cauchemar | 01.05.2014 16:36 | FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-05-2014
Ran by cevin (administrator) on CEVIN-PC on 01-05-2014 16:41:33
Running from C:\Users\cevin\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Egis Technology Inc.) C:\Program Files (x86)\Acer Bio Protection\CompPtcVUI.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(Egis Technology Inc.) C:\Program Files (x86)\Acer Bio Protection\BASVC.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
() C:\Program Files (x86)\Join Air\AssistantServices.exe
(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [295936 2009-05-22] (Alps Electric Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [189480 2014-02-06] (Geek Software GmbH)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x9E1AA96A9BC2CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE370
SearchScopes: HKCU - {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://search.yahoo.com/search?p={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\cevin\AppData\Roaming\Mozilla\Firefox\Profiles\0yzj76kz.default
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Homepage: hxxp://www.gayromeo.com/
FF NetworkProxy: "ftp", "46.38.63.77"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "46.38.63.77"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "46.38.63.77"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "46.38.63.77"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @real.com/nppl3260;version=15.0.5.109 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=15.0.5.109 - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.5.109 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.5.109 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=15.0.5.109 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 - C:\Program Files (x86)\Mozilla Firefox\plugins\npyaxmpb.dll (Yahoo! Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\cevin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprjplug.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npyaxmpb.dll (Yahoo! Inc.)
FF SearchPlugin: C:\Users\cevin\AppData\Roaming\Mozilla\Firefox\Profiles\0yzj76kz.default\searchplugins\NJuNeXaeLAqLGUfGTsla
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Block site - C:\Users\cevin\AppData\Roaming\Mozilla\Firefox\Profiles\0yzj76kz.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc} [2013-12-12]
FF Extension: Adblock Plus - C:\Users\cevin\AppData\Roaming\Mozilla\Firefox\Profiles\0yzj76kz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-05-20]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-07-05]
FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF HKLM-x32\...\Firefox\Extensions: [{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: No Name - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-12-28]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-18] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-02-18] (Avira Operations GmbH & Co. KG)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [63600 2013-12-17] (CyberGhost S.R.L)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [796192 2009-08-18] (Acer Incorporated)
R2 IGBASVC; c:\Program Files (x86)\Acer Bio Protection\BASVC.exe [3450368 2009-08-06] (Egis Technology Inc.)
R2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [311592 2009-08-07] (Egis Technology Inc.)
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [253952 2009-07-10] (Acer Incorporated)
R2 UI Assistant Service; C:\Program Files (x86)\Join Air\AssistantServices.exe [247152 2010-04-27] ()
==================== Drivers (Whitelisted) ====================
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2010-04-03] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)
R3 hidshim; C:\Windows\System32\DRIVERS\hidshim.sys [6656 2009-07-21] (Windows (R) Win 7 DDK provider)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2010-04-03] ()
S3 MODRC; C:\Windows\System32\DRIVERS\modrc.sys [24272 2010-11-19] (DiBcom S.A.)
S3 nmwcdcx64; C:\Windows\System32\drivers\ccdcmbox64.sys [25088 2010-02-26] (Nokia)
S3 nmwcdx64; C:\Windows\System32\drivers\ccdcmbx64.sys [19456 2010-02-26] (Nokia)
R3 nuvotonhidgeneric; C:\Windows\System32\DRIVERS\nuvotonhidgeneric.sys [25088 2009-07-21] (Nuvoton Technology Corporation)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltx64j.sys [9216 2010-02-26] (Nokia)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\000.fcl [146928 2009-08-04] (CyberLink Corp.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 mod7700; system32\DRIVERS\mod7700.sys [X]
S3 PCDSRVC{6DD8E36B-4C656622-06020101}_0; \??\c:\users\cevin\appdata\local\temp\cyzwx_.9lzgs\pcdrdiag\bin\pcdsrvc_x64.pkms [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-01 16:41 - 2014-05-01 16:41 - 00014238 _____ () C:\Users\cevin\Downloads\FRST.txt
2014-05-01 16:40 - 2014-05-01 16:40 - 02061824 _____ (Farbar) C:\Users\cevin\Downloads\FRST64.exe
2014-05-01 16:00 - 2014-05-01 16:00 - 00262144 _____ () C:\Windows\Minidump\050114-30544-01.dmp
2014-05-01 09:28 - 2014-05-01 09:29 - 00000000 ____D () C:\Users\cevin\AppData\Local\{8E7C194D-85E3-4878-B8E1-86FC14DF4D85}
2014-04-30 22:45 - 2014-04-30 22:45 - 00262144 _____ () C:\Windows\Minidump\043014-41683-01.dmp
2014-04-30 21:41 - 2014-04-30 21:41 - 00000000 ____D () C:\Users\cevin\AppData\Local\{F83ABCDD-CD30-43A6-A006-E315B8105F75}
2014-04-30 09:40 - 2014-04-30 09:41 - 00000000 ____D () C:\Users\cevin\AppData\Local\{2EE1E383-32D7-4759-9EEF-14BD31102BC9}
2014-04-29 11:01 - 2014-04-29 11:01 - 17931952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-04-29 10:01 - 2014-04-29 10:02 - 00000000 ____D () C:\Users\cevin\AppData\Local\{C4803997-CAEE-410A-ACB7-797EE435F086}
2014-04-28 11:33 - 2014-04-28 11:33 - 00000000 ____D () C:\Users\cevin\AppData\Local\{51209550-423B-4E6A-B98C-28FA4583FF90}
2014-04-26 22:01 - 2014-04-26 22:02 - 00000000 ____D () C:\Users\cevin\AppData\Local\{219FADB8-9156-42F4-B559-51B6452F04E3}
2014-04-26 10:01 - 2014-04-26 10:01 - 00000000 ____D () C:\Users\cevin\AppData\Local\{C80B567D-CDDA-439D-BA80-3C15B004CB8A}
2014-04-25 21:59 - 2014-04-25 22:00 - 00000000 ____D () C:\Users\cevin\AppData\Local\{4D3FEC67-7A45-405E-B79A-B31800B3EBAC}
2014-04-25 09:57 - 2014-04-25 09:57 - 00000000 ____D () C:\Users\cevin\AppData\Local\{647E0AA6-9871-4173-B6AB-52D8163D40CA}
2014-04-24 23:03 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-24 17:23 - 2014-04-24 17:23 - 22913908 _____ () C:\Users\cevin\Downloads\torbrowser-install-3.5.4_en-US.exe
2014-04-24 10:08 - 2014-04-24 10:08 - 00291808 _____ () C:\Windows\Minidump\042414-31106-01.dmp
2014-04-24 08:18 - 2014-04-24 08:18 - 00000000 ____D () C:\Users\cevin\AppData\Local\{1CDF415F-9E57-4354-BD64-EBAEF7CA401D}
2014-04-23 17:37 - 2014-04-23 17:37 - 00000000 ____D () C:\Users\cevin\AppData\Local\{B2C63195-17EE-4B78-A120-1DBA4EEE82B3}
2014-04-22 23:39 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-04-22 23:16 - 2014-04-22 23:16 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-22 23:16 - 2014-04-22 23:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-22 23:16 - 2014-04-22 23:16 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-22 23:16 - 2014-04-22 23:16 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-22 23:16 - 2014-04-22 23:16 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-04-22 23:16 - 2014-04-22 23:16 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-04-22 23:16 - 2014-04-22 23:16 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-04-22 23:16 - 2014-04-22 23:16 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-04-22 23:16 - 2014-04-22 23:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-04-22 23:16 - 2014-04-22 23:16 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-04-22 23:16 - 2014-04-22 23:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-22 20:54 - 2014-04-22 20:54 - 00000000 ____D () C:\Users\cevin\AppData\Local\{A7CF326D-0D5D-4D50-B618-BAA075776CCA}
2014-04-19 22:18 - 2014-04-19 22:19 - 00000000 ____D () C:\Users\cevin\AppData\Local\{4AF01353-F415-4E75-8022-17A57733B829}
2014-04-18 20:50 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-18 20:49 - 2014-04-18 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-18 20:49 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-18 20:49 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-18 20:49 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-18 20:44 - 2014-04-18 20:49 - 00004161 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-16 22:17 - 2014-04-16 22:17 - 00000000 ____D () C:\Users\cevin\AppData\Local\{1FF09D06-9222-4AD6-AE1C-AC3D3B4FA0D4}
2014-04-16 10:16 - 2014-04-16 10:16 - 00000000 ____D () C:\Users\cevin\AppData\Local\{939216EF-AED2-4F6C-AB23-725D20F8375C}
2014-04-15 22:07 - 2014-04-15 22:07 - 00000000 ____D () C:\Users\cevin\AppData\Local\{D8E394AE-62A8-4902-BFD8-28D70AE70499}
2014-04-15 10:06 - 2014-04-15 10:06 - 00000000 ____D () C:\Users\cevin\AppData\Local\{191CA0C5-0C27-475D-A102-F519F0C972EC}
2014-04-14 19:38 - 2014-04-14 19:38 - 00000000 ____D () C:\Users\cevin\AppData\Local\{1E0E9577-9689-40AF-9E62-143F332FA06F}
2014-04-13 21:01 - 2014-04-13 21:01 - 00021323 _____ () C:\Users\cevin\Documents\anke.odt
2014-04-13 20:54 - 2014-04-13 20:55 - 00000000 ____D () C:\Users\cevin\AppData\Local\{A8A28B41-4728-4611-B854-ADD56E6742A4}
2014-04-12 22:38 - 2014-04-12 22:38 - 00000000 ____D () C:\Users\cevin\AppData\Local\{90F77011-678E-4EB7-8540-9240F1F9FAA2}
2014-04-11 08:37 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-11 08:37 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-11 08:37 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-11 08:37 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-11 08:37 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-11 08:33 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-11 08:33 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-11 08:33 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-11 08:33 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-11 08:33 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-11 08:33 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-11 08:33 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-11 08:33 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-11 08:33 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-11 08:33 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-11 08:33 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-11 08:33 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-11 08:13 - 2014-04-11 08:13 - 00000000 ____D () C:\Users\cevin\AppData\Local\{2A9CAC4B-9968-4258-8079-6EB828F46E92}
2014-04-10 20:36 - 2014-04-10 20:36 - 00000000 ____D () C:\Users\cevin\AppData\Local\{BE876C52-1CA1-4F98-883B-A9C64B088FBB}
2014-04-10 08:35 - 2014-04-10 08:35 - 00000000 ____D () C:\Users\cevin\AppData\Local\{A2880368-C63D-48D0-9AD1-60372B1FB3E2}
2014-04-09 22:14 - 2014-04-09 22:14 - 00291808 _____ () C:\Windows\Minidump\040914-52151-01.dmp
2014-04-09 19:43 - 2014-04-09 19:44 - 00000000 ____D () C:\Users\cevin\AppData\Local\{5BC02F5B-55C8-4C40-88D2-931C5C1A4700}
2014-04-08 20:55 - 2014-04-08 20:56 - 00000000 ____D () C:\Users\cevin\AppData\Local\{1564957C-EAA6-49BF-93C6-B97AFB373BF5}
2014-04-08 08:32 - 2014-04-08 08:32 - 00000000 ____D () C:\Users\cevin\AppData\Local\{A4A0898A-D069-48B5-8301-8C9D74344BC7}
2014-04-07 19:04 - 2014-04-07 19:05 - 00000000 ____D () C:\Users\cevin\AppData\Local\{7FC58FB5-9DB7-4629-B017-A7A81F5CB04A}
2014-04-07 09:26 - 2014-04-13 11:24 - 00044261 _____ () C:\Users\cevin\Documents\aaaaaaaaaaaaaaaaaaa.odt
2014-04-06 10:03 - 2014-04-06 10:03 - 00000000 ____D () C:\Users\cevin\AppData\Local\{D406E11D-1483-4AD9-B452-9729370BD100}
2014-04-05 09:57 - 2014-04-05 09:58 - 00000000 ____D () C:\Users\cevin\AppData\Local\{269DB98A-60D4-46EA-BC2E-4CC87BC6DFC0}
2014-04-04 21:57 - 2014-04-04 21:57 - 00000000 ____D () C:\Users\cevin\AppData\Local\{93E3FB2A-ABE0-4E49-B11B-49F52B5D9AE4}
2014-04-02 11:17 - 2014-04-02 11:17 - 00000000 ____D () C:\Users\cevin\AppData\Local\{024C147E-0C6E-424F-A095-3F15B5641DD4}
2014-04-02 11:14 - 2014-04-02 11:20 - 00026801 _____ () C:\Users\cevin\Documents\sucht im Alter.odt
2014-04-02 11:14 - 2014-04-02 11:14 - 00000000 ____D () C:\Users\cevin\AppData\Local\PDF24
2014-04-02 10:10 - 2014-04-11 08:09 - 00000000 ____D () C:\Program Files (x86)\PDF24
2014-04-02 10:10 - 2014-04-11 08:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2014-04-02 10:10 - 2014-04-02 10:10 - 00001043 _____ () C:\Users\Public\Desktop\PDF24 Creator.lnk
2014-04-02 10:10 - 2014-04-02 10:10 - 00001023 _____ () C:\Users\Public\Desktop\PDF24 Fax.lnk
2014-04-02 10:00 - 2014-04-02 10:00 - 00001243 _____ () C:\Users\Public\Desktop\Registry Cleaner.lnk
2014-04-02 10:00 - 2014-04-02 10:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SuperEasy Software
2014-04-02 10:00 - 2014-04-02 10:00 - 00000000 ____D () C:\Program Files (x86)\SuperEasy Software
2014-04-01 22:26 - 2014-04-01 22:26 - 00000000 ____D () C:\Users\cevin\AppData\Local\{5BD6A793-B5C8-4532-8A7B-9BF84BE02017}
2014-04-01 10:26 - 2014-04-01 10:26 - 00000000 ____D () C:\Users\cevin\AppData\Local\{4EEE028B-E132-40F4-B737-113B1D2863E2}
==================== One Month Modified Files and Folders =======
2014-05-01 16:42 - 2014-05-01 16:41 - 00014238 _____ () C:\Users\cevin\Downloads\FRST.txt
2014-05-01 16:41 - 2013-12-15 12:10 - 00000000 ____D () C:\FRST
2014-05-01 16:40 - 2014-05-01 16:40 - 02061824 _____ (Farbar) C:\Users\cevin\Downloads\FRST64.exe
2014-05-01 16:12 - 2009-07-14 06:45 - 00017376 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-01 16:12 - 2009-07-14 06:45 - 00017376 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-01 16:08 - 2010-01-26 17:30 - 02016304 _____ () C:\Windows\WindowsUpdate.log
2014-05-01 16:00 - 2014-05-01 16:00 - 00262144 _____ () C:\Windows\Minidump\050114-30544-01.dmp
2014-05-01 16:00 - 2010-03-20 12:00 - 291261960 _____ () C:\Windows\MEMORY.DMP
2014-05-01 16:00 - 2010-03-20 12:00 - 00000000 ____D () C:\Windows\Minidump
2014-05-01 16:00 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-01 16:00 - 2009-07-14 06:51 - 00208197 _____ () C:\Windows\setupact.log
2014-05-01 14:58 - 2013-06-28 23:21 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-01 09:29 - 2014-05-01 09:28 - 00000000 ____D () C:\Users\cevin\AppData\Local\{8E7C194D-85E3-4878-B8E1-86FC14DF4D85}
2014-05-01 08:44 - 2012-05-26 21:25 - 00000000 ____D () C:\Users\cevin\AppData\Roaming\vlc
2014-05-01 08:44 - 2010-07-15 17:46 - 00000000 ____D () C:\Program Files (x86)\Join Air
2014-05-01 08:44 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-05-01 08:43 - 2010-04-12 14:26 - 00000000 ____D () C:\ProgramData\Real
2014-04-30 22:45 - 2014-04-30 22:45 - 00262144 _____ () C:\Windows\Minidump\043014-41683-01.dmp
2014-04-30 22:45 - 2010-03-08 21:47 - 00000000 ____D () C:\Users\cevin
2014-04-30 21:41 - 2014-04-30 21:41 - 00000000 ____D () C:\Users\cevin\AppData\Local\{F83ABCDD-CD30-43A6-A006-E315B8105F75}
2014-04-30 09:41 - 2014-04-30 09:40 - 00000000 ____D () C:\Users\cevin\AppData\Local\{2EE1E383-32D7-4759-9EEF-14BD31102BC9}
2014-04-29 11:05 - 2013-06-28 23:21 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-29 11:02 - 2013-05-05 20:44 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-29 11:02 - 2013-05-05 20:44 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-29 11:01 - 2014-04-29 11:01 - 17931952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-04-29 10:02 - 2014-04-29 10:01 - 00000000 ____D () C:\Users\cevin\AppData\Local\{C4803997-CAEE-410A-ACB7-797EE435F086}
2014-04-28 19:51 - 2010-03-09 23:58 - 00000000 ____D () C:\Users\cevin\AppData\Roaming\dvdcss
2014-04-28 19:12 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-28 11:33 - 2014-04-28 11:33 - 00000000 ____D () C:\Users\cevin\AppData\Local\{51209550-423B-4E6A-B98C-28FA4583FF90}
2014-04-26 22:02 - 2014-04-26 22:01 - 00000000 ____D () C:\Users\cevin\AppData\Local\{219FADB8-9156-42F4-B559-51B6452F04E3}
2014-04-26 10:01 - 2014-04-26 10:01 - 00000000 ____D () C:\Users\cevin\AppData\Local\{C80B567D-CDDA-439D-BA80-3C15B004CB8A}
2014-04-25 22:00 - 2014-04-25 21:59 - 00000000 ____D () C:\Users\cevin\AppData\Local\{4D3FEC67-7A45-405E-B79A-B31800B3EBAC}
2014-04-25 09:57 - 2014-04-25 09:57 - 00000000 ____D () C:\Users\cevin\AppData\Local\{647E0AA6-9871-4173-B6AB-52D8163D40CA}
2014-04-24 17:23 - 2014-04-24 17:23 - 22913908 _____ () C:\Users\cevin\Downloads\torbrowser-install-3.5.4_en-US.exe
2014-04-24 10:08 - 2014-04-24 10:08 - 00291808 _____ () C:\Windows\Minidump\042414-31106-01.dmp
2014-04-24 08:18 - 2014-04-24 08:18 - 00000000 ____D () C:\Users\cevin\AppData\Local\{1CDF415F-9E57-4354-BD64-EBAEF7CA401D}
2014-04-23 20:30 - 2013-07-05 09:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-23 17:37 - 2014-04-23 17:37 - 00000000 ____D () C:\Users\cevin\AppData\Local\{B2C63195-17EE-4B78-A120-1DBA4EEE82B3}
2014-04-23 17:29 - 2011-09-28 17:13 - 00001425 _____ () C:\Users\cevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-04-23 00:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-22 23:39 - 2013-12-04 00:02 - 00694635 _____ () C:\Windows\IE11_main.log
2014-04-22 23:16 - 2014-04-22 23:16 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-22 23:16 - 2014-04-22 23:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-22 23:16 - 2014-04-22 23:16 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-22 23:16 - 2014-04-22 23:16 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-22 23:16 - 2014-04-22 23:16 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-04-22 23:16 - 2014-04-22 23:16 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-04-22 23:16 - 2014-04-22 23:16 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-04-22 23:16 - 2014-04-22 23:16 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-04-22 23:16 - 2014-04-22 23:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-04-22 23:16 - 2014-04-22 23:16 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-04-22 23:16 - 2014-04-22 23:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-04-22 23:16 - 2014-04-22 23:16 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-04-22 23:16 - 2014-04-22 23:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-22 20:54 - 2014-04-22 20:54 - 00000000 ____D () C:\Users\cevin\AppData\Local\{A7CF326D-0D5D-4D50-B618-BAA075776CCA}
2014-04-22 20:43 - 2009-08-22 10:34 - 01511330 _____ () C:\Windows\PFRO.log
2014-04-19 22:19 - 2014-04-19 22:18 - 00000000 ____D () C:\Users\cevin\AppData\Local\{4AF01353-F415-4E75-8022-17A57733B829}
2014-04-18 20:50 - 2013-10-20 10:49 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-18 20:49 - 2014-04-18 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-18 20:49 - 2014-04-18 20:44 - 00004161 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-18 20:49 - 2010-04-10 10:21 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-16 22:17 - 2014-04-16 22:17 - 00000000 ____D () C:\Users\cevin\AppData\Local\{1FF09D06-9222-4AD6-AE1C-AC3D3B4FA0D4}
2014-04-16 10:16 - 2014-04-16 10:16 - 00000000 ____D () C:\Users\cevin\AppData\Local\{939216EF-AED2-4F6C-AB23-725D20F8375C}
2014-04-15 22:07 - 2014-04-15 22:07 - 00000000 ____D () C:\Users\cevin\AppData\Local\{D8E394AE-62A8-4902-BFD8-28D70AE70499}
2014-04-15 10:06 - 2014-04-15 10:06 - 00000000 ____D () C:\Users\cevin\AppData\Local\{191CA0C5-0C27-475D-A102-F519F0C972EC}
2014-04-14 20:13 - 2014-04-18 20:49 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-04-18 20:50 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-04-18 20:49 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-04-18 20:49 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-14 19:41 - 2010-01-27 02:23 - 00699682 _____ () C:\Windows\system32\perfh007.dat
2014-04-14 19:41 - 2010-01-27 02:23 - 00149790 _____ () C:\Windows\system32\perfc007.dat
2014-04-14 19:41 - 2009-07-14 07:13 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-14 19:38 - 2014-04-14 19:38 - 00000000 ____D () C:\Users\cevin\AppData\Local\{1E0E9577-9689-40AF-9E62-143F332FA06F}
2014-04-13 21:01 - 2014-04-13 21:01 - 00021323 _____ () C:\Users\cevin\Documents\anke.odt
2014-04-13 20:55 - 2014-04-13 20:54 - 00000000 ____D () C:\Users\cevin\AppData\Local\{A8A28B41-4728-4611-B854-ADD56E6742A4}
2014-04-13 11:24 - 2014-04-07 09:26 - 00044261 _____ () C:\Users\cevin\Documents\aaaaaaaaaaaaaaaaaaa.odt
2014-04-12 22:38 - 2014-04-12 22:38 - 00000000 ____D () C:\Users\cevin\AppData\Local\{90F77011-678E-4EB7-8540-9240F1F9FAA2}
2014-04-11 23:14 - 2013-08-15 10:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 23:05 - 2010-05-23 11:48 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-11 08:13 - 2014-04-11 08:13 - 00000000 ____D () C:\Users\cevin\AppData\Local\{2A9CAC4B-9968-4258-8079-6EB828F46E92}
2014-04-11 08:09 - 2014-04-02 10:10 - 00000000 ____D () C:\Program Files (x86)\PDF24
2014-04-11 08:07 - 2014-04-02 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2014-04-11 08:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-04-10 20:36 - 2014-04-10 20:36 - 00000000 ____D () C:\Users\cevin\AppData\Local\{BE876C52-1CA1-4F98-883B-A9C64B088FBB}
2014-04-10 08:35 - 2014-04-10 08:35 - 00000000 ____D () C:\Users\cevin\AppData\Local\{A2880368-C63D-48D0-9AD1-60372B1FB3E2}
2014-04-09 22:14 - 2014-04-09 22:14 - 00291808 _____ () C:\Windows\Minidump\040914-52151-01.dmp
2014-04-09 19:44 - 2014-04-09 19:43 - 00000000 ____D () C:\Users\cevin\AppData\Local\{5BC02F5B-55C8-4C40-88D2-931C5C1A4700}
2014-04-08 20:56 - 2014-04-08 20:55 - 00000000 ____D () C:\Users\cevin\AppData\Local\{1564957C-EAA6-49BF-93C6-B97AFB373BF5}
2014-04-08 08:32 - 2014-04-08 08:32 - 00000000 ____D () C:\Users\cevin\AppData\Local\{A4A0898A-D069-48B5-8301-8C9D74344BC7}
2014-04-07 19:05 - 2014-04-07 19:04 - 00000000 ____D () C:\Users\cevin\AppData\Local\{7FC58FB5-9DB7-4629-B017-A7A81F5CB04A}
2014-04-06 10:03 - 2014-04-06 10:03 - 00000000 ____D () C:\Users\cevin\AppData\Local\{D406E11D-1483-4AD9-B452-9729370BD100}
2014-04-05 09:58 - 2014-04-05 09:57 - 00000000 ____D () C:\Users\cevin\AppData\Local\{269DB98A-60D4-46EA-BC2E-4CC87BC6DFC0}
2014-04-04 21:57 - 2014-04-04 21:57 - 00000000 ____D () C:\Users\cevin\AppData\Local\{93E3FB2A-ABE0-4E49-B11B-49F52B5D9AE4}
2014-04-02 11:20 - 2014-04-02 11:14 - 00026801 _____ () C:\Users\cevin\Documents\sucht im Alter.odt
2014-04-02 11:17 - 2014-04-02 11:17 - 00000000 ____D () C:\Users\cevin\AppData\Local\{024C147E-0C6E-424F-A095-3F15B5641DD4}
2014-04-02 11:14 - 2014-04-02 11:14 - 00000000 ____D () C:\Users\cevin\AppData\Local\PDF24
2014-04-02 10:10 - 2014-04-02 10:10 - 00001043 _____ () C:\Users\Public\Desktop\PDF24 Creator.lnk
2014-04-02 10:10 - 2014-04-02 10:10 - 00001023 _____ () C:\Users\Public\Desktop\PDF24 Fax.lnk
2014-04-02 10:00 - 2014-04-02 10:00 - 00001243 _____ () C:\Users\Public\Desktop\Registry Cleaner.lnk
2014-04-02 10:00 - 2014-04-02 10:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SuperEasy Software
2014-04-02 10:00 - 2014-04-02 10:00 - 00000000 ____D () C:\Program Files (x86)\SuperEasy Software
2014-04-01 22:26 - 2014-04-01 22:26 - 00000000 ____D () C:\Users\cevin\AppData\Local\{5BD6A793-B5C8-4532-8A7B-9BF84BE02017}
2014-04-01 10:26 - 2014-04-01 10:26 - 00000000 ____D () C:\Users\cevin\AppData\Local\{4EEE028B-E132-40F4-B737-113B1D2863E2}
Some content of TEMP:
====================
C:\Users\cevin\AppData\Local\Temp\avgnt.exe
C:\Users\cevin\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\cevin\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\cevin\AppData\Local\Temp\stubhelper.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-12 20:44
==================== End Of Log ============================ --- --- ---
--- --- ---
FRST Additions Logfile: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-05-2014
Ran by cevin at 2014-05-01 17:34:17
Running from C:\Users\cevin\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.0.7025 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 3.0.7025 - CyberLink Corp.) Hidden
Acer Arcade Instant On (x32 Version: 3.0.19.0 - Acer) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.22 - NewTech Infosystems)
Acer Bio Protection (HKLM-x32\...\InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}) (Version: 6.1.48 - Egis Technology Inc.)
Acer Crystal Eye Webcam (HKLM-x32\...\{7760D94E-B1B5-40A0-9AA0-ABF942108755}) (Version: 5.2.7.1 - Suyin Optronics Corp)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3003 - Acer Incorporated)
Acer GridVista (HKLM-x32\...\GridVista) (Version: 3.01.0730 - Acer Inc.)
Acer PowerSmart Manager (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.06.3004 - Acer Incorporated)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.02.3004 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.3.0715 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3014 - Acer Incorporated)
Acer VCM (HKLM-x32\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3000 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.1280 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.8.0.1280 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.105.2015.1103 - Alps Electric)
AmIcoSingLun (HKLM-x32\...\InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}) (Version: 1.2.117.2 - Alcor Micro Co., Ltd.)
AmIcoSingLun (x32 Version: 1.2.117.2 - Alcor Micro Co., Ltd.) Hidden
Any Video Converter 3.0.5 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
AutoUpdate (HKLM-x32\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
Avidemux 2.5 (HKLM-x32\...\Avidemux 2.5) (Version: 2.5.4.6714 - )
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Backup Manager Basic (x32 Version: 2.0.0.22 - NewTech Infosystems) Hidden
Cultures - Die Entdeckung Vinlands (HKLM-x32\...\Cultures - Die Entdeckung Vinlands) (Version: - )
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DIE SIEDLER - Aufstieg eines Königreichs (HKLM-x32\...\{D3F80A98-05AB-4D8C-9272-766CCFA6A48D}) (Version: 1.00.0000 - Ubisoft)
DivX Codec (HKLM-x32\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.6.1 - DivX, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Fingerprint Solution (x32 Version: 6.1.48.0 - Egis Technology Inc.) Hidden
Free Audio CD Burner version 1.4.7 (HKLM-x32\...\Free Audio CD Burner_is1) (Version: - DVDVideoSoft Limited.)
Free Studio version 5.0.9 (HKLM-x32\...\Free Studio_is1) (Version: - DVDVideoSoft Limited.)
Free YouTube to MP3 Converter version 3.11.35.1031 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.11.35.1031 - DVDVideoSoft Ltd.)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3001 - Acer Incorporated)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JavaFX 2.1.0 (HKLM-x32\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation)
Join Air (HKLM-x32\...\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}) (Version: 1.0.0.2 - ZTE Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 2.0.01 - Acer Inc.)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.97 - LSI Corporation)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 11.300.05.11.52 - Huawei Technologies Co.,Ltd)
Mozilla Firefox 29.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0 (x86 de)) (Version: 29.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MyWinLocker (HKLM-x32\...\{68301905-2DEA-41CE-A4D4-E8B443B099BA}) (Version: 3.1.72.0 - Egis Technology Inc.)
Nokia Connectivity Cable Driver (HKLM-x32\...\{F1FDAA01-988C-423F-AC12-0D8F333943FD}) (Version: 7.1.31.0 - Nokia)
Nokia Photos (HKLM-x32\...\{0EABFEF6-6D10-4C12-8667-3029C481D355}) (Version: 1.6.434 - Nokia)
Nokia_Multimedia_Common_Components_2_5 (HKLM-x32\...\{70B31335-50EE-4834-8431-27412CDE62BD}) (Version: 2.6.86 - Nokia)
NTI Backup Now 5 (HKLM-x32\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.627 - NewTech Infosystems)
NTI Backup Now Standard (x32 Version: 5.1.2.627 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM-x32\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6619 - NewTech Infosystems)
NTI Media Maker 8 (x32 Version: 8.0.12.6619 - NewTech Infosystems) Hidden
Nuvoton EC Generic HID Driver (HKLM-x32\...\{92975DF9-EA36-4F36-A9AC-D412BC1D709E}) (Version: 8.80.1001 - Nuvoton Technology Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation)
OpenOffice.org 3.2 (HKLM-x32\...\{2217B0B4-35CB-48C6-B640-864DF2F30F99}) (Version: 3.2.9483 - OpenOffice.org)
PC Connectivity Solution (HKLM-x32\...\{29F563F4-8807-4496-8463-441EAA0E96AB}) (Version: 10.26.0.0 - Nokia)
PDF24 Creator 6.3.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 0.9.8 - Frank Heindörfer, Philip Chinery)
Pinnacle TVCenter Pro (HKLM-x32\...\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}) (Version: - )
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 15.0) (Version: 15.0.5 - RealNetworks)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5992 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version: - )
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
SuperEasy Registry Cleaner v.1.0.0 (HKLM-x32\...\{039BC111-5A43-697A-9CA2-620708F7243E}_is1) (Version: 1.0.0 - SuperEasy Software GmbH & Co. KG)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version: - )
VideoReDo/Plus Version 2.5.6.512 (HKLM-x32\...\VideoReDo-Plus_is1) (Version: - DRD Systems, Inc.)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
VLC media player 1.0.5 (HKLM-x32\...\VLC media player) (Version: 1.0.5 - VideoLAN Team)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3005 - Acer Incorporated)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9700 - Broadcom Corporation)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
==================== Restore Points =========================
23-04-2014 21:03:54 Windows Update
24-04-2014 21:00:57 Windows Update
29-04-2014 09:32:00 Windows Update
30-04-2014 20:53:56 Windows Update
==================== Hosts content: ==========================
2009-07-14 04:34 - 2012-05-21 16:15 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {008B9D5E-DEE6-4B8B-B94B-91AF27D0360A} - System32\Tasks\{2510881A-C286-46B6-BB47-A1FEBF49B2B3} => D:\INSTALL.EXE
Task: {0334744C-302B-4BA6-AF98-50F662BC759D} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {13D55BF7-D903-43D1-AEBC-A582AFCC80E6} - System32\Tasks\{7C174289-AC54-4204-8401-664D840DC567} => D:\INSTALL.EXE
Task: {18ECFAFA-CBAB-4D7F-81EA-67DD0E5A23CC} - System32\Tasks\{15323A13-A924-4530-8713-D820FB21075F} => D:\INSTALL.EXE
Task: {1F4AD571-E842-47E3-9243-CAFCA597CC91} - System32\Tasks\{0F048639-CC5D-495E-B4BE-B84A1D4B6D4F} => D:\INSTALL.EXE
Task: {33E11AB0-63A0-463A-BF2F-6618141143FF} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2298607320-3797335160-988972994-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-06-21] (RealNetworks, Inc.)
Task: {3EB19243-2643-4925-8975-D1BD38005617} - System32\Tasks\{422FB0DF-7756-4065-AA0B-6CBE5C96733C} => D:\INSTALL.EXE
Task: {5D42D24C-BBA2-42B5-9C3B-F342AA2BD192} - System32\Tasks\{A5279D94-B035-4F07-937F-FE40747EE84A} => C:\Program Files (x86)\Skype\\Phone\Skype.exe
Task: {67A527CA-D1D9-43A4-9DAB-23A8FA47BA26} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {77191CE1-6199-42B5-A004-17FDF64BF60A} - System32\Tasks\{6181DBC4-7575-45B2-8D47-3A80C9740BB8} => D:\INSTALL.EXE
Task: {82629502-80A4-4A89-B2C7-51D81BD275F1} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2298607320-3797335160-988972994-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-06-21] (RealNetworks, Inc.)
Task: {9B62A9B0-5210-4952-9905-CB3E2E112DBA} - System32\Tasks\{694DDE43-8754-45E9-BA8A-EED6A32AE7BE} => D:\INSTALL.EXE
Task: {9F0908A4-E17D-4462-925B-9D67D49F9632} - System32\Tasks\{21848FB2-70EB-4A2C-A367-3EA59F79EA6C} => D:\INSTALL.EXE
Task: {A0396206-0E8D-41A7-9BD4-105B8D2E20A1} - System32\Tasks\{2D24C3A8-3212-48E2-AF95-274562393698} => D:\INSTALL.EXE
Task: {A2FA4844-739D-4DBD-B9D5-168DE982AF78} - System32\Tasks\{C6CC65AA-B36A-45F6-BFE7-C17FA245CF86} => D:\INSTALL.EXE
Task: {A7BFB0C2-50FD-4AAD-9809-EBD2F7E4C7E5} - System32\Tasks\{C603D80B-52BB-4B40-8F03-1D612ABD3A5E} => D:\INSTALL.EXE
Task: {ACD66DD1-B6B0-47BF-9D9F-BAAAC015C91B} - System32\Tasks\{249CBBB6-A244-4FE9-AA61-5D2353E86459} => D:\INSTALL.EXE
Task: {B8D196A4-EE83-4E23-95DB-ECDE9430B049} - System32\Tasks\Installation App Launcher => C:\Program Files (x86)\Lexmark 3600-4600 Series\ezprint.exe
Task: {CAEFFC5C-9595-4D99-8E51-34DF30000D6C} - System32\Tasks\{8748D3EC-E8F3-4E6F-A427-81BB80C247D9} => D:\INSTALL.EXE
Task: {CD7193B8-BCA0-4EDB-AD98-4FF6EA3A294A} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => c:\program files (x86)\real\realplayer\Update\realsched.exe [2012-06-30] (RealNetworks, Inc.)
Task: {E24F9C2F-94BB-4F33-AD5A-1701ED0879F4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-29] (Adobe Systems Incorporated)
Task: {E76ADE9E-1E3D-4C31-831E-146138A2426E} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {F4162098-0D82-4BC4-BE06-C41A7BA5E21B} - System32\Tasks\{A99EA8E8-B99C-420D-BCD4-23DC298AE4A3} => D:\INSTALL.EXE
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2010-08-10 14:59 - 2005-03-12 01:07 - 00087040 _____ () C:\Windows\System32\pdfcmnnt.dll
2010-07-19 10:38 - 2010-04-27 16:57 - 00247152 _____ () C:\Program Files (x86)\Join Air\AssistantServices.exe
2013-12-19 13:51 - 2013-12-09 12:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2009-02-03 02:33 - 2009-02-03 02:33 - 00460199 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2008-09-29 02:55 - 2008-09-29 02:55 - 01076224 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2013-07-05 09:50 - 2014-04-23 20:30 - 03845232 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-04-29 11:02 - 2014-04-29 11:02 - 16351920 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\Users\cevin\Documents\emaeillll.eml:OECustomProperty
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk => C:\Windows\pss\Acer VCM.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^cevin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk => C:\Windows\pss\OpenOffice.org 3.2.lnk.Startup
MSCONFIG\startupfolder: C:^Users^cevin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^TimePanic.lnk => C:\Windows\pss\TimePanic.lnk.Startup
MSCONFIG\startupfolder: C:^Users^cevin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Yahoo! Widgets.lnk => C:\Windows\pss\Yahoo! Widgets.lnk.Startup
MSCONFIG\startupreg: Acer ePower Management => C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AmIcoSinglun64 => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
MSCONFIG\startupreg: ArcadeDeluxeAgent => "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
MSCONFIG\startupreg: BackupManagerTray => "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
MSCONFIG\startupreg: CyberGhost => "C:\Program Files\CyberGhost 5\CyberGhost.EXE" /autostart /min
MSCONFIG\startupreg: EgisTecLiveUpdate => "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
MSCONFIG\startupreg: EzPrint => "C:\Program Files (x86)\Lexmark 3600-4600 Series\ezprint.exe"
MSCONFIG\startupreg: IAAnotif => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
MSCONFIG\startupreg: LManager => C:\Program Files (x86)\Launch Manager\LManager.exe
MSCONFIG\startupreg: lxdxmon.exe => "C:\Program Files (x86)\Lexmark 3600-4600 Series\lxdxmon.exe"
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: mwlDaemon => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
MSCONFIG\startupreg: NokiaMServer => C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
MSCONFIG\startupreg: NokiaMusic FastStart => "C:\Program Files (x86)\Nokia\Ovi Player\NokiaOviPlayer.exe" /command:faststart
MSCONFIG\startupreg: NokiaOviSuite2 => C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: PlayMovie => "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
MSCONFIG\startupreg: PLFSetI => C:\Windows\PLFSetI.exe
MSCONFIG\startupreg: PMCLoader => C:\Program Files (x86)\Pinnacle\TVCenter Pro\PMCLoader.exe -checktasks
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: TkBellExe => "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
MSCONFIG\startupreg: UIExec => "C:\Program Files (x86)\Join Air\UIExec.exe"
MSCONFIG\startupreg: VitaKeyPdtWzd => "c:\Program Files (x86)\Acer Bio Protection\PdtWzd.exe"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/01/2014 09:24:37 AM) (Source: Avira Antivirus) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!
Error: (04/30/2014 10:46:06 PM) (Source: Avira Antivirus) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!
Error: (04/29/2014 10:28:55 AM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Die E/A-Schreibvorgänge können während des Schattenkopie-Erstellungszeitraums auf Volume "C:\" nicht gespeichert werden.
Der Volumeindex im Schattenkopiesatz ist 0. Fehlerdetails: Offen[0x00000000, Der Vorgang wurde erfolgreich beendet.
], Leerung[0x00000000, Der Vorgang wurde erfolgreich beendet.
], Freigabe[0x80042314, Der Schattenkopieanbieter hat beim Warten auf den Schreibvorgang auf das Volume, von dem eine Schattenkopie erstellt wird, das Zeitlimit überschritten. Ursache hierfür könnte eine durch eine Anwendung oder einen Systemdienst verursachte hohe Aktivität auf dem Volume sein. Wiederholen Sie den Vorgang später, wenn das Volume nicht so stark ausgelastet ist.
], Ausführung[0x00000000, Der Vorgang wurde erfolgreich beendet.
].
Vorgang:
Asynchroner Vorgang wird ausgeführt
Kontext:
Aktueller Status: DoSnapshotSet
Error: (04/29/2014 10:28:54 AM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Die Schattenkopie kann nicht zugesichert werden - Vorgang hat das Zeitlimit überschritten.
Fehlerkontext: DeviceIoControl(\\?\Volume{cd2b4ca0-120a-11df-9a6d-806e6f6e6963} - 0000000000000064,0x0053c010,00000000003FC010,0,00000000003FD020,4096,[0]).
Vorgang:
Schattenkopien werden übertragen
Kontext:
Ausführungskontext: System Provider
Error: (04/29/2014 09:58:37 AM) (Source: CyberGhost VPN Client Service) (User: )
Description: Der Dienst kann nicht gestartet werden. Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen
Error: (04/16/2014 10:40:05 PM) (Source: Application Hang) (User: )
Description: Programm avscan.exe, Version 14.0.3.332 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: e40
Startzeit: 01cf599e4ea6f366
Endzeit: 60000
Anwendungspfad: C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe
Berichts-ID: 17e591c4-c5a7-11e3-9ba4-001f16c28cd6
Error: (04/12/2014 11:00:30 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (04/11/2014 11:07:17 PM) (Source: Application Hang) (User: )
Description: Programm firefox.exe, Version 28.0.0.5178 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: f54
Startzeit: 01cf5594486468a9
Endzeit: 3626
Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Berichts-ID: 2da1cd3a-c1bd-11e3-95f3-001f16c28cd6
Error: (04/11/2014 08:13:50 AM) (Source: Avira Antivirus) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!
Error: (04/11/2014 08:13:42 AM) (Source: Avira Antivirus) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!
System errors:
=============
Error: (05/01/2014 04:04:52 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Microsoft .NET Framework NGEN v4.0.30319_X86 erreicht.
Error: (05/01/2014 04:00:31 PM) (Source: BugCheck) (User: )
Description: 0x000000c2 (0x0000000000000007, 0x000000000000109b, 0x00000000040d0003, 0xfffffa8007470750)C:\Windows\MEMORY.DMP050114-30544-01
Error: (05/01/2014 04:00:30 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 01.05.2014 um 15:55:43 unerwartet heruntergefahren.
Error: (05/01/2014 09:25:28 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "CyberGhost VPN 5 Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (05/01/2014 09:25:28 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst CyberGhost VPN 5 Client Service erreicht.
Error: (04/30/2014 10:47:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "CyberGhost VPN 5 Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (04/30/2014 10:47:02 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst CyberGhost VPN 5 Client Service erreicht.
Error: (04/30/2014 10:45:48 PM) (Source: BugCheck) (User: )
Description: 0xc000021a (0xfffff8a0023784e0, 0x0000000000000000, 0xffffffffc0000001, 0x0000000000010778)C:\Windows\MEMORY.DMP043014-41683-01
Error: (04/30/2014 10:37:47 PM) (Source: Microsoft-Windows-Kernel-Power) (User: )
Description: Das System wurde aufgrund eines kritischen thermischen Ereignisses heruntergefahren.
Zeit für das Herunterfahren = 2014-04-30T20:37:47.266832900Z
ACPI-Thermozone = ACPI\ThermalZone\TZS0
_CRT = 369K
Error: (04/30/2014 10:37:40 PM) (Source: Microsoft-Windows-Kernel-Power) (User: )
Description: Das System wurde aufgrund eines kritischen thermischen Ereignisses heruntergefahren.
Zeit für das Herunterfahren = 2014-04-30T20:37:40.574421200Z
ACPI-Thermozone = ACPI\ThermalZone\TZS0
_CRT = 369K
Microsoft Office Sessions:
=========================
Error: (05/01/2014 09:24:37 AM) (Source: Avira Antivirus)(User: NT-AUTORITÄT)
Description: 0x0
Error: (04/30/2014 10:46:06 PM) (Source: Avira Antivirus)(User: NT-AUTORITÄT)
Description: 0x0
Error: (04/29/2014 10:28:55 AM) (Source: VSS)(User: )
Description: C:\00x00000000, Der Vorgang wurde erfolgreich beendet.
0x00000000, Der Vorgang wurde erfolgreich beendet.
0x80042314, Der Schattenkopieanbieter hat beim Warten auf den Schreibvorgang auf das Volume, von dem eine Schattenkopie erstellt wird, das Zeitlimit überschritten. Ursache hierfür könnte eine durch eine Anwendung oder einen Systemdienst verursachte hohe Aktivität auf dem Volume sein. Wiederholen Sie den Vorgang später, wenn das Volume nicht so stark ausgelastet ist.
0x00000000, Der Vorgang wurde erfolgreich beendet.
Vorgang:
Asynchroner Vorgang wird ausgeführt
Kontext:
Aktueller Status: DoSnapshotSet
Error: (04/29/2014 10:28:54 AM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\Volume{cd2b4ca0-120a-11df-9a6d-806e6f6e6963} - 0000000000000064,0x0053c010,00000000003FC010,0,00000000003FD020,4096,[0])
Vorgang:
Schattenkopien werden übertragen
Kontext:
Ausführungskontext: System Provider
Error: (04/29/2014 09:58:37 AM) (Source: CyberGhost VPN Client Service)(User: )
Description: Der Dienst kann nicht gestartet werden. Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen
Error: (04/16/2014 10:40:05 PM) (Source: Application Hang)(User: )
Description: avscan.exe14.0.3.332e4001cf599e4ea6f36660000C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe17e591c4-c5a7-11e3-9ba4-001f16c28cd6
Error: (04/12/2014 11:00:30 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\cevin\Downloads\SoftonicDownloader_fuer_euro-truck-simulator.exe
Error: (04/11/2014 11:07:17 PM) (Source: Application Hang)(User: )
Description: firefox.exe28.0.0.5178f5401cf5594486468a93626C:\Program Files (x86)\Mozilla Firefox\firefox.exe2da1cd3a-c1bd-11e3-95f3-001f16c28cd6
Error: (04/11/2014 08:13:50 AM) (Source: Avira Antivirus)(User: NT-AUTORITÄT)
Description: 0x0
Error: (04/11/2014 08:13:42 AM) (Source: Avira Antivirus)(User: NT-AUTORITÄT)
Description: 0x0
CodeIntegrity Errors:
===================================
Date: 2013-06-15 11:19:49.168
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-15 11:03:04.263
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-02-23 16:57:16.552
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-02-23 16:55:28.330
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-02-05 00:58:34.593
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-01-10 08:55:59.629
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-11-14 21:26:31.008
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-10-23 19:11:51.791
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-10-12 10:07:16.550
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-07-23 16:52:49.272
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 90%
Total physical RAM: 4090.93 MB
Available physical RAM: 371.46 MB
Total Pagefile: 8180.04 MB
Available Pagefile: 3712.08 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:438.18 GB) (Free:154.72 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 740B4E56)
Partition 1: (Not Active) - (Size=23 GB) - (Type=27)
Partition 2: (Not Active) - (Size=5 GB) - (Type=12)
Partition 3: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=438 GB) - (Type=07 NTFS)
==================== End Of Log ============================ --- --- --- |