System errors:
=============
Error: (09/22/2013 05:52:05 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (09/22/2013 05:49:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Torch Crash Handler" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
Error: (09/22/2013 05:46:54 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Datamngr Coordinator" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
Error: (09/22/2013 05:31:14 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (09/22/2013 04:05:42 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (09/22/2013 04:05:42 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (09/22/2013 04:05:41 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (09/22/2013 04:05:41 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (09/22/2013 04:05:40 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (09/22/2013 03:55:08 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AMD FUEL Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Microsoft Office Sessions:
=========================
Error: (09/22/2013 05:53:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/22/2013 05:40:03 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/22/2013 05:35:24 PM) (Source: Application Error)(User: )
Description: TeamViewer.exe8.0.20935.052317b62KERNEL32.dll6.1.7601.1822951fb1115c0000005000113a8e0401ceb7a949b2f80dC:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exeC:\Windows\syswow64\KERNEL32.dll98fa43a4-239c-11e3-8a10-8c89a58a60a3
Error: (09/22/2013 05:34:56 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/22/2013 03:55:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/22/2013 03:30:50 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/22/2013 01:49:31 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/22/2013 01:37:57 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/22/2013 00:04:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/22/2013 11:45:54 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
==================== Memory info ===========================
Percentage of memory in use: 44%
Total physical RAM: 3576.13 MB
Available physical RAM: 1973.03 MB
Total Pagefile: 7150.45 MB
Available Pagefile: 4605.38 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:50 GB) (Free:4.99 GB) NTFS
Drive d: () (Fixed) (Total:880.41 GB) (Free:876.81 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=880 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1 GB) - (Type=12)
==================== End Of Log ============================
FRST Logfile:
FRST Logfile:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-09-2013
Ran by Lenka (administrator) on LENKA-PC on 22-09-2013 18:04:49
Running from C:\Users\Lenka\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
() C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
() C:\Users\Lenka\Downloads\ZipExtractorSetup.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Wajam) C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
() C:\Users\Lenka\AppData\Local\Temp\IS1590~1\290030_stp\chrome_logic.exe
() C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
() C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [NUSB3MON] - C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.)
HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6581488 2013-08-15] (SUPERAntiSpyware)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [Logitech Vid] - C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [6129496 2011-01-13] (Logitech Inc.)
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [3830224 2013-05-16] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LWS] - C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
AppInit_DLLs: [0 ] ()
AppInit_DLLs-x32: c:\progra~3\bitguard\261673~1.238\{c16c1~1\bitguard.dll [2700768 2013-09-10] ()
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
ProxyServer: localhost:21320
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Delta Search
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0C092E7A8367CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = Delta Search
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=1487&systemid=1&v=n9234-113&apn_uid=3960472592034218&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=1487&systemid=1&v=n9234-113&apn_uid=3960472592034218&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=903E742F68A89167&affID=119357&tt=160913_c1&tsp=5013
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=1487&systemid=1&v=n9234-113&apn_uid=3960472592034218&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Music Box Toolbar (Dist. by iMesh, Inc.) - {45177936-603b-4261-8d42-df6f7091d5d0} - C:\PROGRA~2\MUSICT~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll No File
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll (Delta-search.com)
BHO-x32: BonanzaDeals - {fe063412-bea4-4d76-8ed3-183be6220d17} - C:\Program Files (x86)\BonanzaDeals\BonanzaDealsIE.dll (BonanzaDeals)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Music Box Toolbar (Dist. by iMesh, Inc.) - {45177936-603b-4261-8d42-df6f7091d5d0} - C:\PROGRA~2\MUSICT~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll No File
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaTlbr.dll (Delta-search.com)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{E7B928E1-B641-43CF-BDA9-7C19C1F65082}: [NameServer]192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Lenka\AppData\Roaming\Mozilla\Firefox\Profiles\ctlm80qg.default-1379864134421
FF user.js: detected! => C:\Users\Lenka\AppData\Roaming\Mozilla\Firefox\Profiles\ctlm80qg.default-1379864134421\user.js
FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://www2.delta-search.com/?babsrc=HP_ss&mntrId=903E742F68A89167&affID=119357&tt=160913_c1&tsp=5013
FF Keyword.URL: hxxp://dts.search.ask.com/sr?src=ffb&gct=ds&appid=1487&systemid=1&v=n9234-113&apn_dtid=IME001&apn_ptnrs=AGE&apn_uid=3960472592034218&o=APN10653&q=
FF NewTab: hxxp://www2.delta-search.com/?babsrc=NT_ss&mntrId=903E742F68A89167&affID=119357&tt=160913_c1&tsp=5013
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @tools.bdupdater.com/BonanzaDealsLive Update;version=3 - C:\Program Files (x86)\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
FF Plugin-x32: @tools.bdupdater.com/BonanzaDealsLive Update;version=9 - C:\Program Files (x86)\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Lenka\AppData\Roaming\Mozilla\Firefox\Profiles\ctlm80qg.default-1379864134421\searchplugins\Ask.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Ask.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Delta Toolbar - C:\Users\Lenka\AppData\Roaming\Mozilla\Firefox\Profiles\ctlm80qg.default-1379864134421\Extensions\ffxtlbr@delta.com
FF Extension: BonanzaDeals - C:\Users\Lenka\AppData\Roaming\Mozilla\Firefox\Profiles\ctlm80qg.default-1379864134421\Extensions\{f9d03c26-0575-497e-821d-f7956d23e0ca}
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKCU\...\Firefox\Extensions: [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}] - C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi
FF Extension: No Name - C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Docs) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (BonanzaDeals) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj\3.5.0.0_0
CHR Extension: (Plus-HD-2.5) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.24.63_0
CHR Extension: (Gmail) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Lenka\AppData\Roaming\BabSolution\CR\Delta.crx
==================== Services (Whitelisted) =================
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [143088 2013-05-08] (SUPERAntiSpyware.com)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2011-10-13] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [137960 2013-08-30] (AVAST Software)
R2 BitGuard; C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [2845152 2013-09-10] ()
S2 bonanzadealslive; C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-09-22] (BonanzaDeals)
S3 bonanzadealslivem; C:\Program Files (x86)\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-09-22] (BonanzaDeals)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 WajamUpdater; C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [109064 2013-04-22] (Wajam)
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R1 aswFW; C:\Windows\system32\drivers\aswFW.sys [131232 2013-08-30] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12368 2013-07-17] (ALWIL Software)
R0 aswNdis2; C:\Windows\System32\drivers\aswNdis2.sys [270824 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-22 18:04 - 2013-09-22 18:04 - 01956670 _____ (Farbar) C:\Users\Lenka\Downloads\FRST64.exe
2013-09-22 18:04 - 2013-09-22 18:04 - 00000000 ____D C:\FRST
2013-09-22 18:03 - 2013-09-22 18:03 - 01089757 _____ (Farbar) C:\Users\Lenka\Downloads\FRST.exe
2013-09-22 17:59 - 2013-09-22 17:59 - 00003418 _____ C:\Windows\System32\Tasks\BitGuard
2013-09-22 17:59 - 2013-09-22 17:59 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-09-22 17:59 - 2013-09-22 17:59 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\0D0S1L2Z1P1B
2013-09-22 17:59 - 2013-09-22 17:59 - 00000000 ____D C:\Program Files (x86)\Delta
2013-09-22 17:58 - 2013-09-22 18:03 - 00000924 _____ C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job
2013-09-22 17:58 - 2013-09-22 18:03 - 00000920 _____ C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job
2013-09-22 17:58 - 2013-09-22 17:59 - 00003388 _____ C:\Windows\System32\Tasks\EPUpdater
2013-09-22 17:58 - 2013-09-22 17:58 - 00003920 _____ C:\Windows\System32\Tasks\BonanzaDealsLiveUpdateTaskMachineUA
2013-09-22 17:58 - 2013-09-22 17:58 - 00003668 _____ C:\Windows\System32\Tasks\BonanzaDealsLiveUpdateTaskMachineCore
2013-09-22 17:58 - 2013-09-22 17:58 - 00003386 _____ C:\Windows\System32\Tasks\BonanzaDealsUpdate
2013-09-22 17:58 - 2013-09-22 17:58 - 00001882 _____ C:\Users\Lenka\Desktop\Search.lnk
2013-09-22 17:58 - 2013-09-22 17:58 - 00001110 _____ C:\Users\Public\Desktop\Open It!.lnk
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Babylon
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\BabSolution
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\ProgramData\BitGuard
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\ProgramData\Babylon
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Program Files (x86)\OpenIt
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Program Files (x86)\BonanzaDealsLive
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Program Files (x86)\BonanzaDeals
2013-09-22 17:57 - 2013-09-22 17:57 - 00749248 _____ C:\Users\Lenka\Downloads\ZipExtractorSetup.exe
2013-09-22 17:49 - 2013-09-22 17:49 - 00000000 ____D C:\Users\Lenka\Documents\My Received Files
2013-09-22 17:49 - 2013-09-22 17:49 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\TFP
2013-09-22 17:49 - 2013-09-22 17:49 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\MusicNet
2013-09-22 17:49 - 2012-05-11 15:47 - 00152848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.OCX
2013-09-22 17:49 - 2012-05-11 15:47 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCMCFR.DLL
2013-09-22 17:49 - 2012-05-11 15:47 - 00119568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6FR.DLL
2013-09-22 17:49 - 2012-05-11 15:47 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6STKIT.DLL
2013-09-22 17:49 - 2012-05-11 15:47 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CMDLGFR.DLL
2013-09-22 17:48 - 2013-09-22 17:54 - 00000000 ____D C:\Users\Lenka\AppData\Local\Torch
2013-09-22 17:44 - 2013-09-22 17:44 - 01333552 _____ (iMesh Inc) C:\Users\Lenka\Downloads\iMeshSetup-r1487-w-bf.exe
2013-09-22 17:35 - 2013-09-22 17:35 - 00000000 ____D C:\Users\Lenka\Desktop\Alte Firefox-Daten
2013-09-22 16:27 - 2013-09-22 16:28 - 13832581 _____ C:\Users\Lenka\Downloads\Apache_OpenOffice_4.0.0_Win_x86_install_de.exe.part
2013-09-22 16:27 - 2013-09-22 16:28 - 00000420 _____ C:\Users\Lenka\Downloads\Apache_OpenOffice_4.0.0_Win_x86_install_de.exe
2013-09-22 16:26 - 2013-09-22 16:26 - 00000571 _____ C:\Users\Lenka\Desktop\BackgammonMasters.lnk
2013-09-22 16:25 - 2013-09-22 16:25 - 03030488 _____ ( ) C:\Users\Lenka\Downloads\GermanBackgammonMasters(1).exe
2013-09-22 12:18 - 2013-09-22 17:58 - 00000000 ____D C:\ProgramData\DSearchLink
2013-09-22 12:18 - 2013-09-22 12:18 - 00000000 ____D C:\Users\Lenka\AppData\Local\BonanzaDealsLive
2013-09-22 12:18 - 2013-09-22 12:18 - 00000000 ____D C:\ProgramData\BonanzaDealsLive
2013-09-22 11:44 - 2013-09-22 17:53 - 00017484 _____ C:\Windows\PFRO.log
2013-09-22 11:44 - 2013-09-22 17:53 - 00000616 _____ C:\Windows\setupact.log
2013-09-22 11:44 - 2013-09-22 11:44 - 00000000 _____ C:\Windows\setuperr.log
2013-09-22 11:14 - 2013-09-22 14:27 - 00001685 _____ C:\Windows\wininit.ini
2013-09-22 09:13 - 2013-09-22 09:13 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Malwarebytes
2013-09-22 09:12 - 2013-09-22 09:12 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Lenka\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-22 09:12 - 2013-09-22 09:12 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-22 07:41 - 2013-09-22 07:41 - 00000000 _____ C:\autoexec.bat
2013-09-22 07:38 - 2013-09-22 07:38 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-09-22 07:37 - 2013-09-22 08:20 - 00000000 ____D C:\Windows\037F8C0EE8E1408FABB4FC4ABF947E1B.TMP
2013-09-22 07:29 - 2013-09-22 12:02 - 00000000 ____D C:\AdwCleaner
2013-09-22 07:29 - 2013-09-22 07:29 - 01039554 _____ C:\Users\Lenka\Downloads\adwcleaner004.exe
2013-09-22 01:37 - 2013-09-22 17:57 - 00177742 _____ C:\Windows\WindowsUpdate.log
2013-09-22 00:29 - 2013-09-22 00:49 - 00000000 ____D C:\Users\Lenka\Downloads\backups
2013-09-22 00:27 - 2013-09-22 09:02 - 00008683 _____ C:\Users\Lenka\Downloads\hijackthis.log
2013-09-22 00:24 - 2013-09-22 00:24 - 00388608 _____ (Trend Micro Inc.) C:\Users\Lenka\Downloads\HijackThis.exe
2013-09-22 00:18 - 2013-09-22 00:18 - 00614816 _____ C:\Users\Lenka\Downloads\HijackThis - CHIP-Downloader(1).exe
2013-09-21 17:11 - 2013-09-21 17:11 - 00000000 ____D C:\Users\Lenka\AppData\Local\VisualBeeClient
2013-09-21 17:11 - 2013-09-21 17:11 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-09-21 17:09 - 2013-09-21 17:09 - 00000000 ____D C:\Users\Lenka\AppData\Local\avgchrome
2013-09-21 17:08 - 2013-09-21 17:08 - 00001224 _____ C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-09-21 17:08 - 2013-09-21 17:08 - 00000000 ____D C:\Users\Lenka\AppData\Local\emaze
2013-09-21 08:39 - 2013-09-21 08:39 - 22537616 _____ (Mozilla) C:\Users\Lenka\Downloads\Firefox_Setup_de24.0.exe
2013-09-19 19:38 - 2013-09-19 19:38 - 22924152 _____ (Mozilla) C:\Users\Lenka\Downloads\GMX_Firefox_Setup.exe
2013-09-19 19:06 - 2013-09-19 19:06 - 03030488 _____ ( ) C:\Users\Lenka\Downloads\GermanBackgammonMasters.exe
2013-09-18 18:37 - 2013-08-30 09:48 - 00270824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdis2.sys
2013-09-18 18:37 - 2013-08-30 09:48 - 00131232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFW.sys
2013-09-18 18:37 - 2013-08-30 09:48 - 00022600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2013-09-18 18:37 - 2013-07-17 11:17 - 00012368 _____ (ALWIL Software) C:\Windows\system32\Drivers\aswNdis.sys
2013-09-18 18:36 - 2013-09-18 18:36 - 00001922 _____ C:\Users\Public\Desktop\avast! Internet Security.lnk
2013-09-17 21:08 - 2013-09-17 21:08 - 00614816 _____ C:\Users\Lenka\Downloads\HijackThis - CHIP-Downloader.exe
2013-09-11 22:24 - 2013-08-10 07:22 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 22:24 - 2013-08-10 07:21 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 22:24 - 2013-08-10 07:20 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 22:24 - 2013-08-10 07:20 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 22:24 - 2013-08-10 07:20 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 22:24 - 2013-08-10 07:20 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 22:24 - 2013-08-10 07:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 22:24 - 2013-08-10 07:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 22:24 - 2013-08-10 07:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 22:24 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-11 22:24 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-11 22:24 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-11 22:24 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-11 22:24 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-11 22:24 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-11 22:24 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-11 22:24 - 2013-08-10 05:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 22:24 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-11 22:24 - 2013-08-10 04:27 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 22:24 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-11 22:23 - 2013-08-10 07:22 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 22:23 - 2013-08-10 07:22 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 22:23 - 2013-08-10 07:21 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 22:23 - 2013-08-10 07:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 22:23 - 2013-08-10 07:20 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 22:23 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-11 22:23 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-11 22:23 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-11 22:23 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-11 22:23 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-11 22:23 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-11 21:31 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 21:31 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-11 21:31 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-11 21:31 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-11 21:30 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 21:30 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-11 21:30 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-11 21:30 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-11 21:30 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-11 21:30 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 21:30 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-11 21:30 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 21:30 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-11 21:30 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-11 21:30 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-11 21:30 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 21:30 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-11 21:30 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-11 21:30 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-11 21:30 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-11 21:30 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-11 21:30 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 21:30 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-11 21:30 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 21:30 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-11 21:30 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-11 21:30 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-11 18:06 - 2013-09-22 17:54 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-11 18:06 - 2013-09-11 22:06 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-11 18:06 - 2013-09-11 22:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-11 18:06 - 2013-09-11 22:06 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-04 19:01 - 2013-09-04 19:01 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\OpenOffice
2013-09-04 18:58 - 2013-09-04 18:58 - 00000000 ____D C:\Users\Lenka\Desktop\OpenOffice 4.0.0 (de) Installation Files
2013-09-04 18:28 - 2013-09-04 18:28 - 00001051 _____ C:\Users\Lenka\Dokumente.lnk
2013-08-27 10:18 - 2013-08-27 10:18 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\TeamViewer
2013-08-24 14:32 - 2013-08-24 14:32 - 00000000 ____D C:\Users\Lenka\Neuer Ordner
==================== One Month Modified Files and Folders =======
2013-09-22 18:04 - 2013-09-22 18:04 - 01956670 _____ (Farbar) C:\Users\Lenka\Downloads\FRST64.exe
2013-09-22 18:04 - 2013-09-22 18:04 - 00000000 ____D C:\FRST
2013-09-22 18:03 - 2013-09-22 18:03 - 01089757 _____ (Farbar) C:\Users\Lenka\Downloads\FRST.exe
2013-09-22 18:03 - 2013-09-22 17:58 - 00000924 _____ C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job
2013-09-22 18:03 - 2013-09-22 17:58 - 00000920 _____ C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job
2013-09-22 18:00 - 2009-07-14 06:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-22 18:00 - 2009-07-14 06:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-22 17:59 - 2013-09-22 17:59 - 00003418 _____ C:\Windows\System32\Tasks\BitGuard
2013-09-22 17:59 - 2013-09-22 17:59 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-09-22 17:59 - 2013-09-22 17:59 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\0D0S1L2Z1P1B
2013-09-22 17:59 - 2013-09-22 17:59 - 00000000 ____D C:\Program Files (x86)\Delta
2013-09-22 17:59 - 2013-09-22 17:58 - 00003388 _____ C:\Windows\System32\Tasks\EPUpdater
2013-09-22 17:58 - 2013-09-22 17:58 - 00003920 _____ C:\Windows\System32\Tasks\BonanzaDealsLiveUpdateTaskMachineUA
2013-09-22 17:58 - 2013-09-22 17:58 - 00003668 _____ C:\Windows\System32\Tasks\BonanzaDealsLiveUpdateTaskMachineCore
2013-09-22 17:58 - 2013-09-22 17:58 - 00003386 _____ C:\Windows\System32\Tasks\BonanzaDealsUpdate
2013-09-22 17:58 - 2013-09-22 17:58 - 00001882 _____ C:\Users\Lenka\Desktop\Search.lnk
2013-09-22 17:58 - 2013-09-22 17:58 - 00001110 _____ C:\Users\Public\Desktop\Open It!.lnk
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Babylon
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\BabSolution
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\ProgramData\BitGuard
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\ProgramData\Babylon
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Program Files (x86)\OpenIt
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Program Files (x86)\BonanzaDealsLive
2013-09-22 17:58 - 2013-09-22 17:58 - 00000000 ____D C:\Program Files (x86)\BonanzaDeals
2013-09-22 17:58 - 2013-09-22 12:18 - 00000000 ____D C:\ProgramData\DSearchLink
2013-09-22 17:57 - 2013-09-22 17:57 - 00749248 _____ C:\Users\Lenka\Downloads\ZipExtractorSetup.exe
2013-09-22 17:57 - 2013-09-22 01:37 - 00177742 _____ C:\Windows\WindowsUpdate.log
2013-09-22 17:54 - 2013-09-22 17:48 - 00000000 ____D C:\Users\Lenka\AppData\Local\Torch
2013-09-22 17:54 - 2013-09-11 18:06 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-22 17:54 - 2013-06-12 18:46 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Skype
2013-09-22 17:53 - 2013-09-22 11:44 - 00017484 _____ C:\Windows\PFRO.log
2013-09-22 17:53 - 2013-09-22 11:44 - 00000616 _____ C:\Windows\setupact.log
2013-09-22 17:53 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-22 17:49 - 2013-09-22 17:49 - 00000000 ____D C:\Users\Lenka\Documents\My Received Files
2013-09-22 17:49 - 2013-09-22 17:49 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\TFP
2013-09-22 17:49 - 2013-09-22 17:49 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\MusicNet
2013-09-22 17:44 - 2013-09-22 17:44 - 01333552 _____ (iMesh Inc) C:\Users\Lenka\Downloads\iMeshSetup-r1487-w-bf.exe
2013-09-22 17:35 - 2013-09-22 17:35 - 00000000 ____D C:\Users\Lenka\Desktop\Alte Firefox-Daten
2013-09-22 17:34 - 2013-06-12 19:30 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-09-22 16:28 - 2013-09-22 16:27 - 13832581 _____ C:\Users\Lenka\Downloads\Apache_OpenOffice_4.0.0_Win_x86_install_de.exe.part
2013-09-22 16:28 - 2013-09-22 16:27 - 00000420 _____ C:\Users\Lenka\Downloads\Apache_OpenOffice_4.0.0_Win_x86_install_de.exe
2013-09-22 16:26 - 2013-09-22 16:26 - 00000571 _____ C:\Users\Lenka\Desktop\BackgammonMasters.lnk
2013-09-22 16:25 - 2013-09-22 16:25 - 03030488 _____ ( ) C:\Users\Lenka\Downloads\GermanBackgammonMasters(1).exe
2013-09-22 14:27 - 2013-09-22 11:14 - 00001685 _____ C:\Windows\wininit.ini
2013-09-22 12:18 - 2013-09-22 12:18 - 00000000 ____D C:\Users\Lenka\AppData\Local\BonanzaDealsLive
2013-09-22 12:18 - 2013-09-22 12:18 - 00000000 ____D C:\ProgramData\BonanzaDealsLive
2013-09-22 12:02 - 2013-09-22 07:29 - 00000000 ____D C:\AdwCleaner
2013-09-22 11:44 - 2013-09-22 11:44 - 00000000 _____ C:\Windows\setuperr.log
2013-09-22 09:13 - 2013-09-22 09:13 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\Malwarebytes
2013-09-22 09:12 - 2013-09-22 09:12 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Lenka\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-22 09:12 - 2013-09-22 09:12 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-22 09:02 - 2013-09-22 00:27 - 00008683 _____ C:\Users\Lenka\Downloads\hijackthis.log
2013-09-22 08:57 - 2011-05-16 16:04 - 00653928 _____ C:\Windows\system32\perfh007.dat
2013-09-22 08:57 - 2011-05-16 16:04 - 00129800 _____ C:\Windows\system32\perfc007.dat
2013-09-22 08:57 - 2009-07-14 07:13 - 01498506 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-22 08:20 - 2013-09-22 07:37 - 00000000 ____D C:\Windows\037F8C0EE8E1408FABB4FC4ABF947E1B.TMP
2013-09-22 07:41 - 2013-09-22 07:41 - 00000000 _____ C:\autoexec.bat
2013-09-22 07:38 - 2013-09-22 07:38 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-09-22 07:29 - 2013-09-22 07:29 - 01039554 _____ C:\Users\Lenka\Downloads\adwcleaner004.exe
2013-09-22 00:49 - 2013-09-22 00:29 - 00000000 ____D C:\Users\Lenka\Downloads\backups
2013-09-22 00:24 - 2013-09-22 00:24 - 00388608 _____ (Trend Micro Inc.) C:\Users\Lenka\Downloads\HijackThis.exe
2013-09-22 00:24 - 2013-06-09 21:02 - 00000000 ____D C:\Users\Lenka\AppData\Local\VirtualStore
2013-09-22 00:18 - 2013-09-22 00:18 - 00614816 _____ C:\Users\Lenka\Downloads\HijackThis - CHIP-Downloader(1).exe
2013-09-21 18:56 - 2013-06-14 15:45 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-09-21 17:11 - 2013-09-21 17:11 - 00000000 ____D C:\Users\Lenka\AppData\Local\VisualBeeClient
2013-09-21 17:11 - 2013-09-21 17:11 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-09-21 17:09 - 2013-09-21 17:09 - 00000000 ____D C:\Users\Lenka\AppData\Local\avgchrome
2013-09-21 17:08 - 2013-09-21 17:08 - 00001224 _____ C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-09-21 17:08 - 2013-09-21 17:08 - 00000000 ____D C:\Users\Lenka\AppData\Local\emaze
2013-09-21 17:07 - 2013-08-17 13:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-21 11:51 - 2013-06-12 18:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-21 08:40 - 2013-06-12 18:40 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-09-21 08:39 - 2013-09-21 08:39 - 22537616 _____ (Mozilla) C:\Users\Lenka\Downloads\Firefox_Setup_de24.0.exe
2013-09-20 18:43 - 2013-06-12 18:40 - 00000000 ____D C:\Users\Lenka\AppData\Local\Mozilla
2013-09-19 19:38 - 2013-09-19 19:38 - 22924152 _____ (Mozilla) C:\Users\Lenka\Downloads\GMX_Firefox_Setup.exe
2013-09-19 19:06 - 2013-09-19 19:06 - 03030488 _____ ( ) C:\Users\Lenka\Downloads\GermanBackgammonMasters.exe
2013-09-18 18:37 - 2013-06-12 19:30 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-09-18 18:36 - 2013-09-18 18:36 - 00001922 _____ C:\Users\Public\Desktop\avast! Internet Security.lnk
2013-09-17 21:08 - 2013-09-17 21:08 - 00614816 _____ C:\Users\Lenka\Downloads\HijackThis - CHIP-Downloader.exe
2013-09-16 23:07 - 2013-06-10 05:45 - 00000000 ____D C:\Windows\Panther
2013-09-12 20:22 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-12 19:10 - 2013-06-15 14:07 - 00001090 _____ C:\Users\Public\Desktop\TeamViewer 8.lnk
2013-09-12 17:54 - 2013-06-09 21:02 - 00000000 ___RD C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-12 17:54 - 2013-06-09 21:02 - 00000000 ___RD C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-12 17:53 - 2009-07-14 06:45 - 00295824 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-11 22:23 - 2013-08-14 11:39 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 22:22 - 2013-06-14 17:49 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-11 22:07 - 2013-06-12 21:34 - 00000000 ____D C:\Users\Lenka\AppData\Local\Adobe
2013-09-11 22:06 - 2013-09-11 18:06 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-11 22:06 - 2013-09-11 18:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-11 22:06 - 2013-09-11 18:06 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-04 19:01 - 2013-09-04 19:01 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\OpenOffice
2013-09-04 19:00 - 2013-06-11 20:52 - 00064024 _____ C:\Users\Lenka\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-04 18:58 - 2013-09-04 18:58 - 00000000 ____D C:\Users\Lenka\Desktop\OpenOffice 4.0.0 (de) Installation Files
2013-09-04 18:28 - 2013-09-04 18:28 - 00001051 _____ C:\Users\Lenka\Dokumente.lnk
2013-09-04 18:28 - 2013-06-09 21:02 - 00000000 ____D C:\Users\Lenka
2013-08-30 09:48 - 2013-09-18 18:37 - 00270824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdis2.sys
2013-08-30 09:48 - 2013-09-18 18:37 - 00131232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFW.sys
2013-08-30 09:48 - 2013-09-18 18:37 - 00022600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2013-08-30 09:48 - 2013-06-12 19:30 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-08-30 09:48 - 2013-06-12 19:30 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-08-30 09:48 - 2013-06-12 19:30 - 00204880 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-30 09:48 - 2013-06-12 19:30 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-08-30 09:48 - 2013-06-12 19:30 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-08-30 09:48 - 2013-06-12 19:30 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-08-30 09:48 - 2013-06-12 19:30 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-08-30 09:48 - 2013-06-12 19:30 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-08-30 09:47 - 2013-06-12 19:30 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-08-30 09:47 - 2013-06-12 19:29 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-08-27 10:18 - 2013-08-27 10:18 - 00000000 ____D C:\Users\Lenka\AppData\Roaming\TeamViewer
2013-08-24 14:32 - 2013-08-24 14:32 - 00000000 ____D C:\Users\Lenka\Neuer Ordner
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-21 13:50
==================== End Of Log ============================
--- --- ---
--- --- ---
--- --- ---
Hallo Leo! Hier die Dateien und vielen Dank für die Hilfe!
FRST 32-Bit | FRST 64-Bit