Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   CPU-Auslastung nach beenden eines Spiels 50-60% (svchost.exe) (https://www.trojaner-board.de/154757-cpu-auslastung-beenden-spiels-50-60-svchost-exe.html)

buddhavs 04.06.2014 08:43
CPU-Auslastung nach beenden eines Spiels 50-60% (svchost.exe)
 
Hallo,

ich habe ein Problem mit meinem Notebook.

Immer nach beenden eines Spiels (Fifa 14, Formel1, Battlefield....), bleibt die CPU-Auslastung zwischen 50 und 60 Prozent.

Laut Taskmanager ist es der SystemProzess svchost.exe.

Benötige Hilfe ;-)

Danke

schrauber 04.06.2014 08:57
hi,

ProcessExplorer als Ersatz für den Windows Taskmanager installieren

Lade Dir den Process Explorer als Ersatz für den Taskmanager herunter und installiere ihn, hier findest Du eine Anleitung. Das ist ein wesentlich leistungsfähigerer Ersatz für den Windows-Taskmanager. Im Menü unter "Options" kannst Du den ProcessExplorer dauerhaft als Ersatz für den Taskmanager einrichten (Replace Taskmanager). Das ist sehr empfehlenswert, weil der ProcessExplorer erheblich mehr Funktionen als der Taskmanager hat. Wenn Du diese Einstellung gemacht hast, öffnet sich mit der Tastenkombination STRG + ALT + Entf. nicht mehr der Taskmanager, sondern der ProcessExplorer. Das kann jederzeit durch Abhaken dieser Einstellung wieder rückgängig gemacht werden.

Was wir jetzt konkret brauchen: In jeder Zeile steht ein Prozess, ein paar der Zeilen sind keine richtigen Prozesse, sondern nur Pseudoprozesse für die Tätigkeit des Windos-Kernels. Im Menü View => Select Columns wird ein Dialog geöffnet, in dem Du auswählen kannst, welche Spalten mit Informationen zu den Prozessen angezeigt werden sollen. In dem gehe in das Register "Process Performance" und stelle sicher, dass dort "CPU Usage" angehakt ist, "CPU History" wäre ebenfalls sinnvoll. Unter "CPU Usage" wird der aktuelle Wert der Prozessorauslastung für jeden Prozess angezeigt (im Tabellentitel steht nur kurz "CPU"), "CPU History" blendet für jeden Prozess ein Diagramm ein, das eine Kurve mit der Prozessorauslastung für die letzte Zeit anzeigt.

Damit sollte es Dir möglich sein, zu identifizieren, welcher Prozess Deine CPU in Trab hält. Mache einen Doppelklick auf den Prozess. Du kannst von dem ganzen auch einen Screenshot machen und ihn als Anhang mit Deiner Antwort hochladen (auf "Erweitert" unter dem Textfeld klicken und über "Anhänge verwalten" auf Deinem Rechner suchen lassen und über "Hochladen" anhängen).



Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


buddhavs 04.06.2014 09:16
Ich kann den Fehler im Moment nicht reproduzieren...

Hier die FRST.txt:


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-06-2014
Ran by Eugen (administrator) on EUGEN-PC on 04-06-2014 10:03:19
Running from C:\Users\Eugen\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\DeviceDisplayObjectProvider.exe
(Microsoft Corporation) C:\Windows\System32\DeviceDisplayObjectProvider.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Sysinternals - www.sysinternals.com) C:\Users\Eugen\Desktop\ProcessExplorer\procexp.exe
(Sysinternals - www.sysinternals.com) C:\Users\Eugen\AppData\Local\Temp\procexp64.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13260944 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2867984 2012-01-05] (Synaptics Incorporated)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11406608 2012-02-21] (Intel Corporation)
HKLM\...\Run: [MsmqIntCert] => regsvr32 /s mqrt.dll
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3888648 2014-05-28] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\RunOnce: [20140529] - C:\Program Files\AVAST Software\Avast\setup\emupdate\19e3c48b-744f-41cf-98ec-fe0ca1ec9a79.exe /check [183208 2014-05-30] (AVAST Software)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1236569144-611998795-838250545-1001\...\Run: [uTorrent] => C:\Users\Eugen\AppData\Roaming\uTorrent\uTorrent.exe [1268560 2014-05-22] (BitTorrent Inc.)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [166568 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs: ,C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [166568 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\Windows\SysWOW64\nvinit.dll => c:\Windows\SysWOW64\nvinit.dll [146480 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32:  C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32: ,C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [146480 2014-05-20] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://de.yhs4.search.yahoo.com/yhs/search?type=prc265&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com?fr=hp-avast&type=prc265
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com?fr=hp-avast&type=prc265
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com?fr=hp-avast&type=prc265
URLSearchHook: HKLM-x32 - (No Name) - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?type=prc265&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?type=prc265&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?type=prc265&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKCU - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?type=prc265&hspart=avast&hsimp=yhs-001&p={searchTerms}
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: No Name - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -  No File
BHO-x32: No Name - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -  No File
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Java\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Samsung BHO Class - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Java\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -  No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 172.20.0.1
Tcpip\..\Interfaces\{5FD91843-3AE1-472C-9515-E01B26A8728A}: [NameServer]129.143.2.4,129.143.2.1

FireFox:
========
FF ProfilePath: C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\imwrfoal.default
FF Homepage: https://de.yahoo.com?fr=hp-avast&type=prc265
FF SelectedSearchEngine: Yahoo! (Avast)
FF DefaultSearchEngine: Yahoo! (Avast)
FF SearchEngineOrder.1: Yahoo! (Avast)
FF Keyword.URL: hxxp://de.yhs4.search.yahoo.com/yhs/search
FF NewTab: about:newtab
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Eugen\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Eugen\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Eugen\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Eugen\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\imwrfoal.default\searchplugins\yahoo-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Greasemonkey - C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\imwrfoal.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-05-31]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-10-30]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-11-04]

Chrome:
=======
CHR HomePage: https://de.yahoo.com?fr=hp-avast&type=prc265
CHR StartupUrls: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll (Amazon.com, Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\Eugen\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Eugen\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Google Update) - C:\Users\Eugen\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\windows\SysWOW64\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-04-27]
CHR Extension: (Google Drive) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-09]
CHR Extension: (YouTube) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-09]
CHR Extension: (Adblock Plus) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-23]
CHR Extension: (Google-Suche) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-09]
CHR Extension: (AdBlock) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-04-30]
CHR Extension: (avast! Online Security) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-10-23]
CHR Extension: (ProxMate - Proxy on steroids!) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifalmiidchkjjmkkbkoaibpmoeichmki [2014-03-17]
CHR Extension: (Google Wallet) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-30]
CHR Extension: (Google Mail) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-09]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-01-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-05-28]
CHR HKLM-x32\...\Chrome\Extension: [lfffjahnfbocnaooecgijfnbpcfekoik] - C:\ProgramData\adawaretb\shortcuts\chrome\adawaretb.crx [2014-05-28]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-28] (AVAST Software)
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-03-13] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-03-13] (BlueStack Systems, Inc.)
S4 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [770832 2014-03-13] (BlueStack Systems, Inc.)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation)
S4 Giraffic; C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe [2245232 2013-05-13] (Giraffic)
S3 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [15872 2010-11-21] (Microsoft Corporation)
S3 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2000-01-01] (Intel Corporation)
S3 iprip; C:\Windows\System32\iprip.dll [35328 2009-07-14] (Microsoft Corporation)
S3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2000-01-01] (Intel Corporation)
S4 LkCitadelServer; C:\windows\SysWOW64\lkcitdl.exe [695136 2008-10-31] (National Instruments, Inc.)
S4 lkClassAds; C:\windows\SysWOW64\lkads.exe [42544 2009-06-18] (National Instruments Corporation)
S4 lkTimeSync; C:\windows\SysWOW64\lktsrv.exe [53296 2009-06-18] (National Instruments Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
S4 MSMQ; C:\Windows\system32\mqsvc.exe [9216 2009-07-14] (Microsoft Corporation)
S4 MSMQTriggers; C:\Windows\system32\mqtgsvc.exe [189440 2010-11-21] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-05-08] ()
S4 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [356912 2009-06-18] (National Instruments Corporation)
S4 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1007616 2009-09-18] (Macrovision Corporation)
S4 niSvcLoc; C:\windows\SysWOW64\nisvcloc.exe [13896 2009-06-04] (National Instruments Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21007192 2014-04-30] (NVIDIA Corporation)
S3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-12-01] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S4 Samsung UPD Service2; C:\windows\System32\SUPDSvc2.exe [165456 2011-12-02] (Samsung Electronics)
R2 SamsungDeviceConfigurationWinService; C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [31624 2012-02-13] ()
S4 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-10-14] (Secunia)
S4 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-10-14] (Secunia)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation)
S4 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-21] (Microsoft Corporation)
S3 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3385584 2013-05-08] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2011-03-01] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-28] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-28] ()
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [121616 2014-03-13] (BlueStack Systems)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-10-15] (DT Soft Ltd)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [39504 2013-04-11] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-04-08] (GFI Software)
S3 h647906; C:\Windows\System32\drivers\h647906.sys [63856 2008-08-08] (Your Corporation)
S3 h648101; C:\Windows\System32\drivers\h648101.sys [65776 2008-08-08] (Your Corporation)
S3 h648103; C:\Windows\System32\drivers\h648103.sys [62960 2008-08-08] (Your Corporation)
S3 hid7906; C:\Windows\SysWOW64\drivers\hid7906.sys [41272 2008-08-08] (Your Corporation)
S3 hid8101; C:\Windows\SysWOW64\drivers\hid8101.sys [43192 2008-08-08] (Your Corporation)
S3 hid8103; C:\Windows\SysWOW64\drivers\hid8103.sys [40856 2008-08-08] (Your Corporation)
S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MQAC; C:\Windows\System32\drivers\mqac.sys [189440 2009-07-14] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18776 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-10-14] (Secunia)
R2 SGDrv; C:\Windows\System32\DRIVERS\SGdrv64.sys [7680 2011-04-11] (Phoenix Technologies Ltd.)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] ()
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-10-23] ()
R3 usb3Hub; C:\Windows\System32\DRIVERS\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider)
S3 VSPerfDrv110; C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-26] (Microsoft Corporation)
R3 XHCIPort; C:\Windows\System32\DRIVERS\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider)
S3 EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys [X]
S3 GPU-Z; \??\C:\Users\Eugen\AppData\Local\Temp\GPU-Z.sys [X]
S3 SBIOSIO; \??\C:\Users\Eugen\AppData\Local\Temp\__Samsung_Update\SBIOSIO64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-04 10:03 - 2014-06-04 10:03 - 00028170 _____ () C:\Users\Eugen\Desktop\FRST.txt
2014-06-04 10:02 - 2014-06-04 10:02 - 02068992 _____ (Farbar) C:\Users\Eugen\Desktop\FRST64.exe
2014-06-04 10:00 - 2014-06-04 10:00 - 00000000 ____D () C:\Users\Eugen\Desktop\ProcessExplorer
2014-06-04 09:59 - 2014-06-04 09:59 - 01243655 _____ () C:\Users\Eugen\Desktop\ProcessExplorer.zip
2014-05-31 20:11 - 2014-05-31 20:12 - 00000000 ____D () C:\Users\Eugen\Documents\Arma 3
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Arma 3
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\ProgramData\Steam
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-05-31 20:03 - 2014-05-31 20:03 - 00000772 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arma 3.lnk
2014-05-31 19:32 - 2014-05-31 20:11 - 00000000 ____D () C:\Program Files (x86)\Arma 3
2014-05-31 18:23 - 2014-05-31 19:27 - 00000000 ____D () C:\Users\Eugen\Downloads\ARMA.3.Complete.Campaign.Edition-RELOADED
2014-05-31 16:03 - 2014-05-31 16:03 - 00000218 _____ () C:\Users\Eugen\AppData\Local\recently-used.xbel
2014-05-31 16:01 - 2014-05-31 16:01 - 00000000 ____D () C:\Users\Eugen\AppData\Local\gtk-2.0
2014-05-31 15:49 - 2014-05-31 17:03 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Wireshark
2014-05-31 15:23 - 2014-06-03 21:21 - 00001135 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-31 15:23 - 2014-06-03 21:21 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-31 15:23 - 2014-05-31 15:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-31 15:17 - 2014-05-31 15:17 - 00001543 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2014-05-31 15:17 - 2014-05-31 15:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-05-31 15:17 - 2014-05-31 15:17 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2014-05-31 15:16 - 2014-05-31 15:17 - 00000000 ____D () C:\Program Files\Wireshark
2014-05-30 18:10 - 2014-05-30 18:10 - 00986400 _____ () C:\Users\Eugen\Downloads\VLC-Media-Player-lnstall.exe
2014-05-30 18:07 - 2014-05-30 18:07 - 00961360 _____ (Chip Digital GmbH) C:\Users\Eugen\Downloads\StreamTorrent - CHIP-Installer.exe
2014-05-30 18:07 - 2014-05-30 18:07 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\StreamTorrent
2014-05-28 20:31 - 2014-05-28 20:31 - 00000000 ____D () C:\windows\SysWOW64\NV
2014-05-28 20:31 - 2014-05-28 20:31 - 00000000 ____D () C:\windows\system32\NV
2014-05-28 20:30 - 2014-05-28 20:30 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-05-28 20:25 - 2014-05-28 20:50 - 00000000 ____D () C:\Users\Eugen\AppData\Local\NVIDIA
2014-05-28 20:25 - 2014-04-30 20:27 - 01081112 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2014-05-28 20:25 - 2014-04-30 20:26 - 01225920 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2014-05-28 20:24 - 2014-05-28 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-28 20:24 - 2014-05-28 20:24 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-28 20:23 - 2014-05-20 03:25 - 06769096 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 03514144 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 02560968 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 01078616 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 00927520 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
2014-05-28 20:23 - 2014-05-20 03:25 - 00387528 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 00076064 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 00062808 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2014-05-28 20:23 - 2014-05-15 01:49 - 03774821 _____ () C:\windows\system32\nvcoproc.bin
2014-05-28 20:21 - 2014-05-20 04:44 - 31387936 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 25256224 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 24025376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 18531568 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 17561544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 17480432 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 16003912 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 14434704 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 12688328 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-05-28 20:21 - 2014-05-20 04:44 - 11644928 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 11599072 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 09735256 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 09697640 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 03141976 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 03109248 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 02953672 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 02785568 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 02730208 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 02412376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvenc.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 01889112 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433788.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 01541576 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433788.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00952952 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00895776 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00867784 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00861128 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00837056 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00354016 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00305600 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00166568 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00146480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00032544 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvpciflt.sys
2014-05-28 20:21 - 2014-05-20 04:44 - 00026069 _____ () C:\windows\system32\nvinfo.pb
2014-05-28 20:20 - 2014-05-28 20:20 - 00000000 ____D () C:\NVIDIA
2014-05-28 20:20 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2014-05-28 20:20 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll
2014-05-28 20:20 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2014-05-28 20:18 - 2014-05-28 20:18 - 00001975 _____ () C:\Users\Administrator\Desktop\Driver Cleaner Pro.lnk
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\Program Files (x86)\Driver Cleaner Pro
2014-05-28 20:18 - 2006-03-04 22:09 - 02831178 _____ () C:\Users\Eugen\Downloads\DCProSetup.exe
2014-05-28 20:18 - 2006-01-29 10:33 - 00006779 _____ () C:\Users\Eugen\Downloads\Readme.txt
2014-05-28 20:18 - 2006-01-05 15:09 - 00004091 _____ () C:\Users\Eugen\Downloads\License.txt
2014-05-28 20:17 - 2014-05-28 20:17 - 02817354 _____ () C:\Users\Eugen\Downloads\DCProSetup_15.zip
2014-05-28 10:50 - 2014-05-28 10:55 - 333878864 _____ (NVIDIA Corporation) C:\Users\Eugen\Downloads\337.88-notebook-win8-win7-64bit-international-whql.exe
2014-05-28 10:50 - 2014-05-28 10:50 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-05-28 10:50 - 2014-05-28 10:50 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-05-28 10:50 - 2014-05-28 10:50 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-05-28 10:46 - 2014-05-28 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-28 10:46 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-28 10:46 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2014-05-28 10:46 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2014-05-28 10:46 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2014-05-28 10:45 - 2014-05-28 10:46 - 00004136 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-28 10:43 - 2014-05-28 10:43 - 00921512 _____ (Oracle Corporation) C:\Users\Eugen\Downloads\chromeinstall-7u55.exe
2014-05-28 10:23 - 2014-05-28 10:23 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-28 10:22 - 2014-05-28 10:22 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-28 10:22 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-28 10:22 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-28 10:22 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-28 10:22 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-28 10:22 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-28 10:22 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-28 10:04 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-28 10:04 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-28 10:04 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-05-28 10:04 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-05-28 10:04 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-05-28 10:04 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-05-28 10:04 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-05-28 10:04 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-05-28 10:04 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-05-28 10:04 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-05-28 10:04 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-05-28 10:04 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-05-28 10:04 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-05-28 10:04 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-05-28 10:04 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-05-28 10:04 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-05-28 10:04 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-05-28 10:04 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-05-28 10:04 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-05-28 10:04 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-05-25 20:40 - 2014-05-25 20:40 - 00000000 ____D () C:\Users\Eugen\AppData\Local\SKIDROW
2014-05-25 20:40 - 2014-05-25 20:40 - 00000000 ____D () C:\ProgramData\Codemasters
2014-05-25 20:19 - 2014-05-25 20:19 - 00000000 ____D () C:\Games
2014-05-23 15:05 - 2014-05-23 15:31 - 00000000 ____D () C:\Users\Eugen\Downloads\F1 2013 =Formula 1 2013=  PC full game ^^nosTEAM^^
2014-05-23 15:04 - 2014-05-23 15:04 - 00029991 _____ () C:\Users\Eugen\Downloads\[kickass.to]f1.2013.formula.1.2013.pc.full.game.nosteam.torrent
2014-05-22 23:18 - 2014-05-23 00:01 - 00000000 ____D () C:\Users\Eugen\Downloads\Rocky-The.Complete.Saga[2007]DvDrip-aXXo
2014-05-22 23:18 - 2014-05-22 23:18 - 00169453 _____ () C:\Users\Eugen\Downloads\[kickass.to]rocky.the.complete.saga.2007.dvdrip.axxo.torrent
2014-05-20 18:39 - 2014-05-20 19:18 - 00000000 ____D () C:\Users\Eugen\Documents\FIFA World
2014-05-20 18:39 - 2014-05-20 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Sports FIFA World
2014-05-20 18:22 - 2014-05-20 18:22 - 23516512 _____ (Electronic Arts, Inc.) C:\Users\Eugen\Downloads\EASportsFIFAWorld.exe
2014-05-15 21:47 - 2014-05-15 21:47 - 00001239 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-05-15 21:29 - 2014-05-15 21:29 - 00007527 _____ () C:\Users\Eugen\Desktop\VierGewinnt.rar
2014-05-15 21:26 - 2014-05-15 21:23 - 00025600 _____ () C:\Users\Eugen\Desktop\VierGewinnt.exe
2014-05-15 19:58 - 2014-05-15 19:58 - 00096607 _____ () C:\Users\Eugen\Desktop\EugenSchulz_288215_Modul5.rar
2014-05-15 19:58 - 2014-05-15 19:58 - 00000000 ____D () C:\Users\Eugen\Desktop\Modul5
2014-05-14 13:00 - 2014-05-14 13:00 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\DropboxMaster
2014-05-13 09:29 - 2014-05-13 09:29 - 00001541 _____ () C:\Users\Eugen\Desktop\Visual Studio 2012.lnk
2014-05-07 20:13 - 2014-05-07 20:13 - 1091599395 _____ () C:\windows\MEMORY.DMP
2014-05-07 20:13 - 2014-05-07 20:13 - 00302160 _____ () C:\windows\Minidump\050714-59701-01.dmp
2014-05-06 23:58 - 2014-05-06 23:58 - 00000000 ____D () C:\Users\Default\AppData\Local\Google
2014-05-06 23:58 - 2014-05-06 23:58 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google

==================== One Month Modified Files and Folders =======

2015-07-25 04:24 - 2013-10-15 21:34 - 00000000 ____D () C:\Users\Eugen\Downloads\Guru3D.com
2014-06-04 10:03 - 2014-06-04 10:03 - 00028170 _____ () C:\Users\Eugen\Desktop\FRST.txt
2014-06-04 10:03 - 2013-10-14 13:55 - 00000000 ____D () C:\FRST
2014-06-04 10:03 - 2012-09-29 09:07 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Temp
2014-06-04 10:02 - 2014-06-04 10:02 - 02068992 _____ (Farbar) C:\Users\Eugen\Desktop\FRST64.exe
2014-06-04 10:00 - 2014-06-04 10:00 - 00000000 ____D () C:\Users\Eugen\Desktop\ProcessExplorer
2014-06-04 09:59 - 2014-06-04 09:59 - 01243655 _____ () C:\Users\Eugen\Desktop\ProcessExplorer.zip
2014-06-04 09:57 - 2013-05-31 10:55 - 00001108 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-04 09:57 - 2013-05-31 10:55 - 00001104 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-04 09:52 - 2012-10-08 12:49 - 00000000 ____D () C:\Studium
2014-06-04 09:35 - 2013-12-11 11:23 - 00000884 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-06-04 09:35 - 2013-04-09 16:40 - 00001120 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
2014-06-04 09:35 - 2012-10-12 22:06 - 00000928 _____ () C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
2014-06-03 22:36 - 2012-05-22 05:05 - 02042060 _____ () C:\windows\WindowsUpdate.log
2014-06-03 22:11 - 2012-10-12 22:06 - 00000906 _____ () C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
2014-06-03 21:22 - 2012-09-29 09:09 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-03 21:21 - 2014-05-31 15:23 - 00001135 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-03 21:21 - 2014-05-31 15:23 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-03 21:21 - 2013-04-09 16:41 - 00002380 _____ () C:\Users\Eugen\Desktop\Google Chrome.lnk
2014-06-03 21:19 - 2013-09-26 10:11 - 00000000 ____D () C:\ProgramData\Origin
2014-06-03 21:11 - 2013-09-26 12:06 - 00000000 ____D () C:\Users\Eugen\Documents\FIFA 14
2014-06-03 18:18 - 2012-05-21 13:12 - 00000830 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-06-03 17:45 - 2013-09-26 10:11 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-03 17:40 - 2013-04-09 16:40 - 00001068 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
2014-06-03 14:04 - 2009-07-14 06:45 - 00020992 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-03 14:04 - 2009-07-14 06:45 - 00020992 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-03 11:35 - 2014-03-20 15:29 - 00000000 ____D () C:\Users\Eugen\Documents\Visual Studio 2012
2014-06-03 09:00 - 2012-10-09 18:43 - 00000000 ____D () C:\Allgemein
2014-05-31 20:12 - 2014-05-31 20:11 - 00000000 ____D () C:\Users\Eugen\Documents\Arma 3
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Arma 3
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\ProgramData\Steam
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-05-31 20:11 - 2014-05-31 19:32 - 00000000 ____D () C:\Program Files (x86)\Arma 3
2014-05-31 20:07 - 2014-01-30 20:50 - 00054421 _____ () C:\windows\DirectX.log
2014-05-31 20:03 - 2014-05-31 20:03 - 00000772 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arma 3.lnk
2014-05-31 19:51 - 2012-11-30 13:54 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\uTorrent
2014-05-31 19:27 - 2014-05-31 18:23 - 00000000 ____D () C:\Users\Eugen\Downloads\ARMA.3.Complete.Campaign.Edition-RELOADED
2014-05-31 17:03 - 2014-05-31 15:49 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Wireshark
2014-05-31 16:03 - 2014-05-31 16:03 - 00000218 _____ () C:\Users\Eugen\AppData\Local\recently-used.xbel
2014-05-31 16:01 - 2014-05-31 16:01 - 00000000 ____D () C:\Users\Eugen\AppData\Local\gtk-2.0
2014-05-31 15:24 - 2012-09-30 17:20 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Mozilla
2014-05-31 15:24 - 2012-09-30 17:20 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Mozilla
2014-05-31 15:23 - 2014-05-31 15:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-31 15:23 - 2012-10-30 12:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-31 15:17 - 2014-05-31 15:17 - 00001543 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2014-05-31 15:17 - 2014-05-31 15:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-05-31 15:17 - 2014-05-31 15:17 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2014-05-31 15:17 - 2014-05-31 15:16 - 00000000 ____D () C:\Program Files\Wireshark
2014-05-30 18:10 - 2014-05-30 18:10 - 00986400 _____ () C:\Users\Eugen\Downloads\VLC-Media-Player-lnstall.exe
2014-05-30 18:07 - 2014-05-30 18:07 - 00961360 _____ (Chip Digital GmbH) C:\Users\Eugen\Downloads\StreamTorrent - CHIP-Installer.exe
2014-05-30 18:07 - 2014-05-30 18:07 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\StreamTorrent
2014-05-30 12:01 - 2013-11-13 18:26 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-05-30 11:59 - 2012-05-21 13:12 - 00000828 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-05-30 11:58 - 2013-10-23 15:22 - 00023337 _____ () C:\windows\setupact.log
2014-05-30 11:58 - 2009-07-14 07:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-05-29 18:02 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\rescache
2014-05-28 20:50 - 2014-05-28 20:25 - 00000000 ____D () C:\Users\Eugen\AppData\Local\NVIDIA
2014-05-28 20:46 - 2012-12-19 17:02 - 00000000 ____D () C:\Users\Eugen\AppData\Local\CrashDumps
2014-05-28 20:31 - 2014-05-28 20:31 - 00000000 ____D () C:\windows\SysWOW64\NV
2014-05-28 20:31 - 2014-05-28 20:31 - 00000000 ____D () C:\windows\system32\NV
2014-05-28 20:31 - 2013-06-15 10:38 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-28 20:30 - 2014-05-28 20:30 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-05-28 20:30 - 2013-06-15 10:36 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-05-28 20:25 - 2014-04-03 15:06 - 00000000 ____D () C:\Users\Eugen\AppData\Local\NVIDIA Corporation
2014-05-28 20:25 - 2012-05-21 13:14 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-05-28 20:25 - 2012-05-21 13:13 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-05-28 20:24 - 2014-05-28 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-28 20:24 - 2014-05-28 20:24 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-28 20:23 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\Help
2014-05-28 20:20 - 2014-05-28 20:20 - 00000000 ____D () C:\NVIDIA
2014-05-28 20:18 - 2014-05-28 20:18 - 00001975 _____ () C:\Users\Administrator\Desktop\Driver Cleaner Pro.lnk
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\Program Files (x86)\Driver Cleaner Pro
2014-05-28 20:17 - 2014-05-28 20:17 - 02817354 _____ () C:\Users\Eugen\Downloads\DCProSetup_15.zip
2014-05-28 10:58 - 2013-10-23 15:22 - 00081350 _____ () C:\windows\PFRO.log
2014-05-28 10:55 - 2014-05-28 10:50 - 333878864 _____ (NVIDIA Corporation) C:\Users\Eugen\Downloads\337.88-notebook-win8-win7-64bit-international-whql.exe
2014-05-28 10:50 - 2014-05-28 10:50 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-05-28 10:50 - 2014-05-28 10:50 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-05-28 10:50 - 2014-05-28 10:50 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-05-28 10:50 - 2014-04-10 07:10 - 00085328 _____ (AVAST Software) C:\windows\system32\Drivers\aswstm.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 01039096 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00423240 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00334648 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-05-28 10:50 - 2013-10-23 15:30 - 00208416 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00093568 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00079184 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00065776 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-05-28 10:46 - 2014-05-28 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-28 10:46 - 2014-05-28 10:45 - 00004136 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-28 10:46 - 2013-10-26 00:43 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-28 10:46 - 2013-06-26 21:33 - 00000000 ____D () C:\Java
2014-05-28 10:43 - 2014-05-28 10:43 - 00921512 _____ (Oracle Corporation) C:\Users\Eugen\Downloads\chromeinstall-7u55.exe
2014-05-28 10:29 - 2012-09-29 09:10 - 00000000 ___RD () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-28 10:29 - 2012-09-29 09:10 - 00000000 ___RD () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-28 10:23 - 2014-05-28 10:23 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-28 10:23 - 2012-11-20 11:45 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-28 10:22 - 2014-05-28 10:22 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-28 10:20 - 2013-10-23 14:43 - 00000000 ____D () C:\windows\system32\MRT
2014-05-28 10:10 - 2012-10-03 18:32 - 93223848 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-05-26 16:49 - 2014-03-16 22:44 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Kartina.TV
2014-05-25 20:40 - 2014-05-25 20:40 - 00000000 ____D () C:\Users\Eugen\AppData\Local\SKIDROW
2014-05-25 20:40 - 2014-05-25 20:40 - 00000000 ____D () C:\ProgramData\Codemasters
2014-05-25 20:40 - 2014-04-09 17:13 - 00000000 ____D () C:\Users\Eugen\Documents\My Games
2014-05-25 20:19 - 2014-05-25 20:19 - 00000000 ____D () C:\Games
2014-05-23 15:31 - 2014-05-23 15:05 - 00000000 ____D () C:\Users\Eugen\Downloads\F1 2013 =Formula 1 2013=  PC full game ^^nosTEAM^^
2014-05-23 15:04 - 2014-05-23 15:04 - 00029991 _____ () C:\Users\Eugen\Downloads\[kickass.to]f1.2013.formula.1.2013.pc.full.game.nosteam.torrent
2014-05-23 00:01 - 2014-05-22 23:18 - 00000000 ____D () C:\Users\Eugen\Downloads\Rocky-The.Complete.Saga[2007]DvDrip-aXXo
2014-05-22 23:18 - 2014-05-22 23:18 - 00169453 _____ () C:\Users\Eugen\Downloads\[kickass.to]rocky.the.complete.saga.2007.dvdrip.axxo.torrent
2014-05-22 18:41 - 2012-11-26 17:57 - 00000000 ___RD () C:\Users\Eugen\Dropbox
2014-05-22 18:41 - 2012-11-26 17:55 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Dropbox
2014-05-21 16:38 - 2012-05-22 04:55 - 00775470 _____ () C:\windows\system32\perfh007.dat
2014-05-21 16:38 - 2012-05-22 04:55 - 00176406 _____ () C:\windows\system32\perfc007.dat
2014-05-21 16:38 - 2009-07-14 07:13 - 01810922 _____ () C:\windows\system32\PerfStringBackup.INI
2014-05-20 19:18 - 2014-05-20 18:39 - 00000000 ____D () C:\Users\Eugen\Documents\FIFA World
2014-05-20 18:39 - 2014-05-20 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Sports FIFA World
2014-05-20 18:39 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-20 18:23 - 2013-09-26 10:13 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-20 18:22 - 2014-05-20 18:22 - 23516512 _____ (Electronic Arts, Inc.) C:\Users\Eugen\Downloads\EASportsFIFAWorld.exe
2014-05-20 04:44 - 2014-05-28 20:21 - 31387936 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 25256224 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 24025376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 18531568 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 17561544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 17480432 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 16003912 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 14434704 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 12688328 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-05-20 04:44 - 2014-05-28 20:21 - 11644928 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 11599072 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 09735256 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 09697640 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 03141976 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 03109248 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 02953672 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 02785568 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 02730208 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 02412376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 01889112 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433788.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 01541576 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433788.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00952952 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00895776 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00867784 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00861128 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00837056 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00354016 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00305600 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00166568 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00146480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00032544 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvpciflt.sys
2014-05-20 04:44 - 2014-05-28 20:21 - 00026069 _____ () C:\windows\system32\nvinfo.pb
2014-05-20 03:25 - 2014-05-28 20:23 - 06769096 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 03514144 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 02560968 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 01078616 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 00927520 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
2014-05-20 03:25 - 2014-05-28 20:23 - 00387528 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 00076064 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 00062808 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2014-05-17 18:57 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\system32\inetsrv
2014-05-17 14:43 - 2014-03-20 13:41 - 00000000 ____D () C:\Users\Eugen\Documents\MATLAB
2014-05-17 14:18 - 2013-05-09 18:16 - 00000433 _____ () C:\windows\system32\Drivers\etc\hosts.ics
2014-05-15 21:47 - 2014-05-15 21:47 - 00001239 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-05-15 21:47 - 2013-01-29 19:12 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-05-15 21:47 - 2012-11-22 20:29 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\DVDVideoSoft
2014-05-15 21:47 - 2012-11-22 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-05-15 21:46 - 2013-04-29 18:30 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\OpenCandy
2014-05-15 21:29 - 2014-05-15 21:29 - 00007527 _____ () C:\Users\Eugen\Desktop\VierGewinnt.rar
2014-05-15 21:23 - 2014-05-15 21:26 - 00025600 _____ () C:\Users\Eugen\Desktop\VierGewinnt.exe
2014-05-15 19:58 - 2014-05-15 19:58 - 00096607 _____ () C:\Users\Eugen\Desktop\EugenSchulz_288215_Modul5.rar
2014-05-15 19:58 - 2014-05-15 19:58 - 00000000 ____D () C:\Users\Eugen\Desktop\Modul5
2014-05-15 01:49 - 2014-05-28 20:23 - 03774821 _____ () C:\windows\system32\nvcoproc.bin
2014-05-14 13:00 - 2014-05-14 13:00 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\DropboxMaster
2014-05-14 13:00 - 2014-03-19 13:38 - 00001017 _____ () C:\Users\Eugen\Desktop\Dropbox.lnk
2014-05-14 13:00 - 2012-11-26 17:56 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-13 09:29 - 2014-05-13 09:29 - 00001541 _____ () C:\Users\Eugen\Desktop\Visual Studio 2012.lnk
2014-05-09 14:15 - 2013-04-09 16:40 - 00004090 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA
2014-05-09 14:15 - 2013-04-09 16:40 - 00003694 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core
2014-05-09 08:14 - 2014-05-28 10:04 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-28 10:04 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-08 19:23 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-07 20:13 - 2014-05-07 20:13 - 1091599395 _____ () C:\windows\MEMORY.DMP
2014-05-07 20:13 - 2014-05-07 20:13 - 00302160 _____ () C:\windows\Minidump\050714-59701-01.dmp
2014-05-07 20:13 - 2012-10-03 07:59 - 00000000 ____D () C:\windows\Minidump
2014-05-07 20:13 - 2009-07-14 06:45 - 00449672 _____ () C:\windows\system32\FNTCACHE.DAT
2014-05-07 10:43 - 2014-03-20 15:09 - 00001283 _____ () C:\Users\Eugen\Desktop\MATLAB R2012a.lnk
2014-05-06 23:58 - 2014-05-06 23:58 - 00000000 ____D () C:\Users\Default\AppData\Local\Google
2014-05-06 23:58 - 2014-05-06 23:58 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google
2014-05-06 23:58 - 2014-03-20 08:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-05-06 09:52 - 2013-05-31 10:55 - 00004104 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-06 09:52 - 2013-05-31 10:55 - 00003852 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-06 06:40 - 2014-05-28 10:22 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-28 10:22 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-28 10:22 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-28 10:22 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-28 10:22 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-28 10:22 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll

Some content of TEMP:
====================
C:\Users\Eugen\AppData\Local\Temp\procexp64.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-29 17:55

==================== End Of Log ============================
--- --- ---

buddhavs 04.06.2014 09:17
Addition.txt:

Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2014
Ran by Eugen at 2014-06-04 10:14:13
Running from C:\Users\Eugen\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

 Tools for .Net 3.5 - DEU Lang Pack (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
 Tools for .Net 3.5 (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
„Windows Live Essentials“ (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (x32 Version: 15.4.3538.0513 - „Microsoft Corporation“) Hidden
„Windows Live“ fotogalerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.31139 - BitTorrent Inc.)
1.1.1.0 (HKLM-x32\...\Monopoly_is1) (Version:  - )
888poker (HKLM-x32\...\888poker) (Version:  - )
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.82 - WildTangent) Hidden
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 3 Complete (HKLM-x32\...\QXJtYTM=_is1) (Version: 1 - )
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Battlefield 1942 (HKLM-x32\...\{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}) (Version:  - )
Battlefield 1942: Secret Weapons of WWII (HKLM-x32\...\{B73B4A99-4173-4747-BBEC-0F05E966F9D2}) (Version:  - )
Battlefield 1942: The Road To Rome (HKLM-x32\...\{D057AA08-8CBF-42E3-9EAB-23B8FED1C279}) (Version:  - )
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Blend for Visual Studio 2012 (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio 2012 DEU resources (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.7.3069 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{FE5ABB0E-EDEA-4023-B0FB-9DEA39A98D76}) (Version: 0.8.7.3069 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build-a-lot (x32 Version: 2.2.0.82 - WildTangent) Hidden
bwin Poker (HKLM-x32\...\bwincomPoker) (Version:  - bwincom)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Chuzzle Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6) (Version:  - )
Counter-Strike Online Game Client (HKLM-x32\...\Counter-Strike Online) (Version: Game Client - IAH Games)
Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version:  - Valve)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.)
CyberLink Media Suite (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
CyberLink Media+ Player10 (HKLM-x32\...\InstallShield_{34FBC7C4-CD31-4D93-A428-0E524EAC4586}) (Version: 10.0.1110.00 - CyberLink Corp.)
CyberLink Media+ Player10 (x32 Version: 10.0.1110.00 - CyberLink Corp.) Hidden
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.0.1130a - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 5.0.1130a - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3802 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.3802 - CyberLink Corp.) Hidden
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3306 - CyberLink Corp.)
CyberLink PowerDirector (x32 Version: 8.0.3306 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.4417 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.1.4417 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{F2CE207D-C146-4BFD-A1C2-219483C58819}) (Version:  - Microsoft)
Devenv-Ressourcen für Microsoft Visual Studio 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
DH Driver Cleaner Professional Edition (HKLM-x32\...\Driver Cleaner Pro) (Version: Version 1.5 - Ruud Ketelaars)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.82 - WildTangent) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.9 - DivX, LLC)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.6.33 - Dropbox, Inc.)
EA Sports FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 5.2.0.39882 - Electronic Arts, Inc.)
Easy File Share (HKLM-x32\...\{12F81925-F3C1-40DB-91F7-777817974319}) (Version: 1.3.1 - Samsung Electronics CO., LTD.)
Easy Migration (HKLM-x32\...\{EDE7A262-DB20-4432-A630-2ACEE186C416}) (Version: 1.0 - Samsung Electronics CO., LTD.)
Easy Settings (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.1 - Samsung Electronics CO., LTD.)
Easy Support Center (HKLM\...\{0738F5F1-8E70-49A6-8692-F5722E1E5A4D}) (Version: 1.2.32 - Samsung Electronics CO., LTD.)
Electronics Workbench V5.12 (HKLM-x32\...\Electronics_Workbench_V5) (Version:  - )
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 14.4.20130909 - Landesfinanzdirektion Thüringen)
Entity Framework Designer für Visual Studio 2012 - DEU (HKLM-x32\...\{094D6E27-97CC-447E-8660-56F75CFC1E00}) (Version: 11.1.20702.00 - Microsoft Corporation)
E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung Electronics CO., LTD.)
Erforderliche Komponenten für SSDT  (HKLM-x32\...\{70D065C3-77E5-45E9-A75C-EEB2E84EA869}) (Version: 11.0.2100.60 - Microsoft Corporation)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Farm Frenzy (x32 Version: 2.2.0.82 - WildTangent) Hidden
FIFA 11 Demo (HKLM-x32\...\{DC158DF7-6B36-4C6F-BC91-109014297994}) (Version: 1.0.0.0 - Electronic Arts)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts)
FINAL FANTASY VIII (HKLM-x32\...\Steam App 39150) (Version:  - SQUARE ENIX)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.35.514 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.35.514 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.0.128 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.0.128 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKCU\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Drive (HKLM-x32\...\{418BAAD1-754D-48B4-B078-46EF4F25AF42}) (Version: 1.15.6556.8063 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
HI-TECH C51-lite V9.60PL0 (HKLM-x32\...\HC51 9.60PL0) (Version: 9.60 - HI-TECH Software)
HI-TECH PICC lite V9.60PL0 (HKLM-x32\...\PICC 9.60PL0) (Version: 9.60 - HI-TECH Software)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Insaniquarium Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (Version: 15.8.0.0548 - Intel Corporation) Hidden
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{520C4DD4-2BC7-409B-BA48-E1A4F832662D}) (Version: 2.1.0.0140 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software Driver (Version: 15.08.0000.0320 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.1.209 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{ae509f68-6982-4506-befc-f2218d72cd5e}) (Version: 15.8.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (Version: 15.08.0000.0196 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
iTunes (HKLM\...\{37D0157F-45C6-4DB2-9AE5-489DD98CE169}) (Version: 11.1.2.31 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
John Deere Drive Green (x32 Version: 2.2.0.82 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LocalESPC (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
LocalESPCui for de-de (x32 Version: 8.59.25584 - Microsoft) Hidden
LOGO!Soft Comfort V7.0 (Demo) (HKLM\...\LOGO!Soft Comfort V7.0 (Demo)) (Version: 7.0.0.0 - Siemens AG)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
MATLAB R2012a (HKLM\...\Matlab R2012a) (Version: 7.14 - The MathWorks, Inc.)
Maxima 5.28.0-2 (HKLM-x32\...\Maxima-5.28.0-2_is1) (Version: 5.28.0-2 - The Maxima Development Team)
MB-Ruler (HKLM-x32\...\{7363206E-C7BD-45CD-89A0-792B28409811}_is1) (Version: 5.1 - Markus Bader)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{98B45D1C-6EB1-460D-A87D-2B60678DC105}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 3 - DEU (HKLM-x32\...\{07AC2D83-E795-4AD5-970D-B9BD14A1E411}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update - DEU (x32 Version: 3.0.30710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update (x32 Version: 3.0.30710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 3 (HKLM-x32\...\{DCDEC776-BADD-48B9-8F9A-DFF513C3D7FA}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools - DEU (x32 Version: 4.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools (x32 Version: 4.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 Runtime - DEU (x32 Version: 4.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 Runtime (x32 Version: 4.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages - DEU (HKLM-x32\...\{93EEC4E9-EEFE-4027-ACD3-6E8C1D085975}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools - DEU (x32 Version: 1.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools (x32 Version: 1.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages (HKLM-x32\...\{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools - DEU (x32 Version: 2.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools (x32 Version: 2.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 Runtime - DEU (x32 Version: 2.0.20710.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 Runtime (x32 Version: 2.0.20710.0 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (x32 Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.0 Language Pack - DEU (HKLM-x32\...\Microsoft Help Viewer 2.0 Language Pack - DEU) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Language Pack - DEU (x32 Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2012 Core (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft LightSwitch für Visual Studio 2012 CoreRes - DEU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft NuGet - Visual Studio 2012 (x32 Version: 2.0.30625.9003 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack (x32 Version: 11.0.50709.17929 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack Language Pack - deu (x32 Version: 11.0.50709.17929 - Microsoft Corporation) Hidden
Microsoft Report Viewer Add-On for Visual Studio 2012 (x32 Version: 11.1.2802.16 - Microsoft Corporation) Hidden
Microsoft Report Viewer Add-On für Visual Studio 2012 (x32 Version: 11.1.2802.16 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Deutsch (HKLM-x32\...\{8EA792A5-38AA-4F0E-8DFE-D1BAF1145431}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK - DEU (HKLM-x32\...\{F351AA2C-723C-4CFE-A7CB-8E43AB164F7F}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{AD49BD4B-6CEE-4EA2-B53E-8EB0606F1B11}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{EF18EF0F-96D3-4A6B-9600-2197F1720A15}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{6B7B7E62-9F56-4C87-8664-0E20F2CAB03B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{D4DA7C91-A59F-4C72-BAC4-DF7C76AB1CB8}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{8E4BA1E5-54E8-41F0-919B-CD875B83CFCE}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (HKLM\...\{55FABD1D-8BE6-4A1A-958D-52B15F1DFEF0}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{13C9CD03-A5FE-4F50-AC8A-17B77C38CC52}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{28C7A4BB-3966-4373-8376-C11F38290630}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (11.1.20627.00) (HKLM-x32\...\{F6F1EE45-97E9-48A3-94B2-044B0A3C08D3}) (Version: 11.1.20627.00 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (11.1.20627.00) (HKLM-x32\...\{CEEDB2C4-46BE-4340-BAB9-F30110D9BBB8}) (Version: 11.1.20627.00 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{D434E072-F482-4F52-AB97-7B19DD5DAEB5}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{485F4AC6-F79E-4482-A0D2-EDF0CCE1E124}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012  x64 Designtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers - DEU Resources (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Core Libraries (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Extended Libraries (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{307a22b8-8353-4c5e-b67b-2404c5734558}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Office Developer Tools (x64) Language Pack - DEU (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50325 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50330 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.50325 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50325 - Microsoft Corporation)
Microsoft Visual Studio 2012 Devenv (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTrace Core amd64 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTrace Core x86 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTrace Front End x86 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTraceFrontEndLoc (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTraceLoc (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTraceLoc (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 SharePoint Developer Tools (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 SharePoint Developer Tools DEU Language Pack (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Shell (Minimum) (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Shell-(Mindest)-Ressourcen (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Tools für SQL Server Compact 4.0 SP1 DEU (x32 Version: 4.0.8876.1 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012-Leistungserfassungstools - DEU (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012-Leistungserfassungstools (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012-Vorbereitung (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Premium 2012 - DEU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Premium 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2012 - DEU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Object Model (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - DEU (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Storyboarding (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Storyboarding Language Pack - DEU (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - DEU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2012 - DEU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2012 (HKLM-x32\...\{2e8b5d3e-04b1-40c7-ade4-487d5357ba8c}) (Version: 11.0.50727.26 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2012 XAML UI Designer deu Resources (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 (HKLM-x32\...\{af15e1e3-cd81-4fbb-a41c-c1deef9f1691}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Web Deploy 3.0 (HKLM\...\{AA72C306-30BE-4BB1-9E42-59552BAD2CDF}) (Version: 3.1236.1631 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - DEU (HKLM-x32\...\{86756584-C41A-4CA3-B42D-4768C7720F56}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft Web Developer Tools - Visual Studio 2012 - DEU (x32 Version: 1.0.30710.0 - Microsoft Corporation) Hidden
Microsoft Web Developer Tools - Visual Studio 2012 (x32 Version: 1.0.30710.0 - Microsoft Corporation) Hidden
Microsoft Web Platform Installer 4.0 (HKLM\...\{E2B8249D-895C-4685-8C83-00F3B1A13028}) (Version: 4.0.1622 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (HKLM-x32\...\{4C0B27C3-3E8F-4BD2-80FF-6E9E48EBD6D8}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (HKLM\...\{64A5D39C-95CD-4B8B-B2FA-6C713133B57F}) (Version: 11.0.2100.60 - Microsoft Corporation)
MinGW-Get version 0.5-beta-20120426-1 (HKLM-x32\...\{AC2C1BDB-1E91-4F94-B99C-E716FE2E9C75}_is1) (Version: 0.5-beta-20120426-1 - MinGW)
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Need For Speed™ World (HKLM-x32\...\{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1) (Version: 1.0.0.1398 - Electronic Arts)
NI Circuit Design Suite 11.0 Core (x32 Version: 11.0.278 - National Instruments) Hidden
NI Circuit Design Suite 11.0 Edu Licenses (x32 Version: 11.0.278 - National Instruments) Hidden
NI Circuit Design Suite 11.0 Education (x32 Version: 11.0.278 - National Instruments) Hidden
NI EULA Depot (x32 Version: 2.71.128 - National Instruments) Hidden
NI Example Finder 9.0 (x32 Version: 9.0.136.0 - National Instruments) Hidden
NI Help Assistant (64bit) (Version: 1.0.10 - National Instruments) Hidden
NI Help Assistant (x32 Version: 1.0.10 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (x32 Version: 8.6.348.0 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (x32 Version: 9.0.222.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2009 (x32 Version: 9.0.315.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 8.6.1 (x32 Version: 8.6.426.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2009 (x32 Version: 9.0.78.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Web Services (x32 Version: 9.0.197.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (x32 Version: 8.6.41.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (x32 Version: 9.0.185.0 - National Instruments) Hidden
NI LabVIEW Web Services Runtime (x32 Version: 8.6.48.0 - National Instruments) Hidden
NI LabWindows/CVI 9.0.1 Run-Time Engine (x32 Version: 9.0.1376 - National Instruments) Hidden
NI License Manager (x32 Version: 3.4.28 - National Instruments) Hidden
NI Logos 5.1 (x32 Version: 5.1.118.0 - National Instruments) Hidden
NI Logos XT Support (x32 Version: 5.1.66.0 - National Instruments) Hidden
NI Logos64 5.1 (Version: 5.1.71.0 - National Instruments) Hidden
NI Logos64 XT Support (Version: 5.1.63.0 - National Instruments) Hidden
NI Math Kernel Libraries (64-bit) (Version: 1.0.14.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.28.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.861.0 - National Instruments) Hidden
NI MDF Support (x32 Version: 2.71.128 - National Instruments) Hidden
NI MetaSuite Installer (x32 Version: 2.70.346 - National Instruments) Hidden
NI Service Locator (x32 Version: 9.0.260.0 - National Instruments) Hidden
NI TDMS (64-bit) (Version: 2.0.171.0 - National Instruments) Hidden
NI TDMS (x32 Version: 2.0.171.0 - National Instruments) Hidden
NI Trace Engine (64-bit) (Version: 9.0.128.0 - National Instruments) Hidden
NI Trace Engine (x32 Version: 9.0.146.0 - National Instruments) Hidden
NI Uninstaller (x32 Version: 2.71.128 - National Instruments) Hidden
NI Update Service 1.0 (x32 Version: 1.1.6.0 - National Instruments) Hidden
NI Update Service Extras 1.0 (x32 Version: 1.1.6.0 - National Instruments) Hidden
NI USI 1.7.0 (x32 Version: 1.7.03805 - National Instruments) Hidden
NI USI 1.7.0 64-Bit (Version: 1.7.03805 - National Instruments) Hidden
NI VC2005MSMs x64 (Version: 8.01.5 - National Instruments) Hidden
NI VC2005MSMs x86 (x32 Version: 8.01.5 - National Instruments) Hidden
NI VC2008MSMs x64 (Version: 9.0.100 - National Instruments) Hidden
NI VC2008MSMs x86 (x32 Version: 9.0.100 - National Instruments) Hidden
NI Web Pipeline 2.0.1 (x32 Version: 2.0.128.0 - National Instruments) Hidden
NI Web Pipeline 2.0.1 64-bit support (Version: 2.0.122.0 - National Instruments) Hidden
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.154.1168 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4643 - Electronic Arts, Inc.)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.5.1 - Frank Heindörfer, Philip Chinery)
Peggle (x32 Version: 2.2.0.82 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.82 - WildTangent) Hidden
Plants vs. Zombies (x32 Version: 2.2.0.82 - WildTangent) Hidden
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Poker at bet365 (HKCU\...\bet365poker) (Version:  - )
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version:  - PokerStars.eu)
Polar Golfer (x32 Version: 2.2.0.82 - WildTangent) Hidden
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
PreEmptive Analytics Client German Language Pack (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
PunkBuster für Battlefield 1942 (HKLM-x32\...\{127B684B-A002-44C8-99A7-6CF8F1E26873}) (Version:  - )
Quick Starter (HKLM-x32\...\{EC36E2BC-86F7-44C9-84B2-93930F0FBDBF}) (Version: 1.0.0 - Samsung Electronics CO., LTD.)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.50.1123.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6788 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
S Agent (Version: 1.1.41 - Samsung Electronics CO., LTD.) Hidden
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12013_8 - Samsung Electronics Co., Ltd.)
Samsung AllShare (x32 Version: 2.1.0.12013_8 - Samsung Electronics Co., Ltd.) Hidden
Samsung AnyWeb Print (HKLM-x32\...\{318DBE01-1E6B-4243-84B0-210391FE789A}) (Version: 2.0.67.1 - Samsung Electronics Co., Ltd.)
SAMSUNG Mobile Composite Device Software (HKLM\...\SAMSUNG Mobile Composite Device) (Version:  - )
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version:  - )
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version:  - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version:  - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version:  - )
Samsung PC Studio 3 (HKLM-x32\...\{C4A4722E-79F9-417C-BD72-8D359A090C97}) (Version: 3.2.2.80601 - Samsung Electronics Co., Ltd.)
Samsung PC Studio 3 (x32 Version: 3.0.0.80601 - Samsung Electronics Co., Ltd.) Hidden
Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.6.0.2 - Samsung Electronics CO., LTD.)
Samsung Universal Print Driver (HKLM-x32\...\Samsung Universal Print Driver) (Version: 2.03.01.00:36 - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.6.0 - Samsung Electronics Co., Ltd.)
Samsung Update Plus (HKLM-x32\...\{142D8CA7-2C6F-45A7-83E3-099AAFD99133}) (Version: 3.0.0.17 - Samsung Electronics Co., Ltd.)
Secunia PSI (3.0.0.8013) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.8013 - Secunia)
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Software Launcher (HKLM-x32\...\{B750B5C2-CC17-4967-905B-29F4EB986131}) (Version: 1.0.2 - Samsung)
Software von National Instruments (HKLM-x32\...\NI Uninstaller) (Version:  - National Instruments)
SopCast 3.5.0 (HKLM-x32\...\SopCast) (Version: 3.5.0 - www.sopcast.com)
Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SW Update (HKLM-x32\...\{411B07C7-9307-4AA7-932E-CB506E4CF3A3}) (Version: 2.1.15 - Samsung Electronics CO., LTD.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.40.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.28223 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Twin USB Vibration Gamepad (HKLM-x32\...\{BA12FD6D-169A-11D7-A6A9-00C026281E5A}) (Version: 2006.7.18 - )
Unified Remote (HKLM-x32\...\{FF63DB41-2880-4C24-A06A-B8BF69B6406B}) (Version: 2.8.0.0 - Unified Remote)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{84B191B5-5319-463A-A305-8C4D53B1D20A}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{B6AD7E27-012A-4B63-82BA-AF62893E5435}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{6E760BBA-B83F-4C2D-918F-5F91EF6C9861}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.SingleImage_{64D96F30-CF4C-4CCE-AAF2-F8909348BF35}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.SingleImage_{9F6507AC-7D8F-46C1-B90F-59C7828E0E0D}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{8A6BDA63-4D23-4485-A466-8979E10BCF49}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{8A6BDA63-4D23-4485-A466-8979E10BCF49}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.SingleImage_{6164E0E5-C903-488C-93AF-1B7AF7EBC331}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{DDDC32A5-9528-4771-B91A-97A8E1D7957B}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.SingleImage_{FD360122-6829-4497-97C1-1BF578EF695B}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A20A650C-F820-4CE4-AEA5-EC140192FAFB}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{F6F342A1-530B-4D48-A468-1E3F70928984}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{C950A55F-82E3-4CC8-8FA2-E8A2A0F651F3}) (Version:  - Microsoft)
Update for Microsoft Visual Studio 2012 (KB2781514) (HKLM-x32\...\{56ef8912-352f-4fab-9c73-6f1c92a7127f}) (Version: 11.0.51219 - Microsoft Corporation)
Usb GamePad (HKLM-x32\...\{DEC7CD2E-2BB5-40C3-9592-078F64677E6C}) (Version: 1.00.0000 - )
USB Network Driver (HKLM-x32\...\{66ED8E01-C915-41F5-B33E-C5C31F27B885}) (Version: V3.70a - )
User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.2 - Samsung Electronics CO., LTD.)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vektoris3D 2.5 PLUS 2.5.2 (HKLM-x32\...\0531-3074-2651-5065) (Version: 2.5.2 - kapieren.de)
Veoh Giraffic Video Accelerator (HKLM-x32\...\Giraffic) (Version: 0.86.412.230 - Giraffic)
Veoh Web Player (HKLM-x32\...\Veoh Web Player Beta) (Version: 1.1.2.0000 - Veoh Networks, Inc.)
Visual Studio 2012 Prerequisites - DEU Language Pack (Version: 11.0.50727 - Microsoft Corporation) Hidden
Visual Studio 2012 Prerequisites (Version: 11.0.50727 - Microsoft Corporation) Hidden
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 1.0.8514.0 - Microsoft Corporation) Hidden
WCF Data Services 5.0 (for OData v3) DEU Language Pack (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services 5.0 (for OData v3) Primary Components (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2012 (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Visual Studio 11 DEU Language Pack (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{3A523AF9-D32F-4C85-8388-0335731F3405}) (Version: 4.1.61829.0 - Microsoft Corporation)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.1.5 - WildTangent)
WildTangent ORB Game Console (x32 Version:  - WildTangent) Hidden
Windows App Certification Kit Native Components (Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows App Certification Kit x64 (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Cato version 1.8 (HKLM-x32\...\{D62BE7F1-D3A5-4B80-98BD-5EFC44738C26}_is1) (Version: 1.8 - Davide Catone aka Cato97)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live fotoattēlu galerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Foto-galerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalleri (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galerija fotografija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Корпорация Майкрософт) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Pošta (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 메일 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 사진 갤러리 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 필수 패키지 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 照片库 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 软件包 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven sähköposti (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Runtime Intellisense Content - de-de (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinZip 17.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D9}) (Version: 17.0.10381 - WinZip Computing, S.L. )
Wireshark 1.10.7 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.10.7 - The Wireshark developer community, hxxp://www.wireshark.org)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

20-05-2014 16:32:13 DirectX wurde installiert
28-05-2014 08:05:10 Windows Update
28-05-2014 08:44:18 Installed Java 7 Update 55
28-05-2014 08:48:10 avast! antivirus system restore point
28-05-2014 17:45:36 DirectX wurde installiert
28-05-2014 18:25:46 DirectX wurde installiert
31-05-2014 18:04:02 DirectX wurde installiert

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {01FA1EC7-8E2F-4541-8534-8295E8671336} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-08-17] (CyberLink)
Task: {054EBF49-0664-4BE4-A0B0-431360C46E86} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe
Task: {0B1E54F2-E87C-4B1C-8B79-770ADBA07E8C} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2013-05-08] (Samsung Electronics CO., LTD.)
Task: {1237B163-BECD-4CC2-ACE5-1F3EDC4DB7A4} - System32\Tasks\{456050DE-C76D-4D86-9189-9AB9AA42136B} => C:\Users\Eugen\Desktop\EWB\EWB 5.12\SETUP.EXE
Task: {2F860402-BBFF-4B36-B7DC-F0CF3A6B02F0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {3C61B3DE-CC31-4B49-A1CC-9D1B1D74F927} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31] (Google Inc.)
Task: {3DC50B56-AD73-4A17-A7C5-BC88C7FEA774} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {450B53B8-A0A7-4C13-B933-6E9E89D898A8} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe [2012-05-02] (Samsung Electronics Co., Ltd.)
Task: {53BDB347-6D74-4E68-8F9C-E931F779D189} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {617D7313-A804-425D-8F5C-5626B8A2B791} - System32\Tasks\MATLAB R2012a Startup Accelerator => C:\Program Files\MATLAB\R2012a\bin\win64\MATLABStartupAccelerator.exe [2011-12-29] ()
Task: {6E9D38A4-0EC9-422A-A693-61151DC8E3A1} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA => C:\Users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-12] (Facebook Inc.)
Task: {6EB46643-2A00-4B6B-BBD9-BA8CD3AE9754} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core => C:\Users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-12] (Facebook Inc.)
Task: {78CAEB38-A135-4D15-B703-8E5A89F797CA} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {7CE3E0DE-0635-4C64-BD5C-522B8A44A100} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1236569144-611998795-838250545-1001
Task: {835AFC18-0A90-4A34-A66B-7BC5FE76884F} - System32\Tasks\{4561DC2B-B9C7-4BB6-A154-AE5848EBA5B4} => C:\Users\Eugen\Desktop\EWB\EWB 5.12\SETUP.EXE
Task: {84FC91D7-C0D4-4BCC-A715-801DACC1E63D} - System32\Tasks\RunAsStdUser Task for VeohWebPlayer => C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe [2011-11-28] (Veoh Networks)
Task: {85896C7E-16DA-4D76-BC7D-78A27828485F} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-26] (Adobe Systems Incorporated)
Task: {8B7D508D-2444-4820-BBF0-5F5E31816D7A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA => C:\Users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-09] (Google Inc.)
Task: {94037BE7-D986-441B-9B2B-6C1A1CE257B7} - System32\Tasks\WLANStartup => C:\Program Files (x86)\Samsung\Easy Settings\WLANStartup.exe [2012-04-03] (Samsung Electronics)
Task: {98D8679E-AE91-4860-9ADA-D0A6F21DACB4} - System32\Tasks\0 => Chrome.exe  <==== ATTENTION
Task: {98E942A6-08C9-4A3B-BB9F-8648D633E487} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-05-28] (AVAST Software)
Task: {9BA9498A-65D3-49C7-A0B0-2F25E93A7556} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2012-10-30] (SEC)
Task: {B0FD3357-F24C-41C3-99A2-719FD78C9C38} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation)
Task: {BBFCA81B-BCF7-4D8C-B73D-C94EC019CB7A} - System32\Tasks\SCCSpeedBoot => C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe [2012-03-27] (Samsung Electronics Co., Ltd.)
Task: {C00E4AA4-6D4D-494C-92D4-4B9D48C9DD84} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {CF2FCC75-70B0-41E5-B03F-566B33BEB3C2} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe [2012-04-25] (Samsung Electronics Co., Ltd.)
Task: {DBDB8BD6-8BCB-49EC-9407-3BAD17E70D9F} - System32\Tasks\{0E87F801-489E-4B36-98A0-2EAE6C8433E6} => C:\Users\Eugen\Desktop\EWB\EWB 5.12\SETUP.EXE
Task: {E54C3AFF-FB0F-48F5-AFED-BEF2E77339A6} - System32\Tasks\EasySupportCenter => C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe [2012-12-06] (Samsung Electronics CO., LTD.)
Task: {E743A9EF-1EEF-4E27-BB08-8D183C201B69} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe [2012-05-30] (Samsung Electronics Co., Ltd.)
Task: {EC4FD860-0325-44CE-86D5-35F8B643C4D4} - System32\Tasks\SUPBackground => C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe [2010-08-27] (Samsung Electronics)
Task: {F19A20CB-3D74-4121-9FBE-7815318A1002} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31] (Google Inc.)
Task: {F24ADE05-FD11-4AF7-8068-9D88287C87FD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core => C:\Users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-09] (Google Inc.)
Task: {F6BB162D-92D8-43F3-AEE6-D33F8B682407} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe [2012-01-31] (Samsung Electronics)
Task: {FA69D3D1-4F33-417F-8FFC-F8054C82897A} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe [2011-11-18] (SAMSUNG Electronics co., LTD.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job => C:\Users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job => C:\Users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job => C:\Users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job => C:\Users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\windows\Tasks\MATLAB R2012a Startup Accelerator.job => C:\Program Files\MATLAB\R2012a\bin\win64\MATLABStartupAccelerator.exe

==================== Loaded Modules (whitelisted) =============

2014-05-28 20:23 - 2014-05-20 03:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-04-11 14:26 - 2011-04-11 14:26 - 00034304 _____ () C:\windows\System32\spd__l.dll
2013-06-16 14:39 - 2012-02-13 15:02 - 00031624 _____ () C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
2012-02-06 04:29 - 2012-01-05 10:24 - 00094208 _____ () C:\windows\system32\IccLibDll_x64.dll
2014-05-29 11:17 - 2014-05-29 11:17 - 02259456 _____ () C:\Program Files\AVAST Software\Avast\defs\14052900\algo.dll
2014-06-04 09:35 - 2014-06-04 09:35 - 02260480 _____ () C:\Program Files\AVAST Software\Avast\defs\14060301\algo.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00012120 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2013-06-16 14:40 - 2011-02-17 01:03 - 00203776 _____ () C:\Program Files (x86)\Samsung\Easy Settings\WinCRT.dll
2013-06-16 14:40 - 2006-08-12 12:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Settings\HookDllPS2.dll
2013-10-23 15:29 - 2013-10-23 15:29 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-06-15 12:49 - 2011-09-08 19:40 - 01645056 _____ () C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll
2009-11-02 07:20 - 2009-11-02 07:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 07:23 - 2009-11-02 07:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-05-22 12:04 - 2014-05-14 01:40 - 00716616 _____ () C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\libglesv2.dll
2014-05-22 12:04 - 2014-05-14 01:40 - 00126280 _____ () C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\libegl.dll
2014-05-22 12:04 - 2014-05-14 01:40 - 04217672 _____ () C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\pdf.dll
2014-05-22 12:04 - 2014-05-14 01:40 - 00414536 _____ () C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
2014-05-22 12:04 - 2014-05-14 01:40 - 01732424 _____ () C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll
2014-01-30 22:05 - 2014-04-25 18:22 - 00962560 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2014-01-30 22:05 - 2014-04-25 18:22 - 00024064 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2014-01-30 22:05 - 2014-04-25 18:22 - 00025088 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2014-01-30 22:05 - 2014-04-25 18:22 - 00217088 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2014-01-30 22:05 - 2014-04-25 18:22 - 00261632 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2014-01-30 22:05 - 2014-04-25 18:22 - 00019968 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2014-01-30 22:05 - 2014-04-25 18:22 - 00302592 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2014-01-30 22:05 - 2014-04-25 18:22 - 00018944 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:5C321E34
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: BstHdAndroidSvc => 2
MSCONFIG\Services: BstHdLogRotatorSvc => 2
MSCONFIG\Services: BstHdUpdaterSvc => 2
MSCONFIG\Services: GameConsoleService => 3
MSCONFIG\Services: Giraffic => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: LkCitadelServer => 3
MSCONFIG\Services: lkClassAds => 2
MSCONFIG\Services: lkTimeSync => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: NIDomainService => 2
MSCONFIG\Services: niSvcLoc => 2
MSCONFIG\Services: Samsung UPD Service2 => 3
MSCONFIG\Services: SamsungAllShareV2.0 => 2
MSCONFIG\Services: SBAMSvc => 2
MSCONFIG\Services: Secunia PSI Agent => 2
MSCONFIG\Services: Secunia Update Agent => 2
MSCONFIG\Services: SimpleSlideShowServer => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TeamViewer8 => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk => C:\windows\pss\Secunia PSI Tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Virtual Router Manager.lnk => C:\windows\pss\Virtual Router Manager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Eugen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Eugen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: Ad-Aware Antivirus => "C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher" --windows-run
MSCONFIG\startupreg: Ad-Aware Browsing Protection => "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
MSCONFIG\startupreg: AdAwareTray => "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4530.0\AdAwareTray.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: Connectify => C:\Program Files (x86)\Connectify\Connectify.exe
MSCONFIG\startupreg: Connectify Dispatch => C:\Program Files (x86)\Connectify\DispatchUI.exe autorun
MSCONFIG\startupreg: Connectify Hotspot => C:\Program Files (x86)\Connectify\Connectify.exe autorun
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: Facebook Update => "C:\Users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Google Update => "C:\Users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: NI Background Service => C:\Program Files (x86)\National Instruments\Shared\Update Service\BackgroundService.exe
MSCONFIG\startupreg: Nvtmru => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RGSC => C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
MSCONFIG\startupreg: SBRegRebootCleaner => "C:\Program Files (x86)\Ad-Aware Antivirus\SBRC.exe"
MSCONFIG\startupreg: SearchProtection => C:\ProgramData\Search Protection\_run.bat
MSCONFIG\startupreg: Spotify => "C:\Users\Eugen\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Eugen\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SpywareTerminatorShield => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
MSCONFIG\startupreg: SpywareTerminatorUpdater => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
MSCONFIG\startupreg: SSDMonitor => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SweetIM => C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
MSCONFIG\startupreg: Sweetpacks Communicator => C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
MSCONFIG\startupreg: Unified Remote v2 => C:\Program Files (x86)\Unified Remote\RemoteServer.exe
MSCONFIG\startupreg: USB Gamepad => C:\windows\USB Vibration\dr100&110\USB Gamepad.exe -boot
MSCONFIG\startupreg: uTorrent => "C:\Users\Eugen\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
MSCONFIG\startupreg: VeohPlugin => "C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
MSCONFIG\startupreg: Wisdom-soft AutoScreenRecorder 3.1 Pro => 0
MSCONFIG\startupreg: Xvid => C:\Program Files (x86)\Xvid\CheckUpdate.exe

==================== Faulty Device Manager Devices =============

Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/03/2014 05:42:24 PM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (06/02/2014 07:19:37 PM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (06/02/2014 00:49:56 PM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/31/2014 11:21:02 AM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/30/2014 00:00:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 11:54:29 AM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/29/2014 05:54:35 PM) (Source: SideBySide) (EventID: 9) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Das Stammelement der Manifestdatei muss assembliert sein.

Error: (05/28/2014 08:46:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NvBackend.exe, Version: 12.4.67.0, Zeitstempel: 0x535fafd9
Name des fehlerhaften Moduls: nvapi.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x537a8d9c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x72f23cd0
ID des fehlerhaften Prozesses: 0xe94
Startzeit der fehlerhaften Anwendung: 0xNvBackend.exe0
Pfad der fehlerhaften Anwendung: NvBackend.exe1
Pfad des fehlerhaften Moduls: NvBackend.exe2
Berichtskennung: NvBackend.exe3

Error: (05/28/2014 08:45:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/28/2014 08:32:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NvBackend.exe, Version: 12.4.67.0, Zeitstempel: 0x535fafd9
Name des fehlerhaften Moduls: nvapi.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x537a8d9c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6ed43cd0
ID des fehlerhaften Prozesses: 0xac4
Startzeit der fehlerhaften Anwendung: 0xNvBackend.exe0
Pfad der fehlerhaften Anwendung: NvBackend.exe1
Pfad des fehlerhaften Moduls: NvBackend.exe2
Berichtskennung: NvBackend.exe3


System errors:
=============
Error: (06/02/2014 01:34:57 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "VM",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{EBE3468D-7CD6-4436-AC34-30B3D5192485}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (06/01/2014 10:11:19 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 8.20.2.221
registriert werden. Der Computer mit IP-Adresse 8.20.2.136 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (05/30/2014 00:06:56 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (05/30/2014 00:01:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Microsoft .NET Framework NGEN v4.0.30319_X86 erreicht.

Error: (05/30/2014 00:00:17 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\windows\System32\IWMSSvc.dll
Fehlercode: 258

Error: (05/30/2014 11:59:04 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
StarOpen

Error: (05/30/2014 11:58:18 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\StarOpen.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (05/28/2014 08:52:59 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (05/28/2014 08:45:18 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\windows\System32\IWMSSvc.dll
Fehlercode: 258

Error: (05/28/2014 08:44:17 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
StarOpen


Microsoft Office Sessions:
=========================
Error: (06/03/2014 05:42:24 PM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (06/02/2014 07:19:37 PM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (06/02/2014 00:49:56 PM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/31/2014 11:21:02 AM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/30/2014 00:00:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 11:54:29 AM) (Source: Google Update) (EventID: 20) (User: Eugen-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/29/2014 05:54:35 PM) (Source: SideBySide) (EventID: 9) (User: )
Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2

Error: (05/28/2014 08:46:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: NvBackend.exe12.4.67.0535fafd9nvapi.dll_unloaded0.0.0.0537a8d9cc000000572f23cd0e9401cf7aa4eccfaa0aC:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exenvapi.dll565293d9-e698-11e3-bd43-e8039ae55d68

Error: (05/28/2014 08:45:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/28/2014 08:32:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: NvBackend.exe12.4.67.0535fafd9nvapi.dll_unloaded0.0.0.0537a8d9cc00000056ed43cd0ac401cf7aa311d5f876C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exenvapi.dll7e1d4255-e696-11e3-80c5-e8039ae55d68


CodeIntegrity Errors:
===================================
  Date: 2014-03-19 20:01:12.174
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-19 20:01:12.112
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-18 11:44:31.535
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-18 11:44:31.472
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-17 09:37:35.616
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-17 09:37:35.554
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-17 09:25:51.215
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-17 09:25:51.153
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-16 21:22:28.786
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-03-16 21:22:28.724
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info ===========================

Percentage of memory in use: 42%
Total physical RAM: 8089.27 MB
Available physical RAM: 4661.36 MB
Total Pagefile: 16176.73 MB
Available Pagefile: 12690.18 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:906.67 GB) (Free:598.51 GB) NTFS
Drive e: (ARMA3 Complete) (CDROM) (Total:9.96 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 3A3C5B8A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=907 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=25 GB) - (Type=27)

==================== End Of Log ============================

buddhavs 04.06.2014 17:40
Liste der Anhänge anzeigen (Anzahl: 1)
Hier nun noch der Screenshot...

Wobei jetzt die CPU Auslastung aufgetreten ist, ohne dass ich ein Spiel gestartet und beendet hab. (Hatte Visual Studio und NI Multisim am laufen)...

schrauber 05.06.2014 17:54
hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

buddhavs 05.06.2014 19:11
Mal ne allgemeine Frage, wie kann ich eigentlich hier im Forum meine Beiträge löschen?

buddhavs 05.06.2014 19:58
Code:
ComboFix 14-06-04.01 - Eugen 05.06.2014  19:33:15.2.4 - x64
Microsoft Windows 7 Home Premium  6.1.7601.1.1252.49.1031.18.8089.5268 [GMT 2:00]
ausgeführt von:: c:\users\Eugen\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\END
.
.
(((((((((((((((((((((((  Dateien erstellt von 2014-05-05 bis 2014-06-05  ))))))))))))))))))))))))))))))
.
.
2014-06-05 17:47 . 2014-06-05 17:47        --------        d-----w-        c:\users\UpdatusUser\AppData\Local\temp
2014-06-05 17:47 . 2014-06-05 17:47        --------        d-----w-        c:\users\Public\AppData\Local\temp
2014-06-05 17:47 . 2014-06-05 17:47        --------        d-----w-        c:\users\Default\AppData\Local\temp
2014-06-05 17:47 . 2014-06-05 17:47        --------        d-----w-        c:\users\Administrator\AppData\Local\temp
2014-06-04 08:38 . 2014-06-04 08:38        --------        d-----w-        c:\users\Eugen\AppData\Roaming\NVIDIA
2014-05-31 18:11 . 2014-05-31 18:11        --------        d-----w-        c:\users\Eugen\AppData\Local\Arma 3
2014-05-31 18:11 . 2014-05-31 18:11        --------        d-----w-        c:\programdata\Steam
2014-05-31 18:11 . 2014-05-31 18:11        --------        d-----w-        c:\programdata\Bohemia Interactive
2014-05-31 17:32 . 2014-05-31 18:11        --------        d-----w-        c:\program files (x86)\Arma 3
2014-05-31 14:01 . 2014-05-31 14:01        --------        d-----w-        c:\users\Eugen\AppData\Local\gtk-2.0
2014-05-31 13:49 . 2014-05-31 15:03        --------        d-----w-        c:\users\Eugen\AppData\Roaming\Wireshark
2014-05-31 13:17 . 2014-05-31 13:17        --------        d-----w-        c:\program files (x86)\WinPcap
2014-05-31 13:16 . 2014-05-31 13:17        --------        d-----w-        c:\program files\Wireshark
2014-05-30 16:07 . 2014-05-30 16:07        --------        d-----w-        c:\users\Eugen\AppData\Roaming\StreamTorrent
2014-05-28 18:31 . 2014-05-28 18:31        --------        d-----w-        c:\windows\SysWow64\NV
2014-05-28 18:31 . 2014-05-28 18:31        --------        d-----w-        c:\windows\system32\NV
2014-05-28 18:25 . 2014-05-28 18:50        --------        d-----w-        c:\users\Eugen\AppData\Local\NVIDIA
2014-05-28 18:25 . 2014-04-30 18:27        1081112        ----a-w-        c:\windows\SysWow64\nvspcap.dll
2014-05-28 18:25 . 2014-04-30 18:26        1225920        ----a-w-        c:\windows\system32\nvspcap64.dll
2014-05-28 18:24 . 2014-05-28 18:24        --------        d-----w-        c:\program files (x86)\AGEIA Technologies
2014-05-28 18:23 . 2014-05-20 01:25        6769096        ----a-w-        c:\windows\system32\nvcpl.dll
2014-05-28 18:23 . 2014-05-20 01:25        3514144        ----a-w-        c:\windows\system32\nvsvc64.dll
2014-05-28 18:23 . 2014-05-20 01:25        927520        ----a-w-        c:\windows\system32\nvvsvc.exe
2014-05-28 18:23 . 2014-05-20 01:25        76064        ----a-w-        c:\windows\system32\nv3dappshextr.dll
2014-05-28 18:23 . 2014-05-20 01:25        62808        ----a-w-        c:\windows\system32\nvshext.dll
2014-05-28 18:23 . 2014-05-20 01:25        387528        ----a-w-        c:\windows\system32\nvmctray.dll
2014-05-28 18:23 . 2014-05-20 01:25        2560968        ----a-w-        c:\windows\system32\nvsvcr.dll
2014-05-28 18:23 . 2014-05-20 01:25        1078616        ----a-w-        c:\windows\system32\nv3dappshext.dll
2014-05-28 18:23 . 2014-05-14 23:49        3774821        ----a-w-        c:\windows\system32\nvcoproc.bin
2014-05-28 18:20 . 2014-03-31 16:42        40392        ----a-w-        c:\windows\system32\drivers\nvvad64v.sys
2014-05-28 18:20 . 2014-03-31 16:42        37320        ----a-w-        c:\windows\system32\nvaudcap64v.dll
2014-05-28 18:20 . 2014-03-31 16:42        34760        ----a-w-        c:\windows\SysWow64\nvaudcap32v.dll
2014-05-28 18:20 . 2014-05-28 18:20        --------        d-----w-        C:\NVIDIA
2014-05-28 18:18 . 2014-05-28 18:18        --------        d-----w-        c:\program files (x86)\Driver Cleaner Pro
2014-05-28 08:50 . 2014-05-28 08:50        29208        ----a-w-        c:\windows\system32\drivers\aswHwid.sys
2014-05-28 08:50 . 2014-05-28 08:50        43152        ----a-w-        c:\windows\avastSS.scr
2014-05-28 08:46 . 2014-04-14 18:13        96168        ----a-w-        c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-05-28 08:23 . 2014-05-28 08:23        --------        d-s---w-        c:\windows\system32\CompatTel
2014-05-28 08:22 . 2014-05-06 04:40        23544320        ----a-w-        c:\windows\system32\mshtml.dll
2014-05-28 08:22 . 2014-05-06 03:00        84992        ----a-w-        c:\windows\system32\mshtmled.dll
2014-05-28 08:22 . 2014-05-06 04:17        2724864        ----a-w-        c:\windows\system32\mshtml.tlb
2014-05-28 08:22 . 2014-05-06 03:07        2724864        ----a-w-        c:\windows\SysWow64\mshtml.tlb
2014-05-28 08:22 . 2014-05-28 08:22        --------        d-----w-        c:\program files\Common Files\DESIGNER
2014-05-25 18:40 . 2014-05-25 18:40        --------        d-----w-        c:\programdata\Codemasters
2014-05-25 18:40 . 2014-05-25 18:40        --------        d-----w-        c:\users\Eugen\AppData\Local\SKIDROW
2014-05-25 18:19 . 2014-05-25 18:19        --------        d-----w-        C:\Games
2014-05-14 11:00 . 2014-06-05 08:05        --------        d-----w-        c:\users\Eugen\AppData\Roaming\DropboxMaster
2014-05-06 21:58 . 2014-05-06 21:58        --------        d-----w-        c:\users\Default\AppData\Local\Google
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-28 08:50 . 2014-04-10 05:10        85328        ----a-w-        c:\windows\system32\drivers\aswstm.sys
2014-05-28 08:50 . 2013-10-23 13:30        1039096        ----a-w-        c:\windows\system32\drivers\aswsnx.sys
2014-05-28 08:50 . 2013-10-23 13:30        423240        ----a-w-        c:\windows\system32\drivers\aswsp.sys
2014-05-28 08:50 . 2013-10-23 13:30        65776        ----a-w-        c:\windows\system32\drivers\aswRvrt.sys
2014-05-28 08:50 . 2013-10-23 13:30        208416        ----a-w-        c:\windows\system32\drivers\aswVmm.sys
2014-05-28 08:50 . 2013-10-23 13:30        79184        ----a-w-        c:\windows\system32\drivers\aswMonFlt.sys
2014-05-28 08:50 . 2013-10-23 13:30        93568        ----a-w-        c:\windows\system32\drivers\aswRdr2.sys
2014-05-28 08:50 . 2013-10-23 13:30        334648        ----a-w-        c:\windows\system32\aswBoot.exe
2014-05-28 08:10 . 2012-10-03 16:32        93223848        ----a-w-        c:\windows\system32\MRT.exe
2014-05-17 16:57 . 2014-03-17 08:23        393216        ----a-w-        c:\windows\ServiceProfiles\NetworkService\msmqlog.bin
2014-04-30 23:20 . 2014-05-28 08:22        10702536        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{72DFD170-97D8-4644-ADC5-553576675196}\mpengine.dll
2014-04-26 09:03 . 2013-12-11 09:23        70832        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-26 09:03 . 2013-12-11 09:23        692400        ----a-w-        c:\windows\SysWow64\FlashPlayerApp.exe
2014-04-10 19:32 . 2014-04-10 19:32        216064        ----a-w-        c:\windows\iun3405.exe
2014-04-03 13:15 . 2014-03-20 13:31        2590976        ----a-w-        c:\programdata\Microsoft\VisualStudio\11.0\1031\ResourceCache.dll
2014-03-31 07:35 . 2010-11-21 03:27        270496        ------w-        c:\windows\system32\MpSigStub.exe
2014-03-20 10:07 . 2014-03-20 10:07        194048        ----a-w-        c:\windows\SysWow64\elshyph.dll
2014-03-20 10:07 . 2014-03-20 10:07        942592        ----a-w-        c:\windows\system32\jsIntl.dll
2014-03-20 10:07 . 2014-03-20 10:07        90112        ----a-w-        c:\windows\system32\SetIEInstalledDate.exe
2014-03-20 10:07 . 2014-03-20 10:07        86016        ----a-w-        c:\windows\SysWow64\iesysprep.dll
2014-03-20 10:07 . 2014-03-20 10:07        86016        ----a-w-        c:\windows\system32\RegisterIEPKEYs.exe
2014-03-20 10:07 . 2014-03-20 10:07        83968        ----a-w-        c:\windows\system32\MshtmlDac.dll
2014-03-20 10:07 . 2014-03-20 10:07        81408        ----a-w-        c:\windows\system32\icardie.dll
2014-03-20 10:07 . 2014-03-20 10:07        774144        ----a-w-        c:\windows\system32\jscript.dll
2014-03-20 10:07 . 2014-03-20 10:07        77312        ----a-w-        c:\windows\system32\tdc.ocx
2014-03-20 10:07 . 2014-03-20 10:07        74240        ----a-w-        c:\windows\SysWow64\SetIEInstalledDate.exe
2014-03-20 10:07 . 2014-03-20 10:07        71680        ----a-w-        c:\windows\SysWow64\RegisterIEPKEYs.exe
2014-03-20 10:07 . 2014-03-20 10:07        645120        ----a-w-        c:\windows\SysWow64\jsIntl.dll
2014-03-20 10:07 . 2014-03-20 10:07        62464        ----a-w-        c:\windows\SysWow64\tdc.ocx
2014-03-20 10:07 . 2014-03-20 10:07        62464        ----a-w-        c:\windows\system32\pngfilt.dll
2014-03-20 10:07 . 2014-03-20 10:07        61952        ----a-w-        c:\windows\SysWow64\MshtmlDac.dll
2014-03-20 10:07 . 2014-03-20 10:07        616104        ----a-w-        c:\windows\system32\ieapfltr.dat
2014-03-20 10:07 . 2014-03-20 10:07        52224        ----a-w-        c:\windows\system32\msfeedsbs.dll
2014-03-20 10:07 . 2014-03-20 10:07        48640        ----a-w-        c:\windows\SysWow64\mshtmler.dll
2014-03-20 10:07 . 2014-03-20 10:07        48640        ----a-w-        c:\windows\system32\mshtmler.dll
2014-03-20 10:07 . 2014-03-20 10:07        48128        ----a-w-        c:\windows\system32\imgutil.dll
2014-03-20 10:07 . 2014-03-20 10:07        413696        ----a-w-        c:\windows\system32\html.iec
2014-03-20 10:07 . 2014-03-20 10:07        36352        ----a-w-        c:\windows\SysWow64\imgutil.dll
2014-03-20 10:07 . 2014-03-20 10:07        337408        ----a-w-        c:\windows\SysWow64\html.iec
2014-03-20 10:07 . 2014-03-20 10:07        30208        ----a-w-        c:\windows\system32\licmgr10.dll
2014-03-20 10:07 . 2014-03-20 10:07        263376        ----a-w-        c:\windows\system32\iedkcs32.dll
2014-03-20 10:07 . 2014-03-20 10:07        247808        ----a-w-        c:\windows\system32\msls31.dll
2014-03-20 10:07 . 2014-03-20 10:07        24576        ----a-w-        c:\windows\SysWow64\licmgr10.dll
2014-03-20 10:07 . 2014-03-20 10:07        243200        ----a-w-        c:\windows\system32\webcheck.dll
2014-03-20 10:07 . 2014-03-20 10:07        235520        ----a-w-        c:\windows\system32\url.dll
2014-03-20 10:07 . 2014-03-20 10:07        235008        ----a-w-        c:\windows\system32\elshyph.dll
2014-03-20 10:07 . 2014-03-20 10:07        182272        ----a-w-        c:\windows\SysWow64\msls31.dll
2014-03-20 10:07 . 2014-03-20 10:07        167424        ----a-w-        c:\windows\system32\iexpress.exe
2014-03-20 10:07 . 2014-03-20 10:07        151552        ----a-w-        c:\windows\SysWow64\iexpress.exe
2014-03-20 10:07 . 2014-03-20 10:07        147968        ----a-w-        c:\windows\system32\occache.dll
2014-03-20 10:07 . 2014-03-20 10:07        143872        ----a-w-        c:\windows\system32\wextract.exe
2014-03-20 10:07 . 2014-03-20 10:07        139264        ----a-w-        c:\windows\SysWow64\wextract.exe
2014-03-20 10:07 . 2014-03-20 10:07        13824        ----a-w-        c:\windows\system32\mshta.exe
2014-03-20 10:07 . 2014-03-20 10:07        135680        ----a-w-        c:\windows\system32\iepeers.dll
2014-03-20 10:07 . 2014-03-20 10:07        13312        ----a-w-        c:\windows\SysWow64\mshta.exe
2014-03-20 10:07 . 2014-03-20 10:07        13312        ----a-w-        c:\windows\system32\msfeedssync.exe
2014-03-20 10:07 . 2014-03-20 10:07        131072        ----a-w-        c:\windows\system32\IEAdvpack.dll
2014-03-20 10:07 . 2014-03-20 10:07        1228800        ----a-w-        c:\windows\system32\mshtmlmedia.dll
2014-03-20 10:07 . 2014-03-20 10:07        111616        ----a-w-        c:\windows\SysWow64\IEAdvpack.dll
2014-03-20 10:07 . 2014-03-20 10:07        105984        ----a-w-        c:\windows\system32\iesysprep.dll
2014-03-20 10:07 . 2014-03-20 10:07        1051136        ----a-w-        c:\windows\SysWow64\mshtmlmedia.dll
2014-03-20 10:07 . 2014-03-20 10:07        101376        ----a-w-        c:\windows\system32\inseng.dll
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54        131248        ----a-w-        c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54        131248        ----a-w-        c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54        131248        ----a-w-        c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\users\Eugen\AppData\Roaming\uTorrent\uTorrent.exe" [2014-05-22 1268560]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-05-28 3888648]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
c:\users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Eugen\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-5-20 33322312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll c:\windows\SysWOW64\nvinit.dll c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute        REG_MULTI_SZ          \0
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AMPPALP;Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed Protokoll;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]
R3 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys;c:\windows\SYSNATIVE\Drivers\ssadadb.sys [x]
R3 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 gfiark;gfiark;c:\windows\system32\drivers\gfiark.sys;c:\windows\SYSNATIVE\drivers\gfiark.sys [x]
R3 GPU-Z;GPU-Z;c:\users\Eugen\AppData\Local\Temp\GPU-Z.sys;c:\users\Eugen\AppData\Local\Temp\GPU-Z.sys [x]
R3 h647906;DragonRise H647906 AMD64 Driver;c:\windows\system32\drivers\h647906.sys;c:\windows\SYSNATIVE\drivers\h647906.sys [x]
R3 h648101;DragonRise H648101 AMD64 Driver;c:\windows\system32\drivers\h648101.sys;c:\windows\SYSNATIVE\drivers\h648101.sys [x]
R3 h648103;DragonRise H648103 AMD64 Driver;c:\windows\system32\drivers\h648103.sys;c:\windows\SYSNATIVE\drivers\h648103.sys [x]
R3 hid7906;hid7906;c:\windows\system32\drivers\hid7906.sys;c:\windows\SYSNATIVE\drivers\hid7906.sys [x]
R3 hid8101;hid8101;c:\windows\system32\drivers\hid8101.sys;c:\windows\SYSNATIVE\drivers\hid8101.sys [x]
R3 hid8103;hid8103;c:\windows\system32\drivers\hid8103.sys;c:\windows\SYSNATIVE\drivers\hid8103.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
R3 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
R3 iprip;RIP-Überwachung;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf_amd64.sys;c:\windows\SYSNATIVE\DRIVERS\psi_mf_amd64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SBIOSIO;SBIOSIO;c:\users\Eugen\AppData\Local\Temp\__Samsung_Update\SBIOSIO64.sys;c:\users\Eugen\AppData\Local\Temp\__Samsung_Update\SBIOSIO64.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys;c:\windows\SYSNATIVE\DRIVERS\SWDUMon.sys [x]
R3 Te.Service;Te.Service;c:\program files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe;c:\program files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
R4 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
R4 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
R4 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]
R4 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
R4 Giraffic;Veoh Giraffic Video Accelerator;c:\program files (x86)\Giraffic\Veoh_GirafficWatchdog.exe;c:\program files (x86)\Giraffic\Veoh_GirafficWatchdog.exe [x]
R4 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R4 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R4 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R4 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.141\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.141\McCHSvc.exe [x]
R4 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R4 Samsung UPD Service2;Samsung UPD Service2;c:\windows\System32\SUPDSvc2.exe;c:\windows\SYSNATIVE\SUPDSvc2.exe [x]
R4 SamsungAllShareV2.0;Samsung AllShare PC;c:\program files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe;c:\program files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [x]
R4 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe;c:\program files (x86)\Secunia\PSI\PSIA.exe [x]
R4 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe;c:\program files (x86)\Secunia\PSI\sua.exe [x]
R4 SimpleSlideShowServer;SimpleSlideShowServer;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe;c:\program files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys;c:\windows\SYSNATIVE\drivers\gfibto.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys;c:\windows\SYSNATIVE\Drivers\SABI.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 SamsungDeviceConfigurationWinService;SamsungDeviceConfiguration;c:\program files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe;c:\program files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [x]
S2 SGDrv;SGDrv;c:\windows\system32\DRIVERS\SGdrv64.sys;c:\windows\SYSNATIVE\DRIVERS\SGdrv64.sys [x]
S3 AMPPAL;Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed - Virtueller Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys;c:\windows\SYSNATIVE\drivers\Apowersoft_AudioDevice.sys [x]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 ibtfltcoex;ibtfltcoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys;c:\windows\SYSNATIVE\DRIVERS\iwdbus.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usb3Hub;USB-IF USB 3.0 Hub;c:\windows\system32\DRIVERS\usb3Hub.sys;c:\windows\SYSNATIVE\DRIVERS\usb3Hub.sys [x]
S3 XHCIPort;USB-IF xHCI USB Host Controller;c:\windows\system32\DRIVERS\XHCIPort.sys;c:\windows\SYSNATIVE\DRIVERS\XHCIPort.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs        REG_MULTI_SZ          w3svc was
apphost        REG_MULTI_SZ          apphostsvc
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
start [BU]
.
Inhalt des "geplante Tasks" Ordners
.
2014-06-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 09:03]
.
2014-06-04 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
- c:\users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-12 20:05]
.
2014-06-05 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
- c:\users\Eugen\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-12 20:05]
.
2014-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 08:55]
.
2014-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 08:55]
.
2014-06-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
- c:\users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-09 14:40]
.
2014-06-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
- c:\users\Eugen\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-09 14:40]
.
2014-06-05 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 04:41]
.
2014-06-05 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 04:41]
.
2014-03-20 c:\windows\Tasks\MATLAB R2012a Startup Accelerator.job
- c:\program files\MATLAB\R2012a\bin\win64\MATLABStartupAccelerator.exe [2014-03-20 01:29]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-05-28 08:50        290888        ----a-w-        c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54        164016        ----a-w-        c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54        164016        ----a-w-        c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54        164016        ----a-w-        c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54        164016        ----a-w-        c:\users\Eugen\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-04-25 08:03        777032        ----a-w-        c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-04-25 08:03        777032        ----a-w-        c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-04-25 08:03        777032        ----a-w-        c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-04-25 08:03        777032        ----a-w-        c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-04-25 08:03        777032        ----a-w-        c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2000-01-01 13260944]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2012-02-21 11406608]
"MsmqIntCert"="mqrt.dll" [2010-11-21 247808]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-04-30 2199840]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-04-30 1225920]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://de.yahoo.com?fr=hp-avast&type=prc265
mStart Page = https://de.yahoo.com?fr=hp-avast&type=prc265
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: An OneNote s&enden - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 129.143.2.1 129.143.2.4
TCP: Interfaces\{5FD91843-3AE1-472C-9515-E01B26A8728A}: NameServer = 129.143.2.4,129.143.2.1
FF - ProfilePath - c:\users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\imwrfoal.default\
FF - prefs.js: browser.startup.homepage - hxxps://de.yahoo.com?fr=hp-avast&type=prc265
FF - prefs.js: browser.search.selectedEngine - Yahoo! (Avast)
FF - prefs.js: browser.search.defaulturl - hxxp://de.yhs4.search.yahoo.com/yhs/search
FF - prefs.js: keyword.URL - hxxp://de.yhs4.search.yahoo.com/yhs/search
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
Toolbar-Locked - (no file)
BHO-{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{326E768D-4182-46FD-9C16-1449A49795F4}"=hex:51,66,7a,6c,4c,1d,38,12,e3,75,7d,
  36,b0,0f,93,03,e3,00,57,09,a1,c9,d1,e0
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
  72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
  94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{AA609D72-8482-4076-8991-8CDAE5B93BCB}"=hex:51,66,7a,6c,4c,1d,38,12,1c,9e,73,
  ae,b0,ca,18,05,f6,87,cf,9a,e0,e7,7f,df
"{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}"=hex:51,66,7a,6c,4c,1d,38,12,07,5b,93,
  aa,6e,60,ba,0b,f0,6d,b2,b7,80,44,00,83
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
  b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
  df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}"=hex:51,66,7a,6c,4c,1d,38,12,27,28,80,
  ea,f2,9b,77,08,dc,cc,8d,48,4c,7b,c9,f2
.
[HKEY_USERS\S-1-5-21-1236569144-611998795-838250545-1001\System\CurrentControlSet\Control\MediaProperties\PrivateProperties\DirectInput\VID_0810&PID_0001\Calibration\1\Type\Axes]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\BlueStacks\HD-Service.exe
c:\program files (x86)\BlueStacks\HD-Network.exe
c:\program files (x86)\BlueStacks\HD-BlockDevice.exe
c:\program files (x86)\BlueStacks\HD-SharedFolder.exe
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
c:\program files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
c:\program files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-06-05  20:04:28 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-06-05 18:04
ComboFix2.txt  2013-06-14 17:58
.
Vor Suchlauf: 28 Verzeichnis(se), 643.479.179.264 Bytes frei
Nach Suchlauf: 30 Verzeichnis(se), 643.361.751.040 Bytes frei
.
- - End Of File - - DA87F0F77034073E07F1205B9EC614BB
Im Anhang noch Fotos von den Fehlermeldungen...

Seit dem ich ComboFix laufen gelassen hab, kann ich keine Dateien per Bluetooth mehr senden und der Ordner Geräte und Drucker öffnet sich nicht... Er lädt und lädt und lädt.

schrauber 06.06.2014 18:55
Zitat:
Mal ne allgemeine Frage, wie kann ich eigentlich hier im Forum meine Beiträge löschen?
nach 30 minuten gar nicht mehr.


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

buddhavs 09.06.2014 15:08
mbam:
Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlauf Datum: 09.06.2014
Suchlauf-Zeit: 14:37:11
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.06.09.03
Rootkit Datenbank: v2014.06.02.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Eugen

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 429449
Verstrichene Zeit: 43 Min, 39 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Warnen
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 6
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\APPID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}, In Quarantäne, [93d4dc9a34470f275218fb425ba707f9],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}, In Quarantäne, [93d4dc9a34470f275218fb425ba707f9],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{68B81CCD-A80C-4060-8947-5AE69ED01199}, In Quarantäne, [a8bf0a6c106bfb3b0ec1d69b8d752bd5],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}, In Quarantäne, [a8bf274fa3d8a09688488ee3aa5847b9],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\Iminent, In Quarantäne, [94d3f185f784f83e78d6dae1a16102fe],
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-1236569144-611998795-838250545-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, In Quarantäne, [ea7d61153c3fca6cc9f19c35b251ea16],

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 11
PUP.Optional.Iminent.A, C:\Program Files (x86)\IminentToolbar, In Quarantäne, [5710a6d00c6f30064b3a8cf80ef436ca],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\09390F88744F4D38B5655E44B424B3D4, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\13622DB7465A4180ADB4697D65350A23, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\5FED87AE449D4A5BAA21A16A28D21A89, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\ADF5C942B194423885488C119ECE6BDA, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\EDAFD3889AC64AF38140E6C565B55E11, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\OpenCandy_13622DB7465A4180ADB4697D65350A23, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\OpenCandy_ADF5C942B194423885488C119ECE6BDA, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.Yontoo.A, C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\3gwvr4zd.default\extensions\plugin@yontoo.com, In Quarantäne, [4126cfa727542412078bdeacb949d927],
PUP.Optional.Yontoo.A, C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\3gwvr4zd.default\extensions\plugin@yontoo.com\locale, In Quarantäne, [4126cfa727542412078bdeacb949d927],

Dateien: 10
PUP.Optional.OpenCandy, C:\Users\Eugen\Downloads\DTLite4471-0333.exe, In Quarantäne, [d1963442c4b7b77ffb318a09010353ad],
PUP.Optional.OpenCandy, C:\Users\Eugen\Downloads\VeohWebPlayer138Setup_eng.exe, In Quarantäne, [e384f185dc9f0c2adf4d751eec1855ab],
PUP.Optional.Iminent.A, C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage, In Quarantäne, [382fb9bd2f4c0d29321d8c1717eb24dc],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\09390F88744F4D38B5655E44B424B3D4\Trial-14.0.1000.89_de-DE_1004732_DE-1.exe, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\13622DB7465A4180ADB4697D65350A23\5739.ico, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\13622DB7465A4180ADB4697D65350A23\EBB77268-338F-4C6A-8590-AD88FED26F4A, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\13622DB7465A4180ADB4697D65350A23\GutscheinCodes.exe, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\13622DB7465A4180ADB4697D65350A23\OCBrowserHelper_1.0.6.124.exe, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\ADF5C942B194423885488C119ECE6BDA\Trial-14.0.1000.89_de-DE_1004733_DE-2.exe, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],
PUP.Optional.OpenCandy, C:\Users\Eugen\AppData\Roaming\OpenCandy\EDAFD3889AC64AF38140E6C565B55E11\SnapDo_RBCB_p3v9.exe, In Quarantäne, [f077a7cf9fdc89adb8d67e068b77d828],

Physische Sektoren: 0
(No malicious items detected)


(end)
AdwCleaner:
Code:
# AdwCleaner v3.212 - Bericht erstellt am 09/06/2014 um 15:41:27
# Aktualisiert 05/06/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Eugen - EUGEN-PC
# Gestartet von : C:\Users\Eugen\Desktop\adwcleaner_3.212.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\apn
Ordner Gelöscht : C:\Program Files (x86)\Toolbar Cleaner
Ordner Gelöscht : C:\Users\Eugen\AppData\Local\Temp\OCS

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\adawarebp_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\adawarebp_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\biclient_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\biclient_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_veoh_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_veoh_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\adawarebp
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKLM\Software\adawaretb
Schlüssel Gelöscht : HKLM\Software\Toolbar Cleaner
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v29.0.1 (de)

[ Datei : C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\imwrfoal.default\prefs.js ]


-\\ Google Chrome v

[ Datei : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Search Provider] : hxxp://de.ask.com/web?q={searchTerms}

[ Datei : C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=&locale=&apn_uid=CC02A2EE-992C-417E-8C79-85BA0561E8BE&apn_ptnrs=U3&apn_sauid=47F12EB4-6D44-4F1A-A699-663504AF9616&apn_dtid=OSJ000YYDE&q={searchTerms}
Gelöscht [Search Provider] : hxxp://lavasoft.blekko.com/ws/?source=f439e2c0&tbp=rbox&toolbarid=adawaretb&u=EFA130BF720153445D95995163127F9C&q={searchTerms}
Gelöscht [Extension] : bopakagnckmlgajfccecajhnimjiiedh
Gelöscht [Extension] : didlmjkkjfegblmkekbhgpefajgikncm
Gelöscht [Extension] : nikpibnbobmbdbheedjfogjlikpgpnhp
Gelöscht [Extension] : pkhojieggfgllhllcegoffdcnmdeojgb

*************************

AdwCleaner[R0].txt - [12869 octets] - [09/06/2014 15:37:32]
AdwCleaner[S0].txt - [12459 octets] - [09/06/2014 15:41:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12520 octets] ##########
JRT:

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Eugen on 09.06.2014 at 15:55:03,54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1236569144-611998795-838250545-1001\Software\sweetim



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Eugen\appdata\locallow\boost_interprocess"
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{10BAA04B-3DB4-4F54-AFCA-146527948A41}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{45A72FB8-268E-4543-A702-C56D576A3175}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{5348BEE5-CA38-4528-8E3D-AA11891D9554}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{54F84746-8183-479B-B2BA-C029E9B2ED18}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{598A0951-A735-4B66-946F-E55F29441BC6}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{6068162F-A8A7-4B58-BD6A-6B7FE6B93DC0}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{86643084-562B-415B-AA4A-8FE7C6BE3546}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{95350BA7-AB14-41CB-8CE3-69D35F5C1190}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{95A0A41B-B6B7-4268-A351-B9CF2087CD8D}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{AA2C1772-CA05-4DD5-9C99-59D4578A480A}
Successfully deleted: [Empty Folder] C:\Users\Eugen\appdata\local\{BE770947-4F1F-4376-8BA5-A37A48D85B5D}



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09.06.2014 at 16:03:50,25
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-06-2014 02
Ran by Eugen (administrator) on EUGEN-PC on 09-06-2014 16:04:43
Running from C:\Users\Eugen\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Eugen\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13260944 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2867984 2012-01-05] (Synaptics Incorporated)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11406608 2012-02-21] (Intel Corporation)
HKLM\...\Run: [MsmqIntCert] => regsvr32 /s mqrt.dll
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-09] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1236569144-611998795-838250545-1001\...\Run: [uTorrent] => C:\Users\Eugen\AppData\Roaming\uTorrent\uTorrent.exe [1268560 2014-05-22] (BitTorrent Inc.)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [166568 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs:  C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [166568 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\Windows\SysWOW64\nvinit.dll => c:\Windows\SysWOW64\nvinit.dll [146480 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32:  C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32:  C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-05-20] (NVIDIA Corporation)
Startup: C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Eugen\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com?fr=hp-avast&type=prc265
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com?fr=hp-avast&type=prc265
URLSearchHook: HKLM-x32 - (No Name) - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?type=prc265&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKCU - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?type=prc265&hspart=avast&hsimp=yhs-001&p={searchTerms}
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -  No File
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Java\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Samsung BHO Class - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Java\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 134.34.3.2 134.34.3.3
Tcpip\..\Interfaces\{5FD91843-3AE1-472C-9515-E01B26A8728A}: [NameServer]129.143.2.4,129.143.2.1

FireFox:
========
FF ProfilePath: C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\imwrfoal.default
FF Homepage: https://de.yahoo.com?fr=hp-avast&type=prc265
FF SelectedSearchEngine: Yahoo! (Avast)
FF DefaultSearchEngine: Yahoo! (Avast)
FF SearchEngineOrder.1: Yahoo! (Avast)
FF Keyword.URL: hxxp://de.yhs4.search.yahoo.com/yhs/search
FF NewTab: about:newtab
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Eugen\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Eugen\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Eugen\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Eugen\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\imwrfoal.default\searchplugins\yahoo-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Greasemonkey - C:\Users\Eugen\AppData\Roaming\Mozilla\Firefox\Profiles\imwrfoal.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-05-31]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-10-30]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-11-04]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-10-23]

Chrome:
=======
CHR HomePage: https://de.yahoo.com?fr=hp-avast&type=prc265
CHR StartupUrls: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Eugen\AppData\Local\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll (Amazon.com, Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\Eugen\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Eugen\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Google Update) - C:\Users\Eugen\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\windows\SysWOW64\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-04-27]
CHR Extension: (Google Drive) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-09]
CHR Extension: (YouTube) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-09]
CHR Extension: (Adblock Plus) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-23]
CHR Extension: (Google-Suche) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-09]
CHR Extension: (AdBlock) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-04-30]
CHR Extension: (avast! Online Security) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-10-23]
CHR Extension: (ProxMate - Proxy on steroids!) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifalmiidchkjjmkkbkoaibpmoeichmki [2014-03-17]
CHR Extension: (Google Wallet) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-30]
CHR Extension: (Google Mail) - C:\Users\Eugen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-09]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-05-28]
CHR HKLM-x32\...\Chrome\Extension: [lfffjahnfbocnaooecgijfnbpcfekoik] - C:\ProgramData\adawaretb\shortcuts\chrome\adawaretb.crx [2014-05-28]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-28] (AVAST Software)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-03-13] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-03-13] (BlueStack Systems, Inc.)
S2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [770832 2014-03-13] (BlueStack Systems, Inc.)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation) [File not signed]
S4 Giraffic; C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe [2245232 2013-05-13] (Giraffic)
S3 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [15872 2010-11-21] (Microsoft Corporation)
S3 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2000-01-01] (Intel Corporation)
S3 iprip; C:\Windows\System32\iprip.dll [35328 2009-07-14] (Microsoft Corporation)
S3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2000-01-01] (Intel Corporation)
S4 LkCitadelServer; C:\windows\SysWOW64\lkcitdl.exe [695136 2008-10-31] (National Instruments, Inc.)
S4 lkClassAds; C:\windows\SysWOW64\lkads.exe [42544 2009-06-18] (National Instruments Corporation)
S4 lkTimeSync; C:\windows\SysWOW64\lktsrv.exe [53296 2009-06-18] (National Instruments Corporation)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
S4 MSMQ; C:\Windows\system32\mqsvc.exe [9216 2009-07-14] (Microsoft Corporation)
S4 MSMQTriggers; C:\Windows\system32\mqtgsvc.exe [189440 2010-11-21] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-05-08] ()
S4 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [356912 2009-06-18] (National Instruments Corporation)
S4 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1007616 2009-09-18] (Macrovision Corporation) [File not signed]
S4 niSvcLoc; C:\windows\SysWOW64\nisvcloc.exe [13896 2009-06-04] (National Instruments Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21007192 2014-04-30] (NVIDIA Corporation)
S3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-12-01] () [File not signed]
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S4 Samsung UPD Service2; C:\windows\System32\SUPDSvc2.exe [165456 2011-12-02] (Samsung Electronics)
R2 SamsungDeviceConfigurationWinService; C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [31624 2012-02-13] () [File not signed]
S4 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-10-14] (Secunia)
S4 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-10-14] (Secunia)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation) [File not signed]
S4 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-21] (Microsoft Corporation)
S3 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3385584 2013-05-08] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2011-03-01] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-28] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-28] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-28] ()
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [121616 2014-03-13] (BlueStack Systems)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-10-15] (DT Soft Ltd)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [39504 2013-04-11] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-04-08] (GFI Software)
S3 h647906; C:\Windows\System32\drivers\h647906.sys [63856 2008-08-08] (Your Corporation)
S3 h648101; C:\Windows\System32\drivers\h648101.sys [65776 2008-08-08] (Your Corporation)
S3 h648103; C:\Windows\System32\drivers\h648103.sys [62960 2008-08-08] (Your Corporation)
S3 hid7906; C:\Windows\SysWOW64\drivers\hid7906.sys [41272 2008-08-08] (Your Corporation)
S3 hid8101; C:\Windows\SysWOW64\drivers\hid8101.sys [43192 2008-08-08] (Your Corporation)
S3 hid8103; C:\Windows\SysWOW64\drivers\hid8103.sys [40856 2008-08-08] (Your Corporation)
S3 MQAC; C:\Windows\System32\drivers\mqac.sys [189440 2009-07-14] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18776 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-10-14] (Secunia)
R2 SGDrv; C:\Windows\System32\DRIVERS\SGdrv64.sys [7680 2011-04-11] (Phoenix Technologies Ltd.)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-10-23] ()
R3 usb3Hub; C:\Windows\System32\DRIVERS\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider)
S3 VSPerfDrv110; C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-26] (Microsoft Corporation)
R3 XHCIPort; C:\Windows\System32\DRIVERS\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys [X]
S3 GPU-Z; \??\C:\Users\Eugen\AppData\Local\Temp\GPU-Z.sys [X]
S3 SBIOSIO; \??\C:\Users\Eugen\AppData\Local\Temp\__Samsung_Update\SBIOSIO64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-09 16:04 - 2014-06-09 16:04 - 00000000 ____D () C:\Users\Eugen\Desktop\FRST-OlderVersion
2014-06-09 16:03 - 2014-06-09 16:04 - 00002423 _____ () C:\Users\Eugen\Desktop\JRT.txt
2014-06-09 15:57 - 2014-06-09 15:41 - 00012773 _____ () C:\Users\Eugen\Desktop\AdwCleaner[S0].txt
2014-06-09 15:53 - 2014-06-09 15:54 - 01016261 _____ (Thisisu) C:\Users\Eugen\Desktop\JRT.exe
2014-06-09 15:38 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
2014-06-09 15:37 - 2014-06-09 15:51 - 00000000 ____D () C:\AdwCleaner
2014-06-09 15:37 - 2014-06-09 15:37 - 01333465 _____ () C:\Users\Eugen\Desktop\adwcleaner_3.212.exe
2014-06-09 15:36 - 2014-06-09 15:36 - 00005504 _____ () C:\Users\Eugen\Desktop\mbam.txt
2014-06-09 15:21 - 2014-06-09 15:45 - 00000546 _____ () C:\windows\Tasks\MATLAB R2012a Startup Accelerator.job
2014-06-09 15:21 - 2014-06-09 15:21 - 00003724 _____ () C:\windows\System32\Tasks\MATLAB R2012a Startup Accelerator
2014-06-09 15:21 - 2014-06-09 15:21 - 00001295 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2012a.lnk
2014-06-09 15:21 - 2014-06-09 15:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB
2014-06-09 14:54 - 2014-06-09 14:54 - 00000000 ____D () C:\Program Files\MATLAB
2014-06-09 14:36 - 2014-06-09 15:34 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-09 14:35 - 2014-06-09 14:35 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-09 14:35 - 2014-06-09 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-09 14:35 - 2014-06-09 14:35 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-09 14:35 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-06-09 14:35 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-06-09 14:34 - 2014-06-09 14:34 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Eugen\Desktop\mbam-setup-2.0.2.1012.exe
2014-06-05 20:50 - 2014-06-05 20:50 - 00961360 _____ (Chip Digital GmbH) C:\Users\Eugen\Desktop\TinyPic - CHIP-Installer.exe
2014-06-05 20:50 - 2014-06-05 20:50 - 00000991 _____ () C:\Users\Eugen\Desktop\TinyPic.lnk
2014-06-05 20:50 - 2014-06-05 20:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic
2014-06-05 20:50 - 2014-06-05 20:50 - 00000000 ____D () C:\Program Files (x86)\Tinypic
2014-06-05 20:47 - 2014-06-05 20:56 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Windows Live
2014-06-05 20:05 - 2014-06-05 20:05 - 00041899 _____ () C:\Users\Eugen\Desktop\ComboFix.txt
2014-06-05 20:04 - 2014-06-05 20:04 - 00041899 _____ () C:\ComboFix.txt
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\UpdatusUser.Eugen-PC\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\Public\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\Default\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\Default User\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\Administrator\AppData\Local\temp
2014-06-05 19:26 - 2014-06-05 19:26 - 05205146 ____R (Swearware) C:\Users\Eugen\Desktop\ComboFix.exe
2014-06-04 18:32 - 2014-06-05 09:05 - 00050164 _____ () C:\Users\Eugen\Desktop\Schaltung1.ms11
2014-06-04 18:32 - 2014-06-04 18:32 - 00052882 _____ () C:\Users\Eugen\Desktop\Schaltung3.ms11
2014-06-04 18:32 - 2014-06-04 18:32 - 00042572 _____ () C:\Users\Eugen\Desktop\Schaltung2.ms11
2014-06-04 18:32 - 2014-06-04 18:32 - 00041799 _____ () C:\Users\Eugen\Desktop\Schaltung1.ms11 (Security copy)
2014-06-04 10:38 - 2014-06-04 10:38 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\NVIDIA
2014-06-04 10:14 - 2014-06-04 10:14 - 00097365 _____ () C:\Users\Eugen\Desktop\Addition.txt
2014-06-04 10:03 - 2014-06-09 16:04 - 00027175 _____ () C:\Users\Eugen\Desktop\FRST.txt
2014-06-04 10:02 - 2014-06-09 16:04 - 02080768 _____ (Farbar) C:\Users\Eugen\Desktop\FRST64.exe
2014-06-04 10:00 - 2014-06-04 10:00 - 00000000 ____D () C:\Users\Eugen\Desktop\ProcessExplorer
2014-06-04 09:59 - 2014-06-04 09:59 - 01243655 _____ () C:\Users\Eugen\Desktop\ProcessExplorer.zip
2014-05-31 20:11 - 2014-05-31 20:12 - 00000000 ____D () C:\Users\Eugen\Documents\Arma 3
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Arma 3
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\ProgramData\Steam
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-05-31 20:03 - 2014-05-31 20:03 - 00000772 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arma 3.lnk
2014-05-31 19:32 - 2014-05-31 20:11 - 00000000 ____D () C:\Program Files (x86)\Arma 3
2014-05-31 18:23 - 2014-05-31 19:27 - 00000000 ____D () C:\Users\Eugen\Downloads\ARMA.3.Complete.Campaign.Edition-RELOADED
2014-05-31 16:03 - 2014-05-31 16:03 - 00000218 _____ () C:\Users\Eugen\AppData\Local\recently-used.xbel
2014-05-31 16:01 - 2014-05-31 16:01 - 00000000 ____D () C:\Users\Eugen\AppData\Local\gtk-2.0
2014-05-31 15:49 - 2014-05-31 17:03 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Wireshark
2014-05-31 15:23 - 2014-06-03 21:21 - 00001135 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-31 15:23 - 2014-06-03 21:21 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-31 15:23 - 2014-05-31 15:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-31 15:17 - 2014-05-31 15:17 - 00001543 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2014-05-31 15:17 - 2014-05-31 15:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-05-31 15:17 - 2014-05-31 15:17 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2014-05-31 15:16 - 2014-05-31 15:17 - 00000000 ____D () C:\Program Files\Wireshark
2014-05-30 18:10 - 2014-05-30 18:10 - 00986400 _____ () C:\Users\Eugen\Downloads\VLC-Media-Player-lnstall.exe
2014-05-30 18:07 - 2014-05-30 18:07 - 00961360 _____ (Chip Digital GmbH) C:\Users\Eugen\Downloads\StreamTorrent - CHIP-Installer.exe
2014-05-30 18:07 - 2014-05-30 18:07 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\StreamTorrent
2014-05-28 20:31 - 2014-05-28 20:31 - 00000000 ____D () C:\windows\SysWOW64\NV
2014-05-28 20:31 - 2014-05-28 20:31 - 00000000 ____D () C:\windows\system32\NV
2014-05-28 20:30 - 2014-05-28 20:30 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-05-28 20:25 - 2014-05-28 20:50 - 00000000 ____D () C:\Users\Eugen\AppData\Local\NVIDIA
2014-05-28 20:25 - 2014-04-30 20:27 - 01081112 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2014-05-28 20:25 - 2014-04-30 20:26 - 01225920 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2014-05-28 20:24 - 2014-05-28 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-28 20:24 - 2014-05-28 20:24 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-28 20:23 - 2014-05-20 03:25 - 06769096 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 03514144 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 02560968 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 01078616 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 00927520 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
2014-05-28 20:23 - 2014-05-20 03:25 - 00387528 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 00076064 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2014-05-28 20:23 - 2014-05-20 03:25 - 00062808 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2014-05-28 20:23 - 2014-05-15 01:49 - 03774821 _____ () C:\windows\system32\nvcoproc.bin
2014-05-28 20:21 - 2014-05-20 04:44 - 31387936 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 25256224 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 24025376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 18531568 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 17561544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 17480432 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 16003912 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 14434704 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 12688328 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-05-28 20:21 - 2014-05-20 04:44 - 11644928 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 11599072 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 09735256 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 09697640 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 03141976 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 03109248 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 02953672 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 02785568 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 02730208 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 02412376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvenc.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 01889112 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433788.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 01541576 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433788.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00952952 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00895776 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00867784 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00861128 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00837056 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00354016 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00305600 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00166568 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00146480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
2014-05-28 20:21 - 2014-05-20 04:44 - 00032544 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvpciflt.sys
2014-05-28 20:21 - 2014-05-20 04:44 - 00026069 _____ () C:\windows\system32\nvinfo.pb
2014-05-28 20:20 - 2014-05-28 20:20 - 00000000 ____D () C:\NVIDIA
2014-05-28 20:20 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2014-05-28 20:20 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll
2014-05-28 20:20 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2014-05-28 20:18 - 2014-05-28 20:18 - 00001975 _____ () C:\Users\Administrator\Desktop\Driver Cleaner Pro.lnk
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\Program Files (x86)\Driver Cleaner Pro
2014-05-28 20:18 - 2006-03-04 22:09 - 02831178 _____ () C:\Users\Eugen\Downloads\DCProSetup.exe
2014-05-28 20:18 - 2006-01-29 10:33 - 00006779 _____ () C:\Users\Eugen\Downloads\Readme.txt
2014-05-28 20:18 - 2006-01-05 15:09 - 00004091 _____ () C:\Users\Eugen\Downloads\License.txt
2014-05-28 20:17 - 2014-05-28 20:17 - 02817354 _____ () C:\Users\Eugen\Downloads\DCProSetup_15.zip
2014-05-28 10:50 - 2014-05-28 10:55 - 333878864 _____ (NVIDIA Corporation) C:\Users\Eugen\Downloads\337.88-notebook-win8-win7-64bit-international-whql.exe
2014-05-28 10:50 - 2014-05-28 10:50 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-05-28 10:50 - 2014-05-28 10:50 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-05-28 10:50 - 2014-05-28 10:50 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-05-28 10:46 - 2014-05-28 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-28 10:46 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-28 10:46 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2014-05-28 10:46 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2014-05-28 10:46 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2014-05-28 10:45 - 2014-05-28 10:46 - 00004136 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-28 10:43 - 2014-05-28 10:43 - 00921512 _____ (Oracle Corporation) C:\Users\Eugen\Downloads\chromeinstall-7u55.exe
2014-05-28 10:23 - 2014-05-28 10:23 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-28 10:22 - 2014-05-28 10:22 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-28 10:22 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-05-28 10:22 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-05-28 10:22 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-05-28 10:22 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-05-28 10:22 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-05-28 10:22 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-05-28 10:04 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-05-28 10:04 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-05-28 10:04 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-05-28 10:04 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-05-28 10:04 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-05-28 10:04 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-05-28 10:04 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-05-28 10:04 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-05-28 10:04 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-05-28 10:04 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-05-28 10:04 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-05-28 10:04 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-05-28 10:04 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-05-28 10:04 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-05-28 10:04 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-05-28 10:04 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-05-28 10:04 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-05-28 10:04 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-05-28 10:04 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-05-28 10:04 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-05-28 10:04 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-05-28 10:04 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-05-28 10:04 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-05-25 20:40 - 2014-05-25 20:40 - 00000000 ____D () C:\Users\Eugen\AppData\Local\SKIDROW
2014-05-25 20:40 - 2014-05-25 20:40 - 00000000 ____D () C:\ProgramData\Codemasters
2014-05-25 20:19 - 2014-05-25 20:19 - 00000000 ____D () C:\Games
2014-05-23 15:05 - 2014-05-23 15:31 - 00000000 ____D () C:\Users\Eugen\Downloads\F1 2013 =Formula 1 2013=  PC full game ^^nosTEAM^^
2014-05-23 15:04 - 2014-05-23 15:04 - 00029991 _____ () C:\Users\Eugen\Downloads\[kickass.to]f1.2013.formula.1.2013.pc.full.game.nosteam.torrent
2014-05-22 23:18 - 2014-05-23 00:01 - 00000000 ____D () C:\Users\Eugen\Downloads\Rocky-The.Complete.Saga[2007]DvDrip-aXXo
2014-05-22 23:18 - 2014-05-22 23:18 - 00169453 _____ () C:\Users\Eugen\Downloads\[kickass.to]rocky.the.complete.saga.2007.dvdrip.axxo.torrent
2014-05-20 18:39 - 2014-05-20 19:18 - 00000000 ____D () C:\Users\Eugen\Documents\FIFA World
2014-05-20 18:39 - 2014-05-20 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Sports FIFA World
2014-05-20 18:22 - 2014-05-20 18:22 - 23516512 _____ (Electronic Arts, Inc.) C:\Users\Eugen\Downloads\EASportsFIFAWorld.exe
2014-05-15 21:47 - 2014-05-15 21:47 - 00001239 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-05-15 21:29 - 2014-05-15 21:29 - 00007527 _____ () C:\Users\Eugen\Desktop\VierGewinnt.rar
2014-05-15 21:26 - 2014-05-15 21:23 - 00025600 _____ () C:\Users\Eugen\Desktop\VierGewinnt.exe
2014-05-15 19:58 - 2014-05-15 19:58 - 00096607 _____ () C:\Users\Eugen\Desktop\EugenSchulz_288215_Modul5.rar
2014-05-15 19:58 - 2014-05-15 19:58 - 00000000 ____D () C:\Users\Eugen\Desktop\Modul5
2014-05-14 13:00 - 2014-06-09 15:48 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\DropboxMaster
2014-05-13 09:29 - 2014-05-13 09:29 - 00001541 _____ () C:\Users\Eugen\Desktop\Visual Studio 2012.lnk

==================== One Month Modified Files and Folders =======

2015-07-25 04:24 - 2013-10-15 21:34 - 00000000 ____D () C:\Users\Eugen\Downloads\Guru3D.com
2014-06-09 16:06 - 2014-06-04 10:03 - 00027175 _____ () C:\Users\Eugen\Desktop\FRST.txt
2014-06-09 16:06 - 2012-09-29 09:07 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Temp
2014-06-09 16:04 - 2014-06-09 16:04 - 00000000 ____D () C:\Users\Eugen\Desktop\FRST-OlderVersion
2014-06-09 16:04 - 2014-06-09 16:03 - 00002423 _____ () C:\Users\Eugen\Desktop\JRT.txt
2014-06-09 16:04 - 2014-06-04 10:02 - 02080768 _____ (Farbar) C:\Users\Eugen\Desktop\FRST64.exe
2014-06-09 16:04 - 2013-10-14 13:55 - 00000000 ____D () C:\FRST
2014-06-09 16:04 - 2009-07-14 06:45 - 00020992 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-09 16:04 - 2009-07-14 06:45 - 00020992 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-09 15:57 - 2013-05-31 10:55 - 00001108 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-09 15:56 - 2012-11-26 17:57 - 00000000 ___RD () C:\Users\Eugen\Dropbox
2014-06-09 15:56 - 2012-11-26 17:55 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Dropbox
2014-06-09 15:54 - 2014-06-09 15:53 - 01016261 _____ (Thisisu) C:\Users\Eugen\Desktop\JRT.exe
2014-06-09 15:54 - 2013-04-10 17:27 - 00000000 ____D () C:\windows\ERUNT
2014-06-09 15:51 - 2014-06-09 15:37 - 00000000 ____D () C:\AdwCleaner
2014-06-09 15:48 - 2014-05-14 13:00 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\DropboxMaster
2014-06-09 15:47 - 2013-05-09 18:16 - 00000430 _____ () C:\windows\system32\Drivers\etc\hosts.ics
2014-06-09 15:47 - 2012-11-30 13:54 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\uTorrent
2014-06-09 15:45 - 2014-06-09 15:21 - 00000546 _____ () C:\windows\Tasks\MATLAB R2012a Startup Accelerator.job
2014-06-09 15:45 - 2013-10-23 15:22 - 00024345 _____ () C:\windows\setupact.log
2014-06-09 15:44 - 2013-05-31 10:55 - 00001104 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-09 15:43 - 2012-05-21 13:12 - 00000828 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-06-09 15:42 - 2013-10-23 15:22 - 00089776 _____ () C:\windows\PFRO.log
2014-06-09 15:42 - 2009-07-14 07:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-06-09 15:41 - 2014-06-09 15:57 - 00012773 _____ () C:\Users\Eugen\Desktop\AdwCleaner[S0].txt
2014-06-09 15:41 - 2012-05-22 05:05 - 01084400 _____ () C:\windows\WindowsUpdate.log
2014-06-09 15:37 - 2014-06-09 15:37 - 01333465 _____ () C:\Users\Eugen\Desktop\adwcleaner_3.212.exe
2014-06-09 15:36 - 2014-06-09 15:36 - 00005504 _____ () C:\Users\Eugen\Desktop\mbam.txt
2014-06-09 15:34 - 2014-06-09 14:36 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-09 15:24 - 2009-07-14 07:32 - 00000000 ____D () C:\windows\addins
2014-06-09 15:21 - 2014-06-09 15:21 - 00003724 _____ () C:\windows\System32\Tasks\MATLAB R2012a Startup Accelerator
2014-06-09 15:21 - 2014-06-09 15:21 - 00001295 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2012a.lnk
2014-06-09 15:21 - 2014-06-09 15:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB
2014-06-09 15:20 - 2013-04-09 16:40 - 00001120 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
2014-06-09 15:14 - 2013-12-11 11:23 - 00000884 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-06-09 14:54 - 2014-06-09 14:54 - 00000000 ____D () C:\Program Files\MATLAB
2014-06-09 14:35 - 2014-06-09 14:35 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-09 14:35 - 2014-06-09 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-09 14:35 - 2014-06-09 14:35 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-09 14:35 - 2013-04-09 17:28 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Malwarebytes
2014-06-09 14:35 - 2013-04-09 17:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-09 14:34 - 2014-06-09 14:34 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Eugen\Desktop\mbam-setup-2.0.2.1012.exe
2014-06-09 14:21 - 2012-05-22 04:55 - 00775470 _____ () C:\windows\system32\perfh007.dat
2014-06-09 14:21 - 2012-05-22 04:55 - 00176406 _____ () C:\windows\system32\perfc007.dat
2014-06-09 14:21 - 2009-07-14 07:13 - 01810922 _____ () C:\windows\system32\PerfStringBackup.INI
2014-06-09 14:20 - 2013-04-09 16:40 - 00001068 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
2014-06-09 14:19 - 2013-11-13 18:26 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-06-09 13:46 - 2012-10-12 22:06 - 00000906 _____ () C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001Core.job
2014-06-09 13:44 - 2012-10-12 22:06 - 00000928 _____ () C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1236569144-611998795-838250545-1001UA.job
2014-06-09 13:06 - 2012-05-21 13:12 - 00000830 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-06-06 02:16 - 2013-10-01 14:52 - 00000000 ____D () C:\windows\System32\Tasks\Games
2014-06-05 20:56 - 2014-06-05 20:47 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Windows Live
2014-06-05 20:50 - 2014-06-05 20:50 - 00961360 _____ (Chip Digital GmbH) C:\Users\Eugen\Desktop\TinyPic - CHIP-Installer.exe
2014-06-05 20:50 - 2014-06-05 20:50 - 00000991 _____ () C:\Users\Eugen\Desktop\TinyPic.lnk
2014-06-05 20:50 - 2014-06-05 20:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tinypic
2014-06-05 20:50 - 2014-06-05 20:50 - 00000000 ____D () C:\Program Files (x86)\Tinypic
2014-06-05 20:05 - 2014-06-05 20:05 - 00041899 _____ () C:\Users\Eugen\Desktop\ComboFix.txt
2014-06-05 20:04 - 2014-06-05 20:04 - 00041899 _____ () C:\ComboFix.txt
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\UpdatusUser.Eugen-PC\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\Public\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\Default\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\Default User\AppData\Local\temp
2014-06-05 20:04 - 2014-06-05 20:04 - 00000000 ____D () C:\Users\Administrator\AppData\Local\temp
2014-06-05 20:04 - 2013-06-14 19:35 - 00000000 ____D () C:\Qoobox
2014-06-05 19:52 - 2009-07-14 04:34 - 00000215 _____ () C:\windows\system.ini
2014-06-05 19:47 - 2013-06-14 19:34 - 00000000 ____D () C:\windows\erdnt
2014-06-05 19:26 - 2014-06-05 19:26 - 05205146 ____R (Swearware) C:\Users\Eugen\Desktop\ComboFix.exe
2014-06-05 10:05 - 2014-03-19 13:38 - 00001017 _____ () C:\Users\Eugen\Desktop\Dropbox.lnk
2014-06-05 10:05 - 2012-11-26 17:56 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-06-05 10:05 - 2012-09-29 09:10 - 00000000 ___RD () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-06-05 09:05 - 2014-06-04 18:32 - 00050164 _____ () C:\Users\Eugen\Desktop\Schaltung1.ms11
2014-06-04 18:32 - 2014-06-04 18:32 - 00052882 _____ () C:\Users\Eugen\Desktop\Schaltung3.ms11
2014-06-04 18:32 - 2014-06-04 18:32 - 00042572 _____ () C:\Users\Eugen\Desktop\Schaltung2.ms11
2014-06-04 18:32 - 2014-06-04 18:32 - 00041799 _____ () C:\Users\Eugen\Desktop\Schaltung1.ms11 (Security copy)
2014-06-04 13:40 - 2013-09-26 10:11 - 00000000 ____D () C:\ProgramData\Origin
2014-06-04 10:38 - 2014-06-04 10:38 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\NVIDIA
2014-06-04 10:14 - 2014-06-04 10:14 - 00097365 _____ () C:\Users\Eugen\Desktop\Addition.txt
2014-06-04 10:07 - 2013-09-26 12:06 - 00000000 ____D () C:\Users\Eugen\Documents\FIFA 14
2014-06-04 10:04 - 2013-09-26 10:11 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-04 10:00 - 2014-06-04 10:00 - 00000000 ____D () C:\Users\Eugen\Desktop\ProcessExplorer
2014-06-04 09:59 - 2014-06-04 09:59 - 01243655 _____ () C:\Users\Eugen\Desktop\ProcessExplorer.zip
2014-06-04 09:52 - 2012-10-08 12:49 - 00000000 ____D () C:\Studium
2014-06-03 21:22 - 2012-09-29 09:09 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-03 21:21 - 2014-05-31 15:23 - 00001135 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-03 21:21 - 2014-05-31 15:23 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-03 21:21 - 2013-04-09 16:41 - 00002380 _____ () C:\Users\Eugen\Desktop\Google Chrome.lnk
2014-06-03 11:35 - 2014-03-20 15:29 - 00000000 ____D () C:\Users\Eugen\Documents\Visual Studio 2012
2014-06-03 09:00 - 2012-10-09 18:43 - 00000000 ____D () C:\Allgemein
2014-05-31 20:12 - 2014-05-31 20:11 - 00000000 ____D () C:\Users\Eugen\Documents\Arma 3
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Arma 3
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\ProgramData\Steam
2014-05-31 20:11 - 2014-05-31 20:11 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-05-31 20:11 - 2014-05-31 19:32 - 00000000 ____D () C:\Program Files (x86)\Arma 3
2014-05-31 20:07 - 2014-01-30 20:50 - 00054421 _____ () C:\windows\DirectX.log
2014-05-31 20:03 - 2014-05-31 20:03 - 00000772 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arma 3.lnk
2014-05-31 19:27 - 2014-05-31 18:23 - 00000000 ____D () C:\Users\Eugen\Downloads\ARMA.3.Complete.Campaign.Edition-RELOADED
2014-05-31 17:03 - 2014-05-31 15:49 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Wireshark
2014-05-31 16:03 - 2014-05-31 16:03 - 00000218 _____ () C:\Users\Eugen\AppData\Local\recently-used.xbel
2014-05-31 16:01 - 2014-05-31 16:01 - 00000000 ____D () C:\Users\Eugen\AppData\Local\gtk-2.0
2014-05-31 15:24 - 2012-09-30 17:20 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Mozilla
2014-05-31 15:24 - 2012-09-30 17:20 - 00000000 ____D () C:\Users\Eugen\AppData\Local\Mozilla
2014-05-31 15:23 - 2014-05-31 15:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-31 15:23 - 2012-10-30 12:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-31 15:17 - 2014-05-31 15:17 - 00001543 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2014-05-31 15:17 - 2014-05-31 15:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-05-31 15:17 - 2014-05-31 15:17 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2014-05-31 15:17 - 2014-05-31 15:16 - 00000000 ____D () C:\Program Files\Wireshark
2014-05-30 18:10 - 2014-05-30 18:10 - 00986400 _____ () C:\Users\Eugen\Downloads\VLC-Media-Player-lnstall.exe
2014-05-30 18:07 - 2014-05-30 18:07 - 00961360 _____ (Chip Digital GmbH) C:\Users\Eugen\Downloads\StreamTorrent - CHIP-Installer.exe
2014-05-30 18:07 - 2014-05-30 18:07 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\StreamTorrent
2014-05-29 18:02 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\rescache
2014-05-28 20:50 - 2014-05-28 20:25 - 00000000 ____D () C:\Users\Eugen\AppData\Local\NVIDIA
2014-05-28 20:46 - 2012-12-19 17:02 - 00000000 ____D () C:\Users\Eugen\AppData\Local\CrashDumps
2014-05-28 20:31 - 2014-05-28 20:31 - 00000000 ____D () C:\windows\SysWOW64\NV
2014-05-28 20:31 - 2014-05-28 20:31 - 00000000 ____D () C:\windows\system32\NV
2014-05-28 20:31 - 2013-06-15 10:38 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-28 20:30 - 2014-05-28 20:30 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-05-28 20:30 - 2013-06-15 10:36 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-05-28 20:25 - 2014-04-03 15:06 - 00000000 ____D () C:\Users\Eugen\AppData\Local\NVIDIA Corporation
2014-05-28 20:25 - 2012-05-21 13:14 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-05-28 20:25 - 2012-05-21 13:13 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-05-28 20:24 - 2014-05-28 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-28 20:24 - 2014-05-28 20:24 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-28 20:23 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\Help
2014-05-28 20:20 - 2014-05-28 20:20 - 00000000 ____D () C:\NVIDIA
2014-05-28 20:18 - 2014-05-28 20:18 - 00001975 _____ () C:\Users\Administrator\Desktop\Driver Cleaner Pro.lnk
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
2014-05-28 20:18 - 2014-05-28 20:18 - 00000000 ____D () C:\Program Files (x86)\Driver Cleaner Pro
2014-05-28 20:17 - 2014-05-28 20:17 - 02817354 _____ () C:\Users\Eugen\Downloads\DCProSetup_15.zip
2014-05-28 10:55 - 2014-05-28 10:50 - 333878864 _____ (NVIDIA Corporation) C:\Users\Eugen\Downloads\337.88-notebook-win8-win7-64bit-international-whql.exe
2014-05-28 10:50 - 2014-05-28 10:50 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-05-28 10:50 - 2014-05-28 10:50 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-05-28 10:50 - 2014-05-28 10:50 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-05-28 10:50 - 2014-04-10 07:10 - 00085328 _____ (AVAST Software) C:\windows\system32\Drivers\aswstm.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 01039096 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00423240 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00334648 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-05-28 10:50 - 2013-10-23 15:30 - 00208416 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00093568 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00079184 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-05-28 10:50 - 2013-10-23 15:30 - 00065776 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-05-28 10:46 - 2014-05-28 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-28 10:46 - 2014-05-28 10:45 - 00004136 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-28 10:46 - 2013-10-26 00:43 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-28 10:46 - 2013-06-26 21:33 - 00000000 ____D () C:\Java
2014-05-28 10:43 - 2014-05-28 10:43 - 00921512 _____ (Oracle Corporation) C:\Users\Eugen\Downloads\chromeinstall-7u55.exe
2014-05-28 10:29 - 2012-09-29 09:10 - 00000000 ___RD () C:\Users\Eugen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-28 10:23 - 2014-05-28 10:23 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-05-28 10:23 - 2012-11-20 11:45 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-28 10:22 - 2014-05-28 10:22 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-28 10:20 - 2013-10-23 14:43 - 00000000 ____D () C:\windows\system32\MRT
2014-05-28 10:10 - 2012-10-03 18:32 - 93223848 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-05-26 16:49 - 2014-03-16 22:44 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\Kartina.TV
2014-05-25 20:40 - 2014-05-25 20:40 - 00000000 ____D () C:\Users\Eugen\AppData\Local\SKIDROW
2014-05-25 20:40 - 2014-05-25 20:40 - 00000000 ____D () C:\ProgramData\Codemasters
2014-05-25 20:40 - 2014-04-09 17:13 - 00000000 ____D () C:\Users\Eugen\Documents\My Games
2014-05-25 20:19 - 2014-05-25 20:19 - 00000000 ____D () C:\Games
2014-05-23 15:31 - 2014-05-23 15:05 - 00000000 ____D () C:\Users\Eugen\Downloads\F1 2013 =Formula 1 2013=  PC full game ^^nosTEAM^^
2014-05-23 15:04 - 2014-05-23 15:04 - 00029991 _____ () C:\Users\Eugen\Downloads\[kickass.to]f1.2013.formula.1.2013.pc.full.game.nosteam.torrent
2014-05-23 00:01 - 2014-05-22 23:18 - 00000000 ____D () C:\Users\Eugen\Downloads\Rocky-The.Complete.Saga[2007]DvDrip-aXXo
2014-05-22 23:18 - 2014-05-22 23:18 - 00169453 _____ () C:\Users\Eugen\Downloads\[kickass.to]rocky.the.complete.saga.2007.dvdrip.axxo.torrent
2014-05-20 19:18 - 2014-05-20 18:39 - 00000000 ____D () C:\Users\Eugen\Documents\FIFA World
2014-05-20 18:39 - 2014-05-20 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Sports FIFA World
2014-05-20 18:39 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-20 18:23 - 2013-09-26 10:13 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-20 18:22 - 2014-05-20 18:22 - 23516512 _____ (Electronic Arts, Inc.) C:\Users\Eugen\Downloads\EASportsFIFAWorld.exe
2014-05-20 04:44 - 2014-05-28 20:21 - 31387936 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 25256224 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 24025376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 18531568 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 17561544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 17480432 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 16003912 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 14434704 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 12688328 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-05-20 04:44 - 2014-05-28 20:21 - 11644928 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 11599072 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 09735256 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 09697640 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 03141976 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 03109248 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 02953672 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 02785568 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 02730208 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 02412376 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 01889112 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6433788.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 01541576 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6433788.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00952952 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00895776 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00867784 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00861128 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00837056 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00354016 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00305600 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00166568 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00146480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
2014-05-20 04:44 - 2014-05-28 20:21 - 00032544 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvpciflt.sys
2014-05-20 04:44 - 2014-05-28 20:21 - 00026069 _____ () C:\windows\system32\nvinfo.pb
2014-05-20 03:25 - 2014-05-28 20:23 - 06769096 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 03514144 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 02560968 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 01078616 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 00927520 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
2014-05-20 03:25 - 2014-05-28 20:23 - 00387528 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 00076064 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2014-05-20 03:25 - 2014-05-28 20:23 - 00062808 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2014-05-17 18:57 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\system32\inetsrv
2014-05-17 14:43 - 2014-03-20 13:41 - 00000000 ____D () C:\Users\Eugen\Documents\MATLAB
2014-05-15 21:47 - 2014-05-15 21:47 - 00001239 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-05-15 21:47 - 2013-01-29 19:12 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-05-15 21:47 - 2012-11-22 20:29 - 00000000 ____D () C:\Users\Eugen\AppData\Roaming\DVDVideoSoft
2014-05-15 21:47 - 2012-11-22 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-05-15 21:29 - 2014-05-15 21:29 - 00007527 _____ () C:\Users\Eugen\Desktop\VierGewinnt.rar
2014-05-15 21:23 - 2014-05-15 21:26 - 00025600 _____ () C:\Users\Eugen\Desktop\VierGewinnt.exe
2014-05-15 19:58 - 2014-05-15 19:58 - 00096607 _____ () C:\Users\Eugen\Desktop\EugenSchulz_288215_Modul5.rar
2014-05-15 19:58 - 2014-05-15 19:58 - 00000000 ____D () C:\Users\Eugen\Desktop\Modul5
2014-05-15 01:49 - 2014-05-28 20:23 - 03774821 _____ () C:\windows\system32\nvcoproc.bin
2014-05-13 09:29 - 2014-05-13 09:29 - 00001541 _____ () C:\Users\Eugen\Desktop\Visual Studio 2012.lnk
2014-05-12 07:26 - 2014-06-09 14:35 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-06-09 14:35 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2013-10-23 15:06 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys

Some content of TEMP:
====================
C:\Users\Eugen\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp8n5ctf.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-05-29 17:55

==================== End Of Log ============================
--- --- ---

schrauber 09.06.2014 16:58

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 05:51 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131