Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Analyse einer Log Datei (https://www.trojaner-board.de/146844-analyse-log-datei.html)

poweralex 28.12.2013 22:23
Analyse einer Log Datei
 
Hallo an alle,

ich bräuchte mal Hilfe bei der Auswertung einer Logdatei. Wäre toll wenn Ihr mir helfen könntet.

Danke Alex


HIer die Log-Datei

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.27.03

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16476
Alex :: PC8 [Administrator]

28.12.2013 22:00:41
MBAM-log-2013-12-28 (22-13-05).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 233243
Laufzeit: 11 Minute(n), 46 Sekunde(n)

Infizierte Speicherprozesse: 2
C:\Program Files (x86)\Browsebeyond\updateBrowsebeyond.exe (PUP.Optional.Sambreel) -> 2360 -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\utilBrowsebeyond.exe (PUP.Optional.Sambreel) -> 2084 -> Keine Aktion durchgeführt.

Infizierte Speichermodule: 2
C:\Program Files (x86)\Browsebeyond\bin\sqlite3.dll (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Keine Aktion durchgeführt.

Infizierte Registrierungsschlüssel: 33
HKCR\CLSID\{11111111-1111-1111-1111-110311961180} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKCR\TypeLib\{44444444-4444-4444-4444-440344964480} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKCR\Interface\{55555555-5555-5555-5555-550355965580} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKCR\CrossriderApp0039680.BHO.1 (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311961180} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311961180} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Keine Aktion durchgeführt.
HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> Keine Aktion durchgeführt.
HKCR\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Software.Updater) -> Keine Aktion durchgeführt.
HKCR\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} (PUP.Software.Updater) -> Keine Aktion durchgeführt.
HKCR\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} (PUP.Software.Updater) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} (PUP.Software.Updater) -> Keine Aktion durchgeführt.
HKCR\Updater.AmiUpd.1 (PUP.Software.Updater) -> Keine Aktion durchgeführt.
HKCR\Updater.AmiUpd (PUP.Software.Updater) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> Keine Aktion durchgeführt.
HKCR\CLSID\{f04a89fa-d7e3-4fbd-9569-502b4cad4347} (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
HKCR\TypeLib\{81e4892a-7e59-408c-ad31-a913e05ab8a3} (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
HKCR\Interface\{39A85641-67C3-40B7-AE1F-F3D034B167A9} (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F04A89FA-D7E3-4FBD-9569-502B4CAD4347} (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F04A89FA-D7E3-4FBD-9569-502B4CAD4347} (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
HKLM\SYSTEM\CurrentControlSet\Services\Update Browsebeyond (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
HKLM\SYSTEM\CurrentControlSet\Services\Util Browsebeyond (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
HKCR\CrossriderApp0039680.BHO (PUP.Optional.CrossRider.A) -> Keine Aktion durchgeführt.
HKCR\CrossriderApp0039680.Sandbox (PUP.Optional.CrossRider.A) -> Keine Aktion durchgeführt.
HKCR\CrossriderApp0039680.Sandbox.1 (PUP.Optional.CrossRider.A) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr.A) -> Keine Aktion durchgeführt.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Keine Aktion durchgeführt.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Keine Aktion durchgeführt.
HKCU\Software\InstalledBrowserExtensions\Plus HD (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Plus-HD-4.6 (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKLM\Software\Iminent (PUP.Optional.Iminent.A) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-4.6 (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.

Infizierte Registrierungswerte: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|NextLive (PUP.Optional.NextLive.A) -> Daten: C:\WINDOWS\SysWOW64\rundll32.exe "C:\Users\Alex\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l -> Keine Aktion durchgeführt.

Infizierte Dateiobjekte der Registrierung: 1
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.StartPage.A) -> Bösartig: (hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=06FC84A6C8CF739F&affID=125036&tsp=5033) Gut: (hxxp://www.google.com) -> Keine Aktion durchgeführt.

Infizierte Verzeichnisse: 20
C:\Users\Alex\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\plugins (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\IminentToolbar (PUP.Optional.Iminent.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\06789F59F9554091A9C153571A71E7AB (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\26962AF9B3E8402682D80B8ADE7E8ACC (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\27B02903FCF54EECB75AF667FEB96849 (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\9C5A9AA48205433ABB16E349A4BFCEB9 (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\A7DA995657E1431EA66E089B9A3969BA (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\DDDE30D4BCA14D6693EB2196C80E5861 (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\E35A5F82A9EB4A0994850CAC099DA0BA (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\ECC9BF283C3E4E1C92B43DEB1C73E0D5 (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\OpenCandy_A7DA995657E1431EA66E089B9A3969BA (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\File Scout (PUP.Optional.FileScout.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6 (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\IminentToolbar (PUP.Optional.Iminent.A) -> Keine Aktion durchgeführt.

Infizierte Dateien: 63
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-bho.dll (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Local\SwvUpdater\Updater.exe (PUP.Software.Updater) -> Keine Aktion durchgeführt.
C:\ProgramData\BasicServe\basicserve120.exe (PUP.Optional.BasicServe.A) -> Keine Aktion durchgeführt.
C:\ProgramData\DSearchLink\DSearchLink.exe (PUP.Optional.Delta.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\File Scout\filescout.exe (PUP.Optional.FileScout.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\26962AF9B3E8402682D80B8ADE7E8ACC\DeltaTB.exe (PUP.Optional.Delta.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\27B02903FCF54EECB75AF667FEB96849\SearchGolTB.exe (PUP.Optional.PCFixSpeed.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\DDDE30D4BCA14D6693EB2196C80E5861\DeltaTB.exe (PUP.Optional.Babylon.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\E35A5F82A9EB4A0994850CAC099DA0BA\DeltaTB.exe (PUP.Optional.Babylon.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Local\Temp\~nsu.tmp\Au_.exe (PUP.Optional.PriceGong.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\Downloads\FreeYouTubeDownload.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\Downloads\John_Deere_4024_5030_Service_Repair_Manual_750.exe (PUP.Optional.OneClickDownloader.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.6-chromeinstaller.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.6-codedownloader.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.6-enabler.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.6-firefoxinstaller.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.6-updater.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\AmiUpdXp.job (PUP.Software.Updater) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage (PUP.Optional.BrowserDefender.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\Browsebeyond.ico (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\BrowsebeyondBHO.dll (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\BrowsebeyondUninstall.exe (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\updateBrowsebeyond.exe (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\updateBrowsebeyond.InstallState (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\sqlite3.dll (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\utilBrowsebeyond.exe (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\utilBrowsebeyond.InstallState (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\plugins\Browsebeyond.CompatibilityChecker.dll (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\plugins\Browsebeyond.FFUpdate.dll (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\plugins\Browsebeyond.GCUpdate.dll (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Browsebeyond\bin\plugins\Browsebeyond.IEUpdate.dll (PUP.Optional.Sambreel) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\06789F59F9554091A9C153571A71E7AB\Trial-14.0.1000.89_de-DE_1004732_DE-1.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\26962AF9B3E8402682D80B8ADE7E8ACC\5472.ico (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\26962AF9B3E8402682D80B8ADE7E8ACC\EBB77268-338F-4C6A-8590-AD88FED26F4A (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\26962AF9B3E8402682D80B8ADE7E8ACC\OCBrowserHelper_1.0.6.124.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\9C5A9AA48205433ABB16E349A4BFCEB9\driverscannerDE.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\A7DA995657E1431EA66E089B9A3969BA\version507de75649d32.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\OpenCandy\ECC9BF283C3E4E1C92B43DEB1C73E0D5\Setupsft_chr_p1v7.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\File Scout\uninst.exe (PUP.Optional.FileScout.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\39680.crx (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\39680.xpi (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\background.html (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Installer.log (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-bg.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-bho64.dll (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-buttonutil.dll (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-buttonutil.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-buttonutil64.dll (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-buttonutil64.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-chromeinstaller.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-codedownloader.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-enabler.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-firefoxinstaller.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-helper.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-updater.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6.ico (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\Uninstall.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files (x86)\Plus-HD-4.6\utils.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Keine Aktion durchgeführt.
C:\Users\Alex\AppData\Roaming\IminentToolbar\sqlite3.dll (PUP.Optional.Iminent.A) -> Keine Aktion durchgeführt.

(Ende)

schrauber 29.12.2013 10:39
Hi,

Rechner ist infiziert:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307




Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


poweralex 29.12.2013 21:22
So, ich hoffe das es ist richtig so :)

Danke schonmal für deine Hilfe


FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Alex (administrator) on PC8 on 29-12-2013 21:11:18
Running from C:\Users\Alex\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVM Berlin) C:\Program Files\FRITZ!Fernzugang\avmike.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVM Berlin) C:\Program Files\FRITZ!Fernzugang\certsrv.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Sanford, L.P.) C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
() C:\Program Files (x86)\HDD Health\HDDHealthService.exe
(AVM Berlin) C:\Program Files\FRITZ!Fernzugang\nwtsrv.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
() C:\Program Files (x86)\Zarafa\Zarafa Outlook Client\ZarafaUpdaterService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Pokki) C:\Users\Alex\AppData\Local\Pokki\Engine\pokki.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Fieldston Software) C:\Program Files (x86)\Fieldston Software\gSyncit\gsyncit.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(PANTERASoft) C:\Program Files (x86)\HDD Health\hddhealth.exe
(PANTERASoft) C:\Program Files (x86)\HDD Health\hddhealth.exe
(J. Rathlev, IEAP, Uni-Kiel) C:\Program Files (x86)\Personal Backup 5\Persbackup.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\VLC Player GPU+\GPULog.exe
(Pokki) C:\Users\Alex\AppData\Local\Pokki\Engine\pokki.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
() C:\Program Files (x86)\VLC Player GPU+\GPUMonitor.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [HotKeysCmds] - "C:\WINDOWS\system32\hkcmd.exe"
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.)
HKLM-x32\...\Run: [Zarafa auto-updater launcher] - C:\Program Files (x86)\Zarafa\Zarafa Outlook Client\ZarafaLaunchUpdater.exe [70304 2012-08-08] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1323232 2013-12-11] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKCU\...\Run: [DymoQuickPrint] - C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe [1865840 2012-10-09] (Sanford, L.P.)
HKCU\...\Run: [gSyncit] - C:\Program Files (x86)\Fieldston Software\gSyncit\gsyncit.exe [167424 2013-11-14] (Fieldston Software)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [hddhealth] - C:\Program Files (x86)\HDD Health\hddhealth.exe [1987520 2012-06-07] (PANTERASoft)
AppInit_DLLs: c:\progra~3\bitguard\271832~1.68\{c16c1~1\loader.dll c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [ ] ()
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FRITZ!Fernzugang.lnk
ShortcutTarget: FRITZ!Fernzugang.lnk -> C:\Program Files\FRITZ!Fernzugang\FRITZVPN.exe (AVM Berlin)
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Persbackup.lnk
ShortcutTarget: Persbackup.lnk -> C:\Program Files (x86)\Personal Backup 5\Persbackup.exe (J. Rathlev, IEAP, Uni-Kiel)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x29ED548EAF71CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=06FC84A6C8CF739F&affID=125036&tsp=5033
SearchScopes: HKCU - {465EDD86-C03B-42BA-8386-9824A0EA5538} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=06fc875800000000000084a6c8cf739f&r=468
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
BHO: Plus-HD-4.6 - {11111111-1111-1111-1111-110311961180} - C:\Program Files (x86)\Plus-HD-4.6\Plus-HD-4.6-bho64.dll No File
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll (Softonic.com)
BHO-x32: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GbR)
Toolbar: HKLM-x32 - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicTlbr.dll (Softonic.com)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default
FF user.js: detected! => C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\user.js
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @dymo.com/DymoLabelFramework - C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll ( Sanford L.P.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\BrowserProtect.xml
FF SearchPlugin: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\iminent.xml
FF SearchPlugin: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\searchgol.xml
FF SearchPlugin: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\softonic.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Plus-HD-4.6 - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\5fdca21f-37d5-4e88-90b5-9d2f3ac7528e@842a12bf-3d32-40de-9ffb-8543bfad2483.com
FF Extension: YouTube Unblocker - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\youtubeunblocker@unblocker.yt
FF Extension: ZIP File Converter Plus - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{21d2d79a-4e88-4141-be70-d4e11f059d77}
FF Extension: {e34bc8c0-88b5-4767-95b1-1a83de03718e} - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{e34bc8c0-88b5-4767-95b1-1a83de03718e}
FF Extension: FoxLingo - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}
FF Extension: Browsebeyond - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\firefox@browsebeyond.net.xpi
FF Extension: ZIP File Converter Plus - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{21d2d79a-4e88-4141-be70-d4e11f059d77}.xpi
FF Extension: Adblock Plus - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: {e34bc8c0-88b5-4767-95b1-1a83de03718e} - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{e34bc8c0-88b5-4767-95b1-1a83de03718e}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt

Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=06fc875800000000000084a6c8cf739f"
CHR DefaultSearchProvider: Search the web (Softonic)
CHR DefaultSearchURL: hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=49&cc=&mi=06fc875800000000000084a6c8cf739f
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll No File
CHR Plugin: (Winamp Application Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll (Nullsoft, Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (DYMO Label Framework) - C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll ( Sanford L.P.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U13) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Extension: (Search-Gol Toolbar) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aipfmkinhleccnodemkoofnnofpbbpac\1.0
CHR Extension: (Google Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1
CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Softonic Chrome Toolbar) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0
CHR Extension: (Delta Toolbar) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5_0
CHR Extension: (Plus-HD-4.6) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffalemnbenephhkjhhemdmihjmdeafbk\1.26.67_0
CHR Extension: (DVDVideoSoft) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2
CHR HKLM-x32\...\Chrome\Extension: [elchiiiejkobdbblfejjkbphbddgmljf] - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonic.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 avmike; C:\Program Files\FRITZ!Fernzugang\avmike.exe [336248 2012-02-02] (AVM Berlin)
R2 certsrv; C:\Program Files\FRITZ!Fernzugang\certsrv.exe [143736 2011-10-31] (AVM Berlin)
R2 DymoPnpService; C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe [32368 2012-10-09] (Sanford, L.P.)
R2 HDDHealth; C:\Program Files (x86)\HDD Health\HDDHealthService.exe [72640 2012-06-07] ()
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2464400 2012-09-07] (Realsil Microelectronics Inc.)
R2 nwtsrv; C:\Program Files\FRITZ!Fernzugang\nwtsrv.exe [189304 2011-10-31] (AVM Berlin)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1324104 2013-01-09] (pdfforge GbR)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [795208 2013-01-09] (pdfforge GbR)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2099512 2013-10-30] (TuneUp Software)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248736 2013-11-14] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 ZarafaUpdaterService.exe; C:\Program Files (x86)\Zarafa\Zarafa Outlook Client\ZarafaUpdaterService.exe [1689248 2012-08-08] ()

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131584 2013-08-22] (Microsoft Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-08-31] (Intel Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R0 rtcrfilt64; C:\Windows\System32\DRIVERS\rtcrfilt64.sys [19600 2012-09-04] (Realtek Semiconductor Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-12-09] (Microsoft Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-08-21] (TuneUp Software)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-29 21:11 - 2013-12-29 21:11 - 00022421 _____ C:\Users\Alex\Downloads\FRST.txt
2013-12-29 21:11 - 2013-12-29 21:11 - 00000000 ____D C:\FRST
2013-12-29 21:08 - 2013-12-29 21:08 - 01931302 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2013-12-28 21:42 - 2013-12-28 21:42 - 00013611 _____ C:\Users\Alex\Documents\hijackthis.log
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Malwarebytes
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-27 10:22 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-12-27 10:21 - 2013-12-27 10:21 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alex\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-27 10:02 - 2013-12-27 10:19 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2013-12-27 10:02 - 2013-12-27 10:02 - 01793648 _____ (Malwarebytes                                                ) C:\Users\Alex\Downloads\mbae-setup-0.09.4.2000.exe
2013-12-27 10:02 - 2013-07-16 04:41 - 01858896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100d.dll
2013-12-27 10:02 - 2013-07-16 04:41 - 01498960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100d.dll
2013-12-27 10:02 - 2013-07-16 04:41 - 01014096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp100d.dll
2013-12-27 10:02 - 2013-07-16 04:41 - 00743248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp100d.dll
2013-12-25 18:58 - 2013-12-25 18:58 - 00001098 _____ C:\Users\Alex\Desktop\mp3DirectCut.lnk
2013-12-25 18:58 - 2013-12-25 18:58 - 00000000 ____D C:\Users\Alex\AppData\Roaming\mp3DirectCut
2013-12-25 18:58 - 2013-12-25 18:58 - 00000000 ____D C:\Program Files (x86)\mp3DirectCut
2013-12-25 18:54 - 2013-12-25 18:54 - 00300850 _____ C:\Users\Alex\Downloads\mp3DC219.exe
2013-12-24 20:15 - 2013-12-29 20:10 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-12-24 20:15 - 2013-12-24 20:15 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-24 20:15 - 2013-12-24 20:15 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-24 20:15 - 2013-12-24 20:15 - 00000000 ____D C:\ProgramData\Skype
2013-12-23 21:05 - 2013-12-23 21:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2013-12-23 21:04 - 2013-12-23 21:04 - 00000000 ____D C:\Users\Alex\AppData\Local\Intel_Corporation
2013-12-21 19:00 - 2013-12-21 19:00 - 08228192 _____ C:\Users\Alex\Downloads\FRITZ!Fernzugang_german.exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00002770 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2013-12-20 20:38 - 2013-12-21 00:09 - 00000000 ____D C:\Users\Alex\Desktop\VU+
2013-12-20 20:18 - 2013-12-20 20:18 - 00003694 _____ C:\WINDOWS\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2013-12-20 20:10 - 2013-12-20 20:10 - 00000000 ____D C:\Users\Alex\Downloads\backups
2013-12-20 20:08 - 2013-12-28 21:38 - 00014029 _____ C:\Users\Alex\Downloads\hijackthis.log
2013-12-20 20:07 - 2013-12-20 20:07 - 00388608 _____ (Trend Micro Inc.) C:\Users\Alex\Downloads\HiJackThis204.exe
2013-12-20 15:05 - 2013-12-20 15:54 - 00000000 ____D C:\Users\Alex\AppData\Roaming\WindSolutions
2013-12-20 15:05 - 2013-12-20 15:06 - 00000000 ____D C:\ProgramData\WindSolutions
2013-12-20 15:05 - 2013-12-20 15:05 - 04279392 _____ (WindSolutions) C:\Users\Alex\Downloads\Install_CopyTrans_Suite.exe
2013-12-20 15:05 - 2013-12-20 15:05 - 00001420 _____ C:\Users\Alex\Desktop\CopyTrans Control Center.lnk
2013-12-20 15:05 - 2013-12-20 15:05 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2013-12-20 11:23 - 2013-10-30 10:45 - 00043320 _____ (TuneUp Software) C:\WINDOWS\system32\uxtuneup.dll
2013-12-20 11:23 - 2013-10-30 10:45 - 00036152 _____ (TuneUp Software) C:\WINDOWS\SysWOW64\uxtuneup.dll
2013-12-20 11:23 - 2013-10-30 10:45 - 00029496 _____ (TuneUp Software) C:\WINDOWS\system32\authuitu.dll
2013-12-20 11:23 - 2013-10-30 10:45 - 00025400 _____ (TuneUp Software) C:\WINDOWS\SysWOW64\authuitu.dll
2013-12-20 03:30 - 2013-10-30 10:45 - 00040760 _____ (TuneUp Software) C:\WINDOWS\system32\TURegOpt.exe
2013-12-20 03:29 - 2013-12-20 11:23 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2013-12-20 03:29 - 2013-12-20 03:29 - 00002252 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-12-20 03:29 - 2013-12-20 03:29 - 00002232 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2013-12-20 03:27 - 2013-12-20 03:27 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Softonic
2013-12-20 03:27 - 2013-12-20 03:27 - 00000000 ____D C:\Program Files (x86)\Softonic
2013-12-20 03:26 - 2013-12-20 03:26 - 33893112 _____ (DVDVideoSoft Ltd.                                          ) C:\Users\Alex\Downloads\FreeYouTubeToMP3Converter.exe
2013-12-20 03:22 - 2013-12-28 23:31 - 00000000 ____D C:\ProgramData\BasicServe
2013-12-20 03:22 - 2013-12-20 03:23 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2013-12-20 03:22 - 2013-12-20 03:22 - 00000000 ____D C:\Program Files (x86)\BasicServe
2013-12-20 03:21 - 2013-12-20 10:29 - 00000898 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-20 03:20 - 2013-12-29 20:10 - 00003906 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{29018E8A-B2BD-4220-8C0B-BC1B63BB1B0B}
2013-12-20 03:16 - 2013-12-28 23:31 - 00000000 ____D C:\Users\Alex\AppData\Local\SwvUpdater
2013-12-20 03:15 - 2013-12-28 23:34 - 00000000 ____D C:\Program Files (x86)\Browsebeyond
2013-12-20 03:15 - 2013-12-20 03:19 - 00000000 ____D C:\Users\Alex\AppData\Local\Mobogenie
2013-12-20 03:15 - 2013-12-20 03:19 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-20 03:15 - 2013-12-20 03:16 - 00000000 ____D C:\Users\Alex\AppData\Local\genienext
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\Documents\Mobogenie
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\AppData\Local\cache
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\.android
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 _____ C:\Users\Alex\daemonprocess.txt
2013-12-20 02:07 - 2013-12-20 02:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-19 08:32 - 2013-12-19 08:32 - 00003035 ____H C:\Users\Alex\AppData\Local\xevbbcgceicggo.ini
2013-12-15 14:22 - 2013-12-15 14:22 - 00002263 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-15 13:50 - 2013-11-12 00:41 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-15 13:50 - 2013-11-12 00:40 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-15 13:50 - 2013-11-12 00:27 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-15 13:50 - 2013-11-12 00:24 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-15 13:50 - 2013-11-11 03:48 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-15 13:50 - 2013-11-09 12:55 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-15 13:50 - 2013-11-09 07:37 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-15 13:50 - 2013-11-09 06:56 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2013-12-15 13:50 - 2013-11-08 11:26 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-15 13:50 - 2013-11-08 05:43 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-15 13:50 - 2013-11-08 05:28 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-15 13:50 - 2013-11-08 05:26 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-15 13:50 - 2013-11-08 05:16 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-15 13:50 - 2013-11-08 05:15 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-15 13:50 - 2013-11-08 05:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-15 13:50 - 2013-11-08 04:41 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-15 13:50 - 2013-11-08 04:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-15 13:50 - 2013-11-05 15:19 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-15 13:50 - 2013-11-05 15:03 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-15 13:50 - 2013-11-05 14:57 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-12-15 13:50 - 2013-11-05 14:33 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-12-15 13:50 - 2013-11-05 14:32 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-15 13:50 - 2013-11-04 18:13 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-15 13:50 - 2013-11-04 18:13 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-15 13:50 - 2013-11-04 14:07 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-15 13:50 - 2013-11-04 12:50 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-15 13:50 - 2013-11-04 11:32 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-15 13:50 - 2013-11-04 03:28 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-15 13:50 - 2013-11-04 02:30 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-15 13:50 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-15 13:50 - 2013-11-01 07:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-15 13:50 - 2013-11-01 06:57 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-15 13:50 - 2013-10-31 01:58 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-15 13:50 - 2013-10-31 01:42 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-15 13:50 - 2013-10-31 01:33 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-15 13:50 - 2013-10-31 01:33 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-15 13:50 - 2013-10-31 01:33 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-15 13:50 - 2013-10-31 01:33 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-15 13:50 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-15 13:50 - 2013-10-24 10:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-15 13:50 - 2013-10-24 10:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-15 13:50 - 2013-10-17 12:21 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-15 13:50 - 2013-10-17 11:36 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-15 13:50 - 2013-10-05 15:21 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-15 13:50 - 2013-10-05 15:21 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-15 13:50 - 2013-10-05 13:05 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-15 13:50 - 2013-10-05 13:05 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-13 14:01 - 2013-12-13 14:59 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-13 08:41 - 2013-12-13 08:41 - 00000000 ____D C:\Users\Alex\AppData\Roaming\SepaUserData
2013-12-13 08:41 - 2013-12-13 08:41 - 00000000 ____D C:\Users\Alex\AppData\Roaming\apsec
2013-12-12 12:59 - 2013-12-12 12:59 - 00000000 ____D C:\WINDOWS\PCHEALTH
2013-12-12 12:55 - 2013-10-19 09:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-12 12:55 - 2013-10-19 08:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-12 12:54 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-12 12:54 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-12 12:54 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-12 12:54 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-12 12:53 - 2013-10-15 09:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-12 12:53 - 2013-10-15 09:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-12 12:52 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-12 12:52 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-12 12:52 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-12 12:52 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-12 12:52 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-12 12:52 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-12 12:52 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-12 12:52 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-12 12:52 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-12 12:52 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-12 12:52 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-12 12:52 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-12 12:52 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-12 12:52 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-12 12:52 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-12 12:52 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-12 12:52 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-12 12:51 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-12 12:51 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-12 12:51 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-12 12:51 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-11 16:46 - 2013-12-11 16:46 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Lite
2013-12-10 10:00 - 2013-12-29 20:10 - 00000000 __RDO C:\Users\Alex\SkyDrive
2013-12-10 09:26 - 2013-12-10 09:26 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-10 09:25 - 2013-12-10 09:25 - 00001481 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-10 09:24 - 2013-12-10 09:24 - 00000020 ___SH C:\Users\Alex\ntuser.ini
2013-12-10 09:24 - 2013-12-10 09:24 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2013-12-10 00:07 - 2013-12-29 20:23 - 01873946 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-12-10 00:06 - 2013-12-10 00:06 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-09 23:55 - 2013-12-09 23:55 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-12-09 23:55 - 2013-12-09 23:55 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-12-09 23:52 - 2013-12-09 23:52 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-09 23:50 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex
2013-12-09 23:50 - 2013-12-10 00:06 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2013-12-09 23:50 - 2013-12-10 00:06 - 00024768 _____ C:\WINDOWS\diagerr.xml
2013-12-09 23:50 - 2013-12-09 23:52 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Vorlagen
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Startmenü
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Netzwerkumgebung
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Lokale Einstellungen
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Eigene Dateien
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Druckumgebung
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Musik
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Bilder
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Verlauf
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Anwendungsdaten
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Anwendungsdaten
2013-12-09 23:50 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-09 23:50 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-09 23:50 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\Intel
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\AMD
2013-12-09 23:43 - 2013-12-11 08:01 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-09 23:42 - 2013-12-09 23:42 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-12-09 23:42 - 2013-12-09 23:42 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01200640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-12-09 23:39 - 2013-12-09 23:39 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2013-12-09 23:39 - 2013-12-09 23:39 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-12-09 23:37 - 2013-12-09 23:37 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-12-09 23:37 - 2013-12-09 23:37 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-09 23:37 - 2013-12-09 23:37 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files\MSBuild
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-09 23:34 - 2013-12-09 23:34 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-12-09 23:34 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-12-09 23:34 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 23:34 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-12-09 23:34 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-12-09 23:34 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 23:34 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-12-09 23:12 - 2013-12-10 00:06 - 00006553 _____ C:\WINDOWS\comsetup.log
2013-12-08 17:45 - 2013-12-08 17:45 - 00000000 ____D C:\Program Files\iPod
2013-12-08 17:45 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2013-12-08 17:44 - 2013-12-08 17:45 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-12-08 17:44 - 2013-12-08 17:45 - 00000000 ____D C:\Program Files\iTunes
2013-12-08 17:44 - 2013-12-08 17:45 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-12-08 15:36 - 2013-12-08 15:42 - 120000000 _____ C:\Users\Alex\Downloads\Frei.Wild-Still-2CD-DE-2013-VOiCE.rar
2013-12-08 15:34 - 2013-12-08 15:39 - 90223531 _____ C:\Users\Alex\Downloads\Frei.Wild-Still-2CD-DE-2013-VOiCE.r00
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files\Bonjour
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-12-08 14:47 - 2013-12-08 14:48 - 100400976 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunes64Setup.exe
2013-12-08 13:35 - 2013-12-08 13:39 - 00174431 _____ C:\Users\Alex\Documents\NAS
2013-12-08 13:04 - 2013-12-08 13:04 - 00000000 ____D C:\88625521814
2013-12-03 15:16 - 2013-12-03 15:16 - 00003856 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cec47188de155c
2013-12-01 21:50 - 2013-12-01 21:50 - 05959680 _____ C:\Users\Alex\Downloads\AudioStation-powerpc-5.0-2414.spk
2013-12-01 21:46 - 2013-12-01 21:47 - 07956618 _____ C:\Users\Alex\Downloads\Android-DSdownload.1.2-037.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 07237365 _____ C:\Users\Alex\Downloads\Android-DSaudio.3.1-168.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 06044204 _____ C:\Users\Alex\Downloads\Android-DScloud.1.4.1-081.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 05684811 _____ C:\Users\Alex\Downloads\Android-DSphoto-3-0.3-153.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 03634902 _____ C:\Users\Alex\Downloads\Android-DSfile.3.3-090.apk
2013-12-01 15:43 - 2013-12-01 15:45 - 133785600 _____ C:\Users\Alex\Downloads\DSM_DS109j_3243.pat
2013-12-01 15:39 - 2013-12-08 13:04 - 00000000 ____D C:\ProgramData\Synology
2013-12-01 15:39 - 2013-12-01 15:39 - 08861848 _____ C:\Users\Alex\Downloads\SynologyAssistantSetup-4.3-4359.exe
2013-12-01 15:39 - 2013-12-01 15:39 - 00001191 _____ C:\Users\Public\Desktop\Synology Assistant.lnk
2013-12-01 15:39 - 2013-12-01 15:39 - 00000000 ____D C:\Program Files (x86)\Synology
2013-11-30 15:34 - 2013-11-30 15:35 - 24489269 _____ C:\Users\Alex\Downloads\vlc-2.1.1-win32.exe
2013-11-30 13:43 - 2013-11-30 13:44 - 00000000 ____D C:\Users\Alex\Desktop\Upper extremity
2013-11-30 13:43 - 2013-11-30 13:43 - 00000000 ____D C:\Users\Alex\Desktop\kiefer stud

==================== One Month Modified Files and Folders =======

2013-12-29 21:11 - 2013-12-29 21:11 - 00022421 _____ C:\Users\Alex\Downloads\FRST.txt
2013-12-29 21:11 - 2013-12-29 21:11 - 00000000 ____D C:\FRST
2013-12-29 21:08 - 2013-12-29 21:08 - 01931302 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2013-12-29 21:07 - 2013-01-21 16:08 - 00000000 ____D C:\Users\Alex\AppData\Local\Pokki
2013-12-29 21:03 - 2013-01-12 16:57 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-29 21:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-12-29 20:43 - 2013-02-02 13:38 - 00000000 ____D C:\Users\Alex\AppData\Roaming\gSyncit
2013-12-29 20:43 - 2013-01-29 17:29 - 00000000 ____D C:\Users\Alex\Documents\Outlook-Dateien
2013-12-29 20:23 - 2013-12-10 00:07 - 01873946 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-29 20:21 - 2013-01-14 22:51 - 00001114 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-29 20:13 - 2013-02-04 08:01 - 00138836 _____ C:\ProgramData\ZarafaUpdaterService.log
2013-12-29 20:10 - 2013-12-24 20:15 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-12-29 20:10 - 2013-12-20 03:20 - 00003906 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{29018E8A-B2BD-4220-8C0B-BC1B63BB1B0B}
2013-12-29 20:10 - 2013-12-10 10:00 - 00000000 __RDO C:\Users\Alex\SkyDrive
2013-12-29 20:09 - 2013-02-04 08:02 - 00070992 _____ C:\Users\Alex\AppData\Roaming\ZarafaLaunchUpdater.log
2013-12-29 20:08 - 2013-10-08 22:58 - 00001116 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cec47188de155c.job
2013-12-29 20:07 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-29 15:30 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2013-12-28 23:50 - 2013-01-02 10:34 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2844738090-2266767851-805237799-1001
2013-12-28 23:34 - 2013-12-20 03:15 - 00000000 ____D C:\Program Files (x86)\Browsebeyond
2013-12-28 23:34 - 2013-09-29 20:04 - 00036620 _____ C:\WINDOWS\PFRO.log
2013-12-28 23:31 - 2013-12-20 03:22 - 00000000 ____D C:\ProgramData\BasicServe
2013-12-28 23:31 - 2013-12-20 03:16 - 00000000 ____D C:\Users\Alex\AppData\Local\SwvUpdater
2013-12-28 23:31 - 2013-09-18 15:17 - 00000000 ____D C:\ProgramData\DSearchLink
2013-12-28 23:28 - 2013-07-02 16:16 - 00000000 ____D C:\Users\Alex\Documents\Odin3
2013-12-28 23:28 - 2013-03-18 00:17 - 00000000 ____D C:\Users\Alex\Desktop\GS3
2013-12-28 21:42 - 2013-12-28 21:42 - 00013611 _____ C:\Users\Alex\Documents\hijackthis.log
2013-12-28 21:38 - 2013-12-20 20:08 - 00014029 _____ C:\Users\Alex\Downloads\hijackthis.log
2013-12-28 21:31 - 2013-01-14 22:51 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-28 21:02 - 2013-01-27 10:22 - 00000000 ____D C:\Users\Alex\AppData\Roaming\vlc
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Malwarebytes
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-27 10:21 - 2013-12-27 10:21 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alex\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-27 10:19 - 2013-12-27 10:02 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2013-12-27 10:02 - 2013-12-27 10:02 - 01793648 _____ (Malwarebytes                                                ) C:\Users\Alex\Downloads\mbae-setup-0.09.4.2000.exe
2013-12-25 22:53 - 2013-02-08 14:25 - 00000000 ____D C:\Users\Alex\AppData\Roaming\FileZilla
2013-12-25 19:26 - 2013-09-30 05:14 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-25 19:26 - 2013-09-30 04:56 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2013-12-25 19:26 - 2013-09-30 04:56 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2013-12-25 19:22 - 2013-08-22 15:46 - 00306014 _____ C:\WINDOWS\setupact.log
2013-12-25 18:58 - 2013-12-25 18:58 - 00001098 _____ C:\Users\Alex\Desktop\mp3DirectCut.lnk
2013-12-25 18:58 - 2013-12-25 18:58 - 00000000 ____D C:\Users\Alex\AppData\Roaming\mp3DirectCut
2013-12-25 18:58 - 2013-12-25 18:58 - 00000000 ____D C:\Program Files (x86)\mp3DirectCut
2013-12-25 18:54 - 2013-12-25 18:54 - 00300850 _____ C:\Users\Alex\Downloads\mp3DC219.exe
2013-12-24 20:15 - 2013-12-24 20:15 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-24 20:15 - 2013-12-24 20:15 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-24 20:15 - 2013-12-24 20:15 - 00000000 ____D C:\ProgramData\Skype
2013-12-23 21:05 - 2013-12-23 21:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2013-12-23 21:04 - 2013-12-23 21:04 - 00000000 ____D C:\Users\Alex\AppData\Local\Intel_Corporation
2013-12-23 15:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-12-23 15:34 - 2013-01-02 10:26 - 00000000 ____D C:\Users\Alex\AppData\Local\Packages
2013-12-21 19:00 - 2013-12-21 19:00 - 08228192 _____ C:\Users\Alex\Downloads\FRITZ!Fernzugang_german.exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00002770 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2013-12-21 00:20 - 2013-04-13 07:42 - 00000000 ____D C:\Users\Alex\Desktop\Auto
2013-12-21 00:09 - 2013-12-20 20:38 - 00000000 ____D C:\Users\Alex\Desktop\VU+
2013-12-20 20:18 - 2013-12-20 20:18 - 00003694 _____ C:\WINDOWS\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2013-12-20 20:18 - 2013-10-02 07:02 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-20 20:18 - 2013-01-13 16:36 - 00000000 ____D C:\Users\Alex\AppData\Local\Microsoft Help
2013-12-20 20:10 - 2013-12-20 20:10 - 00000000 ____D C:\Users\Alex\Downloads\backups
2013-12-20 20:07 - 2013-12-20 20:07 - 00388608 _____ (Trend Micro Inc.) C:\Users\Alex\Downloads\HiJackThis204.exe
2013-12-20 15:54 - 2013-12-20 15:05 - 00000000 ____D C:\Users\Alex\AppData\Roaming\WindSolutions
2013-12-20 15:06 - 2013-12-20 15:05 - 00000000 ____D C:\ProgramData\WindSolutions
2013-12-20 15:05 - 2013-12-20 15:05 - 04279392 _____ (WindSolutions) C:\Users\Alex\Downloads\Install_CopyTrans_Suite.exe
2013-12-20 15:05 - 2013-12-20 15:05 - 00001420 _____ C:\Users\Alex\Desktop\CopyTrans Control Center.lnk
2013-12-20 15:05 - 2013-12-20 15:05 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2013-12-20 11:23 - 2013-12-20 03:29 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2013-12-20 11:06 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-20 10:29 - 2013-12-20 03:21 - 00000898 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-20 10:19 - 2013-01-03 18:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2013-12-20 03:29 - 2013-12-20 03:29 - 00002252 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-12-20 03:29 - 2013-12-20 03:29 - 00002232 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2013-12-20 03:27 - 2013-12-20 03:27 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Softonic
2013-12-20 03:27 - 2013-12-20 03:27 - 00000000 ____D C:\Program Files (x86)\Softonic
2013-12-20 03:27 - 2013-07-21 13:22 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-12-20 03:27 - 2013-01-13 15:21 - 00000000 ____D C:\Users\Alex\AppData\Roaming\DVDVideoSoft
2013-12-20 03:26 - 2013-12-20 03:26 - 33893112 _____ (DVDVideoSoft Ltd.                                          ) C:\Users\Alex\Downloads\FreeYouTubeToMP3Converter.exe
2013-12-20 03:23 - 2013-12-20 03:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2013-12-20 03:22 - 2013-12-20 03:22 - 00000000 ____D C:\Program Files (x86)\BasicServe
2013-12-20 03:19 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\AppData\Local\Mobogenie
2013-12-20 03:19 - 2013-12-20 03:15 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-20 03:16 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\AppData\Local\genienext
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\Documents\Mobogenie
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\AppData\Local\cache
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\.android
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 _____ C:\Users\Alex\daemonprocess.txt
2013-12-20 03:15 - 2013-12-09 23:50 - 00000000 ____D C:\Users\Alex
2013-12-20 02:07 - 2013-12-20 02:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-20 01:12 - 2013-11-20 08:57 - 00002136 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2013-12-19 09:22 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2013-12-19 08:32 - 2013-12-19 08:32 - 00003035 ____H C:\Users\Alex\AppData\Local\xevbbcgceicggo.ini
2013-12-19 08:32 - 2013-09-23 09:03 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Configuration
2013-12-19 08:32 - 2013-09-23 09:03 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Backup Tickets
2013-12-19 08:32 - 2013-09-23 09:02 - 00000000 ____D C:\Users\Public\Ticket
2013-12-15 14:22 - 2013-12-15 14:22 - 00002263 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-15 14:18 - 2013-08-18 21:05 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-15 14:16 - 2013-01-03 19:35 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-13 14:59 - 2013-12-13 14:01 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-13 14:57 - 2013-08-22 15:44 - 00533928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-13 08:41 - 2013-12-13 08:41 - 00000000 ____D C:\Users\Alex\AppData\Roaming\SepaUserData
2013-12-13 08:41 - 2013-12-13 08:41 - 00000000 ____D C:\Users\Alex\AppData\Roaming\apsec
2013-12-12 12:59 - 2013-12-12 12:59 - 00000000 ____D C:\WINDOWS\PCHEALTH
2013-12-12 12:59 - 2013-01-13 16:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-12 12:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-12-12 12:48 - 2013-05-06 09:13 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2013-12-12 12:48 - 2013-04-01 12:18 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-12 12:48 - 2013-04-01 12:18 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-11 16:46 - 2013-12-11 16:46 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Lite
2013-12-11 08:03 - 2013-01-12 16:57 - 00003766 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-11 08:01 - 2013-12-09 23:43 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-10 17:18 - 2013-02-16 20:22 - 00002224 ____H C:\Users\Alex\Documents\Default.rdp
2013-12-10 09:26 - 2013-12-10 09:26 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-10 09:25 - 2013-12-10 09:25 - 00001481 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-10 09:25 - 2013-01-02 10:27 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-10 09:25 - 2013-01-02 10:27 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-10 09:24 - 2013-12-10 09:24 - 00000020 ___SH C:\Users\Alex\ntuser.ini
2013-12-10 09:24 - 2013-12-10 09:24 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-12-10 00:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2013-12-10 00:07 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2013-12-10 00:07 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2013-12-10 00:06 - 2013-12-10 00:06 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-10 00:06 - 2013-12-09 23:50 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2013-12-10 00:06 - 2013-12-09 23:50 - 00024768 _____ C:\WINDOWS\diagerr.xml
2013-12-10 00:06 - 2013-12-09 23:12 - 00006553 _____ C:\WINDOWS\comsetup.log
2013-12-10 00:03 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2013-12-10 00:03 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-12-09 23:58 - 2013-09-30 04:59 - 00000000 ____D C:\WINDOWS\ShellNew
2013-12-09 23:58 - 2013-08-22 14:25 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2013-12-09 23:58 - 2013-04-11 16:13 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
2013-12-09 23:58 - 2013-03-05 08:19 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2013-12-09 23:58 - 2013-02-08 12:53 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-09 23:58 - 2013-02-06 11:48 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2013-12-09 23:58 - 2013-01-23 21:34 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRITZ!Fernzugang
2013-12-09 23:58 - 2013-01-21 16:07 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-12-09 23:55 - 2013-12-09 23:55 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-12-09 23:55 - 2013-12-09 23:55 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-12-09 23:55 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-12-09 23:55 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-12-09 23:55 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-12-09 23:55 - 2013-08-22 16:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-12-09 23:55 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-12-09 23:55 - 2013-03-05 13:06 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2013-12-09 23:55 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2013-12-09 23:54 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-09 23:54 - 2013-02-02 12:44 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2013-12-09 23:54 - 2013-01-02 10:26 - 00000000 ____D C:\ProgramData\PRICache
2013-12-09 23:52 - 2013-12-09 23:52 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-09 23:52 - 2013-12-09 23:50 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-09 23:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Vorlagen
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Startmenü
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Netzwerkumgebung
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Lokale Einstellungen
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Eigene Dateien
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Druckumgebung
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Musik
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Bilder
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Verlauf
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Anwendungsdaten
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Anwendungsdaten
2013-12-09 23:48 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-12-09 23:47 - 2013-08-22 15:46 - 00002352 _____ C:\WINDOWS\setuperr.log
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\Intel
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\AMD
2013-12-09 23:42 - 2013-12-09 23:42 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-12-09 23:42 - 2013-12-09 23:42 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-12-09 23:42 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-12-09 23:41 - 2013-12-09 23:41 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01200640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-12-09 23:39 - 2013-12-09 23:39 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2013-12-09 23:39 - 2013-12-09 23:39 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-12-09 23:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-12-09 23:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-12-09 23:37 - 2013-12-09 23:37 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-12-09 23:37 - 2013-12-09 23:37 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-12-09 23:37 - 2013-12-09 23:37 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-09 23:37 - 2013-12-09 23:37 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files\MSBuild
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-09 23:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-12-09 23:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-12-09 23:34 - 2013-12-09 23:34 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-12-09 23:24 - 2013-01-21 12:28 - 01273290 _____ C:\WINDOWS\WindowsUpdate (1).log
2013-12-09 22:53 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-12-08 18:08 - 2013-09-13 07:43 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Apple Computer
2013-12-08 17:45 - 2013-12-08 17:45 - 00000000 ____D C:\Program Files\iPod
2013-12-08 17:45 - 2013-12-08 17:44 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-12-08 17:45 - 2013-12-08 17:44 - 00000000 ____D C:\Program Files\iTunes
2013-12-08 17:45 - 2013-12-08 17:44 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-12-08 15:42 - 2013-12-08 15:36 - 120000000 _____ C:\Users\Alex\Downloads\Frei.Wild-Still-2CD-DE-2013-VOiCE.rar
2013-12-08 15:39 - 2013-12-08 15:34 - 90223531 _____ C:\Users\Alex\Downloads\Frei.Wild-Still-2CD-DE-2013-VOiCE.r00
2013-12-08 15:01 - 2013-09-20 18:30 - 00000000 ____D C:\Users\Alex\AppData\Local\Apple Computer
2013-12-08 15:00 - 2013-09-11 09:13 - 00000000 ____D C:\ProgramData\Apple Computer
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files\Bonjour
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-12-08 14:58 - 2013-09-11 09:10 - 00000000 ____D C:\ProgramData\Apple
2013-12-08 14:48 - 2013-12-08 14:47 - 100400976 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunes64Setup.exe
2013-12-08 13:39 - 2013-12-08 13:35 - 00174431 _____ C:\Users\Alex\Documents\NAS
2013-12-08 13:04 - 2013-12-08 13:04 - 00000000 ____D C:\88625521814
2013-12-08 13:04 - 2013-12-01 15:39 - 00000000 ____D C:\ProgramData\Synology
2013-12-05 07:27 - 2013-02-26 14:27 - 00409600 ___SH C:\Users\Alex\Desktop\Thumbs.db
2013-12-04 07:07 - 2013-11-20 08:50 - 1278500032 _____ C:\WINDOWS\MEMORY.DMP
2013-12-04 01:05 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-04 01:05 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-03 15:16 - 2013-12-03 15:16 - 00003856 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cec47188de155c
2013-12-03 15:16 - 2013-01-14 22:51 - 00004086 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-01 21:50 - 2013-12-01 21:50 - 05959680 _____ C:\Users\Alex\Downloads\AudioStation-powerpc-5.0-2414.spk
2013-12-01 21:47 - 2013-12-01 21:46 - 07956618 _____ C:\Users\Alex\Downloads\Android-DSdownload.1.2-037.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 07237365 _____ C:\Users\Alex\Downloads\Android-DSaudio.3.1-168.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 06044204 _____ C:\Users\Alex\Downloads\Android-DScloud.1.4.1-081.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 05684811 _____ C:\Users\Alex\Downloads\Android-DSphoto-3-0.3-153.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 03634902 _____ C:\Users\Alex\Downloads\Android-DSfile.3.3-090.apk
2013-12-01 15:45 - 2013-12-01 15:43 - 133785600 _____ C:\Users\Alex\Downloads\DSM_DS109j_3243.pat
2013-12-01 15:39 - 2013-12-01 15:39 - 08861848 _____ C:\Users\Alex\Downloads\SynologyAssistantSetup-4.3-4359.exe
2013-12-01 15:39 - 2013-12-01 15:39 - 00001191 _____ C:\Users\Public\Desktop\Synology Assistant.lnk
2013-12-01 15:39 - 2013-12-01 15:39 - 00000000 ____D C:\Program Files (x86)\Synology
2013-11-30 15:35 - 2013-11-30 15:34 - 24489269 _____ C:\Users\Alex\Downloads\vlc-2.1.1-win32.exe
2013-11-30 14:25 - 2013-10-29 11:26 - 00000000 ____D C:\Users\Alex\AppData\Roaming\dvdcss
2013-11-30 13:44 - 2013-11-30 13:43 - 00000000 ____D C:\Users\Alex\Desktop\Upper extremity
2013-11-30 13:43 - 2013-11-30 13:43 - 00000000 ____D C:\Users\Alex\Desktop\kiefer stud
2013-11-29 09:11 - 2013-11-20 23:00 - 00000000 ____D C:\Users\Alex\Desktop\Druck T-Shirt
2013-11-29 08:59 - 2013-08-18 19:40 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-29 08:59 - 2013-08-18 19:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

Files to move or delete:
====================
C:\Users\Alex\pb-setup-5.4.0600.exe


Some content of TEMP:
====================
C:\Users\Alex\AppData\Local\Temp\avgnt.exe
C:\Users\Alex\AppData\Local\Temp\octAC04.tmp.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-28 23:50

==================== End Of Log ============================
--- --- ---

--- --- ---

poweralex 29.12.2013 21:25
So und nun noch die andere

Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-12-2013 01
Ran by Alex at 2013-12-29 21:12:17
Running from C:\Users\Alex\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

1&1 Upload-Manager (x32 Version: 2.0.676 - 1&1 Internet AG)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05 - Adobe Systems Incorporated)
ALDI NORD Bestellsoftware 4.12.2 (x32 Version: 4.12.2 - ORWO Net)
Anatomy and Physiology (x32 Version: 1.2.8 - Visible Body)
Any Video Converter 3.5.8 (x32 Version:  - Any-Video-Converter.com)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Auerswald COMset 2.7.2 (x32 Version: 2.7.2 - Auerswald GmbH & Co.KG)
Avery Wizard 4.0 (x32 Version: 4.0.201 - Avery)
Avira Free Antivirus (x32 Version: 14.0.2.286 - Avira)
Benutzerhandbuch EPSON WF-7015 Series (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Brother HL-5240 (x32 Version: 1.00 - Brother)
Browsebeyond (Version: 2013.12.07.011955 - Browsebeyond)
Canon iX4000 (Version:  - )
CCleaner (Version: 3.26 - Piriform)
CDBurnerXP (x32 Version: 4.5.2.4291 - CDBurnerXP)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.0.686 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.686 - Corel Corporation)
Corel Graphics - Windows Shell Extension 64 Bit (Version: 15.2.686 - Corel Corporation)
CorelDRAW Graphics Suite X5 - BR (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Capture (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Common (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Connect (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Custom Data (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - CZ (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - DE (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Draw (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - EN (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - ES (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Filters (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - FontNav (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - FR (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - IPM HSE (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - IT (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - NL (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Photozoom Plugin (x32 Version: 15.0 - Corel Corporation)
CorelDRAW Graphics Suite X5 - PL (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Redist (x32 Version: 15.0 - Corel Corporation)
CorelDRAW Graphics Suite X5 - RU (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - Setup Files (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - VideoBrowser (x32 Version: 15.3 - Corel Corporation)
CorelDRAW Graphics Suite X5 - WT (x32 Version: 15.3 -  Corel Corporation)
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version:  - Corel Corporation)
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version: 15.0 - Corel Corporation)
CorelDRAW Home & Student Suite X5 (x32 Version: 15.1 - Corel Corporation)
CorelDRAW(R) Home & Student Suite X5 (x32 Version: 15.2.0.686 - Corel Corporation)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32 Version:  - Microsoft)
Dell System Detect (HKCU Version: 4.0.5.6 - Dell)
Download Navigator (x32 Version: 1.1.0 - SEIKO EPSON CORPORATION)
dreamboxEDIT -- The one and only settings editor for your Dreambox (x32 Version:  - )
DYMO Label v.8 (x32 Version: 8.4.2.18 - Sanford, L.P.)
EPSON WF-7015 Series Printer Uninstall (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (x32 Version: 2.4j - SEIKO EPSON CORPORATION)
FileZilla Client 3.7.3 (x32 Version: 3.7.3 - Tim Kosse)
Free YouTube Download version 3.2.13.925 (x32 Version: 3.2.13.925 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.17.1127 (x32 Version: 3.12.17.1127 - DVDVideoSoft Ltd.)
FRITZ!Box-Fernzugang einrichten (x32 Version: 1.0.3 - AVM Berlin)
FRITZ!Fernzugang (Version: 1.2.6 - AVM Berlin)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.)
GPU Monitor (x32 Version: 11.041.44 - GPU Usage) <==== ATTENTION
gSyncit (x32 Version: 3.8.38 - Fieldston Software)
HDD Health v4.2 (x32 Version:  - )
Human Anatomy Atlas (x32 Version: 3.0 - Visible Body)
Intel(R) Processor Graphics (x32 Version: 9.17.10.2849 - Intel Corporation)
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 13 (x32 Version: 7.0.130 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.)
JRE 1.6.1 (x32 Version: 1.6.1 - Auerswald GmbH & Co.KG)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Home and Business 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.218 (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Netzwerkhandbuch EPSON WF-7015 Series (x32 Version:  - )
Nur Entfernen der CopyTrans Suite möglich (HKCU Version: 2.37 - WindSolutions)
PDF Architect (x32 Version: 1.0.52.8917 - pdfforge)
PDFCreator (x32 Version: 1.6.2 - pdfforge)
Personal Backup 5.4 (x32 Version: 5.3 - J. Rathlev)
Picasa 3 (x32 Version: 3.9 - Google, Inc.)
Pokki (HKCU Version: 0.266.1.172 - Pokki)
Print Server Utilities (x32 Version: 4.3.4.1 - Edimax Technology CO., Ltd.)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Radmin Viewer 3.5 (x32 Version: 3.50.0000 - Famatech)
Realtek USB 2.0 Card Reader (x32 Version: 6.2.8400.39034 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Softonic toolbar  on IE and Chrome (x32 Version: 1.8.21.14 - Softonic)
Synology Assistant (remove only) (x32 Version:  - )
TagScanner 5.1.630 (x32 Version:  - Sergey Serkov)
TrueCrypt (x32 Version: 7.1a - TrueCrypt Foundation)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.169 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.169 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.89 - TuneUp Software)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (x32 Version:  - Microsoft)
VLC media player 2.0.8 (Version: 2.0.8 - VideoLAN)
Winamp (x32 Version: 5.63  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1 - Nullsoft, Inc)
WinRAR 4.20 (64-Bit) (Version: 4.20.0 - win.rar GmbH)
Zarafa Outlook Client 7.1.0.36420 (x32 Version: 7.1.36420 - Zarafa)

==================== Restore Points  =========================

12-12-2013 11:54:00 Windows Update
15-12-2013 13:15:04 Windows Update
24-12-2013 14:15:47 Geplanter Prüfpunkt

==================== Hosts content: ==========================

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {54C39CBD-04AE-4C8E-8B23-414327C8DAF2} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {61ACAFE4-CB4B-414D-918D-16C83A992E3B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-14] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73384F84-E634-43CE-BF4A-C136B6689DDD} - System32\Tasks\GoogleUpdateTaskMachineCore1cec47188de155c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-14] (Google Inc.)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {75096D4A-8814-4DA3-A994-6BF94F2645DB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-12-19] (Piriform Ltd)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A47BDD94-FA8F-4670-B690-8BBD96166647} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {AC89AF02-94B6-4273-8F9A-52343986BBBC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-14] (Google Inc.)
Task: {B2D3171C-5790-4C91-8819-65DA862A8DEB} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {C2DE2116-55AD-4362-87E3-6BBBCBA20952} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {C3528A91-9478-4F17-A5BE-0C7F3DD6AF9B} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2013-10-30] (TuneUp Software)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cec47188de155c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-01 06:31 - 2013-11-01 06:31 - 02329928 _____ () C:\Users\Alex\AppData\Local\Pokki\ocdeskband_0.dll
2013-10-03 23:42 - 2013-10-03 23:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-01-03 18:17 - 2012-09-19 18:17 - 00397088 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-04-21 20:44 - 2013-04-21 20:44 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-04-21 20:44 - 2013-04-21 20:44 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-09-07 03:11 - 2013-09-07 03:11 - 00569856 _____ () C:\Users\Alex\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
2013-09-07 03:11 - 2013-09-07 03:11 - 01400846 _____ () C:\Users\Alex\AppData\Local\Pokki\Engine\avcodec-54.dll
2013-09-07 03:11 - 2013-09-07 03:11 - 00151054 _____ () C:\Users\Alex\AppData\Local\Pokki\Engine\avutil-51.dll
2013-09-07 03:11 - 2013-09-07 03:11 - 00222734 _____ () C:\Users\Alex\AppData\Local\Pokki\Engine\avformat-54.dll
2013-12-10 02:46 - 2010-03-30 15:29 - 00279955 _____ () C:\Program Files (x86)\VLC Player GPU+\libidn-11.dll
2013-12-10 02:46 - 2013-03-17 09:42 - 00084992 _____ () C:\Program Files (x86)\VLC Player GPU+\zlib1.dll
2013-12-10 02:46 - 2010-06-11 09:48 - 00148760 _____ () C:\Program Files (x86)\VLC Player GPU+\libpdcurses.dll
2013-12-20 02:07 - 2013-12-20 02:07 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Alex\Cookies:gs5sys
AlternateDataStreams: C:\Users\Alex\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Alex\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Alex\AppData\Local\Verlauf:gs5sys
AlternateDataStreams: C:\Users\Alex\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\ProgramData\Templates:gs5sys
AlternateDataStreams: C:\ProgramData\Vorlagen:gs5sys

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/29/2013 08:43:52 PM) (Source: MsiInstaller) (User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/29/2013 08:13:15 PM) (Source: MsiInstaller) (User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/29/2013 03:30:39 PM) (Source: MsiInstaller) (User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/28/2013 11:44:48 PM) (Source: MsiInstaller) (User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/28/2013 10:19:16 PM) (Source: MsiInstaller) (User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/28/2013 09:47:13 PM) (Source: MsiInstaller) (User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/28/2013 09:16:21 PM) (Source: MsiInstaller) (User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/28/2013 08:45:15 PM) (Source: MsiInstaller) (User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/28/2013 08:01:10 PM) (Source: Application Hang) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20315 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 13e0

Startzeit: 01cf03578b374ed8

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 7f471e06-6f4b-11e3-bef9-84a6c8cf73a2

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (12/28/2013 00:12:55 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6828


System errors:
=============
Error: (12/29/2013 08:10:30 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (12/29/2013 08:06:53 PM) (Source: BTHUSB) (User: )
Description: Der lokale Adapter bietet keine Unterstützung für einen wichtigen Controllerstatus für energiearme Geräte. Die mindestens erforderliche unterstützte Statusmaske ist "0x1f7fffff", vorhanden ist jedoch "0x1f3fffff". Die Funktionalität für energiearme Geräte wird deaktiviert.

Error: (12/29/2013 02:58:04 PM) (Source: DCOM) (User: PC8)
Description: {0006F03A-0000-0000-C000-000000000046}

Error: (12/29/2013 02:51:06 PM) (Source: BTHUSB) (User: )
Description: Der lokale Adapter bietet keine Unterstützung für einen wichtigen Controllerstatus für energiearme Geräte. Die mindestens erforderliche unterstützte Statusmaske ist "0x1f7fffff", vorhanden ist jedoch "0x1f3fffff". Die Funktionalität für energiearme Geräte wird deaktiviert.

Error: (12/28/2013 11:34:35 PM) (Source: BTHUSB) (User: )
Description: Der lokale Adapter bietet keine Unterstützung für einen wichtigen Controllerstatus für energiearme Geräte. Die mindestens erforderliche unterstützte Statusmaske ist "0x1f7fffff", vorhanden ist jedoch "0x1f3fffff". Die Funktionalität für energiearme Geräte wird deaktiviert.

Error: (12/28/2013 11:33:11 PM) (Source: DCOM) (User: PC8)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (12/28/2013 08:31:03 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (12/28/2013 08:26:08 PM) (Source: BTHUSB) (User: )
Description: Der lokale Adapter bietet keine Unterstützung für einen wichtigen Controllerstatus für energiearme Geräte. Die mindestens erforderliche unterstützte Statusmaske ist "0x1f7fffff", vorhanden ist jedoch "0x1f3fffff". Die Funktionalität für energiearme Geräte wird deaktiviert.

Error: (12/28/2013 07:43:19 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (12/27/2013 11:32:38 PM) (Source: DCOM) (User: PC8)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}PC8AlexS-1-5-21-2844738090-2266767851-805237799-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


Microsoft Office Sessions:
=========================
Error: (12/29/2013 08:43:52 PM) (Source: MsiInstaller)(User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/29/2013 08:13:15 PM) (Source: MsiInstaller)(User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/29/2013 03:30:39 PM) (Source: MsiInstaller)(User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/28/2013 11:44:48 PM) (Source: MsiInstaller)(User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/28/2013 10:19:16 PM) (Source: MsiInstaller)(User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/28/2013 09:47:13 PM) (Source: MsiInstaller)(User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/28/2013 09:16:21 PM) (Source: MsiInstaller)(User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/28/2013 08:45:15 PM) (Source: MsiInstaller)(User: PC8)
Description: Product: gSyncit -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/28/2013 08:01:10 PM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.2031513e001cf03578b374ed84294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe7f471e06-6f4b-11e3-bef9-84a6c8cf73a2microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (12/28/2013 00:12:55 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6828


==================== Memory info ===========================

Percentage of memory in use: 43%
Total physical RAM: 6019.3 MB
Available physical RAM: 3427.31 MB
Total Pagefile: 12163.3 MB
Available Pagefile: 9061.2 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:349.7 GB) (Free:215.45 GB) NTFS
Drive e: (Volume) (Fixed) (Total:348.6 GB) (Free:151.73 GB) NTFS
Drive f: () (Removable) (Total:7.39 GB) (Free:1.54 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: F7370D37)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=350 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=349 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 7 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=7 GB) - (Type=0B)

schrauber 30.12.2013 17:29
MBAM updaten, Scannen, Funde löschen lassen.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

poweralex 31.12.2013 16:24
So, ich hoffe ich habe alles zusammen....:)

AdwCleaner Logfile:
Code:
# AdwCleaner v3.016 - Bericht erstellt am 30/12/2013 um 20:19:26
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 8.1  (64 bits)
# Benutzername : Alex - PC8
# Gestartet von : C:\Users\Alex\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\BasicServe
Ordner Gelöscht : C:\ProgramData\DSearchLink
Ordner Gelöscht : C:\Program Files (x86)\BasicServe
Ordner Gelöscht : C:\Program Files (x86)\Mobogenie
Ordner Gelöscht : C:\Program Files (x86)\Softonic
Ordner Gelöscht : C:\Users\Alex\AppData\Local\Mobogenie
Ordner Gelöscht : C:\Users\Alex\AppData\Local\PackageAware
[!] Ordner Gelöscht : C:\Users\Alex\AppData\Local\Pokki
Ordner Gelöscht : C:\Users\Alex\AppData\Local\SwvUpdater
Ordner Gelöscht : C:\Users\Alex\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Alex\AppData\Roaming\pdfforge
Ordner Gelöscht : C:\Users\Alex\AppData\Roaming\Softonic
Ordner Gelöscht : C:\Users\Alex\Documents\Mobogenie
Ordner Gelöscht : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aipfmkinhleccnodemkoofnnofpbbpac
Ordner Gelöscht : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
Ordner Gelöscht : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Datei Gelöscht : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\invalidprefs.js
Datei Gelöscht : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\Babylon.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
Datei Gelöscht : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\BrowserProtect.xml
Datei Gelöscht : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\delta.xml
Datei Gelöscht : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\iminent.xml
Datei Gelöscht : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\searchgol.xml
Datei Gelöscht : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\searchplugins\softonic.xml
Datei Gelöscht : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\user.js
Datei Gelöscht : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Datei Gelöscht : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www2.delta-search.com_0.localstorage
Datei Gelöscht : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www2.delta-search.com_0.localstorage-journal

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
Schlüssel Gelöscht : HKCU\Software\Classes\*\shell\pokki
Schlüssel Gelöscht : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Schlüssel Gelöscht : HKCU\Software\Classes\Directory\shell\pokki
Schlüssel Gelöscht : HKCU\Software\Classes\Drive\shell\pokki
Schlüssel Gelöscht : HKCU\Software\Classes\Folder\shell\pokki
Schlüssel Gelöscht : HKCU\Software\Classes\lnkfile\shell\pokki
Schlüssel Gelöscht : HKCU\Software\Classes\pokki
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\driverscanner
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\S
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Softonic.dskBnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Softonic.dskBnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\SoftonicApp.appCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\SoftonicApp.appCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gelöscht : HKCU\Software\5b0888abc3be949
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4277F7CF-0000-46CF-BA49-D624465C4BAB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322962280}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366966680}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1631550F-191D-4826-B069-D9439253D926}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{5018CFD2-804D-4C99-9F81-25EAEA2769DE}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322962280}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366966680}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\filescout
Schlüssel Gelöscht : HKCU\Software\Pokki
Schlüssel Gelöscht : HKCU\Software\powerpack
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Crossrider
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\Softonic
Schlüssel Gelöscht : HKLM\Software\Uniblue
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\271832~1.68\{c16c1~1\loader.dll
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\prefs.js ]

Zeile gelöscht : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=121562&babsrc=HP_ss&mntrId=06FC84A6C8CF739F");
Zeile gelöscht : user_pref("avg.install.userSPSettings", "Delta Search");
Zeile gelöscht : user_pref("extensions.Softonic.admin", false);
Zeile gelöscht : user_pref("extensions.Softonic.aflt", "OC");
Zeile gelöscht : user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");
Zeile gelöscht : user_pref("extensions.Softonic.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.Softonic.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.Softonic.dfltSrch", true);
Zeile gelöscht : user_pref("extensions.Softonic.dnsErr", true);
Zeile gelöscht : user_pref("extensions.Softonic.excTlbr", false);
Zeile gelöscht : user_pref("extensions.Softonic.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.Softonic.hmpg", true);
Zeile gelöscht : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=13&cc=&mi=06fc875800000000000084a6c8cf739f");
Zeile gelöscht : user_pref("extensions.Softonic.id", "06fc875800000000000084a6c8cf739f");
Zeile gelöscht : user_pref("extensions.Softonic.instlDay", "16059");
Zeile gelöscht : user_pref("extensions.Softonic.instlRef", "MOY00621");
Zeile gelöscht : user_pref("extensions.Softonic.newTab", true);
Zeile gelöscht : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=06fc875800000000000084a6c8cf739f");
Zeile gelöscht : user_pref("extensions.Softonic.prdct", "Softonic");
Zeile gelöscht : user_pref("extensions.Softonic.prtnrId", "softonic");
Zeile gelöscht : user_pref("extensions.Softonic.rvrt", "false");
Zeile gelöscht : user_pref("extensions.Softonic.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Zeile gelöscht : user_pref("extensions.Softonic.tlbrId", "opencandy2013");
Zeile gelöscht : user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=1&cc=&mi=06fc875800000000000084a6c8cf739f&q=");
Zeile gelöscht : user_pref("extensions.Softonic.vrsn", "1.8.21.14");
Zeile gelöscht : user_pref("extensions.Softonic.vrsnTs", "1.8.21.143:27:39");
Zeile gelöscht : user_pref("extensions.Softonic.vrsni", "1.8.21.14");
Zeile gelöscht : user_pref("extensions.crossrider.bic", "1430dccf30afa10ff64371821e88bb3e");
Zeile gelöscht : user_pref("extensions.delta.admin", false);
Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
Zeile gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Zeile gelöscht : user_pref("extensions.delta.id", "06fc875800000000000084a6c8cf739f");
Zeile gelöscht : user_pref("extensions.delta.instlDay", "15966");
Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.delta.newTab", false);
Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.24.616:17:07");
Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta_i.babExt", "");
Zeile gelöscht : user_pref("extensions.delta_i.babTrack", "affID=121565&tt=160913_nocpn&tsp=5009");
Zeile gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
Zeile gelöscht : user_pref("extensions.iminent.admin", false);
Zeile gelöscht : user_pref("extensions.iminent.aflt", "orgnl");
Zeile gelöscht : user_pref("extensions.iminent.appId", "{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}");
Zeile gelöscht : user_pref("extensions.iminent.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.iminent.dfltLng", "");
Zeile gelöscht : user_pref("extensions.iminent.excTlbr", false);
Zeile gelöscht : user_pref("extensions.iminent.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.iminent.id", "06fc875800000000000084a6c8cf739f");
Zeile gelöscht : user_pref("extensions.iminent.instlDay", "16059");
Zeile gelöscht : user_pref("extensions.iminent.instlRef", "");
Zeile gelöscht : user_pref("extensions.iminent.newTab", false);
Zeile gelöscht : user_pref("extensions.iminent.prdct", "iminent");
Zeile gelöscht : user_pref("extensions.iminent.prtnrId", "iminent");
Zeile gelöscht : user_pref("extensions.iminent.rvrt", "false");
Zeile gelöscht : user_pref("extensions.iminent.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.iminent.tlbrId", "GCPCTSAD");
Zeile gelöscht : user_pref("extensions.iminent.tlbrSrchUrl", "hxxp://start.iminent.com/?ref=toolbarm#q=");
Zeile gelöscht : user_pref("extensions.iminent.vrsn", "1.8.28.3");
Zeile gelöscht : user_pref("extensions.iminent.vrsnTs", "1.8.28.33:21:43");
Zeile gelöscht : user_pref("extensions.iminent.vrsni", "1.8.28.3");
Zeile gelöscht : user_pref("extensions.searchgol.admin", false);
Zeile gelöscht : user_pref("extensions.searchgol.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.searchgol.appId", "{4277F7CF-0000-46CF-BA49-D624465C4BAB}");
Zeile gelöscht : user_pref("extensions.searchgol.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.searchgol.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.searchgol.excTlbr", false);
Zeile gelöscht : user_pref("extensions.searchgol.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.searchgol.id", "06fc875800000000000084a6c8cf739f");
Zeile gelöscht : user_pref("extensions.searchgol.instlDay", "15990");
Zeile gelöscht : user_pref("extensions.searchgol.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.searchgol.newTab", false);
Zeile gelöscht : user_pref("extensions.searchgol.prdct", "searchgol");
Zeile gelöscht : user_pref("extensions.searchgol.prtnrId", "searchgol");
Zeile gelöscht : user_pref("extensions.searchgol.rvrt", "false");
Zeile gelöscht : user_pref("extensions.searchgol.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.searchgol.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.searchgol.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.searchgol.vrsn", "1.8.16.19");
Zeile gelöscht : user_pref("extensions.searchgol.vrsnTs", "1.8.16.1921:57:38");
Zeile gelöscht : user_pref("extensions.searchgol.vrsni", "1.8.16.19");
Zeile gelöscht : user_pref("iminent.LayoutId", "1");
Zeile gelöscht : user_pref("iminent.adapters", "{\"iminent\":{\"CountryCode\":\"DE\",\"NoAds\":false,\"Status\":1,\"expireTime\":\"1387506317898259200\"},\"dvdvideosoft\":{\"CountryCode\":\"DE\",\"NoAds\":false,\"Stat[...]
Zeile gelöscht : user_pref("iminent.version", "7.51.3.1");
Zeile gelöscht : user_pref("iminent.versioning", "{\"CurrentVersion\":\"7.51.3.1\",\"InstallEventCTime\":1387506109017,\"InstallEvent\":\"True\"}");

-\\ Google Chrome v

[ Datei : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : search_url
Gelöscht : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [28956 octets] - [30/12/2013 20:14:05]
AdwCleaner[S0].txt - [28143 octets] - [30/12/2013 20:19:26]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [28204 octets] ##########
--- --- ---


JRT Logfile:
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8.1 x64
Ran by Alex on 30.12.2013 at 20:35:17,73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2844738090-2266767851-805237799-1001\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{465EDD86-C03B-42BA-8386-9824A0EA5538}



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Alex\AppData\Roaming\mozilla\firefox\profiles\kceef2un.default\extensions\5fdca21f-37d5-4e88-90b5-9d2f3ac7528e@842a12bf-3d32-40de-9ffb-8543bfad2483.com
Emptied folder: C:\Users\Alex\AppData\Roaming\mozilla\firefox\profiles\kceef2un.default\minidumps [21 files]



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Alex\appdata\local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 30.12.2013 at 20:38:18,00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
--- --- ---

poweralex 31.12.2013 16:27
So, nun noch FRST log


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Alex (administrator) on PC8 on 31-12-2013 16:25:07
Running from C:\Users\Alex\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(AVM Berlin) C:\Program Files\FRITZ!Fernzugang\avmike.exe
(AVM Berlin) C:\Program Files\FRITZ!Fernzugang\certsrv.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Sanford, L.P.) C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
() C:\Program Files (x86)\HDD Health\HDDHealthService.exe
(AVM Berlin) C:\Program Files\FRITZ!Fernzugang\nwtsrv.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
() C:\Program Files (x86)\Zarafa\Zarafa Outlook Client\ZarafaUpdaterService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Fieldston Software) C:\Program Files (x86)\Fieldston Software\gSyncit\gsyncit.exe
(PANTERASoft) C:\Program Files (x86)\HDD Health\hddhealth.exe
(PANTERASoft) C:\Program Files (x86)\HDD Health\hddhealth.exe
(J. Rathlev, IEAP, Uni-Kiel) C:\Program Files (x86)\Personal Backup 5\Persbackup.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\VLC Player GPU+\GPULog.exe
() C:\Program Files (x86)\VLC Player GPU+\GPUMonitor.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winamp.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(DvdVideoSoft Ltd.                  ) C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Fieldston Software) C:\Program Files (x86)\Fieldston Software\gSyncit\gsyncit.updater.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Microsoft Corporation) C:\Windows\splwow64.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [HotKeysCmds] - "C:\WINDOWS\system32\hkcmd.exe"
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.)
HKLM-x32\...\Run: [Zarafa auto-updater launcher] - C:\Program Files (x86)\Zarafa\Zarafa Outlook Client\ZarafaLaunchUpdater.exe [70304 2012-08-08] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1323232 2013-12-11] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKCU\...\Run: [DymoQuickPrint] - C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe [1865840 2012-10-09] (Sanford, L.P.)
HKCU\...\Run: [gSyncit] - C:\Program Files (x86)\Fieldston Software\gSyncit\gsyncit.exe [167424 2013-11-14] (Fieldston Software)
HKCU\...\Run: [hddhealth] - C:\Program Files (x86)\HDD Health\hddhealth.exe [1987520 2012-06-07] (PANTERASoft)
AppInit_DLLs:  [ ] ()
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FRITZ!Fernzugang.lnk
ShortcutTarget: FRITZ!Fernzugang.lnk -> C:\Program Files\FRITZ!Fernzugang\FRITZVPN.exe (AVM Berlin)
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Persbackup.lnk
ShortcutTarget: Persbackup.lnk -> C:\Program Files (x86)\Personal Backup 5\Persbackup.exe (J. Rathlev, IEAP, Uni-Kiel)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x29ED548EAF71CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Plus-HD-4.6 - {11111111-1111-1111-1111-110311961180} -  No File
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @dymo.com/DymoLabelFramework - C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll ( Sanford L.P.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: YouTube Unblocker - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\youtubeunblocker@unblocker.yt
FF Extension: ZIP File Converter Plus - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{21d2d79a-4e88-4141-be70-d4e11f059d77}
FF Extension: {e34bc8c0-88b5-4767-95b1-1a83de03718e} - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{e34bc8c0-88b5-4767-95b1-1a83de03718e}
FF Extension: FoxLingo - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}
FF Extension: Browsebeyond - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\firefox@browsebeyond.net.xpi
FF Extension: ZIP File Converter Plus - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{21d2d79a-4e88-4141-be70-d4e11f059d77}.xpi
FF Extension: Adblock Plus - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: {e34bc8c0-88b5-4767-95b1-1a83de03718e} - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\kceef2un.default\Extensions\{e34bc8c0-88b5-4767-95b1-1a83de03718e}.xpi
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt

Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchProvider: Search the web (Softonic)
CHR DefaultSearchURL: hxxp://www.google.com
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll No File
CHR Plugin: (Winamp Application Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll (Nullsoft, Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (DYMO Label Framework) - C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll ( Sanford L.P.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U13) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1
CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Plus-HD-4.6) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffalemnbenephhkjhhemdmihjmdeafbk\1.26.67_0
CHR Extension: (DVDVideoSoft) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 avmike; C:\Program Files\FRITZ!Fernzugang\avmike.exe [336248 2012-02-02] (AVM Berlin)
R2 certsrv; C:\Program Files\FRITZ!Fernzugang\certsrv.exe [143736 2011-10-31] (AVM Berlin)
R2 DymoPnpService; C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe [32368 2012-10-09] (Sanford, L.P.)
R2 HDDHealth; C:\Program Files (x86)\HDD Health\HDDHealthService.exe [72640 2012-06-07] ()
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2464400 2012-09-07] (Realsil Microelectronics Inc.)
R2 nwtsrv; C:\Program Files\FRITZ!Fernzugang\nwtsrv.exe [189304 2011-10-31] (AVM Berlin)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1324104 2013-01-09] (pdfforge GbR)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [795208 2013-01-09] (pdfforge GbR)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2099512 2013-10-30] (TuneUp Software)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248736 2013-11-14] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 ZarafaUpdaterService.exe; C:\Program Files (x86)\Zarafa\Zarafa Outlook Client\ZarafaUpdaterService.exe [1689248 2012-08-08] ()

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131584 2013-08-22] (Microsoft Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-08-31] (Intel Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R0 rtcrfilt64; C:\Windows\System32\DRIVERS\rtcrfilt64.sys [19600 2012-09-04] (Realtek Semiconductor Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-12-09] (Microsoft Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-08-21] (TuneUp Software)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-30 20:38 - 2013-12-30 20:38 - 00001427 _____ C:\Users\Alex\Desktop\JRT.txt
2013-12-30 20:35 - 2013-12-30 20:35 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-30 20:33 - 2013-12-30 20:33 - 01034531 _____ (Thisisu) C:\Users\Alex\Downloads\JRT.exe
2013-12-30 20:13 - 2013-12-30 20:20 - 00000000 ____D C:\AdwCleaner
2013-12-30 20:03 - 2013-12-30 20:03 - 01233962 _____ C:\Users\Alex\Downloads\adwcleaner.exe
2013-12-30 11:53 - 2013-12-30 11:53 - 00290984 _____ C:\WINDOWS\Minidump\123013-22109-01.dmp
2013-12-30 11:53 - 2013-12-30 11:53 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-29 21:12 - 2013-12-29 21:12 - 00028989 _____ C:\Users\Alex\Downloads\Addition.txt
2013-12-29 21:11 - 2013-12-31 16:25 - 00019200 _____ C:\Users\Alex\Downloads\FRST.txt
2013-12-29 21:11 - 2013-12-29 21:11 - 00000000 ____D C:\FRST
2013-12-29 21:08 - 2013-12-29 21:08 - 01931302 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2013-12-28 21:42 - 2013-12-28 21:42 - 00013611 _____ C:\Users\Alex\Documents\hijackthis.log
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Malwarebytes
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-27 10:22 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-12-27 10:21 - 2013-12-27 10:21 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alex\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-27 10:02 - 2013-12-27 10:19 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2013-12-27 10:02 - 2013-12-27 10:02 - 01793648 _____ (Malwarebytes                                                ) C:\Users\Alex\Downloads\mbae-setup-0.09.4.2000.exe
2013-12-27 10:02 - 2013-07-16 04:41 - 01858896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100d.dll
2013-12-27 10:02 - 2013-07-16 04:41 - 01498960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100d.dll
2013-12-27 10:02 - 2013-07-16 04:41 - 01014096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp100d.dll
2013-12-27 10:02 - 2013-07-16 04:41 - 00743248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp100d.dll
2013-12-25 18:58 - 2013-12-25 18:58 - 00001098 _____ C:\Users\Alex\Desktop\mp3DirectCut.lnk
2013-12-25 18:58 - 2013-12-25 18:58 - 00000000 ____D C:\Users\Alex\AppData\Roaming\mp3DirectCut
2013-12-25 18:58 - 2013-12-25 18:58 - 00000000 ____D C:\Program Files (x86)\mp3DirectCut
2013-12-25 18:54 - 2013-12-25 18:54 - 00300850 _____ C:\Users\Alex\Downloads\mp3DC219.exe
2013-12-24 20:15 - 2013-12-30 07:52 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-12-24 20:15 - 2013-12-24 20:15 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-24 20:15 - 2013-12-24 20:15 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-24 20:15 - 2013-12-24 20:15 - 00000000 ____D C:\ProgramData\Skype
2013-12-23 21:05 - 2013-12-23 21:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2013-12-23 21:04 - 2013-12-23 21:04 - 00000000 ____D C:\Users\Alex\AppData\Local\Intel_Corporation
2013-12-21 19:00 - 2013-12-21 19:00 - 08228192 _____ C:\Users\Alex\Downloads\FRITZ!Fernzugang_german.exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00002770 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2013-12-20 20:38 - 2013-12-21 00:09 - 00000000 ____D C:\Users\Alex\Desktop\VU+
2013-12-20 20:18 - 2013-12-20 20:18 - 00003694 _____ C:\WINDOWS\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2013-12-20 20:10 - 2013-12-20 20:10 - 00000000 ____D C:\Users\Alex\Downloads\backups
2013-12-20 20:08 - 2013-12-28 21:38 - 00014029 _____ C:\Users\Alex\Downloads\hijackthis.log
2013-12-20 20:07 - 2013-12-20 20:07 - 00388608 _____ (Trend Micro Inc.) C:\Users\Alex\Downloads\HiJackThis204.exe
2013-12-20 15:05 - 2013-12-20 15:54 - 00000000 ____D C:\Users\Alex\AppData\Roaming\WindSolutions
2013-12-20 15:05 - 2013-12-20 15:06 - 00000000 ____D C:\ProgramData\WindSolutions
2013-12-20 15:05 - 2013-12-20 15:05 - 04279392 _____ (WindSolutions) C:\Users\Alex\Downloads\Install_CopyTrans_Suite.exe
2013-12-20 15:05 - 2013-12-20 15:05 - 00001420 _____ C:\Users\Alex\Desktop\CopyTrans Control Center.lnk
2013-12-20 15:05 - 2013-12-20 15:05 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2013-12-20 11:23 - 2013-10-30 10:45 - 00043320 _____ (TuneUp Software) C:\WINDOWS\system32\uxtuneup.dll
2013-12-20 11:23 - 2013-10-30 10:45 - 00036152 _____ (TuneUp Software) C:\WINDOWS\SysWOW64\uxtuneup.dll
2013-12-20 11:23 - 2013-10-30 10:45 - 00029496 _____ (TuneUp Software) C:\WINDOWS\system32\authuitu.dll
2013-12-20 11:23 - 2013-10-30 10:45 - 00025400 _____ (TuneUp Software) C:\WINDOWS\SysWOW64\authuitu.dll
2013-12-20 03:30 - 2013-10-30 10:45 - 00040760 _____ (TuneUp Software) C:\WINDOWS\system32\TURegOpt.exe
2013-12-20 03:29 - 2013-12-20 11:23 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2013-12-20 03:29 - 2013-12-20 03:29 - 00002252 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-12-20 03:29 - 2013-12-20 03:29 - 00002232 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2013-12-20 03:26 - 2013-12-20 03:26 - 33893112 _____ (DVDVideoSoft Ltd.                                          ) C:\Users\Alex\Downloads\FreeYouTubeToMP3Converter.exe
2013-12-20 03:22 - 2013-12-20 03:23 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2013-12-20 03:21 - 2013-12-20 10:29 - 00000898 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-20 03:20 - 2013-12-31 10:45 - 00003906 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{29018E8A-B2BD-4220-8C0B-BC1B63BB1B0B}
2013-12-20 03:15 - 2013-12-28 23:34 - 00000000 ____D C:\Program Files (x86)\Browsebeyond
2013-12-20 03:15 - 2013-12-20 03:16 - 00000000 ____D C:\Users\Alex\AppData\Local\genienext
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\AppData\Local\cache
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\.android
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 _____ C:\Users\Alex\daemonprocess.txt
2013-12-20 02:07 - 2013-12-20 02:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-19 08:32 - 2013-12-19 08:32 - 00003035 ____H C:\Users\Alex\AppData\Local\xevbbcgceicggo.ini
2013-12-15 14:22 - 2013-12-15 14:22 - 00002263 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-15 13:50 - 2013-11-12 00:41 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-15 13:50 - 2013-11-12 00:40 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-15 13:50 - 2013-11-12 00:27 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-15 13:50 - 2013-11-12 00:24 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-15 13:50 - 2013-11-11 03:48 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-15 13:50 - 2013-11-09 12:55 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-15 13:50 - 2013-11-09 07:37 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-15 13:50 - 2013-11-09 06:56 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2013-12-15 13:50 - 2013-11-08 11:26 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-15 13:50 - 2013-11-08 05:43 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-15 13:50 - 2013-11-08 05:28 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-15 13:50 - 2013-11-08 05:26 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-15 13:50 - 2013-11-08 05:16 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-15 13:50 - 2013-11-08 05:15 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-15 13:50 - 2013-11-08 05:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-15 13:50 - 2013-11-08 04:41 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-15 13:50 - 2013-11-08 04:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-15 13:50 - 2013-11-05 15:19 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-15 13:50 - 2013-11-05 15:03 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-15 13:50 - 2013-11-05 14:57 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-12-15 13:50 - 2013-11-05 14:33 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-12-15 13:50 - 2013-11-05 14:32 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-15 13:50 - 2013-11-04 18:13 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-15 13:50 - 2013-11-04 18:13 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-15 13:50 - 2013-11-04 14:07 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-15 13:50 - 2013-11-04 12:50 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-15 13:50 - 2013-11-04 11:32 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-15 13:50 - 2013-11-04 03:28 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-15 13:50 - 2013-11-04 02:30 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-15 13:50 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-15 13:50 - 2013-11-01 07:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-15 13:50 - 2013-11-01 06:57 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-15 13:50 - 2013-10-31 01:58 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-15 13:50 - 2013-10-31 01:42 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-15 13:50 - 2013-10-31 01:33 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-15 13:50 - 2013-10-31 01:33 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-15 13:50 - 2013-10-31 01:33 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-15 13:50 - 2013-10-31 01:33 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-15 13:50 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-15 13:50 - 2013-10-24 10:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-15 13:50 - 2013-10-24 10:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-15 13:50 - 2013-10-17 12:21 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-15 13:50 - 2013-10-17 11:36 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-15 13:50 - 2013-10-05 15:21 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-15 13:50 - 2013-10-05 15:21 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-15 13:50 - 2013-10-05 13:05 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-15 13:50 - 2013-10-05 13:05 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-13 14:01 - 2013-12-13 14:59 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-13 08:41 - 2013-12-30 07:52 - 00000000 ____D C:\Users\Alex\AppData\Roaming\SepaUserData
2013-12-13 08:41 - 2013-12-30 07:52 - 00000000 ____D C:\Users\Alex\AppData\Roaming\apsec
2013-12-12 12:59 - 2013-12-12 12:59 - 00000000 ____D C:\WINDOWS\PCHEALTH
2013-12-12 12:55 - 2013-10-19 09:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-12 12:55 - 2013-10-19 08:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-12 12:54 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-12 12:54 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-12 12:54 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-12 12:54 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-12 12:53 - 2013-10-15 09:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-12 12:53 - 2013-10-15 09:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-12 12:52 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-12 12:52 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-12 12:52 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-12 12:52 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-12 12:52 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-12 12:52 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-12 12:52 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-12 12:52 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-12 12:52 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-12 12:52 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-12 12:52 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-12 12:52 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-12 12:52 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-12 12:52 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-12 12:52 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-12 12:52 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-12 12:52 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-12 12:51 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-12 12:51 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-12 12:51 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-12 12:51 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-11 16:46 - 2013-12-11 16:46 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Lite
2013-12-10 10:00 - 2013-12-30 20:23 - 00000000 __RDO C:\Users\Alex\SkyDrive
2013-12-10 09:26 - 2013-12-10 09:26 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-10 09:25 - 2013-12-10 09:25 - 00001481 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-10 09:24 - 2013-12-10 09:24 - 00000020 ___SH C:\Users\Alex\ntuser.ini
2013-12-10 09:24 - 2013-12-10 09:24 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2013-12-10 00:07 - 2013-12-31 11:32 - 01940750 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-12-10 00:06 - 2013-12-10 00:06 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-09 23:55 - 2013-12-09 23:55 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-12-09 23:55 - 2013-12-09 23:55 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-12-09 23:52 - 2013-12-09 23:52 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-09 23:50 - 2013-12-30 20:21 - 00000000 ____D C:\Users\Alex
2013-12-09 23:50 - 2013-12-10 00:06 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2013-12-09 23:50 - 2013-12-10 00:06 - 00024768 _____ C:\WINDOWS\diagerr.xml
2013-12-09 23:50 - 2013-12-09 23:52 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Vorlagen
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Startmenü
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Netzwerkumgebung
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Lokale Einstellungen
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Eigene Dateien
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Druckumgebung
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Musik
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Bilder
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Verlauf
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Anwendungsdaten
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Anwendungsdaten
2013-12-09 23:50 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-09 23:50 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-09 23:50 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\Intel
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\AMD
2013-12-09 23:43 - 2013-12-11 08:01 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-09 23:42 - 2013-12-09 23:42 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-12-09 23:42 - 2013-12-09 23:42 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01200640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-12-09 23:39 - 2013-12-09 23:39 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2013-12-09 23:39 - 2013-12-09 23:39 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-12-09 23:37 - 2013-12-09 23:37 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-12-09 23:37 - 2013-12-09 23:37 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-09 23:37 - 2013-12-09 23:37 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files\MSBuild
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-09 23:34 - 2013-12-09 23:34 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-12-09 23:34 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-12-09 23:34 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 23:34 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-12-09 23:34 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-12-09 23:34 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 23:34 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-12-09 23:12 - 2013-12-10 00:06 - 00006553 _____ C:\WINDOWS\comsetup.log
2013-12-08 17:45 - 2013-12-08 17:45 - 00000000 ____D C:\Program Files\iPod
2013-12-08 17:45 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2013-12-08 17:44 - 2013-12-08 17:45 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-12-08 17:44 - 2013-12-08 17:45 - 00000000 ____D C:\Program Files\iTunes
2013-12-08 17:44 - 2013-12-08 17:45 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-12-08 15:36 - 2013-12-08 15:42 - 120000000 _____ C:\Users\Alex\Downloads\Frei.Wild-Still-2CD-DE-2013-VOiCE.rar
2013-12-08 15:34 - 2013-12-08 15:39 - 90223531 _____ C:\Users\Alex\Downloads\Frei.Wild-Still-2CD-DE-2013-VOiCE.r00
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files\Bonjour
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-12-08 14:47 - 2013-12-08 14:48 - 100400976 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunes64Setup.exe
2013-12-08 13:35 - 2013-12-08 13:39 - 00174431 _____ C:\Users\Alex\Documents\NAS
2013-12-08 13:04 - 2013-12-08 13:04 - 00000000 ____D C:\88625521814
2013-12-03 15:16 - 2013-12-03 15:16 - 00003856 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cec47188de155c
2013-12-01 21:50 - 2013-12-01 21:50 - 05959680 _____ C:\Users\Alex\Downloads\AudioStation-powerpc-5.0-2414.spk
2013-12-01 21:46 - 2013-12-01 21:47 - 07956618 _____ C:\Users\Alex\Downloads\Android-DSdownload.1.2-037.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 07237365 _____ C:\Users\Alex\Downloads\Android-DSaudio.3.1-168.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 06044204 _____ C:\Users\Alex\Downloads\Android-DScloud.1.4.1-081.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 05684811 _____ C:\Users\Alex\Downloads\Android-DSphoto-3-0.3-153.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 03634902 _____ C:\Users\Alex\Downloads\Android-DSfile.3.3-090.apk
2013-12-01 15:43 - 2013-12-01 15:45 - 133785600 _____ C:\Users\Alex\Downloads\DSM_DS109j_3243.pat
2013-12-01 15:39 - 2013-12-08 13:04 - 00000000 ____D C:\ProgramData\Synology
2013-12-01 15:39 - 2013-12-01 15:39 - 08861848 _____ C:\Users\Alex\Downloads\SynologyAssistantSetup-4.3-4359.exe
2013-12-01 15:39 - 2013-12-01 15:39 - 00001191 _____ C:\Users\Public\Desktop\Synology Assistant.lnk
2013-12-01 15:39 - 2013-12-01 15:39 - 00000000 ____D C:\Program Files (x86)\Synology

==================== One Month Modified Files and Folders =======

2013-12-31 16:25 - 2013-12-29 21:11 - 00019200 _____ C:\Users\Alex\Downloads\FRST.txt
2013-12-31 16:21 - 2013-01-14 22:51 - 00001114 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-31 16:14 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-12-31 16:05 - 2013-02-02 13:38 - 00000000 ____D C:\Users\Alex\AppData\Roaming\gSyncit
2013-12-31 16:04 - 2013-01-29 17:29 - 00000000 ____D C:\Users\Alex\Documents\Outlook-Dateien
2013-12-31 15:21 - 2013-10-08 22:58 - 00001116 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cec47188de155c.job
2013-12-31 15:03 - 2013-01-12 16:57 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-31 11:32 - 2013-12-10 00:07 - 01940750 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-31 10:45 - 2013-12-20 03:20 - 00003906 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{29018E8A-B2BD-4220-8C0B-BC1B63BB1B0B}
2013-12-30 20:38 - 2013-12-30 20:38 - 00001427 _____ C:\Users\Alex\Desktop\JRT.txt
2013-12-30 20:35 - 2013-12-30 20:35 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-30 20:33 - 2013-12-30 20:33 - 01034531 _____ (Thisisu) C:\Users\Alex\Downloads\JRT.exe
2013-12-30 20:24 - 2013-02-04 08:02 - 00072036 _____ C:\Users\Alex\AppData\Roaming\ZarafaLaunchUpdater.log
2013-12-30 20:24 - 2013-02-04 08:01 - 00140820 _____ C:\ProgramData\ZarafaUpdaterService.log
2013-12-30 20:23 - 2013-12-10 10:00 - 00000000 __RDO C:\Users\Alex\SkyDrive
2013-12-30 20:21 - 2013-12-09 23:50 - 00000000 ____D C:\Users\Alex
2013-12-30 20:21 - 2013-09-29 20:04 - 00038386 _____ C:\WINDOWS\PFRO.log
2013-12-30 20:21 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-30 20:21 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2013-12-30 20:21 - 2013-01-21 16:08 - 00000000 ____D C:\Users\Alex\AppData\Local\Pokki
2013-12-30 20:20 - 2013-12-30 20:13 - 00000000 ____D C:\AdwCleaner
2013-12-30 20:03 - 2013-12-30 20:03 - 01233962 _____ C:\Users\Alex\Downloads\adwcleaner.exe
2013-12-30 11:53 - 2013-12-30 11:53 - 00290984 _____ C:\WINDOWS\Minidump\123013-22109-01.dmp
2013-12-30 11:53 - 2013-12-30 11:53 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-30 11:52 - 2013-11-20 08:50 - 1048012216 _____ C:\WINDOWS\MEMORY.DMP
2013-12-30 09:42 - 2013-09-30 05:14 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-30 09:42 - 2013-09-30 04:56 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2013-12-30 09:42 - 2013-09-30 04:56 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2013-12-30 08:18 - 2013-10-02 07:02 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-12-30 07:52 - 2013-12-24 20:15 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-12-30 07:52 - 2013-12-13 08:41 - 00000000 ____D C:\Users\Alex\AppData\Roaming\SepaUserData
2013-12-30 07:52 - 2013-12-13 08:41 - 00000000 ____D C:\Users\Alex\AppData\Roaming\apsec
2013-12-30 07:44 - 2013-08-22 15:46 - 00306809 _____ C:\WINDOWS\setupact.log
2013-12-29 21:12 - 2013-12-29 21:12 - 00028989 _____ C:\Users\Alex\Downloads\Addition.txt
2013-12-29 21:11 - 2013-12-29 21:11 - 00000000 ____D C:\FRST
2013-12-29 21:08 - 2013-12-29 21:08 - 01931302 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2013-12-28 23:50 - 2013-01-02 10:34 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2844738090-2266767851-805237799-1001
2013-12-28 23:34 - 2013-12-20 03:15 - 00000000 ____D C:\Program Files (x86)\Browsebeyond
2013-12-28 23:28 - 2013-07-02 16:16 - 00000000 ____D C:\Users\Alex\Documents\Odin3
2013-12-28 23:28 - 2013-03-18 00:17 - 00000000 ____D C:\Users\Alex\Desktop\GS3
2013-12-28 21:42 - 2013-12-28 21:42 - 00013611 _____ C:\Users\Alex\Documents\hijackthis.log
2013-12-28 21:38 - 2013-12-20 20:08 - 00014029 _____ C:\Users\Alex\Downloads\hijackthis.log
2013-12-28 21:31 - 2013-01-14 22:51 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-28 21:02 - 2013-01-27 10:22 - 00000000 ____D C:\Users\Alex\AppData\Roaming\vlc
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Malwarebytes
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-27 10:22 - 2013-12-27 10:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-27 10:21 - 2013-12-27 10:21 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Alex\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-27 10:19 - 2013-12-27 10:02 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2013-12-27 10:02 - 2013-12-27 10:02 - 01793648 _____ (Malwarebytes                                                ) C:\Users\Alex\Downloads\mbae-setup-0.09.4.2000.exe
2013-12-25 22:53 - 2013-02-08 14:25 - 00000000 ____D C:\Users\Alex\AppData\Roaming\FileZilla
2013-12-25 18:58 - 2013-12-25 18:58 - 00001098 _____ C:\Users\Alex\Desktop\mp3DirectCut.lnk
2013-12-25 18:58 - 2013-12-25 18:58 - 00000000 ____D C:\Users\Alex\AppData\Roaming\mp3DirectCut
2013-12-25 18:58 - 2013-12-25 18:58 - 00000000 ____D C:\Program Files (x86)\mp3DirectCut
2013-12-25 18:54 - 2013-12-25 18:54 - 00300850 _____ C:\Users\Alex\Downloads\mp3DC219.exe
2013-12-24 20:15 - 2013-12-24 20:15 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-24 20:15 - 2013-12-24 20:15 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-24 20:15 - 2013-12-24 20:15 - 00000000 ____D C:\ProgramData\Skype
2013-12-23 21:05 - 2013-12-23 21:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2013-12-23 21:04 - 2013-12-23 21:04 - 00000000 ____D C:\Users\Alex\AppData\Local\Intel_Corporation
2013-12-23 15:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-12-23 15:34 - 2013-01-02 10:26 - 00000000 ____D C:\Users\Alex\AppData\Local\Packages
2013-12-21 19:00 - 2013-12-21 19:00 - 08228192 _____ C:\Users\Alex\Downloads\FRITZ!Fernzugang_german.exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00002770 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2013-12-21 00:20 - 2013-04-13 07:42 - 00000000 ____D C:\Users\Alex\Desktop\Auto
2013-12-21 00:09 - 2013-12-20 20:38 - 00000000 ____D C:\Users\Alex\Desktop\VU+
2013-12-20 20:18 - 2013-12-20 20:18 - 00003694 _____ C:\WINDOWS\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2013-12-20 20:18 - 2013-10-02 07:02 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-20 20:18 - 2013-01-13 16:36 - 00000000 ____D C:\Users\Alex\AppData\Local\Microsoft Help
2013-12-20 20:10 - 2013-12-20 20:10 - 00000000 ____D C:\Users\Alex\Downloads\backups
2013-12-20 20:07 - 2013-12-20 20:07 - 00388608 _____ (Trend Micro Inc.) C:\Users\Alex\Downloads\HiJackThis204.exe
2013-12-20 15:54 - 2013-12-20 15:05 - 00000000 ____D C:\Users\Alex\AppData\Roaming\WindSolutions
2013-12-20 15:06 - 2013-12-20 15:05 - 00000000 ____D C:\ProgramData\WindSolutions
2013-12-20 15:05 - 2013-12-20 15:05 - 04279392 _____ (WindSolutions) C:\Users\Alex\Downloads\Install_CopyTrans_Suite.exe
2013-12-20 15:05 - 2013-12-20 15:05 - 00001420 _____ C:\Users\Alex\Desktop\CopyTrans Control Center.lnk
2013-12-20 15:05 - 2013-12-20 15:05 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2013-12-20 11:23 - 2013-12-20 03:29 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2013-12-20 11:06 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-20 10:29 - 2013-12-20 03:21 - 00000898 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-20 10:19 - 2013-01-03 18:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2013-12-20 03:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2013-12-20 03:29 - 2013-12-20 03:29 - 00002252 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-12-20 03:29 - 2013-12-20 03:29 - 00002232 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2013-12-20 03:27 - 2013-07-21 13:22 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-12-20 03:27 - 2013-01-13 15:21 - 00000000 ____D C:\Users\Alex\AppData\Roaming\DVDVideoSoft
2013-12-20 03:26 - 2013-12-20 03:26 - 33893112 _____ (DVDVideoSoft Ltd.                                          ) C:\Users\Alex\Downloads\FreeYouTubeToMP3Converter.exe
2013-12-20 03:23 - 2013-12-20 03:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2013-12-20 03:16 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\AppData\Local\genienext
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\AppData\Local\cache
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Alex\.android
2013-12-20 03:15 - 2013-12-20 03:15 - 00000000 _____ C:\Users\Alex\daemonprocess.txt
2013-12-20 02:07 - 2013-12-20 02:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-20 01:12 - 2013-11-20 08:57 - 00002136 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2013-12-19 09:22 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2013-12-19 08:32 - 2013-12-19 08:32 - 00003035 ____H C:\Users\Alex\AppData\Local\xevbbcgceicggo.ini
2013-12-19 08:32 - 2013-09-23 09:03 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Configuration
2013-12-19 08:32 - 2013-09-23 09:03 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Backup Tickets
2013-12-19 08:32 - 2013-09-23 09:02 - 00000000 ____D C:\Users\Public\Ticket
2013-12-15 14:22 - 2013-12-15 14:22 - 00002263 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-15 14:18 - 2013-08-18 21:05 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-15 14:16 - 2013-01-03 19:35 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-13 14:59 - 2013-12-13 14:01 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-13 14:57 - 2013-08-22 15:44 - 00533928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-12 12:59 - 2013-12-12 12:59 - 00000000 ____D C:\WINDOWS\PCHEALTH
2013-12-12 12:59 - 2013-01-13 16:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-12 12:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-12-12 12:48 - 2013-05-06 09:13 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2013-12-12 12:48 - 2013-04-01 12:18 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-12 12:48 - 2013-04-01 12:18 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-11 16:46 - 2013-12-11 16:46 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Lite
2013-12-11 08:03 - 2013-01-12 16:57 - 00003766 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-11 08:01 - 2013-12-09 23:43 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-10 17:18 - 2013-02-16 20:22 - 00002224 ____H C:\Users\Alex\Documents\Default.rdp
2013-12-10 09:26 - 2013-12-10 09:26 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-10 09:25 - 2013-12-10 09:25 - 00001481 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-10 09:25 - 2013-01-02 10:27 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-10 09:25 - 2013-01-02 10:27 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-10 09:24 - 2013-12-10 09:24 - 00000020 ___SH C:\Users\Alex\ntuser.ini
2013-12-10 09:24 - 2013-12-10 09:24 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-10 00:07 - 2013-12-10 00:07 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-12-10 00:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2013-12-10 00:07 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2013-12-10 00:07 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2013-12-10 00:06 - 2013-12-10 00:06 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-10 00:06 - 2013-12-09 23:50 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2013-12-10 00:06 - 2013-12-09 23:50 - 00024768 _____ C:\WINDOWS\diagerr.xml
2013-12-10 00:06 - 2013-12-09 23:12 - 00006553 _____ C:\WINDOWS\comsetup.log
2013-12-10 00:03 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2013-12-10 00:03 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-12-09 23:58 - 2013-09-30 04:59 - 00000000 ____D C:\WINDOWS\ShellNew
2013-12-09 23:58 - 2013-08-22 14:25 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2013-12-09 23:58 - 2013-04-11 16:13 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
2013-12-09 23:58 - 2013-03-05 08:19 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2013-12-09 23:58 - 2013-02-08 12:53 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-09 23:58 - 2013-02-06 11:48 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2013-12-09 23:58 - 2013-01-23 21:34 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRITZ!Fernzugang
2013-12-09 23:58 - 2013-01-21 16:07 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-12-09 23:55 - 2013-12-09 23:55 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-12-09 23:55 - 2013-12-09 23:55 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-12-09 23:55 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-12-09 23:55 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-12-09 23:55 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-12-09 23:55 - 2013-08-22 16:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-12-09 23:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-12-09 23:55 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-12-09 23:55 - 2013-03-05 13:06 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2013-12-09 23:55 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2013-12-09 23:54 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2013-12-09 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-09 23:54 - 2013-02-02 12:44 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2013-12-09 23:54 - 2013-01-02 10:26 - 00000000 ____D C:\ProgramData\PRICache
2013-12-09 23:52 - 2013-12-09 23:52 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-09 23:52 - 2013-12-09 23:50 - 00000000 ___RD C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-09 23:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Vorlagen
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Startmenü
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Netzwerkumgebung
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Lokale Einstellungen
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Eigene Dateien
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Druckumgebung
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Musik
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Documents\Eigene Bilder
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Verlauf
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\AppData\Local\Anwendungsdaten
2013-12-09 23:50 - 2013-12-09 23:50 - 00000000 _SHDL C:\Users\Alex\Anwendungsdaten
2013-12-09 23:48 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-12-09 23:47 - 2013-08-22 15:46 - 00002352 _____ C:\WINDOWS\setuperr.log
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\Intel
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-12-09 23:46 - 2013-12-09 23:46 - 00000000 ____D C:\Program Files\AMD
2013-12-09 23:42 - 2013-12-09 23:42 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-12-09 23:42 - 2013-12-09 23:42 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-12-09 23:42 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-12-09 23:41 - 2013-12-09 23:41 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-12-09 23:41 - 2013-12-09 23:41 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-12-09 23:40 - 2013-12-09 23:40 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01200640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-12-09 23:39 - 2013-12-09 23:39 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2013-12-09 23:39 - 2013-12-09 23:39 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-12-09 23:39 - 2013-12-09 23:39 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-12-09 23:39 - 2013-12-09 23:39 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-12-09 23:39 - 2013-12-09 23:39 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-12-09 23:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-12-09 23:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-12-09 23:37 - 2013-12-09 23:37 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-12-09 23:37 - 2013-12-09 23:37 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-12-09 23:37 - 2013-12-09 23:37 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-12-09 23:37 - 2013-12-09 23:37 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-09 23:37 - 2013-12-09 23:37 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files\MSBuild
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-09 23:35 - 2013-12-09 23:35 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-09 23:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-12-09 23:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-12-09 23:34 - 2013-12-09 23:34 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-12-09 23:24 - 2013-01-21 12:28 - 01273290 _____ C:\WINDOWS\WindowsUpdate (1).log
2013-12-09 22:53 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-12-08 18:08 - 2013-09-13 07:43 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Apple Computer
2013-12-08 17:45 - 2013-12-08 17:45 - 00000000 ____D C:\Program Files\iPod
2013-12-08 17:45 - 2013-12-08 17:44 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-12-08 17:45 - 2013-12-08 17:44 - 00000000 ____D C:\Program Files\iTunes
2013-12-08 17:45 - 2013-12-08 17:44 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-12-08 15:42 - 2013-12-08 15:36 - 120000000 _____ C:\Users\Alex\Downloads\Frei.Wild-Still-2CD-DE-2013-VOiCE.rar
2013-12-08 15:39 - 2013-12-08 15:34 - 90223531 _____ C:\Users\Alex\Downloads\Frei.Wild-Still-2CD-DE-2013-VOiCE.r00
2013-12-08 15:01 - 2013-09-20 18:30 - 00000000 ____D C:\Users\Alex\AppData\Local\Apple Computer
2013-12-08 15:00 - 2013-09-11 09:13 - 00000000 ____D C:\ProgramData\Apple Computer
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files\Bonjour
2013-12-08 14:58 - 2013-12-08 14:58 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-12-08 14:58 - 2013-09-11 09:10 - 00000000 ____D C:\ProgramData\Apple
2013-12-08 14:48 - 2013-12-08 14:47 - 100400976 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunes64Setup.exe
2013-12-08 13:39 - 2013-12-08 13:35 - 00174431 _____ C:\Users\Alex\Documents\NAS
2013-12-08 13:04 - 2013-12-08 13:04 - 00000000 ____D C:\88625521814
2013-12-08 13:04 - 2013-12-01 15:39 - 00000000 ____D C:\ProgramData\Synology
2013-12-05 07:27 - 2013-02-26 14:27 - 00409600 ___SH C:\Users\Alex\Desktop\Thumbs.db
2013-12-04 01:05 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-04 01:05 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-03 15:16 - 2013-12-03 15:16 - 00003856 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cec47188de155c
2013-12-03 15:16 - 2013-01-14 22:51 - 00004086 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-01 21:50 - 2013-12-01 21:50 - 05959680 _____ C:\Users\Alex\Downloads\AudioStation-powerpc-5.0-2414.spk
2013-12-01 21:47 - 2013-12-01 21:46 - 07956618 _____ C:\Users\Alex\Downloads\Android-DSdownload.1.2-037.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 07237365 _____ C:\Users\Alex\Downloads\Android-DSaudio.3.1-168.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 06044204 _____ C:\Users\Alex\Downloads\Android-DScloud.1.4.1-081.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 05684811 _____ C:\Users\Alex\Downloads\Android-DSphoto-3-0.3-153.apk
2013-12-01 21:46 - 2013-12-01 21:46 - 03634902 _____ C:\Users\Alex\Downloads\Android-DSfile.3.3-090.apk
2013-12-01 15:45 - 2013-12-01 15:43 - 133785600 _____ C:\Users\Alex\Downloads\DSM_DS109j_3243.pat
2013-12-01 15:39 - 2013-12-01 15:39 - 08861848 _____ C:\Users\Alex\Downloads\SynologyAssistantSetup-4.3-4359.exe
2013-12-01 15:39 - 2013-12-01 15:39 - 00001191 _____ C:\Users\Public\Desktop\Synology Assistant.lnk
2013-12-01 15:39 - 2013-12-01 15:39 - 00000000 ____D C:\Program Files (x86)\Synology

Files to move or delete:
====================
C:\Users\Alex\pb-setup-5.4.0600.exe


Some content of TEMP:
====================
C:\Users\Alex\AppData\Local\Temp\avgnt.exe
C:\Users\Alex\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-30 20:42

==================== End Of Log ============================
--- --- ---

schrauber 01.01.2014 13:25

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 09:00 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55