| dilledap | 18.02.2014 17:03 |
bitte sehr:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-02-2014
Ran by Admin (administrator) on ZEUS on 18-02-2014 16:50:17
Running from C:\Users\Admin\Desktop
Windows 8.1 Pro (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
() C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe
(Microsoft Corporation) C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.16470_none_fa2491fd9b3cfcb2\TiWorker.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Acronis Scheduler2 Service] - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [362032 2009-10-31] (Acronis)
HKLM-x32\...\Run: [TrueImageMonitor.exe] - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5140952 2009-10-31] (Acronis)
HKLM-x32\...\Run: [HOSTS Anti-Adware_PUPs] - C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe [302961 2014-02-14] ()
HKU\S-1-5-21-919597516-2788177221-441991105-1001\...\MountPoints2: {bd58c7ff-6aa6-11e3-be65-806e6f6e6963} - "G:\SETUP.EXE"
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x4101A40BB9FECE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Perfect PDF 6 - {1182C30C-238A-40AA-B619-619E2F30E327} - C:\Program Files (x86)\soft Xpansion\Perfect PDF 6\iexp64.dll (soft Xpansion)
Toolbar: HKLM-x32 - Perfect PDF 6 - {1182C30C-238A-40AA-B619-619E2F30E327} - C:\Program Files (x86)\soft Xpansion\Perfect PDF 6\iexp32.dll (soft Xpansion)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default
FF Homepage: hxxp://192.168.2.1/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_44.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Lightning Speed Dial - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\lightningnewtab@gmail.com [2014-02-18]
FF Extension: WOT - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-12-22]
FF Extension: Extension_Protected - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\jid0-O6MIff3eO5dIGf5Tcv8RsJDKxrs@jetpack.xpi [2014-02-11]
FF Extension: NoScript - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-22]
FF Extension: DownThemAll! - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-12-22]
==================== Services (Whitelisted) =================
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6254152 2013-10-20] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [164056 2013-09-24] (COMODO)
S4 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe [285795 2014-02-14] ()
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 SXDS10; C:\Program Files (x86)\Common Files\soft Xpansion\sxds10.exe [234096 2014-01-16] (soft Xpansion)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R3 AVMCOWAN; C:\Windows\system32\DRIVERS\AVMCOWAN.sys [82432 2012-07-19] (AVM GmbH)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2013-09-24] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [715824 2013-11-14] (COMODO)
R1 cmdhlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [38072 2013-09-24] (COMODO)
R3 fpcibase; C:\Windows\system32\DRIVERS\fpcibase.sys [649344 2012-07-19] (AVM Berlin)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [118400 2013-09-24] (COMODO)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-22] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-11-14] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-22] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
R0 tdrpman258; C:\Windows\System32\DRIVERS\tdrpm258.sys [1477728 2013-12-22] (Acronis)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-18 16:50 - 2014-02-18 16:50 - 00010565 _____ () C:\Users\Admin\Desktop\FRST.txt
2014-02-18 16:50 - 2014-02-18 16:50 - 00000000 ____D () C:\FRST
2014-02-18 16:49 - 2014-02-16 20:45 - 02152448 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2014-02-18 16:42 - 2012-08-04 03:38 - 00448512 _____ (OldTimer Tools) C:\Users\Sandboxie\Desktop\TFC.exe
2014-02-18 16:31 - 2014-02-18 16:31 - 00000510 _____ () C:\WINDOWS\PFRO.log
2014-02-18 16:05 - 2014-02-17 18:13 - 01241888 _____ () C:\Users\Admin\Desktop\adwcleaner_3.0.1.9.exe
2014-02-18 15:40 - 2014-02-18 15:40 - 00032021 _____ () C:\Users\Sandboxie\Desktop\Addition.txt
2014-02-18 15:39 - 2014-02-18 15:40 - 00066849 _____ () C:\Users\Sandboxie\Desktop\FRST.txt
2014-02-18 15:35 - 2014-02-16 20:45 - 02152448 _____ (Farbar) C:\Users\Sandboxie\Desktop\FRST64.exe
2014-02-18 14:37 - 2014-02-18 14:40 - 00000058 _____ () C:\Users\Sandboxie\Desktop\Flash.bat
2014-02-18 00:19 - 2014-02-18 00:19 - 00000000 ____D () C:\ProgramData\Playrix Entertainment
2014-02-18 00:18 - 2014-02-18 00:18 - 00002301 _____ () C:\Users\maexl_000\Desktop\Fishdom Spooky Splash.lnk
2014-02-18 00:18 - 2014-02-18 00:18 - 00002163 _____ () C:\Users\maexl_000\Desktop\Play Online Games.lnk
2014-02-18 00:18 - 2014-02-18 00:18 - 00002152 _____ () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\MyPlayCity Games.lnk
2014-02-18 00:18 - 2014-02-18 00:18 - 00002128 _____ () C:\Users\maexl_000\Desktop\MyPlayCity Games.lnk
2014-02-18 00:18 - 2014-02-18 00:18 - 00000000 ____D () C:\Program Files (x86)\MyPlayCity.com
2014-02-18 00:16 - 2014-02-18 00:16 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Realore_Whiterra Roads Of Rome 3
2014-02-17 23:36 - 2014-02-18 00:00 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\AIMP3
2014-02-17 22:26 - 2014-02-17 22:26 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Apps\2.0
2014-02-17 22:25 - 2014-02-17 22:25 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\IrfanView
2014-02-17 22:20 - 2014-02-18 16:49 - 00285350 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-17 16:50 - 2014-02-17 16:50 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 14:46 - 2014-02-17 14:46 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Macromedia
2014-02-17 14:46 - 2014-02-17 14:46 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Macromedia
2014-02-17 14:44 - 2014-02-17 22:48 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1007
2014-02-17 14:40 - 2014-02-17 14:40 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Mozilla
2014-02-17 14:39 - 2014-02-17 14:40 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Mozilla
2014-02-17 14:39 - 2014-02-17 14:39 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Thunderbird
2014-02-17 14:39 - 2014-02-17 14:39 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Thunderbird
2014-02-17 14:36 - 2014-02-17 23:17 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\CrashDumps
2014-02-17 14:35 - 2014-02-18 14:34 - 00000000 __RDO () C:\Users\maexl_000\SkyDrive
2014-02-17 14:34 - 2014-02-17 14:35 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\PackageStaging
2014-02-17 14:33 - 2014-02-17 23:53 - 00000000 ___RD () C:\Users\maexl_000\AppData\Local\Packages
2014-02-17 14:33 - 2014-02-17 14:50 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\VirtualStore
2014-02-17 14:33 - 2014-02-17 14:35 - 00000000 ____D () C:\Users\maexl_000
2014-02-17 14:33 - 2014-02-17 14:33 - 00001459 _____ () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-17 14:33 - 2014-02-17 14:33 - 00000020 ___SH () C:\Users\maexl_000\ntuser.ini
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Vorlagen
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Startmenü
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Netzwerkumgebung
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Lokale Einstellungen
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Eigene Dateien
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Druckumgebung
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Documents\Eigene Musik
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Documents\Eigene Bilder
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\AppData\Local\Verlauf
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\AppData\Local\Anwendungsdaten
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Anwendungsdaten
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 ___RD () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 ___RD () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Adobe
2014-02-17 14:33 - 2013-12-23 11:21 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Microsoft Help
2014-02-17 14:33 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-02-17 14:33 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-17 14:33 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-02-17 14:33 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-16 22:10 - 2014-02-16 22:10 - 00003031 _____ () C:\Users\Privat.Zeus\Desktop\Word 2013.lnk
2014-02-14 23:44 - 2014-02-14 23:59 - 00000000 ____D () C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs
2014-02-14 23:15 - 2014-02-14 23:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-14 10:22 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-14 10:22 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-14 10:22 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-14 10:22 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-14 10:22 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-14 10:22 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-14 10:22 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-14 10:22 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-14 10:22 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-14 10:22 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-14 10:22 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-14 10:22 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-14 10:22 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-14 10:22 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-14 10:22 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-14 10:22 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-14 10:22 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-14 10:22 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-14 10:22 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-14 10:22 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-14 10:22 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-14 10:22 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-14 10:22 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-14 10:22 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-14 10:22 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-14 10:22 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-14 10:22 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-14 10:22 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-14 10:22 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-14 10:22 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-14 10:22 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-14 10:22 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-14 10:22 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-14 10:22 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-14 10:22 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-14 10:22 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-14 10:22 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-14 10:22 - 2014-01-07 06:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-14 10:22 - 2014-01-07 05:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-14 10:22 - 2013-12-09 01:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-14 10:22 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-14 10:22 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-14 10:22 - 2013-12-09 00:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-14 10:22 - 2013-11-21 07:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-14 10:22 - 2013-11-21 06:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-14 10:20 - 2014-01-04 21:50 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-14 10:20 - 2014-01-04 20:22 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-14 10:20 - 2014-01-04 15:30 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-14 10:20 - 2014-01-04 15:23 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-14 10:20 - 2014-01-04 14:42 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-14 10:20 - 2014-01-04 14:40 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-14 10:20 - 2014-01-04 14:36 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-14 10:20 - 2014-01-04 14:28 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-14 10:20 - 2013-12-21 03:10 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-14 10:20 - 2013-12-21 03:10 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-14 10:19 - 2014-01-09 09:25 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-14 10:19 - 2014-01-09 08:59 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-14 10:19 - 2014-01-09 08:59 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-14 10:19 - 2014-01-09 08:49 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-14 10:19 - 2014-01-09 08:44 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-14 10:19 - 2014-01-09 08:43 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-14 10:19 - 2014-01-09 08:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-14 10:19 - 2014-01-09 08:28 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-14 10:19 - 2014-01-09 08:28 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-14 10:19 - 2014-01-09 08:18 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-14 10:19 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-14 10:19 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-14 10:19 - 2013-12-20 11:10 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-14 10:19 - 2013-12-20 07:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-14 10:19 - 2013-12-09 03:57 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-14 10:19 - 2013-12-09 02:51 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-12 23:28 - 2014-02-12 23:28 - 00000000 ____D () C:\Users\Admin\AppData\Local\GHISLER
2014-02-12 19:46 - 2014-02-12 20:10 - 47680205 _____ () C:\Users\Sandboxie\Downloads\LaNanov11.1.rar
2014-02-12 19:12 - 2014-02-17 15:58 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-12 18:33 - 2014-02-12 18:33 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-02-12 18:33 - 2014-02-12 18:33 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-02-12 18:32 - 2014-02-12 18:33 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-02-12 18:32 - 2014-02-12 18:32 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-02-12 18:31 - 2014-02-12 18:31 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-02-12 18:31 - 2014-02-12 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-02-12 18:31 - 2014-02-12 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-02-12 18:30 - 2014-02-12 18:30 - 00000000 __RHD () C:\MSOCache
2014-02-12 17:54 - 2014-02-18 15:51 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-12 17:54 - 2014-02-12 17:54 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-02-11 18:23 - 2014-02-11 18:23 - 00009728 ___SH () C:\Users\Sandboxie\Desktop\Thumbs.db
2014-02-11 00:55 - 2014-02-11 00:54 - 00825832 _____ (AnyProtect.com) C:\Users\Admin\AppData\Local\AnyProtectScanner.exe
2014-02-10 23:44 - 2014-02-10 23:44 - 00001209 _____ () C:\Users\Sandboxie\Downloads\Akt Of 2013.txt
2014-02-10 23:25 - 2014-02-10 23:25 - 00000000 ____D () C:\Program Files\Java
2014-02-10 12:17 - 2014-02-10 12:17 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Microsoft Help
2014-02-10 11:33 - 2014-02-12 18:32 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-10 00:45 - 2014-02-10 00:45 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-02-09 18:28 - 2014-02-09 18:55 - 00000000 ____D () C:\Users\Privat.Zeus\Downloads\kms host license pack
2014-02-09 18:28 - 2014-02-09 18:28 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-02-09 00:48 - 2014-02-09 00:48 - 00000000 ____D () C:\ProgramData\Office Genuine Advantage
2014-02-09 00:46 - 2014-02-09 00:46 - 02031992 _____ (Microsoft Corporation) C:\Users\Sandboxie\Downloads\MGADiag.exe
2014-02-09 00:21 - 2014-02-11 00:58 - 00000000 ____D () C:\Program Files\Registrar Registry Manager
2014-02-09 00:16 - 2013-12-09 01:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-02-09 00:16 - 2013-12-09 01:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-02-09 00:16 - 2013-11-27 16:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-02-09 00:16 - 2013-11-27 16:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-02-09 00:16 - 2013-11-27 15:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-02-09 00:16 - 2013-11-27 14:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-02-09 00:16 - 2013-11-27 13:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-02-09 00:16 - 2013-11-27 11:54 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-09 00:16 - 2013-11-27 11:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-02-09 00:16 - 2013-11-27 11:08 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-09 00:16 - 2013-11-27 10:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-02-09 00:16 - 2013-11-27 10:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-02-09 00:16 - 2013-11-27 10:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-02-09 00:16 - 2013-11-27 10:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-02-09 00:16 - 2013-11-27 09:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-02-09 00:16 - 2013-11-27 09:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-02-09 00:16 - 2013-11-27 05:01 - 00385614 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-02-09 00:16 - 2013-11-26 14:22 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-02-09 00:16 - 2013-11-26 14:20 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-02-09 00:16 - 2013-11-26 14:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-02-09 00:16 - 2013-11-26 14:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-02-09 00:16 - 2013-11-26 12:50 - 01371312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-02-09 00:16 - 2013-11-26 12:44 - 02142936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-02-09 00:16 - 2013-11-26 12:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-02-09 00:16 - 2013-11-26 11:13 - 04191232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-09 00:16 - 2013-11-26 10:21 - 18577920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-09 00:16 - 2013-11-26 09:28 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-09 00:16 - 2013-11-25 02:45 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-02-09 00:16 - 2013-11-25 02:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-02-09 00:16 - 2013-11-25 00:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-02-09 00:16 - 2013-11-25 00:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-02-09 00:16 - 2013-11-23 13:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-02-09 00:16 - 2013-11-23 12:49 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-09 00:16 - 2013-11-23 09:19 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-09 00:16 - 2013-11-23 08:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-02-09 00:16 - 2013-11-23 08:13 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-02-09 00:16 - 2013-11-23 08:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-02-09 00:16 - 2013-11-23 05:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-02-09 00:16 - 2013-11-23 04:57 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-09 00:16 - 2013-11-23 04:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-09 00:16 - 2013-11-23 04:25 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-09 00:16 - 2013-11-23 04:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-09 00:16 - 2013-11-23 04:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-02-09 00:16 - 2013-11-23 04:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-02-09 00:16 - 2013-11-21 07:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-02-09 00:16 - 2013-11-21 07:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-02-09 00:16 - 2013-11-16 06:11 - 00764856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-02-09 00:16 - 2013-11-15 19:19 - 00669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-02-09 00:16 - 2013-11-15 15:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-02-09 00:16 - 2013-11-15 15:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-02-09 00:16 - 2013-11-15 15:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-02-09 00:16 - 2013-11-15 14:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-02-09 00:16 - 2013-11-05 21:12 - 02551128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-02-09 00:16 - 2013-10-31 01:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-02-09 00:16 - 2013-10-31 00:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-02-09 00:02 - 2014-02-10 12:00 - 00000000 __RDO () C:\Users\Sandboxie\SkyDrive
2014-02-07 17:39 - 2014-02-09 00:02 - 00000000 __RDO () C:\Users\Sandboxie\SkyDrive (4).old
2014-02-07 00:13 - 2014-02-07 17:39 - 00000000 __RDO () C:\Users\Sandboxie\SkyDrive (3).old
2014-02-06 22:26 - 2014-02-18 16:49 - 00000000 ____D () C:\Users\Admin\AppData\Local\CrashDumps
2014-02-06 18:07 - 2014-02-18 16:41 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\CrashDumps
2014-02-05 07:37 - 2014-02-05 08:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-05 07:28 - 2014-02-09 23:15 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\AIMP3
2014-02-03 23:20 - 2014-01-19 08:38 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-02-03 22:58 - 2014-02-03 22:58 - 00001567 _____ () C:\Users\Sandboxie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Herunterfahren.lnk
2014-02-03 17:50 - 2014-02-03 17:50 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\funkwerk
2014-02-03 17:09 - 2014-02-03 17:09 - 00000000 ____D () C:\Users\Admin\AppData\Local\funkwerk
2014-02-03 17:02 - 2014-02-09 00:53 - 00000000 ____D () C:\ProgramData\Informer Technologies, Inc
2014-02-03 16:56 - 2014-02-03 16:56 - 00000000 ____D () C:\Program Files (x86)\InstallShield Installation Information
2014-02-03 16:56 - 2014-02-03 16:56 - 00000000 ____D () C:\Program Files (x86)\funkwerk WIN-Tools
2014-02-03 16:50 - 2014-02-03 16:50 - 00000000 ____D () C:\Program Files\DIFX
2014-02-03 16:50 - 2014-02-03 16:50 - 00000000 ____D () C:\Program Files (x86)\T-Home
2014-02-01 14:09 - 2014-02-01 14:09 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\Foxit Software
2014-01-31 11:50 - 2014-02-03 16:49 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Foxit Software
2014-01-31 11:50 - 2014-02-02 23:23 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Foxit Software
2014-01-31 11:50 - 2014-01-31 11:50 - 00000000 ____D () C:\Users\Public\Foxit Software
2014-01-31 11:49 - 2014-01-31 11:49 - 00002075 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2014-01-31 11:49 - 2014-01-31 11:49 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2014-01-30 17:02 - 2014-02-18 16:33 - 00000000 ____D () C:\AdwCleaner
2014-01-30 16:34 - 2014-01-30 16:34 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\FRITZ!
2014-01-29 10:56 - 2014-01-29 10:56 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\IrfanView
2014-01-27 12:29 - 2014-01-27 12:29 - 00001970 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-01-27 12:29 - 2014-01-27 12:29 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\Canneverbe Limited
2014-01-27 12:29 - 2014-01-27 12:29 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Canneverbe Limited
2014-01-27 12:29 - 2014-01-27 12:29 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-01-27 12:29 - 2014-01-27 12:29 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-01-27 11:19 - 2014-01-27 11:19 - 00000000 ____D () C:\Program Files (x86)\Nero
2014-01-27 11:19 - 2011-07-13 13:59 - 00072240 _____ (Nero AG) C:\WINDOWS\system32\Drivers\NBVol.sys
2014-01-27 11:19 - 2011-07-13 13:59 - 00015920 _____ (Nero AG) C:\WINDOWS\system32\Drivers\NBVolUp.sys
2014-01-27 11:18 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2014-01-27 11:18 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2014-01-27 11:18 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2014-01-27 11:18 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2014-01-27 11:18 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2014-01-27 11:18 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2014-01-27 11:18 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2014-01-27 11:18 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2014-01-27 11:18 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2014-01-27 11:18 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2014-01-27 11:18 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2014-01-27 10:33 - 2014-01-27 10:33 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\FRITZ!
2014-01-27 09:15 - 2014-01-27 09:15 - 00000000 ____D () C:\Program Files (x86)\AVM_update
2014-01-27 09:05 - 2014-01-27 09:05 - 00000000 ____D () C:\Users\Privat.Zeus\Documents\FRITZ!data Server
2014-01-27 09:04 - 2014-01-27 09:47 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\FRITZ!
2014-01-27 09:04 - 2014-01-27 09:46 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Local\FRITZ!
2014-01-27 09:03 - 2014-01-27 09:03 - 00001012 _____ () C:\Users\Public\Desktop\FRITZ! ISDN und Internet.lnk
2014-01-27 09:03 - 2006-02-23 12:16 - 00047616 _____ (TODO: <Company name>) C:\WINDOWS\system32\AvmColorFax.dll
2014-01-27 09:03 - 2006-02-23 11:35 - 00020480 _____ () C:\WINDOWS\system32\FritzColorPort64.dll
2014-01-27 09:03 - 2006-02-22 10:53 - 00043520 _____ (TODO: <Company name>) C:\WINDOWS\system32\AvmFax.dll
2014-01-27 09:03 - 2006-02-22 10:51 - 00027136 _____ (AVM Berlin GmbH) C:\WINDOWS\system32\FriDru64.dll
2014-01-27 09:03 - 2006-02-22 10:39 - 00020480 _____ () C:\WINDOWS\system32\FritzPort64.dll
2014-01-27 09:02 - 2007-09-07 10:05 - 00353584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2014-01-27 09:01 - 2014-01-27 09:03 - 00000000 ____D () C:\Program Files (x86)\FRITZ!
2014-01-27 09:01 - 2014-01-27 09:02 - 00000000 ____D () C:\ProgramData\ISDNWatch
2014-01-27 09:01 - 2014-01-27 09:01 - 00000000 ____D () C:\ProgramData\FRITZ!
2014-01-27 09:01 - 2007-09-07 10:05 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2014-01-27 09:01 - 2007-09-07 10:05 - 00492848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp70.dll
2014-01-27 09:01 - 2007-09-07 10:05 - 00349488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2014-01-27 09:01 - 2007-09-07 10:04 - 01066288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll
2014-01-27 09:01 - 2007-09-07 10:04 - 00980272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2014-01-27 09:01 - 2007-09-07 10:04 - 00970032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2014-01-27 09:01 - 2007-09-07 10:04 - 00070960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2014-01-27 09:01 - 2007-09-07 10:04 - 00060208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll
2014-01-27 09:01 - 1998-11-17 12:44 - 00328704 _____ (InstallShield Software Corporation ) C:\WINDOWS\IsUn0407.exe
2014-01-27 08:56 - 2014-01-27 08:56 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVM
2014-01-27 08:56 - 2014-01-27 08:56 - 00000000 ____D () C:\IDriver
2014-01-27 08:56 - 2001-02-28 00:00 - 00507728 _____ (AVM GmbH) C:\WINDOWS\SysWOW64\Drivers\fpcibase.sys
2014-01-26 09:31 - 2012-08-04 03:38 - 00448512 _____ (OldTimer Tools) C:\Users\Admin\Desktop\TFC.exe
2014-01-26 09:20 - 2014-01-26 09:23 - 00001886 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-01-26 08:42 - 2014-01-26 09:02 - 00000000 ____D () C:\Users\I-NET\AppData\Roaming\AIMP3
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\IrfanView
2014-01-23 10:09 - 2014-01-23 10:09 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Malwarebytes
2014-01-22 07:33 - 2014-01-27 08:54 - 00000000 ____D () C:\Users\Privat.Zeus\Documents\Fax
==================== One Month Modified Files and Folders =======
2014-02-18 16:50 - 2014-02-18 16:50 - 00010565 _____ () C:\Users\Admin\Desktop\FRST.txt
2014-02-18 16:50 - 2014-02-18 16:50 - 00000000 ____D () C:\FRST
2014-02-18 16:49 - 2014-02-17 22:20 - 00285350 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-18 16:49 - 2014-02-06 22:26 - 00000000 ____D () C:\Users\Admin\AppData\Local\CrashDumps
2014-02-18 16:48 - 2013-12-22 06:33 - 00000000 ____D () C:\Users\Admin
2014-02-18 16:47 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-18 16:45 - 2013-12-23 11:16 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1006
2014-02-18 16:41 - 2014-02-06 18:07 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\CrashDumps
2014-02-18 16:33 - 2014-01-30 17:02 - 00000000 ____D () C:\AdwCleaner
2014-02-18 16:33 - 2013-12-22 02:53 - 01474832 _____ () C:\WINDOWS\system32\Drivers\sfi.dat
2014-02-18 16:31 - 2014-02-18 16:31 - 00000510 _____ () C:\WINDOWS\PFRO.log
2014-02-18 16:30 - 2013-12-22 03:37 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\AIMP3
2014-02-18 15:53 - 2013-12-23 11:17 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\AIMP3
2014-02-18 15:51 - 2014-02-12 17:54 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-18 15:40 - 2014-02-18 15:40 - 00032021 _____ () C:\Users\Sandboxie\Desktop\Addition.txt
2014-02-18 15:40 - 2014-02-18 15:39 - 00066849 _____ () C:\Users\Sandboxie\Desktop\FRST.txt
2014-02-18 15:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-02-18 14:40 - 2014-02-18 14:37 - 00000058 _____ () C:\Users\Sandboxie\Desktop\Flash.bat
2014-02-18 14:34 - 2014-02-17 14:35 - 00000000 __RDO () C:\Users\maexl_000\SkyDrive
2014-02-18 01:59 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-18 00:23 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-18 00:19 - 2014-02-18 00:19 - 00000000 ____D () C:\ProgramData\Playrix Entertainment
2014-02-18 00:18 - 2014-02-18 00:18 - 00002301 _____ () C:\Users\maexl_000\Desktop\Fishdom Spooky Splash.lnk
2014-02-18 00:18 - 2014-02-18 00:18 - 00002163 _____ () C:\Users\maexl_000\Desktop\Play Online Games.lnk
2014-02-18 00:18 - 2014-02-18 00:18 - 00002152 _____ () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\MyPlayCity Games.lnk
2014-02-18 00:18 - 2014-02-18 00:18 - 00002128 _____ () C:\Users\maexl_000\Desktop\MyPlayCity Games.lnk
2014-02-18 00:18 - 2014-02-18 00:18 - 00000000 ____D () C:\Program Files (x86)\MyPlayCity.com
2014-02-18 00:16 - 2014-02-18 00:16 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Realore_Whiterra Roads Of Rome 3
2014-02-18 00:00 - 2014-02-17 23:36 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\AIMP3
2014-02-17 23:53 - 2014-02-17 14:33 - 00000000 ___RD () C:\Users\maexl_000\AppData\Local\Packages
2014-02-17 23:32 - 2013-12-23 11:21 - 00001616 _____ () C:\WINDOWS\system32\Drivers\fvstore.dat
2014-02-17 23:17 - 2014-02-17 14:36 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\CrashDumps
2014-02-17 22:48 - 2014-02-17 14:44 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1007
2014-02-17 22:26 - 2014-02-17 22:26 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Apps\2.0
2014-02-17 22:25 - 2014-02-17 22:25 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\IrfanView
2014-02-17 18:47 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-17 18:13 - 2014-02-18 16:05 - 01241888 _____ () C:\Users\Admin\Desktop\adwcleaner_3.0.1.9.exe
2014-02-17 17:20 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-02-17 16:50 - 2014-02-17 16:50 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 16:14 - 2013-12-25 16:45 - 00000000 ____D () C:\Users\Sandboxie\.VirtualBox
2014-02-17 15:58 - 2014-02-12 19:12 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-17 15:29 - 2013-11-14 08:26 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-17 15:29 - 2013-11-14 08:11 - 00764340 _____ () C:\WINDOWS\system32\perfh007.dat
2014-02-17 15:29 - 2013-11-14 08:11 - 00159160 _____ () C:\WINDOWS\system32\perfc007.dat
2014-02-17 14:50 - 2014-02-17 14:33 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\VirtualStore
2014-02-17 14:46 - 2014-02-17 14:46 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Macromedia
2014-02-17 14:46 - 2014-02-17 14:46 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Macromedia
2014-02-17 14:44 - 2013-12-22 02:33 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1001
2014-02-17 14:40 - 2014-02-17 14:40 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Mozilla
2014-02-17 14:40 - 2014-02-17 14:39 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Mozilla
2014-02-17 14:39 - 2014-02-17 14:39 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Thunderbird
2014-02-17 14:39 - 2014-02-17 14:39 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\Thunderbird
2014-02-17 14:35 - 2014-02-17 14:34 - 00000000 ____D () C:\Users\maexl_000\AppData\Local\PackageStaging
2014-02-17 14:35 - 2014-02-17 14:33 - 00000000 ____D () C:\Users\maexl_000
2014-02-17 14:33 - 2014-02-17 14:33 - 00001459 _____ () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-17 14:33 - 2014-02-17 14:33 - 00000020 ___SH () C:\Users\maexl_000\ntuser.ini
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Vorlagen
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Startmenü
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Netzwerkumgebung
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Lokale Einstellungen
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Eigene Dateien
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Druckumgebung
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Documents\Eigene Musik
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Documents\Eigene Bilder
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\AppData\Local\Verlauf
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\AppData\Local\Anwendungsdaten
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 _SHDL () C:\Users\maexl_000\Anwendungsdaten
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 ___RD () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 ___RD () C:\Users\maexl_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-17 14:33 - 2014-02-17 14:33 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Adobe
2014-02-17 14:25 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-02-17 14:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-02-17 14:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-02-17 14:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-02-16 22:38 - 2013-12-22 11:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-16 22:35 - 2013-12-23 11:19 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-16 22:34 - 2013-12-23 11:19 - 88567024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-16 22:13 - 2014-01-09 09:43 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1005
2014-02-16 22:10 - 2014-02-16 22:10 - 00003031 _____ () C:\Users\Privat.Zeus\Desktop\Word 2013.lnk
2014-02-16 20:45 - 2014-02-18 16:49 - 02152448 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2014-02-16 20:45 - 2014-02-18 15:35 - 02152448 _____ (Farbar) C:\Users\Sandboxie\Desktop\FRST64.exe
2014-02-15 00:43 - 2013-12-23 11:11 - 00000000 ____D () C:\Users\Sandboxie
2014-02-14 23:59 - 2014-02-14 23:44 - 00000000 ____D () C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs
2014-02-14 23:20 - 2013-12-22 02:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-14 23:15 - 2014-02-14 23:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-13 00:32 - 2013-12-25 15:34 - 00000000 ____D () C:\Users\Admin\.VirtualBox
2014-02-12 23:28 - 2014-02-12 23:28 - 00000000 ____D () C:\Users\Admin\AppData\Local\GHISLER
2014-02-12 20:10 - 2014-02-12 19:46 - 47680205 _____ () C:\Users\Sandboxie\Downloads\LaNanov11.1.rar
2014-02-12 19:13 - 2013-12-22 11:59 - 00000000 ____D () C:\Users\Admin\AppData\Local\Microsoft Help
2014-02-12 19:12 - 2013-08-22 15:44 - 00472928 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-12 18:33 - 2014-02-12 18:33 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-02-12 18:33 - 2014-02-12 18:33 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-02-12 18:33 - 2014-02-12 18:32 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-02-12 18:33 - 2013-11-14 08:13 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-02-12 18:33 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-02-12 18:32 - 2014-02-12 18:32 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-02-12 18:32 - 2014-02-10 11:33 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-12 18:31 - 2014-02-12 18:31 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-02-12 18:31 - 2014-02-12 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-02-12 18:31 - 2014-02-12 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-02-12 18:30 - 2014-02-12 18:30 - 00000000 __RHD () C:\MSOCache
2014-02-12 18:12 - 2013-12-22 03:33 - 00000000 ____D () C:\Users\Admin\AppData\Local\Adobe
2014-02-12 17:54 - 2014-02-12 17:54 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-02-11 18:23 - 2014-02-11 18:23 - 00009728 ___SH () C:\Users\Sandboxie\Desktop\Thumbs.db
2014-02-11 17:15 - 2013-12-26 16:58 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Paint.NET
2014-02-11 01:02 - 2013-12-22 02:27 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-11 00:58 - 2014-02-09 00:21 - 00000000 ____D () C:\Program Files\Registrar Registry Manager
2014-02-11 00:57 - 2013-12-22 11:27 - 00001459 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-11 00:57 - 2013-12-22 02:48 - 00001156 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-11 00:54 - 2014-02-11 00:55 - 00825832 _____ (AnyProtect.com) C:\Users\Admin\AppData\Local\AnyProtectScanner.exe
2014-02-10 23:44 - 2014-02-10 23:44 - 00001209 _____ () C:\Users\Sandboxie\Downloads\Akt Of 2013.txt
2014-02-10 23:25 - 2014-02-10 23:25 - 00000000 ____D () C:\Program Files\Java
2014-02-10 23:25 - 2014-01-15 23:28 - 00312744 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-02-10 23:25 - 2014-01-15 23:28 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-02-10 23:25 - 2014-01-15 23:28 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-02-10 23:25 - 2014-01-15 23:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2014-02-10 12:17 - 2014-02-10 12:17 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Microsoft Help
2014-02-10 12:00 - 2014-02-09 00:02 - 00000000 __RDO () C:\Users\Sandboxie\SkyDrive
2014-02-10 11:09 - 2013-12-22 02:27 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-10 00:45 - 2014-02-10 00:45 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-02-09 23:15 - 2014-02-05 07:28 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\AIMP3
2014-02-09 21:27 - 2013-12-22 21:27 - 00000000 ____D () C:\WINDOWS\AutoKMS
2014-02-09 18:55 - 2014-02-09 18:28 - 00000000 ____D () C:\Users\Privat.Zeus\Downloads\kms host license pack
2014-02-09 18:28 - 2014-02-09 18:28 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-02-09 11:43 - 2014-01-09 09:38 - 00000000 ___RD () C:\Users\Privat.Zeus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-09 11:43 - 2014-01-09 09:38 - 00000000 ___RD () C:\Users\Privat.Zeus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-09 00:55 - 2013-12-22 03:52 - 00000843 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-09 00:55 - 2013-12-22 03:52 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-09 00:53 - 2014-02-03 17:02 - 00000000 ____D () C:\ProgramData\Informer Technologies, Inc
2014-02-09 00:48 - 2014-02-09 00:48 - 00000000 ____D () C:\ProgramData\Office Genuine Advantage
2014-02-09 00:46 - 2014-02-09 00:46 - 02031992 _____ (Microsoft Corporation) C:\Users\Sandboxie\Downloads\MGADiag.exe
2014-02-09 00:27 - 2013-12-23 11:11 - 00000000 ___RD () C:\Users\Sandboxie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-09 00:27 - 2013-12-23 11:11 - 00000000 ___RD () C:\Users\Sandboxie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-09 00:25 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-02-09 00:25 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-02-09 00:02 - 2014-02-07 17:39 - 00000000 __RDO () C:\Users\Sandboxie\SkyDrive (4).old
2014-02-07 17:39 - 2014-02-07 00:13 - 00000000 __RDO () C:\Users\Sandboxie\SkyDrive (3).old
2014-02-07 00:13 - 2014-01-10 00:43 - 00000000 __RDO () C:\Users\Sandboxie\SkyDrive (2).old
2014-02-06 22:39 - 2013-12-23 11:11 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Packages
2014-02-06 13:16 - 2014-02-14 10:22 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-14 10:22 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-14 10:22 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-14 10:22 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-14 10:22 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-14 10:22 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-14 10:22 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-14 10:22 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-06 11:49 - 2014-02-14 10:22 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-14 10:22 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-14 10:22 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-14 10:22 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-14 10:22 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-14 10:22 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-14 10:22 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-06 11:11 - 2014-02-14 10:22 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-14 10:22 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-14 10:22 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-14 10:22 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-14 10:22 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-14 10:22 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-14 10:22 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-14 10:22 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-06 10:47 - 2014-02-14 10:22 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-14 10:22 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-14 10:22 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-14 10:22 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-14 10:22 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-06 10:22 - 2014-02-14 10:22 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-14 10:22 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-14 10:22 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-14 10:22 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-14 10:22 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-14 10:22 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-14 10:22 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-14 10:22 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-14 10:22 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-05 08:08 - 2014-02-05 07:37 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-05 07:36 - 2014-01-09 09:41 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Local\Thunderbird
2014-02-03 22:58 - 2014-02-03 22:58 - 00001567 _____ () C:\Users\Sandboxie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Herunterfahren.lnk
2014-02-03 17:50 - 2014-02-03 17:50 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\funkwerk
2014-02-03 17:09 - 2014-02-03 17:09 - 00000000 ____D () C:\Users\Admin\AppData\Local\funkwerk
2014-02-03 16:56 - 2014-02-03 16:56 - 00000000 ____D () C:\Program Files (x86)\InstallShield Installation Information
2014-02-03 16:56 - 2014-02-03 16:56 - 00000000 ____D () C:\Program Files (x86)\funkwerk WIN-Tools
2014-02-03 16:50 - 2014-02-03 16:50 - 00000000 ____D () C:\Program Files\DIFX
2014-02-03 16:50 - 2014-02-03 16:50 - 00000000 ____D () C:\Program Files (x86)\T-Home
2014-02-03 16:49 - 2014-01-31 11:50 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Foxit Software
2014-02-02 23:23 - 2014-01-31 11:50 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Foxit Software
2014-02-02 10:30 - 2013-12-22 03:37 - 00000926 _____ () C:\Users\Public\Desktop\AIMP3.lnk
2014-02-02 10:29 - 2013-12-22 03:37 - 00000000 ____D () C:\Program Files (x86)\AIMP3
2014-02-01 14:09 - 2014-02-01 14:09 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\Foxit Software
2014-01-31 11:50 - 2014-01-31 11:50 - 00000000 ____D () C:\Users\Public\Foxit Software
2014-01-31 11:49 - 2014-01-31 11:49 - 00002075 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2014-01-31 11:49 - 2014-01-31 11:49 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2014-01-30 21:47 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-30 21:47 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-30 16:34 - 2014-01-30 16:34 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\FRITZ!
2014-01-29 10:56 - 2014-01-29 10:56 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\IrfanView
2014-01-29 00:31 - 2014-01-08 23:31 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\ImgBurn
2014-01-27 12:29 - 2014-01-27 12:29 - 00001970 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-01-27 12:29 - 2014-01-27 12:29 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\Canneverbe Limited
2014-01-27 12:29 - 2014-01-27 12:29 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Canneverbe Limited
2014-01-27 12:29 - 2014-01-27 12:29 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-01-27 12:29 - 2014-01-27 12:29 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-01-27 11:19 - 2014-01-27 11:19 - 00000000 ____D () C:\Program Files (x86)\Nero
2014-01-27 11:05 - 2013-12-22 02:21 - 00000000 __SHD () C:\Recovery
2014-01-27 10:33 - 2014-01-27 10:33 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\FRITZ!
2014-01-27 09:47 - 2014-01-27 09:04 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\FRITZ!
2014-01-27 09:46 - 2014-01-27 09:04 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Local\FRITZ!
2014-01-27 09:15 - 2014-01-27 09:15 - 00000000 ____D () C:\Program Files (x86)\AVM_update
2014-01-27 09:09 - 2014-01-09 09:38 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Local\VirtualStore
2014-01-27 09:05 - 2014-01-27 09:05 - 00000000 ____D () C:\Users\Privat.Zeus\Documents\FRITZ!data Server
2014-01-27 09:03 - 2014-01-27 09:03 - 00001012 _____ () C:\Users\Public\Desktop\FRITZ! ISDN und Internet.lnk
2014-01-27 09:03 - 2014-01-27 09:01 - 00000000 ____D () C:\Program Files (x86)\FRITZ!
2014-01-27 09:02 - 2014-01-27 09:01 - 00000000 ____D () C:\ProgramData\ISDNWatch
2014-01-27 09:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Help
2014-01-27 09:01 - 2014-01-27 09:01 - 00000000 ____D () C:\ProgramData\FRITZ!
2014-01-27 08:56 - 2014-01-27 08:56 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVM
2014-01-27 08:56 - 2014-01-27 08:56 - 00000000 ____D () C:\IDriver
2014-01-27 08:56 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\System
2014-01-27 08:54 - 2014-01-22 07:33 - 00000000 ____D () C:\Users\Privat.Zeus\Documents\Fax
2014-01-27 08:54 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-01-26 09:23 - 2014-01-26 09:20 - 00001886 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-01-26 09:20 - 2014-01-08 23:28 - 00000000 ____D () C:\Program Files (x86)\ImgBurn
2014-01-26 09:02 - 2014-01-26 08:42 - 00000000 ____D () C:\Users\I-NET\AppData\Roaming\AIMP3
2014-01-26 08:41 - 2013-12-23 10:47 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1004
2014-01-23 17:43 - 2014-01-23 17:43 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\IrfanView
2014-01-23 10:09 - 2014-01-23 10:09 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Malwarebytes
2014-01-19 08:38 - 2014-02-03 23:20 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-16 22:33
==================== End Of Log ============================
--- --- ---
und die andere auch noch:
FRST Additions Logfile: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-02-2014
Ran by Admin at 2014-02-18 16:50:51
Running from C:\Users\Admin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Enabled - Up to date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
==================== Installed Programs ======================
Acronis*True*Image*Home (x32 Version: 13.0.6029 - Acronis)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
AIMP3 (x32 Version: v3.55.1338, 31.01.2014 - AIMP DevTeam)
AVM FRITZ! (x32 Version: - AVM Berlin)
AVM ISDN-Controller FRITZ!Card PCI (x32 Version: - )
Canon Easy-PhotoPrint EX (x32 Version: 4.1.6 - Canon Inc.)
Canon MG5200 series MP Drivers (Version: - Canon Inc.)
Canon MP Navigator EX 4.0 (x32 Version: - )
CCleaner (Version: 4.10 - Piriform)
CDBurnerXP (x32 Version: 4.5.2.4478 - CDBurnerXP)
ClearProg 1.6.1 Beta 6 (x32 Version: 1.6.1 Beta 6 - Sven Hoffman)
COMODO Internet Security Premium (Version: 6.3.38526.2970 - COMODO Security Solutions Inc.)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (Version: - Microsoft)
Eumex RNDIS64 Treiber V1.02 (Version: 1.02.0000 - Deutsche Telekom)
Fishdom Spooky Splash (x32 Version: 1.0 - MyPlayCity, Inc.)
Foxit Reader (x32 Version: 6.1.2.1224 - Foxit Corporation)
Free Audio Converter version 5.0.32.1230 (x32 Version: 5.0.32.1230 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.20.1230 (x32 Version: 3.12.20.1230 - DVDVideoSoft Ltd.)
funkwerk Eumex 401 WIN-Tools V1.00 (x32 Version: 1.00.0000 - Funkwerk Enterprise Communications GmbH)
funkwerk Eumex 401 WIN-Tools V1.00 (x32 Version: 1.00.0000 - Funkwerk Enterprise Communications GmbH) Hidden
GNU Backgammon (Version 1_02_000, 20130728) (x32 Version: - Free Software Foundation)
ImgBurn (x32 Version: 2.5.8.0 - LIGHTNING UK!)
IrfanView (remove only) (x32 Version: 4.36 - Irfan Skiljan)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Access MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Groove MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (x32 Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (x32 Version: 27.0.1 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 de) (x32 Version: 24.3.0 - Mozilla)
Nero Backup Drivers (Version: 1.0.10000.1.0 - Nero AG)
Oracle VM VirtualBox 4.3.6 (Version: 4.3.6 - Oracle Corporation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Paint.NET v3.5.10 (Version: 3.60.0 - dotPDN LLC)
Plus Pack für Acronis True Image Home 2010 (x32 Version: 13.0.6029 - Acronis)
soft Xpansion Perfect PDF 6 Premium (x32 Version: 6.4.0 - soft Xpansion)
Sokoban++ (remove only) (x32 Version: - )
Total Commander 64-bit (Remove or Repair) (Version: 8.0 - Ghisler Software GmbH)
Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Access 2013 (KB2827233) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft InfoPath 2013 (KB2837648) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2826004) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827239) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837626) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837637) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837638) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2850066) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2850061) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2767850) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Project 2013 (KB2727085) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Publisher 2013 (KB2837635) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft SkyDrive Pro (KB2817495) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft SkyDrive Pro (KB2837652) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Visio 2013 (KB2817306) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition (Version: - Microsoft)
Windows-Treiberpaket - T-Home Net (06/30/2010 6.0.6000.16384) (Version: 06/30/2010 6.0.6000.16384 - T-Home)
WinRAR 4.20 (64-Bit) (Version: 4.20.0 - win.rar GmbH)
==================== Restore Points =========================
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {12A554E2-F56B-4268-B361-A3AA6BCA35D2} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-11] (COMODO)
Task: {18CF1D43-A29E-44F1-9ED6-EA0C367C043C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {27F1712F-3107-4425-A787-6232B7266728} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {34F8E3B5-32AF-4CC5-BA37-E9F79C06394A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-12] (Adobe Systems Incorporated)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3C2477CD-0078-4868-949D-66B2E6FF4C00} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {434261AD-53CD-4A6B-95D9-7BE638F26010} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-11] (COMODO)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {575729A9-28B5-4F59-940A-410D39D4F699} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {96DA8646-E470-4734-963A-A92C1F7E766C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-02-16] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DA726811-19C7-4414-849F-3FBEDB764283} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {DC82AE32-7AE7-4A90-A063-25C6F4552DC7} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-11] (COMODO)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EDF7B3B1-F635-4F4B-AA49-C8D812DC7CAE} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-11] (COMODO)
Task: {F010BC62-3B51-4E07-BFA0-DD405B140089} - System32\Tasks\COMODO\COMODO Welcome {CEB54B45-2B5E-4FF5-9223-6735CD80FE69} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2013-11-20] (COMODO)
Task: {F34D0539-8F15-4684-9EDC-2F9E50243248} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2013-11-11] (COMODO)
Task: {FCF10A0A-5281-49C9-973E-B93018A34237} - \GoforFilesUpdate No Task File
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2014-02-14 23:50 - 2014-02-14 23:50 - 00302961 _____ () C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:6E271126
AlternateDataStreams: C:\Users\maexl_000\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive (2).old:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive (3).old:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive (4).old:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive.old:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\Services: AcrSch2Svc => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: afcdpsrv => 2
MSCONFIG\Services: cmdAgent => 2
MSCONFIG\Services: cmdvirth => 3
MSCONFIG\Services: HOSTS Anti-PUPs => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: SXDS10 => 3
==================== Faulty Device Manager Devices =============
Name: Eumex 401 - Remote NDIS based Device
Description: Eumex 401 - Remote NDIS based Device
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: T-Home
Service: usb_rndisx
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/18/2014 04:49:04 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: Zeus)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (02/18/2014 04:49:02 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WWAHost.exe, Version: 6.3.9600.16431, Zeitstempel: 0x525e5d4e
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.16496, Zeitstempel: 0x52b3f283
Ausnahmecode: 0x00000004
Fehleroffset: 0x0000000000005a88
ID des fehlerhaften Prozesses: 0x13c
Startzeit der fehlerhaften Anwendung: 0xWWAHost.exe0
Pfad der fehlerhaften Anwendung: WWAHost.exe1
Pfad des fehlerhaften Moduls: WWAHost.exe2
Berichtskennung: WWAHost.exe3
Vollständiger Name des fehlerhaften Pakets: WWAHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WWAHost.exe5
Error: (02/18/2014 04:41:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: Zeus)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (02/18/2014 04:41:21 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WWAHost.exe, Version: 6.3.9600.16431, Zeitstempel: 0x525e5d4e
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.16496, Zeitstempel: 0x52b3f283
Ausnahmecode: 0x00000004
Fehleroffset: 0x0000000000005a88
ID des fehlerhaften Prozesses: 0xaa4
Startzeit der fehlerhaften Anwendung: 0xWWAHost.exe0
Pfad der fehlerhaften Anwendung: WWAHost.exe1
Pfad des fehlerhaften Moduls: WWAHost.exe2
Berichtskennung: WWAHost.exe3
Vollständiger Name des fehlerhaften Pakets: WWAHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WWAHost.exe5
Error: (02/18/2014 04:41:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: Zeus)
Description: Bei der Aktivierung der App „Microsoft.WindowsAlarms_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (02/18/2014 04:35:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: Zeus)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (02/18/2014 04:35:55 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WWAHost.exe, Version: 6.3.9600.16431, Zeitstempel: 0x525e5d4e
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.16496, Zeitstempel: 0x52b3f283
Ausnahmecode: 0x00000004
Fehleroffset: 0x0000000000005a88
ID des fehlerhaften Prozesses: 0x140
Startzeit der fehlerhaften Anwendung: 0xWWAHost.exe0
Pfad der fehlerhaften Anwendung: WWAHost.exe1
Pfad des fehlerhaften Moduls: WWAHost.exe2
Berichtskennung: WWAHost.exe3
Vollständiger Name des fehlerhaften Pakets: WWAHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WWAHost.exe5
Error: (02/18/2014 04:32:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: Zeus)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (02/18/2014 04:32:51 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WWAHost.exe, Version: 6.3.9600.16431, Zeitstempel: 0x525e5d4e
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.16496, Zeitstempel: 0x52b3f283
Ausnahmecode: 0x00000004
Fehleroffset: 0x0000000000005a88
ID des fehlerhaften Prozesses: 0x119c
Startzeit der fehlerhaften Anwendung: 0xWWAHost.exe0
Pfad der fehlerhaften Anwendung: WWAHost.exe1
Pfad des fehlerhaften Moduls: WWAHost.exe2
Berichtskennung: WWAHost.exe3
Vollständiger Name des fehlerhaften Pakets: WWAHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WWAHost.exe5
Error: (02/18/2014 04:12:39 PM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an. (HRESULT : 0x80040d06) (0x80040d06)
System errors:
=============
Error: (02/18/2014 04:49:04 PM) (Source: DCOM) (User: Zeus)
Description: Windows.Store
Error: (02/18/2014 04:48:16 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.
Error: (02/18/2014 04:48:03 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.
Error: (02/18/2014 04:47:56 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.
Error: (02/18/2014 04:47:55 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 18.02.2014 um 16:40:19 unerwartet heruntergefahren.
Error: (02/18/2014 04:42:59 PM) (Source: Service Control Manager) (User: )
Description: Dienst "MBAMService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/18/2014 04:41:23 PM) (Source: DCOM) (User: Zeus)
Description: Windows.Store
Error: (02/18/2014 04:40:56 PM) (Source: DCOM) (User: Zeus)
Description: App.AppX2tphb21dp9jkkycchwvscnrxk12cys3z.mca
Error: (02/18/2014 04:40:26 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.
Error: (02/18/2014 04:40:19 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 18.02.2014 um 16:34:59 unerwartet heruntergefahren.
Microsoft Office Sessions:
=========================
Error: (02/18/2014 04:49:04 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: Zeus)
Description: winstore_cw5n1h2txyewy!Windows.Store-2144927141
Error: (02/18/2014 04:49:02 PM) (Source: Application Error)(User: )
Description: WWAHost.exe6.3.9600.16431525e5d4eKERNELBASE.dll6.3.9600.1649652b3f283000000040000000000005a8813c01cf2cc0efe21cbdC:\Windows\System32\WWAHost.exeC:\WINDOWS\system32\KERNELBASE.dll2fd2026f-98b4-11e3-beac-0015834b311cwinstore_1.0.0.0_neutral_neutral_cw5n1h2txyewyWindows.Store
Error: (02/18/2014 04:41:23 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: Zeus)
Description: winstore_cw5n1h2txyewy!Windows.Store-2144927141
Error: (02/18/2014 04:41:21 PM) (Source: Application Error)(User: )
Description: WWAHost.exe6.3.9600.16431525e5d4eKERNELBASE.dll6.3.9600.1649652b3f283000000040000000000005a88aa401cf2cbfdcd37c52C:\Windows\System32\WWAHost.exeC:\WINDOWS\system32\KERNELBASE.dll1d4b49e7-98b3-11e3-beab-0015834b311cwinstore_1.0.0.0_neutral_neutral_cw5n1h2txyewyWindows.Store
Error: (02/18/2014 04:41:01 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: Zeus)
Description: Microsoft.WindowsAlarms_8wekyb3d8bbwe!App-2144927141
Error: (02/18/2014 04:35:57 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: Zeus)
Description: winstore_cw5n1h2txyewy!Windows.Store-2144927141
Error: (02/18/2014 04:35:55 PM) (Source: Application Error)(User: )
Description: WWAHost.exe6.3.9600.16431525e5d4eKERNELBASE.dll6.3.9600.1649652b3f283000000040000000000005a8814001cf2cbf1ab53c82C:\Windows\System32\WWAHost.exeC:\WINDOWS\system32\KERNELBASE.dll5af66fdb-98b2-11e3-beaa-0015834b311cwinstore_1.0.0.0_neutral_neutral_cw5n1h2txyewyWindows.Store
Error: (02/18/2014 04:32:53 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: Zeus)
Description: winstore_cw5n1h2txyewy!Windows.Store-2144927141
Error: (02/18/2014 04:32:51 PM) (Source: Application Error)(User: )
Description: WWAHost.exe6.3.9600.16431525e5d4eKERNELBASE.dll6.3.9600.1649652b3f283000000040000000000005a88119c01cf2cbeace8cc74C:\Windows\System32\WWAHost.exeC:\WINDOWS\system32\KERNELBASE.dlled38308b-98b1-11e3-bea9-0015834b311cwinstore_1.0.0.0_neutral_neutral_cw5n1h2txyewyWindows.Store
Error: (02/18/2014 04:12:39 PM) (Source: Windows Search Service)(User: )
Description:
Details:
Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an. (HRESULT : 0x80040d06) (0x80040d06)
CodeIntegrity Errors:
===================================
Date: 2014-02-18 16:50:04.570
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-02-18 16:49:57.273
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-02-18 16:48:15.757
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-02-18 16:42:27.862
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-02-18 16:41:56.350
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-02-18 16:40:37.694
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-02-18 16:37:02.083
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-02-18 16:35:39.980
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-02-18 16:35:10.913
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-02-18 16:33:31.208
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 14%
Total physical RAM: 12279.05 MB
Available physical RAM: 10505.73 MB
Total Pagefile: 24567.05 MB
Available Pagefile: 22690.14 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB
==================== Drives ================================
Drive c: (Windows 8) (Fixed) (Total:233.17 GB) (Free:52.27 GB) NTFS
Drive d: (Win7) (Fixed) (Total:164.14 GB) (Free:98.23 GB) NTFS
Drive e: (Ablage) (Fixed) (Total:68.36 GB) (Free:42.36 GB) NTFS
Drive k: (Sicherungsplatte) (Fixed) (Total:465.76 GB) (Free:316.54 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: A902185A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=233 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=164 GB) - (Type=05)
Partition 4: (Not Active) - (Size=68 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 272B22DD)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
==================== End Of Log ============================
--- --- ---
Wollte auch noch TFC vers.3.1.9 von oldtimer die tmps löschen, aber nach klick auf start hängt sich der pc jedesmal auf, nichtmal beenden im taskmanager ist mehr möglich :-(
ich fürchte allmählich, ich hab mir was eingefangen.
grüßle
dilledap |
FRST 32-Bit | FRST 64-Bit