FRST Logfile:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-02-2014 01
Ran by Georg79 (administrator) on GEORG-PC on 23-02-2014 08:18:43
Running from C:\Users\Georg79\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Seiko Epson Corporation) C:\Windows\system32\EscSvc64.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Users\Georg79\AppData\Roaming\SystemMn\bin\SystemMn.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Micro-Star International) C:\Program Files (x86)\MSI\Live Update 5\LU5.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [itype] - C:\Program Files\Microsoft IntelliType Pro\itype.exe [1873256 2011-08-10] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] - C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)
HKLM\...\Run: [Monitor] - C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7191768 2013-06-27] (Realtek Semiconductor)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [LifeCam] - C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ControlCenterCount] - C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe [872448 2012-03-26] (MSI CO.,LTD.)
HKLM-x32\...\Run: [Super-Charger] - C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [495616 2012-07-27] (MSI)
HKLM-x32\...\Run: [RealTray] - C:\Program Files (x86)\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [spup] - C:\Users\Georg\AppData\Roaming\ShinyProfile\spup.exe [197664 2013-07-10] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [676608 2013-06-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Live Update 5] - C:\Program Files (x86)\MSI\Live Update 5\BootStartLiveupdate.exe [315392 2012-01-30] ()
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-14] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-2350303338-2735705362-4146805170-1009\...\Run: [SystemMn] - C:\Users\Georg79\AppData\Roaming\SystemMn\bin\SystemMn.exe [149504 2014-02-05] ()
HKU\S-1-5-21-2350303338-2735705362-4146805170-1009\...\Run: [ccleaner] - C:\Program Files\CCleaner\CCleaner64.exe [5312352 2012-07-24] (Piriform Ltd)
HKU\S-1-5-21-2350303338-2735705362-4146805170-1009\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2350303338-2735705362-4146805170-1009\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
==================== Internet (Whitelisted) ====================
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2421} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=101&systemid=421&apn_dtid=BND421&apn_ptnrs=AGA&o=APN10649&apn_uid=5214912023354473&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooAM&dpid=YahooAM&co=DE&userid=5f6ea5b7-d63c-ab8f-a8b4-96c7077239b7&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=25/11/2013&type=hp4000
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooAM&dpid=YahooAM&co=DE&userid=5f6ea5b7-d63c-ab8f-a8b4-96c7077239b7&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=25/11/2013&type=hp4000
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: TBSB01620 Class - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll ()
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: ShinyProfile Class - {C8B7D03D-30D7-493A-95E5-6547E2FAC2FE} - C:\Users\Georg\AppData\Roaming\ShinyProfile\shinyprofile.dll (TODO: <Company name>)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - IMinent Toolbar - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll ()
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
==================== Services (Whitelisted) =================
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-06-04] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-15] (SEIKO EPSON CORPORATION)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [136704 2012-06-29] (MSI)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2014-01-01] ()
S3 gusvc; No ImagePath
S2 yksvc; %SystemRoot%\System32\yk62x64.dll [X]
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310984 2012-08-20] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-14] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2014-02-14] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-14] (Avira Operations GmbH & Co. KG)
S3 HydraPGU_EEP; C:\Windows\System32\DRIVERS\HydraPGU_EEP.sys [16224 2010-03-10] (Lucidlogix Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2012-08-20] ()
S3 NTIOLib_1_0_2; C:\Program Files (x86)\MSI\BIOS Code Unlocked Technology\NTIOLib_X64.sys [14136 2010-04-21] (MSI)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [14136 2010-01-18] (MSI)
R3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.)
S3 PAC207; C:\Windows\SysWOW64\DRIVERS\PFC027.SYS [162304 2005-05-27] ()
S3 SkLaggProtocol; C:\Windows\System32\DRIVERS\yk62x64l.sys [93472 2010-05-14] (Marvell)
S3 SkVlanProtocol; C:\Windows\System32\DRIVERS\yk62x64v.sys [25600 2010-05-14] (Marvell)
S3 ALSysIO; \??\C:\Users\Georg\AppData\Local\Temp\ALSysIO64.sys [X]
S3 MSICDSetup; \??\F:\CDriver64.sys [X]
S3 MSI_MSIBIOS_010507; \??\C:\Program Files (x86)\MSI\Live Update 5\msibios64_100507.sys [X]
S3 NTIOLib_1_0_C; \??\C:\MSI\MSI SUITE\NTIOLib_X64.sys [X]
S3 NTIOLib_1_0_D; \??\C:\MSI\MSI SUITE\ControlCenter\NTIOLib_X64.sys [X]
S3 NTIOLib_1_1_S; \??\C:\MSI\MSI SUITE\Super-Charger\NTIOLib_X64.sys [X]
S4 nvlddmkm; system32\DRIVERS\nvlddmkm.sys [X]
U5 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [407336 2011-03-16] (Valve Corporation)
U2 TMAgent;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-23 08:18 - 2014-02-23 08:18 - 02154496 ____C (Farbar) C:\Users\Georg79\Desktop\FRST64.exe
2014-02-23 08:18 - 2014-02-23 08:18 - 00011187 ____C () C:\Users\Georg79\Desktop\FRST.txt
2014-02-23 08:18 - 2014-02-23 08:18 - 00000000 ___DC () C:\FRST
2014-02-23 08:05 - 2014-02-23 08:06 - 00014860 ____C () C:\Windows\WindowsUpdate.log
2014-02-22 15:39 - 2014-02-22 15:39 - 00084720 ____C (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-22 10:40 - 2014-02-22 10:40 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Macromedia
2014-02-22 10:19 - 2014-02-22 10:19 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Opera
2014-02-22 10:19 - 2014-02-22 10:19 - 00000000 ___DC () C:\Users\Georg79\AppData\Local\Opera
2014-02-22 10:09 - 2014-02-22 10:09 - 00000136 ____C () C:\Users\Georg79\Desktop\Far Cry® 2 - Verknüpfung.lnk
2014-02-22 10:06 - 2014-02-22 10:06 - 00000355 ____C () C:\Users\Georg79\Desktop\Computer - Verknüpfung.lnk
2014-02-22 10:05 - 2014-02-22 10:05 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-02-22 10:05 - 2014-02-22 10:05 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Avira
2014-02-22 10:00 - 2014-02-22 10:00 - 00076016 ____C () C:\Users\Georg79\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-22 10:00 - 2014-02-22 10:00 - 00001425 ____C () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-22 10:00 - 2014-02-22 10:00 - 00000680 _RSHC () C:\Users\Georg79\ntuser.pol
2014-02-22 10:00 - 2014-02-22 10:00 - 00000020 __SHC () C:\Users\Georg79\ntuser.ini
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Vorlagen
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Startmenü
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Netzwerkumgebung
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Lokale Einstellungen
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Eigene Dateien
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Druckumgebung
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Documents\Eigene Musik
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Documents\Eigene Bilder
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\AppData\Local\Verlauf
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\AppData\Local\Anwendungsdaten
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Anwendungsdaten
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 __RDC () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 __RDC () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\SystemMn
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\ATI
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Adobe
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Local\ATI
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Local\AMD
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79
2014-02-22 10:00 - 2009-07-14 05:54 - 00000000 __RDC () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-22 10:00 - 2009-07-14 05:49 - 00000000 __RDC () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-22 09:25 - 2014-02-22 09:25 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\Avira
2014-02-22 09:24 - 2014-02-22 09:24 - 00002070 ____C () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-22 09:24 - 2014-02-22 09:24 - 00000000 ___DC () C:\Program Files (x86)\Avira
2014-02-22 09:24 - 2014-02-14 11:00 - 00131576 ____C (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-22 09:24 - 2014-02-14 11:00 - 00108440 ____C (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-22 09:24 - 2014-02-14 11:00 - 00028600 ____C (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-20 18:11 - 2014-02-20 18:11 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\Marmiko IT-Solutions GmbH
2014-02-20 18:11 - 2014-02-20 18:11 - 00000000 ___DC () C:\Users\Georg\AppData\Local\Marmiko IT-Solutions GmbH
2014-02-12 17:17 - 2014-02-12 17:17 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 17:17 - 2014-02-12 17:17 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 17:16 - 2014-02-12 17:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 17:16 - 2014-02-12 17:17 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 17:16 - 2014-02-12 17:17 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 17:16 - 2014-02-12 17:17 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 17:16 - 2014-02-12 17:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 17:16 - 2014-02-12 17:17 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 17:16 - 2014-02-12 17:17 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 17:16 - 2014-02-12 17:17 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 17:16 - 2014-02-12 17:17 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 16:51 - 2014-02-12 17:20 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 16:51 - 2014-02-12 17:20 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 16:51 - 2014-02-12 17:20 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 16:51 - 2014-02-12 17:20 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 16:51 - 2014-02-12 17:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 16:51 - 2014-02-12 17:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 16:50 - 2014-02-12 17:20 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 16:50 - 2014-02-12 17:20 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 16:50 - 2014-02-12 17:20 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 16:50 - 2014-02-12 17:20 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 16:50 - 2014-02-12 17:20 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 16:50 - 2014-02-12 17:20 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 16:50 - 2014-02-12 17:20 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 16:50 - 2014-02-12 17:20 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 16:50 - 2014-02-12 17:20 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 16:50 - 2014-02-12 17:17 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-12 16:50 - 2014-02-12 17:17 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 16:50 - 2014-02-12 17:17 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 16:50 - 2014-02-12 17:17 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-05 09:55 - 2014-02-05 09:55 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\SystemMn
2014-01-24 10:58 - 2014-01-24 10:58 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
==================== One Month Modified Files and Folders =======
2014-02-23 08:18 - 2014-02-23 08:18 - 02154496 ____C (Farbar) C:\Users\Georg79\Desktop\FRST64.exe
2014-02-23 08:18 - 2014-02-23 08:18 - 00011187 ____C () C:\Users\Georg79\Desktop\FRST.txt
2014-02-23 08:18 - 2014-02-23 08:18 - 00000000 ___DC () C:\FRST
2014-02-23 08:10 - 2009-07-14 05:45 - 00015776 ___HC () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-23 08:10 - 2009-07-14 05:45 - 00015776 ___HC () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-23 08:07 - 2009-07-14 18:58 - 00668692 ____C () C:\Windows\system32\perfh007.dat
2014-02-23 08:07 - 2009-07-14 18:58 - 00134540 ____C () C:\Windows\system32\perfc007.dat
2014-02-23 08:07 - 2009-07-14 06:13 - 01526786 ____C () C:\Windows\system32\PerfStringBackup.INI
2014-02-23 08:06 - 2014-02-23 08:05 - 00014860 ____C () C:\Windows\WindowsUpdate.log
2014-02-23 08:05 - 2012-05-16 00:14 - 00001108 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-23 08:03 - 2012-05-16 00:14 - 00001104 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-23 08:02 - 2009-07-14 06:08 - 00000006 ___HC () C:\Windows\Tasks\SA.DAT
2014-02-22 19:39 - 2012-04-28 09:58 - 00000884 ____C () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-22 19:22 - 2013-11-08 12:22 - 00000911 ____C () C:\Windows\Tasks\EPSON XP-312 313 315 Series Update {BE9575E0-9494-44C2-A90E-F7AC683EBCD9}.job
2014-02-22 19:22 - 2013-11-08 12:22 - 00000725 ____C () C:\Windows\Tasks\EPSON XP-312 313 315 Series Invitation {BE9575E0-9494-44C2-A90E-F7AC683EBCD9}.job
2014-02-22 19:10 - 2009-07-14 06:09 - 00000000 ___DC () C:\Windows\System32\Tasks\WPD
2014-02-22 15:39 - 2014-02-22 15:39 - 00084720 ____C (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-22 10:40 - 2014-02-22 10:40 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Macromedia
2014-02-22 10:19 - 2014-02-22 10:19 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Opera
2014-02-22 10:19 - 2014-02-22 10:19 - 00000000 ___DC () C:\Users\Georg79\AppData\Local\Opera
2014-02-22 10:18 - 2012-11-16 13:07 - 00000000 ___DC () C:\Program Files (x86)\Steam
2014-02-22 10:18 - 2012-04-27 20:57 - 00000000 ___DC () C:\Windows\Panther
2014-02-22 10:14 - 2012-04-27 20:04 - 00000000 ___DC () C:\Users\Georg
2014-02-22 10:09 - 2014-02-22 10:09 - 00000136 ____C () C:\Users\Georg79\Desktop\Far Cry® 2 - Verknüpfung.lnk
2014-02-22 10:06 - 2014-02-22 10:06 - 00000355 ____C () C:\Users\Georg79\Desktop\Computer - Verknüpfung.lnk
2014-02-22 10:05 - 2014-02-22 10:05 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-02-22 10:05 - 2014-02-22 10:05 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Avira
2014-02-22 10:05 - 2012-04-27 20:42 - 00000000 ___DC () C:\Windows\System32\Tasks\Games
2014-02-22 10:00 - 2014-02-22 10:00 - 00076016 ____C () C:\Users\Georg79\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-22 10:00 - 2014-02-22 10:00 - 00001425 ____C () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-22 10:00 - 2014-02-22 10:00 - 00000680 _RSHC () C:\Users\Georg79\ntuser.pol
2014-02-22 10:00 - 2014-02-22 10:00 - 00000020 __SHC () C:\Users\Georg79\ntuser.ini
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Vorlagen
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Startmenü
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Netzwerkumgebung
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Lokale Einstellungen
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Eigene Dateien
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Druckumgebung
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Documents\Eigene Musik
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Documents\Eigene Bilder
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\AppData\Local\Verlauf
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\AppData\Local\Anwendungsdaten
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 SHDCL () C:\Users\Georg79\Anwendungsdaten
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 __RDC () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 __RDC () C:\Users\Georg79\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\SystemMn
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\ATI
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Roaming\Adobe
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Local\ATI
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79\AppData\Local\AMD
2014-02-22 10:00 - 2014-02-22 10:00 - 00000000 ___DC () C:\Users\Georg79
2014-02-22 09:25 - 2014-02-22 09:25 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\Avira
2014-02-22 09:24 - 2014-02-22 09:24 - 00002070 ____C () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-22 09:24 - 2014-02-22 09:24 - 00000000 ___DC () C:\Program Files (x86)\Avira
2014-02-22 09:24 - 2012-11-03 22:21 - 00000000 ___DC () C:\ProgramData\Avira
2014-02-22 09:17 - 2013-12-31 13:04 - 00000000 ___DC () C:\ProgramData\Package Cache
2014-02-21 05:39 - 2012-04-28 09:58 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 05:39 - 2012-04-28 09:58 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 05:39 - 2012-04-28 09:58 - 00003822 ____C () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 18:11 - 2014-02-20 18:11 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\Marmiko IT-Solutions GmbH
2014-02-20 18:11 - 2014-02-20 18:11 - 00000000 ___DC () C:\Users\Georg\AppData\Local\Marmiko IT-Solutions GmbH
2014-02-20 18:11 - 2012-08-16 12:28 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\Mozilla
2014-02-20 09:58 - 2012-10-31 10:27 - 00002011 ____C () C:\Users\Public\Desktop\Live Update 5.lnk
2014-02-19 12:11 - 2012-04-28 09:26 - 00005100 ____C () C:\Users\Georg\AppData\Roaming\wklnhst.dat
2014-02-17 07:32 - 2013-08-15 12:04 - 00000000 ___DC () C:\Windows\system32\MRT
2014-02-17 07:31 - 2012-04-27 20:26 - 88567024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-16 14:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-16 09:00 - 2012-05-16 00:14 - 00004104 ____C () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-16 09:00 - 2012-05-16 00:14 - 00003852 ____C () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-14 11:00 - 2014-02-22 09:24 - 00131576 ____C (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-14 11:00 - 2014-02-22 09:24 - 00108440 ____C (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-14 11:00 - 2014-02-22 09:24 - 00028600 ____C (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-12 17:20 - 2014-02-12 16:51 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 17:20 - 2014-02-12 16:51 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 17:20 - 2014-02-12 16:51 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 17:20 - 2014-02-12 16:51 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 17:20 - 2014-02-12 16:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 17:20 - 2014-02-12 16:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 17:20 - 2014-02-12 16:50 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 17:20 - 2014-02-12 16:50 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 17:20 - 2014-02-12 16:50 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 17:20 - 2014-02-12 16:50 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 17:20 - 2014-02-12 16:50 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 17:20 - 2014-02-12 16:50 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 17:20 - 2014-02-12 16:50 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 17:20 - 2014-02-12 16:50 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 17:20 - 2014-02-12 16:50 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 17:17 - 2014-02-12 17:17 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 17:17 - 2014-02-12 17:17 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 17:17 - 2014-02-12 17:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 17:17 - 2014-02-12 17:16 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 17:17 - 2014-02-12 17:16 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 17:17 - 2014-02-12 17:16 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 17:17 - 2014-02-12 17:16 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 17:17 - 2014-02-12 17:16 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 17:17 - 2014-02-12 17:16 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 17:17 - 2014-02-12 17:16 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 17:17 - 2014-02-12 17:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 17:17 - 2014-02-12 16:50 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-12 17:17 - 2014-02-12 16:50 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 17:17 - 2014-02-12 16:50 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 17:17 - 2014-02-12 16:50 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-05 09:55 - 2014-02-05 09:55 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\SystemMn
2014-01-24 14:35 - 2012-05-16 00:14 - 00000000 ___DC () C:\Users\Georg\AppData\Local\Google
2014-01-24 10:58 - 2014-01-24 10:58 - 00000000 ___DC () C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-01-24 09:31 - 2009-07-14 06:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
Some content of TEMP:
====================
C:\Users\Georg\AppData\Local\Temp\avgnt.exe
C:\Users\Georg79\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-18 18:12
==================== End Of Log ============================
--- --- ---
--- --- ---
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-02-2014 01
Ran by Georg79 at 2014-02-23 08:19:03
Running from C:\Users\Georg79\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 13.10.100.30604 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.873.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.0604.1838.31590 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{A6F936DD-DD80-7EA6-0AFC-5CA0558D0BB7}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2013.0604.1838.31590 - Ihr Firmenname) Hidden
AMD Media Foundation Decoders (Version: 1.0.80604.1838 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.12 - Advanced Micro Devices, Inc.) Hidden
AudioGenie (HKLM-x32\...\AudioGenie_is1) (Version: - msi, Inc.)
AutoBoot (HKLM-x32\...\AutoBoot_is1) (Version: - MSI, Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.338 - Avira)
BIOS Code Unlocked Technology (HKLM-x32\...\{D9B5FC5B-815A-4EE9-B7BF-08165F2A6A36}_is1) (Version: 1.0.106 - MSI)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0604.1838.31590 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0604.1838.31590 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0604.1838.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0604.1837.31590 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0604.1838.31590 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.21 - Piriform)
CLICKBIOSII (HKLM-x32\...\{EBCB111F-4907-4B28-BD03-F5BD901106D2}_is1) (Version: 1.0.095 - MSI)
ControlCenter (HKLM-x32\...\{698B7D8B-0F43-4A19-8B9B-47F1EFEB858F}_is1) (Version: 2.2.097 - MSI)
DIE SIEDLER - Aufstieg eines Königreichs (HKLM-x32\...\{D3F80A98-05AB-4D8C-9272-766CCFA6A48D}) (Version: 1.00.0000 - Ubisoft)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-312 313 315 Series Printer Uninstall (HKLM\...\EPSON XP-312 313 315 Series) (Version: - SEIKO EPSON Corporation)
EPSON-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.31.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
Far Cry 2 (HKLM-x32\...\{F2835483-37F2-4123-B4FE-0E77D58447F2}) (Version: 1.03.00 - Ubisoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 18.0.1025.142 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4805.320 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
Gothic 3 (HKLM-x32\...\{17BADF87-3597-46FE-8D74-69C4FA78883E}) (Version: 1.0.0 - JoWood)
IMinent Toolbar (HKLM-x32\...\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}) (Version: 3.26.0 - IMinent) <==== ATTENTION
Inkscape 0.48.4 (HKLM-x32\...\Inkscape) (Version: 0.48.4 - )
Java 7 Update 10 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417010FF}) (Version: 7.0.100 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Live Update 5 (HKLM-x32\...\{E8BAA541-D161-4C9B-85BF-01F05A56BD7F}}_is1) (Version: 5.0.113 - MSI)
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.0.0.1036 - Marvell)
Marvell Network Configuration Utility (HKLM-x32\...\Marvell Network Configuration Utility) (Version: 11.12.6.3 - Marvell)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Corporation (Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft Corporation (x32 Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0 - Microsoft Corporation) Hidden
Microsoft IntelliType Pro 8.2 (HKLM\...\Microsoft IntelliType Pro 8.2) (Version: 8.20.469.0 - Microsoft Corporation)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0 - Microsoft Corporation) Hidden
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Works (HKLM-x32\...\{B26E3B0D-C2FA-4370-B068-7C476766F029}) (Version: 08.04.0702 - Microsoft Corporation)
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
Oblivion (HKLM-x32\...\{35CB6715-41F8-4F99-8881-6FC75BF054B0}) (Version: 1.00.0000 - Bethesda Softworks)
Opera 12.16 (HKLM-x32\...\Opera 12.16.1860) (Version: 12.16.1860 - Opera Software ASA)
PC Camer@N (HKLM-x32\...\InstallShield_{68AD7668-834F-49BC-94AB-28F94A5D93D5}) (Version: 0.1.3.8 - Teconet)
PC Camer@N (x32 Version: 0.1.3.8 - Teconet) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6959 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
ScanToWeb (HKLM-x32\...\{EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}) (Version: - )
Software Updater (HKLM-x32\...\{A3B308B9-BE96-4334-816F-3D82B19A7DE2}) (Version: 4.1.7 - SEIKO EPSON CORPORATION)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.012 - MSI)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Teaming Genie (HKLM-x32\...\{AF9B9CCF-D1B4-44B4-A030-BFCF5686AA5E}_is1) (Version: 1.0.1.2 - MSI)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2836939v3) (Version: 3 - Microsoft Corporation)
VideoGenie (HKLM-x32\...\{FC54FD8D-789C-406D-BB88-F7C4421B7E83}_is1) (Version: 1.0.0.12 - MSI)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
X-COM: Apocalypse (HKLM-x32\...\Steam App 7660) (Version: - MicroProse)
X-COM: Enforcer (HKLM-x32\...\Steam App 7770) (Version: - MicroProse)
X-COM: Interceptor (HKLM-x32\...\Steam App 7730) (Version: - MicroProse)
X-COM: Terror from the Deep (HKLM-x32\...\Steam App 7650) (Version: - MicroProse)
X-COM: UFO Defense (HKLM-x32\...\Steam App 7760) (Version: - MicroProse)
Z95 for Windows XP 1.1 (HKLM-x32\...\{C087BBE8-42C9-43C2-A72C-E2319D7822B3}) (Version: 1.1.0 - YoMommaNL)
==================== Restore Points =========================
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {14731523-B0F6-4160-A2DB-2F0FD7A8B66C} - System32\Tasks\{534C7205-1FD2-408D-AADE-CAAD262776F5} => C:\Users\Georg\Downloads\UFO.exe
Task: {28540D90-627D-48DF-BA05-A41662FEB2C9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-16] (Google Inc.)
Task: {6A72D2D5-1A1F-4F95-8F05-9E135C0F6EB9} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2350303338-2735705362-4146805170-1000
Task: {747F877D-737A-41B6-B26C-746AEB2FE78D} - System32\Tasks\EPSON XP-312 313 315 Series Invitation {BE9575E0-9494-44C2-A90E-F7AC683EBCD9} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {8C3C2E1E-6011-4350-8107-5043504F60B1} - System32\Tasks\Core Temp Autostart Georg => C:\Program Files\Core Temp\Core Temp.exe
Task: {8FCED4A4-E005-4C18-9615-D9B1DACB95AB} - System32\Tasks\{F3D91445-C709-4195-9D29-2EEDAF7AAC40} => C:\Program Files (x86)\Bitmap Brothers\Z\winz.exe [2001-03-23] (The Bitmap Brothers)
Task: {A8609A4E-5D19-4FDF-8B13-B6855971B8C9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-16] (Google Inc.)
Task: {AFE0D7D1-D962-4A0A-8B9B-F525C177BA49} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2350303338-2735705362-4146805170-1009
Task: {B2E0A223-6429-475B-977F-3223B56D619E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-07-24] (Piriform Ltd)
Task: {CAAC1F90-A817-4B6A-9C45-176A60A093AF} - System32\Tasks\EPSON XP-312 313 315 Series Update {BE9575E0-9494-44C2-A90E-F7AC683EBCD9} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {ED1540BD-A6E9-4235-B249-550E81F92963} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-312 313 315 Series Invitation {BE9575E0-9494-44C2-A90E-F7AC683EBCD9}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE
Task: C:\Windows\Tasks\EPSON XP-312 313 315 Series Update {BE9575E0-9494-44C2-A90E-F7AC683EBCD9}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-06-04 18:40 - 2013-06-04 18:40 - 00210944 ____C () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-09-23 13:53 - 2012-09-23 13:53 - 00748544 ____C () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-09-23 13:53 - 2012-09-23 13:53 - 03645952 ____C () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-01-01 17:23 - 2014-01-01 17:23 - 00066872 ____C () C:\Windows\SysWOW64\PnkBstrA.exe
2014-02-05 09:01 - 2014-02-05 09:01 - 00149504 ____C () C:\Users\Georg79\AppData\Roaming\SystemMn\bin\SystemMn.exe
2013-06-04 18:40 - 2013-06-04 18:40 - 00103424 ____C () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-02-22 09:24 - 2014-02-14 11:00 - 00394808 ____C () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.JetPropStore> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Die Eigenschaftenspeicherdaten können von Windows Search nicht geladen werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Die Inhaltsindexdatenbank ist fehlerhaft. (HRESULT : 0xc0041800) (0xc0041800)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=4700} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service) (User: )
Description: Der Jet-Eigenschaftenspeicher kann von Windows Search nicht geöffnet werden.
Details:
0x%08x (0xc0041800 - Die Inhaltsindexdatenbank ist fehlerhaft. (HRESULT : 0xc0041800))
Error: (02/22/2014 03:34:59 PM) (Source: ESENT) (User: )
Description: Windows (3528) Windows: Fehler -1811 beim Öffnen von Protokolldatei C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00026.log.
System errors:
=============
Error: (02/23/2014 08:02:43 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (02/23/2014 08:02:43 AM) (Source: Application Popup) (User: )
Description: Treiber atksgt.sys konnte nicht geladen werden.
Error: (02/23/2014 08:02:43 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/23/2014 08:02:43 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Marvell Yukon Service" wurde mit folgendem Fehler beendet:
%%126
Error: (02/22/2014 07:10:28 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (02/22/2014 07:10:28 PM) (Source: Application Popup) (User: )
Description: Treiber atksgt.sys konnte nicht geladen werden.
Error: (02/22/2014 07:10:28 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/22/2014 07:10:27 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Marvell Yukon Service" wurde mit folgendem Fehler beendet:
%%126
Error: (02/22/2014 03:34:59 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/22/2014 03:34:59 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.
Microsoft Office Sessions:
=========================
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Die Inhaltsindexdatenbank ist fehlerhaft. (HRESULT : 0xc0041800) (0xc0041800)
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
4700
Error: (02/22/2014 03:34:59 PM) (Source: Windows Search Service)(User: )
Description:
Details:
0x%08x (0xc0041800 - Die Inhaltsindexdatenbank ist fehlerhaft. (HRESULT : 0xc0041800))
Error: (02/22/2014 03:34:59 PM) (Source: ESENT)(User: )
Description: Windows3528Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00026.log-1811
CodeIntegrity Errors:
===================================
Date: 2013-09-01 11:54:44.591
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:54:44.544
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:53:41.726
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:53:41.666
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:50:07.566
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:50:07.504
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:49:53.270
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:49:53.208
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:48:22.658
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-01 11:48:22.611
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\MBWrp64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 20%
Total physical RAM: 8177.06 MB
Available physical RAM: 6477.82 MB
Total Pagefile: 16352.3 MB
Available Pagefile: 14455.09 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:55.9 GB) (Free:18.6 GB) NTFS
Drive d: (Spiele) (Fixed) (Total:465.76 GB) (Free:455.51 GB) NTFS
Drive g: (Privat) (Fixed) (Total:186.31 GB) (Free:158.2 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 466 GB) (Disk ID: 8060D8CA)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 186 GB) (Disk ID: F397F397)
Partition: GPT Partition Type.
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 56 GB) (Disk ID: F5DF0472)
Partition: GPT Partition Type.
FRST 32-Bit | FRST 64-Bit
So funktioniert es:
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
SecurityCheck und:
