Firefox schlug wegen Spy und Adware Alarm Bin nicht sicher ob alles weg ist

Powermann · 18.11.2013, 20:07

Halli Hallo,

hatte letztens bei Chip und Softtronic was runtergeladen und danach schlug Firefox Alarm. Er meldete Spy und Adware. Mein Kaspersky schlug nicht an. Ich ließ den Computer mit Kaspersky durchlaufen und er fand aber nichts. Beim surfen fielen mir aber verschiedene Sachen auf die vorher nicht waren. Er zeigte immer bei den Produkten Werbung von anderen Seiten mit Preisen unterhalb des Produktes, was mich interessierte. Ich wendete mich an einen Administrator in einem Elektrogeschäft. Er ließ Malewarebytes durchlaufen und es wurden verschiedene Sachen entfernt. Er checkte auch so noch mal mein System und meinte das alles in Ordnung wäre. Malewarebytes fand auch nichts mehr und nun gut ich dachte vielleicht hat er ja Recht. Was mich aber stutzig macht, ist, das ich eben wieder in meinem Emailaccount Werbung von Amazon angezeigt bekommen habe, mit Sachen die ich zuvor in den Warenkorb gelegt hatte, aber den Kaufvorgang nicht abgeschlossen habe. Außerdem spinnten in letzter Zeit meie Emailkonten und bei Firefox erschien immer wenn ich einen neuen Tab öffnete eine Seite von Bing mit Werbung im Fenster unten, obwohl ich Bing deinstallierte. Diese komische Seite konnte ich über die Firefoxhilfe deaktivieren, indem ich es geschafft habe bei öffnen eines neuen Tabs eine leere Seite zu bekommen und somit auch die Werbung weg war.

Ich bin mir aber nicht sicher ob die Werbung Zufall war bei öffnen eines neuen Tabs oder ob da noch was auf meinem System drauf ist. Wie schon geschrieben stutzig hat mich die Werbung gemacht, über genau die Produkte, welche ich zuvor bei Amazon angeschaut hatte. Malewarebytes und Kaspersky finden nichts und das mit meinen Emailkonten kann ja auch Zufall sein. Hatte nämlich alles bei Malewarebytes gelöscht und weiß ja nicht ob ich da nicht durch Zufall auch was gelöscht habe was ich nicht unbedingt hätte löschen dürfen, sollen, müssen. Wollte halt nur auf Nummer sicher gehen. Was soll ich tun ??? Das kam eben bei Malewarebytes raus. Ist da alles in Ordnung oder muss ich mir Sorgen machen. Ich bin mir nicht so sicher ob der Administrator aus dem Geschäft Recht hat. Könnt ihr mir helfen ??? Vielen Dank schon mal im voraus.

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.11.14.06

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16438
Powerfrau :: [Administrator]

Schutz: Aktiviert

18.11.2013 19:12:24
mbam-log-2013-11-18 (19-12-24).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 365722
Laufzeit: 42 Minute(n), 41 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

aharonov · 18.11.2013, 23:40

Hi,

gegen personalisierte Werbung kann ich nicht viel machen, aber mal dein System reinschauen:

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Powermann · 19.11.2013, 07:08

Hier die erste Version. Ich hoffe ich mache alles richtig. Was sind Logs ???
FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-11-2013
Ran by Powerfrau (administrator) on JEANNETTE on 19-11-2013 06:59:09
Running from C:\Users\Powerfrau\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Broadcom Corp.) C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Dropbox, Inc.) C:\Users\Powerfrau\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Microsoft Corporation) C:\WINDOWS\system32\wwahost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20279_x64__8wekyb3d8bbwe\LiveComm.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3008824 2012-11-29] (Synaptics Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20474528 2013-10-02] (Skype Technologies S.A.)
MountPoints2: {5d854048-e51d-11e2-be6b-806e6f6e6963} - "D:\WinFiles\autorun.exe" 
HKLM-x32\...\Run: [LManager] - [x]
HKLM-x32\...\Run: [RadioController] - C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-07-05] (Dritek System Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKU\UpdatusUser\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll C:\Windows\system32\nvinitx.dll [ ] ()
Startup: C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Powerfrau\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKLM - DefaultScope {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3317209&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP4B5D5825-A355-4317-BDC7-81800A1C59BA&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3317209&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP4B5D5825-A355-4317-BDC7-81800A1C59BA&q={searchTerms}&SSPV=
SearchScopes: HKCU - {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = 
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = 
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Powerfrau\AppData\Roaming\Mozilla\Firefox\Profiles\32urpsgl.default
FF NewTab: about:blank
FF Homepage: about:config => browser.newtab.url 
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com

==================== Services (Whitelisted) =================

R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-10-22] (Kaspersky Lab ZAO)
R2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-20] (Broadcom Corp.)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-09-17] (Microsoft Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-07-05] (Dritek System INC.)
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [142960 2013-03-19] (Stardock Software, Inc)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-15] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-14] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112224 2013-06-08] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [626272 2013-11-14] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-10-22] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2013-10-22] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-10-22] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178784 2013-06-06] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-07-05] (Dritek System Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31032 2012-11-29] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-15] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-19 06:59 - 2013-11-19 06:59 - 00017224 _____ C:\Users\Powerfrau\Downloads\FRST.txt
2013-11-19 06:58 - 2013-11-19 06:58 - 00000000 ____D C:\FRST
2013-11-19 06:57 - 2013-11-19 06:57 - 01957964 _____ (Farbar) C:\Users\Powerfrau\Downloads\FRST64.exe
2013-11-18 09:27 - 2013-11-18 12:02 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-11-16 18:41 - 2013-11-16 18:41 - 00002043 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-16 18:41 - 2013-11-16 18:41 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-16 18:40 - 2013-11-17 06:51 - 00000000 ____D C:\ProgramData\Adobe
2013-11-16 17:59 - 2013-11-16 17:59 - 00001745 _____ C:\Users\Public\Desktop\Hugo Retro Mania.lnk
2013-11-16 15:39 - 2013-11-16 15:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 22:18 - 2013-11-15 22:18 - 00000000 ____D C:\ProgramData\WildTangentUninstall1080777
2013-11-15 21:34 - 2013-11-19 06:53 - 00000000 __RDO C:\Users\Powerfrau\SkyDrive
2013-11-15 20:37 - 2013-11-15 20:37 - 00001458 _____ C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-15 20:37 - 2013-11-15 20:37 - 00000020 ___SH C:\Users\Powerfrau\ntuser.ini
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-11-15 20:20 - 2013-11-15 20:20 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-11-15 20:10 - 2013-11-15 20:10 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-15 20:10 - 2013-11-15 20:10 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-15 20:08 - 2013-11-15 20:08 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-11-15 20:07 - 2013-11-15 21:34 - 00000000 ____D C:\Users\Powerfrau
2013-11-15 20:07 - 2013-11-15 20:20 - 00032388 _____ C:\WINDOWS\diagwrn.xml
2013-11-15 20:07 - 2013-11-15 20:20 - 00032388 _____ C:\WINDOWS\diagerr.xml
2013-11-15 20:07 - 2013-11-15 20:08 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Vorlagen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Startmenü
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Netzwerkumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Lokale Einstellungen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Eigene Dateien
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Druckumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Documents\Eigene Musik
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Documents\Eigene Bilder
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Local\Verlauf
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Local\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-11-15 20:03 - 2013-11-15 20:03 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-11-15 20:03 - 2013-11-15 20:03 - 00000000 ____D C:\Program Files\Realtek
2013-11-15 20:02 - 2013-11-19 06:52 - 01202083 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-15 20:02 - 2013-08-29 23:43 - 06599968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 03452192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 01042208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 00920864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-11-15 20:02 - 2013-08-29 23:43 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-11-15 20:02 - 2013-08-29 21:28 - 03349466 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-11-15 20:01 - 2013-11-15 20:09 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:02 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:01 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____D C:\Program Files\Synaptics
2013-11-15 20:00 - 2013-11-15 20:09 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-15 20:00 - 2013-10-03 23:43 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-11-15 20:00 - 2013-10-03 23:43 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-11-15 19:58 - 2013-11-15 20:38 - 00000000 ___DC C:\WINDOWS\Panther
2013-11-15 19:58 - 2013-11-15 19:58 - 00000000 __SHD C:\Recovery
2013-11-15 19:57 - 2013-11-15 19:57 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-15 19:55 - 2013-11-15 19:55 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-15 19:55 - 2013-11-15 19:55 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00523096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-15 19:55 - 2013-11-15 19:55 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00371032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-15 19:55 - 2013-11-15 19:55 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-15 19:53 - 2013-11-15 19:53 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-15 19:53 - 2013-11-15 19:53 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-11-15 19:53 - 2013-11-15 19:53 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files\MSBuild
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-11-15 19:50 - 2013-11-15 19:50 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-15 19:50 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-11-15 19:50 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 19:50 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-11-15 19:50 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-11-15 19:50 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 19:50 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-11-15 19:22 - 2013-11-15 20:20 - 00006608 _____ C:\WINDOWS\comsetup.log
2013-11-15 16:23 - 2013-11-15 16:23 - 01012480 _____ (WildTangent) C:\Users\Powerfrau\Downloads\Setup-wildgames!7168a6e52d914221ad08407979b1267b.exe
2013-11-15 16:15 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall904250.exe
2013-11-15 16:10 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall649749.exe
2013-11-15 16:05 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall348499.exe
2013-11-15 16:03 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall194521.exe
2013-11-15 16:02 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall162697.exe
2013-11-15 15:57 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall3427633.exe
2013-11-15 15:55 - 2013-11-15 15:55 - 00002825 _____ C:\Users\Public\Desktop\WildTangent Games App - acer.pif
2013-11-15 15:55 - 2013-11-15 15:55 - 00000000 ___HD C:\WINDOWS\PIF
2013-11-15 15:54 - 2013-11-15 15:58 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\WildTangent
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\Users\Public\Documents\Start8
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\ProgramData\Stardock
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\Program Files (x86)\Stardock
2013-11-14 12:39 - 2013-11-14 16:17 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-11-14 12:38 - 2013-11-14 12:39 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\SearchProtect
2013-11-14 12:38 - 2013-11-14 12:38 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Secunia PSI
2013-11-14 12:38 - 2013-11-14 12:38 - 00000000 ____D C:\Program Files (x86)\Secunia
2013-11-14 12:37 - 2013-11-14 12:37 - 03864904 _____ (Secunia) C:\Users\Powerfrau\Downloads\MainOffer.exe
2013-11-14 12:25 - 2013-11-14 12:25 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-14 12:25 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-11-14 12:22 - 2013-11-14 12:24 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Powerfrau\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-14 07:26 - 2013-11-14 11:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-11-14 07:26 - 2013-11-14 11:57 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-13 17:47 - 2013-11-13 17:47 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Malwarebytes
2013-11-13 17:47 - 2013-11-13 17:47 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-13 17:46 - 2013-11-14 12:25 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-13 16:32 - 2013-11-13 16:32 - 00000417 _____ C:\WINDOWS\SynInst.log
2013-11-13 15:05 - 2013-11-13 15:05 - 00055902 _____ C:\20131113_150502_v10.0.3.2.dmp
2013-11-13 15:05 - 2013-11-13 15:05 - 00002934 _____ C:\Crash.log
2013-11-12 14:05 - 2013-11-12 14:05 - 00000000 ____D C:\Users\Powerfrau\Documents\MAGIX
2013-11-12 14:02 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\SSync
2013-11-12 14:02 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Intermediate
2013-11-12 14:02 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\DataMgr
2013-11-12 14:02 - 2013-11-13 15:32 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-12 14:02 - 2013-11-13 15:31 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Google
2013-11-12 14:00 - 2013-11-12 14:00 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\OfferMosquito
2013-11-12 14:00 - 2013-11-12 14:00 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Common
2013-11-12 13:40 - 2013-11-12 13:40 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\MAGIX
2013-11-11 11:58 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\SpeedTestAnalysis
2013-11-11 11:57 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Scribus
2013-11-04 18:14 - 2013-11-04 18:15 - 00000000 ____D C:\Users\Powerfrau\Klassenarbeiten
2013-11-04 18:08 - 2013-11-06 09:37 - 00000000 ____D C:\Users\Powerfrau\Bewerbungen
2013-11-03 19:16 - 2013-11-07 09:29 - 00000000 ____D C:\Users\Powerfrau\Documents\CyberLink
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\CyberLink
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Software
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Cyberlink
2013-11-03 09:56 - 2013-11-03 09:56 - 00263776 _____ C:\WINDOWS\msxml4-KB2758694-enu.LOG
2013-11-02 21:28 - 2013-11-14 11:54 - 00000000 ____D C:\ProgramData\simplitec
2013-11-02 21:28 - 2013-11-14 11:54 - 00000000 ____D C:\ProgramData\MAGIX
2013-11-02 21:28 - 2013-11-13 15:28 - 00000000 ____D C:\Program Files (x86)\MAGIX
2013-11-02 21:28 - 2013-11-12 13:40 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Xara
2013-11-02 21:28 - 2013-11-02 21:28 - 00000000 ____D C:\Program Files (x86)\simplitec
2013-11-02 21:27 - 2013-11-02 21:27 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2013-11-02 21:22 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\MAGIX
2013-10-26 23:07 - 2013-10-26 23:07 - 00000000 ____D C:\Users\Powerfrau\Documents\was zum lachen
2013-10-25 16:41 - 2013-11-19 06:53 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Skype
2013-10-25 16:41 - 2013-10-26 09:14 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-10-25 16:41 - 2013-10-25 16:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-25 16:40 - 2013-10-26 09:14 - 00000000 ____D C:\ProgramData\Skype
2013-10-25 16:35 - 2013-10-25 16:38 - 32532128 _____ (Skype Technologies S.A.) C:\Users\Powerfrau\Downloads\SkypeSetupFull.exe
2013-10-24 09:53 - 2013-10-24 09:53 - 00000000 ___RD C:\Users\Powerfrau\Documents\WFW16
2013-10-23 10:15 - 2013-10-24 11:48 - 00000000 ____D C:\Users\Powerfrau\Documents\Natürliche Empfängnisverhütung
2013-10-22 14:21 - 2013-10-22 14:23 - 34873800 _____ (Dropbox, Inc.) C:\Users\Powerfrau\Downloads\Dropbox 2.4.3.exe
2013-10-22 08:21 - 2013-10-22 08:21 - 00001298 _____ C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus.lnk
2013-10-22 08:20 - 2013-10-22 08:20 - 00001093 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2013-10-22 08:20 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2013-10-22 08:19 - 2013-11-19 06:52 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-10-22 08:19 - 2013-11-14 12:31 - 00626272 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2013-10-22 08:19 - 2013-10-22 08:19 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-10-22 08:19 - 2013-06-08 19:18 - 00112224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2013-10-22 07:38 - 2013-05-02 16:29 - 00278800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-10-22 07:28 - 2013-10-22 07:28 - 00000000 ___HD C:\kleaner.tmp
2013-10-21 19:40 - 2013-10-21 20:11 - 00000000 ____D C:\Users\Powerfrau\Documents\Unterrichtsarbeiten
2013-10-20 16:30 - 2013-10-20 16:30 - 00001079 _____ C:\Users\Powerfrau\Desktop\HomepageFIX 2013.lnk
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Meine HomepageFIX2013 Seiten
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Meine HomepageFIX2013 Projekte
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Mein HomepageFIX2013 Backup
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\mresreg
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\IN-MEDIAKG
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Program Files (x86)\HomepageFIX2013
2013-10-20 16:29 - 2013-10-20 16:29 - 00000000 ____D C:\Program Files (x86)\mresreg
2013-10-20 16:28 - 2013-10-20 16:29 - 16593272 _____ (IN MEDIA KG                                                 ) C:\Users\Powerfrau\Downloads\homepagefix_setup.exe
2013-10-20 10:36 - 2013-10-20 10:36 - 00001492 _____ C:\Users\Powerfrau\Desktop\GS_MeNuk_bs - Verknüpfung.lnk

==================== One Month Modified Files and Folders =======

2013-11-19 06:59 - 2013-11-19 06:59 - 00017224 _____ C:\Users\Powerfrau\Downloads\FRST.txt
2013-11-19 06:58 - 2013-11-19 06:58 - 00000000 ____D C:\FRST
2013-11-19 06:58 - 2013-10-09 15:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-11-19 06:57 - 2013-11-19 06:57 - 01957964 _____ (Farbar) C:\Users\Powerfrau\Downloads\FRST64.exe
2013-11-19 06:53 - 2013-11-15 21:34 - 00000000 __RDO C:\Users\Powerfrau\SkyDrive
2013-11-19 06:53 - 2013-10-25 16:41 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Skype
2013-11-19 06:53 - 2013-09-16 22:25 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Dropbox
2013-11-19 06:52 - 2013-11-15 20:02 - 01202083 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-19 06:52 - 2013-10-22 08:19 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-11-19 06:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-11-19 06:50 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-11-18 13:10 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2013-11-18 12:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-11-18 12:02 - 2013-11-18 09:27 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-11-18 12:02 - 2013-09-16 20:24 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Packages
2013-11-18 12:01 - 2013-09-30 05:14 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-18 12:01 - 2013-09-30 04:56 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2013-11-18 12:01 - 2013-09-30 04:56 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2013-11-18 09:28 - 2013-09-16 22:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-18 09:28 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-18 09:27 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2013-11-18 07:28 - 2013-09-17 01:00 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1714643363-2321336554-3525295468-1002
2013-11-17 06:51 - 2013-11-16 18:40 - 00000000 ____D C:\ProgramData\Adobe
2013-11-17 06:51 - 2013-10-09 14:59 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Adobe
2013-11-17 06:51 - 2013-09-16 20:26 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Adobe
2013-11-16 18:41 - 2013-11-16 18:41 - 00002043 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-16 18:41 - 2013-11-16 18:41 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-16 18:35 - 2013-09-27 18:58 - 00000971 _____ C:\Users\Powerfrau\AppData\Roaming\Hugo Retro Maniasavegame.dat
2013-11-16 17:59 - 2013-11-16 17:59 - 00001745 _____ C:\Users\Public\Desktop\Hugo Retro Mania.lnk
2013-11-16 17:59 - 2013-09-18 22:58 - 00000000 ____D C:\Eigene Dateien
2013-11-16 15:39 - 2013-11-16 15:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 22:18 - 2013-11-15 22:18 - 00000000 ____D C:\ProgramData\WildTangentUninstall1080777
2013-11-15 22:12 - 2013-09-28 15:42 - 00218126 _____ C:\WINDOWS\hpoins19.dat
2013-11-15 22:12 - 2013-09-24 15:07 - 00003216 _____ C:\ProgramData\hpzinstall.log
2013-11-15 22:11 - 2013-10-02 18:02 - 00000000 ____D C:\Users\Powerfrau\Documents\ProSaldo
2013-11-15 22:06 - 2013-05-23 05:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-15 22:05 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-11-15 21:39 - 2013-08-22 15:46 - 00329334 _____ C:\WINDOWS\setupact.log
2013-11-15 21:34 - 2013-11-15 20:07 - 00000000 ____D C:\Users\Powerfrau
2013-11-15 21:34 - 2013-09-16 22:02 - 00000000 ___RD C:\Users\Powerfrau\SkyDrive.old
2013-11-15 20:38 - 2013-11-15 19:58 - 00000000 ___DC C:\WINDOWS\Panther
2013-11-15 20:38 - 2013-09-16 20:26 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-11-15 20:37 - 2013-11-15 20:37 - 00001458 _____ C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-15 20:37 - 2013-11-15 20:37 - 00000020 ___SH C:\Users\Powerfrau\ntuser.ini
2013-11-15 20:37 - 2013-09-16 20:26 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-15 20:37 - 2013-09-16 20:26 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-11-15 20:21 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2013-11-15 20:21 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2013-11-15 20:21 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2013-11-15 20:20 - 2013-11-15 20:20 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-11-15 20:20 - 2013-11-15 20:07 - 00032388 _____ C:\WINDOWS\diagwrn.xml
2013-11-15 20:20 - 2013-11-15 20:07 - 00032388 _____ C:\WINDOWS\diagerr.xml
2013-11-15 20:20 - 2013-11-15 19:22 - 00006608 _____ C:\WINDOWS\comsetup.log
2013-11-15 20:17 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2013-11-15 20:17 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-11-15 20:14 - 2013-07-05 04:07 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2013-11-15 20:14 - 2013-07-05 04:07 - 00000000 ____D C:\WINDOWS\system32\NV
2013-11-15 20:13 - 2013-08-22 15:44 - 00370440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-15 20:12 - 2013-10-09 09:12 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoftwareNetz
2013-11-15 20:12 - 2013-09-17 06:06 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-11-15 20:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2013-11-15 20:12 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-11-15 20:12 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-11-15 20:10 - 2013-11-15 20:10 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-15 20:10 - 2013-11-15 20:10 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-15 20:10 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-11-15 20:10 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-11-15 20:10 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-11-15 20:10 - 2013-09-28 15:51 - 00000000 ____D C:\WINDOWS\SysWOW64\spool
2013-11-15 20:10 - 2013-08-22 16:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2013-11-15 20:10 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-11-15 20:10 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-11-15 20:10 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2013-11-15 20:09 - 2013-11-15 20:01 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-15 20:09 - 2013-11-15 20:00 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-15 20:09 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-11-15 20:09 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-11-15 20:09 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-11-15 20:09 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-11-15 20:09 - 2013-05-23 05:26 - 00000000 ____D C:\ProgramData\PRICache
2013-11-15 20:08 - 2013-11-15 20:08 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-11-15 20:08 - 2013-11-15 20:07 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-15 20:08 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Vorlagen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Startmenü
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Netzwerkumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Lokale Einstellungen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Eigene Dateien
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Druckumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Documents\Eigene Musik
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Documents\Eigene Bilder
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Local\Verlauf
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Local\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-15 20:03 - 2013-11-15 20:03 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-11-15 20:03 - 2013-11-15 20:03 - 00000000 ____D C:\Program Files\Realtek
2013-11-15 20:02 - 2013-11-15 20:01 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:01 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____D C:\Program Files\Synaptics
2013-11-15 19:59 - 2013-09-29 20:04 - 00000804 _____ C:\WINDOWS\PFRO.log
2013-11-15 19:58 - 2013-11-15 19:58 - 00000000 __SHD C:\Recovery
2013-11-15 19:58 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-11-15 19:57 - 2013-11-15 19:57 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-11-15 19:57 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2013-11-15 19:56 - 2013-11-15 19:56 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-11-15 19:56 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-11-15 19:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-11-15 19:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-11-15 19:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-11-15 19:55 - 2013-11-15 19:55 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-15 19:55 - 2013-11-15 19:55 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-15 19:55 - 2013-11-15 19:55 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00523096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-15 19:55 - 2013-11-15 19:55 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00371032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-15 19:55 - 2013-11-15 19:55 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-15 19:53 - 2013-11-15 19:53 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-15 19:53 - 2013-11-15 19:53 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-11-15 19:53 - 2013-11-15 19:53 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files\MSBuild
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-11-15 19:51 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-11-15 19:51 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-11-15 19:50 - 2013-11-15 19:50 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-15 19:43 - 2013-07-05 03:58 - 01134253 _____ C:\WINDOWS\WindowsUpdate (1).log
2013-11-15 18:41 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-11-15 16:23 - 2013-11-15 16:23 - 01012480 _____ (WildTangent) C:\Users\Powerfrau\Downloads\Setup-wildgames!7168a6e52d914221ad08407979b1267b.exe
2013-11-15 16:17 - 2013-05-23 05:43 - 00000000 ____D C:\ProgramData\WildTangent
2013-11-15 15:58 - 2013-11-15 15:54 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\WildTangent
2013-11-15 15:55 - 2013-11-15 15:55 - 00002825 _____ C:\Users\Public\Desktop\WildTangent Games App - acer.pif
2013-11-15 15:55 - 2013-11-15 15:55 - 00000000 ___HD C:\WINDOWS\PIF
2013-11-15 15:06 - 2013-10-02 06:32 - 00000000 ____D C:\Users\Powerfrau\Documents\Eigene Scans
2013-11-15 14:54 - 2013-09-16 21:56 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-11-14 16:31 - 2013-07-05 04:27 - 00000000 ____D C:\ProgramData\Norton
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\Users\Public\Documents\Start8
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\ProgramData\Stardock
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\Program Files (x86)\Stardock
2013-11-14 16:17 - 2013-11-14 12:39 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-11-14 14:23 - 2013-10-09 15:00 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-11-14 12:50 - 2013-09-16 20:34 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-14 12:48 - 2013-09-16 20:34 - 82896128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-11-14 12:39 - 2013-11-14 12:38 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\SearchProtect
2013-11-14 12:38 - 2013-11-14 12:38 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Secunia PSI
2013-11-14 12:38 - 2013-11-14 12:38 - 00000000 ____D C:\Program Files (x86)\Secunia
2013-11-14 12:37 - 2013-11-14 12:37 - 03864904 _____ (Secunia) C:\Users\Powerfrau\Downloads\MainOffer.exe
2013-11-14 12:31 - 2013-10-22 08:19 - 00626272 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2013-11-14 12:31 - 2013-05-06 08:22 - 00458336 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kl1.sys
2013-11-14 12:25 - 2013-11-14 12:25 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-14 12:25 - 2013-11-13 17:46 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-14 12:24 - 2013-11-14 12:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Powerfrau\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-14 12:04 - 2013-09-16 21:05 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\clear.fi
2013-11-14 12:02 - 2013-05-23 05:43 - 00000000 ____D C:\Program Files (x86)\WildGames
2013-11-14 11:58 - 2013-11-14 07:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-11-14 11:57 - 2013-11-14 07:26 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-14 11:54 - 2013-11-02 21:28 - 00000000 ____D C:\ProgramData\simplitec
2013-11-14 11:54 - 2013-11-02 21:28 - 00000000 ____D C:\ProgramData\MAGIX
2013-11-14 11:52 - 2013-11-12 14:02 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\SSync
2013-11-14 11:52 - 2013-11-12 14:02 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Intermediate
2013-11-14 11:52 - 2013-11-12 14:02 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\DataMgr
2013-11-14 11:52 - 2013-11-11 11:58 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\SpeedTestAnalysis
2013-11-14 11:52 - 2013-11-11 11:57 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Scribus
2013-11-14 11:52 - 2013-11-02 21:22 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\MAGIX
2013-11-14 11:52 - 2013-10-02 06:32 - 00000000 ____D C:\Users\Powerfrau\Eigene Scans
2013-11-14 11:39 - 2013-09-28 15:15 - 00000000 ____D C:\ProgramData\HP
2013-11-14 11:36 - 2013-09-28 15:47 - 00000000 ____D C:\Program Files (x86)\HP
2013-11-13 17:47 - 2013-11-13 17:47 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Malwarebytes
2013-11-13 17:47 - 2013-11-13 17:47 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-13 16:32 - 2013-11-13 16:32 - 00000417 _____ C:\WINDOWS\SynInst.log
2013-11-13 15:32 - 2013-11-12 14:02 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-13 15:31 - 2013-11-12 14:02 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Google
2013-11-13 15:28 - 2013-11-02 21:28 - 00000000 ____D C:\Program Files (x86)\MAGIX
2013-11-13 15:05 - 2013-11-13 15:05 - 00055902 _____ C:\20131113_150502_v10.0.3.2.dmp
2013-11-13 15:05 - 2013-11-13 15:05 - 00002934 _____ C:\Crash.log
2013-11-12 14:05 - 2013-11-12 14:05 - 00000000 ____D C:\Users\Powerfrau\Documents\MAGIX
2013-11-12 14:00 - 2013-11-12 14:00 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\OfferMosquito
2013-11-12 14:00 - 2013-11-12 14:00 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Common
2013-11-12 13:40 - 2013-11-12 13:40 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\MAGIX
2013-11-12 13:40 - 2013-11-02 21:28 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Xara
2013-11-07 09:29 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\Documents\CyberLink
2013-11-06 09:37 - 2013-11-04 18:08 - 00000000 ____D C:\Users\Powerfrau\Bewerbungen
2013-11-06 00:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-06 00:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-04 18:15 - 2013-11-04 18:14 - 00000000 ____D C:\Users\Powerfrau\Klassenarbeiten
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\CyberLink
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Software
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Cyberlink
2013-11-03 19:16 - 2013-07-05 04:32 - 00000000 ____D C:\ProgramData\CyberLink
2013-11-03 09:56 - 2013-11-03 09:56 - 00263776 _____ C:\WINDOWS\msxml4-KB2758694-enu.LOG
2013-11-02 21:28 - 2013-11-02 21:28 - 00000000 ____D C:\Program Files (x86)\simplitec
2013-11-02 21:27 - 2013-11-02 21:27 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2013-10-26 23:07 - 2013-10-26 23:07 - 00000000 ____D C:\Users\Powerfrau\Documents\was zum lachen
2013-10-26 09:14 - 2013-10-25 16:41 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-10-26 09:14 - 2013-10-25 16:40 - 00000000 ____D C:\ProgramData\Skype
2013-10-25 16:41 - 2013-10-25 16:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-25 16:38 - 2013-10-25 16:35 - 32532128 _____ (Skype Technologies S.A.) C:\Users\Powerfrau\Downloads\SkypeSetupFull.exe
2013-10-24 11:48 - 2013-10-23 10:15 - 00000000 ____D C:\Users\Powerfrau\Documents\Natürliche Empfängnisverhütung
2013-10-24 09:53 - 2013-10-24 09:53 - 00000000 ___RD C:\Users\Powerfrau\Documents\WFW16
2013-10-22 14:24 - 2013-09-30 13:51 - 00000995 _____ C:\Users\Powerfrau\Desktop\Dropbox.lnk
2013-10-22 14:23 - 2013-10-22 14:21 - 34873800 _____ (Dropbox, Inc.) C:\Users\Powerfrau\Downloads\Dropbox 2.4.3.exe
2013-10-22 13:39 - 2013-06-10 11:27 - 00030304 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klim6.sys
2013-10-22 13:39 - 2013-05-05 21:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klmouflt.sys
2013-10-22 13:39 - 2013-05-05 21:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2013-10-22 08:21 - 2013-10-22 08:21 - 00001298 _____ C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus.lnk
2013-10-22 08:20 - 2013-10-22 08:20 - 00001093 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2013-10-22 08:19 - 2013-10-22 08:19 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-10-22 08:19 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2013-10-22 08:09 - 2013-05-23 05:45 - 00000000 ____D C:\ProgramData\McAfee
2013-10-22 08:05 - 2013-05-23 05:45 - 00000000 ____D C:\Program Files\mcafee
2013-10-22 07:28 - 2013-10-22 07:28 - 00000000 ___HD C:\kleaner.tmp
2013-10-21 20:11 - 2013-10-21 19:40 - 00000000 ____D C:\Users\Powerfrau\Documents\Unterrichtsarbeiten
2013-10-20 16:30 - 2013-10-20 16:30 - 00001079 _____ C:\Users\Powerfrau\Desktop\HomepageFIX 2013.lnk
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Meine HomepageFIX2013 Seiten
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Meine HomepageFIX2013 Projekte
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Mein HomepageFIX2013 Backup
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\mresreg
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\IN-MEDIAKG
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Program Files (x86)\HomepageFIX2013
2013-10-20 16:29 - 2013-10-20 16:29 - 00000000 ____D C:\Program Files (x86)\mresreg
2013-10-20 16:29 - 2013-10-20 16:28 - 16593272 _____ (IN MEDIA KG                                                 ) C:\Users\Powerfrau\Downloads\homepagefix_setup.exe
2013-10-20 10:36 - 2013-10-20 10:36 - 00001492 _____ C:\Users\Powerfrau\Desktop\GS_MeNuk_bs - Verknüpfung.lnk

Files to move or delete:
====================
C:\ProgramData\uninstall162697.exe
C:\ProgramData\uninstall194521.exe
C:\ProgramData\uninstall3427633.exe
C:\ProgramData\uninstall348499.exe
C:\ProgramData\uninstall649749.exe
C:\ProgramData\uninstall904250.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2013-11-15 19:55] - [2013-11-15 19:55] - 2328872 ____A (Microsoft Corporation) 63DC38C3E4564B2405D562855643ABA2

C:\Windows\SysWOW64\explorer.exe
[2013-11-15 19:55] - [2013-11-15 19:55] - 2065448 ____A (Microsoft Corporation) 1A0BC9598E4A58FC84570FFF5A108E58

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll
[2013-11-15 19:55] - [2013-11-15 19:55] - 1362944 ____A (Microsoft Corporation) C72456BFFE941714CF05B0AA0BEE5B45

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-15 19:59

==================== End Of Log ============================

--- --- ---

Powermann · 19.11.2013, 07:21

Hier das zweite.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2013
Ran by Powerfrau at 2013-11-19 06:59:50
Running from C:\Users\Powerfrau\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: Kaspersky Anti-Virus (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

clear.fi SDK - Video 2 (x32 Version: 2.1.2606)
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606)
1400 (x32 Version: 140.0.425.000)
1400_Help (x32 Version: 82.0.242.000)
1400Trb (x32 Version: 82.0.242.000)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Acer Power Management (Version: 7.00.3013)
Acer Recovery Management (Version: 6.00.3016)
AcerCloud Docs (x32 Version: 1.01.2008)
AcerCloud Portal (x32 Version: 2.02.2021)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
AIO_CDB_ProductContext (x32 Version: 140.0.425.000)
AIO_CDB_Software (x32 Version: 140.0.428.000)
AIO_Scan (x32 Version: 130.0.421.000)
Bejeweled 3 (x32 Version: 2.2.0.98)
Broadcom 802.11 Network Adapter (Version: 6.30.59.96)
Broadcom Card Reader Driver Installer (Version: 15.4.7.1)
BufferChm (x32 Version: 140.0.298.000)
clear.fi Media (x32 Version: 2.02.2012)
clear.fi Photo (x32 Version: 2.02.2016)
Copy (x32 Version: 140.0.298.000)
Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32)
Destinations (x32 Version: 140.0.253.000)
DeviceDiscovery (x32 Version: 140.0.298.000)
DocProc (x32 Version: 140.0.185.000)
Dritek Radio Controller (x32 Version: 2.02.2001.0803)
Dropbox (HKCU Version: 2.4.3)
Fax (x32 Version: 140.0.307.000)
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110)
GPBaseService2 (x32 Version: 140.0.297.000)
Haushaltsbuch (x32)
HomepageFIX 2013 (x32 Version: Aktuelle Version)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (Version: 14.0)
HP Solution Center 14.0 (Version: 14.0)
HP Update (x32 Version: 5.002.006.003)
HPPhotoGadget (x32 Version: 140.0.524.000)
HPProductAssistant (x32 Version: 140.0.298.000)
HPSSupply (x32 Version: 140.0.297.000)
Hugo Retro Mania (x32 Version: 1.0.0)
Hugo Troll Race Version 1.0 (x32 Version: 1.0)
Identity Card (x32 Version: 2.00.3006)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252)
Intel(R) Processor Graphics (x32 Version: 10.18.10.3316)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
Jewel Match 3 (x32 Version: 2.2.0.98)
John Deere Drive Green (x32 Version: 2.2.0.95)
Kaspersky Anti-Virus (x32 Version: 14.0.0.4651)
Launch Manager (x32 Version: 7.0.10)
Live Updater (x32 Version: 2.00.3010)
Magic Academy (x32 Version: 2.2.0.98)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MarketResearch (x32 Version: 140.0.299.000)
Microsoft Office Home and Student 2013 - de-de (Version: 15.0.4551.1005)
Microsoft SkyDrive (HKCU Version: 17.0.2015.0811)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0)
MonKey Kassenbuch 2012, Version 9.2.2 (x32)
Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 25.0.1)
Nero BackItUp (x32 Version: 12.5.5000)
Nero BackItUp 12 Essentials OEM.a01 (x32 Version: 12.5.00500)
Nero BackItUp Help (CHM) (x32 Version: 12.0.10000)
Nero ControlCenter (x32 Version: 11.0.15600)
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000)
Nero Core Components (x32 Version: 11.0.20200)
Nero Launcher (x32 Version: 12.2.7000)
Nero RescueAgent (x32 Version: 12.0.3001)
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000)
Nero Update (x32 Version: 11.0.11800.31.0)
Network64 (Version: 140.0.306.000)
NVIDIA Grafiktreiber 327.02 (Version: 327.02)
NVIDIA Install Application (Version: 2.1002.133.889)
NVIDIA Optimus 1.11.3 (Version: 1.11.3)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Systemsteuerung 327.02 (Version: 327.02)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
OCR Software by I.R.I.S. 14.0 (Version: 14.0)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1005)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1005)
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1005)
Office Addin (x32 Version: 2.02.2008)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98)
Prerequisite installer (x32 Version: 12.0.0003)
ProtectDisc Driver, Version 11 (x32 Version: 11.0.0.10)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6657)
Scan (x32 Version: 140.0.253.000)
Shared C Run-time for x64 (Version: 10.0.0)
Shop for HP Supplies (Version: 14.0)
Skype™ 6.9 (x32 Version: 6.9.106)
Softwarenetz Haushaltsbuch5 (x32)
SolutionCenter (x32 Version: 140.0.299.000)
Stardock Start8 (x32 Version: 1.30.1)
Status (x32 Version: 140.0.342.000)
Synaptics Pointing Device Driver (Version: 16.3.4.0)
Tales of Lagoona (x32 Version: 2.2.0.110)
Toolbox (x32 Version: 140.0.596.000)
TrayApp (x32 Version: 140.0.297.000)
Visual Studio 2005 Tools for Office Second Edition Runtime (x32)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729)
Visual Studio Tools for the Office system 3.0 Runtime (x32)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (x32 Version: 1)
WebReg (x32 Version: 140.0.297.017)
WildTangent Games (x32 Version: 1.0.4.0)
Zahlenbuch 3 (x32)

==================== Restore Points =========================

15-11-2013 21:05:08 Konfiguriert MediaEspresso

==================== Hosts content: ==========================

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05213698-A30E-4087-A857-31B7B60B5F25} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] ()
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {20850515-6079-456E-AB44-DCEBB8D45EF1} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4557CB26-3ED7-4F68-8D35-B139E4B9F8A1} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {607956CC-9F1D-49C0-9FE2-1AC136843DD0} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\System32\oobe\setupsqm.exe [2013-08-22] (Microsoft Corporation)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => C:\Windows\System32\AppXDeploymentClient.dll [2013-09-30] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DE54F871-A15A-40DC-AD57-970ADF985E29} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-09-17] (Microsoft Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FCEB2E09-955B-4191-8FC5-2F9CC4DCB717} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-14] (Adobe Systems Incorporated)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (whitelisted) =============

2013-10-03 23:42 - 2013-10-03 23:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-11-15 20:59 - 2013-11-15 20:59 - 00347136 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Gloaae92e31#\e0e7493cf161f0e0899caa7eb5e0e259\Windows.Globalization.ni.dll
2013-11-15 20:59 - 2013-11-15 20:59 - 00363520 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\432868bf54b081b16eaf68729020b30a\Windows.Foundation.ni.dll
2013-11-15 20:59 - 2013-11-15 20:59 - 00207872 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.System\e8f8737bea4f0df4b88bbc4bf24fa2a8\Windows.System.ni.dll
2013-11-15 20:59 - 2013-11-15 20:59 - 01278464 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Storage\4c323000d6c8d1d462abb0968333c937\Windows.Storage.ni.dll
2013-09-30 05:00 - 2013-09-30 05:00 - 00012728 _____ () C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.1.203_x64__8wekyb3d8bbwe\Microsoft.PerfTrack.winmd
2013-11-15 20:59 - 2013-11-15 20:59 - 01782272 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.App640a3541#\600862031eb4d4cfdc6f4d2025a7990e\Windows.ApplicationModel.ni.dll
2013-05-08 13:52 - 2013-05-08 13:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\kpcengine.2.3.dll
2013-06-17 11:35 - 2013-06-17 11:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\dblite.dll
2013-07-05 04:03 - 2012-06-25 18:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-11-14 12:22 - 2013-11-14 12:22 - 00316584 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2013-11-14 12:22 - 2013-11-14 12:22 - 00359592 _____ () C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll
2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\Powerfrau\AppData\Roaming\Dropbox\bin\libcef.dll
2013-11-16 15:39 - 2013-11-16 15:39 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Powerfrau\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/16/2013 06:35:36 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: HugoRetroMania.exe, Version: 0.0.0.0, Zeitstempel: 0x50697f31
Name des fehlerhaften Moduls: PMAudioDriver.dll, Version: 0.0.0.0, Zeitstempel: 0x4ca5b497
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000016d7
ID des fehlerhaften Prozesses: 0x18dc
Startzeit der fehlerhaften Anwendung: 0xHugoRetroMania.exe0
Pfad der fehlerhaften Anwendung: HugoRetroMania.exe1
Pfad des fehlerhaften Moduls: HugoRetroMania.exe2
Berichtskennung: HugoRetroMania.exe3
Vollständiger Name des fehlerhaften Pakets: HugoRetroMania.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: HugoRetroMania.exe5

Error: (11/16/2013 06:04:32 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: HugoRetroMania.exe, Version: 0.0.0.0, Zeitstempel: 0x50697f31
Name des fehlerhaften Moduls: PMAudioDriver.dll, Version: 0.0.0.0, Zeitstempel: 0x4ca5b497
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000253c
ID des fehlerhaften Prozesses: 0x1738
Startzeit der fehlerhaften Anwendung: 0xHugoRetroMania.exe0
Pfad der fehlerhaften Anwendung: HugoRetroMania.exe1
Pfad des fehlerhaften Moduls: HugoRetroMania.exe2
Berichtskennung: HugoRetroMania.exe3
Vollständiger Name des fehlerhaften Pakets: HugoRetroMania.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: HugoRetroMania.exe5

Error: (11/16/2013 05:54:37 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: HugoRetroMania.exe, Version: 0.0.0.0, Zeitstempel: 0x50697f31
Name des fehlerhaften Moduls: PMAudioDriver.dll, Version: 0.0.0.0, Zeitstempel: 0x4ca5b497
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000253c
ID des fehlerhaften Prozesses: 0x1b60
Startzeit der fehlerhaften Anwendung: 0xHugoRetroMania.exe0
Pfad der fehlerhaften Anwendung: HugoRetroMania.exe1
Pfad des fehlerhaften Moduls: HugoRetroMania.exe2
Berichtskennung: HugoRetroMania.exe3
Vollständiger Name des fehlerhaften Pakets: HugoRetroMania.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: HugoRetroMania.exe5

Error: (11/16/2013 05:45:46 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: HugoRetroMania.exe, Version: 0.0.0.0, Zeitstempel: 0x50697f31
Name des fehlerhaften Moduls: PMAudioDriver.dll, Version: 0.0.0.0, Zeitstempel: 0x4ca5b497
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000253c
ID des fehlerhaften Prozesses: 0x1b9c
Startzeit der fehlerhaften Anwendung: 0xHugoRetroMania.exe0
Pfad der fehlerhaften Anwendung: HugoRetroMania.exe1
Pfad des fehlerhaften Moduls: HugoRetroMania.exe2
Berichtskennung: HugoRetroMania.exe3
Vollständiger Name des fehlerhaften Pakets: HugoRetroMania.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: HugoRetroMania.exe5

Error: (11/15/2013 10:18:48 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Uninstaller.exe, Version: 1.0.0.139, Zeitstempel: 0x4cd1d1b2
Name des fehlerhaften Moduls: Uninstaller.exe, Version: 1.0.0.139, Zeitstempel: 0x4cd1d1b2
Ausnahmecode: 0x40000015
Fehleroffset: 0x00033943
ID des fehlerhaften Prozesses: 0x12fc
Startzeit der fehlerhaften Anwendung: 0xUninstaller.exe0
Pfad der fehlerhaften Anwendung: Uninstaller.exe1
Pfad des fehlerhaften Moduls: Uninstaller.exe2
Berichtskennung: Uninstaller.exe3
Vollständiger Name des fehlerhaften Pakets: Uninstaller.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Uninstaller.exe5

Error: (11/15/2013 10:18:42 PM) (Source: Application Hang) (User: )
Description: Programm uninstall.exe, Version 1.0.4.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1c38

Startzeit: 01cee24829fa6c55

Endzeit: 15

Anwendungspfad: C:\ProgramData\WildTangentUninstall1080777\uninstall.exe

Berichts-ID: 7a9dbf9d-4e3b-11e3-8250-208984c6bb02

Vollständiger Name des fehlerhaften Pakets:

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/15/2013 10:18:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Uninstaller.exe, Version: 1.0.0.139, Zeitstempel: 0x4cd1d1b2
Name des fehlerhaften Moduls: Uninstaller.exe, Version: 1.0.0.139, Zeitstempel: 0x4cd1d1b2
Ausnahmecode: 0x40000015
Fehleroffset: 0x00033943
ID des fehlerhaften Prozesses: 0x1cf8
Startzeit der fehlerhaften Anwendung: 0xUninstaller.exe0
Pfad der fehlerhaften Anwendung: Uninstaller.exe1
Pfad des fehlerhaften Moduls: Uninstaller.exe2
Berichtskennung: Uninstaller.exe3
Vollständiger Name des fehlerhaften Pakets: Uninstaller.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Uninstaller.exe5

Error: (11/15/2013 09:34:40 PM) (Source: Microsoft-Windows-AppModel-State) (User: JEANNETTE)
Description: windows_ie_ac_0013

Error: (11/15/2013 09:34:39 PM) (Source: Microsoft-Windows-AppModel-State) (User: JEANNETTE)
Description: microsoft.windows.authhost.a_8wekyb3d8bbwe3

Error: (11/15/2013 04:16:48 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: uninstaller.exe, Version: 1.0.0.139, Zeitstempel: 0x4cd1d1b2
Name des fehlerhaften Moduls: uninstaller.exe, Version: 1.0.0.139, Zeitstempel: 0x4cd1d1b2
Ausnahmecode: 0x40000015
Fehleroffset: 0x00033943
ID des fehlerhaften Prozesses: 0x930
Startzeit der fehlerhaften Anwendung: 0xuninstaller.exe0
Pfad der fehlerhaften Anwendung: uninstaller.exe1
Pfad des fehlerhaften Moduls: uninstaller.exe2
Berichtskennung: uninstaller.exe3
Vollständiger Name des fehlerhaften Pakets: uninstaller.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: uninstaller.exe5

System errors:
=============
Error: (11/19/2013 06:50:11 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/19/2013 06:50:11 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/19/2013 06:50:09 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/18/2013 06:42:03 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/18/2013 03:48:39 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/18/2013 03:16:35 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/18/2013 03:16:27 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/18/2013 02:35:15 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/18/2013 02:35:15 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding193{10DA4F3C-CC99-4190-BE4D-58330754E882}

Error: (11/18/2013 00:03:00 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Microsoft Office Sessions:
=========================
Error: (11/16/2013 06:35:36 PM) (Source: Application Error)(User: )
Description: HugoRetroMania.exe0.0.0.050697f31PMAudioDriver.dll0.0.0.04ca5b497c0000005000016d718dc01cee2ee2fc446ccC:\Eigene Dateien\Spiele\GL\HugoRetroMania.exeC:\Eigene Dateien\Spiele\PMAudioDriver.dll7ff748a5-4ee5-11e3-be85-bfed22be37fa

Error: (11/16/2013 06:04:32 PM) (Source: Application Error)(User: )
Description: HugoRetroMania.exe0.0.0.050697f31PMAudioDriver.dll0.0.0.04ca5b497c00000050000253c173801cee2ed4b9a4127C:\Eigene Dateien\Spiele\GL\HugoRetroMania.exeC:\Eigene Dateien\Spiele\PMAudioDriver.dll28eacd50-4ee1-11e3-be85-bfed22be37fa

Error: (11/16/2013 05:54:37 PM) (Source: Application Error)(User: )
Description: HugoRetroMania.exe0.0.0.050697f31PMAudioDriver.dll0.0.0.04ca5b497c00000050000253c1b6001cee2eb82ce6c8fC:\Program Files (x86)\GL\HugoRetroMania.exeC:\Program Files (x86)\PMAudioDriver.dllc66c4787-4edf-11e3-be85-bfed22be37fa

Error: (11/16/2013 05:45:46 PM) (Source: Application Error)(User: )
Description: HugoRetroMania.exe0.0.0.050697f31PMAudioDriver.dll0.0.0.04ca5b497c00000050000253c1b9c01cee2eac5ff3533C:\Program Files (x86)\GL\HugoRetroMania.exeC:\Program Files (x86)\PMAudioDriver.dll89aaafe2-4ede-11e3-be85-bfed22be37fa

Error: (11/15/2013 10:18:48 PM) (Source: Application Error)(User: )
Description: Uninstaller.exe1.0.0.1394cd1d1b2Uninstaller.exe1.0.0.1394cd1d1b2400000150003394312fc01cee24831790718C:\Users\POWERF~1\AppData\Local\Temp\uninstaller-WTA-c23a868f-9789-49c1-b2fc-d5a9bb36a2bf\Uninstaller.exeC:\Users\POWERF~1\AppData\Local\Temp\uninstaller-WTA-c23a868f-9789-49c1-b2fc-d5a9bb36a2bf\Uninstaller.exe83c88518-4e3b-11e3-8250-208984c6bb02

Error: (11/15/2013 10:18:42 PM) (Source: Application Hang)(User: )
Description: uninstall.exe1.0.4.01c3801cee24829fa6c5515C:\ProgramData\WildTangentUninstall1080777\uninstall.exe7a9dbf9d-4e3b-11e3-8250-208984c6bb02

Error: (11/15/2013 10:18:11 PM) (Source: Application Error)(User: )
Description: Uninstaller.exe1.0.0.1394cd1d1b2Uninstaller.exe1.0.0.1394cd1d1b240000015000339431cf801cee2482eeff4d9C:\Users\POWERF~1\AppData\Local\Temp\uninstaller-WTA-cd0369ae-fb4a-42d2-b7eb-7e21f5f933e3\Uninstaller.exeC:\Users\POWERF~1\AppData\Local\Temp\uninstaller-WTA-cd0369ae-fb4a-42d2-b7eb-7e21f5f933e3\Uninstaller.exe6df5a001-4e3b-11e3-8250-208984c6bb02

Error: (11/15/2013 09:34:40 PM) (Source: Microsoft-Windows-AppModel-State)(User: JEANNETTE)
Description: windows_ie_ac_0013

Error: (11/15/2013 09:34:39 PM) (Source: Microsoft-Windows-AppModel-State)(User: JEANNETTE)
Description: microsoft.windows.authhost.a_8wekyb3d8bbwe3

Error: (11/15/2013 04:16:48 PM) (Source: Application Error)(User: )
Description: uninstaller.exe1.0.0.1394cd1d1b2uninstaller.exe1.0.0.1394cd1d1b2400000150003394393001cee215b0b849aeC:\Users\POWERF~1\AppData\Local\Temp\uninstaller-WTA-cfe98b99-6138-4136-8442-045003b0d9cb\uninstaller.exeC:\Users\POWERF~1\AppData\Local\Temp\uninstaller-WTA-cfe98b99-6138-4136-8442-045003b0d9cb\uninstaller.exef2152cdd-4e08-11e3-be84-208984c6bb02

==================== Memory info ===========================

Percentage of memory in use: 26%
Total physical RAM: 8007.27 MB
Available physical RAM: 5908.68 MB
Total Pagefile: 9927.27 MB
Available Pagefile: 7653.2 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:681.85 GB) (Free:647.69 GB) NTFS
Drive d: (Zahlenbuch3) (CDROM) (Total:0.14 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 699 GB) (Disk ID: 4A1234B1)

Partition: GPT Partition Type
==================== End Of Log ============================

Bei Fragen einfach mailen. Sag schon mal danke !!!

Habe noch eine Frage. Wollte diese komische Spieleapps von Microsoft Wild Tangents von meinem PC haben. Kann sie aber nicht deinstallieren, da das System meckert. Er meint es kann nicht deinstalliert werden. Ist aber alles auf Englisch und ich weiß nicht was ich da machen kann. Kann das sein, das es daran liegt das ich beim entfernen von Malewarebytes in Quarantäne befindlichen Dateien auch was gelöscht habe was ich nicht löschen durfte und deswegen diese Wild Tangents nicht mehr deinstallieren kann. Ws kann ich machen um das von meinem System runter zu bekommen ??? Systemwiederherstellung ??? Obwohl Microsoft auch letztens auf Windows 8.1 per Up Dates glaube ich auch aufgstockt hat, kann ich es nicht entfernen. Hat dann eine Systemwiederhesrtellung überhaupt Sinn ??? Vielen Dank schon mal für die Antworten. Kann ich meine Daten hier hinterher löschen ??? Jedenfalls was diese Scans anbelangt.

Achso und noch was. Personalisierte Werbung wie entsteht die eigentlich genau ??? Irgend woher müssen die doch dann Infos haben ??? Ich lösche immer meinen Verlauf und alle Cookies etc.. Wo bekommen die das her ???

aharonov · 19.11.2013, 13:41

Mach mal so weiter:

Schritt 1

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2

Starte noch einmal FRST.

Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

Powermann · 19.11.2013, 15:59

AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v3.012 - Bericht erstellt am 19/11/2013 um 15:45:58
# Updated 11/11/2013 von Xplode
# Betriebssystem : Windows 8.1  (64 bits)
# Benutzername : Powerfrau - JEANNETTE
# Gestartet von : C:\Users\Powerfrau\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\ProgramData\simplitec
Ordner Gelöscht : C:\Program Files (x86)\MyPC Backup
Ordner Gelöscht : C:\Program Files (x86)\simplitec
Ordner Gelöscht : C:\Users\Powerfrau\AppData\Local\Searchprotect
Ordner Gelöscht : C:\Users\Powerfrau\AppData\Roaming\Common\LuaRT
Ordner Gelöscht : C:\Users\Powerfrau\AppData\Roaming\DataMgr
Ordner Gelöscht : C:\Users\Powerfrau\AppData\Roaming\Intermediate
Ordner Gelöscht : C:\Users\Powerfrau\AppData\Roaming\SSync

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\SearchProtect
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v25.0.1 (de)

[ Datei : C:\Users\Powerfrau\AppData\Roaming\Mozilla\Firefox\Profiles\32urpsgl.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1841 octets] - [19/11/2013 15:40:27]
AdwCleaner[R1].txt - [1901 octets] - [19/11/2013 15:42:19]
AdwCleaner[S0].txt - [1664 octets] - [19/11/2013 15:45:58]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1724 octets] ##########

--- --- ---

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-11-2013
Ran by Powerfrau (administrator) on JEANNETTE on 19-11-2013 15:56:56
Running from C:\Users\Powerfrau\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Broadcom Corp.) C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(Dropbox, Inc.) C:\Users\Powerfrau\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\WINDOWS\WinStore\WSHost.exe
(Farbar) C:\Users\Powerfrau\Downloads\FRST64(1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3008824 2012-11-29] (Synaptics Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20474528 2013-10-02] (Skype Technologies S.A.)
MountPoints2: {5d854048-e51d-11e2-be6b-806e6f6e6963} - "D:\WinFiles\autorun.exe" 
HKLM-x32\...\Run: [LManager] - [x]
HKLM-x32\...\Run: [RadioController] - C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-07-05] (Dritek System Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKU\UpdatusUser\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
Startup: C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Powerfrau\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKLM - DefaultScope {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - {AA31C35F-BB17-4D44-87E0-A297930F1A77} URL = 
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = 
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Powerfrau\AppData\Roaming\Mozilla\Firefox\Profiles\32urpsgl.default
FF NewTab: about:blank
FF Homepage: about:config => browser.newtab.url 
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com

==================== Services (Whitelisted) =================

R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-10-22] (Kaspersky Lab ZAO)
R2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-20] (Broadcom Corp.)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-09-17] (Microsoft Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-07-05] (Dritek System INC.)
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [142960 2013-03-19] (Stardock Software, Inc)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-15] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-14] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112224 2013-06-08] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [626272 2013-11-14] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-10-22] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2013-10-22] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-10-22] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178784 2013-06-06] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-07-05] (Dritek System Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31032 2012-11-29] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-15] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-19 15:56 - 2013-11-19 15:56 - 01957964 _____ (Farbar) C:\Users\Powerfrau\Downloads\FRST64(1).exe
2013-11-19 15:56 - 2013-11-19 15:56 - 01085542 _____ C:\Users\Powerfrau\Downloads\adwcleaner(1).exe
2013-11-19 15:40 - 2013-11-19 15:46 - 00000000 ____D C:\AdwCleaner
2013-11-19 15:39 - 2013-11-19 15:39 - 01085542 _____ C:\Users\Powerfrau\Downloads\adwcleaner.exe
2013-11-19 15:34 - 2013-11-19 15:35 - 00000000 ____D C:\Users\Powerfrau\Documents\Schriftverkehr und andere Sachen
2013-11-19 06:59 - 2013-11-19 15:56 - 00016284 _____ C:\Users\Powerfrau\Downloads\FRST.txt
2013-11-19 06:59 - 2013-11-19 07:00 - 00024566 _____ C:\Users\Powerfrau\Downloads\Addition.txt
2013-11-19 06:58 - 2013-11-19 06:58 - 00000000 ____D C:\FRST
2013-11-19 06:57 - 2013-11-19 06:57 - 01957964 _____ (Farbar) C:\Users\Powerfrau\Downloads\FRST64.exe
2013-11-18 09:27 - 2013-11-18 12:02 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-11-16 18:41 - 2013-11-16 18:41 - 00002043 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-16 18:41 - 2013-11-16 18:41 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-16 18:40 - 2013-11-17 06:51 - 00000000 ____D C:\ProgramData\Adobe
2013-11-16 17:59 - 2013-11-16 17:59 - 00001745 _____ C:\Users\Public\Desktop\Hugo Retro Mania.lnk
2013-11-16 15:39 - 2013-11-16 15:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 22:18 - 2013-11-15 22:18 - 00000000 ____D C:\ProgramData\WildTangentUninstall1080777
2013-11-15 21:34 - 2013-11-19 15:48 - 00000000 __RDO C:\Users\Powerfrau\SkyDrive
2013-11-15 20:37 - 2013-11-15 20:37 - 00001458 _____ C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-15 20:37 - 2013-11-15 20:37 - 00000020 ___SH C:\Users\Powerfrau\ntuser.ini
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-11-15 20:20 - 2013-11-15 20:20 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-11-15 20:10 - 2013-11-15 20:10 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-15 20:10 - 2013-11-15 20:10 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-15 20:08 - 2013-11-15 20:08 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-11-15 20:07 - 2013-11-15 21:34 - 00000000 ____D C:\Users\Powerfrau
2013-11-15 20:07 - 2013-11-15 20:20 - 00032388 _____ C:\WINDOWS\diagwrn.xml
2013-11-15 20:07 - 2013-11-15 20:20 - 00032388 _____ C:\WINDOWS\diagerr.xml
2013-11-15 20:07 - 2013-11-15 20:08 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Vorlagen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Startmenü
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Netzwerkumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Lokale Einstellungen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Eigene Dateien
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Druckumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Documents\Eigene Musik
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Documents\Eigene Bilder
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Local\Verlauf
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Local\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-11-15 20:07 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-11-15 20:03 - 2013-11-15 20:03 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-11-15 20:03 - 2013-11-15 20:03 - 00000000 ____D C:\Program Files\Realtek
2013-11-15 20:02 - 2013-11-19 14:54 - 01245114 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-15 20:02 - 2013-08-29 23:43 - 06599968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 03452192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 01042208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 00920864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-11-15 20:02 - 2013-08-29 23:43 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2013-11-15 20:02 - 2013-08-29 23:43 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-11-15 20:02 - 2013-08-29 21:28 - 03349466 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-11-15 20:01 - 2013-11-15 20:09 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:02 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:01 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____D C:\Program Files\Synaptics
2013-11-15 20:00 - 2013-11-15 20:09 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-15 20:00 - 2013-10-03 23:43 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-11-15 20:00 - 2013-10-03 23:43 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-11-15 19:58 - 2013-11-15 20:38 - 00000000 ___DC C:\WINDOWS\Panther
2013-11-15 19:58 - 2013-11-15 19:58 - 00000000 __SHD C:\Recovery
2013-11-15 19:57 - 2013-11-15 19:57 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-15 19:55 - 2013-11-15 19:55 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-15 19:55 - 2013-11-15 19:55 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00523096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-15 19:55 - 2013-11-15 19:55 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00371032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-15 19:55 - 2013-11-15 19:55 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-15 19:53 - 2013-11-15 19:53 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-15 19:53 - 2013-11-15 19:53 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-11-15 19:53 - 2013-11-15 19:53 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files\MSBuild
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-11-15 19:50 - 2013-11-15 19:50 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-15 19:50 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-11-15 19:50 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 19:50 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-11-15 19:50 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-11-15 19:50 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 19:50 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-11-15 19:22 - 2013-11-15 20:20 - 00006608 _____ C:\WINDOWS\comsetup.log
2013-11-15 16:23 - 2013-11-15 16:23 - 01012480 _____ (WildTangent) C:\Users\Powerfrau\Downloads\Setup-wildgames!7168a6e52d914221ad08407979b1267b.exe
2013-11-15 16:15 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall904250.exe
2013-11-15 16:10 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall649749.exe
2013-11-15 16:05 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall348499.exe
2013-11-15 16:03 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall194521.exe
2013-11-15 16:02 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall162697.exe
2013-11-15 15:57 - 2012-10-24 20:44 - 00656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall3427633.exe
2013-11-15 15:55 - 2013-11-15 15:55 - 00002825 _____ C:\Users\Public\Desktop\WildTangent Games App - acer.pif
2013-11-15 15:55 - 2013-11-15 15:55 - 00000000 ___HD C:\WINDOWS\PIF
2013-11-15 15:54 - 2013-11-15 15:58 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\WildTangent
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\Users\Public\Documents\Start8
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\ProgramData\Stardock
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\Program Files (x86)\Stardock
2013-11-14 12:38 - 2013-11-14 12:38 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Secunia PSI
2013-11-14 12:38 - 2013-11-14 12:38 - 00000000 ____D C:\Program Files (x86)\Secunia
2013-11-14 12:37 - 2013-11-14 12:37 - 03864904 _____ (Secunia) C:\Users\Powerfrau\Downloads\MainOffer.exe
2013-11-14 12:25 - 2013-11-14 12:25 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-14 12:25 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-11-14 12:22 - 2013-11-14 12:24 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Powerfrau\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-14 07:26 - 2013-11-14 11:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-11-14 07:26 - 2013-11-14 11:57 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-13 17:47 - 2013-11-13 17:47 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Malwarebytes
2013-11-13 17:47 - 2013-11-13 17:47 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-13 17:46 - 2013-11-14 12:25 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-13 16:32 - 2013-11-13 16:32 - 00000417 _____ C:\WINDOWS\SynInst.log
2013-11-13 15:05 - 2013-11-13 15:05 - 00055902 _____ C:\20131113_150502_v10.0.3.2.dmp
2013-11-13 15:05 - 2013-11-13 15:05 - 00002934 _____ C:\Crash.log
2013-11-12 14:05 - 2013-11-12 14:05 - 00000000 ____D C:\Users\Powerfrau\Documents\MAGIX
2013-11-12 14:02 - 2013-11-13 15:32 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-12 14:02 - 2013-11-13 15:31 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Google
2013-11-12 14:00 - 2013-11-12 14:00 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\OfferMosquito
2013-11-12 14:00 - 2013-11-12 14:00 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Common
2013-11-12 13:40 - 2013-11-12 13:40 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\MAGIX
2013-11-11 11:58 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\SpeedTestAnalysis
2013-11-11 11:57 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Scribus
2013-11-04 18:14 - 2013-11-04 18:15 - 00000000 ____D C:\Users\Powerfrau\Klassenarbeiten
2013-11-04 18:08 - 2013-11-06 09:37 - 00000000 ____D C:\Users\Powerfrau\Bewerbungen
2013-11-03 19:16 - 2013-11-07 09:29 - 00000000 ____D C:\Users\Powerfrau\Documents\CyberLink
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\CyberLink
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Software
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Cyberlink
2013-11-03 09:56 - 2013-11-03 09:56 - 00263776 _____ C:\WINDOWS\msxml4-KB2758694-enu.LOG
2013-11-02 21:28 - 2013-11-14 11:54 - 00000000 ____D C:\ProgramData\MAGIX
2013-11-02 21:28 - 2013-11-13 15:28 - 00000000 ____D C:\Program Files (x86)\MAGIX
2013-11-02 21:28 - 2013-11-12 13:40 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Xara
2013-11-02 21:27 - 2013-11-02 21:27 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2013-11-02 21:22 - 2013-11-14 11:52 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\MAGIX
2013-10-26 23:07 - 2013-10-26 23:07 - 00000000 ____D C:\Users\Powerfrau\Documents\was zum lachen
2013-10-25 16:41 - 2013-11-19 15:49 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Skype
2013-10-25 16:41 - 2013-10-26 09:14 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-10-25 16:41 - 2013-10-25 16:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-25 16:40 - 2013-10-26 09:14 - 00000000 ____D C:\ProgramData\Skype
2013-10-25 16:35 - 2013-10-25 16:38 - 32532128 _____ (Skype Technologies S.A.) C:\Users\Powerfrau\Downloads\SkypeSetupFull.exe
2013-10-24 09:53 - 2013-10-24 09:53 - 00000000 ___RD C:\Users\Powerfrau\Documents\WFW16
2013-10-23 10:15 - 2013-10-24 11:48 - 00000000 ____D C:\Users\Powerfrau\Documents\Natürliche Empfängnisverhütung
2013-10-22 14:21 - 2013-10-22 14:23 - 34873800 _____ (Dropbox, Inc.) C:\Users\Powerfrau\Downloads\Dropbox 2.4.3.exe
2013-10-22 08:21 - 2013-10-22 08:21 - 00001298 _____ C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus.lnk
2013-10-22 08:20 - 2013-10-22 08:20 - 00001093 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2013-10-22 08:20 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2013-10-22 08:19 - 2013-11-19 15:48 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-10-22 08:19 - 2013-11-14 12:31 - 00626272 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2013-10-22 08:19 - 2013-10-22 08:19 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-10-22 08:19 - 2013-06-08 19:18 - 00112224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2013-10-22 07:38 - 2013-05-02 16:29 - 00278800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-10-22 07:28 - 2013-10-22 07:28 - 00000000 ___HD C:\kleaner.tmp
2013-10-21 19:40 - 2013-10-21 20:11 - 00000000 ____D C:\Users\Powerfrau\Documents\Unterrichtsarbeiten
2013-10-20 16:30 - 2013-10-20 16:30 - 00001079 _____ C:\Users\Powerfrau\Desktop\HomepageFIX 2013.lnk
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Meine HomepageFIX2013 Seiten
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Meine HomepageFIX2013 Projekte
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Mein HomepageFIX2013 Backup
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\mresreg
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\IN-MEDIAKG
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Program Files (x86)\HomepageFIX2013
2013-10-20 16:29 - 2013-10-20 16:29 - 00000000 ____D C:\Program Files (x86)\mresreg
2013-10-20 16:28 - 2013-10-20 16:29 - 16593272 _____ (IN MEDIA KG                                                 ) C:\Users\Powerfrau\Downloads\homepagefix_setup.exe
2013-10-20 10:36 - 2013-10-20 10:36 - 00001492 _____ C:\Users\Powerfrau\Desktop\GS_MeNuk_bs - Verknüpfung.lnk

==================== One Month Modified Files and Folders =======

2013-11-19 15:57 - 2013-11-19 06:59 - 00016284 _____ C:\Users\Powerfrau\Downloads\FRST.txt
2013-11-19 15:56 - 2013-11-19 15:56 - 01957964 _____ (Farbar) C:\Users\Powerfrau\Downloads\FRST64(1).exe
2013-11-19 15:56 - 2013-11-19 15:56 - 01085542 _____ C:\Users\Powerfrau\Downloads\adwcleaner(1).exe
2013-11-19 15:54 - 2013-11-15 20:02 - 01245114 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-19 15:49 - 2013-10-25 16:41 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Skype
2013-11-19 15:48 - 2013-11-15 21:34 - 00000000 __RDO C:\Users\Powerfrau\SkyDrive
2013-11-19 15:48 - 2013-10-22 08:19 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-11-19 15:48 - 2013-09-16 22:25 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Dropbox
2013-11-19 15:47 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-19 15:47 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2013-11-19 15:46 - 2013-11-19 15:40 - 00000000 ____D C:\AdwCleaner
2013-11-19 15:45 - 2013-11-12 14:00 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Common
2013-11-19 15:39 - 2013-11-19 15:39 - 01085542 _____ C:\Users\Powerfrau\Downloads\adwcleaner.exe
2013-11-19 15:35 - 2013-11-19 15:34 - 00000000 ____D C:\Users\Powerfrau\Documents\Schriftverkehr und andere Sachen
2013-11-19 15:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-11-19 14:58 - 2013-10-09 15:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-11-19 07:45 - 2013-09-17 01:00 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1714643363-2321336554-3525295468-1002
2013-11-19 07:00 - 2013-11-19 06:59 - 00024566 _____ C:\Users\Powerfrau\Downloads\Addition.txt
2013-11-19 06:58 - 2013-11-19 06:58 - 00000000 ____D C:\FRST
2013-11-19 06:57 - 2013-11-19 06:57 - 01957964 _____ (Farbar) C:\Users\Powerfrau\Downloads\FRST64.exe
2013-11-19 06:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-11-18 13:10 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2013-11-18 12:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-11-18 12:02 - 2013-11-18 09:27 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-11-18 12:02 - 2013-09-16 20:24 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Packages
2013-11-18 12:01 - 2013-09-30 05:14 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-18 12:01 - 2013-09-30 04:56 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2013-11-18 12:01 - 2013-09-30 04:56 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2013-11-18 09:28 - 2013-09-16 22:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-17 06:51 - 2013-11-16 18:40 - 00000000 ____D C:\ProgramData\Adobe
2013-11-17 06:51 - 2013-10-09 14:59 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Adobe
2013-11-17 06:51 - 2013-09-16 20:26 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Adobe
2013-11-16 18:41 - 2013-11-16 18:41 - 00002043 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-16 18:41 - 2013-11-16 18:41 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-16 18:35 - 2013-09-27 18:58 - 00000971 _____ C:\Users\Powerfrau\AppData\Roaming\Hugo Retro Maniasavegame.dat
2013-11-16 17:59 - 2013-11-16 17:59 - 00001745 _____ C:\Users\Public\Desktop\Hugo Retro Mania.lnk
2013-11-16 17:59 - 2013-09-18 22:58 - 00000000 ____D C:\Eigene Dateien
2013-11-16 15:39 - 2013-11-16 15:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 22:18 - 2013-11-15 22:18 - 00000000 ____D C:\ProgramData\WildTangentUninstall1080777
2013-11-15 22:12 - 2013-09-28 15:42 - 00218126 _____ C:\WINDOWS\hpoins19.dat
2013-11-15 22:12 - 2013-09-24 15:07 - 00003216 _____ C:\ProgramData\hpzinstall.log
2013-11-15 22:11 - 2013-10-02 18:02 - 00000000 ____D C:\Users\Powerfrau\Documents\ProSaldo
2013-11-15 22:06 - 2013-05-23 05:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-15 22:05 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-11-15 21:39 - 2013-08-22 15:46 - 00329334 _____ C:\WINDOWS\setupact.log
2013-11-15 21:34 - 2013-11-15 20:07 - 00000000 ____D C:\Users\Powerfrau
2013-11-15 21:34 - 2013-09-16 22:02 - 00000000 ___RD C:\Users\Powerfrau\SkyDrive.old
2013-11-15 20:38 - 2013-11-15 19:58 - 00000000 ___DC C:\WINDOWS\Panther
2013-11-15 20:38 - 2013-09-16 20:26 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-11-15 20:37 - 2013-11-15 20:37 - 00001458 _____ C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-15 20:37 - 2013-11-15 20:37 - 00000020 ___SH C:\Users\Powerfrau\ntuser.ini
2013-11-15 20:37 - 2013-09-16 20:26 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-15 20:37 - 2013-09-16 20:26 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-11-15 20:21 - 2013-11-15 20:21 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-11-15 20:21 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2013-11-15 20:21 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2013-11-15 20:21 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2013-11-15 20:20 - 2013-11-15 20:20 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-11-15 20:20 - 2013-11-15 20:07 - 00032388 _____ C:\WINDOWS\diagwrn.xml
2013-11-15 20:20 - 2013-11-15 20:07 - 00032388 _____ C:\WINDOWS\diagerr.xml
2013-11-15 20:20 - 2013-11-15 19:22 - 00006608 _____ C:\WINDOWS\comsetup.log
2013-11-15 20:17 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2013-11-15 20:17 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-11-15 20:14 - 2013-07-05 04:07 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2013-11-15 20:14 - 2013-07-05 04:07 - 00000000 ____D C:\WINDOWS\system32\NV
2013-11-15 20:13 - 2013-08-22 15:44 - 00370440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-15 20:12 - 2013-10-09 09:12 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoftwareNetz
2013-11-15 20:12 - 2013-09-17 06:06 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-11-15 20:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2013-11-15 20:12 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-11-15 20:12 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-11-15 20:10 - 2013-11-15 20:10 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-15 20:10 - 2013-11-15 20:10 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-15 20:10 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-11-15 20:10 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-11-15 20:10 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-11-15 20:10 - 2013-09-28 15:51 - 00000000 ____D C:\WINDOWS\SysWOW64\spool
2013-11-15 20:10 - 2013-08-22 16:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-11-15 20:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2013-11-15 20:10 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-11-15 20:10 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-11-15 20:10 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2013-11-15 20:09 - 2013-11-15 20:01 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-15 20:09 - 2013-11-15 20:00 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-15 20:09 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-11-15 20:09 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-11-15 20:09 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-11-15 20:09 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-11-15 20:09 - 2013-05-23 05:26 - 00000000 ____D C:\ProgramData\PRICache
2013-11-15 20:08 - 2013-11-15 20:08 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-11-15 20:08 - 2013-11-15 20:07 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-15 20:08 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Vorlagen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Startmenü
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Netzwerkumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Lokale Einstellungen
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Eigene Dateien
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Druckumgebung
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Documents\Eigene Musik
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Documents\Eigene Bilder
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Local\Verlauf
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\AppData\Local\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 _SHDL C:\Users\Powerfrau\Anwendungsdaten
2013-11-15 20:07 - 2013-11-15 20:07 - 00000000 ___RD C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-11-15 20:03 - 2013-11-15 20:03 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-11-15 20:03 - 2013-11-15 20:03 - 00000000 ____D C:\Program Files\Realtek
2013-11-15 20:02 - 2013-11-15 20:01 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:01 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-11-15 20:01 - 2013-11-15 20:01 - 00000000 ____D C:\Program Files\Synaptics
2013-11-15 19:59 - 2013-09-29 20:04 - 00000804 _____ C:\WINDOWS\PFRO.log
2013-11-15 19:58 - 2013-11-15 19:58 - 00000000 __SHD C:\Recovery
2013-11-15 19:58 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-11-15 19:57 - 2013-11-15 19:57 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-11-15 19:57 - 2013-11-15 19:57 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-11-15 19:57 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2013-11-15 19:56 - 2013-11-15 19:56 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-11-15 19:56 - 2013-11-15 19:56 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-11-15 19:56 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-11-15 19:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-11-15 19:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-11-15 19:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-11-15 19:55 - 2013-11-15 19:55 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-15 19:55 - 2013-11-15 19:55 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-15 19:55 - 2013-11-15 19:55 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00523096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-15 19:55 - 2013-11-15 19:55 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00371032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-15 19:55 - 2013-11-15 19:55 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-15 19:55 - 2013-11-15 19:55 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-15 19:55 - 2013-11-15 19:55 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-15 19:55 - 2013-11-15 19:55 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-15 19:53 - 2013-11-15 19:53 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-15 19:53 - 2013-11-15 19:53 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-15 19:53 - 2013-11-15 19:53 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-11-15 19:53 - 2013-11-15 19:53 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files\MSBuild
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-11-15 19:51 - 2013-11-15 19:51 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-11-15 19:51 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-11-15 19:51 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-11-15 19:50 - 2013-11-15 19:50 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-15 19:43 - 2013-07-05 03:58 - 01134253 _____ C:\WINDOWS\WindowsUpdate (1).log
2013-11-15 18:41 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-11-15 16:23 - 2013-11-15 16:23 - 01012480 _____ (WildTangent) C:\Users\Powerfrau\Downloads\Setup-wildgames!7168a6e52d914221ad08407979b1267b.exe
2013-11-15 16:17 - 2013-05-23 05:43 - 00000000 ____D C:\ProgramData\WildTangent
2013-11-15 15:58 - 2013-11-15 15:54 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\WildTangent
2013-11-15 15:55 - 2013-11-15 15:55 - 00002825 _____ C:\Users\Public\Desktop\WildTangent Games App - acer.pif
2013-11-15 15:55 - 2013-11-15 15:55 - 00000000 ___HD C:\WINDOWS\PIF
2013-11-15 15:06 - 2013-10-02 06:32 - 00000000 ____D C:\Users\Powerfrau\Documents\Eigene Scans
2013-11-15 14:54 - 2013-09-16 21:56 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-11-14 16:31 - 2013-07-05 04:27 - 00000000 ____D C:\ProgramData\Norton
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\Users\Public\Documents\Start8
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\ProgramData\Stardock
2013-11-14 16:30 - 2013-11-14 16:30 - 00000000 ____D C:\Program Files (x86)\Stardock
2013-11-14 14:23 - 2013-10-09 15:00 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-11-14 12:50 - 2013-09-16 20:34 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-14 12:48 - 2013-09-16 20:34 - 82896128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-11-14 12:38 - 2013-11-14 12:38 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Secunia PSI
2013-11-14 12:38 - 2013-11-14 12:38 - 00000000 ____D C:\Program Files (x86)\Secunia
2013-11-14 12:37 - 2013-11-14 12:37 - 03864904 _____ (Secunia) C:\Users\Powerfrau\Downloads\MainOffer.exe
2013-11-14 12:31 - 2013-10-22 08:19 - 00626272 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2013-11-14 12:31 - 2013-05-06 08:22 - 00458336 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kl1.sys
2013-11-14 12:25 - 2013-11-14 12:25 - 00001117 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-14 12:25 - 2013-11-13 17:46 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-14 12:24 - 2013-11-14 12:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Powerfrau\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-14 12:04 - 2013-09-16 21:05 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\clear.fi
2013-11-14 12:02 - 2013-05-23 05:43 - 00000000 ____D C:\Program Files (x86)\WildGames
2013-11-14 11:58 - 2013-11-14 07:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-11-14 11:57 - 2013-11-14 07:26 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-14 11:54 - 2013-11-02 21:28 - 00000000 ____D C:\ProgramData\MAGIX
2013-11-14 11:52 - 2013-11-11 11:58 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\SpeedTestAnalysis
2013-11-14 11:52 - 2013-11-11 11:57 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Scribus
2013-11-14 11:52 - 2013-11-02 21:22 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\MAGIX
2013-11-14 11:52 - 2013-10-02 06:32 - 00000000 ____D C:\Users\Powerfrau\Eigene Scans
2013-11-14 11:39 - 2013-09-28 15:15 - 00000000 ____D C:\ProgramData\HP
2013-11-14 11:36 - 2013-09-28 15:47 - 00000000 ____D C:\Program Files (x86)\HP
2013-11-13 17:47 - 2013-11-13 17:47 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\Malwarebytes
2013-11-13 17:47 - 2013-11-13 17:47 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-13 16:32 - 2013-11-13 16:32 - 00000417 _____ C:\WINDOWS\SynInst.log
2013-11-13 15:32 - 2013-11-12 14:02 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-13 15:31 - 2013-11-12 14:02 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Google
2013-11-13 15:28 - 2013-11-02 21:28 - 00000000 ____D C:\Program Files (x86)\MAGIX
2013-11-13 15:05 - 2013-11-13 15:05 - 00055902 _____ C:\20131113_150502_v10.0.3.2.dmp
2013-11-13 15:05 - 2013-11-13 15:05 - 00002934 _____ C:\Crash.log
2013-11-12 14:05 - 2013-11-12 14:05 - 00000000 ____D C:\Users\Powerfrau\Documents\MAGIX
2013-11-12 14:00 - 2013-11-12 14:00 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\OfferMosquito
2013-11-12 13:40 - 2013-11-12 13:40 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\MAGIX
2013-11-12 13:40 - 2013-11-02 21:28 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Xara
2013-11-07 09:29 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\Documents\CyberLink
2013-11-06 09:37 - 2013-11-04 18:08 - 00000000 ____D C:\Users\Powerfrau\Bewerbungen
2013-11-06 00:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-06 00:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-04 18:15 - 2013-11-04 18:14 - 00000000 ____D C:\Users\Powerfrau\Klassenarbeiten
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\CyberLink
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Software
2013-11-03 19:16 - 2013-11-03 19:16 - 00000000 ____D C:\Users\Powerfrau\AppData\Local\Cyberlink
2013-11-03 19:16 - 2013-07-05 04:32 - 00000000 ____D C:\ProgramData\CyberLink
2013-11-03 09:56 - 2013-11-03 09:56 - 00263776 _____ C:\WINDOWS\msxml4-KB2758694-enu.LOG
2013-11-02 21:27 - 2013-11-02 21:27 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2013-10-26 23:07 - 2013-10-26 23:07 - 00000000 ____D C:\Users\Powerfrau\Documents\was zum lachen
2013-10-26 09:14 - 2013-10-25 16:41 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-10-26 09:14 - 2013-10-25 16:40 - 00000000 ____D C:\ProgramData\Skype
2013-10-25 16:41 - 2013-10-25 16:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-25 16:38 - 2013-10-25 16:35 - 32532128 _____ (Skype Technologies S.A.) C:\Users\Powerfrau\Downloads\SkypeSetupFull.exe
2013-10-24 11:48 - 2013-10-23 10:15 - 00000000 ____D C:\Users\Powerfrau\Documents\Natürliche Empfängnisverhütung
2013-10-24 09:53 - 2013-10-24 09:53 - 00000000 ___RD C:\Users\Powerfrau\Documents\WFW16
2013-10-22 14:24 - 2013-09-30 13:51 - 00000995 _____ C:\Users\Powerfrau\Desktop\Dropbox.lnk
2013-10-22 14:23 - 2013-10-22 14:21 - 34873800 _____ (Dropbox, Inc.) C:\Users\Powerfrau\Downloads\Dropbox 2.4.3.exe
2013-10-22 13:39 - 2013-06-10 11:27 - 00030304 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klim6.sys
2013-10-22 13:39 - 2013-05-05 21:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klmouflt.sys
2013-10-22 13:39 - 2013-05-05 21:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2013-10-22 08:21 - 2013-10-22 08:21 - 00001298 _____ C:\Users\Powerfrau\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus.lnk
2013-10-22 08:20 - 2013-10-22 08:20 - 00001093 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2013-10-22 08:19 - 2013-10-22 08:19 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-10-22 08:19 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2013-10-22 08:09 - 2013-05-23 05:45 - 00000000 ____D C:\ProgramData\McAfee
2013-10-22 08:05 - 2013-05-23 05:45 - 00000000 ____D C:\Program Files\mcafee
2013-10-22 07:28 - 2013-10-22 07:28 - 00000000 ___HD C:\kleaner.tmp
2013-10-21 20:11 - 2013-10-21 19:40 - 00000000 ____D C:\Users\Powerfrau\Documents\Unterrichtsarbeiten
2013-10-20 16:30 - 2013-10-20 16:30 - 00001079 _____ C:\Users\Powerfrau\Desktop\HomepageFIX 2013.lnk
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Meine HomepageFIX2013 Seiten
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Meine HomepageFIX2013 Projekte
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\Documents\Mein HomepageFIX2013 Backup
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\mresreg
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Users\Powerfrau\AppData\Roaming\IN-MEDIAKG
2013-10-20 16:30 - 2013-10-20 16:30 - 00000000 ____D C:\Program Files (x86)\HomepageFIX2013
2013-10-20 16:29 - 2013-10-20 16:29 - 00000000 ____D C:\Program Files (x86)\mresreg
2013-10-20 16:29 - 2013-10-20 16:28 - 16593272 _____ (IN MEDIA KG                                                 ) C:\Users\Powerfrau\Downloads\homepagefix_setup.exe
2013-10-20 10:36 - 2013-10-20 10:36 - 00001492 _____ C:\Users\Powerfrau\Desktop\GS_MeNuk_bs - Verknüpfung.lnk

Files to move or delete:
====================
C:\ProgramData\uninstall162697.exe
C:\ProgramData\uninstall194521.exe
C:\ProgramData\uninstall3427633.exe
C:\ProgramData\uninstall348499.exe
C:\ProgramData\uninstall649749.exe
C:\ProgramData\uninstall904250.exe


Some content of TEMP:
====================
C:\Users\Powerfrau\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2013-11-15 19:55] - [2013-11-15 19:55] - 2328872 ____A (Microsoft Corporation) 63DC38C3E4564B2405D562855643ABA2

C:\Windows\SysWOW64\explorer.exe
[2013-11-15 19:55] - [2013-11-15 19:55] - 2065448 ____A (Microsoft Corporation) 1A0BC9598E4A58FC84570FFF5A108E58

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll
[2013-11-15 19:55] - [2013-11-15 19:55] - 1362944 ____A (Microsoft Corporation) C72456BFFE941714CF05B0AA0BEE5B45

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-15 19:59

==================== End Of Log ============================

--- --- ---

--- --- ---

Und nun ??? Hast du was gefunden ??? Was sagen die Dateien eigentlich aus ??? VG

aharonov · 19.11.2013, 16:47

Nicht viel zu sehen.
Kannst du bitte kurz zusammenfassen, was jetzt aktuell noch für Probleme vorhanden sind?

Powermann · 19.11.2013, 22:07

Derzeit sind mir keine Probleme bekannt, außer das das Internet etwas langsamer laden tut wie sonst. Ich wollte nur auf Nummer sicher gehen. Wenn du sagst es ist alles okay, dann bin ich zufrieden und erleichtert. Muss ich meine Passwörter trotzdem ändern nachdem dieser Mist auf meinem Rechner war ??? Vielen Dank schon mal für alles !!! VG

aharonov · 19.11.2013, 22:49

Dann noch eine abschliessende Kontrolle:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Powermann · 21.11.2013, 10:30

ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internet# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=105054fe44b08a4fae8de9dbfa6b7143
# engine=15967
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-11-21 08:49:07
# local_time=2013-11-21 09:49:07 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode=5893 16776574 100 94 2599071 7857449 0 0
# scanned=298934
# found=2
# cleaned=0
# scan_time=8671
sh=854E71B61723A7124C7A0F8393CE3EB98034CCCD ft=0 fh=0000000000000000 vn="JS/TrojanDownloader.Iframe.NKE trojan" ac=I fn="F:\Dokumente und Einstellungen\Herrmann\Lokale Einstellungen\Temporary Internet Files\Content.IE5\CNDS7XFF\quelleOIza[1].js"
sh=A324D72F00C8E03FD4379DD7D1AFB36B29E683F0 ft=1 fh=0c42d451527ff823 vn="a variant of Win32/Adware.Softomate.AC application" ac=I fn="F:\eigene Dateien Festplatte extern\Browser\deskbar.exe"

Was mache ich jetzt mit den Trojanern die auf der externen Fetsplatte sind ??? Sind noch von einem alten Fall. Hatte da Datensicherung gemacht und diese wahrscheinlich mit auf die externe Festplatte genommen/kopiert.

aharonov · 21.11.2013, 15:10

Hi,

sieht gut aus, diese Funde von ESET sind völlig irrelevant. Die deskbar.exe kannst du einfach löschen.

Cleanup

Zum Schluss werden wir jetzt noch unsere Tools (inklusive der Quarantäne-Ordner) wegräumen, die verseuchten Systemwiederherstellungspunkte löschen und alle Einstellungen wieder herrichten. Auch diese Schritte sind noch wichtig und sollten in der angegebenen Reihenfolge ausgeführt werden.

Bei MBAM würd ich dir unbedingt empfehlen, es zu behalten und wöchentlich einen Quick-Scan durchzuführen. Wenn du es nicht weiter verwenden möchtest, kannst du es jetzt normal über die Systemsteuerung deinstallieren.
Auch den ESET Online Scanner kannst du behalten, um ab und zu (monatlich) für eine Zweitmeinung dein System damit zu scannen. Falls du ESET deinstallieren möchtest, dann kannst du das ebenfalls über die Systemsteuerung tun.
Downloade dir bitte auf jeden Fall DelFix auf deinen Desktop.
- Schliesse alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- DelFix entfernt u.a. alle von uns verwendeten Programme und löscht sich anschliessend selbst.
Wenn jetzt noch etwas übriggeblieben ist, dann kannst du es einfach manuell löschen.

>> OK <<
Wir sind durch, deine Logs sehen für mich im Moment sauber aus.

Ich habe dir nachfolgend ein paar Hinweise und Tipps zusammengestellt, die dazu beitragen sollen, dass du in Zukunft unsere Hilfe nicht mehr brauchen wirst.

Bitte gib mir danach noch eine kurze Rückmeldung, wenn auch von deiner Seite keine Probleme oder Fragen mehr offen sind, damit ich dieses Thema als erledigt betrachten kann.

Epilog: Tipps, Dos & Don'ts

Aktualität von System und Software

Das Betriebsystem Windows muss zwingend immer auf dem neusten Stand sein. Stelle sicher, dass die automatischen Updates aktiviert sind:

Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren

Auch die installierte Software sollte immer in der aktuellsten Version vorliegen.
Speziell gilt das für den Browser, Java, Flash-Player und PDF-Reader, denn bekannte Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim blossen Besuch einer präparierten Website per Drive-by Download Malware zu installieren. Das kann sogar auf normalerweise legitimen Websites geschehen, wenn es einem Angreifer gelungen ist, seinen Code in die Seite einzuschleusen, und ist deshalb relativ unberechenbar.

Mit diesem kleinen Plugin-Check kannst du regelmässig diese Komponenten auf deren Aktualität überprüfen.
Achte auch darauf, dass alte, nicht mehr verwendete Versionen deinstalliert sind.
Optional: Das Programm Secunia Personal Software Inspector kann dich dabei unterstützen, stets die aktuellen Versionen sämtlicher installierter Software zu nutzen.

Sicherheits-Software

Eine Bemerkung vorneweg: Jede Softwarelösung hat ihre Schwächen. Die gesamte Verantwortung für die Sicherheit auf Software zu übertragen und einen Rundum-Schutz zu erwarten, wäre eine gefährliche Illusion. Bei unbedachtem oder bewusst risikoreichem Verhalten wird auch das beste Programm früher oder später seinen Dienst versagen (z.B. ein Virenscanner, der eine verseuchte Datei nicht erkennt).
Trotzdem ist entsprechende Software natürlich wichtig und hilft dir in Kombination mit einem gut gewarteten (up-to-date) System und durchdachtem Verhalten, deinen Rechner sauber zu halten.

Nutze einen Virenscanner mit Hintergrundwächter mit stets aktueller Datenbank. Welches Produkt gewählt wird, spielt keine so entscheidende Rolle. Wenn du ein kommerzielles Programm kaufen möchtest, kann ich dir Emsisoft Anti-Malware empfehlen (die Freeware-Version davon reicht aber nicht, denn die hat keinen Hintergrundwächter). Bevorzugst du ein kostenloses Produkt, dann ist Avast! Free Antivirus eine gute Alternative.
Betreibe aber keinesfalls zwei Wächter parallel, die würden sich gegenseitig behindern.
Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.
Zusätzlich zum Virenscanner kannst du dein System regelmässig mit einem On-Demand Antimalwareprogramm scannen. Empfehlenswert ist die Free-Version von Malwarebytes Anti-Malware. Vor jedem Scan die Datenbank updaten.
Optional: Das Programm Sandboxie führt Anwendungen in einer isolierten Umgebung ("Sandkasten") aus, so dass keine Änderungen am System vorgenommen werden können. Wenn du deinen Browser darin startest, vermindert sich die Chance, dass beim Surfen eingefangene Malware sich dauerhaft im System festsetzen kann.
Optional: Das Addon WOT (web of trust) warnt dich vor einer als schädlich gemeldeten Website, bevor sie geladen wird. Für verschiedene Browser erhältlich.

Es liegt in der Natur der Sache, dass die am weitesten verbreitete Anwendungs-Software auch am häufigsten von Malware-Autoren attackiert wird. Es kann daher bereits einen kleinen Sicherheitsgewinn darstellen, wenn man alternative Software (z.B. einen alternativen PDF Reader) benutzt.
Anstelle des Internet Explorers kann man beispielsweise den Mozilla Firefox einsetzen, für welchen es zwei nützliche Addons zur Empfehlung gibt:

NoScript verhindert standardmässig das Ausführen von aktiven Inhalten (Java, JavaScript, Flash, ..) für sämtliche Websites. Du kannst selber nach dem Prinzip einer Whitelist festlegen, welchen Seiten du vertrauen und Scripts erlauben willst, auch temporär.
Adblock Plus blockt die meisten Werbebanner weg. Solche Banner können nebst ihrer störenden Erscheinung auch als Infektionsherde fungieren.

(Un-)Sicheres Verhalten im Internet

Nebst unbemerkten Drive-by Installationen wird Malware aber auch oft mehr oder weniger aktiv vom Benutzer selbst installiert.

Der Besuch zwielichtiger Websites kann bereits Risiken bergen. Und Downloads aus dubiosen Quellen sind immer russisches Roulette. Auch wenn der Virenscanner im Moment darin keine Bedrohung erkennt, muss das nichts bedeuten.

Illegale Cracks, Keygens und Serials sind ein ausgesprochen einfacher (und ein beliebter) Weg, um Malware zu verbreiten.
Bei Dateien aus Peer-to-Peer- und Filesharingprogrammen oder von Filehostern kannst du dir nie sicher sein, ob auch wirklich drin ist, was drauf steht.

Oft wird auch versucht, den Benutzer mit mehr oder weniger trickreichen Methoden dazu zu bringen, eine für ihn verhängnisvolle Handlung selbst auszuführen (Überbegriff Social Engineering).

Surfe mit Vorsicht und lass dich nicht von irgendwie interessant erscheinenden Elementen zu einem vorschnellen Klick verleiten. Lass dich nicht von Popups täuschen, die aussehen wie System- oder Virenmeldungen.
Sei skeptisch bei unerwarteten E-Mails, insbesondere wenn sie Anhänge enthalten. Auch wenn sie auf den ersten Blick authentisch wirken, persönliche Daten von dir enthalten oder vermeintlich von einem bekannten Absender stammen: Lieber nochmals in Ruhe überdenken oder nachfragen, anstatt einfach mal Links oder ausführbare Anhänge öffnen oder irgendwo deine Daten eingeben.
Auch in sozialen Netzwerken oder über Instant Messaging Systeme können schädliche Links oder Dateien die Runde machen. Erhältst du von einem deiner Freunde eine Nachricht, die merkwürdig ist oder so sensationell interessant oder skandalös tönt, dass man einfach draufklicken muss, dann hat bei ihm/ihr wahrscheinlich Neugier über Verstand gesiegt und du solltest nicht denselben Fehler machen.
Lass die Dateiendungen anzeigen, so dass du dich nicht täuschen lässt, wenn eine ausführbare Datei über ein doppelte Dateiendung kaschiert wird, z.B. Nacktfoto.jpg.exe.

Nervige Adware (Werbung) und unnötige Toolbars werden auch meist durch den Benutzer selbst mitinstalliert.

Lade Software in erster Priorität immer direkt vom Hersteller herunter. Viele Softwareportale (z.B. Softonic) packen noch unnützes Zeug mit in die Installation. Alternativ dazu wähle ein sauberes Portal wie Filepony oder heise.
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen fürs Programm irrelevanten Ergänzungen.

Allgemeine Hinweise

Abschliessend noch ein paar grundsätzliche Bemerkungen:

Dein Benutzerkonto für den alltäglichen Gebrauch sollte nicht über Administratorenrechte verfügen. Nutze ein Konto mit eingeschränkten Rechten (Windows XP) bzw. aktiviere die Benutzerkontensteuerung (UAC) auf der höchsten Stufe (Windows Vista / 7).
Erstelle regelmässig Backups deiner Daten und Dokumente auf externen Datenträgern, bei wichtigen Dateien mindestens zweifach. Nicht nur ein Malwarebefall kann schmerzhaften Datenverlust nach sich ziehen sondern auch ein gewöhnlicher Festplattendefekt.
Die Autorun/Autoplay-Funktion stellt ein Risiko dar, denn sie ermöglicht es, dass beispielsweise beim Einstecken eines entsprechend infizierten USB-Sticks der Befall auf den Rechner überspringt. Überlege dir, ob du diese Funktion nicht besser deaktivieren möchtest.
Wähle deine Passwörter gemäss den gängigen Regeln, um besser gegen Brute-Force- und Wörterbuchattacken gewappnet zu sein. Benutze jedes deiner Passwörter nur einmal und ändere sie regelmässig.
Der Nutzen von Registry-Cleanern zur Performancesteigerung ist umstritten. Auf jeden Fall lässt sich damit grosser Schaden anrichten, wenn man nicht weiss, was man tut. Wir empfehlen deshalb, die Finger von der Registry zu lassen. Um von Zeit zu Zeit die temporären Dateien zu löschen, genügt TFC.

Wenn du möchtest, kannst du das Forum mit einer kleinen Spende unterstützen.
Es bleibt mir nur noch, dir unbeschwertes und sicheres Surfen zu wünschen und dass wir uns hier so bald nicht wiedersehen.

Powermann · 21.11.2013, 18:44

Hi,

also das mit der descbar am Anfang verstehe ich nicht. Ich habe sie in der Auswertung auch nicht gefunden. Und dann weiß ich nicht wie du das meinst mit dem Clean up. Ich verstehe es zwar schon, aber hast du mir dazu unten die Anweisungen gegeben und geschrieben und die ersten Sätze unter der Überschrift Clean up sind somit abgearbeitet ??? Sorry für die vielleicht blöde Frage. Aber das war jetzt nicht ganz ersichtlich für mich. Das andere muss ich noch in Ruhe durchlesen. Aber trotzdem danke schon mal für die Infos. Gebe dir spätestens Sonntag Bescheid ob alles okay ist. Komme früher wahrscheinlich nicht mehr dazu. Muss arbeiten und habe Samstag den ganzen Tag Weiterbildung/Schule. ich studiere noch nebenbei. Nur zur Info. Vielen Dank schon mal für alles und wieviel ist denn üblich als Spende ???

aharonov · 21.11.2013, 18:55

Zitat:

Und dann weiß ich nicht wie du das meinst mit dem Clean up.

Die Schritte 1 bis 4 sind das Cleanup. Arbeite einfach diese ab und dann ist alles erledigt.

Zitat:

wieviel ist denn üblich als Spende ???

Ob und wieviel du spenden willst, ist ganz dir überlassen!

aharonov · 07.01.2014, 15:50

Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Ich bekomme somit keine Benachrichtigung mehr über neue Antworten.
Solltest du das Thema erneut brauchen, schicke mir bitte eine PM und wir machen hier weiter.

Jeder andere bitte diese Anleitung lesen und einen eigenen Thread erstellen.

19.11.2013, 16:47	#7
aharonov /// TB-Ausbilder	Firefox schlug wegen Spy und Adware Alarm Bin nicht sicher ob alles weg ist Nicht viel zu sehen. Kannst du bitte kurz zusammenfassen, was jetzt aktuell noch für Probleme vorhanden sind? __________________ cheers, Leo

Firefox schlug wegen Spy und Adware Alarm Bin nicht sicher ob alles weg ist

Plagegeister aller Art und deren Bekämpfung: Firefox schlug wegen Spy und Adware Alarm Bin nicht sicher ob alles weg ist