| dilledap | 30.07.2014 18:22 |
bitte sehr,
FRST.TXT
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-07-2014
Ran by Admin (administrator) on ZEUS on 30-07-2014 19:08:24
Running from C:\Users\Admin\Desktop
Platform: Windows 8.1 Pro (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AIMP DevTeam) C:\Program Files (x86)\AIMP3\AIMP3.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(hxxp://cryptload.info) K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\CryptLoad.exe
(Mozilla Corporation) C:\Program Files\Waterfox\waterfox.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [362032 2009-10-31] (Acronis)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5140952 2009-10-31] (Acronis)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKU\S-1-5-21-919597516-2788177221-441991105-1006\...\Run: [icq] => C:\Users\Sandboxie\AppData\Roaming\ICQM\icq.exe [34826760 2014-05-14] (ICQ)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Control Center.lnk
ShortcutTarget: Control Center.lnk -> C:\Program Files (x86)\funkwerk WIN-Tools\Eumex 401 WIN-Tools V1.00\ControlCenter.exe (Funkwerk Enterprise Communications GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISDNWatch.lnk
ShortcutTarget: ISDNWatch.lnk -> C:\Program Files (x86)\FRITZ!\IWatch.exe (AVM Berlin)
ShellIconOverlayIdentifiers-x32: SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x4101A40BB9FECE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Perfect PDF 6 - {1182C30C-238A-40AA-B619-619E2F30E327} - C:\Program Files (x86)\soft Xpansion\Perfect PDF 6\iexp64.dll (soft Xpansion)
Toolbar: HKLM-x32 - Perfect PDF 6 - {1182C30C-238A-40AA-B619-619E2F30E327} - C:\Program Files (x86)\soft Xpansion\Perfect PDF 6\iexp32.dll (soft Xpansion)
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1396199093435
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://192.168.2.1/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: German Dictionary (de-DE), classical and reformed - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\alterechtschreibung@gmail.com [2014-04-13]
FF Extension: WOT - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-12-22]
FF Extension: Deutsch (DE) Language Pack - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\langpack-de@Waterfox.mozilla.org.xpi [2014-07-11]
FF Extension: NoScript - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-22]
FF Extension: DownThemAll! - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2khcv7pa.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-12-22]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Firefox28\firefox.exe
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S4 SXDS10; C:\Program Files (x86)\Common Files\soft Xpansion\sxds10.exe [234096 2014-01-16] (soft Xpansion)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
S4 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe -update [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AVMCOWAN; C:\Windows\system32\DRIVERS\AVMCOWAN.sys [82432 2012-07-19] (AVM GmbH)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [748784 2014-04-16] (COMODO)
R1 cmdhlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [37560 2014-04-16] (COMODO)
U3 dtscsidrv; C:\Windows\System32\Drivers\dtscsidrv.sys [309248 2014-07-10] (Disc Soft Ltd)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-06-29] (Disc Soft Ltd)
R3 fpcibase; C:\Windows\system32\DRIVERS\fpcibase.sys [649344 2012-07-19] (AVM Berlin)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127664 2014-04-16] (COMODO)
U5 mbamchameleon; C:\Windows\System32\Drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-30] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-06-29] (Duplex Secure Ltd.)
R0 tdrpman258; C:\Windows\System32\DRIVERS\tdrpm258.sys [1477728 2013-12-22] (Acronis)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-07-30 19:08 - 2014-07-30 19:08 - 00013183 _____ () C:\Users\Admin\Desktop\FRST.txt
2014-07-30 19:08 - 2014-07-30 19:08 - 00000000 ____D () C:\FRST
2014-07-30 19:07 - 2014-07-26 09:39 - 02093568 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2014-07-30 18:56 - 2014-07-30 18:56 - 00000556 _____ () C:\Users\Sandboxie\Desktop\CANADA VPN - Verknüpfung.lnk
2014-07-30 17:58 - 2014-07-30 17:58 - 01544704 _____ () C:\WINDOWS\isRS-000.tmp
2014-07-30 17:30 - 2014-07-30 17:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InetStat
2014-07-30 17:30 - 2014-07-30 17:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\InetStat
2014-07-30 17:30 - 2014-07-30 17:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\GetPrivate
2014-07-30 16:49 - 2014-07-30 16:49 - 00001804 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-30 16:49 - 2014-07-30 16:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-30 16:48 - 2014-07-30 16:49 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-07-30 16:48 - 2014-07-30 16:49 - 00000000 ____D () C:\Program Files\iTunes
2014-07-30 16:48 - 2014-07-30 16:49 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-07-30 16:48 - 2014-07-30 16:48 - 00000000 ____D () C:\Users\Admin\AppData\Local\Apple Computer
2014-07-30 16:48 - 2014-07-30 16:48 - 00000000 ____D () C:\Program Files\iPod
2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files\Java
2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files\Bonjour
2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-07-30 16:43 - 2014-07-30 16:43 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Apple
2014-07-29 17:13 - 2014-07-30 18:53 - 00214540 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-27 00:05 - 2014-07-27 00:19 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\Skype
2014-07-27 00:05 - 2014-07-27 00:05 - 00002533 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-27 00:05 - 2014-07-27 00:05 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-27 00:05 - 2014-07-27 00:05 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Skype
2014-07-27 00:05 - 2014-07-27 00:05 - 00000000 ____D () C:\ProgramData\Skype
2014-07-27 00:05 - 2014-07-27 00:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-24 17:09 - 2014-07-24 17:28 - 00000149 _____ () C:\Users\Privat.Zeus\Desktop\Sübern.bat
2014-07-21 14:38 - 2014-07-27 00:21 - 00000170 _____ () C:\Users\Sandboxie\Desktop\Säubern.bat
2014-07-21 14:27 - 2014-07-21 14:27 - 00000128 _____ () C:\Users\Privat.Zeus\Desktop\DKB.url
2014-07-18 10:41 - 2014-07-18 10:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2014-07-18 10:30 - 2014-07-18 10:30 - 00000000 ___HD () C:\ProgramData\CanonIJScan
2014-07-18 10:30 - 2014-07-18 10:30 - 00000000 _____ () C:\Users\Privat.Zeus\Sti_Trace.log
2014-07-18 10:26 - 2014-07-18 10:30 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Canon
2014-07-13 00:14 - 2014-07-13 00:22 - 00000000 ____D () C:\Program Files (x86)\TAPICall
2014-07-12 00:07 - 2014-07-12 00:07 - 00001383 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2014-07-12 00:07 - 2014-07-12 00:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2014-07-12 00:07 - 2014-07-12 00:07 - 00000000 ____D () C:\Program Files (x86)\T-Home
2014-07-11 14:48 - 2014-07-30 16:48 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Apple Computer
2014-07-10 23:17 - 2014-07-10 23:17 - 00000000 ____D () C:\Users\maexl_000\Documents\Benutzerdefinierte Office-Vorlagen
2014-07-10 23:16 - 2014-07-11 01:03 - 00005118 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for ZEUS-maexl_000 Zeus
2014-07-10 22:39 - 2014-07-10 22:39 - 00309248 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtscsidrv.sys
2014-07-10 22:39 - 2014-07-10 22:39 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Apple Computer
2014-07-10 10:21 - 2014-07-10 10:21 - 00000169 _____ () C:\Users\I-NET\Desktop\Wetter Feldberg.url
2014-07-10 10:03 - 2014-04-14 05:29 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2014-07-10 10:01 - 2014-07-10 10:01 - 00000000 ____D () C:\Users\I-NET\AppData\Roaming\Apple Computer
2014-07-10 09:25 - 2014-06-17 00:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-10 09:25 - 2014-06-17 00:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-10 09:25 - 2014-06-06 16:20 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-07-10 09:25 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-07-10 09:25 - 2014-05-29 14:02 - 00565576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-07-10 09:25 - 2014-05-29 09:55 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-07-10 09:25 - 2014-05-29 08:40 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-10 09:25 - 2014-05-29 08:37 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-07-10 09:25 - 2014-05-29 07:34 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-07-10 09:25 - 2014-05-29 07:27 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-07-10 09:24 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-10 09:24 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-10 09:24 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-10 09:24 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-10 09:24 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-10 09:24 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-10 09:24 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-10 09:24 - 2014-06-19 01:46 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-10 09:24 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-10 09:24 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-10 09:24 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-10 09:24 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-10 09:24 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-10 09:24 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-10 09:24 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-10 09:24 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-10 09:24 - 2014-06-19 00:57 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-10 09:24 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-10 09:24 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-10 09:24 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-10 09:24 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-10 09:24 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-10 09:24 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-10 09:24 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-10 09:24 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-10 09:24 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-10 09:24 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-10 09:23 - 2014-06-06 15:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-10 09:23 - 2014-06-06 14:18 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-07-10 09:23 - 2014-05-31 12:07 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-10 09:23 - 2014-05-31 12:06 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-10 09:23 - 2014-05-31 05:40 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-10 09:23 - 2014-05-31 05:30 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-10 09:23 - 2014-05-31 05:12 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-10 09:23 - 2014-05-31 05:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-10 09:23 - 2014-05-31 05:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-10 09:23 - 2014-05-31 05:01 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-10 09:23 - 2014-05-31 04:56 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-10 09:23 - 2014-05-31 04:54 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-10 09:23 - 2014-05-31 04:48 - 03463680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-10 09:23 - 2014-05-31 04:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-07-10 09:23 - 2014-05-31 04:36 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-10 09:23 - 2014-05-31 04:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-07-10 09:23 - 2014-05-31 04:32 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-10 09:12 - 2014-07-10 09:12 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-09 18:50 - 2014-07-09 18:50 - 00001340 _____ () C:\Users\Sandboxie\Desktop\adwcleaner_3.215.exe - Verknüpfung.lnk
2014-07-08 14:22 - 2014-07-08 14:22 - 00000618 _____ () C:\Users\Admin\Desktop\JRT.txt
2014-07-08 13:44 - 2014-07-08 13:44 - 00000000 ____D () C:\Users\Sandboxie\Desktop\mbam-check-2.1.0.0002
2014-07-08 13:42 - 2014-07-08 13:42 - 00008166 _____ () C:\Users\Admin\Desktop\eset protokoll.txt
2014-07-03 19:34 - 2014-07-03 19:34 - 00046275 _____ () C:\Users\Privat.Zeus\Downloads\media.media.bcd38c32-d1ca-4385-b960-cbd037ef02d3.normalized.jpeg
2014-07-02 18:51 - 2014-07-02 18:51 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Apple Computer
2014-06-30 11:19 - 2014-06-30 11:19 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\Apple Computer
2014-06-30 11:19 - 2014-06-30 11:19 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Apple Computer
2014-06-30 11:18 - 2014-06-30 11:18 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-06-30 11:18 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2014-06-30 11:17 - 2014-06-30 11:17 - 00002535 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-06-30 11:17 - 2014-06-30 11:17 - 00000000 ____D () C:\Users\Admin\AppData\Local\Apple
2014-06-30 11:17 - 2014-06-30 11:17 - 00000000 ____D () C:\ProgramData\Apple
2014-06-30 11:17 - 2014-06-30 11:17 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-06-30 11:17 - 2014-06-30 11:17 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-07-30 19:08 - 2014-07-30 19:08 - 00013183 _____ () C:\Users\Admin\Desktop\FRST.txt
2014-07-30 19:08 - 2014-07-30 19:08 - 00000000 ____D () C:\FRST
2014-07-30 19:06 - 2013-12-22 03:33 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1001
2014-07-30 19:05 - 2014-04-30 02:31 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-30 19:05 - 2013-12-22 03:53 - 01474832 _____ () C:\WINDOWS\system32\Drivers\sfi.dat
2014-07-30 19:04 - 2014-06-21 00:28 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-07-30 19:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-07-30 18:59 - 2013-12-23 12:21 - 11362976 _____ () C:\WINDOWS\system32\Drivers\fvstore.dat
2014-07-30 18:56 - 2014-07-30 18:56 - 00000556 _____ () C:\Users\Sandboxie\Desktop\CANADA VPN - Verknüpfung.lnk
2014-07-30 18:53 - 2014-07-29 17:13 - 00214540 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-30 18:53 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\tracing
2014-07-30 18:51 - 2014-04-30 02:31 - 00001118 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-30 18:39 - 2013-12-23 12:17 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\AIMP3
2014-07-30 18:37 - 2014-02-12 18:54 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-07-30 18:32 - 2013-12-23 12:16 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1006
2014-07-30 18:07 - 2013-12-25 17:45 - 00000000 ____D () C:\Users\Sandboxie\.VirtualBox
2014-07-30 17:58 - 2014-07-30 17:58 - 01544704 _____ () C:\WINDOWS\isRS-000.tmp
2014-07-30 17:58 - 2014-01-27 13:29 - 00001970 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-07-30 17:58 - 2014-01-27 13:29 - 00001920 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2014-07-30 17:58 - 2014-01-27 13:29 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-07-30 17:30 - 2014-07-30 17:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InetStat
2014-07-30 17:30 - 2014-07-30 17:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\InetStat
2014-07-30 17:30 - 2014-07-30 17:30 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\GetPrivate
2014-07-30 17:19 - 2013-12-25 17:45 - 00000000 ____D () C:\Users\Sandboxie\VirtualBox VMs
2014-07-30 16:49 - 2014-07-30 16:49 - 00001804 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-30 16:49 - 2014-07-30 16:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-30 16:49 - 2014-07-30 16:48 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-07-30 16:49 - 2014-07-30 16:48 - 00000000 ____D () C:\Program Files\iTunes
2014-07-30 16:49 - 2014-07-30 16:48 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-07-30 16:48 - 2014-07-30 16:48 - 00000000 ____D () C:\Users\Admin\AppData\Local\Apple Computer
2014-07-30 16:48 - 2014-07-30 16:48 - 00000000 ____D () C:\Program Files\iPod
2014-07-30 16:48 - 2014-07-11 14:48 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Apple Computer
2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files\Java
2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files\Bonjour
2014-07-30 16:47 - 2014-07-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-07-30 16:43 - 2014-07-30 16:43 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Apple
2014-07-30 16:32 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-07-30 16:22 - 2014-02-11 19:23 - 00098304 ___SH () C:\Users\Sandboxie\Desktop\Thumbs.db
2014-07-30 16:21 - 2014-01-09 10:43 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1005
2014-07-30 16:16 - 2014-03-24 00:25 - 00061952 ___SH () C:\Users\Privat.Zeus\Desktop\Thumbs.db
2014-07-30 16:15 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-27 01:12 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-07-27 00:21 - 2014-07-21 14:38 - 00000170 _____ () C:\Users\Sandboxie\Desktop\Säubern.bat
2014-07-27 00:19 - 2014-07-27 00:05 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\Skype
2014-07-27 00:05 - 2014-07-27 00:05 - 00002533 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-27 00:05 - 2014-07-27 00:05 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-27 00:05 - 2014-07-27 00:05 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Skype
2014-07-27 00:05 - 2014-07-27 00:05 - 00000000 ____D () C:\ProgramData\Skype
2014-07-27 00:05 - 2014-07-27 00:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-26 09:39 - 2014-07-30 19:07 - 02093568 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2014-07-25 22:28 - 2014-02-05 08:28 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\AIMP3
2014-07-24 17:28 - 2014-07-24 17:09 - 00000149 _____ () C:\Users\Privat.Zeus\Desktop\Sübern.bat
2014-07-24 17:28 - 2014-01-09 11:44 - 00001555 _____ () C:\Users\Privat.Zeus\Desktop\Abmelden.lnk
2014-07-24 17:27 - 2014-01-27 10:04 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Local\FRITZ!
2014-07-24 17:13 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-07-22 15:58 - 2013-09-30 06:14 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-22 15:58 - 2013-09-30 05:56 - 00764340 _____ () C:\WINDOWS\system32\perfh007.dat
2014-07-22 15:58 - 2013-09-30 05:56 - 00159160 _____ () C:\WINDOWS\system32\perfc007.dat
2014-07-22 15:02 - 2014-03-01 18:12 - 00000000 ____D () C:\Users\Privat.Zeus\Documents\Benutzerdefinierte Office-Vorlagen
2014-07-21 14:27 - 2014-07-21 14:27 - 00000128 _____ () C:\Users\Privat.Zeus\Desktop\DKB.url
2014-07-18 10:41 - 2014-07-18 10:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2014-07-18 10:41 - 2014-06-21 16:12 - 00000926 _____ () C:\Users\Public\Desktop\AIMP3.lnk
2014-07-18 10:41 - 2013-12-22 04:37 - 00000000 ____D () C:\Program Files (x86)\AIMP3
2014-07-18 10:30 - 2014-07-18 10:30 - 00000000 ___HD () C:\ProgramData\CanonIJScan
2014-07-18 10:30 - 2014-07-18 10:30 - 00000000 _____ () C:\Users\Privat.Zeus\Sti_Trace.log
2014-07-18 10:30 - 2014-07-18 10:26 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Canon
2014-07-18 10:30 - 2014-02-25 00:32 - 00000000 ____D () C:\Users\Privat.Zeus
2014-07-13 00:26 - 2013-12-22 04:37 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\AIMP3
2014-07-13 00:22 - 2014-07-13 00:14 - 00000000 ____D () C:\Program Files (x86)\TAPICall
2014-07-12 00:31 - 2014-02-03 17:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\funkwerk Eumex 401 WIN-Tools V1.00
2014-07-12 00:07 - 2014-07-12 00:07 - 00001383 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2014-07-12 00:07 - 2014-07-12 00:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2014-07-12 00:07 - 2014-07-12 00:07 - 00000000 ____D () C:\Program Files (x86)\T-Home
2014-07-12 00:07 - 2014-03-24 02:07 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Foxit Software
2014-07-12 00:07 - 2014-01-31 12:50 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Foxit Software
2014-07-11 13:18 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-07-11 12:29 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-07-11 01:07 - 2014-02-18 00:36 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\AIMP3
2014-07-11 01:03 - 2014-07-10 23:16 - 00005118 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for ZEUS-maexl_000 Zeus
2014-07-11 00:47 - 2014-02-17 15:44 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1007
2014-07-11 00:42 - 2014-02-17 15:35 - 00000000 __RDO () C:\Users\maexl_000\SkyDrive
2014-07-10 23:43 - 2014-02-12 19:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-07-10 23:43 - 2013-12-22 12:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-10 23:26 - 2014-03-24 01:54 - 00113664 ___SH () C:\Users\maexl_000\Desktop\Thumbs.db
2014-07-10 23:18 - 2014-06-29 23:17 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\DAEMON Tools Lite
2014-07-10 23:17 - 2014-07-10 23:17 - 00000000 ____D () C:\Users\maexl_000\Documents\Benutzerdefinierte Office-Vorlagen
2014-07-10 22:39 - 2014-07-10 22:39 - 00309248 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtscsidrv.sys
2014-07-10 22:39 - 2014-07-10 22:39 - 00000000 ____D () C:\Users\maexl_000\AppData\Roaming\Apple Computer
2014-07-10 22:37 - 2013-08-22 16:44 - 00472928 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-10 10:24 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-07-10 10:24 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-10 10:24 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-10 10:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-07-10 10:22 - 2014-01-26 09:42 - 00000000 ____D () C:\Users\I-NET\AppData\Roaming\AIMP3
2014-07-10 10:21 - 2014-07-10 10:21 - 00000169 _____ () C:\Users\I-NET\Desktop\Wetter Feldberg.url
2014-07-10 10:16 - 2013-12-23 11:47 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-919597516-2788177221-441991105-1004
2014-07-10 10:13 - 2014-02-20 00:44 - 00000915 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waterfox.lnk
2014-07-10 10:13 - 2014-02-20 00:31 - 00000000 ____D () C:\Program Files\Waterfox
2014-07-10 10:06 - 2013-12-23 12:19 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-10 10:05 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-07-10 10:04 - 2013-12-23 12:19 - 96441528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-10 10:02 - 2013-09-30 05:59 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-10 10:01 - 2014-07-10 10:01 - 00000000 ____D () C:\Users\I-NET\AppData\Roaming\Apple Computer
2014-07-10 09:48 - 2014-05-02 20:16 - 00235008 ___SH () C:\Users\Privat.Zeus\Downloads\Thumbs.db
2014-07-10 09:12 - 2014-07-10 09:12 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-09 18:50 - 2014-07-09 18:50 - 00001340 _____ () C:\Users\Sandboxie\Desktop\adwcleaner_3.215.exe - Verknüpfung.lnk
2014-07-09 18:37 - 2014-02-12 18:54 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-07-08 14:22 - 2014-07-08 14:22 - 00000618 _____ () C:\Users\Admin\Desktop\JRT.txt
2014-07-08 13:44 - 2014-07-08 13:44 - 00000000 ____D () C:\Users\Sandboxie\Desktop\mbam-check-2.1.0.0002
2014-07-08 13:42 - 2014-07-08 13:42 - 00008166 _____ () C:\Users\Admin\Desktop\eset protokoll.txt
2014-07-03 19:34 - 2014-07-03 19:34 - 00046275 _____ () C:\Users\Privat.Zeus\Downloads\media.media.bcd38c32-d1ca-4385-b960-cbd037ef02d3.normalized.jpeg
2014-07-02 18:51 - 2014-07-02 18:51 - 00000000 ____D () C:\Users\Privat.Zeus\AppData\Roaming\Apple Computer
2014-07-01 14:24 - 2014-06-29 23:33 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\DAEMON Tools Lite
2014-06-30 11:19 - 2014-06-30 11:19 - 00000000 ____D () C:\Users\Sandboxie\AppData\Roaming\Apple Computer
2014-06-30 11:19 - 2014-06-30 11:19 - 00000000 ____D () C:\Users\Sandboxie\AppData\Local\Apple Computer
2014-06-30 11:18 - 2014-06-30 11:18 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-06-30 11:17 - 2014-06-30 11:17 - 00002535 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-06-30 11:17 - 2014-06-30 11:17 - 00000000 ____D () C:\Users\Admin\AppData\Local\Apple
2014-06-30 11:17 - 2014-06-30 11:17 - 00000000 ____D () C:\ProgramData\Apple
2014-06-30 11:17 - 2014-06-30 11:17 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-06-30 11:17 - 2014-06-30 11:17 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\cal0ct12.2gq.exe
C:\Users\Admin\AppData\Local\Temp\lyvdwokh.1de.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AD4.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AD5.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AE5.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AE6.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AE7.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AE8.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AE9.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AEA.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AEB.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AEC.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AED.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNT1AEE.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE48.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE49.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE4A.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE4B.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE4C.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE4D.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE4E.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE5E.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE5F.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE60.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE61.tmp.exe
C:\Users\Admin\AppData\Local\Temp\UNTDE62.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-16 20:20
==================== End Of Log ============================
--- --- ---
[/CODE]
und noch Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-07-2014
Ran by Admin at 2014-07-30 19:09:05
Running from C:\Users\Admin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Enabled - Up to date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acronis True Image Home (HKLM-x32\...\{67ED38A3-4882-448B-B44D-3428AB00D7D5}) (Version: 13.0.6029 - Acronis)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1355, 14.07.2014 - AIMP DevTeam)
Apple Application Support (HKLM-x32\...\{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}) (Version: 3.0.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audiograbber Lame-MP3-Plugin (HKLM-x32\...\Audiograbber-Lame) (Version: 1.0 - AG)
AVM FRITZ! (HKLM-x32\...\FRITZ! 2.0) (Version: - AVM Berlin)
AVM ISDN-Controller FRITZ!Card PCI (HKLM-x32\...\AVM) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bowling Masters (HKLM-x32\...\Bowling Masters_is1) (Version: - My Real Games Ltd)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.1.6 - Canon Inc.)
Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version: - Canon Inc.)
Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.4954 - CDBurnerXP)
Chaks Temple (HKLM-x32\...\Chaks Temple_is1) (Version: - My Real Games Ltd)
ClearProg 1.6.1 Beta 6 (HKLM-x32\...\ClearProg) (Version: 1.6.1 Beta 6 - Sven Hoffman)
COMODO Internet Security Premium (HKLM\...\{CBC80C7D-5FFE-48C7-A1DB-3BCA7E6C4FCD}) (Version: 6.3.38526.2970 - COMODO Security Solutions Inc.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D1C35197-B856-45E2-BA67-5ABB6B0CA9C2}) (Version: - Microsoft)
Eumex RNDIS64 Treiber V1.02 (HKLM\...\{293C4FDD-FB80-48F8-8B40-F085392FDAA1}) (Version: 1.02.0000 - Deutsche Telekom)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 1.5.129.617 - Foxit Corporation)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.2.1.618 - Foxit Corporation)
Free YouTube to MP3 Converter version 3.12.38.530 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.38.530 - DVDVideoSoft Ltd.)
funkwerk Eumex 401 WIN-Tools V1.00 (HKLM-x32\...\InstallShield_{F1C6C824-FF4F-4CD6-9B25-E40F750FC2E8}) (Version: 1.00.0000 - Funkwerk Enterprise Communications GmbH)
funkwerk Eumex 401 WIN-Tools V1.00 (x32 Version: 1.00.0000 - Funkwerk Enterprise Communications GmbH) Hidden
Gem Ball (HKLM-x32\...\Gem Ball_is1) (Version: - My Real Games Ltd)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InetStat (HKCU\...\InetStat) (Version: 0.5b - InetStat)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
iTunes (HKLM\...\{33E28B58-7BA0-47B7-AA01-9225ABA2B8A9}) (Version: 11.3.0.54 - Apple Inc.)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Access MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.6.0 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla)
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.10000.1.0 - Nero AG)
Nuclear Bike (HKLM-x32\...\Nuclear Bike_is1) (Version: - My Real Games Ltd)
Oracle VM VirtualBox 4.3.12 (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Plus Pack für Acronis True Image Home 2010 (HKLM-x32\...\{4C556B5C-8EF7-47B4-AE05-FE71EEB2C25B}) (Version: 13.0.6029 - Acronis)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
Snap.Do (HKLM-x32\...\{254006BC-97DE-4C82-A1A1-A2BAD2520083}) (Version: 10.239.1.14117 - ReSoft Ltd.) <==== ATTENTION
Snap.Do Engine (HKCU\...\{834fc06b-1433-4afd-b7fb-15845215249b}) (Version: 10.239.1.14117 - ReSoft Ltd.) <==== ATTENTION
soft Xpansion Perfect PDF 6 Premium (HKLM-x32\...\{A6D309F9-38AB-4cc3-8DA7-0544F5011788}) (Version: 6.4.0 - soft Xpansion)
Sokoban++ (remove only) (HKLM-x32\...\SokobanPP) (Version: - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-0016-0407-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-0018-0407-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-001B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-00C1-0407-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2850074) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{CE9A9D7C-B6FB-4F6C-8BDE-9A1ADBBAC1EE}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{EF77B4A6-DFEC-4010-A87D-9B6BF87FABEC}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760544) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{62857CDD-2985-4939-91BA-19ED0B0031A5}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2768012) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0814662C-FD28-4DE0-ACE5-EE50D1D6C8FB}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817302) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E79EFFDB-192A-4D9E-A2DB-C0F774E6EC32}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817302) 64-Bit Edition (HKLM\...\{90150000-0016-0407-1000-0000000FF1CE}_Office15.PROPLUS_{E79EFFDB-192A-4D9E-A2DB-C0F774E6EC32}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2826040) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C4AEA56A-0759-4D08-9FAB-31A92137D0B8}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837644) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D692E9FF-84BF-4F44-A0EA-D58ECE0D538E}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2863843) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{290D80DE-03AB-47EC-9402-108AF4CE4F66}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880457) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{EC2AF602-2730-4B05-9438-06CDE43153F2}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{90150000-006E-0407-1000-0000000FF1CE}_Office15.PROPLUS_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880464) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{88B29AA5-71EE-4692-91E2-E89407F0B783}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880478) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8116ED50-F1E7-49E1-9D8D-421497D34B0F}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880987) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6F540E80-4BB2-413F-9648-52031AA237B7}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880987) 64-Bit Edition (HKLM\...\{90150000-006E-0407-1000-0000000FF1CE}_Office15.PROPLUS_{6F540E80-4BB2-413F-9648-52031AA237B7}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880987) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6F540E80-4BB2-413F-9648-52031AA237B7}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{90150000-0016-0407-1000-0000000FF1CE}_Office15.PROPLUS_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{90150000-0090-0407-1000-0000000FF1CE}_Office15.PROPLUS_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881074) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9A479F9C-C1EC-4833-A115-A8B7A60480BD}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition (HKLM\...\{90150000-001F-0407-1000-0000000FF1CE}_Office15.PROPLUS_{00BBBFFE-8889-4953-956A-77DDE975A947}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{3A12DFA2-3FF5-450E-BDB1-A742551A5D1A}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUS_{EA8072E8-E3CF-46DF-A5DE-9F5975344327}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition (HKLM\...\{90150000-001F-0410-1000-0000000FF1CE}_Office15.PROPLUS_{BF0D921F-E77E-4E03-BE71-46D9D2C7A36A}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881086) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{ED3A8E98-FDD4-493F-A0EC-141821573EC2}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881086) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{ED3A8E98-FDD4-493F-A0EC-141821573EC2}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{3C6F4768-FB23-4ECF-8328-5C47E0664B65}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition (HKLM\...\{90150000-00BA-0407-1000-0000000FF1CE}_Office15.PROPLUS_{3C6F4768-FB23-4ECF-8328-5C47E0664B65}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{3C6F4768-FB23-4ECF-8328-5C47E0664B65}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition (HKLM\...\{90150000-00C1-0407-1000-0000000FF1CE}_Office15.PROPLUS_{3C6F4768-FB23-4ECF-8328-5C47E0664B65}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{BFD66A5D-F608-441E-9282-41E13F5E7412}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 64-Bit Edition (HKLM\...\{90150000-00A1-0407-1000-0000000FF1CE}_Office15.PROPLUS_{BFD66A5D-F608-441E-9282-41E13F5E7412}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{BFD66A5D-F608-441E-9282-41E13F5E7412}) (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2880470) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{34A169EC-990A-4DAE-AC65-9F981158B7DB}) (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2880470) 64-Bit Edition (HKLM\...\{90150000-001A-0407-1000-0000000FF1CE}_Office15.PROPLUS_{34A169EC-990A-4DAE-AC65-9F981158B7DB}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2881075) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C8955821-EDAC-4E65-BEF3-C9C0A049517A}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2881075) 64-Bit Edition (HKLM\...\{90150000-0018-0407-1000-0000000FF1CE}_Office15.PROPLUS_{C8955821-EDAC-4E65-BEF3-C9C0A049517A}) (Version: - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C07147B9-CC0B-4CC1-A107-A705889A54F2}) (Version: - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 64-Bit Edition (HKLM\...\{90150000-0019-0407-1000-0000000FF1CE}_Office15.PROPLUS_{C07147B9-CC0B-4CC1-A107-A705889A54F2}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8E5CD68A-CDF8-4930-88DF-B7778B1871A9}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition (HKLM\...\{90150000-006E-0407-1000-0000000FF1CE}_Office15.PROPLUS_{8E5CD68A-CDF8-4930-88DF-B7778B1871A9}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2878319) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{BC51FE30-3A56-4802-8D9E-E9BC05B56B49}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F96FE9BB-CD90-472B-852E-156342618C54}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition (HKLM\...\{90150000-001A-0407-1000-0000000FF1CE}_Office15.PROPLUS_{F96FE9BB-CD90-472B-852E-156342618C54}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition (HKLM\...\{90150000-001B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{F96FE9BB-CD90-472B-852E-156342618C54}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{F96FE9BB-CD90-472B-852E-156342618C54}) (Version: - Microsoft)
Waterfox 30.0 (x64 en-US) (HKLM\...\Waterfox 30.0 (x64 en-US)) (Version: 30.0 - Mozilla)
Windows-Treiberpaket - T-Home Net (06/30/2010 6.0.6000.16384) (HKLM\...\7B73EBFEF26F2C40D3AA9D389F5CF2C77121106C) (Version: 06/30/2010 6.0.6000.16384 - T-Home)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
10-07-2014 21:41:21 Windows Update
11-07-2014 21:44:05 Konfiguriert funkwerk Eumex 401 WIN-Tools V1.00
12-07-2014 22:14:08 Installed TAPICall 4.2.51
25-07-2014 19:11:20 Geplanter Prüfpunkt
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2014-02-23 00:39 - 2014-02-23 00:39 - 00000000 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {03892EDF-AB2B-4FC5-B158-F3E28BE9E78F} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {12A554E2-F56B-4268-B361-A3AA6BCA35D2} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {18CF1D43-A29E-44F1-9ED6-EA0C367C043C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {1DA28049-B000-4665-AA05-B890191807B0} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {27F1712F-3107-4425-A787-6232B7266728} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {35FC68AA-8330-4333-8964-937ADFA4D77F} - System32\Tasks\Microsoft Office 15 Sync Maintenance for ZEUS-maexl_000 Zeus => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2014-04-08] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3C2477CD-0078-4868-949D-66B2E6FF4C00} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {434261AD-53CD-4A6B-95D9-7BE638F26010} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4B36088B-57E0-4F8B-8A08-85691FCF994A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09] (Adobe Systems Incorporated)
Task: {575729A9-28B5-4F59-940A-410D39D4F699} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {662C1E19-84F7-404B-AA34-A29DEF110C9D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {6A942659-452C-4DA9-85B3-0303ACE32953} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-30] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6F4F8136-8EEA-45C2-ACCC-BE03F4CD71AA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-07-10] (Microsoft Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {80A201B8-771B-4572-8EA0-DBCB6FAF022B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-30] (Google Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8A7C0960-4D2B-4513-8E3F-108AF0E0ED47} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A5342E3E-8528-43EA-9863-D6B8FCABFBF0} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {BFAD09B6-C6F6-4A38-A814-760E29288FF5} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DA726811-19C7-4414-849F-3FBEDB764283} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {DC82AE32-7AE7-4A90-A063-25C6F4552DC7} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EDF7B3B1-F635-4F4B-AA49-C8D812DC7CAE} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {F34D0539-8F15-4684-9EDC-2F9E50243248} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25] (COMODO)
Task: {FCF10A0A-5281-49C9-973E-B93018A34237} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-01-27 10:03 - 2006-02-23 12:35 - 00020480 _____ () C:\WINDOWS\System32\FritzColorPort64.dll
2014-01-27 10:03 - 2006-02-22 11:39 - 00020480 _____ () C:\WINDOWS\System32\FritzPort64.dll
2013-04-15 18:39 - 2013-04-15 18:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2013-01-20 00:24 - 2014-07-09 12:03 - 06574696 _____ () C:\Program Files\Waterfox\mozjs.dll
2013-12-22 04:37 - 2014-07-18 10:41 - 00505344 _____ () C:\Program Files (x86)\AIMP3\Sqlite3.dll
2014-01-14 01:01 - 2014-07-18 10:41 - 00218112 _____ () C:\Program Files (x86)\AIMP3\libsoxr.dll
2014-02-02 11:29 - 2014-07-18 10:41 - 00220672 _____ () C:\Program Files (x86)\AIMP3\Modules\MACDll.dll
2014-02-02 11:29 - 2014-07-18 10:41 - 00294400 _____ () C:\Program Files (x86)\AIMP3\Modules\libFLAC.dll
2014-03-04 17:00 - 2010-03-23 10:05 - 00495104 _____ () C:\Program Files (x86)\AIMP3\Modules\lame_enc.dll
2014-02-02 11:29 - 2014-07-18 10:41 - 01733120 _____ () C:\Program Files (x86)\AIMP3\Modules\aimp_libvorbis.dll
2014-01-09 11:54 - 2014-07-18 10:41 - 00072136 _____ () C:\Program Files (x86)\AIMP3\Plugins\aimp_lastfm.dll
2014-01-09 11:54 - 2014-07-18 10:41 - 00026624 _____ () C:\Program Files (x86)\AIMP3\Plugins\Aorta.svp
2014-01-09 11:54 - 2014-07-18 10:41 - 00237568 _____ () C:\Program Files (x86)\AIMP3\Plugins\OptimFROG.dll
2014-01-09 11:54 - 2014-07-18 10:41 - 00141768 _____ () C:\Program Files (x86)\AIMP3\Plugins\PandemicAnalogMeter.dll
2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 16:04 - 2014-04-23 16:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\123share.org.dll
2013-01-24 00:57 - 2008-12-28 12:30 - 00012800 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\3.dl.am.dll
2013-01-24 00:57 - 2008-04-16 18:51 - 00016384 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\aeon.to.dll
2013-01-24 00:57 - 2008-05-21 20:43 - 00012800 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\airfresh.steelhoster.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00032768 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\cat.serienjunkies.dl.am.dll
2013-01-24 00:57 - 2008-06-29 18:11 - 00017920 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\cine.to.dll
2013-01-24 00:57 - 2008-01-22 00:04 - 00032768 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\Collectors Zone.dll
2013-01-24 00:57 - 2009-02-15 01:22 - 00014336 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\ddl-warez.org.dll
2013-01-24 00:57 - 2009-06-12 14:29 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\dlc.dll
2013-01-24 00:57 - 2008-06-29 18:11 - 00012288 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\doku.cc.dll
2013-01-24 00:57 - 2008-01-22 19:59 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\dxp.divxvid.org.dll
2013-01-24 00:57 - 2008-10-25 17:39 - 00015872 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\fast-load.net.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\fastfolder.net.dll
2013-01-24 00:57 - 2011-12-09 20:09 - 00032256 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\fileserve.com.dll
2013-01-24 00:57 - 2013-01-20 02:03 - 00041984 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\filesonic.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\flyload.net.dll
2013-01-24 00:57 - 2011-12-09 20:09 - 00030208 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\freakshare.net.dll
2013-01-24 00:57 - 2008-05-21 20:43 - 00012288 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\game-blog.us.dll
2013-01-24 00:57 - 2007-11-14 21:38 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\gamestube.dl.am.dll
2013-01-24 00:57 - 2007-11-24 12:26 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.archiv.to.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.file-upload.net.dll
2013-01-24 00:57 - 2011-12-09 20:09 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.filer.net.dll
2013-01-24 00:57 - 2007-10-29 20:10 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.imagevenue.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.load.to.dll
2013-01-24 00:57 - 2007-10-30 19:38 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.lobortis.com.dll
2013-01-24 00:57 - 2008-06-29 18:11 - 00016384 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.meinupload.com.dll
2013-01-24 00:57 - 2007-11-14 21:38 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.netupload.com.dll
2013-01-24 00:57 - 2008-12-28 12:30 - 00013824 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.qshare.com.dll
2013-01-24 00:57 - 2013-01-20 02:03 - 00075264 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.rapidshare.com.dll
2013-05-12 22:31 - 2013-05-12 22:31 - 00043520 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.share-online.biz.dll
2013-01-24 00:57 - 2013-01-20 02:03 - 00040960 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.uploaded.to.dll
2013-01-24 00:57 - 2007-10-29 20:44 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.uploadoo.com.dll
2013-01-24 00:57 - 2009-01-24 16:48 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\h.yourfiles.biz.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\hoerbuch-blog.dl.am.dll
2013-01-24 00:57 - 2007-11-28 23:12 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\link-me.freehostia.com.dll
2013-01-24 00:57 - 2008-05-21 20:43 - 00012800 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\linkbank.eu.dll
2013-01-24 00:57 - 2008-06-29 18:11 - 00013824 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\linksafe.ws.dll
2013-01-24 00:57 - 2013-01-20 02:03 - 00038912 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\megaupload.com.dll
2013-01-24 00:57 - 2008-05-21 20:43 - 00012288 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\mirrorit.de.dll
2013-01-24 00:57 - 2007-11-14 21:38 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\moviestube.dl.am.dll
2013-01-24 00:57 - 2007-11-05 20:20 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\myref.de.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\proit.freehostia.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\protect-it.ath.cx.dll
2013-01-24 00:57 - 2008-04-16 18:51 - 00012288 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\rapidbolt.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\rapidfolder.com.dll
2013-01-24 00:57 - 2013-01-20 02:03 - 00033792 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\rapidgator.net.dll
2013-01-24 00:57 - 2008-02-05 20:57 - 00012800 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\rapidlayer.in.dll
2013-01-24 00:57 - 2007-10-27 17:46 - 00032768 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\rapidsafe.de.v2.dll
2013-01-24 00:57 - 2008-02-06 23:31 - 00015872 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\rslayer.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\safe.crystalize.biz.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\secur.6x.to.dll
2013-01-24 00:57 - 2011-12-09 20:09 - 00015360 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\shareplace.com.dll
2013-01-24 00:57 - 2011-12-09 20:09 - 00033280 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\sharingmatrix.com.dll
2013-01-24 00:57 - 2011-12-09 20:09 - 00026624 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\shragle.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\snipurl.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\speedsafe.in.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\ssl-linkz.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\stacheldraht.be.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\tinyurl.com.dll
2013-01-24 00:57 - 2007-11-05 20:20 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\tlf.dl.am.dll
2013-01-24 00:57 - 2008-07-05 19:24 - 00017408 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\wii-reloaded.ath.cx.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\won-site.biz.dll
2013-01-24 00:57 - 2011-12-09 20:09 - 00041472 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\wupload.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00024576 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\xaili.com.dll
2013-01-24 00:57 - 2007-10-27 14:01 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\xxx-blog.org.dll
2013-01-24 00:57 - 2008-12-19 17:00 - 00028672 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\zerowaitingtime.com.dll
2013-01-24 00:57 - 2013-01-20 02:03 - 00016384 _____ () K:\Downloads\Internet\JDownloader\CryptLoad_1.1.8\plugins\zippyshare.com.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:6E271126
AlternateDataStreams: C:\Users\Lars\OneDrive:ms-properties
AlternateDataStreams: C:\Users\maexl_000\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive (2).old:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive (3).old:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive (4).old:ms-properties
AlternateDataStreams: C:\Users\Sandboxie\SkyDrive.old:ms-properties
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AcrSch2Svc => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: afcdpsrv => 2
MSCONFIG\Services: cmdAgent => 2
MSCONFIG\Services: cmdvirth => 3
MSCONFIG\Services: HOSTS Anti-PUPs => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: SXDS10 => 3
HKLM\...\StartupApproved\StartupFolder: => "ISDNWatch.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Control Center.lnk"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "BCSSync"
HKLM\...\StartupApproved\Run32: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "*WerKernelReporting"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/30/2014 07:06:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Bei der Aktivierung der App „Microsoft.WindowsAlarms_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (07/30/2014 06:15:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MacOSXSnow Leopard 10a432 UserDVD [DMG].exe, Version 3.3.40.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ef0
Startzeit: 01cfac1171c3e53c
Endzeit: 0
Anwendungspfad: K:\Downloads\Sonstiges\iOS\MacOSXSnow Leopard 10a432 UserDVD [DMG].exe
Berichts-ID: baf6cdd5-1804-11e4-bf38-0015834b311c
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (07/30/2014 06:14:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MacOSXSnow Leopard 10a432 UserDVD [DMG].exe, Version: 3.3.40.0, Zeitstempel: 0x53b547f3
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.17031, Zeitstempel: 0x5308893d
Ausnahmecode: 0xc0000264
Fehleroffset: 0x000af4cf
ID des fehlerhaften Prozesses: 0x3d8
Startzeit der fehlerhaften Anwendung: 0xMacOSXSnow Leopard 10a432 UserDVD [DMG].exe0
Pfad der fehlerhaften Anwendung: MacOSXSnow Leopard 10a432 UserDVD [DMG].exe1
Pfad des fehlerhaften Moduls: MacOSXSnow Leopard 10a432 UserDVD [DMG].exe2
Berichtskennung: MacOSXSnow Leopard 10a432 UserDVD [DMG].exe3
Vollständiger Name des fehlerhaften Pakets: MacOSXSnow Leopard 10a432 UserDVD [DMG].exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MacOSXSnow Leopard 10a432 UserDVD [DMG].exe5
Error: (07/30/2014 04:22:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Bei der Aktivierung der App „Microsoft.WindowsAlarms_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (07/30/2014 04:16:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 30.0.0.5302, Zeitstempel: 0x53bbc634
Name des fehlerhaften Moduls: xul.dll, Version: 30.0.0.5302, Zeitstempel: 0x53bbc59c
Ausnahmecode: 0x80000003
Fehleroffset: 0x00000000002d15b3
ID des fehlerhaften Prozesses: 0x17c0
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5
Error: (07/29/2014 09:38:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Bei der Aktivierung der App „Microsoft.WindowsAlarms_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (07/29/2014 04:56:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 30.0.0.5302, Zeitstempel: 0x53bbc634
Name des fehlerhaften Moduls: xul.dll, Version: 30.0.0.5302, Zeitstempel: 0x53bbc59c
Ausnahmecode: 0x80000003
Fehleroffset: 0x00000000002d15b3
ID des fehlerhaften Prozesses: 0x14cc
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5
Error: (07/29/2014 04:30:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 30.0.0.5302, Zeitstempel: 0x53bbc634
Name des fehlerhaften Moduls: xul.dll, Version: 30.0.0.5302, Zeitstempel: 0x53bbc59c
Ausnahmecode: 0x80000003
Fehleroffset: 0x00000000002d15b3
ID des fehlerhaften Prozesses: 0x1654
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5
Error: (07/29/2014 04:29:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Bei der Aktivierung der App „Microsoft.WindowsAlarms_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (07/28/2014 10:21:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Bei der Aktivierung der App „Microsoft.WindowsAlarms_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
System errors:
=============
Error: (07/30/2014 07:06:00 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: App.AppX2tphb21dp9jkkycchwvscnrxk12cys3z.mca
Error: (07/30/2014 06:53:44 PM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{56B9B5A2-E398-407A-A20B-FF6B140AD24B} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (07/30/2014 06:33:07 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (07/30/2014 06:32:37 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (07/30/2014 05:23:49 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (07/30/2014 04:22:29 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: App.AppX2tphb21dp9jkkycchwvscnrxk12cys3z.mca
Error: (07/29/2014 09:38:20 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: App.AppX2tphb21dp9jkkycchwvscnrxk12cys3z.mca
Error: (07/29/2014 04:29:42 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: App.AppX2tphb21dp9jkkycchwvscnrxk12cys3z.mca
Error: (07/28/2014 10:20:57 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: App.AppX2tphb21dp9jkkycchwvscnrxk12cys3z.mca
Error: (07/28/2014 06:34:18 PM) (Source: DCOM) (EventID: 10010) (User: Zeus)
Description: App.AppX2tphb21dp9jkkycchwvscnrxk12cys3z.mca
Microsoft Office Sessions:
=========================
Error: (07/30/2014 07:06:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Microsoft.WindowsAlarms_8wekyb3d8bbwe!App-2144927141
Error: (07/30/2014 06:15:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: MacOSXSnow Leopard 10a432 UserDVD [DMG].exe3.3.40.0ef001cfac1171c3e53c0K:\Downloads\Sonstiges\iOS\MacOSXSnow Leopard 10a432 UserDVD [DMG].exebaf6cdd5-1804-11e4-bf38-0015834b311c
Error: (07/30/2014 06:14:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MacOSXSnow Leopard 10a432 UserDVD [DMG].exe3.3.40.053b547f3ntdll.dll6.3.9600.170315308893dc0000264000af4cf3d801cfac116886cd34K:\Downloads\Sonstiges\iOS\MacOSXSnow Leopard 10a432 UserDVD [DMG].exeC:\WINDOWS\SYSTEM32\ntdll.dlla6e247ec-1804-11e4-bf38-0015834b311c
Error: (07/30/2014 04:22:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Microsoft.WindowsAlarms_8wekyb3d8bbwe!App-2144927141
Error: (07/30/2014 04:16:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe30.0.0.530253bbc634xul.dll30.0.0.530253bbc59c8000000300000000002d15b317c001cfac00dd45b40aC:\Program Files\Waterfox\plugin-container.exeC:\Program Files\Waterfox\xul.dll1cab29eb-17f4-11e4-bf38-0015834b311c
Error: (07/29/2014 09:38:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Microsoft.WindowsAlarms_8wekyb3d8bbwe!App-2144927141
Error: (07/29/2014 04:56:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe30.0.0.530253bbc634xul.dll30.0.0.530253bbc59c8000000300000000002d15b314cc01cfab3d403d5a42C:\Program Files\Waterfox\plugin-container.exeC:\Program Files\Waterfox\xul.dll7e65b7db-1730-11e4-bf37-0015834b311c
Error: (07/29/2014 04:30:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe30.0.0.530253bbc634xul.dll30.0.0.530253bbc59c8000000300000000002d15b3165401cfab399b1924edC:\Program Files\Waterfox\plugin-container.exeC:\Program Files\Waterfox\xul.dlld9dbecf5-172c-11e4-bf37-0015834b311c
Error: (07/29/2014 04:29:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Microsoft.WindowsAlarms_8wekyb3d8bbwe!App-2144927141
Error: (07/28/2014 10:21:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Zeus)
Description: Microsoft.WindowsAlarms_8wekyb3d8bbwe!App-2144927141
CodeIntegrity Errors:
===================================
Date: 2014-07-30 18:56:14.125
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-30 16:22:34.623
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-30 16:17:04.611
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-29 21:36:33.645
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-29 16:29:52.034
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-28 22:21:13.108
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-28 18:19:45.625
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-28 18:11:52.431
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-28 12:59:53.295
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-07-28 12:43:07.538
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 19%
Total physical RAM: 12279.05 MB
Available physical RAM: 9936.86 MB
Total Pagefile: 14135.05 MB
Available Pagefile: 10995.26 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: (Windows 8) (Fixed) (Total:233.17 GB) (Free:56.36 GB) NTFS
Drive d: (Win7) (Fixed) (Total:164.13 GB) (Free:104.48 GB) NTFS
Drive e: (Ablage) (Fixed) (Total:68.36 GB) (Free:38.81 GB) NTFS
Drive k: (Sicherungsplatte) (Fixed) (Total:465.76 GB) (Free:302.74 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: A902185A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=233 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=232 GB) - (Type=OF Extended)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 272B22DD)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
