FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Nina (administrator) on NINÄ on 18-03-2014 18:13:53
Running from C:\Users\Nina\AppData\Local\Microsoft\Windows\INetCache\IE\72D1S6N6
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Smartbar) C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Spotify Ltd) C:\Users\Nina\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(The MathWorks, Inc) e:\bin\win64\setup.exe
() C:\Users\Nina\AppData\Local\Smartbar\Application\Lrcnta.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2894152 2013-09-13] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-12] (CyberLink Corp.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] ( (Atheros Communications))
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\Run: [Spotify Web Helper] - C:\Users\Nina\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-13] (Spotify Ltd)
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\Run: [RGSC] - C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [305064 2008-11-14] (Take-Two Interactive Software, Inc.)
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\Run: [Browser Infrastructure Helper] - C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.exe [21536 2014-02-09] (Smartbar)
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\MountPoints2: {d63e8fc7-9bc2-11e2-be91-20689dd6ee4f} - "E:\LaunchU3.exe" -a
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\MountPoints2: {ef518092-aeb1-11e3-bec8-50b7c373cad4} - "E:\setup.exe"
HKU\S-1-5-21-3777642976-2438380877-1723110391-1002\...\MountPoints2: {efe34efb-8b45-11e3-bec2-50b7c373cad4} - "F:\setup.exe"
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [184048 2013-11-11] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [184048 2013-11-11] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [156256 2013-11-11] (NVIDIA Corporation)
Startup: C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Nina\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TimeLeft.lnk
ShortcutTarget: TimeLeft.lnk -> C:\Program Files (x86)\TimeLeft3\TimeLeft.exe (NesterSoft Inc.)
Startup: C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoM,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoM,&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=cmi_14_11_ff&cd=2XzuyEtN2Y1L1QzuyDtD0ByB0CtAyBtA0C0A0DyEtBzzyDyCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyC0E0EyD0CtAzztGtA0F0FtCtGzyyB0F0CtGyByE0A0DtGtAyCtDtA0B0AtA0EzztDtC0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0CtBtA0ByCtC0DtGtByBtD0BtGtA0FtAtBtG0EtByD0EtGtC0AtAtAyEtByDtAtA0Fzy0E2Q&cr=1863242975&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=cmi_14_11_ff&cd=2XzuyEtN2Y1L1QzuyDtD0ByB0CtAyBtA0C0A0DyEtBzzyDyCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyC0E0EyD0CtAzztGtA0F0FtCtGzyyB0F0CtGyByE0A0DtGtAyCtDtA0B0AtA0EzztDtC0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0CtBtA0ByCtC0DtGtByBtD0BtGtA0FtAtBtG0EtByD0EtGtC0AtAtAyEtByDtAtA0Fzy0E2Q&cr=1863242975&ir=
SearchScopes: HKLM - DefaultScope {29B1A520-C273-44ED-A82A-DB524E785CA0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {29B1A520-C273-44ED-A82A-DB524E785CA0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoA,&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoA,&q={searchTerms}
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoM,&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoM,&q={searchTerms}
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwugvkecS8vMTddoFZ1JOSS-uAGUL0w3qO84rnUsYCU6H0510-7V6HVSJVIpdElhQjLtGFj9vdJEiKmaFOzdYxM09rW8EExuz4guxE3x61HSTQrd5PBnF3KBAxn41kSfrXCsgON8sN95cfnCnuWbHecJuoA,&q={searchTerms}
BHO: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\WINDOWS\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Toolbar: HKLM - Shopping Helper Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Shopping Helper Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\WINDOWS\SysWOW64\mscoree.dll (Microsoft Corporation)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default
FF user.js: detected! => C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\searchplugins\Mysearchdial.xml
FF SearchPlugin: C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Youtube MP3 Podcaster - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\youtubemp3podcaster@jeremy.d.gregorio.com [2014-03-14]
FF Extension: YouTube Unblocker - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\youtubeunblocker@unblocker.yt [2014-03-14]
FF Extension: Shopping Helper Smartbar - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{f5faedf0-95b6-7f41-115b-1dc9ec1a58bc} [2014-03-14]
FF Extension: {7232b622-1e2c-469d-8c59-f451ffbe683e} - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{7232b622-1e2c-469d-8c59-f451ffbe683e}.xpi [2013-11-12]
FF Extension: MySearchDial - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}.xpi [2014-03-18]
FF Extension: QuickTime Player Plus - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{bd870469-ddc2-4719-b3ef-eb4684d9113e}.xpi [2013-11-14]
FF Extension: Adblock Plus - C:\Users\Nina\AppData\Roaming\Mozilla\Firefox\Profiles\or3r34dj.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-24]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-23] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593976 2012-09-05] (Samsung Electronics CO., LTD.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100104 2013-09-06] (ELAN Microelectronics Corp.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-19] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-02-05] (Disc Soft Ltd)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 LUMDriver; C:\windows\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2012-10-20] (Windows (R) 2003 DDK 3790 provider)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
S3 AthBTPort; \SystemRoot\system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; \SystemRoot\system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; \SystemRoot\system32\drivers\btath_avdt.sys [X]
S3 BTATH_HCRP; \SystemRoot\System32\drivers\btath_hcrp.sys [X]
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; \SystemRoot\System32\drivers\btath_rcp.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-18 18:13 - 2014-03-18 18:13 - 00000000 ____D () C:\FRST
2014-03-18 17:29 - 2014-03-18 17:29 - 00000000 ____D () C:\Program Files\MATLAB
2014-03-18 16:17 - 2014-03-18 16:17 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-03-18 16:16 - 2014-03-18 16:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-03-18 16:15 - 2014-03-18 16:16 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-03-18 16:15 - 2014-03-18 16:15 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-03-18 16:10 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-03-18 16:10 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-03-18 16:09 - 2014-03-18 17:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-18 16:09 - 2014-03-18 16:15 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-03-18 16:07 - 2014-03-18 16:07 - 00000000 __RHD () C:\MSOCache
2014-03-18 15:58 - 2014-03-18 15:58 - 00000000 ____D () C:\Program Files\office.tmp
2014-03-15 14:37 - 2014-03-15 14:38 - 00000000 ____D () C:\Users\Nina\Desktop\SoSe 2014
2014-03-14 00:31 - 2014-03-17 00:31 - 00000378 _____ () C:\WINDOWS\Tasks\APSnotifierPP3.job
2014-03-14 00:31 - 2014-03-16 04:40 - 00000378 _____ () C:\WINDOWS\Tasks\APSnotifierPP2.job
2014-03-14 00:31 - 2014-03-14 04:05 - 00000380 _____ () C:\WINDOWS\Tasks\APSnotifierPP1.job
2014-03-14 00:31 - 2014-03-14 04:05 - 00000160 _____ () C:\Users\Nina\AppData\Roaming\aps.uninstall.scan.results
2014-03-14 00:31 - 2014-03-14 00:31 - 00002808 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP1
2014-03-14 00:31 - 2014-03-14 00:31 - 00002806 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP3
2014-03-14 00:31 - 2014-03-14 00:31 - 00002806 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP2
2014-03-14 00:27 - 2014-03-14 00:27 - 00000046 _____ () C:\Users\Nina\AppData\Roaming\WB.CFG
2014-03-14 00:27 - 2014-03-13 16:24 - 00954784 _____ (AnyProtect.com) C:\Users\Nina\AppData\Local\AnyProtectScannerSetup.exe
2014-03-14 00:18 - 2014-03-14 00:18 - 01730272 _____ (Audible Inc.) C:\Users\Nina\Downloads\ActiveSetupN(1).exe
2014-03-14 00:14 - 2014-03-14 04:12 - 00000000 ____D () C:\Users\Nina\AppData\Local\Mobogenie
2014-03-14 00:14 - 2014-03-14 00:22 - 00000000 ____D () C:\Users\Nina\AppData\Local\cache
2014-03-14 00:14 - 2014-03-14 00:14 - 00000000 ____D () C:\Users\Nina\.android
2014-03-14 00:14 - 2014-03-14 00:14 - 00000000 _____ () C:\Users\Nina\daemonprocess.txt
2014-03-14 00:12 - 2014-03-14 04:06 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\Systweak
2014-03-14 00:12 - 2013-08-22 18:36 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\WINDOWS\system32\roboot64.exe
2014-03-14 00:11 - 2014-03-14 00:11 - 00000000 ____D () C:\Users\Nina\AppData\Local\Smartbar
2014-03-14 00:11 - 2014-03-14 00:11 - 00000000 ____D () C:\Users\Nina\AppData\Local\LPT
2014-03-13 16:10 - 2014-01-31 17:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-03-13 16:10 - 2014-01-31 17:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-03-13 16:10 - 2014-01-31 14:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-03-13 16:10 - 2014-01-29 10:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-03-13 16:10 - 2014-01-29 09:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-03-13 16:10 - 2014-01-29 09:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-03-13 16:10 - 2014-01-29 09:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-03-13 16:10 - 2014-01-29 09:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-03-13 16:10 - 2014-01-29 08:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-03-13 16:10 - 2014-01-29 08:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-03-13 16:10 - 2014-01-29 07:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-03-13 16:10 - 2014-01-29 01:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-03-13 16:10 - 2014-01-27 20:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-03-13 16:10 - 2014-01-27 19:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-03-13 16:10 - 2014-01-27 19:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-03-13 16:10 - 2014-01-27 18:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-03-13 16:10 - 2014-01-27 16:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-03-13 16:10 - 2014-01-27 16:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-03-13 16:10 - 2014-01-18 00:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-03-13 16:10 - 2014-01-17 22:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-03-13 16:10 - 2013-12-21 15:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-03-13 16:09 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-13 16:09 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-13 16:09 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-13 16:09 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-13 16:09 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-13 16:09 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-13 16:09 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-13 16:09 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-13 16:09 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-13 16:09 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-13 16:09 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-13 16:09 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-13 16:09 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-13 16:09 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-13 16:09 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-13 16:09 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-13 16:09 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-03-13 16:09 - 2014-01-31 17:15 - 00311640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-03-13 16:09 - 2014-01-31 10:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-03-13 16:09 - 2014-01-29 08:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-03-13 16:09 - 2014-01-27 20:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-03-13 16:09 - 2014-01-27 20:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-03-13 16:09 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-03-13 16:09 - 2014-01-27 19:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-03-13 16:09 - 2014-01-27 19:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-03-13 16:09 - 2014-01-27 18:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-03-13 16:09 - 2014-01-27 18:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-03-13 16:09 - 2014-01-27 12:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-03-13 16:09 - 2013-12-21 09:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-03-13 16:09 - 2013-12-20 11:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-03-13 16:09 - 2013-12-20 11:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-03-13 16:08 - 2014-02-11 04:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-03-13 16:08 - 2014-02-11 03:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-03-13 16:08 - 2014-02-11 03:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-03-13 16:08 - 2013-10-31 01:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-03-13 16:08 - 2013-10-31 01:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-03-13 16:08 - 2013-10-31 01:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-03-11 22:06 - 2014-03-11 22:06 - 00000000 ____D () C:\Users\Nina\Desktop\Audible
2014-03-11 22:05 - 2014-03-11 22:05 - 01730272 _____ (Audible Inc.) C:\Users\Nina\Downloads\ActiveSetupN.exe
2014-03-11 21:58 - 2014-03-14 00:19 - 00001985 _____ () C:\Users\UpdatusUser\Desktop\Audible Manager.lnk
2014-03-11 21:58 - 2014-03-14 00:19 - 00001985 _____ () C:\Users\Nina\Desktop\Audible Manager.lnk
2014-03-11 21:58 - 2014-03-12 22:41 - 00000000 ____D () C:\Users\Nina\AppData\Local\Audible
2014-03-11 21:58 - 2014-03-11 21:58 - 00255352 _____ (Audible, Inc.) C:\WINDOWS\SysWOW64\awrdscdc.ax
2014-03-11 21:58 - 2003-03-18 21:20 - 01060864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2014-03-11 21:57 - 2014-03-14 00:19 - 00000000 ____D () C:\Program Files (x86)\Audible
2014-03-11 21:57 - 2014-03-11 21:58 - 00000000 ____D () C:\Users\Nina\Documents\Audible
2014-03-11 21:57 - 2014-03-11 21:57 - 00000000 ____D () C:\Users\Public\Documents\Audible
2014-03-03 17:00 - 2014-03-03 17:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2014-03-03 17:00 - 2014-03-03 17:00 - 00000000 ____D () C:\WINDOWS\system32\NV
2014-03-01 13:56 - 2014-03-15 14:38 - 00000000 ____D () C:\Users\Nina\Desktop\Windows 7
2014-03-01 13:56 - 2014-03-10 19:03 - 00034886 _____ () C:\Users\Nina\Desktop\SecureDownloadManager.log
2014-03-01 13:55 - 2014-03-01 13:55 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\e-academy Inc
2014-03-01 13:55 - 2014-03-01 13:55 - 00000000 ____D () C:\Users\Nina\AppData\Local\e-academy Inc
2014-03-01 12:53 - 2013-11-27 16:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-01 12:53 - 2013-11-27 14:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-03-01 12:53 - 2013-11-26 10:21 - 18577920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-03-01 12:53 - 2013-11-23 12:49 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-03-01 12:53 - 2013-11-23 04:57 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-03-01 12:53 - 2013-11-23 04:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-03-01 12:53 - 2013-11-23 04:25 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-03-01 12:53 - 2013-11-23 04:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-03-01 12:52 - 2013-12-09 01:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-03-01 12:52 - 2013-12-09 01:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-03-01 12:52 - 2013-11-27 16:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-01 12:52 - 2013-11-27 15:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-03-01 12:52 - 2013-11-27 13:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-03-01 12:52 - 2013-11-27 11:54 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-03-01 12:52 - 2013-11-27 11:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-01 12:52 - 2013-11-27 11:08 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-03-01 12:52 - 2013-11-27 10:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-03-01 12:52 - 2013-11-27 10:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-01 12:52 - 2013-11-27 10:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-01 12:52 - 2013-11-27 10:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-03-01 12:52 - 2013-11-27 09:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-03-01 12:52 - 2013-11-27 09:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-03-01 12:52 - 2013-11-26 14:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-01 12:52 - 2013-11-26 14:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-01 12:52 - 2013-11-26 12:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-03-01 12:52 - 2013-11-26 09:28 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-03-01 12:52 - 2013-11-25 02:45 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-03-01 12:52 - 2013-11-25 02:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-03-01 12:52 - 2013-11-25 00:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-03-01 12:52 - 2013-11-25 00:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-03-01 12:52 - 2013-11-23 13:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-03-01 12:52 - 2013-11-23 09:19 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-03-01 12:52 - 2013-11-23 08:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-03-01 12:52 - 2013-11-23 08:13 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-03-01 12:52 - 2013-11-23 08:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-03-01 12:52 - 2013-11-23 05:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-01 12:52 - 2013-11-23 04:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-03-01 12:52 - 2013-11-23 04:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-03-01 12:52 - 2013-11-21 07:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-03-01 12:52 - 2013-11-21 07:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-03-01 12:52 - 2013-11-15 15:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-03-01 12:52 - 2013-11-15 15:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-03-01 12:52 - 2013-11-15 15:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-03-01 12:52 - 2013-11-15 14:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-03-01 12:52 - 2013-10-31 01:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-03-01 12:52 - 2013-10-31 00:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-02-26 22:18 - 2014-02-26 22:18 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-26 22:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-02-26 22:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-26 22:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-02-26 22:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-26 22:16 - 2014-02-26 22:18 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-26 22:16 - 2013-11-10 22:32 - 06610720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 03477280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 01042720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 00920864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2014-02-26 22:16 - 2013-11-10 22:32 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2014-02-26 22:16 - 2013-11-10 22:32 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2014-02-26 22:16 - 2013-11-06 21:10 - 03457007 _____ () C:\WINDOWS\system32\nvcoproc.bin
2014-02-26 22:15 - 2014-02-26 22:15 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-23 19:37 - 2013-11-11 04:27 - 29339936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 25256224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 22103840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 15930288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 15699056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 13656024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 12947384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 11313952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2014-02-23 19:37 - 2013-11-11 04:27 - 09221632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 07721112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 07648512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 06330064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02990792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02971424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02789664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02633376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02367776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 02007840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6432768.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 01515296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6432768.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 01421584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 01230576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00681760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00603424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00586016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00515360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00353504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00305600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00184048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00156256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2014-02-23 19:37 - 2013-11-11 04:27 - 00022814 _____ () C:\WINDOWS\system32\nvinfo.pb
==================== One Month Modified Files and Folders =======
2014-03-18 18:13 - 2014-03-18 18:13 - 00000000 ____D () C:\FRST
2014-03-18 18:10 - 2013-10-23 17:25 - 01430921 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-18 18:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-03-18 17:29 - 2014-03-18 17:29 - 00000000 ____D () C:\Program Files\MATLAB
2014-03-18 17:26 - 2013-04-04 18:11 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-03-18 17:24 - 2013-11-06 19:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-18 17:18 - 2012-12-01 13:53 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3777642976-2438380877-1723110391-1002
2014-03-18 17:13 - 2014-03-18 16:09 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-18 16:17 - 2014-03-18 16:17 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-03-18 16:17 - 2013-09-30 04:59 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-03-18 16:17 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-18 16:16 - 2014-03-18 16:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-03-18 16:16 - 2014-03-18 16:15 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-03-18 16:15 - 2014-03-18 16:15 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-03-18 16:15 - 2014-03-18 16:09 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-03-18 16:14 - 2013-10-23 18:39 - 00003910 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3A4D2D99-FF87-4C43-84E8-B39F8B1D66AF}
2014-03-18 16:11 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-03-18 16:11 - 2013-08-22 14:25 - 00000167 _____ () C:\WINDOWS\win.ini
2014-03-18 16:10 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-03-18 16:10 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-03-18 16:10 - 2012-09-10 13:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-03-18 16:07 - 2014-03-18 16:07 - 00000000 __RHD () C:\MSOCache
2014-03-18 15:58 - 2014-03-18 15:58 - 00000000 ____D () C:\Program Files\office.tmp
2014-03-18 15:57 - 2014-02-05 19:21 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-03-18 15:56 - 2014-02-05 19:23 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\DAEMON Tools Lite
2014-03-17 20:21 - 2012-12-04 20:45 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\Spotify
2014-03-17 19:45 - 2012-12-04 20:47 - 00000000 ____D () C:\Users\Nina\AppData\Local\Spotify
2014-03-17 19:37 - 2013-03-06 23:18 - 00000000 ____D () C:\Users\Nina\AppData\Local\CrashDumps
2014-03-17 00:31 - 2014-03-14 00:31 - 00000378 _____ () C:\WINDOWS\Tasks\APSnotifierPP3.job
2014-03-16 16:06 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-03-16 13:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-03-16 04:45 - 2012-09-10 12:47 - 00000000 ____D () C:\ProgramData\WinClon
2014-03-16 04:40 - 2014-03-14 00:31 - 00000378 _____ () C:\WINDOWS\Tasks\APSnotifierPP2.job
2014-03-16 04:40 - 2013-09-29 20:04 - 00010900 _____ () C:\WINDOWS\PFRO.log
2014-03-16 04:40 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-03-16 04:40 - 2013-08-22 15:44 - 00518320 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-16 04:39 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-03-16 04:38 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-16 04:38 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-16 04:38 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-16 04:38 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-15 14:38 - 2014-03-15 14:37 - 00000000 ____D () C:\Users\Nina\Desktop\SoSe 2014
2014-03-15 14:38 - 2014-03-01 13:56 - 00000000 ____D () C:\Users\Nina\Desktop\Windows 7
2014-03-15 14:38 - 2012-12-19 14:24 - 00000000 ____D () C:\Users\Nina\Documents\HAW Hamburg
2014-03-15 13:10 - 2012-09-10 12:50 - 00000000 ____D () C:\ProgramData\Samsung
2014-03-15 13:10 - 2012-09-10 11:50 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-03-14 04:12 - 2014-03-14 00:14 - 00000000 ____D () C:\Users\Nina\AppData\Local\Mobogenie
2014-03-14 04:11 - 2012-12-01 11:09 - 00000000 ___RD () C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-14 04:06 - 2014-03-14 00:12 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\Systweak
2014-03-14 04:05 - 2014-03-14 00:31 - 00000380 _____ () C:\WINDOWS\Tasks\APSnotifierPP1.job
2014-03-14 04:05 - 2014-03-14 00:31 - 00000160 _____ () C:\Users\Nina\AppData\Roaming\aps.uninstall.scan.results
2014-03-14 00:56 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-03-14 00:31 - 2014-03-14 00:31 - 00002808 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP1
2014-03-14 00:31 - 2014-03-14 00:31 - 00002806 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP3
2014-03-14 00:31 - 2014-03-14 00:31 - 00002806 _____ () C:\WINDOWS\System32\Tasks\APSnotifierPP2
2014-03-14 00:27 - 2014-03-14 00:27 - 00000046 _____ () C:\Users\Nina\AppData\Roaming\WB.CFG
2014-03-14 00:22 - 2014-03-14 00:14 - 00000000 ____D () C:\Users\Nina\AppData\Local\cache
2014-03-14 00:19 - 2014-03-11 21:58 - 00001985 _____ () C:\Users\UpdatusUser\Desktop\Audible Manager.lnk
2014-03-14 00:19 - 2014-03-11 21:58 - 00001985 _____ () C:\Users\Nina\Desktop\Audible Manager.lnk
2014-03-14 00:19 - 2014-03-11 21:57 - 00000000 ____D () C:\Program Files (x86)\Audible
2014-03-14 00:18 - 2014-03-14 00:18 - 01730272 _____ (Audible Inc.) C:\Users\Nina\Downloads\ActiveSetupN(1).exe
2014-03-14 00:14 - 2014-03-14 00:14 - 00000000 ____D () C:\Users\Nina\.android
2014-03-14 00:14 - 2014-03-14 00:14 - 00000000 _____ () C:\Users\Nina\daemonprocess.txt
2014-03-14 00:14 - 2013-10-23 17:32 - 00000000 ____D () C:\Users\Nina
2014-03-14 00:11 - 2014-03-14 00:11 - 00000000 ____D () C:\Users\Nina\AppData\Local\Smartbar
2014-03-14 00:11 - 2014-03-14 00:11 - 00000000 ____D () C:\Users\Nina\AppData\Local\LPT
2014-03-13 16:24 - 2014-03-14 00:27 - 00954784 _____ (AnyProtect.com) C:\Users\Nina\AppData\Local\AnyProtectScannerSetup.exe
2014-03-12 22:41 - 2014-03-11 21:58 - 00000000 ____D () C:\Users\Nina\AppData\Local\Audible
2014-03-11 22:06 - 2014-03-11 22:06 - 00000000 ____D () C:\Users\Nina\Desktop\Audible
2014-03-11 22:05 - 2014-03-11 22:05 - 01730272 _____ (Audible Inc.) C:\Users\Nina\Downloads\ActiveSetupN.exe
2014-03-11 21:58 - 2014-03-11 21:58 - 00255352 _____ (Audible, Inc.) C:\WINDOWS\SysWOW64\awrdscdc.ax
2014-03-11 21:58 - 2014-03-11 21:57 - 00000000 ____D () C:\Users\Nina\Documents\Audible
2014-03-11 21:57 - 2014-03-11 21:57 - 00000000 ____D () C:\Users\Public\Documents\Audible
2014-03-11 21:27 - 2013-04-04 18:11 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-03-10 19:09 - 2013-09-30 05:14 - 01780340 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-10 19:09 - 2013-09-30 04:56 - 00766620 _____ () C:\WINDOWS\system32\perfh007.dat
2014-03-10 19:09 - 2013-09-30 04:56 - 00159902 _____ () C:\WINDOWS\system32\perfc007.dat
2014-03-10 19:06 - 2013-08-22 15:46 - 00341830 _____ () C:\WINDOWS\setupact.log
2014-03-10 19:03 - 2014-03-01 13:56 - 00034886 _____ () C:\Users\Nina\Desktop\SecureDownloadManager.log
2014-03-09 23:22 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-03-09 23:17 - 2012-12-01 11:06 - 00000000 ____D () C:\Users\Nina\AppData\Local\Packages
2014-03-04 23:53 - 2013-11-15 10:30 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-03-04 23:53 - 2013-11-15 10:30 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-03 17:02 - 2012-12-01 11:09 - 00000000 ___RD () C:\Users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-03 17:00 - 2014-03-03 17:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2014-03-03 17:00 - 2014-03-03 17:00 - 00000000 ____D () C:\WINDOWS\system32\NV
2014-03-03 16:57 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-03-03 16:57 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-03-03 16:57 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-03-01 20:07 - 2013-09-24 11:37 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-01 20:07 - 2013-09-24 11:37 - 00000000 ____D () C:\ProgramData\Skype
2014-03-01 13:55 - 2014-03-01 13:55 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\e-academy Inc
2014-03-01 13:55 - 2014-03-01 13:55 - 00000000 ____D () C:\Users\Nina\AppData\Local\e-academy Inc
2014-03-01 12:44 - 2013-09-07 17:24 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-01 12:39 - 2012-12-11 22:13 - 88567024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-01 07:05 - 2014-03-13 16:09 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-03-01 05:58 - 2014-03-13 16:09 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-03-01 05:30 - 2014-03-13 16:09 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-03-01 05:17 - 2014-03-13 16:09 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-03-01 04:54 - 2014-03-13 16:09 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-03-01 04:47 - 2014-03-13 16:09 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-03-01 04:42 - 2014-03-13 16:09 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-03-01 04:18 - 2014-03-13 16:09 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-03-01 04:14 - 2014-03-13 16:09 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-03-01 04:10 - 2014-03-13 16:09 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-03-01 04:03 - 2014-03-13 16:09 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-03-01 03:57 - 2014-03-13 16:09 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-03-01 03:38 - 2014-03-13 16:09 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-03-01 03:32 - 2014-03-13 16:09 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-03-01 03:27 - 2014-03-13 16:09 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-03-01 03:25 - 2014-03-13 16:09 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-03-01 03:25 - 2014-03-13 16:09 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-26 22:18 - 2014-02-26 22:18 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-02-26 22:18 - 2014-02-26 22:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-26 22:18 - 2014-02-26 22:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-26 22:18 - 2013-10-23 17:25 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-26 22:18 - 2013-10-23 17:25 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-26 22:16 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Help
2014-02-26 22:15 - 2014-02-26 22:15 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-26 20:11 - 2012-12-01 18:41 - 00000000 ____D () C:\Users\Nina\AppData\Roaming\vlc
Files to move or delete:
====================
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
Some content of TEMP:
====================
C:\Users\Nina\AppData\Local\Temp\avgnt.exe
C:\Users\Nina\AppData\Local\Temp\ose00000.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2014-03-13 16:09] - [2014-01-31 17:15] - 0311640 ____A (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02
LastRegBack: 2014-03-16 13:43
==================== End Of Log ============================
--- --- ---
Addition.txt:
--- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Nina at 2014-03-18 18:17:41
Running from C:\Users\Nina\AppData\Local\Microsoft\Windows\INetCache\IE\72D1S6N6
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
Allshare Play Link (HKLM-x32\...\{91786428-D4AA-476D-8AF9-A63FFAC2901F}) (Version: 1.0.0 - Samsung)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 2893968.4759644.48.2147344384 - Audible, Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.1912 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.1912 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Dassault Systemes Software B19 (HKLM\...\Dassault Systemes B19_0) (Version: - )
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
Dassault Systemes Software VC9 Prerequisites x86-x64 (HKLM\...\{F2F2DEA7-36AB-4E13-907C-D8BDE775EF97}) (Version: 9.1.2 - Dassault Systemes)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.48.5 - Electronic Arts)
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
EA Download Manager (HKLM-x32\...\EADM) (Version: 5.0.0.255 - Electronic Arts, Inc.)
Easy File Share (HKLM-x32\...\{A7C37D4B-F37A-42E8-9B6A-B28C18AD4C12}) (Version: 1.3.4 - Samsung Electronics CO.,LTD.)
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 14.3.20130522 - Landesfinanzdirektion Thüringen)
E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung Electronics CO., LTD.)
EPSON SX440 Series Printer Uninstall (HKLM\...\EPSON SX440 Series) (Version: - SEIKO EPSON Corporation)
ETDWare X64 11.7.18.2_WHQL (HKLM\...\Elantech) (Version: 11.7.18.2 - ELAN Microelectronic Corp.)
Extended Update (HKCU\...\UpdaterEX) (Version: - )
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
GIMP 2.8.2 (HKLM\...\GIMP-2_is1) (Version: 2.8.2 - The GIMP Team)
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Help Desk (HKLM\...\{AEC9D273-E162-4614-83F1-722B8C74B185}) (Version: 1.0.96 - Samsung Electronics CO., LTD.)
HP Deskjet 1050 J410 series - Grundlegende Software für das Gerät (HKLM\...\{C3F12DD0-54B1-4B2B-A82B-FA43502BC550}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33070) (Version: 3.6.1.33070.11 - Intel)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Access MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Groove MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 25.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 25.0 (x86 de)) (Version: 25.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 25.0 - Mozilla)
Mozilla Thunderbird 17.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 17.0 (x86 de)) (Version: 17.0 - Mozilla)
MSC Nastran 2012.2 Student Edition (HKLM-x32\...\{CA5CE004-973B-4316-9FD7-A8BBD6C52ED7}) (Version: 12.2.0 - MSC.Software Corporation)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
NVIDIA Grafiktreiber 327.68 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.68 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.141.953 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.14.17 (Version: 1.14.17 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Systemsteuerung 327.68 (Version: 327.68 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.0 - Frank Heindörfer, Philip Chinery)
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version: - PopCap Games)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.306 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Quick Starter (HKLM\...\{EC36E2BC-86F7-44C9-84B2-93930F0FBDBF}) (Version: 1.0.2 - Samsung Electronics CO., LTD.)
Raccolta foto (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.19.726.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7055 - Realtek Semiconductor Corp.)
Recovery (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 6.0.10.0 - Samsung Electronics CO., LTD.)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
RollerCoaster Tycoon 2 (HKLM-x32\...\{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}) (Version: - )
RollerCoaster Tycoon 2: Wacky Worlds (HKLM-x32\...\{B1AD83A0-DC92-41E3-B111-E9472349768C}) (Version: - )
S Agent (Version: 1.1.45 - Samsung Electronics CO., LTD.) Hidden
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Settings (HKLM-x32\...\{52E5DE60-C96B-42CC-9A37-FE04725940AE}) (Version: 2.0.0 - Samsung Electronics CO., LTD.)
Shopping Helper Smartbar (HKLM-x32\...\{AC6E9B2A-A7E6-4B17-8A6C-29D519673E12}) (Version: 10.215.63.15249 - ReSoft Ltd.) <==== ATTENTION
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
Support Center (HKLM\...\{843A1BDC-0879-4E5B-83E1-B81CC0CF3580}) (Version: 2.1.1201 - Samsung Electronics CO., LTD.)
Support Center FAQ (x32 Version: 1.0.1 - Samsung Electronics CO., LTD.) Hidden
SW Update (HKLM-x32\...\{DA06101F-FD76-4BF0-88BD-B26A197005E3}) (Version: 2.1.21 - Samsung Electronics CO., LTD.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TimeLeft (HKLM-x32\...\TIMELEFT3_is1) (Version: 3.62 - NesterSoft Inc.)
User Guide (HKLM-x32\...\{039EA659-E421-45C6-8913-BED5D69B5536}) (Version: 1.1.00 - Samsung Electronics CO., LTD.)
VBA (3821b) (x32 Version: 6.01.00.1234 - Microsoft Corporation) Hidden
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
Windows Driver Package - Samsung Electronics Co. Ltd. (RadioHIDMini) HIDClass (07/27/2012 20.57.1.735) (HKLM\...\9F04C462DAB591BDCCE784F77E4D4F1736010B92) (Version: 07/27/2012 20.57.1.735 - Samsung Electronics Co. Ltd.)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
==================== Restore Points =========================
18-03-2014 15:06:37 Installed Microsoft Office Professional Plus 2013
18-03-2014 15:08:01 PROPLUSR
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {122F7C5D-A5BB-4442-8AFD-35C4515B0F7A} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {1DC19FEC-9FEB-4E10-80FA-27E0A2CDF341} - System32\Tasks\Settings => C:\Program Files (x86)\Samsung\Settings\sSettings.exe [2012-09-05] (Samsung Electronics CO., LTD.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {21606BA0-A48C-4A87-98F4-501D0F93F60B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {2C45A21A-C7B4-41CB-BE6B-81340F233C77} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11] (Adobe Systems Incorporated)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4A49376D-2E02-4DEA-9492-38EDFFB55B04} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {661A4E64-4165-4939-A4FD-C79518B3F231} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6C267B8D-AE54-48DC-802B-A0EACDF6CE3A} - System32\Tasks\MATLAB R2013b Startup Accelerator => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe [2013-08-05] ()
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7C71EB44-63F4-4D2A-8D3D-5A63BCF6A7A4} - System32\Tasks\WLANStartup => C:\Program Files (x86)\Samsung\Easy Settings\WLANStartup.exe
Task: {8326EA95-BA4E-4473-9C84-87DAA20D6E50} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-01] (Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9AF8E235-D3F0-499F-A457-B8650237C9FC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {C3291FA9-B876-4BD0-8937-17D9BC4552C4} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D6489B36-F1B8-4220-90F6-C5EC9AC6E7BD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {E8395A9C-4BB2-4F2D-8F6C-622F352B0E3E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {E99F740A-CFB4-448A-BF72-8C408CDC2042} - System32\Tasks\advRecovery => C:\Program Files\Samsung\Recovery\WCScheduler.exe [2013-08-23] (SEC)
Task: {EA833489-F06D-4081-8B80-F8FEE934AC03} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2013-10-16] (Samsung Electronics CO., LTD.)
Task: {F1A78784-A181-491A-8D71-D04C4383CF85} - \UpdaterEX No Task File
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe
Task: C:\WINDOWS\Tasks\MATLAB R2013b Startup Accelerator.job => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe
==================== Loaded Modules (whitelisted) =============
2012-09-05 08:50 - 2012-09-05 08:50 - 00085112 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
2013-09-25 03:04 - 2013-09-25 03:04 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-09-25 03:01 - 2013-09-25 03:01 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-09-25 03:08 - 2013-09-25 03:08 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2012-12-14 01:42 - 2012-12-14 01:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-10-16 19:15 - 2013-10-16 19:15 - 00088624 _____ () C:\Program Files\Samsung\S Agent\ToastX64.dll
2014-02-23 19:37 - 2013-11-11 04:27 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-08-05 23:20 - 2013-08-05 23:20 - 00022528 ____R () E:\bin\win64\nativewebproxy.dll
2014-03-18 17:13 - 2013-07-02 02:45 - 01420800 _____ () C:\Users\Nina\AppData\Local\Temp\TMWDF37.tmp\bin\win64\instutil.dll
2014-03-18 17:13 - 2013-08-05 23:20 - 00022528 _____ () C:\Users\Nina\AppData\Local\Temp\TMWDF37.tmp\bin\win64\nativewebproxy.dll
2013-07-02 02:45 - 2013-07-02 02:45 - 01420800 ____R () E:\bin\win64\instutil.dll
2014-03-18 17:13 - 2013-08-05 23:24 - 00089088 _____ () C:\Users\Nina\AppData\Local\Temp\TMWDF37.tmp\bin\win64\mwinstall.dll
2013-07-08 23:02 - 2013-07-08 23:02 - 00115712 ____R () e:\bin\win64\libmwwinreg.dll
2014-02-09 12:40 - 2014-02-09 12:40 - 00012832 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Lrcnta.exe
2013-03-14 18:07 - 2013-03-14 18:05 - 00397704 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00028792 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdWrapper.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 01012856 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmd.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00110712 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsBase.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00056440 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\HookDllPS2.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00211064 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\WinCRT.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00026744 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsAPI.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00110712 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsBase.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00060536 _____ () C:\Program Files (x86)\Samsung\Settings\EasyMovieEnhancer.dll
2012-09-05 08:50 - 2012-09-05 08:50 - 00103544 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsCmdClient.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00033824 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00063520 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srau.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00166432 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 02310688 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00058400 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\spbl.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00152608 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00013344 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\siem.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00054304 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\sppsm.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00728096 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00082464 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014368 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00017440 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00052256 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srut.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00020512 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srsbs.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00059424 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00037408 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srbu.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014368 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\sgml.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00053280 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014880 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srpdm.dll
2014-02-09 12:40 - 2014-02-09 12:40 - 00048160 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2014-02-09 12:37 - 2014-02-09 12:37 - 00026144 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00025632 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00193056 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\sgmu.dll
2014-02-09 12:37 - 2014-02-09 12:37 - 00061440 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00247328 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\srns.dll
2012-09-10 12:55 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 03:34 - 2012-06-08 03:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-02-07 13:15 - 2013-09-16 12:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00141344 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\SmartbarInternetExplorerBHO.dll
2014-02-09 12:40 - 2014-02-09 12:40 - 00020512 _____ () C:\Users\Nina\AppData\Local\Smartbar\Application\lrcnt.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Nina\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: EA Core => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MSCONFIG\startupreg: Epson Stylus SX440 => C:\windows\system32\spool\DRIVERS\x64\3\E_IATIHBE.EXE /FU "C:\Users\Nina\AppData\Local\Temp\E_S26FF.tmp" /EF "HKCU"
MSCONFIG\startupreg: Spotify => "C:\Users\Nina\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Nina\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/18/2014 05:31:54 PM) (Source: Application Hang) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.16518 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 332b4
Startzeit: 01cf42ba42a32de4
Endzeit: 125
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Berichts-ID: ce1764ce-aeba-11e3-bec8-50b7c373cad4
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/18/2014 05:12:27 PM) (Source: Application Hang) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.16518 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2ffcc
Startzeit: 01cf42b9a0c494f3
Endzeit: 46
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Berichts-ID: 16b889fa-aeb8-11e3-bec8-50b7c373cad4
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/18/2014 05:10:12 PM) (Source: Application Hang) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.16518 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1b2a8
Startzeit: 01cf4201b4e3bc3f
Endzeit: 364
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Berichts-ID: c524b8ec-aeb7-11e3-bec8-50b7c373cad4
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/18/2014 10:15:17 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/17/2014 07:37:39 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.16518, Zeitstempel: 0x52f347b2
Name des fehlerhaften Moduls: MSHTML.dll, Version: 11.0.9600.16521, Zeitstempel: 0x5311622b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001cb438
ID des fehlerhaften Prozesses: 0x16e00
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (03/17/2014 00:07:11 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/16/2014 00:07:10 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/15/2014 01:07:25 PM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/14/2014 08:09:47 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.16518, Zeitstempel: 0x52f347b2
Name des fehlerhaften Moduls: MSHTML.dll, Version: 11.0.9600.16518, Zeitstempel: 0x52f365cb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003681db
ID des fehlerhaften Prozesses: 0x5d0
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (03/14/2014 04:12:43 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: avgnt.exe, Version: 14.0.3.332, Zeitstempel: 0x52f8ba9d
Name des fehlerhaften Moduls: avgnt.exe, Version: 14.0.3.332, Zeitstempel: 0x52f8ba9d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000bb40
ID des fehlerhaften Prozesses: 0x1568
Startzeit der fehlerhaften Anwendung: 0xavgnt.exe0
Pfad der fehlerhaften Anwendung: avgnt.exe1
Pfad des fehlerhaften Moduls: avgnt.exe2
Berichtskennung: avgnt.exe3
Vollständiger Name des fehlerhaften Pakets: avgnt.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: avgnt.exe5
System errors:
=============
Error: (03/18/2014 04:40:18 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (03/18/2014 04:33:07 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (03/18/2014 10:06:20 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/18/2014 10:03:26 AM) (Source: DCOM) (User: Ninä)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (03/17/2014 10:08:31 PM) (Source: DCOM) (User: Ninä)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (03/17/2014 10:08:01 PM) (Source: DCOM) (User: Ninä)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (03/17/2014 10:00:01 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/16/2014 07:09:32 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (03/16/2014 06:56:35 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 107.
Error: (03/16/2014 06:56:35 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Eine SSL 3.0-Verbindungsanforderung wurde von einer Remoteclientanwendung übermittelt, jedoch werden keine der Verschlüsselungssammlungen, die von der Clientanwendung unterstützt werden, vom Server unterstützt. Fehler bei der SSL-Verbindungsanforderung.
Microsoft Office Sessions:
=========================
Error: (03/18/2014 05:31:54 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE11.0.9600.16518332b401cf42ba42a32de4125C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEce1764ce-aeba-11e3-bec8-50b7c373cad4
Error: (03/18/2014 05:12:27 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE11.0.9600.165182ffcc01cf42b9a0c494f346C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE16b889fa-aeb8-11e3-bec8-50b7c373cad4
Error: (03/18/2014 05:10:12 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE11.0.9600.165181b2a801cf4201b4e3bc3f364C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEc524b8ec-aeb7-11e3-bec8-50b7c373cad4
Error: (03/18/2014 10:15:17 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/17/2014 07:37:39 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.1651852f347b2MSHTML.dll11.0.9600.165215311622bc0000005001cb43816e0001cf420fe84e4529C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\WINDOWS\SYSTEM32\MSHTML.dll37769b4c-ae03-11e3-bec8-50b7c373cad4
Error: (03/17/2014 00:07:11 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/16/2014 00:07:10 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/15/2014 01:07:25 PM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (03/14/2014 08:09:47 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.1651852f347b2MSHTML.dll11.0.9600.1651852f365cbc0000005003681db5d001cf3fb8e60b450cC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\WINDOWS\SYSTEM32\MSHTML.dll34f16770-abac-11e3-bec7-50b7c373cad4
Error: (03/14/2014 04:12:43 AM) (Source: Application Error)(User: )
Description: avgnt.exe14.0.3.33252f8ba9davgnt.exe14.0.3.33252f8ba9dc00000050000bb40156801cf3ee08dc5b8a8C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exeC:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe820400a0-ab26-11e3-bec7-50b7c373cad4
CodeIntegrity Errors:
===================================
Date: 2014-02-26 22:18:12.708
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Definition Updates\{4C9F08D7-9A1F-4F4D-9ED6-85496CA6FA7C}\mpengine.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-02-26 22:18:10.145
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Definition Updates\{3A12E534-CA39-4781-90A4-B742B63663C8}\mpengine.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Percentage of memory in use: 47%
Total physical RAM: 7891.53 MB
Available physical RAM: 4108.28 MB
Total Pagefile: 9427.54 MB
Available Pagefile: 4972.69 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:440.15 GB) (Free:230.59 GB) NTFS
Drive e: (MATHWORKS_R2013B) (CDROM) (Total:6.75 GB) (Free:0 GB) CDFS
Drive f: (MATHWORKS_R2013B) (CDROM) (Total:6.75 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: CF3E648F)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
