013-12-19 20:15 - 2013-12-19 20:15 - 00000117 _____ C:\WINDOWS\system32\netcfg-252916437.txt
2013-12-19 19:46 - 2013-12-19 19:46 - 00000117 _____ C:\WINDOWS\system32\netcfg-251188093.txt
2013-12-19 19:42 - 2013-12-19 19:42 - 00000117 _____ C:\WINDOWS\system32\netcfg-250923640.txt
2013-12-19 19:41 - 2013-12-19 19:41 - 00000117 _____ C:\WINDOWS\system32\netcfg-250917078.txt
2013-12-19 19:41 - 2013-12-19 19:41 - 00000117 _____ C:\WINDOWS\system32\netcfg-250915265.txt
2013-12-19 19:39 - 2013-12-19 19:39 - 00000117 _____ C:\WINDOWS\system32\netcfg-250803453.txt
2013-12-19 19:39 - 2013-12-19 19:39 - 00000117 _____ C:\WINDOWS\system32\netcfg-250766968.txt
2013-12-19 19:36 - 2013-12-19 19:36 - 00000117 _____ C:\WINDOWS\system32\netcfg-250619453.txt
2013-12-17 22:19 - 2013-12-17 22:19 - 00000117 _____ C:\WINDOWS\system32\netcfg-87549171.txt
2013-12-17 22:18 - 2013-12-17 22:18 - 00000117 _____ C:\WINDOWS\system32\netcfg-87533562.txt
2013-12-17 21:51 - 2013-12-17 21:51 - 00000117 _____ C:\WINDOWS\system32\netcfg-85899156.txt
2013-12-17 21:37 - 2013-12-17 21:37 - 00000117 _____ C:\WINDOWS\system32\netcfg-85041812.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\WINDOWS\system32\netcfg-84990609.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\WINDOWS\system32\netcfg-84984187.txt
2013-12-17 21:36 - 2013-12-17 21:36 - 00000117 _____ C:\WINDOWS\system32\netcfg-84982468.txt
2013-12-17 21:35 - 2013-12-17 21:35 - 00000117 _____ C:\WINDOWS\system32\netcfg-84928578.txt
2013-12-17 21:35 - 2013-12-17 21:35 - 00000117 _____ C:\WINDOWS\system32\netcfg-84927156.txt
2013-12-17 21:33 - 2013-12-17 21:33 - 00000117 _____ C:\WINDOWS\system32\netcfg-84802734.txt
2013-12-16 22:04 - 2013-12-16 22:04 - 00000117 _____ C:\WINDOWS\system32\netcfg-280593.txt
2013-12-15 16:13 - 2013-12-15 16:13 - 00000117 _____ C:\WINDOWS\system32\netcfg-650036094.txt
2013-12-15 15:33 - 2013-12-15 15:33 - 00000117 _____ C:\WINDOWS\system32\netcfg-647627969.txt
2013-12-15 15:25 - 2013-12-15 15:25 - 00000117 _____ C:\WINDOWS\system32\netcfg-647128016.txt
2013-12-15 00:34 - 2013-12-15 00:42 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:34 - 2013-12-15 00:42 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:33 - 2013-12-15 00:42 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-14 20:18 - 2013-12-14 20:18 - 00000117 _____ C:\WINDOWS\system32\netcfg-578324922.txt
2013-12-14 20:13 - 2013-12-14 20:13 - 00000117 _____ C:\WINDOWS\system32\netcfg-578020954.txt
2013-12-14 20:12 - 2013-12-14 20:12 - 00000117 _____ C:\WINDOWS\system32\netcfg-577966454.txt
2013-12-14 16:46 - 2013-12-14 16:46 - 00000117 _____ C:\WINDOWS\system32\netcfg-565654719.txt
2013-12-14 13:07 - 2013-12-14 13:07 - 00000117 _____ C:\WINDOWS\system32\netcfg-552470360.txt
2013-12-14 12:56 - 2013-12-11 19:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\WINDOWS\system32\netcfg-551497860.txt
2013-12-14 12:50 - 2013-12-14 12:50 - 00000117 _____ C:\WINDOWS\system32\netcfg-551478954.txt
2013-12-10 19:35 - 2013-11-24 21:18 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-09 20:48 - 2013-12-09 20:48 - 00000117 _____ C:\WINDOWS\system32\netcfg-148135391.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\WINDOWS\system32\netcfg-147392172.txt
2013-12-09 20:35 - 2013-12-09 20:35 - 00000117 _____ C:\WINDOWS\system32\netcfg-147368750.txt
2013-12-08 19:09 - 2013-12-08 19:09 - 00000117 _____ C:\WINDOWS\system32\netcfg-55800172.txt
2013-12-07 21:15 - 2013-12-07 21:15 - 00000117 _____ C:\WINDOWS\system32\netcfg--22984171.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\WINDOWS\system32\netcfg--205948000.txt
2013-12-05 18:26 - 2013-12-05 18:26 - 00000117 _____ C:\WINDOWS\system32\netcfg--205923781.txt
2013-12-05 18:24 - 2013-12-05 18:24 - 00000117 _____ C:\WINDOWS\system32\netcfg--206053812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\WINDOWS\system32\netcfg--206265812.txt
2013-12-05 18:20 - 2013-12-05 18:20 - 00000117 _____ C:\WINDOWS\system32\netcfg--206264156.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\WINDOWS\system32\netcfg--207467218.txt
2013-12-05 18:00 - 2013-12-05 18:00 - 00000117 _____ C:\WINDOWS\system32\netcfg--207465437.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\WINDOWS\system32\netcfg--207628796.txt
2013-12-05 17:58 - 2013-12-05 17:58 - 00000117 _____ C:\WINDOWS\system32\netcfg--207627015.txt
2013-12-05 17:55 - 2013-12-05 17:55 - 00000117 _____ C:\WINDOWS\system32\netcfg--207798468.txt
2013-12-04 01:05 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-04 01:05 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-03 17:44 - 2013-12-03 17:44 - 00000117 _____ C:\WINDOWS\system32\netcfg--381272406.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\WINDOWS\system32\netcfg--381683109.txt
2013-12-03 17:37 - 2013-12-03 17:37 - 00000117 _____ C:\WINDOWS\system32\netcfg--381674156.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\WINDOWS\system32\netcfg--382036625.txt
2013-12-03 17:31 - 2013-12-03 17:31 - 00000117 _____ C:\WINDOWS\system32\netcfg--382034843.txt
2013-12-03 17:25 - 2013-12-03 17:25 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.3308.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-26 16:08

==================== End Of Log ============================
--- --- ---

Dieses File "to move" in dem log, was ist damit? Möchte gleich was lernen ...
Lg Ute

schrauber 03.01.2014 12:02
Das sind Dateien die FRST laut eigener Erkennung anmosert, einfach nur dass die beachtet werden sollen. In dem Fall aber legitim.


Fertig :)

Falls Du Lob oder Kritik loswerden möchtest kannst Du das hier tun :)


Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.


Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

ute4 04.01.2014 15:31
Hallo Schrauber,

ich komme i.M. noch nicht dazu, den Rest voll auszuführen. Aber ich denke, das bekomme ich hin. Es ist ja alles schön beschrieben.
Vielen Dank und viele Grüße
Ute


Alle Zeitangaben in WEZ +1. Es ist jetzt 22:55 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131