Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Pop up trotz pop up Blocker (https://www.trojaner-board.de/156507-pop-up-trotz-pop-up-blocker.html)

waldlaeufer 16.07.2014 12:42
Pop up trotz pop up Blocker
 
Hallo zusammen,

ich bin total verzweifelt!
Mein Internet Explorer und Firefox sind extrem langsam. Mit jedem Seitenaufruf öffnen sich immer Pop ups... So kann man ja gar nicht mehr arbeiten und es treibt mich zur Weißglut!

Ich hoffe Ihr könnt mir helfen!
Kann es sein das ich so eine Art Virus auf meinem PC habe? Vielen Dank!
Und sonnige Grüße

cosinus 16.07.2014 13:03
Hallo und :hallo:

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

waldlaeufer 16.07.2014 19:22
FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:15-07-2014 01
Ran by Staeritz (administrator) on WALDLAEUFER on 16-07-2014 19:07:15
Running from C:\Users\Staeritz\Downloads
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(Sophos Limited) C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Hauppauge Computer Works) C:\Program Files\WinTV\EPG Services\System\EPGService.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
() C:\Windows\System32\srvany.exe
(Sophos Limited) C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
(O2Micro.) C:\Windows\System32\SDIOAssist.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Elaborate Bytes AG) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Sophos Limited) C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
(Sophos Limited) C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe
(Sophos Limited) C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Sophos Limited) C:\Program Files\Sophos\AutoUpdate\ALMon.exe
(SecureW2 B.V.) C:\Program Files\SecureW2\sw2_tray.exe
(Hauppauge Inc.) C:\Program Files\WinTV\EPG Services\System\EPGClient.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Dropbox, Inc.) C:\Users\Staeritz\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\EXCEL.EXE


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5955072 2011-01-18] (Dell Inc.)
HKLM\...\Run: [VirtualCloneDrive] => C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [505720 2011-07-20] (Alps Electric Co., Ltd.)
HKLM\...\Run: [FreeFallProtection] => C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686744 2012-09-05] ()
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM\...\Run: [mobilegeni daemon] => C:\Program Files\Mobogenie\DaemonProcess.exe
HKLM\...\Run: [Sophos AutoUpdate Monitor] => C:\Program Files\Sophos\AutoUpdate\almon.exe [1617704 2014-06-12] (Sophos Limited)
HKLM\...\Run: [SecureW2 Tray] => C:\Program Files\SecureW2\sw2_tray.exe [200024 2013-05-14] (SecureW2 B.V.)
HKLM\...\Run: [EPGServiceTool] => C:\Program Files\WinTV\EPG Services\System\EPGClient.exe [675840 2007-08-01] (Hauppauge Inc.)
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\Run: [DellSystemDetect] => C:\Users\Staeritz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\Run: [NextLive] => C:\Windows\system32\rundll32.exe "C:\Users\Staeritz\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\MountPoints2: {1578a90e-4f5e-11e3-915a-74de2b978124} - E:\AutoRun.exe
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\MountPoints2: {826677cb-2d03-11e3-a91d-74de2b978124} - E:\AutoRun.exe
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\MountPoints2: {9035f5cd-37f7-11e3-a5d2-d4bed906ff58} - E:\AutoRun.exe
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\MountPoints2: {bd0f7590-2c55-11e3-8a9a-74de2b978124} - E:\AutoRun.exe
HKU\S-1-5-21-2929280767-2720074798-2262323670-1000\...\MountPoints2: {c4d678b7-2c5f-11e3-a32d-806e6f6e6963} - E:\AutoRun.exe
AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\SOPHOS~1.DLL => C:\Program Files\Sophos\Sophos Anti-Virus\sophos_detoured.dll [275352 2014-06-11] (Sophos Limited)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutoStart IR.lnk
ShortcutTarget: AutoStart IR.lnk -> C:\Program Files\WinTV\Ir.exe (Hauppauge Computer Works)
Startup: C:\Users\Staeritz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Staeritz\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://istart.webssearches.com/?type=hp&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF6D2F095479FCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://istart.webssearches.com/?type=hp&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://istart.webssearches.com/?type=hp&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://istart.webssearches.com/?type=hp&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB&q={searchTerms}
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB&q={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB&q={searchTerms}
BHO: No Name -> {120A8821-2BEE-4C29-BCDA-62C577781992} ->  No File
BHO: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Winsock: Catalog9 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Winsock: Catalog9 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Winsock: Catalog9 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Winsock: Catalog9 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Winsock: Catalog9 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Winsock: Catalog9 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Winsock: Catalog9 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Winsock: Catalog9 20 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [126760] (Sophos Limited)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Staeritz\AppData\Roaming\Mozilla\Firefox\Profiles\q47jt4vs.default
FF NewTab: chrome://quick_start/content/index.html
FF SelectedSearchEngine: webssearches
FF Homepage: hxxp://istart.webssearches.com/?type=hp&ts=1404818969&from=tugs&uid=TOSHIBAXMK2561GSYN_8188B0YXBXX8188B0YXB
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 - C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin: @staging.google.com/globalUpdate Update;version=4 - C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\webssearches.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Browser App - C:\Users\Staeritz\AppData\Roaming\Mozilla\Firefox\Profiles\q47jt4vs.default\Extensions\b8c5ecce-0eab-4412-bbe6-6dac31ebfaec@d0bda10d-78c8-4ed2-a9ff-fe1bb21c38dd.com [2014-07-08]
FF Extension: Plus-HD-V1.3 - C:\Users\Staeritz\AppData\Roaming\Mozilla\Firefox\Profiles\q47jt4vs.default\Extensions\ba9147e3-ae8c-4ced-9c9a-240425bd7d8e@6ddffb66-c974-42d7-8752-9e6a4ec073b0.com [2014-06-27]
FF Extension: Fast Start - C:\Users\Staeritz\AppData\Roaming\Mozilla\Firefox\Profiles\q47jt4vs.default\Extensions\faststartff@gmail.com [2014-07-08]
FF Extension: video MediaPlay-Air - C:\Users\Staeritz\AppData\Roaming\Mozilla\Firefox\Profiles\q47jt4vs.default\Extensions\ff806580-6db3-4c09-ba06-d6caf0e99172@8453cb25-7fef-4ed5-8934-b08be5605617.com [2014-07-08]
FF Extension: No Name - C:\Users\Staeritz\AppData\Roaming\Mozilla\Firefox\Profiles\q47jt4vs.default\Extensions\staged [2014-07-16]
FF Extension: Recorder Toolbar - C:\Program Files\Mozilla Firefox\extensions\{10743931-94DF-476f-A987-4391233C17A2} [2014-06-18]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-09-13]
FF HKLM\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Staeritz\AppData\Roaming\Mozilla\Firefox\Profiles\q47jt4vs.default\extensions\faststartff@gmail.com

========================== Services (Whitelisted) =================

R2 Credential Vault Host Control Service; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [827272 2013-03-07] (Broadcom Corporation)
R2 Credential Vault Host Storage; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [32648 2013-03-07] (Broadcom Corporation)
R2 EPGService; C:\Program Files\WinTV\EPG Services\System\EPGService.exe [431104 2007-11-05] (Hauppauge Computer Works) [File not signed]
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-08] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-08] (globalUpdate) [File not signed]
S3 HauppaugeTVServer; C:\Program Files\WinTV\HCWTVServer.exe [815104 2007-11-07] (Hauppauge Computer Works) [File not signed]
R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [72296 2010-02-10] (O2Micro International)
R2 O2SDIOAssist; C:\Windows\system32\srvany.exe [8192 2003-04-18] () [File not signed]
R2 SAVAdminService; C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe [288552 2014-06-11] (Sophos Limited)
R2 SAVService; C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe [205096 2014-06-11] (Sophos Limited)
R2 Sophos AutoUpdate Service; C:\Program Files\Sophos\AutoUpdate\ALsvc.exe [341800 2014-06-12] (Sophos Limited)
R2 Sophos Web Control Service; C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe [355624 2014-06-11] (Sophos Limited)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 swi_service; C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [3174696 2014-06-11] (Sophos Limited)
S2 swi_update; C:\ProgramData\Sophos\Web Intelligence\swi_update.exe [1487144 2014-06-11] (Sophos Limited)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [5210112 2011-01-18] (Dell Inc.) [File not signed]

==================== Drivers (Whitelisted) ====================

R3 Acceler; C:\Windows\System32\DRIVERS\accelern.sys [44144 2012-05-23] (ST Microelectronics)
R2 ACEDRV09; C:\Windows\system32\drivers\ACEDRV09.sys [110304 2013-10-01] (Protect Software GmbH)
R3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [18496 2011-01-18] (Broadcom Corporation)
R3 cvusbdrv; C:\Windows\System32\Drivers\cvusbdrv.sys [41480 2013-03-07] (Broadcom Corporation)
R3 e1cexpress; C:\Windows\System32\DRIVERS\e1c6232.sys [368392 2013-02-20] (Intel Corporation)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
S3 hcw95bda; C:\Windows\System32\Drivers\hcw95bda.sys [487424 2007-10-25] (Hauppauge Computer Works, Inc.)
S3 hcw95rc; C:\Windows\System32\DRIVERS\hcw95rc.sys [15488 2007-10-25] (Hauppauge Computer Works, Inc.)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [48928 2013-01-23] (Intel Corporation)
R3 O2MDFRDR; C:\Windows\System32\DRIVERS\O2MDFw7.sys [60904 2011-01-04] (O2Micro )
R3 O2SDJRDR; C:\Windows\System32\DRIVERS\o2sdjw7.sys [63976 2011-03-23] (O2Micro )
R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [45968 2011-11-03] (Rovi Corporation)
R1 SAVOnAccess; C:\Windows\System32\DRIVERS\savonaccess.sys [134912 2014-06-11] (Sophos Limited)
S3 sdcfilter; C:\Windows\System32\DRIVERS\sdcfilter.sys [34560 2014-06-11] (Sophos Limited)
R1 SKMScan; C:\Windows\System32\DRIVERS\skmscan.sys [33408 2014-06-11] (Sophos Limited)
S4 SophosBootDriver; C:\Windows\System32\DRIVERS\SophosBootDriver.sys [23680 2014-06-11] (Sophos Limited)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [17904 2011-07-15] (ST Microelectronics)
R1 {e63d9559-e4c3-499e-867a-a3c9d0a21400}Gw; C:\Windows\System32\drivers\{e63d9559-e4c3-499e-867a-a3c9d0a21400}Gw.sys [52928 2014-06-09] (StdLib)
R1 {e63d9559-e4c3-499e-867a-a3c9d0a21400}w; C:\Windows\System32\drivers\{e63d9559-e4c3-499e-867a-a3c9d0a21400}w.sys [52928 2014-06-23] (StdLib)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-16 19:07 - 2014-07-16 19:09 - 00020484 _____ () C:\Users\Staeritz\Downloads\FRST.txt
2014-07-16 19:07 - 2014-07-16 19:07 - 00000000 ____D () C:\FRST
2014-07-16 18:59 - 2014-07-16 18:59 - 01077248 _____ (Farbar) C:\Users\Staeritz\Downloads\FRST.exe
2014-07-16 18:50 - 2014-07-16 18:50 - 00065536 ___HT () C:\Users\Staeritz\Documents\~backupposteingangalt0110.pst.tmp
2014-07-16 12:42 - 2014-07-16 12:42 - 00576952 _____ () C:\Users\Staeritz\Downloads\setup(6).exe
2014-07-16 12:38 - 2014-07-16 12:38 - 00575792 _____ () C:\Users\Staeritz\Downloads\setup(5).exe
2014-07-16 11:51 - 2014-07-16 11:51 - 00575792 _____ () C:\Users\Staeritz\Downloads\setup(4).exe
2014-07-16 11:47 - 2014-07-16 11:48 - 00576952 _____ () C:\Users\Staeritz\Downloads\setup(3).exe
2014-07-10 23:04 - 2014-07-10 23:29 - 00000000 ____D () C:\Users\Staeritz\Desktop\Kamera
2014-07-10 22:29 - 2014-07-10 22:29 - 05659136 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-07-09 23:06 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 23:06 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 23:06 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 23:06 - 2014-06-19 01:56 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-09 23:06 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-09 23:06 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 23:06 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-09 23:06 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-09 23:06 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 23:06 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 23:06 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 23:06 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-09 23:06 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-09 23:06 - 2014-06-19 01:23 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-09 23:06 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-09 23:06 - 2014-06-19 01:16 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-09 23:06 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 23:06 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 23:06 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 23:06 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 23:06 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 23:06 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 23:06 - 2014-06-19 00:52 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 23:06 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 23:06 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-09 23:06 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 23:06 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 23:06 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 23:06 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 23:06 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-09 23:06 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 23:05 - 2014-06-30 03:40 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-09 23:05 - 2014-06-30 03:36 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-09 23:05 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 23:05 - 2014-06-18 02:52 - 02350080 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 23:05 - 2014-06-05 16:26 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 23:05 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-09 23:05 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-09 23:05 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-09 23:05 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-07-09 23:05 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-09 23:05 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-09 23:05 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-09 23:05 - 2014-05-30 08:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-08 13:38 - 2014-07-08 13:38 - 00000000 ____D () C:\Users\Staeritz\AppData\Local\com
2014-07-08 13:31 - 2014-07-16 13:31 - 00001538 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-1.job
2014-07-08 13:31 - 2014-07-16 13:31 - 00001440 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-5_user.job
2014-07-08 13:31 - 2014-07-16 13:31 - 00001422 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-5.job
2014-07-08 13:31 - 2014-07-08 14:34 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-07-08 13:31 - 2014-07-08 13:32 - 00000000 ____D () C:\Program Files\SupTab
2014-07-08 13:30 - 2014-07-16 13:35 - 00002148 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-4.job
2014-07-08 13:30 - 2014-07-16 13:30 - 00003444 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-11.job
2014-07-08 13:29 - 2014-07-16 13:30 - 00002418 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-3.job
2014-07-08 13:29 - 2014-07-08 13:38 - 00000444 __RSH () C:\ProgramData\ntuser.pol
2014-07-08 13:29 - 2014-07-08 13:31 - 00000000 ____D () C:\Program Files\Browser App
2014-07-08 13:27 - 2014-07-08 13:27 - 01258080 _____ () C:\Users\Staeritz\Downloads\Setup(2).exe
2014-07-04 18:32 - 1998-06-25 02:43 - 01409024 _____ (Microsoft Corporation) C:\Windows\system32\temp.010
2014-07-04 18:32 - 1998-06-18 11:33 - 00598288 _____ (Microsoft Corporation) C:\Windows\system32\temp.00C
2014-07-04 18:32 - 1998-06-18 11:33 - 00164112 _____ (Microsoft Corporation) C:\Windows\system32\temp.00D
2014-07-04 18:32 - 1998-06-18 11:32 - 00147728 _____ (Microsoft Corporation) C:\Windows\system32\temp.00E
2014-07-04 18:32 - 1998-06-17 00:13 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\temp.00F
2014-07-04 18:32 - 1998-05-31 16:06 - 00022288 _____ (Microsoft Corporation) C:\Windows\system32\temp.011
2014-07-04 18:31 - 2007-11-07 14:16 - 00188487 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\HCWPsiParser.ax
2014-07-04 18:31 - 2006-07-21 14:07 - 00176197 _____ (Hauppauge Computer Works Inc.) C:\Windows\system32\hcwmux.ax
2014-07-04 18:31 - 2006-02-13 14:02 - 00057344 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwFWrit.ax
2014-07-04 18:31 - 2004-06-07 23:03 - 00036921 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwutl32.dll
2014-07-04 18:31 - 2000-03-07 15:22 - 00278581 _____ (Microsoft Corporation) C:\Windows\system32\temp.00A
2014-07-04 18:31 - 2000-02-11 16:58 - 00995383 _____ (Microsoft Corporation) C:\Windows\system32\temp.00B
2014-07-04 18:31 - 1998-06-16 19:45 - 00077878 _____ (Microsoft Corporation) C:\Windows\system32\temp.009
2014-07-04 18:30 - 2014-07-04 18:33 - 00000160 _____ () C:\Windows\DirectX.log
2014-07-04 18:30 - 2014-07-04 18:30 - 00005321 _____ () C:\Windows\system32\UnEPGService.LOG
2014-07-04 18:30 - 2014-07-04 18:30 - 00000399 _____ () C:\Windows\vtplus32.ini
2014-07-04 18:30 - 2014-07-04 18:30 - 00000030 _____ () C:\Windows\system32\UNWISE.INI
2014-07-04 18:30 - 2014-07-04 18:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTPlus für WinTV
2014-07-04 18:30 - 2014-07-04 18:30 - 00000000 ____D () C:\Program Files\vtplus
2014-07-04 18:30 - 2007-07-19 14:44 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\mfc71d.dll
2014-07-04 18:30 - 2007-07-19 14:44 - 00765952 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71d.dll
2014-07-04 18:30 - 2007-07-19 14:44 - 00544768 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71d.dll
2014-07-04 18:30 - 1999-06-24 21:55 - 00149504 _____ () C:\Windows\system32\UNWISE.EXE
2014-07-04 18:29 - 2014-07-04 18:29 - 00032133 _____ () C:\Windows\Irremote.ini
2014-07-04 18:29 - 2014-07-04 18:29 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hauppauge WinTV
2014-07-04 18:29 - 2014-07-04 18:29 - 00000000 ____D () C:\Program Files\Common Files\IviSDK
2014-07-04 18:29 - 2014-07-04 18:29 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-07-04 18:29 - 2006-05-08 09:55 - 00118784 _____ (Hauppauge Computer Works Inc) C:\Windows\system32\HCWSched.ocx
2014-07-04 18:29 - 2006-05-08 09:55 - 00040960 _____ (Hauppauge Computer Works) C:\Windows\system32\HcwTvTvOCX.ocx
2014-07-04 18:29 - 2006-05-08 09:55 - 00028672 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwsched.dll
2014-07-04 18:29 - 2006-05-08 09:54 - 00204800 _____ (Hauppauge Computer Works) C:\Windows\system32\Mdcustoms.ocx
2014-07-04 18:29 - 2006-05-08 09:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\MSSTDFMT.DLL
2014-07-04 18:29 - 2006-05-08 09:54 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\MSCAL.OCX
2014-07-04 18:29 - 2006-05-08 09:54 - 00073792 _____ (Hauppauge Computer Works, Inc) C:\Windows\system32\CHSUITE.OCX
2014-07-04 18:29 - 2006-05-08 09:54 - 00065536 _____ () C:\Windows\system32\dmcrypto.dll
2014-07-04 18:29 - 2006-05-08 09:54 - 00053248 _____ (Hauppauge) C:\Windows\system32\MDCustomPanels.ocx
2014-07-04 18:29 - 2006-01-25 17:38 - 00069632 _____ (Hauppauge Computer Works ) C:\Windows\system32\3DES.dll
2014-07-04 18:29 - 1998-06-25 02:43 - 01409024 _____ (Microsoft Corporation) C:\Windows\system32\temp.007
2014-07-04 18:29 - 1998-06-18 11:33 - 00598288 _____ (Microsoft Corporation) C:\Windows\system32\temp.003
2014-07-04 18:29 - 1998-06-18 11:33 - 00164112 _____ (Microsoft Corporation) C:\Windows\system32\temp.004
2014-07-04 18:29 - 1998-06-18 11:32 - 00147728 _____ (Microsoft Corporation) C:\Windows\system32\temp.005
2014-07-04 18:29 - 1998-06-17 00:13 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\temp.006
2014-07-04 18:29 - 1998-05-31 16:06 - 00022288 _____ (Microsoft Corporation) C:\Windows\system32\temp.008
2014-07-04 18:28 - 2014-07-04 18:31 - 00109646 _____ () C:\Windows\system32\HCW_ChanDB.LOG
2014-07-04 18:28 - 2014-07-04 18:31 - 00000209 _____ () C:\Windows\ODBCINST.INI
2014-07-04 18:28 - 2014-07-04 18:31 - 00000135 _____ () C:\Windows\ODBC.INI
2014-07-04 18:28 - 2007-11-08 14:37 - 00761929 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwtvwnd.dll
2014-07-04 18:28 - 2007-11-08 14:32 - 00409600 _____ () C:\Windows\system32\HCWChMgr.ocx
2014-07-04 18:28 - 2007-11-08 13:16 - 00159744 _____ () C:\Windows\system32\hcwChDB.dll
2014-07-04 18:28 - 2007-11-02 14:56 - 00046548 _____ () C:\Windows\system32\HCWTVServer.tlb
2014-07-04 18:28 - 2007-09-18 17:24 - 00213066 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwdvbsubtitles.ax
2014-07-04 18:28 - 2006-09-13 10:13 - 00023304 _____ () C:\Windows\system32\HcwChDB.tlb
2014-07-04 18:28 - 2006-08-23 09:26 - 00081920 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwSplit.ax
2014-07-04 18:28 - 2006-04-06 12:46 - 00065536 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwNowNext.ax
2014-07-04 18:28 - 2006-03-28 16:38 - 00057344 _____ (DScaler Project, see hxxp://www.dscaler.org/) C:\Windows\system32\HCWdlace.ax
2014-07-04 18:28 - 2005-03-30 13:16 - 00069632 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwPP2PP.ocx
2014-07-04 18:28 - 2004-09-10 14:58 - 00094208 _____ (Hauppuage Computer Works) C:\Windows\system32\hcwsstereo.ax
2014-07-04 18:28 - 2004-01-26 13:49 - 00090190 _____ (Hauppauge Computer Works) C:\Windows\system32\Bt848WST.DLL
2014-07-04 18:28 - 2003-05-06 12:13 - 00081920 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwNull.ax
2014-07-04 18:27 - 2014-07-08 22:02 - 00000000 ____D () C:\Program Files\WinTV
2014-07-04 18:27 - 2014-07-04 18:31 - 00006241 _____ () C:\Windows\HCWPNP.INI
2014-07-04 18:27 - 2014-07-04 18:31 - 00000903 _____ () C:\Users\Public\Desktop\WinTV.lnk
2014-07-04 18:27 - 2014-07-04 18:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hauppauge WinTV
2014-07-04 18:27 - 2007-11-09 10:49 - 00073728 _____ () C:\Windows\system32\hcwChMgr.deu
2014-07-04 18:27 - 2007-10-22 19:29 - 00270392 ____N (Hauppauge Computer Works) C:\Windows\system32\hcwpnp32.dll
2014-07-04 18:27 - 2007-10-16 11:11 - 00077824 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwTVDlg.deu
2014-07-04 18:27 - 2007-10-16 11:10 - 00065536 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwDlg.deu
2014-07-04 18:27 - 2007-10-16 11:10 - 00061440 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwChan.deu
2014-07-04 18:27 - 2007-07-10 15:57 - 00102456 ____N (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwi2c32.dll
2014-07-04 18:27 - 2006-12-01 12:32 - 00073728 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwSnap.ax
2014-07-04 18:27 - 2006-05-25 07:59 - 00073728 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwFRead.ax
2014-07-04 18:27 - 2004-12-20 12:11 - 00213050 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwChan.dll
2014-07-04 18:27 - 2004-02-13 15:58 - 00065536 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwDlg.ocx
2014-07-04 18:27 - 2003-11-07 11:45 - 00106559 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwTVDlg.dll
2014-07-04 18:27 - 2001-07-19 07:44 - 00393216 _____ (Snowbound Software Corporation (www.Snowbnd.com)) C:\Windows\system32\hcwsnbd9.dll
2014-07-04 18:27 - 2000-03-07 15:22 - 00278581 _____ (Microsoft Corporation) C:\Windows\system32\temp.001
2014-07-04 18:27 - 2000-02-11 16:58 - 00995383 _____ (Microsoft Corporation) C:\Windows\system32\temp.002
2014-07-04 18:27 - 1999-04-27 15:26 - 00011264 _____ (Hauppauge Computer Works) C:\Windows\system32\hcwhook.dll
2014-07-04 18:27 - 1998-06-16 19:45 - 00077878 _____ (Microsoft Corporation) C:\Windows\system32\temp.000
2014-07-04 18:23 - 2007-10-25 10:52 - 00015488 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcw95rc.sys
2014-07-04 18:23 - 2007-10-25 10:52 - 00015488 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw95rc.sys
2014-07-04 18:23 - 2007-10-25 10:47 - 00487424 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw95bda.sys
2014-06-26 22:54 - 2014-06-23 18:09 - 00052928 _____ (StdLib) C:\Windows\system32\Drivers\{e63d9559-e4c3-499e-867a-a3c9d0a21400}w.sys
2014-06-23 11:19 - 2014-06-24 15:15 - 00000000 ____D () C:\Users\Staeritz\Desktop\Wohnung Braunschweig
2014-06-18 11:32 - 2014-06-18 11:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-18 10:19 - 2014-06-18 10:19 - 00000000 ____D () C:\Program Files\Lame For Audacity
2014-06-18 10:18 - 2014-06-18 10:18 - 00527423 _____ ( ) C:\Users\Staeritz\Downloads\Lame_v3.99.3_for_Windows.exe
2014-06-18 10:10 - 2014-06-18 09:46 - 00000030 _____ () C:\AVScanner.ini
2014-06-18 10:07 - 2014-06-19 19:19 - 00000000 ____D () C:\Users\Staeritz\Desktop\Internet
2014-06-18 09:54 - 2014-07-15 20:42 - 00000000 ____D () C:\Users\Staeritz\AppData\Local\Adobe
2014-06-18 09:47 - 2014-06-18 09:47 - 00650657 _____ () C:\Users\Staeritz\Downloads\lame3.99.5.zip
2014-06-18 09:07 - 2014-06-19 10:28 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\Audacity
2014-06-18 09:06 - 2014-06-18 10:20 - 00000000 ____D () C:\Program Files\Audacity
2014-06-18 09:06 - 2014-06-18 09:06 - 00000959 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-06-18 09:04 - 2014-06-18 09:04 - 22180353 _____ (Audacity Team ) C:\Users\Staeritz\Downloads\audacity-win-2.0.5.exe
2014-06-18 08:31 - 2014-06-09 12:10 - 00052928 _____ (StdLib) C:\Windows\system32\Drivers\{e63d9559-e4c3-499e-867a-a3c9d0a21400}Gw.sys
2014-06-17 17:42 - 2014-06-17 17:42 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\mp3DirectCut
2014-06-17 17:41 - 2014-06-17 17:41 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\dlg
2014-06-17 17:41 - 2014-06-17 17:41 - 00000000 ____D () C:\Program Files\mp3DirectCut
2014-06-17 17:40 - 2014-07-16 18:48 - 00003434 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-11.job
2014-06-17 17:40 - 2014-07-16 18:48 - 00002132 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-4.job
2014-06-17 17:40 - 2014-07-16 18:48 - 00001438 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-1.job
2014-06-17 17:40 - 2014-07-16 18:48 - 00001386 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-5.job
2014-06-17 17:40 - 2014-07-16 13:35 - 00000908 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-06-17 17:39 - 2014-07-16 18:48 - 00002752 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-3.job
2014-06-17 17:39 - 2014-07-16 13:35 - 00000904 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-06-17 17:39 - 2014-06-17 17:40 - 00000000 ____D () C:\Program Files\HD-V1.3
2014-06-17 17:39 - 2014-06-17 17:39 - 00000000 ____D () C:\Users\Staeritz\AppData\Local\globalUpdate
2014-06-17 17:39 - 2014-06-17 17:39 - 00000000 ____D () C:\Program Files\globalUpdate
2014-06-17 17:37 - 2014-06-17 17:38 - 00469400 _____ () C:\Users\Staeritz\Downloads\mp3directcut.exe
2014-06-17 17:35 - 2014-06-17 17:35 - 00227632 _____ () C:\Users\Staeritz\Downloads\Setup(1).exe
2014-06-17 17:33 - 2014-06-17 17:33 - 00227632 _____ () C:\Users\Staeritz\Downloads\Setup.exe
2014-06-17 17:30 - 2014-06-17 17:30 - 00468928 _____ () C:\Users\Staeritz\Downloads\soft32_mp3DirectCut_1.0.exe
2014-06-17 17:27 - 2014-06-17 17:27 - 00308709 _____ () C:\Users\Staeritz\Downloads\mp3DC220(1).exe
2014-06-17 17:23 - 2014-06-17 17:23 - 00308709 _____ () C:\Users\Staeritz\Downloads\mp3DC220.exe
2014-06-17 17:19 - 2014-06-17 17:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-06-17 17:18 - 2014-06-17 17:19 - 00000000 ____D () C:\Program Files\Free youtube converter
2014-06-17 17:18 - 2014-06-17 17:18 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-06-17 17:17 - 2014-06-17 17:20 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\DVDVideoSoft
2014-06-17 17:16 - 2014-06-17 17:16 - 34237520 _____ (DVDVideoSoft Ltd. ) C:\Users\Staeritz\Downloads\FreeYouTubeToMP3Converter3.12.39.604.exe
2014-06-17 16:56 - 2014-06-17 16:56 - 00000000 ____D () C:\Users\Staeritz\Documents\YouTube Recordings
2014-06-17 16:55 - 2014-07-16 18:48 - 00000308 _____ () C:\Windows\Tasks\MT66 Software Update.job
2014-06-17 16:55 - 2014-06-17 16:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MedienTeam66
2014-06-17 16:55 - 2014-06-17 16:55 - 00000000 ____D () C:\Program Files\Common Files\MT66 Software Update
2014-06-17 16:54 - 2014-06-17 16:54 - 10089336 _____ (MedienTeam66 Verlags GmbH ) C:\Users\Staeritz\Downloads\CHIP_Free_MP3_Converter_for_YouTube-3.0.exe
2014-06-17 16:47 - 2014-06-17 16:47 - 00012937 _____ () C:\Users\Staeritz\Downloads\gluckauf.mid
2014-06-17 16:47 - 2014-06-17 16:47 - 00012937 _____ () C:\Users\Staeritz\Downloads\gluckauf(1).mid
2014-06-16 17:28 - 2014-06-16 17:29 - 00000000 ____D () C:\Program Files\SecureW2

==================== One Month Modified Files and Folders =======

2014-07-16 19:09 - 2014-07-16 19:07 - 00020484 _____ () C:\Users\Staeritz\Downloads\FRST.txt
2014-07-16 19:07 - 2014-07-16 19:07 - 00000000 ____D () C:\FRST
2014-07-16 19:02 - 2013-08-22 16:58 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-16 19:01 - 2013-10-07 18:48 - 00271360 _____ () C:\Users\Staeritz\Documents\backupposteingangalt0110.pst
2014-07-16 19:01 - 2013-08-22 16:13 - 01275951 _____ () C:\Windows\WindowsUpdate.log
2014-07-16 18:59 - 2014-07-16 18:59 - 01077248 _____ (Farbar) C:\Users\Staeritz\Downloads\FRST.exe
2014-07-16 18:56 - 2013-09-27 09:48 - 00000000 ____D () C:\A
2014-07-16 18:50 - 2014-07-16 18:50 - 00065536 ___HT () C:\Users\Staeritz\Documents\~backupposteingangalt0110.pst.tmp
2014-07-16 18:48 - 2014-06-17 17:40 - 00003434 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-11.job
2014-07-16 18:48 - 2014-06-17 17:40 - 00002132 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-4.job
2014-07-16 18:48 - 2014-06-17 17:40 - 00001438 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-1.job
2014-07-16 18:48 - 2014-06-17 17:40 - 00001386 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-5.job
2014-07-16 18:48 - 2014-06-17 17:39 - 00002752 _____ () C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-3.job
2014-07-16 18:48 - 2014-06-17 16:55 - 00000308 _____ () C:\Windows\Tasks\MT66 Software Update.job
2014-07-16 18:48 - 2014-01-05 10:04 - 00000300 _____ () C:\Windows\Tasks\FoxTab.job
2014-07-16 18:48 - 2014-01-05 10:00 - 00000304 _____ () C:\Windows\Tasks\Digital Sites.job
2014-07-16 13:35 - 2014-07-08 13:30 - 00002148 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-4.job
2014-07-16 13:35 - 2014-06-17 17:40 - 00000908 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-07-16 13:35 - 2014-06-17 17:39 - 00000904 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-07-16 13:31 - 2014-07-08 13:31 - 00001538 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-1.job
2014-07-16 13:31 - 2014-07-08 13:31 - 00001440 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-5_user.job
2014-07-16 13:31 - 2014-07-08 13:31 - 00001422 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-5.job
2014-07-16 13:30 - 2014-07-08 13:30 - 00003444 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-11.job
2014-07-16 13:30 - 2014-07-08 13:29 - 00002418 _____ () C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-3.job
2014-07-16 12:42 - 2014-07-16 12:42 - 00576952 _____ () C:\Users\Staeritz\Downloads\setup(6).exe
2014-07-16 12:38 - 2014-07-16 12:38 - 00575792 _____ () C:\Users\Staeritz\Downloads\setup(5).exe
2014-07-16 12:38 - 2010-11-20 23:01 - 01629372 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-16 12:35 - 2014-01-05 11:00 - 00000188 _____ () C:\Users\Staeritz\AppData\Roaming\WB.CFG
2014-07-16 11:51 - 2014-07-16 11:51 - 00575792 _____ () C:\Users\Staeritz\Downloads\setup(4).exe
2014-07-16 11:50 - 2013-10-03 21:23 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\Skype
2014-07-16 11:48 - 2014-07-16 11:47 - 00576952 _____ () C:\Users\Staeritz\Downloads\setup(3).exe
2014-07-16 11:24 - 2009-07-14 06:34 - 00022016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-16 11:24 - 2009-07-14 06:34 - 00022016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-16 11:19 - 2013-08-29 19:25 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\Dropbox
2014-07-16 11:18 - 2014-06-11 23:35 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\DropboxMaster
2014-07-16 11:18 - 2013-08-29 19:30 - 00000000 ___RD () C:\Users\Staeritz\Dropbox
2014-07-16 11:17 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-16 11:17 - 2009-07-14 06:39 - 00068937 _____ () C:\Windows\setupact.log
2014-07-15 20:42 - 2014-06-18 09:54 - 00000000 ____D () C:\Users\Staeritz\AppData\Local\Adobe
2014-07-10 23:38 - 2014-01-06 22:24 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\Mipony
2014-07-10 23:29 - 2014-07-10 23:04 - 00000000 ____D () C:\Users\Staeritz\Desktop\Kamera
2014-07-10 22:29 - 2014-07-10 22:29 - 05659136 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-07-10 22:29 - 2013-08-22 16:58 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-07-10 22:29 - 2013-08-22 16:58 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-07-10 19:34 - 2014-01-05 10:04 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\newnext.me
2014-07-10 13:33 - 2009-07-14 06:33 - 03841712 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-10 13:31 - 2014-06-13 23:19 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-10 13:31 - 2010-11-21 02:55 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-10 13:31 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-07-10 13:15 - 2013-09-09 17:21 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-10 13:12 - 2013-09-09 17:21 - 93585272 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-08 22:02 - 2014-07-04 18:27 - 00000000 ____D () C:\Program Files\WinTV
2014-07-08 14:45 - 2010-11-20 23:48 - 00096218 _____ () C:\Windows\PFRO.log
2014-07-08 14:37 - 2013-08-22 17:06 - 00001123 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-07-08 14:37 - 2013-08-22 16:23 - 00001415 _____ () C:\Users\Staeritz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-08 14:34 - 2014-07-08 13:31 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-07-08 13:38 - 2014-07-08 13:38 - 00000000 ____D () C:\Users\Staeritz\AppData\Local\com
2014-07-08 13:38 - 2014-07-08 13:29 - 00000444 __RSH () C:\ProgramData\ntuser.pol
2014-07-08 13:32 - 2014-07-08 13:31 - 00000000 ____D () C:\Program Files\SupTab
2014-07-08 13:31 - 2014-07-08 13:29 - 00000000 ____D () C:\Program Files\Browser App
2014-07-08 13:31 - 2014-01-31 12:21 - 00000000 ____D () C:\Program Files\Google
2014-07-08 13:29 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-07-08 13:27 - 2014-07-08 13:27 - 01258080 _____ () C:\Users\Staeritz\Downloads\Setup(2).exe
2014-07-08 13:21 - 2009-07-14 04:04 - 00000616 _____ () C:\Windows\win.ini
2014-07-04 18:33 - 2014-07-04 18:30 - 00000160 _____ () C:\Windows\DirectX.log
2014-07-04 18:32 - 2013-08-22 16:23 - 00000000 ____D () C:\Users\Staeritz\AppData\Local\VirtualStore
2014-07-04 18:31 - 2014-07-04 18:28 - 00109646 _____ () C:\Windows\system32\HCW_ChanDB.LOG
2014-07-04 18:31 - 2014-07-04 18:28 - 00000209 _____ () C:\Windows\ODBCINST.INI
2014-07-04 18:31 - 2014-07-04 18:28 - 00000135 _____ () C:\Windows\ODBC.INI
2014-07-04 18:31 - 2014-07-04 18:27 - 00006241 _____ () C:\Windows\HCWPNP.INI
2014-07-04 18:31 - 2014-07-04 18:27 - 00000903 _____ () C:\Users\Public\Desktop\WinTV.lnk
2014-07-04 18:30 - 2014-07-04 18:30 - 00005321 _____ () C:\Windows\system32\UnEPGService.LOG
2014-07-04 18:30 - 2014-07-04 18:30 - 00000399 _____ () C:\Windows\vtplus32.ini
2014-07-04 18:30 - 2014-07-04 18:30 - 00000030 _____ () C:\Windows\system32\UNWISE.INI
2014-07-04 18:30 - 2014-07-04 18:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTPlus für WinTV
2014-07-04 18:30 - 2014-07-04 18:30 - 00000000 ____D () C:\Program Files\vtplus
2014-07-04 18:30 - 2014-07-04 18:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hauppauge WinTV
2014-07-04 18:29 - 2014-07-04 18:29 - 00032133 _____ () C:\Windows\Irremote.ini
2014-07-04 18:29 - 2014-07-04 18:29 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hauppauge WinTV
2014-07-04 18:29 - 2014-07-04 18:29 - 00000000 ____D () C:\Program Files\Common Files\IviSDK
2014-07-04 18:29 - 2014-07-04 18:29 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-07-04 18:29 - 2013-09-09 13:47 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-06-30 03:40 - 2014-07-09 23:05 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-30 03:36 - 2014-07-09 23:05 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-24 15:15 - 2014-06-23 11:19 - 00000000 ____D () C:\Users\Staeritz\Desktop\Wohnung Braunschweig
2014-06-23 18:09 - 2014-06-26 22:54 - 00052928 _____ (StdLib) C:\Windows\system32\Drivers\{e63d9559-e4c3-499e-867a-a3c9d0a21400}w.sys
2014-06-20 21:39 - 2014-07-09 23:06 - 00240824 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-19 19:21 - 2013-08-23 16:17 - 00000000 ____D () C:\Program Files\CompeGPS
2014-06-19 19:19 - 2014-06-18 10:07 - 00000000 ____D () C:\Users\Staeritz\Desktop\Internet
2014-06-19 18:31 - 2013-08-22 17:06 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-19 10:28 - 2014-06-18 09:07 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\Audacity
2014-06-19 10:18 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-06-19 02:16 - 2014-07-09 23:06 - 17276416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-19 01:56 - 2014-07-09 23:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-19 01:56 - 2014-07-09 23:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-19 01:38 - 2014-07-09 23:06 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-19 01:37 - 2014-07-09 23:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-19 01:36 - 2014-07-09 23:06 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-19 01:35 - 2014-07-09 23:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-19 01:32 - 2014-07-09 23:06 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-19 01:28 - 2014-07-09 23:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-19 01:28 - 2014-07-09 23:06 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-19 01:25 - 2014-07-09 23:06 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-19 01:23 - 2014-07-09 23:06 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-19 01:23 - 2014-07-09 23:06 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-19 01:22 - 2014-07-09 23:06 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-19 01:16 - 2014-07-09 23:06 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-19 01:12 - 2014-07-09 23:06 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-19 01:06 - 2014-07-09 23:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-19 01:01 - 2014-07-09 23:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-19 00:59 - 2014-07-09 23:06 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-19 00:58 - 2014-07-09 23:06 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-19 00:52 - 2014-07-09 23:06 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-19 00:52 - 2014-07-09 23:06 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-19 00:49 - 2014-07-09 23:06 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-19 00:46 - 2014-07-09 23:06 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-19 00:45 - 2014-07-09 23:06 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-19 00:35 - 2014-07-09 23:06 - 11742208 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-19 00:13 - 2014-07-09 23:06 - 01791488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-19 00:09 - 2014-07-09 23:06 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-19 00:07 - 2014-07-09 23:06 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-18 11:33 - 2014-06-18 11:32 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-18 10:20 - 2014-06-18 09:06 - 00000000 ____D () C:\Program Files\Audacity
2014-06-18 10:19 - 2014-06-18 10:19 - 00000000 ____D () C:\Program Files\Lame For Audacity
2014-06-18 10:18 - 2014-06-18 10:18 - 00527423 _____ ( ) C:\Users\Staeritz\Downloads\Lame_v3.99.3_for_Windows.exe
2014-06-18 09:47 - 2014-06-18 09:47 - 00650657 _____ () C:\Users\Staeritz\Downloads\lame3.99.5.zip
2014-06-18 09:46 - 2014-06-18 10:10 - 00000030 _____ () C:\AVScanner.ini
2014-06-18 09:06 - 2014-06-18 09:06 - 00000959 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-06-18 09:04 - 2014-06-18 09:04 - 22180353 _____ (Audacity Team ) C:\Users\Staeritz\Downloads\audacity-win-2.0.5.exe
2014-06-18 03:51 - 2014-07-09 23:05 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-06-18 02:52 - 2014-07-09 23:05 - 02350080 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-06-17 17:42 - 2014-06-17 17:42 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\mp3DirectCut
2014-06-17 17:41 - 2014-06-17 17:41 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\dlg
2014-06-17 17:41 - 2014-06-17 17:41 - 00000000 ____D () C:\Program Files\mp3DirectCut
2014-06-17 17:40 - 2014-06-17 17:39 - 00000000 ____D () C:\Program Files\HD-V1.3
2014-06-17 17:39 - 2014-06-17 17:39 - 00000000 ____D () C:\Users\Staeritz\AppData\Local\globalUpdate
2014-06-17 17:39 - 2014-06-17 17:39 - 00000000 ____D () C:\Program Files\globalUpdate
2014-06-17 17:38 - 2014-06-17 17:37 - 00469400 _____ () C:\Users\Staeritz\Downloads\mp3directcut.exe
2014-06-17 17:35 - 2014-06-17 17:35 - 00227632 _____ () C:\Users\Staeritz\Downloads\Setup(1).exe
2014-06-17 17:33 - 2014-06-17 17:33 - 00227632 _____ () C:\Users\Staeritz\Downloads\Setup.exe
2014-06-17 17:30 - 2014-06-17 17:30 - 00468928 _____ () C:\Users\Staeritz\Downloads\soft32_mp3DirectCut_1.0.exe
2014-06-17 17:27 - 2014-06-17 17:27 - 00308709 _____ () C:\Users\Staeritz\Downloads\mp3DC220(1).exe
2014-06-17 17:23 - 2014-06-17 17:23 - 00308709 _____ () C:\Users\Staeritz\Downloads\mp3DC220.exe
2014-06-17 17:20 - 2014-06-17 17:17 - 00000000 ____D () C:\Users\Staeritz\AppData\Roaming\DVDVideoSoft
2014-06-17 17:19 - 2014-06-17 17:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-06-17 17:19 - 2014-06-17 17:18 - 00000000 ____D () C:\Program Files\Free youtube converter
2014-06-17 17:18 - 2014-06-17 17:18 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-06-17 17:16 - 2014-06-17 17:16 - 34237520 _____ (DVDVideoSoft Ltd. ) C:\Users\Staeritz\Downloads\FreeYouTubeToMP3Converter3.12.39.604.exe
2014-06-17 16:56 - 2014-06-17 16:56 - 00000000 ____D () C:\Users\Staeritz\Documents\YouTube Recordings
2014-06-17 16:56 - 2013-10-09 19:43 - 00000000 ____D () C:\ProgramData\TEMP
2014-06-17 16:55 - 2014-06-17 16:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MedienTeam66
2014-06-17 16:55 - 2014-06-17 16:55 - 00000000 ____D () C:\Program Files\Common Files\MT66 Software Update
2014-06-17 16:54 - 2014-06-17 16:54 - 10089336 _____ (MedienTeam66 Verlags GmbH ) C:\Users\Staeritz\Downloads\CHIP_Free_MP3_Converter_for_YouTube-3.0.exe
2014-06-17 16:47 - 2014-06-17 16:47 - 00012937 _____ () C:\Users\Staeritz\Downloads\gluckauf.mid
2014-06-17 16:47 - 2014-06-17 16:47 - 00012937 _____ () C:\Users\Staeritz\Downloads\gluckauf(1).mid
2014-06-17 16:08 - 2013-09-13 18:54 - 00002465 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
2014-06-17 16:08 - 2013-09-13 18:54 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
2014-06-17 16:08 - 2013-09-13 18:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
2014-06-16 17:33 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-16 17:29 - 2014-06-16 17:28 - 00000000 ____D () C:\Program Files\SecureW2
2014-06-16 17:27 - 2013-09-03 20:02 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-06-16 17:21 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\tracing

Some content of TEMP:
====================
C:\Users\Staeritz\AppData\Local\Temp\60243uninstall.exe
C:\Users\Staeritz\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpqtmkiy.dll
C:\Users\Staeritz\AppData\Local\Temp\nsa86B0.exe
C:\Users\Staeritz\AppData\Local\Temp\nsi24F3.exe
C:\Users\Staeritz\AppData\Local\Temp\nsi7602.exe
C:\Users\Staeritz\AppData\Local\Temp\nsn8168.exe
C:\Users\Staeritz\AppData\Local\Temp\nss199C.exe
C:\Users\Staeritz\AppData\Local\Temp\ose00000.exe
C:\Users\Staeritz\AppData\Local\Temp\SPSetup.exe
C:\Users\Staeritz\AppData\Local\Temp\Sqlite3.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-08 21:46

==================== End Of Log ============================
--- --- ---

--- --- ---


Soll ich noch mehr machen? Schonmal vielen Dank für die Hilfe!!
Viele Grüße

cosinus 16.07.2014 19:38
Addition.txt Logfile fehlt. Außerdem fragte ich nach Virenscanner-Logs mit Funden.

waldlaeufer 16.07.2014 21:12
FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version:15-07-2014 01
Ran by Staeritz at 2014-07-16 22:06:54
Running from C:\Users\Staeritz\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Sophos Anti-Virus (Enabled - Up to date) {6BABF8F7-3EB6-BD1D-9167-8C5ECA060A29}
AS: Sophos Anti-Virus (Enabled - Up to date) {D0CA1913-188C-B293-ABD7-B72CB1814094}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
AccelerometerP11 (HKLM\...\{87434D51-51DB-4109-B68F-A829ECDCF380}) (Version: 2.00.10.34 - STMicroelectronics)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.10 - Adobe Systems)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 6 Master Collection (HKLM\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe Widget Browser (Version: 2.0.348 - Adobe Systems Incorporated.) Hidden
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
bl (Version: 1.0.0 - Your Company Name) Hidden
Browser App (HKLM\...\Browser App) (Version: 1.34.7.1 - browser)
Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
CompeGPS LAND 7.0.3 (HKLM\...\CompeGPS LAND_is1) (Version:  - CompeGPS TEAM, S.L.)
CompeGPSDownloader version 1.18 (HKLM\...\CompeGPSDownloader_is1) (Version: 1.18 - CompeGPS TEAM, S.L.)
DATA BECKER web to date 5 (HKLM\...\web2date) (Version:  - DATA BECKER)
Dell ControlVault Host Components Installer (HKLM\...\{8022CB10-15F8-43C6-AA18-6A38AEDD86B6}) (Version: 2.3.309.1625 - Broadcom Corporation)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1208.101.124 - ALPS ELECTRIC CO., LTD.)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 5.100.235.13 - Dell Inc.)
FastStone Capture 5.3 (HKLM\...\FastStone Capture) (Version: 5.3 - FastStone Soft)
Free YouTube to MP3 Converter version 3.12.39.604 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.39.604 - DVDVideoSoft Ltd.)
Freizeitkarte_BEL (Ausgabe 14.01) (HKLM\...\Freizeitkarte_BEL) (Version:  - )
Freizeitkarte_CZE (Ausgabe 14.01) (HKLM\...\Freizeitkarte_CZE) (Version:  - )
Freizeitkarte_DEU (Ausgabe 14.01) (HKLM\...\Freizeitkarte_DEU) (Version:  - )
Freizeitkarte_FIN (Ausgabe 14.01) (HKLM\...\Freizeitkarte_FIN) (Version:  - )
Freizeitkarte_LTU (Ausgabe 14.01) (HKLM\...\Freizeitkarte_LTU) (Version:  - )
Freizeitkarte_NLD (Ausgabe 14.01) (HKLM\...\Freizeitkarte_NLD) (Version:  - )
Freizeitkarte_NOR (Ausgabe 14.01) (HKLM\...\Freizeitkarte_NOR) (Version:  - )
Garmin BaseCamp (HKLM\...\{EBAC8FD4-28EC-46F7-BF9E-89D6E6673001}) (Version: 4.2.5 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM\...\{ABA5E381-EC46-425C-86C5-5CD15BBFB4BF}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.25.0 - Google Inc.) Hidden
Hauppauge German Help Files and Resources (HKLM\...\Hauppauge German Help Files and Resources) (Version:  - )
Hauppauge WinTV (HKLM\...\Hauppauge WinTV) (Version:  - )
Hauppauge WinTV DVB-T EPG Service (HKLM\...\Hauppauge WinTV DVB-T EPG Service) (Version:  - )
Hauppauge WinTV Infrared Remote (HKLM\...\Hauppauge WinTV Infrared Remote) (Version:  - )
Hauppauge WinTV Scheduler (HKLM\...\Hauppauge WinTV Scheduler) (Version:  - )
Hauppauge WinTV TV Services (HKLM\...\Hauppauge WinTV TV Services) (Version:  - )
HD-V1.3 (HKLM\...\HD-V1.3) (Version: 1.34.6.10 - PlusHDv1.3)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.70.1205 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.1 - Intel)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2353 - Intel Corporation)
InterVideo FilterSDK for Hauppauge (HKLM\...\{2227E1FA-01F5-483C-AB0E-2A308E900B3D}) (Version:  - InterVideo Inc.)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version:  - )
Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version:  - Microsoft)
Microsoft Office 2010 Service Pack 1 (SP1) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000 - Adobe) Hidden
MiPony 2.0.2 (HKLM\...\MiPony) (Version: 2.0.2 - )
Mozilla Firefox 30.0 (x86 de) (HKLM\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MT66 Software Update (HKLM\...\{F2E4F3A5-A8F0-46F4-8E91-E8C1DE1FCFE5}_is1) (Version:  - )
O2Micro Flash Memory Card Windows Driver (HKLM\...\InstallShield_{0CB3B7EE-52C7-4136-AF40-605567D90318}) (Version: 3.0.07.23 - O2Micro International LTD.)
O2Micro Flash Memory Card Windows Driver (Version: 3.0.07.23 - O2Micro International LTD.) Hidden
PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (Version: 1.0.0 - Your Company Name) Hidden
Pixum Fotobuch (HKLM\...\Pixum Fotobuch) (Version: 5.1.3 - CEWE Stiftung u Co. KGaA)
SecureW2 Enterprise Client 3.5.9 MSI Installer (HKLM\...\{BB31059C-CB92-483F-8DFC-8BD374FEC9E4}) (Version: 3.5.9 - SecureW2)
Skype™ 6.16 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Sophos Anti-Virus (HKLM\...\{D929B3B5-56C6-46CC-B3A3-A1A784CBB8E4}) (Version: 10.3.7 - Sophos Limited)
Sophos AutoUpdate (HKLM\...\{D924231F-D02D-4E0B-B511-CC4A0E3ED547}) (Version: 3.1.1.18 - Sophos Limited)
Tinypic 3.18 (HKLM\...\{E3723A04-A894-4036-A78E-282E18F43C0A}_is1) (Version: Tinypic 3.18 - E. Fiedler)
Update for Mipony Download Manager (HKCU\...\Digital Sites) (Version:  - Update for Mipony Download Manager) <==== ATTENTION
Virtual WiFi Router version 3.0 (HKLM\...\{F5F33265-5CAA-4F12-AA8F-7F8384BF2A57}_is1) (Version: 3.0 - Virtual WiFi Router, Inc.)
VirtualCloneDrive (HKLM\...\VirtualCloneDrive) (Version:  - Elaborate Bytes)
VLC media player 2.1.2 (HKLM\...\VLC media player) (Version: 2.1.2 - VideoLAN)
VTPlus32 für WinTV (German) (HKLM\...\VTPlus32 für WinTV (German)) (Version:  - )
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
WinRAR 5.00 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Restore Points  =========================

28-03-2014 09:58:53 Windows Update
03-04-2014 07:40:25 Windows Update
11-06-2014 22:32:42 Windows Update
12-06-2014 22:10:16 Windows Update
13-06-2014 19:16:09 Windows Update
15-06-2014 12:12:55 Windows Update
16-06-2014 15:21:01 Installed SecureW2 Enterprise Client 3.5.9 MSI Installer
16-06-2014 15:26:41 Removed SecureW2 Enterprise Client 3.5.9 MSI Installer
16-06-2014 15:27:49 Removed SecureW2 Enterprise Client 3.5.9 MSI Installer
16-06-2014 15:28:27 Installed SecureW2 Enterprise Client 3.5.9 MSI Installer
26-06-2014 20:53:39 Windows Update
04-07-2014 14:07:28 Windows Update
08-07-2014 11:20:51 Windows Update
08-07-2014 11:29:41 Uniblue SpeedUpMyPC installation
10-07-2014 11:10:42 Windows Update
14-07-2014 08:38:36 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:04 - 2013-09-13 19:20 - 00001028 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1                  activate.adobe.com
127.0.0.1                  practivate.adobe.com
127.0.0.1                  lmlicenses.wip4.adobe.com
127.0.0.1                  lm.licenses.adobe.com


==================== Scheduled Tasks (whitelisted) =============

Task: {0A7B82BE-0648-49DD-AF78-91BFB644E82A} - System32\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-5_user => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-5.exe [2014-07-08] (browser)
Task: {13664454-BBD5-489E-B289-022D2830F863} - System32\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-1 => C:\Program Files\Browser App\Browser App-codedownloader.exe
Task: {143BC508-3844-4D8E-9FD9-85A0AD852E05} - System32\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-11 => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-11.exe [2014-07-08] (browser)
Task: {23E9B76C-C927-4343-AF3B-81864E0FF02E} - System32\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-4 => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-4.exe [2014-07-08] (browser)
Task: {4082F90E-86B0-4147-AFDF-8641490B4F69} - System32\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-5 => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-5.exe [2014-07-08] (browser)
Task: {52313406-68E9-482E-9672-8FF8618F4791} - System32\Tasks\FoxTab => C:\Users\Staeritz\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {6773BC5B-C24F-495C-9E61-D9F8BE93F67A} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-07-08] (globalUpdate) <==== ATTENTION
Task: {7F2A8989-5CD8-4307-A62F-C9A08FF58163} - System32\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-1 => C:\Program Files\HD-V1.3\HD-V1.3-codedownloader.exe
Task: {822F2B95-F298-49D7-9C30-F98CC12B9D36} - System32\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-11 => C:\Program Files\HD-V1.3\18b394ea-1728-4cef-8ae2-0116414b4fec-11.exe [2014-06-17] (PlusHDv1.3)
Task: {86E228B1-B00D-49F6-A0F4-7BF76CD0AE72} - System32\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-5 => C:\Program Files\HD-V1.3\18b394ea-1728-4cef-8ae2-0116414b4fec-5.exe [2014-06-17] (PlusHDv1.3)
Task: {97DD1252-1252-499D-AEC8-D8010D886271} - System32\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-3 => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-3.exe [2014-07-08] (browser)
Task: {A60099B4-A8EE-4D0B-97FF-BFB78B2AF178} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-07-08] (globalUpdate) <==== ATTENTION
Task: {B6C997ED-62CF-42D7-BD4A-45B1786D4D7E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-10] (Adobe Systems Incorporated)
Task: {BC8BB881-C6CB-4B08-B103-C197C27FC924} - System32\Tasks\AdobeAAMUpdater-1.0-Waldlaeufer-Staeritz => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {BE870F79-BBCF-45B4-BEB4-020314C37D9B} - System32\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-4 => C:\Program Files\HD-V1.3\18b394ea-1728-4cef-8ae2-0116414b4fec-4.exe [2014-06-17] (PlusHDv1.3)
Task: {D45A1696-4D33-4BBB-95C8-C405B53A42F1} - System32\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-3 => C:\Program Files\HD-V1.3\18b394ea-1728-4cef-8ae2-0116414b4fec-3.exe [2014-06-17] (PlusHDv1.3)
Task: {E1B05D99-0D6F-4726-B34C-AAC220B095B6} - System32\Tasks\Digital Sites => C:\Users\Staeritz\AppData\Roaming\DigitalSites\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {F9AB6ADB-B08B-4022-BDB0-35C722FD6C5B} - System32\Tasks\MT66 Software Update => C:\Program Files\Common Files\MT66 Software Update\UpdateClient.exe [2009-11-18] (MedienTeam66)
Task: C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-1.job => C:\Program Files\HD-V1.3\HD-V1.3-codedownloader.exe
Task: C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-11.job => C:\Program Files\HD-V1.3\18b394ea-1728-4cef-8ae2-0116414b4fec-11.exe
Task: C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-3.job => C:\Program Files\HD-V1.3\18b394ea-1728-4cef-8ae2-0116414b4fec-3.exe
Task: C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-4.job => C:\Program Files\HD-V1.3\18b394ea-1728-4cef-8ae2-0116414b4fec-4.exe
Task: C:\Windows\Tasks\18b394ea-1728-4cef-8ae2-0116414b4fec-5.job => C:\Program Files\HD-V1.3\18b394ea-1728-4cef-8ae2-0116414b4fec-5.exe
Task: C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-1.job => C:\Program Files\Browser App\Browser App-codedownloader.exe
Task: C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-11.job => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-11.exe
Task: C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-3.job => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-3.exe
Task: C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-4.job => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-4.exe
Task: C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-5.job => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-5.exe
Task: C:\Windows\Tasks\a5486734-b226-48d1-85a8-2e91dd49cc8b-5_user.job => C:\Program Files\Browser App\a5486734-b226-48d1-85a8-2e91dd49cc8b-5.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\Staeritz\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\FoxTab.job => C:\Users\Staeritz\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MT66 Software Update.job => C:\Program Files\Common Files\MT66 Software Update\UpdateClient.exe

==================== Loaded Modules (whitelisted) =============

2011-03-17 00:11 - 2011-03-17 00:11 - 04297568 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-09-09 13:47 - 2003-04-18 18:06 - 00008192 _____ () C:\Windows\system32\srvany.exe
2013-09-09 11:11 - 2011-04-05 02:18 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2013-09-09 14:29 - 2012-09-05 12:51 - 00686744 _____ () C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe
2014-05-08 13:22 - 2014-05-08 13:22 - 00019968 _____ () C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\acrotray.deu
2014-07-16 11:18 - 2014-07-16 11:18 - 00043008 _____ () c:\users\staeritz\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpqtmkiy.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\Staeritz\AppData\Roaming\Dropbox\bin\libcef.dll
2014-06-18 11:32 - 2014-06-18 11:33 - 03852912 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2011-03-17 00:11 - 2011-03-17 00:11 - 04297568 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf
2014-05-08 13:21 - 2014-05-08 13:21 - 02897280 _____ () C:\Program Files\Adobe\Acrobat 10.0\PDFMaker\Common\AdobePDFMakerX.dll
2014-05-08 13:22 - 2014-05-08 13:22 - 01446400 _____ () C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\PDFMaker\AdobePDFMakerX.DEU
2010-12-21 01:15 - 2010-12-21 01:15 - 01041248 _____ () C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
2014-07-10 22:29 - 2014-07-10 22:29 - 17029808 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll
2014-05-08 13:22 - 2014-05-08 13:22 - 00105984 _____ () C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Locale\de_de\PDFMaker\PDFMOfficeAddin.DEU

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/16/2014 01:29:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 30.0.0.5269, Zeitstempel: 0x53914233
Name des fehlerhaften Moduls: mozalloc.dll, Version: 30.0.0.5269, Zeitstempel: 0x53911393
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000141b
ID des fehlerhaften Prozesses: 0xc34
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (07/16/2014 00:35:34 PM) (Source: Sophos Anti-Virus) (EventID: 9) (User: NT-AUTORITÄT)
Description: Der Scan von 'Boot Record, Laufwerk G:' führte zu SAV Interface-Fehler 0xa0040210: Kein Zugriff auf Datei.

Error: (07/16/2014 11:55:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 30.0.0.5269, Zeitstempel: 0x53914233
Name des fehlerhaften Moduls: mozalloc.dll, Version: 30.0.0.5269, Zeitstempel: 0x53911393
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000141b
ID des fehlerhaften Prozesses: 0xe30
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (07/16/2014 11:19:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/15/2014 08:33:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2014 02:16:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2014 10:34:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/10/2014 07:34:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/10/2014 01:08:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/09/2014 10:59:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (07/08/2014 08:48:35 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {577975B8-C40E-43E6-B0DE-4C6B44088B52}

Error: (07/08/2014 01:32:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Search Protect Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (07/06/2014 08:32:56 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (07/06/2014 11:58:50 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (07/04/2014 06:20:37 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (06/30/2014 03:23:34 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.178.63
registriert werden. Der Computer mit IP-Adresse 192.168.178.125 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (06/30/2014 03:18:24 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.178.63
registriert werden. Der Computer mit IP-Adresse 192.168.178.125 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (06/30/2014 03:06:33 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.178.59
registriert werden. Der Computer mit IP-Adresse 192.168.178.125 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (06/30/2014 03:01:21 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.178.59
registriert werden. Der Computer mit IP-Adresse 192.168.178.125 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (06/30/2014 02:39:57 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.178.59
registriert werden. Der Computer mit IP-Adresse 192.168.178.125 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.


Microsoft Office Sessions:
=========================
Error: (07/16/2014 01:29:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe30.0.0.526953914233mozalloc.dll30.0.0.526953911393800000030000141bc3401cfa0e1a9f9a718C:\Program Files\Mozilla Firefox\plugin-container.exeC:\Program Files\Mozilla Firefox\mozalloc.dll79e1a4a0-0cdc-11e4-a58f-74de2b978124

Error: (07/16/2014 00:35:34 PM) (Source: Sophos Anti-Virus) (EventID: 9) (User: NT-AUTORITÄT)
Description: Boot Record, Laufwerk G:Kein Zugriff auf Datei.a0040210LOGICAL:0006:00000000

Error: (07/16/2014 11:55:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe30.0.0.526953914233mozalloc.dll30.0.0.526953911393800000030000141be3001cfa0d9005d2fa0C:\Program Files\Mozilla Firefox\plugin-container.exeC:\Program Files\Mozilla Firefox\mozalloc.dll52bc9558-0ccf-11e4-a58f-74de2b978124

Error: (07/16/2014 11:19:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/15/2014 08:33:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2014 02:16:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2014 10:34:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/10/2014 07:34:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/10/2014 01:08:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/09/2014 10:59:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Percentage of memory in use: 64%
Total physical RAM: 3241.02 MB
Available physical RAM: 1163.56 MB
Total Pagefile: 6480.32 MB
Available Pagefile: 4211.18 MB
Total Virtual: 2047.88 MB
Available Virtual: 1921.79 MB

==================== Drives ================================

Drive c: (Win x86 01.09.2013) (Fixed) (Total:232.11 GB) (Free:50.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 75D2AFF4)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=752 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=232 GB) - (Type=07 NTFS)

==================== End Of Log ============================
--- --- ---


Als Virenscanner habe ich Sophos... gibt es da auch Log Files? Vielen Dank

cosinus 17.07.2014 20:31
Zitat:
gibt es da auch Log Files?
Was soll ich dazu sagen...glaubst du Sophos sei das einzige Programm, das keine Logs erstellt?
Wir können hier aber nicht zu jedem Programm in allen Versionen bebilderte Anleitungen erstellen, also musst du hier mal selbst schauen wo es die Logs hat. WENN es denn überhaupt Funde gab.


Alle Zeitangaben in WEZ +1. Es ist jetzt 14:00 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131