| green_lion | 04.06.2014 14:48 |
Vielen Dank für die Schnelle Hilfe:dankeschoen:
Hier die Additional.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2014
Ran by **** at 2014-06-04 15:28:59
Running from C:\Users\Julian\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Internet Security (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Internet Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
==================== Installed Programs ======================
clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3012 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3017 - Acer Incorporated)
Acer Remote (HKLM-x32\...\Acer Remote1.0) (Version: 1.0 - Acer Inc.)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2021 - Acer Incorporated)
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{C23EE7CE-C1A3-4F94-A8F0-9E0AC9C6DE6E}) (Version: 1.1 - Eyeo GmbH)
Adblock Plus for IE (HKLM-x32\...\{fd97d1e2-368a-4cd9-af63-8eeff938044a}) (Version: 1.1 - )
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12.2.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.3.0.322 - Adobe Systems Incorporated)
Adobe Digital Editions 2.0 (HKLM-x32\...\Adobe Digital Editions 2.0) (Version: 2.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Premiere Pro CC (HKLM-x32\...\{505FF1AC-E7F5-4462-BBA7-08900E7E9EEF}) (Version: 7.2.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{838DA1F1-23F8-4C70-B190-AC51CB5A5ECD}) (Version: 3.1.45.72435 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 3.1.45.72435 - Alcor Micro Corp.) Hidden
Autodesk 3ds Max 2014 (HKLM\...\Autodesk 3ds Max 2014) (Version: 16.2.475.0 - Autodesk)
Autodesk 3ds Max 2014 (Version: 16.2.475.0 - Autodesk) Hidden
Autodesk 3ds Max 2014 64-bit Populate Data (HKLM\...\{7491836B-659E-47DD-ABBF-F875AD48FD10}) (Version: 1.0.0.1 - Autodesk)
Autodesk 3ds Max 2014 SP2 (HKLM\...\Autodesk 3ds Max 2014 HF1) (Version: 16.2.475.0 - Autodesk)
Autodesk Backburner 2014 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 14.0.0.0 - Autodesk, Inc.)
Autodesk Composite 2014 (HKLM\...\Autodesk Composite 2014) (Version: 9.0.0.0 - Autodesk)
Autodesk Composite 2014 (Version: 9.0.0.0 - Autodesk) Hidden
Autodesk DirectConnect 2014 64-bit (HKLM\...\Autodesk DirectConnect 2014 64-bit) (Version: 8.0.56.1 - Autodesk)
Autodesk DirectConnect 2014 64-bit (Version: 8.0.56.1 - Autodesk) Hidden
Autodesk Download Manager (HKLM-x32\...\{2F48C80C-3A76-495A-A4B5-C0CC946FEEBD}) (Version: 2.0.6.0 - Autodesk, Inc.)
Autodesk Inventor Server Engine for 3ds Max 2014 64-bit (HKLM\...\{009751C6-22D7-4548-A313-AD48FA57076F}) (Version: 16.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2014 (HKLM-x32\...\{A0633D4E-5AF2-4E3E-A70A-FE9C2BD8A958}) (Version: 4.0.32.600 - Autodesk)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Brother MFL-Pro Suite MFC-J4410DW (HKLM-x32\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
calibre 64bit (HKLM\...\{53078727-80C2-4F4F-9E36-093133F73F3B}) (Version: 1.36.0 - Kovid Goyal)
Camtasia Studio 8 (HKLM-x32\...\{F5C9BE9A-04C3-4A72-8CD0-BB67C722D608}) (Version: 8.1.2.1344 - TechSmith Corporation)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2012 - Acer Incorporated)
Craften Terminal 3.5.5 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 3.5.5 - Craften.de)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
CyberLink MediaEspresso 6.5 (x32 Version: 6.5.3318_45364 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Free YouTube Download version 3.2.29.303 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.29.303 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.20.1230 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.20.1230 - DVDVideoSoft Ltd.)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
GIANTS Editor 5.5.1 64-bit (HKLM-x32\...\giants_editor_5.5.1_win64_is1) (Version: 5.5.1 - GIANTS Software GmbH)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Hotkey Utility (HKLM-x32\...\{A6DC88AD-501A-44BC-884D-57435F972E2C}) (Version: 3.00.3007 - Acer Incorporated)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3005 - Acer Incorporated)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36702 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Network Connections 18.1.59.0 (HKLM\...\PROSetDX) (Version: 18.1.59.0 - Intel)
Intel(R) Network Connections 18.1.59.0 (Version: 18.1.59.0 - Intel) Hidden
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Landwirtschafts Simulator 2013 (HKLM-x32\...\FarmingSimulator2013DE_is1) (Version: 1.0 - GIANTS Software)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3008 - Acer Incorporated)
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.51 (HKLM\...\Logitech Gaming Software) (Version: 8.51.5 - Logitech Inc.)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.0.3000 - Maxthon International Limited)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nero BackItUp (x32 Version: 12.5.5000 - Nero AG) Hidden
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG)
Nero BackItUp Help (CHM) (x32 Version: 12.0.10000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden
Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version: - )
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.3.0.12 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.2.3.51r2 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.1.0.14 - Symantec Corporation) Hidden
Nuance PaperPort 12 (HKLM-x32\...\{88B5FBDC-967D-4B1F-B291-39284AE12201}) (Version: 12.1.0005 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
NVIDIA 3D Vision Controller-Treiber 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 311.06 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Grafiktreiber 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3165 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
phase-6 2.3.3 (HKLM-x32\...\phase-6) (Version: 2.3.3 - phase-6)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.228 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.57 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
ROCCAT Power-Grid Version 0.459 (HKLM-x32\...\{953CF6E6-4EC8-4E55-A263-720CEBD591FE}_is1) (Version: 0.459 - ROCCAT GmbH)
Scansoft PDF Professional (x32 Version: - ) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Spielkanäle (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 8.1.0.17 - WildTangent, Inc.)
Spielkanäle (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 8.1.0.17 - WildTangent, Inc.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TI-Nspire CAS Student Software (HKLM-x32\...\TI-Nspire CAS Student Software) (Version: 3.1.0.392 - Texas Instruments)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
VideoSaver (HKLM-x32\...\274E1504-21E3-A9F8-9A9D-B3D4B3336957) (Version: - VideoSaver-software)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.11.2 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
14-05-2014 19:07:48 Windows Update
23-05-2014 18:46:26 Geplanter Prüfpunkt
26-05-2014 15:22:04 DirectX wurde installiert
30-05-2014 09:49:58 DirectX wurde installiert
==================== Hosts content: ==========================
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {05712D7E-84A7-4E83-B285-043E98C60449} - System32\Tasks\AdobeAAMUpdater-1.0-Meyer-Büro-Julian => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {331F10C2-F288-4D68-BFE7-CD875A775D8C} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2014-03-06] (Maxthon International ltd.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4E6C41D9-077C-405D-ABD7-B9D1F6FE4AFE} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation)
Task: {541ED654-6EB0-4B9D-BE8C-5B9F6FF64E5E} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {549BF424-F9EC-4C39-B007-12F8BBB7222F} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6E2C1F26-BFFF-41CB-8031-6C158DFBCB6E} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-01-18] (Acer Incorporated)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {765A39E7-A838-405B-945A-E473E26B3BE0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-03] (Google Inc.)
Task: {773194B9-DB17-4913-AB8D-7C51FAFD284A} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {789A3FED-440F-4AA5-B816-F6BADF12AD36} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {79B3C73C-005A-4C38-838B-9635889F4B40} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-02-22] ()
Task: {7D55C4ED-E393-4912-8F2C-940EB454F49F} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {83B22B4C-1892-4AF3-BC57-7747A445F777} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2013-04-02] (Acer Incorporated)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {979930BD-6948-4E26-B7D0-35FBA3460318} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {9B9DEB7A-5E63-48CE-AECB-8578418FAAA4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-05-14] (Microsoft Corporation)
Task: {9D93B334-9661-4C64-92DD-B9BAF5410D20} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {B657D976-555D-4F34-BD5D-87D6CE42CDAB} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {C0C35C7E-3CD2-4FE8-96B5-6A1D21A0AA07} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation)
Task: {CD02FF6B-FC87-4BC9-A2AE-8EF9AEC39EDB} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-20] (CyberLink)
Task: {CE555882-AE75-487E-9801-59526EDC26EA} - System32\Tasks\VideoSaver_wd => C:\Program Files (x86)\VideoSaver\VideoSaverGWdkcw.exe [2014-04-23] ()
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D92E05C5-28A3-4E8A-8273-6C453E2EACB0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-03] (Google Inc.)
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F85D2C0F-3AB5-4F88-9E40-13E0E7925DBD} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\WSCStub.exe [2014-05-11] (Symantec Corporation)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\VideoSaver_wd.job => C:\Program Files (x86)\VideoSaver\VideoSaverGWdkcw.exe
==================== Loaded Modules (whitelisted) =============
2011-09-15 06:19 - 2011-09-15 06:19 - 00086016 _____ () C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
2014-05-30 11:50 - 2014-05-30 11:50 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-05-30 11:51 - 2014-05-30 11:51 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-01-03 10:50 - 2005-04-22 06:36 - 00143360 ____R () C:\WINDOWS\system32\BrSNMP64.dll
2013-12-25 11:40 - 2013-10-23 10:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-12-13 13:20 - 2013-12-13 13:20 - 03359600 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2014-04-23 20:40 - 2014-04-23 20:40 - 00077312 _____ () C:\Program Files (x86)\VideoSaver\VideoSaverGWdkcw.exe
2013-05-31 01:23 - 2013-05-31 01:23 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-05-31 01:19 - 2013-05-31 01:19 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2013-05-31 01:53 - 2013-05-31 01:53 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2013-11-14 19:30 - 2013-11-14 19:30 - 00023040 _____ () C:\Program Files\Logitech Gaming Software\LGSToast.dll
2014-05-11 10:28 - 2014-05-11 10:28 - 01459712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI\926020eb508f6968545d6a51fb661fad\Windows.UI.ni.dll
2014-04-29 17:32 - 2014-04-29 17:32 - 00521216 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Data\d07f690ce5d3a2de7c9089a6200d64db\Windows.Data.ni.dll
2014-05-11 10:28 - 2014-05-11 10:28 - 00363520 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\057b7043f4868b76c209d9c426b80743\Windows.Foundation.ni.dll
2012-07-24 12:06 - 2012-07-24 12:06 - 00119808 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe
2013-06-27 09:50 - 2013-02-20 22:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
2013-06-27 09:24 - 2013-03-12 07:20 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-01-03 10:50 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2014-06-03 19:26 - 2014-06-03 19:26 - 00043008 _____ () c:\users\****\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpp8jmoj.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\****\AppData\Roaming\Dropbox\bin\libcef.dll
2011-08-15 20:12 - 2011-08-15 20:12 - 02603520 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtCore4.dll
2012-06-14 11:57 - 2012-06-14 11:57 - 00015872 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\featureController.dll
2011-08-15 20:12 - 2011-08-15 20:12 - 01006592 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtNetwork4.dll
2011-08-15 20:15 - 2011-08-15 20:15 - 00382464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtXml4.dll
2011-08-17 16:41 - 2011-08-17 16:41 - 00400384 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\sqlite3.dll
2011-08-17 16:48 - 2011-08-17 16:48 - 00322048 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\log4cplus.dll
2011-08-17 16:48 - 2011-08-17 16:48 - 00195584 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\libgsoap.dll
2011-08-15 19:23 - 2011-08-15 19:23 - 00062464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\zlib1.dll
2012-06-14 11:56 - 2012-06-14 11:56 - 00481792 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\DeviceProfile.dll
2012-06-14 12:06 - 2012-06-14 12:06 - 00500064 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
2012-06-14 11:55 - 2012-06-14 11:55 - 00013824 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\eventsSender.dll
2011-07-19 16:05 - 2011-07-19 16:05 - 14978048 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtWebKit4.dll
2011-08-15 20:17 - 2011-08-15 20:17 - 09224704 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtGui4.dll
2011-07-19 16:04 - 2011-07-19 16:04 - 00317952 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\phonon4.dll
2014-05-14 16:08 - 2014-05-14 16:08 - 03839088 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\****\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/04/2014 03:25:39 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (06/03/2014 09:22:36 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (06/03/2014 09:21:05 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (06/02/2014 02:37:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: hl2.exe, Version: 0.0.0.0, Zeitstempel: 0x533e5a38
Name des fehlerhaften Moduls: client.dll, Version: 1.0.0.1, Zeitstempel: 0x533e5b4a
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0015a76a
ID des fehlerhaften Prozesses: 0x10e4
Startzeit der fehlerhaften Anwendung: 0xhl2.exe0
Pfad der fehlerhaften Anwendung: hl2.exe1
Pfad des fehlerhaften Moduls: hl2.exe2
Berichtskennung: hl2.exe3
Vollständiger Name des fehlerhaften Pakets: hl2.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: hl2.exe5
Error: (06/02/2014 00:01:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: hl2.exe, Version: 0.0.0.0, Zeitstempel: 0x533e5a38
Name des fehlerhaften Moduls: client.dll, Version: 1.0.0.1, Zeitstempel: 0x533e5b4a
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0015a76a
ID des fehlerhaften Prozesses: 0x19bc
Startzeit der fehlerhaften Anwendung: 0xhl2.exe0
Pfad der fehlerhaften Anwendung: hl2.exe1
Pfad des fehlerhaften Moduls: hl2.exe2
Berichtskennung: hl2.exe3
Vollständiger Name des fehlerhaften Pakets: hl2.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: hl2.exe5
Error: (06/02/2014 04:40:15 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (06/01/2014 07:10:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (06/01/2014 07:10:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (06/01/2014 07:10:01 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (06/01/2014 11:54:49 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (06/04/2014 03:26:44 AM) (Source: DCOM) (EventID: 10010) (User: ****-Büro)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (06/04/2014 03:26:03 AM) (Source: DCOM) (EventID: 10010) (User: ****-Büro)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (06/03/2014 09:20:44 PM) (Source: DCOM) (EventID: 10010) (User: ****-Büro)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (06/03/2014 08:56:52 PM) (Source: DCOM) (EventID: 10010) (User: ****-Büro)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (06/02/2014 04:56:34 PM) (Source: DCOM) (EventID: 10010) (User: ****-Büro)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (06/02/2014 03:45:51 PM) (Source: DCOM) (EventID: 10010) (User: ****-Büro)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Error: (06/02/2014 03:45:51 PM) (Source: DCOM) (EventID: 10010) (User: ****-Büro)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Error: (06/02/2014 00:02:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "GamesAppIntegrationService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (06/02/2014 07:59:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (06/02/2014 07:59:40 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 14%
Total physical RAM: 16293.24 MB
Available physical RAM: 14009.96 MB
Total Pagefile: 32677.24 MB
Available Pagefile: 29692.73 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:922.85 GB) (Free:356.39 GB) NTFS
Drive d: (DATA) (Fixed) (Total:923.19 GB) (Free:916.9 GB) NTFS
Drive e: (MUSIC****) (Removable) (Total:7.45 GB) (Free:7.39 GB) FAT32
Drive h: (LS2013) (CDROM) (Total:1.36 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 31FAE5F9)
Partition: GPT Partition Type.
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=7 GB) - (Type=0C)
==================== End Of Log ============================
Meinen Namen habe ich mit**** Unkennbar gemacht, den Comnputernamen (****-Büro) teilweise auch
So hier die FRST.txt
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-06-2014
Ran by Julian (administrator) on MEYER-BÜRO on 04-06-2014 15:28:30
Running from C:\Users\Julian\Downloads
Platform: Windows 8.1 (Update 1) (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\nis.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\nis.exe
() C:\Program Files (x86)\VideoSaver\VideoSaverGWdkcw.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Users\Julian\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\ismagent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
() C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191312 2012-08-15] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8292120 2013-11-14] (Logitech Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2994880 2012-08-15] (Symantec Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376 2013-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46952 2011-08-02] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [30568 2011-08-02] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1641368 2013-02-01] (Autodesk, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133248 2013-05-31] ( (Atheros Communications))
HKU\S-1-5-21-3822500206-1761141436-4080005568-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21445248 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-3822500206-1761141436-4080005568-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-3822500206-1761141436-4080005568-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
HKU\S-1-5-21-3822500206-1761141436-4080005568-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Julian\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3822500206-1761141436-4080005568-1001\...\MountPoints2: {b49cc01e-def8-11e2-be6a-806e6f6e6963} - "F:\PC/TINspireStudent_Setup.exe"
HKU\S-1-5-21-3822500206-1761141436-4080005568-1001\...\MountPoints2: {ba2b81f8-73d2-11e3-be80-24fd52914648} - "H:\cdstart.exe"
HKU\S-1-5-21-3822500206-1761141436-4080005568-1001\...\MountPoints2: {f9d10030-78ef-11e3-be86-24fd52914648} - "G:\HTC_Sync_Manager_PC.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Remote.lnk
ShortcutTarget: Acer Remote.lnk -> C:\Program Files (x86)\Acer Remote\ArcServer.exe (Acer)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\phase-6 Reminder.lnk
ShortcutTarget: phase-6 Reminder.lnk -> C:\Program Files (x86)\phase-6\phase-6\reminder\reminder.exe (phase-6)
Startup: C:\Users\Julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Julian\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyEnable: Internet Explorer proxy is enabled.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKLM - DefaultScope {68E5EF68-B9A0-4FB3-832B-02FE42F92452} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {68E5EF68-B9A0-4FB3-832B-02FE42F92452} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {68E5EF68-B9A0-4FB3-832B-02FE42F92452} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {68E5EF68-B9A0-4FB3-832B-02FE42F92452} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {68E5EF68-B9A0-4FB3-832B-02FE42F92452} URL =
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3315513&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPA32E00B0-268C-4D9B-B039-3626AF7FAD7F&q={searchTerms}&SSPV=
SearchScopes: HKCU - {68E5EF68-B9A0-4FB3-832B-02FE42F92452} URL =
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=DE&ver=20&locale=de_DE&gct=kwd&qsrc=2869
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.3.0.12\coIEPlg.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.3.0.12\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.3.0.12\coIEPlg.dll (Symantec Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Julian\AppData\Roaming\Mozilla\Firefox\Profiles\iyowj2me.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF user.js: detected! => C:\Users\Julian\AppData\Roaming\Mozilla\Firefox\Profiles\iyowj2me.default\user.js
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Battlefield Play4Free - C:\Users\Julian\AppData\Roaming\Mozilla\Firefox\Profiles\iyowj2me.default\Extensions\battlefieldplay4free@ea.com [2014-05-26]
FF Extension: Adblock Plus - C:\Users\Julian\AppData\Roaming\Mozilla\Firefox\Profiles\iyowj2me.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-23]
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-03-05]
FF Extension: VideoSaver - C:\Program Files (x86)\VideoSaver\161.xpi [2014-04-23]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2013-11-30]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ []
FF HKCU\...\Firefox\Extensions: [{BF6F901F-399E-EA23-53E2-438C97252A18}] - C:\Program Files (x86)\VideoSaver\161.xpi
FF Extension: No Name - C:\Program Files (x86)\VideoSaver\161.xpi [2014-04-23]
==================== Services (Whitelisted) =================
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [310912 2013-05-31] (Windows (R) Win 7 DDK provider)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [660040 2013-01-18] (Acer Incorporated)
S2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-03-12] (WildTangent)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 mi-raysat_3dsmax2014_64; C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2011-09-15] ()
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.3.0.12\NIS.exe [276376 2014-05-11] (Symantec Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [145256 2011-08-02] (Nuance Communications, Inc.)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2014-05-30] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2014-05-30] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140510.001\BHDrvx64.sys [1530160 2014-05-10] (Symantec Corporation)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-05-31] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1503000.00C\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-02] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d63x64.sys [468240 2013-04-23] (Intel Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-12-24] (Symantec Corporation)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [41504 2014-01-23] (LogMeIn Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140603.001\IDSvia64.sys [525016 2014-03-26] (Symantec Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-25] (Microsoft Corporation)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140603.032\ENG64.SYS [126040 2014-04-10] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140603.032\EX64.SYS [2099288 2014-04-10] (Symantec Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-02-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-25] (Microsoft Corporation)
R0 SMR410; C:\Windows\System32\drivers\SMR410.SYS [96856 2014-06-04] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1503000.00C\SRTSP64.SYS [875736 2014-02-13] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1503000.00C\SRTSPX64.SYS [36952 2013-09-10] (Symantec Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1503000.00C\SYMDS64.SYS [493656 2013-09-10] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1503000.00C\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NISx64\1503000.00C\SymELAM.sys [23568 2013-09-10] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-11-30] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1503000.00C\Ironx64.SYS [264280 2013-09-27] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1503000.00C\SYMNETS.SYS [593112 2014-02-18] (Symantec Corporation)
R3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 USBTINSP; C:\Windows\System32\drivers\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-03-13] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-04 15:28 - 2014-06-04 15:28 - 00025044 _____ () C:\Users\Julian\Downloads\FRST.txt
2014-06-04 15:28 - 2014-06-04 15:28 - 00000000 ____D () C:\FRST
2014-06-04 15:27 - 2014-06-04 15:27 - 02068992 _____ (Farbar) C:\Users\Julian\Downloads\FRST64.exe
2014-06-04 14:05 - 2014-06-04 14:05 - 00096856 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SMR410.SYS
2014-06-04 14:05 - 2014-06-04 14:05 - 00000020 _____ () C:\WINDOWS\system32\Drivers\SMR410.dat
2014-06-04 07:19 - 2014-06-04 07:20 - 00961360 _____ (Chip Digital GmbH) C:\Users\Julian\Downloads\Malwarebytes Anti Malware - CHIP-Installer.exe
2014-06-02 16:40 - 2014-06-02 16:55 - 00022528 _____ () C:\Users\Julian\Downloads\Termine SkL Übersicht.xls
2014-06-01 20:24 - 2014-06-01 20:24 - 00000000 ____D () C:\Users\Julian\Downloads\Veenhuis_Shuttle
2014-06-01 20:20 - 2014-06-01 20:20 - 00000000 ____D () C:\Users\Julian\AppData\Local\ESN
2014-06-01 20:20 - 2014-06-01 20:20 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-06-01 20:19 - 2014-06-01 20:19 - 02247960 _____ () C:\Users\Julian\Downloads\battlelog-web-plugins_2.4.0_141(1).exe
2014-06-01 20:16 - 2014-06-01 20:16 - 02247960 _____ () C:\Users\Julian\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-06-01 19:11 - 2014-06-01 19:22 - 00000000 ____D () C:\Users\Jochen\Filme
2014-06-01 06:56 - 2014-06-01 06:56 - 00318888 _____ () C:\WINDOWS\Minidump\060114-23796-01.dmp
2014-05-31 11:59 - 2014-05-31 12:12 - 55681785 _____ () C:\Users\Julian\Downloads\UNZIP_ME_Fendt936_Fendt927.zip
2014-05-30 19:49 - 2014-05-30 19:49 - 00000202 _____ () C:\Users\Rainer\Desktop\Brother MFC-J4410DW Printer - Verknüpfung.lnk
2014-05-30 19:44 - 2014-05-30 19:44 - 00000000 ____D () C:\Users\Rainer\AppData\Roaming\PC-FAX TX
2014-05-30 19:42 - 2014-05-30 19:42 - 00000000 ___RD () C:\Users\Rainer\AppData\Roaming\Brother
2014-05-30 11:51 - 2014-05-30 11:51 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-05-30 11:51 - 2014-05-30 11:51 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2014-05-30 11:50 - 2014-05-30 11:50 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-05-29 20:11 - 2014-05-29 20:11 - 17266608 _____ (GIANTS Software GmbH) C:\Users\Julian\Downloads\MBTrac1800Intercooler.exe
2014-05-29 20:05 - 2014-05-29 20:05 - 00001412 _____ () C:\Users\Julian\AppData\Local\recently-used.xbel
2014-05-29 15:04 - 2014-05-29 15:11 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Origin
2014-05-29 15:04 - 2014-05-29 15:11 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\Origin
2014-05-29 13:35 - 2014-05-29 13:35 - 00000000 ____D () C:\Users\Julian\Desktop\VeenhuisW400
2014-05-29 13:08 - 2014-05-29 13:08 - 02747025 _____ () C:\Users\Julian\Downloads\Veenhuis_Shuttle.zip
2014-05-27 15:56 - 2014-05-27 15:57 - 31112395 _____ () C:\Users\Julian\Downloads\UNPACK_ME.rar
2014-05-26 17:24 - 2014-05-26 17:24 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-26 17:24 - 2014-05-26 17:24 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-26 17:18 - 2014-05-30 08:43 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-26 17:17 - 2014-05-30 08:42 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Origin
2014-05-26 17:17 - 2014-05-26 17:24 - 00000000 ____D () C:\Users\Julian\AppData\Local\Origin
2014-05-26 17:16 - 2014-06-02 14:37 - 00000000 ____D () C:\ProgramData\Origin
2014-05-26 17:16 - 2014-06-01 19:12 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-05-26 17:16 - 2014-05-26 17:24 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-05-26 17:16 - 2014-05-26 17:16 - 00000999 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-05-26 17:15 - 2014-05-26 17:15 - 17009768 _____ (Electronic Arts, Inc.) C:\Users\Julian\Downloads\OriginThinSetup.exe
2014-05-26 13:35 - 2014-05-26 13:35 - 00084000 _____ () C:\Users\Rainer\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-24 20:37 - 2014-05-24 20:37 - 00000000 ____D () C:\Users\Julian\Desktop\Server
2014-05-24 15:16 - 2014-05-24 15:16 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Norton Internet Security
2014-05-23 14:51 - 2014-05-23 14:52 - 00754801 _____ () C:\Users\Lorenz\Downloads\DIGDOGS.ZIP
2014-05-19 14:58 - 2014-05-19 15:03 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Craften Terminal
2014-05-19 14:54 - 2014-05-19 14:54 - 00002278 _____ () C:\Users\Lorenz\Desktop\Facebook.lnk
2014-05-19 14:54 - 2014-05-19 14:54 - 00002274 _____ () C:\Users\Lorenz\Desktop\Youtube.lnk
2014-05-19 14:54 - 2014-05-19 14:54 - 00001460 _____ () C:\Users\Lorenz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-05-19 14:54 - 2014-05-19 14:54 - 00000812 _____ () C:\Users\Lorenz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jZip.lnk
2014-05-19 14:54 - 2014-05-19 14:54 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-05-19 14:54 - 2014-05-19 14:54 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\Torch
2014-05-19 14:54 - 2014-05-19 14:54 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\jZip
2014-05-19 14:54 - 2014-05-19 14:54 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-05-19 14:51 - 2014-05-19 14:51 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Mozilla
2014-05-19 14:51 - 2014-05-19 14:51 - 00000000 ____D () C:\ProgramData\Datamngr
2014-05-19 14:51 - 2014-05-19 14:51 - 00000000 ____D () C:\extensions
2014-05-16 17:25 - 2014-05-16 17:25 - 00000000 __SHD () C:\Users\Jochen\AppData\Local\EmieUserList
2014-05-16 17:25 - 2014-05-16 17:25 - 00000000 __SHD () C:\Users\Jochen\AppData\Local\EmieSiteList
2014-05-14 17:39 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-14 17:39 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-14 17:39 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-14 17:39 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-14 17:39 - 2014-04-11 12:03 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-14 17:39 - 2014-04-11 12:03 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-05-14 17:39 - 2014-04-11 10:25 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-05-14 17:39 - 2014-04-11 08:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-05-14 17:39 - 2014-04-11 07:53 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-05-14 17:39 - 2014-04-11 07:22 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-05-14 17:39 - 2014-04-11 05:54 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-05-14 17:39 - 2014-04-11 05:36 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-05-14 17:39 - 2014-04-11 05:24 - 13288960 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-05-14 17:39 - 2014-04-11 05:06 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-05-14 17:39 - 2014-04-11 05:05 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-14 17:39 - 2014-04-11 05:05 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-05-14 17:39 - 2014-04-11 05:02 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-14 17:39 - 2014-04-11 05:02 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-05-14 17:39 - 2014-04-11 05:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-05-14 17:39 - 2014-04-11 05:00 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-05-14 17:39 - 2014-04-11 04:59 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-05-14 17:39 - 2014-04-11 04:57 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-05-14 17:39 - 2014-04-11 04:56 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-14 17:39 - 2014-04-11 04:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-05-14 17:39 - 2014-04-11 04:53 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-05-14 17:39 - 2014-04-11 04:52 - 03464192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-05-14 17:39 - 2014-04-11 04:46 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-05-14 17:39 - 2014-04-11 04:36 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-05-14 17:39 - 2014-04-11 04:34 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-05-14 17:39 - 2014-04-11 04:29 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-05-14 17:39 - 2014-04-11 04:25 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-05-14 17:39 - 2014-03-24 04:30 - 00257880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-05-14 17:39 - 2014-03-24 04:30 - 00123224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-05-14 17:39 - 2014-03-24 04:27 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-05-14 17:39 - 2014-03-13 09:42 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-05-14 17:39 - 2014-03-13 08:51 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-05-14 17:38 - 2014-04-09 00:46 - 00086688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt_map.dll
2014-05-14 17:38 - 2014-04-09 00:46 - 00028320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt100.dll
2014-05-14 17:38 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt_map.dll
2014-05-14 17:38 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt100.dll
2014-05-14 17:38 - 2014-03-27 11:12 - 21225584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-05-14 17:38 - 2014-03-27 09:48 - 18679728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-05-14 16:08 - 2014-05-14 16:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-14 15:47 - 2014-05-14 15:47 - 00774825 _____ () C:\Users\Julian\Downloads\steamcmd.zip
2014-05-09 20:18 - 2014-05-09 20:18 - 00322864 _____ () C:\WINDOWS\Minidump\050914-38734-01.dmp
2014-05-09 15:42 - 2014-05-09 15:42 - 00000000 ____D () C:\Users\Julian\AppData\Local\calibre-cache
2014-05-09 15:40 - 2014-05-09 16:12 - 00000000 ____D () C:\Users\Julian\Documents\Calibre-Bibliothek
2014-05-09 15:40 - 2014-05-09 15:56 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\calibre
2014-05-09 15:40 - 2014-05-09 15:40 - 00000946 _____ () C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
2014-05-09 15:40 - 2014-05-09 15:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2014-05-09 15:40 - 2014-05-09 15:40 - 00000000 ____D () C:\Program Files\Calibre2
2014-05-09 15:38 - 2014-05-09 15:39 - 60981248 _____ () C:\Users\Julian\Downloads\calibre-64bit-1.36.0.msi
2014-05-08 16:47 - 2014-05-08 16:47 - 00000000 ____D () C:\Users\Julian\AppData\Local\TechSmith
2014-05-08 16:38 - 2014-05-23 20:20 - 00005632 _____ () C:\Users\Julian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-08 14:18 - 2014-05-08 14:22 - 00000000 ____D () C:\Users\Julian\Documents\TI-Nspire
2014-05-08 14:18 - 2014-05-08 14:18 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\TI-Nspire
2014-05-08 14:16 - 2014-05-29 21:12 - 00000000 ____D () C:\Users\Julian\Documents\Camtasia Studio
2014-05-08 14:16 - 2014-05-08 14:16 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\TechSmith
2014-05-08 14:15 - 2014-05-08 14:15 - 00000000 ____D () C:\Users\Julian\Documents\SafeNet Sentinel
2014-05-08 14:14 - 2014-05-08 14:14 - 00002189 _____ () C:\Users\Julian\AppData\Local\TempfixPerms.vbs
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Texas Instruments
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\ProgramData\TechSmith
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\ProgramData\SafeNet Sentinel
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\ProgramData\regid.1995-08.com.techsmith
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\Program Files (x86)\TechSmith
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-05-08 14:13 - 2014-05-08 14:13 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2014-05-08 14:13 - 2014-05-08 14:13 - 00007371 _____ () C:\WINDOWS\SysWOW64\redist.txt
2014-05-08 14:13 - 2014-05-08 14:13 - 00002082 _____ () C:\Users\Public\Desktop\TI-Nspire CAS Student Software.lnk
2014-05-08 14:13 - 2014-05-08 14:13 - 00000000 ____D () C:\ProgramData\TI-Nspire CAS
2014-05-08 14:13 - 2014-05-08 14:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TI Tools
2014-05-08 14:12 - 2014-05-08 14:13 - 00000000 ____D () C:\Program Files (x86)\TI Education
2014-05-07 16:44 - 2014-05-07 16:44 - 00000906 _____ () C:\Users\Lorenz\AppData\Local\recently-used.xbel
2014-05-07 15:57 - 2014-05-19 14:56 - 00030720 ___SH () C:\Users\Lorenz\Desktop\Thumbs.db
2014-05-06 20:44 - 2014-05-06 20:47 - 251749736 _____ () C:\Users\Julian\Downloads\camtasiade_8.1.2.exe
2014-05-06 20:22 - 2014-05-06 20:22 - 00003586 _____ () C:\WINDOWS\System32\Tasks\Maxthon Update
2014-05-06 20:22 - 2014-05-06 20:22 - 00001105 _____ () C:\Users\Public\Desktop\Maxthon Cloud Browser.lnk
2014-05-06 20:22 - 2014-05-06 20:22 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Maxthon3
2014-05-06 20:22 - 2014-05-06 20:22 - 00000000 ____D () C:\Program Files (x86)\Maxthon
2014-05-06 20:21 - 2014-05-06 20:21 - 01502976 _____ (Maxthon International ltd.) C:\Users\Julian\Downloads\mxsetup.exe
2014-05-06 15:07 - 2014-05-06 15:07 - 00001444 _____ () C:\Users\Julian\Desktop\filezilla.lnk
2014-05-05 19:23 - 2014-04-16 18:02 - 00000000 ____D () C:\Users\Julian\Downloads\wordpress
2014-05-05 19:08 - 2014-05-06 15:55 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\FileZilla
2014-05-05 19:08 - 2014-03-28 10:35 - 00000000 ____D () C:\Users\Julian\Downloads\FileZilla-3.8.0
==================== One Month Modified Files and Folders =======
2014-06-04 15:28 - 2014-06-04 15:28 - 00025044 _____ () C:\Users\Julian\Downloads\FRST.txt
2014-06-04 15:28 - 2014-06-04 15:28 - 00000000 ____D () C:\FRST
2014-06-04 15:28 - 2013-12-25 11:43 - 00000000 ____D () C:\Users\Julian\AppData\Local\Temp
2014-06-04 15:27 - 2014-06-04 15:27 - 02068992 _____ (Farbar) C:\Users\Julian\Downloads\FRST64.exe
2014-06-04 15:26 - 2013-12-25 11:16 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Skype
2014-06-04 15:21 - 2013-12-25 12:14 - 00003942 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2CDB1D17-374E-47F5-A88E-A278A97AC4A6}
2014-06-04 15:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-06-04 14:53 - 2014-05-03 16:42 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-04 14:53 - 2014-05-03 16:42 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-04 14:11 - 2013-12-25 11:39 - 01326392 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-04 14:05 - 2014-06-04 14:05 - 00096856 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SMR410.SYS
2014-06-04 14:05 - 2014-06-04 14:05 - 00000020 _____ () C:\WINDOWS\system32\Drivers\SMR410.dat
2014-06-04 14:05 - 2014-02-02 19:33 - 00000000 ____D () C:\Users\Julian\AppData\Local\NPE
2014-06-04 14:05 - 2013-06-27 09:46 - 00000000 ____D () C:\ProgramData\Norton
2014-06-04 07:20 - 2014-06-04 07:19 - 00961360 _____ (Chip Digital GmbH) C:\Users\Julian\Downloads\Malwarebytes Anti Malware - CHIP-Installer.exe
2014-06-04 02:00 - 2013-12-25 18:05 - 00000000 ____D () C:\Users\Julian\AppData\Local\Adobe
2014-06-03 21:20 - 2013-11-30 17:28 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3822500206-1761141436-4080005568-1001
2014-06-03 21:00 - 2014-04-07 11:22 - 00007591 _____ () C:\Users\Julian\AppData\Local\Resmon.ResmonCfg
2014-06-03 20:41 - 2014-04-23 20:40 - 00000406 _____ () C:\WINDOWS\Tasks\VideoSaver_wd.job
2014-06-03 19:27 - 2014-04-07 11:10 - 00000000 ___RD () C:\Users\Julian\Dropbox
2014-06-03 19:27 - 2014-04-07 11:08 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\DropboxMaster
2014-06-03 19:27 - 2014-04-07 11:07 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Dropbox
2014-06-03 19:25 - 2013-12-25 13:55 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\Temp
2014-06-02 16:56 - 2013-12-26 14:28 - 00000000 ____D () C:\Users\Julian\AppData\Local\Deployment
2014-06-02 16:55 - 2014-06-02 16:40 - 00022528 _____ () C:\Users\Julian\Downloads\Termine SkL Übersicht.xls
2014-06-02 15:42 - 2014-01-14 15:06 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Skype
2014-06-02 14:40 - 2013-12-26 14:30 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\.minecraft
2014-06-02 14:38 - 2014-01-06 17:33 - 00000000 ____D () C:\Users\Jochen\AppData\Local\Temp
2014-06-02 14:37 - 2014-05-26 17:16 - 00000000 ____D () C:\ProgramData\Origin
2014-06-02 14:37 - 2014-01-06 17:59 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\TS3Client
2014-06-02 14:37 - 2014-01-03 12:40 - 00000000 ____D () C:\Users\Julian\AppData\Local\CrashDumps
2014-06-02 13:49 - 2014-01-30 17:16 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-02 13:00 - 2013-11-30 17:20 - 00000000 ____D () C:\Users\Julian\Documents\Bluetooth Folder
2014-06-01 20:24 - 2014-06-01 20:24 - 00000000 ____D () C:\Users\Julian\Downloads\Veenhuis_Shuttle
2014-06-01 20:20 - 2014-06-01 20:20 - 00000000 ____D () C:\Users\Julian\AppData\Local\ESN
2014-06-01 20:20 - 2014-06-01 20:20 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-06-01 20:19 - 2014-06-01 20:19 - 02247960 _____ () C:\Users\Julian\Downloads\battlelog-web-plugins_2.4.0_141(1).exe
2014-06-01 20:16 - 2014-06-01 20:16 - 02247960 _____ () C:\Users\Julian\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-06-01 19:22 - 2014-06-01 19:11 - 00000000 ____D () C:\Users\Jochen\Filme
2014-06-01 19:12 - 2014-05-26 17:16 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-01 19:11 - 2014-01-06 17:33 - 00000000 ____D () C:\Users\Jochen
2014-06-01 19:10 - 2013-11-14 09:27 - 00005430 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-01 19:10 - 2013-11-14 09:11 - 02129064 _____ () C:\WINDOWS\system32\perfh007.dat
2014-06-01 19:10 - 2013-11-14 09:11 - 00581628 _____ () C:\WINDOWS\system32\perfc007.dat
2014-06-01 19:08 - 2013-08-22 16:46 - 00345517 _____ () C:\WINDOWS\setupact.log
2014-06-01 19:06 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-06-01 11:06 - 2013-12-25 11:40 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-01 11:06 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-01 07:25 - 2013-12-25 11:43 - 00000000 ____D () C:\Users\Rainer
2014-06-01 07:07 - 2013-12-26 14:34 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3822500206-1761141436-4080005568-1005
2014-06-01 07:02 - 2013-12-26 14:30 - 00003942 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{290EB6E1-06B2-459A-89F9-BD742F51684E}
2014-06-01 06:56 - 2014-06-01 06:56 - 00318888 _____ () C:\WINDOWS\Minidump\060114-23796-01.dmp
2014-06-01 06:56 - 2013-12-28 09:55 - 618187811 _____ () C:\WINDOWS\MEMORY.DMP
2014-06-01 06:56 - 2013-12-28 09:55 - 00000000 ____D () C:\WINDOWS\Minidump
2014-06-01 06:55 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-05-31 15:59 - 2013-12-27 19:01 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3822500206-1761141436-4080005568-1004
2014-05-31 15:59 - 2013-12-25 11:43 - 00000000 ____D () C:\Users\Rainer\AppData\Local\Temp
2014-05-31 15:59 - 2013-12-24 22:48 - 00000000 ____D () C:\Users\Rainer\Documents\Bluetooth Folder
2014-05-31 12:12 - 2014-05-31 11:59 - 55681785 _____ () C:\Users\Julian\Downloads\UNZIP_ME_Fendt936_Fendt927.zip
2014-05-30 19:49 - 2014-05-30 19:49 - 00000202 _____ () C:\Users\Rainer\Desktop\Brother MFC-J4410DW Printer - Verknüpfung.lnk
2014-05-30 19:44 - 2014-05-30 19:44 - 00000000 ____D () C:\Users\Rainer\AppData\Roaming\PC-FAX TX
2014-05-30 19:44 - 2014-01-03 10:51 - 00000232 _____ () C:\WINDOWS\Brpfx04a.ini
2014-05-30 19:42 - 2014-05-30 19:42 - 00000000 ___RD () C:\Users\Rainer\AppData\Roaming\Brother
2014-05-30 19:40 - 2013-12-27 19:05 - 00003942 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1F4AF68D-9D58-4E51-93BA-9D577EF1ECC6}
2014-05-30 14:19 - 2013-12-26 12:37 - 00084604 _____ () C:\WINDOWS\DirectX.log
2014-05-30 11:51 - 2014-05-30 11:51 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-05-30 11:51 - 2014-05-30 11:51 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2014-05-30 11:50 - 2014-05-30 11:50 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-05-30 10:27 - 2014-01-06 17:35 - 00003942 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{602F6161-675C-4907-9D63-CEC259D56727}
2014-05-30 10:08 - 2014-01-06 17:43 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3822500206-1761141436-4080005568-1009
2014-05-30 08:43 - 2014-05-26 17:18 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-30 08:42 - 2014-05-26 17:17 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Origin
2014-05-29 21:12 - 2014-05-08 14:16 - 00000000 ____D () C:\Users\Julian\Documents\Camtasia Studio
2014-05-29 20:11 - 2014-05-29 20:11 - 17266608 _____ (GIANTS Software GmbH) C:\Users\Julian\Downloads\MBTrac1800Intercooler.exe
2014-05-29 20:05 - 2014-05-29 20:05 - 00001412 _____ () C:\Users\Julian\AppData\Local\recently-used.xbel
2014-05-29 20:05 - 2013-12-31 12:30 - 00000000 ____D () C:\Users\Julian\AppData\Local\gtk-2.0
2014-05-29 20:05 - 2013-12-31 12:25 - 00000000 ____D () C:\Users\Julian\.gimp-2.8
2014-05-29 20:02 - 2014-01-06 17:34 - 00000000 ____D () C:\Users\Jochen\Documents\Bluetooth Folder
2014-05-29 15:11 - 2014-05-29 15:04 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Origin
2014-05-29 15:11 - 2014-05-29 15:04 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\Origin
2014-05-29 13:35 - 2014-05-29 13:35 - 00000000 ____D () C:\Users\Julian\Desktop\VeenhuisW400
2014-05-29 13:35 - 2013-11-30 17:54 - 00208384 ___SH () C:\Users\Julian\Desktop\Thumbs.db
2014-05-29 13:08 - 2014-05-29 13:08 - 02747025 _____ () C:\Users\Julian\Downloads\Veenhuis_Shuttle.zip
2014-05-28 14:28 - 2013-12-25 10:31 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\.minecraft
2014-05-28 13:44 - 2014-04-07 11:10 - 00001076 _____ () C:\Users\Julian\Desktop\Dropbox.lnk
2014-05-28 13:44 - 2014-04-07 11:08 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-28 13:44 - 2013-11-30 17:20 - 00000000 ___RD () C:\Users\Julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-28 06:10 - 2013-12-25 11:43 - 00000000 ____D () C:\Users\Julian
2014-05-28 05:42 - 2013-11-14 00:18 - 00012354 _____ () C:\WINDOWS\PFRO.log
2014-05-28 05:42 - 2012-07-26 10:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-05-27 15:57 - 2014-05-27 15:56 - 31112395 _____ () C:\Users\Julian\Downloads\UNPACK_ME.rar
2014-05-26 17:24 - 2014-05-26 17:24 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-26 17:24 - 2014-05-26 17:24 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-26 17:24 - 2014-05-26 17:17 - 00000000 ____D () C:\Users\Julian\AppData\Local\Origin
2014-05-26 17:24 - 2014-05-26 17:16 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-05-26 17:16 - 2014-05-26 17:16 - 00000999 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-05-26 17:15 - 2014-05-26 17:15 - 17009768 _____ (Electronic Arts, Inc.) C:\Users\Julian\Downloads\OriginThinSetup.exe
2014-05-26 14:25 - 2013-12-25 13:56 - 00000000 ____D () C:\Users\Lorenz\Documents\Bluetooth Folder
2014-05-26 13:35 - 2014-05-26 13:35 - 00084000 _____ () C:\Users\Rainer\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-26 13:35 - 2014-01-03 11:47 - 00000000 ___RD () C:\Users\Rainer\Documents\Rainer Meyer privat
2014-05-26 13:35 - 2013-12-28 15:51 - 00000000 ____D () C:\Users\Rainer\AppData\Local\Deployment
2014-05-26 13:33 - 2013-12-24 22:48 - 00000000 ___RD () C:\Users\Rainer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-26 13:33 - 2013-12-24 22:48 - 00000000 ___RD () C:\Users\Rainer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-25 12:35 - 2013-12-25 11:16 - 00000000 ____D () C:\ProgramData\Skype
2014-05-25 12:34 - 2014-03-16 14:00 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-24 20:37 - 2014-05-24 20:37 - 00000000 ____D () C:\Users\Julian\Desktop\Server
2014-05-24 15:16 - 2014-05-24 15:16 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Norton Internet Security
2014-05-24 15:16 - 2013-11-30 18:00 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-05-24 15:16 - 2013-11-30 17:59 - 00002525 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2014-05-24 15:16 - 2013-11-30 17:41 - 00003234 _____ () C:\WINDOWS\System32\Tasks\Norton WSC Integration
2014-05-24 15:16 - 2013-11-30 17:41 - 00000000 ____D () C:\WINDOWS\system32\Drivers\NISx64
2014-05-23 20:20 - 2014-05-08 16:38 - 00005632 _____ () C:\Users\Julian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-23 19:38 - 2013-11-30 17:19 - 00000000 ____D () C:\Users\Julian\AppData\Local\VirtualStore
2014-05-23 19:34 - 2013-12-25 13:55 - 00000000 ____D () C:\Users\Lorenz
2014-05-23 14:52 - 2014-05-23 14:51 - 00754801 _____ () C:\Users\Lorenz\Downloads\DIGDOGS.ZIP
2014-05-19 15:52 - 2014-01-18 18:18 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-19 15:03 - 2014-05-19 14:58 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Craften Terminal
2014-05-19 14:56 - 2014-05-07 15:57 - 00030720 ___SH () C:\Users\Lorenz\Desktop\Thumbs.db
2014-05-19 14:54 - 2014-05-19 14:54 - 00002278 _____ () C:\Users\Lorenz\Desktop\Facebook.lnk
2014-05-19 14:54 - 2014-05-19 14:54 - 00002274 _____ () C:\Users\Lorenz\Desktop\Youtube.lnk
2014-05-19 14:54 - 2014-05-19 14:54 - 00001460 _____ () C:\Users\Lorenz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2014-05-19 14:54 - 2014-05-19 14:54 - 00000812 _____ () C:\Users\Lorenz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jZip.lnk
2014-05-19 14:54 - 2014-05-19 14:54 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
2014-05-19 14:54 - 2014-05-19 14:54 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\Torch
2014-05-19 14:54 - 2014-05-19 14:54 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\jZip
2014-05-19 14:54 - 2014-05-19 14:54 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-05-19 14:51 - 2014-05-19 14:51 - 00000000 ____D () C:\Users\Lorenz\AppData\Roaming\Mozilla
2014-05-19 14:51 - 2014-05-19 14:51 - 00000000 ____D () C:\ProgramData\Datamngr
2014-05-19 14:51 - 2014-05-19 14:51 - 00000000 ____D () C:\extensions
2014-05-19 14:51 - 2013-12-25 13:55 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\VirtualStore
2014-05-18 15:28 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-05-18 14:28 - 2013-12-25 11:01 - 00090962 _____ () C:\WINDOWS\system32\lvcoinst.log
2014-05-16 21:07 - 2013-12-25 13:55 - 00000000 ___RD () C:\Users\Lorenz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 21:07 - 2013-12-25 13:55 - 00000000 ___RD () C:\Users\Lorenz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 18:48 - 2013-12-25 12:03 - 00000000 ___RD () C:\Users\Julian\SkyDrive
2014-05-16 18:48 - 2013-11-30 17:20 - 00000000 ___RD () C:\Users\Julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 17:25 - 2014-05-16 17:25 - 00000000 __SHD () C:\Users\Jochen\AppData\Local\EmieUserList
2014-05-16 17:25 - 2014-05-16 17:25 - 00000000 __SHD () C:\Users\Jochen\AppData\Local\EmieSiteList
2014-05-16 17:25 - 2014-01-06 17:33 - 00000000 ___RD () C:\Users\Jochen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 17:25 - 2014-01-06 17:33 - 00000000 ___RD () C:\Users\Jochen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 17:24 - 2013-12-24 23:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-16 17:05 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-05-16 17:04 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-05-16 17:04 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-16 17:04 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-16 17:04 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-05-16 17:04 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-05-16 17:04 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-16 17:04 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-14 21:10 - 2013-12-24 21:29 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-05-14 21:10 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-05-14 21:09 - 2013-12-26 13:51 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 21:09 - 2013-12-24 21:29 - 93223848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-05-14 16:08 - 2014-05-14 16:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-14 15:47 - 2014-05-14 15:47 - 00774825 _____ () C:\Users\Julian\Downloads\steamcmd.zip
2014-05-09 20:18 - 2014-05-09 20:18 - 00322864 _____ () C:\WINDOWS\Minidump\050914-38734-01.dmp
2014-05-09 20:18 - 2013-08-22 16:44 - 05083896 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-09 16:12 - 2014-05-09 15:40 - 00000000 ____D () C:\Users\Julian\Documents\Calibre-Bibliothek
2014-05-09 15:56 - 2014-05-09 15:40 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\calibre
2014-05-09 15:42 - 2014-05-09 15:42 - 00000000 ____D () C:\Users\Julian\AppData\Local\calibre-cache
2014-05-09 15:40 - 2014-05-09 15:40 - 00000946 _____ () C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
2014-05-09 15:40 - 2014-05-09 15:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2014-05-09 15:40 - 2014-05-09 15:40 - 00000000 ____D () C:\Program Files\Calibre2
2014-05-09 15:39 - 2014-05-09 15:38 - 60981248 _____ () C:\Users\Julian\Downloads\calibre-64bit-1.36.0.msi
2014-05-09 14:48 - 2014-05-03 16:42 - 00004104 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-09 14:48 - 2014-05-03 16:42 - 00003868 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 16:47 - 2014-05-08 16:47 - 00000000 ____D () C:\Users\Julian\AppData\Local\TechSmith
2014-05-08 14:22 - 2014-05-08 14:18 - 00000000 ____D () C:\Users\Julian\Documents\TI-Nspire
2014-05-08 14:18 - 2014-05-08 14:18 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\TI-Nspire
2014-05-08 14:16 - 2014-05-08 14:16 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\TechSmith
2014-05-08 14:15 - 2014-05-08 14:15 - 00000000 ____D () C:\Users\Julian\Documents\SafeNet Sentinel
2014-05-08 14:14 - 2014-05-08 14:14 - 00002189 _____ () C:\Users\Julian\AppData\Local\TempfixPerms.vbs
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Texas Instruments
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\ProgramData\TechSmith
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\ProgramData\SafeNet Sentinel
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\ProgramData\regid.1995-08.com.techsmith
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\Program Files (x86)\TechSmith
2014-05-08 14:14 - 2014-05-08 14:14 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-05-08 14:13 - 2014-05-08 14:13 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2014-05-08 14:13 - 2014-05-08 14:13 - 00007371 _____ () C:\WINDOWS\SysWOW64\redist.txt
2014-05-08 14:13 - 2014-05-08 14:13 - 00002082 _____ () C:\Users\Public\Desktop\TI-Nspire CAS Student Software.lnk
2014-05-08 14:13 - 2014-05-08 14:13 - 00000000 ____D () C:\ProgramData\TI-Nspire CAS
2014-05-08 14:13 - 2014-05-08 14:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TI Tools
2014-05-08 14:13 - 2014-05-08 14:12 - 00000000 ____D () C:\Program Files (x86)\TI Education
2014-05-07 16:44 - 2014-05-07 16:44 - 00000906 _____ () C:\Users\Lorenz\AppData\Local\recently-used.xbel
2014-05-07 16:44 - 2014-02-18 15:27 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\gtk-2.0
2014-05-07 16:44 - 2014-02-18 15:23 - 00000000 ____D () C:\Users\Lorenz\.gimp-2.8
2014-05-06 20:47 - 2014-05-06 20:44 - 251749736 _____ () C:\Users\Julian\Downloads\camtasiade_8.1.2.exe
2014-05-06 20:22 - 2014-05-06 20:22 - 00003586 _____ () C:\WINDOWS\System32\Tasks\Maxthon Update
2014-05-06 20:22 - 2014-05-06 20:22 - 00001105 _____ () C:\Users\Public\Desktop\Maxthon Cloud Browser.lnk
2014-05-06 20:22 - 2014-05-06 20:22 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\Maxthon3
2014-05-06 20:22 - 2014-05-06 20:22 - 00000000 ____D () C:\Program Files (x86)\Maxthon
2014-05-06 20:21 - 2014-05-06 20:21 - 01502976 _____ (Maxthon International ltd.) C:\Users\Julian\Downloads\mxsetup.exe
2014-05-06 15:55 - 2014-05-05 19:08 - 00000000 ____D () C:\Users\Julian\AppData\Roaming\FileZilla
2014-05-06 15:07 - 2014-05-06 15:07 - 00001444 _____ () C:\Users\Julian\Desktop\filezilla.lnk
2014-05-06 06:40 - 2014-05-14 17:39 - 23544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-06 05:25 - 2014-05-14 17:39 - 17382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-06 05:00 - 2014-05-14 17:39 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-14 17:39 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-05 17:29 - 2014-03-19 08:45 - 00000000 ____D () C:\Users\Lorenz\AppData\Local\CrashDumps
Some content of TEMP:
====================
C:\Users\Julian\AppData\Local\Temp\Creative Cloud Helper.exe
C:\Users\Julian\AppData\Local\Temp\DLMGuardian.exe
C:\Users\Julian\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpp8jmoj.dll
C:\Users\Julian\AppData\Local\Temp\FNP_ACT_InstallerCA.dll
C:\Users\Julian\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Julian\AppData\Local\Temp\nsg2A38.exe
C:\Users\Julian\AppData\Local\Temp\ose00000.exe
C:\Users\Julian\AppData\Local\Temp\TINspireCASStudentSoftware-3.6.0.550.exe
C:\Users\Rainer\AppData\Local\Temp\_is346B.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-06-01 11:17
==================== End Of Log ============================
--- --- ---
--- --- --- |
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
SecurityCheck und:
