Windows 7 Home Premium nach Boot nur noch weißer Screen & Abgesicherter Modus startet sofort neu

gloanaflo · 30.10.2013, 20:35

Hallo zusammen,

erstmal

für die Arbeit die ihr hier leistet!

Nun zu meinem Problem:

Ein Freund von mir bekam heute nach dem Booten seines Laptops einen Screen angezeigt, dass er einen bestimmten Betrag per PaySafeCard an irgendeine Organisation zahlen sollte innerhalb von 48 Stunden. Nach mehrmaligem Neustart des Laptops zeigt dieser nur noch einen weißen Screen und den Mauszeiger an. Beim Drücken von STRG + ALT + ENTF erscheint zwar der Win-Sperrscreen aber die Auswahl eines Menüpunktes führt zu keiner Reaktion (bleibt nur noch Neustart oder Herunterfahren).
Ich hatte jetzt bereits versucht in den Abgesicherten Modus zu booten. Leider vergeblich denn von dort startet das Laptop sofort wieder neu.

Ich habe jetzt bereits den FRST-Scan laufen lassen mit dem unten angehängten Ergebnis.

Ich bedanke mich im Voraus für eure Hilfe
Mit besten Grüßen
Florian

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-10-2013
Ran by SYSTEM on MININT-4MD51EQ on 30-10-2013 21:23:32
Running from F:\
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Recovery

The current controlset is ControlSet002
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7935520 2010-09-17] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Program Files\Realtek\Audio\HDA\SkyTel.exe [1833504 2010-09-17] (Realtek Semiconductor Corp.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-29] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [MGSysCtrl] - C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe [2244608 2009-11-06] (Micro-Star International Co., Ltd.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [35760 2010-06-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [ISUSScheduler] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-08-11] (Macrovision Corporation)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [54576 2009-11-18] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4908592 2013-10-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Nation toolbar\vprot.exe [2403144 2013-10-29] ()
HKU\Breitenfellner\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [147456 2007-01-15] (Nero AG)
HKU\Breitenfellner\...\Run: [ISUSPM Startup] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [249856 2005-08-11] (Macrovision Corporation)
HKU\Breitenfellner\...\Winlogon: [Shell] explorer.exe,C:\Users\Breitenfellner\AppData\Roaming\Other.res [163328 2010-03-24] () <==== ATTENTION 

==================== Services (Whitelisted) =================

S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3538480 2013-10-03] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [301152 2013-09-25] (AVG Technologies CZ, s.r.o.)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [266240 2007-01-15] (Nero AG)
S2 vToolbarUpdater17.0.12; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe [1733448 2002-02-13] (AVG Secure Search)

==================== Drivers (Whitelisted) ====================

S1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [148792 2013-09-25] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [241464 2013-09-02] (AVG Technologies CZ, s.r.o.)
S0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192824 2013-09-02] (AVG Technologies CZ, s.r.o.)
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-09-02] (AVG Technologies CZ, s.r.o.)
S0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-09-02] (AVG Technologies CZ, s.r.o.)
S0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-08-20] (AVG Technologies CZ, s.r.o.)
S0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-08] (AVG Technologies CZ, s.r.o.)
S1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
S1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2002-02-13] (AVG Technologies)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-30 23:39 - 2013-10-30 23:39 - 00126778 _____ C:\OTL.Txt
2013-10-30 23:39 - 2013-10-30 23:39 - 00019874 _____ C:\Extras.Txt
2013-10-30 21:23 - 2013-10-30 21:23 - 00000000 ____D C:\FRST
2013-10-30 09:27 - 2013-10-30 09:27 - 00000000 ____D C:\Windows\Sun
2013-10-30 09:07 - 2013-10-30 11:18 - 00005306 _____ C:\Windows\IE9_main.log
2013-10-30 08:35 - 2012-12-16 17:52 - 00046080 _____ (Adobe Systems) C:\Windows\System32\atmlib.dll
2013-10-30 08:35 - 2012-12-16 15:40 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll
2013-10-30 08:35 - 2012-12-16 15:25 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-30 08:35 - 2012-12-16 15:25 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-30 08:08 - 2013-10-30 08:10 - 00000000 ____D C:\Windows\System32\MRT
2013-10-30 08:03 - 2012-03-01 07:54 - 00022896 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2013-10-30 08:03 - 2012-03-01 07:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
2013-10-30 08:03 - 2012-03-01 07:35 - 00005120 _____ (Microsoft Corporation) C:\Windows\System32\wmi.dll
2013-10-30 08:03 - 2012-03-01 06:45 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-10-30 08:03 - 2012-03-01 06:40 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Windows\SysWOW64\cache
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2013-10-29 11:00 - 2013-10-29 11:00 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-29 10:24 - 2012-11-09 06:34 - 00751104 _____ (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-10-29 10:24 - 2012-11-09 05:49 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 01837568 _____ (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 01541120 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 00902656 _____ (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 00320512 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 00197120 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 01074176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 00218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-29 10:24 - 2011-06-15 10:58 - 00212992 _____ (Microsoft Corporation) C:\Windows\System32\odbctrac.dll
2013-10-29 10:24 - 2011-06-15 10:58 - 00163840 _____ (Microsoft Corporation) C:\Windows\System32\odbccp32.dll
2013-10-29 10:24 - 2011-06-15 10:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\System32\odbccu32.dll
2013-10-29 10:24 - 2011-06-15 10:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\System32\odbccr32.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-10-29 10:24 - 2011-04-27 03:57 - 00102400 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dfsc.sys
2013-10-29 10:23 - 2013-02-12 16:42 - 00044032 _____ (Microsoft Corporation) C:\Windows\System32\tsgqec.dll
2013-10-29 10:23 - 2013-02-12 16:37 - 03138048 _____ (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2013-10-29 10:23 - 2013-02-12 16:31 - 00158208 _____ (Microsoft Corporation) C:\Windows\System32\aaclient.dll
2013-10-29 10:23 - 2013-02-12 16:13 - 02691072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-29 10:23 - 2013-02-12 16:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-29 10:23 - 2013-02-12 14:59 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-29 10:23 - 2012-11-09 06:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\tzres.dll
2013-10-29 10:23 - 2012-11-09 05:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-29 10:23 - 2011-04-09 07:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\System32\poqexec.exe
2013-10-29 10:23 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-10-29 10:22 - 2013-03-01 04:32 - 03150848 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-10-29 10:22 - 2011-11-17 08:12 - 00395776 _____ (Microsoft Corporation) C:\Windows\System32\webio.dll
2013-10-29 10:22 - 2011-11-17 06:39 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-10-29 10:22 - 2011-10-26 06:22 - 01572864 _____ (Microsoft Corporation) C:\Windows\System32\quartz.dll
2013-10-29 10:22 - 2011-10-26 06:22 - 00366592 _____ (Microsoft Corporation) C:\Windows\System32\qdvd.dll
2013-10-29 10:22 - 2011-10-26 05:28 - 01328640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-10-29 10:22 - 2011-10-26 05:28 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-29 10:22 - 2011-07-09 03:44 - 00287744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2013-10-29 10:22 - 2011-05-04 03:51 - 00157696 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2013-10-29 10:22 - 2011-05-04 03:51 - 00126464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2013-10-29 10:22 - 2010-12-23 07:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\System32\sbe.dll
2013-10-29 10:22 - 2010-12-23 07:07 - 00961024 _____ (Microsoft Corporation) C:\Windows\System32\CPFilters.dll
2013-10-29 10:22 - 2010-12-23 07:02 - 00259072 _____ (Microsoft Corporation) C:\Windows\System32\mpg2splt.ax
2013-10-29 10:22 - 2010-12-23 06:28 - 00850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-10-29 10:22 - 2010-12-23 06:28 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-10-29 10:22 - 2010-12-23 06:24 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-10-29 10:21 - 2013-04-12 15:36 - 01653096 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2013-10-29 10:21 - 2013-02-12 15:02 - 00019968 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys
2013-10-29 10:21 - 2012-11-02 06:30 - 02001408 _____ (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2013-10-29 10:21 - 2012-11-02 06:30 - 01880064 _____ (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2013-10-29 10:21 - 2012-11-02 06:27 - 00478208 _____ (Microsoft Corporation) C:\Windows\System32\dpnet.dll
2013-10-29 10:21 - 2012-11-02 05:50 - 01388544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-10-29 10:21 - 2012-11-02 05:50 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-10-29 10:21 - 2012-11-02 05:48 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-10-29 10:21 - 2012-06-09 06:30 - 14165504 _____ (Microsoft Corporation) C:\Windows\System32\shell32.dll
2013-10-29 10:21 - 2012-06-09 05:46 - 12868608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-29 10:21 - 2012-06-02 06:38 - 00152432 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2013-10-29 10:21 - 2012-06-02 06:38 - 00095088 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2013-10-29 10:21 - 2012-06-02 06:37 - 00459216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2013-10-29 10:21 - 2012-06-02 06:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2013-10-29 10:21 - 2012-06-02 05:48 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-29 10:21 - 2012-06-02 05:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-29 10:21 - 2012-06-02 05:42 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-29 10:21 - 2012-04-26 06:34 - 00149504 _____ (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll
2013-10-29 10:21 - 2012-04-26 06:34 - 00076288 _____ (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll
2013-10-29 10:21 - 2012-04-26 06:28 - 00009216 _____ (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe
2013-10-29 10:21 - 2011-11-17 08:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2013-10-29 10:21 - 2011-11-17 08:11 - 00028672 _____ (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
2013-10-29 10:21 - 2011-11-17 08:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\System32\secur32.dll
2013-10-29 10:21 - 2011-11-17 08:08 - 01446912 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2013-10-29 10:21 - 2011-11-17 08:05 - 00031232 _____ (Microsoft Corporation) C:\Windows\System32\lsass.exe
2013-10-29 10:21 - 2011-03-11 07:19 - 01395712 _____ (Microsoft Corporation) C:\Windows\System32\mfc42.dll
2013-10-29 10:21 - 2011-03-11 07:19 - 01359872 _____ (Microsoft Corporation) C:\Windows\System32\mfc42u.dll
2013-10-29 10:21 - 2011-03-11 06:40 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-10-29 10:21 - 2011-03-11 06:40 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-10-29 10:21 - 2011-03-03 07:17 - 00356352 _____ (Microsoft Corporation) C:\Windows\System32\dnsapi.dll
2013-10-29 10:21 - 2011-03-03 07:17 - 00182272 _____ (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll
2013-10-29 10:21 - 2011-03-03 07:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\System32\dnscacheugc.exe
2013-10-29 10:21 - 2011-03-03 06:29 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-10-29 10:21 - 2011-03-03 06:27 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-10-29 10:19 - 2013-01-04 06:41 - 01893224 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-10-29 10:19 - 2013-01-04 06:40 - 00287576 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2013-10-29 10:19 - 2013-01-04 06:37 - 00362496 _____ (Microsoft Corporation) C:\Windows\System32\wow64win.dll
2013-10-29 10:19 - 2013-01-04 06:37 - 00243200 _____ (Microsoft Corporation) C:\Windows\System32\wow64.dll
2013-10-29 10:19 - 2013-01-04 06:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2013-10-29 10:19 - 2013-01-04 06:36 - 00215040 _____ (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2013-10-29 10:19 - 2013-01-04 06:33 - 00016384 _____ (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2013-10-29 10:19 - 2013-01-04 06:30 - 01161216 _____ (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2013-10-29 10:19 - 2013-01-04 06:30 - 00424960 _____ (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00005120 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:51 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-29 10:19 - 2013-01-04 05:51 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-29 10:19 - 2013-01-04 05:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 04:19 - 00338432 _____ (Microsoft Corporation) C:\Windows\System32\conhost.exe
2013-10-29 10:19 - 2013-01-04 03:48 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-29 10:19 - 2013-01-04 03:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-29 10:19 - 2013-01-04 03:48 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-29 10:19 - 2013-01-04 03:48 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-29 10:19 - 2013-01-04 03:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 03:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 03:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 03:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-29 10:19 - 2012-11-20 06:55 - 00307200 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2013-10-29 10:19 - 2012-11-20 06:10 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-10-29 10:19 - 2012-09-06 18:38 - 00295792 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\volsnap.sys
2013-10-29 10:19 - 2012-08-24 19:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2013-10-29 10:19 - 2012-08-24 18:10 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-29 10:19 - 2012-04-28 04:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2013-10-29 10:19 - 2011-08-17 06:32 - 00613888 _____ (Microsoft Corporation) C:\Windows\System32\psisdecd.dll
2013-10-29 10:19 - 2011-08-17 06:27 - 00288256 _____ (Microsoft Corporation) C:\Windows\System32\MSNP.ax
2013-10-29 10:19 - 2011-08-17 06:27 - 00108032 _____ (Microsoft Corporation) C:\Windows\System32\psisrndr.ax
2013-10-29 10:19 - 2011-08-17 06:27 - 00104960 _____ (Microsoft Corporation) C:\Windows\System32\Mpeg2Data.ax
2013-10-29 10:19 - 2011-08-17 06:27 - 00075776 _____ (Microsoft Corporation) C:\Windows\System32\MSDvbNP.ax
2013-10-29 10:19 - 2011-08-17 05:26 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-10-29 10:19 - 2011-08-17 05:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax
2013-10-29 10:19 - 2011-08-17 05:22 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-10-29 10:19 - 2011-08-17 05:22 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax
2013-10-29 10:19 - 2011-08-17 05:22 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax
2013-10-29 10:19 - 2011-04-29 04:13 - 00461312 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2013-10-29 10:19 - 2011-04-29 04:12 - 00399872 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2013-10-29 10:19 - 2011-04-29 04:12 - 00161792 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2013-10-29 10:18 - 2013-03-02 06:49 - 01499648 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-10-29 10:18 - 2013-03-02 06:49 - 01198080 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-10-29 10:18 - 2013-03-02 06:49 - 00134144 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-10-29 10:18 - 2013-03-02 06:44 - 01026560 _____ (Microsoft Corporation) C:\Windows\System32\mstime.dll
2013-10-29 10:18 - 2013-03-02 06:43 - 09377280 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-10-29 10:18 - 2013-03-02 06:43 - 00735744 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-10-29 10:18 - 2013-03-02 06:43 - 00097792 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-10-29 10:18 - 2013-03-02 06:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-10-29 10:18 - 2013-03-02 06:43 - 00064512 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-10-29 10:18 - 2013-03-02 06:43 - 00057856 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-10-29 10:18 - 2013-03-02 06:42 - 12405760 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-10-29 10:18 - 2013-03-02 06:42 - 02463744 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-10-29 10:18 - 2013-03-02 06:42 - 00445952 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-10-29 10:18 - 2013-03-02 06:42 - 00256000 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-10-29 10:18 - 2013-03-02 06:42 - 00247808 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-10-29 10:18 - 2013-03-02 06:06 - 00981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-29 10:18 - 2013-03-02 06:05 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-29 10:18 - 2013-03-02 06:05 - 00132096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-29 10:18 - 2013-03-02 06:02 - 06032384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-29 10:18 - 2013-03-02 06:02 - 00627200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-29 10:18 - 2013-03-02 06:02 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2013-10-29 10:18 - 2013-03-02 06:02 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-29 10:18 - 2013-03-02 06:02 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-29 10:18 - 2013-03-02 06:01 - 11019776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-29 10:18 - 2013-03-02 06:01 - 02077184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-29 10:18 - 2013-03-02 06:01 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-29 10:18 - 2013-03-02 06:01 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-29 10:18 - 2013-03-02 06:01 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-29 10:18 - 2013-03-02 06:01 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-29 10:18 - 2013-03-02 05:38 - 00482816 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-10-29 10:18 - 2013-03-02 05:03 - 00386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-29 10:18 - 2013-03-02 04:56 - 01638912 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-10-29 10:18 - 2013-03-02 04:56 - 00012288 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-10-29 10:18 - 2013-03-02 04:30 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-29 10:18 - 2013-03-02 04:29 - 01638912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-29 10:18 - 2013-03-02 04:29 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-29 10:18 - 2012-09-25 23:39 - 00095744 _____ (Microsoft Corporation) C:\Windows\System32\synceng.dll
2013-10-29 10:18 - 2012-09-25 22:55 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-10-29 10:18 - 2012-08-11 01:53 - 00714752 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2013-10-29 10:18 - 2012-08-11 00:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-10-29 10:18 - 2012-06-16 06:25 - 00850944 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-10-29 10:18 - 2012-06-16 06:25 - 00609792 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-10-29 10:18 - 2012-06-16 05:37 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-29 10:18 - 2012-06-16 05:36 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-29 10:18 - 2012-03-17 08:55 - 00075632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys
2013-10-29 10:18 - 2011-12-28 04:59 - 00499200 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2013-10-29 10:18 - 2011-05-24 12:21 - 00404992 _____ (Microsoft Corporation) C:\Windows\System32\umpnpmgr.dll
2013-10-29 10:18 - 2011-05-24 11:34 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-10-29 10:18 - 2011-05-24 11:34 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-10-29 10:18 - 2011-05-24 11:34 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-10-29 10:18 - 2011-05-24 11:32 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-10-29 10:18 - 2011-02-05 13:41 - 00640896 _____ (Microsoft Corporation) C:\Windows\System32\winload.efi
2013-10-29 10:18 - 2011-02-05 13:41 - 00556928 _____ (Microsoft Corporation) C:\Windows\System32\winresume.efi
2013-10-29 10:18 - 2011-02-05 13:41 - 00020352 _____ (Microsoft Corporation) C:\Windows\System32\kdusb.dll
2013-10-29 10:18 - 2011-02-05 13:41 - 00019328 _____ (Microsoft Corporation) C:\Windows\System32\kd1394.dll
2013-10-29 10:18 - 2011-02-05 13:41 - 00017792 _____ (Microsoft Corporation) C:\Windows\System32\kdcom.dll
2013-10-29 10:18 - 2011-02-05 13:39 - 00603976 _____ (Microsoft Corporation) C:\Windows\System32\winload.exe
2013-10-29 10:18 - 2011-02-05 13:39 - 00518160 _____ (Microsoft Corporation) C:\Windows\System32\winresume.exe
2013-10-29 10:18 - 2010-12-18 07:08 - 01097216 _____ (Microsoft Corporation) C:\Windows\System32\mstsc.exe
2013-10-29 10:18 - 2010-12-18 06:26 - 01034240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-29 10:17 - 2013-03-19 07:19 - 05497688 _____ (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-10-29 10:17 - 2013-03-19 06:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2013-10-29 10:17 - 2013-03-19 06:06 - 03958120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-29 10:17 - 2013-03-19 06:06 - 03902312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-29 10:17 - 2013-03-19 05:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-29 10:17 - 2013-03-19 04:19 - 00112640 _____ (Microsoft Corporation) C:\Windows\System32\smss.exe
2013-10-29 10:17 - 2012-07-04 23:04 - 00073216 _____ (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2013-10-29 10:17 - 2012-07-04 23:01 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\browser.dll
2013-10-29 10:17 - 2012-07-04 23:01 - 00058880 _____ (Microsoft Corporation) C:\Windows\System32\browcli.dll
2013-10-29 10:17 - 2012-07-04 22:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-10-29 10:17 - 2012-07-04 22:23 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-10-29 10:17 - 2012-05-14 06:20 - 00956416 _____ (Microsoft Corporation) C:\Windows\System32\localspl.dll
2013-10-29 10:17 - 2011-12-16 09:42 - 00634368 _____ (Microsoft Corporation) C:\Windows\System32\msvcrt.dll
2013-10-29 10:17 - 2011-12-16 08:59 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-10-29 10:17 - 2011-11-17 08:14 - 01739160 _____ (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2013-10-29 10:17 - 2011-11-17 06:41 - 01292592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-29 10:17 - 2011-10-15 07:25 - 00723456 _____ (Microsoft Corporation) C:\Windows\System32\EncDec.dll
2013-10-29 10:17 - 2011-10-15 06:48 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-10-29 10:17 - 2011-08-27 06:40 - 00861184 _____ (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
2013-10-29 10:17 - 2011-08-27 06:40 - 00331776 _____ (Microsoft Corporation) C:\Windows\System32\oleacc.dll
2013-10-29 10:17 - 2011-08-27 05:43 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-10-29 10:17 - 2011-08-27 05:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-10-29 10:17 - 2011-05-03 06:21 - 00976896 _____ (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2013-10-29 10:17 - 2011-05-03 05:50 - 00740864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-10-29 10:17 - 2011-02-23 06:15 - 00090624 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys
2013-10-29 10:17 - 2011-02-12 07:14 - 00267776 _____ (Microsoft Corporation) C:\Windows\System32\FXSCOVER.exe
2013-10-29 10:17 - 2010-10-16 06:17 - 00720896 _____ (Microsoft Corporation) C:\Windows\System32\odbc32.dll
2013-10-29 10:17 - 2010-10-16 05:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2013-10-29 09:59 - 2012-06-02 06:25 - 01462784 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-10-29 09:59 - 2012-06-02 06:25 - 00182272 _____ (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-10-29 09:59 - 2012-06-02 06:25 - 00140288 _____ (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-10-29 09:59 - 2012-06-02 05:45 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-29 09:59 - 2012-06-02 05:45 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-29 09:59 - 2012-06-02 05:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-29 09:59 - 2011-11-19 16:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\packager.dll
2013-10-29 09:59 - 2011-11-19 15:06 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-10-29 09:56 - 2012-02-15 07:27 - 01031680 _____ (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2013-10-29 09:56 - 2012-02-15 06:44 - 00826368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-10-29 09:56 - 2012-02-15 05:46 - 00023552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys

==================== One Month Modified Files and Folders =======

2013-10-30 23:39 - 2013-10-30 23:39 - 00126778 _____ C:\OTL.Txt
2013-10-30 23:39 - 2013-10-30 23:39 - 00019874 _____ C:\Extras.Txt
2013-10-30 23:33 - 2010-09-17 15:39 - 00000000 ___RD C:\users\Breitenfellner
2013-10-30 21:23 - 2013-10-30 21:23 - 00000000 ____D C:\FRST
2013-10-30 21:19 - 2010-09-17 20:31 - 01856675 _____ C:\Windows\WindowsUpdate.log
2013-10-30 21:19 - 2009-07-14 05:51 - 00057724 _____ C:\Windows\setupact.log
2013-10-30 21:19 - 2009-07-14 05:45 - 00015504 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-30 21:19 - 2009-07-14 05:45 - 00015504 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-30 21:11 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-30 17:15 - 2002-02-13 18:39 - 00000000 ____D C:\ProgramData\MFAData
2013-10-30 15:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2013-10-30 11:22 - 2010-09-20 08:24 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-30 11:18 - 2013-10-30 09:07 - 00005306 _____ C:\Windows\IE9_main.log
2013-10-30 11:11 - 2009-07-14 03:34 - 00000513 _____ C:\Windows\win.ini
2013-10-30 10:27 - 2010-09-17 15:43 - 00112360 _____ C:\Users\Breitenfellner\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-30 10:18 - 2009-07-14 05:45 - 02346264 _____ C:\Windows\System32\FNTCACHE.DAT
2013-10-30 10:17 - 2011-01-22 13:42 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-30 10:10 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-30 10:09 - 2009-07-14 19:18 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-30 09:48 - 2012-12-10 13:02 - 01590506 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-30 09:48 - 2009-07-14 18:58 - 00696902 _____ C:\Windows\System32\perfh007.dat
2013-10-30 09:48 - 2009-07-14 18:58 - 00148166 _____ C:\Windows\System32\perfc007.dat
2013-10-30 09:47 - 2009-07-14 06:13 - 01590506 _____ C:\Windows\System32\PerfStringBackup.INI
2013-10-30 09:27 - 2013-10-30 09:27 - 00000000 ____D C:\Windows\Sun
2013-10-30 09:09 - 2012-03-08 18:11 - 00000000 ____D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2013-10-30 08:16 - 2010-09-20 08:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-10-30 08:10 - 2013-10-30 08:08 - 00000000 ____D C:\Windows\System32\MRT
2013-10-29 15:30 - 2002-02-13 18:39 - 00000000 ____D C:\Users\Breitenfellner\AppData\Local\Avg2014
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Windows\SysWOW64\cache
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2013-10-29 14:23 - 2002-02-13 18:44 - 00000000 ____D C:\Program Files (x86)\AVG Nation toolbar
2013-10-29 11:00 - 2013-10-29 11:00 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-29 09:48 - 2002-02-13 18:44 - 00000000 ____D C:\ProgramData\AVG Nation toolbar

Some content of TEMP:
====================
C:\Users\Breitenfellner\AppData\Local\Temp\oi_{BCD93568-206C-48C2-97F0-C4CB16153587}.exe
C:\Users\Breitenfellner\AppData\Local\Temp\ose00000.exe
C:\Users\Breitenfellner\AppData\Local\Temp\p1OCxzD.exe
C:\Users\Breitenfellner\AppData\Local\Temp\p1OCxzD0.exe
C:\Users\Breitenfellner\AppData\Local\Temp\uninst1.exe


==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

11
Restore point made on: 2002-02-13 17:35:44
Restore point made on: 2002-02-13 18:41:30
Restore point made on: 2002-02-13 18:41:58
Restore point made on: 2012-12-10 12:45:46
Restore point made on: 2012-12-10 12:46:22
Restore point made on: 2012-12-22 12:18:55
Restore point made on: 2013-02-03 09:41:12
Restore point made on: 2013-10-29 10:03:50
Restore point made on: 2013-10-29 10:59:55
Restore point made on: 2013-10-30 07:51:48
Restore point made on: 2013-10-30 11:08:24

==================== Memory info =========================== 

Percentage of memory in use: 16%
Total physical RAM: 3839.3 MB
Available physical RAM: 3217.06 MB
Total Pagefile: 3837.45 MB
Available Pagefile: 3200.32 MB
Total Virtual: 8192 MB
Available Virtual: 8191.87 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.99 GB) (Free:211.06 GB) NTFS
Drive f: () (Removable) (Total:7.44 GB) (Free:7.44 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 12C2E065)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 7 GB) (Disk ID: CDFFF7E3)
Partition 1: (Active) - (Size=7 GB) - (Type=0B)


LastRegBack: 2013-02-03 09:34

==================== End Of Log ============================

cosinus · 30.10.2013, 22:33

Drücke bitte die

+ R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

HKU\Breitenfellner\...\Winlogon: [Shell] explorer.exe,C:\Users\Breitenfellner\AppData\Roaming\Other.res [163328 2010-03-24] () <==== ATTENTION
C:\Users\Breitenfellner\AppData\Local\Temp\oi_{BCD93568-206C-48C2-97F0-C4CB16153587}.exe
C:\Users\Breitenfellner\AppData\Local\Temp\ose00000.exe
C:\Users\Breitenfellner\AppData\Local\Temp\p1OCxzD.exe
C:\Users\Breitenfellner\AppData\Local\Temp\p1OCxzD0.exe
C:\Users\Breitenfellner\AppData\Local\Temp\uninst1.exe
C:\Users\Breitenfellner\AppData\Roaming\Other.res

Speichere diese bitte als Fixlist.txt auf deinem USB Stick.

Starte deinen Rechner erneut in die Reparaturoptionen
Starte nun die FRST.exe erneut und klicke den Entfernen Button.

Das Tool erstellt eine Fixlog.txt auf deinem USB Stick. Poste den Inhalt bitte hier.

gloanaflo · 31.10.2013, 14:53

Ergebnis des Fix:

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-10-2013
Ran by SYSTEM at 2013-10-31 15:52:11 Run:1
Running from F:\
Boot Mode: Recovery
==============================================

Content of fixlist:
*****************
HKU\Breitenfellner\...\Winlogon: [Shell] explorer.exe,C:\Users\Breitenfellner\AppData\Roaming\Other.res [163328 2010-03-24] () <==== ATTENTION
C:\Users\Breitenfellner\AppData\Local\Temp\oi_{BCD93568-206C-48C2-97F0-C4CB16153587}.exe
C:\Users\Breitenfellner\AppData\Local\Temp\ose00000.exe
C:\Users\Breitenfellner\AppData\Local\Temp\p1OCxzD.exe
C:\Users\Breitenfellner\AppData\Local\Temp\p1OCxzD0.exe
C:\Users\Breitenfellner\AppData\Local\Temp\uninst1.exe
C:\Users\Breitenfellner\AppData\Roaming\Other.res
*****************

HKU\Breitenfellner\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value deleted successfully.
C:\Users\Breitenfellner\AppData\Local\Temp\oi_{BCD93568-206C-48C2-97F0-C4CB16153587}.exe => Moved successfully.
C:\Users\Breitenfellner\AppData\Local\Temp\ose00000.exe => Moved successfully.
C:\Users\Breitenfellner\AppData\Local\Temp\p1OCxzD.exe => Moved successfully.
C:\Users\Breitenfellner\AppData\Local\Temp\p1OCxzD0.exe => Moved successfully.
C:\Users\Breitenfellner\AppData\Local\Temp\uninst1.exe => Moved successfully.
C:\Users\Breitenfellner\AppData\Roaming\Other.res => Moved successfully.

==== End of Fixlog ====

cosinus · 01.11.2013, 00:21

Startet Windows wieder normal?

gloanaflo · 01.11.2013, 12:16

Hallo,

Ja funktioniert wieder einwandfrei!
Vielen Dank

Gruß
Flo

cosinus · 01.11.2013, 16:25

Ok, wir sind noch nicht fertig

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

gloanaflo · 04.11.2013, 16:54

Hallo,
hier die Logs:

FRST.txt:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Breitenfellner (administrator) on NB-0001 on 04-11-2013 16:43:34
Running from C:\Users\Breitenfellner\Downloads
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BBSvc.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MSIService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7935520 2010-09-17] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Program Files\Realtek\Audio\HDA\SkyTel.exe [1833504 2010-09-17] (Realtek Semiconductor Corp.)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [147456 2007-01-15] (Nero AG)
HKCU\...\Run: [ISUSPM Startup] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [249856 2005-08-11] (Macrovision Corporation)
MountPoints2: E - E:\LaunchU3.exe -a
MountPoints2: {03fe48cf-42be-11e2-aa61-806e6f6e6963} - E:\LaunchU3.exe -a
MountPoints2: {4ae94828-2185-11e0-983d-406186b299f5} - E:\LaunchU3.exe -a
MountPoints2: {50c5a05b-7934-11e0-8729-406186b299f5} - E:\LaunchU3.exe -a
MountPoints2: {ad8db65c-c291-11df-b8f8-806e6f6e6963} - D:\reatogoMenu.exe
MountPoints2: {ef872e85-4426-11e2-bf22-f02a9860828d} - E:\LaunchU3.exe -a
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-29] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [MGSysCtrl] - C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe [2244608 2009-11-06] (Micro-Star International Co., Ltd.)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [ISUSScheduler] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-08-11] (Macrovision Corporation)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [54576 2009-11-18] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-10] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x837F5CE46EC5CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Breitenfellner\AppData\Roaming\Mozilla\Firefox\Profiles\ugs17uye.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @graphisoft.com/GDL Web Plug-in - C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll (Graphisoft SE)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Breitenfellner\AppData\Roaming\Mozilla\Firefox\Profiles\ugs17uye.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-10-10] (Avira Operations GmbH & Co. KG)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe [234776 2012-09-05] (McAfee, Inc.)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [266240 2007-01-15] (Nero AG)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105856 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [83160 2013-10-10] (Avira Operations GmbH & Co. KG)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-04 16:43 - 2013-11-04 16:43 - 01957098 _____ (Farbar) C:\Users\Breitenfellner\Downloads\FRST64.exe
2013-11-03 18:14 - 2013-11-03 18:14 - 00002170 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-11-03 18:14 - 2013-11-03 18:14 - 00000000 ____D C:\Users\Breitenfellner\AppData\Local\Macromedia
2013-11-03 18:14 - 2013-11-03 18:14 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-11-03 18:14 - 2013-11-03 18:14 - 00000000 ____D C:\ProgramData\McAfee
2013-11-03 18:13 - 2013-11-04 07:05 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-03 18:13 - 2013-11-03 18:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-03 18:13 - 2013-11-03 18:15 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-03 18:13 - 2013-11-03 18:15 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-03 18:13 - 2013-11-03 18:13 - 00000000 ____D C:\Windows\system32\Macromed
2013-11-03 18:13 - 2013-11-03 18:13 - 00000000 ____D C:\Program Files (x86)\McAfee Security Scan
2013-11-03 18:11 - 2013-11-03 18:11 - 01070944 _____ (Solid State Networks) C:\Users\Breitenfellner\Downloads\install_flashplayer11x32_mssa_aaa_aih(1).exe
2013-10-31 16:20 - 2013-10-31 16:20 - 00002070 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-31 16:19 - 2013-10-31 16:19 - 00000000 ____D C:\ProgramData\Avira
2013-10-31 16:19 - 2013-10-31 16:19 - 00000000 ____D C:\Program Files (x86)\Avira
2013-10-31 16:19 - 2013-10-10 19:14 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-31 16:19 - 2013-10-10 19:14 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-31 16:19 - 2013-10-10 19:14 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-31 16:19 - 2013-10-10 19:14 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-31 16:08 - 2013-10-31 16:10 - 00002014 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-10-31 16:02 - 2013-10-31 16:02 - 00001443 _____ C:\Users\Breitenfellner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-31 15:53 - 2013-10-31 15:53 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-31 15:53 - 2013-10-31 15:53 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-31 15:53 - 2013-10-31 15:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-31 15:53 - 2013-10-31 15:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-31 15:53 - 2013-10-31 15:53 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-31 15:53 - 2013-10-31 15:53 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-31 15:53 - 2013-10-31 15:53 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-31 15:53 - 2013-10-31 15:53 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-31 15:53 - 2013-10-31 15:53 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-31 15:53 - 2013-10-31 15:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-31 15:53 - 2013-10-31 15:53 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-31 15:50 - 2013-10-31 15:50 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-31 15:50 - 2013-10-31 15:50 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-31 15:50 - 2013-10-31 15:50 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-31 15:50 - 2013-10-31 15:50 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-31 15:50 - 2013-10-31 15:50 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2013-10-31 15:29 - 2013-11-03 18:11 - 00000000 ____D C:\Users\Breitenfellner\AppData\Local\Mozilla
2013-10-31 15:29 - 2013-10-31 15:31 - 00000000 ____D C:\Users\Breitenfellner\AppData\Roaming\Mozilla
2013-10-31 15:29 - 2013-10-31 15:29 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-31 15:29 - 2013-10-31 15:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-31 15:29 - 2013-10-31 15:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-31 15:29 - 2013-10-31 15:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-31 15:27 - 2013-10-31 15:27 - 00283104 _____ (Mozilla) C:\Users\Breitenfellner\Downloads\Firefox Setup Stub 25.0.exe
2013-10-31 15:26 - 2013-10-31 15:26 - 00000000 ____D C:\Users\Breitenfellner\AppData\Roaming\Avira
2013-10-30 23:39 - 2013-10-30 23:39 - 00126778 _____ C:\OTL.Txt
2013-10-30 23:39 - 2013-10-30 23:39 - 00019874 _____ C:\Extras.Txt
2013-10-30 21:23 - 2013-10-30 21:23 - 00000000 ____D C:\FRST
2013-10-30 09:27 - 2013-10-30 09:27 - 00000000 ____D C:\Windows\Sun
2013-10-30 09:07 - 2013-10-31 15:55 - 00010101 _____ C:\Windows\IE9_main.log
2013-10-30 08:35 - 2012-12-16 17:52 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-30 08:35 - 2012-12-16 15:40 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-30 08:35 - 2012-12-16 15:25 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-30 08:35 - 2012-12-16 15:25 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-30 08:08 - 2013-10-30 08:10 - 00000000 ____D C:\Windows\system32\MRT
2013-10-30 08:03 - 2012-03-01 07:54 - 00022896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-10-30 08:03 - 2012-03-01 07:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-10-30 08:03 - 2012-03-01 07:35 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-10-30 08:03 - 2012-03-01 06:45 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-10-30 08:03 - 2012-03-01 06:40 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Windows\SysWOW64\cache
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2013-10-29 11:00 - 2013-10-29 11:00 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-29 10:24 - 2012-11-09 06:34 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-29 10:24 - 2012-11-09 05:49 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 01837568 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-29 10:24 - 2012-03-03 07:29 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 01074176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 00218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-29 10:24 - 2012-03-03 06:40 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-29 10:24 - 2011-06-15 10:58 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-10-29 10:24 - 2011-06-15 10:58 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-29 10:24 - 2011-06-15 10:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-10-29 10:24 - 2011-06-15 10:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-10-29 10:24 - 2011-06-15 10:04 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-10-29 10:24 - 2011-04-27 03:57 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2013-10-29 10:23 - 2013-02-12 16:42 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-29 10:23 - 2013-02-12 16:37 - 03138048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-29 10:23 - 2013-02-12 16:31 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-29 10:23 - 2013-02-12 16:13 - 02691072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-29 10:23 - 2013-02-12 16:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-29 10:23 - 2013-02-12 14:59 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-29 10:23 - 2012-11-09 06:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-29 10:23 - 2012-11-09 05:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-29 10:23 - 2011-04-09 07:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-10-29 10:23 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-10-29 10:22 - 2013-03-01 04:32 - 03150848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-29 10:22 - 2011-11-17 08:12 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-10-29 10:22 - 2011-11-17 06:39 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-10-29 10:22 - 2011-10-26 06:22 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-10-29 10:22 - 2011-10-26 06:22 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-29 10:22 - 2011-10-26 05:28 - 01328640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-10-29 10:22 - 2011-10-26 05:28 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-29 10:22 - 2011-07-09 03:44 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-10-29 10:22 - 2011-05-04 03:51 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-10-29 10:22 - 2011-05-04 03:51 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-10-29 10:22 - 2010-12-23 07:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-10-29 10:22 - 2010-12-23 07:07 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-10-29 10:22 - 2010-12-23 07:02 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-10-29 10:22 - 2010-12-23 06:28 - 00850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-10-29 10:22 - 2010-12-23 06:28 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-10-29 10:22 - 2010-12-23 06:24 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-10-29 10:21 - 2013-04-12 15:36 - 01653096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-29 10:21 - 2013-02-12 15:02 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-29 10:21 - 2012-11-02 06:30 - 02001408 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-10-29 10:21 - 2012-11-02 06:30 - 01880064 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-10-29 10:21 - 2012-11-02 06:27 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-10-29 10:21 - 2012-11-02 05:50 - 01388544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-10-29 10:21 - 2012-11-02 05:50 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-10-29 10:21 - 2012-11-02 05:48 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-10-29 10:21 - 2012-06-09 06:30 - 14165504 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-29 10:21 - 2012-06-09 05:46 - 12868608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-29 10:21 - 2012-06-02 06:38 - 00152432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-29 10:21 - 2012-06-02 06:38 - 00095088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-10-29 10:21 - 2012-06-02 06:37 - 00459216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-29 10:21 - 2012-06-02 06:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-29 10:21 - 2012-06-02 05:48 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-29 10:21 - 2012-06-02 05:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-29 10:21 - 2012-06-02 05:42 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-29 10:21 - 2012-04-26 06:34 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-10-29 10:21 - 2012-04-26 06:34 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-29 10:21 - 2012-04-26 06:28 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-10-29 10:21 - 2011-11-17 08:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-10-29 10:21 - 2011-11-17 08:11 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-10-29 10:21 - 2011-11-17 08:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-10-29 10:21 - 2011-11-17 08:08 - 01446912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-29 10:21 - 2011-11-17 08:05 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-10-29 10:21 - 2011-03-11 07:19 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-10-29 10:21 - 2011-03-11 07:19 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-10-29 10:21 - 2011-03-11 06:40 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-10-29 10:21 - 2011-03-11 06:40 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-10-29 10:21 - 2011-03-03 07:17 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-10-29 10:21 - 2011-03-03 07:17 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-10-29 10:21 - 2011-03-03 07:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-10-29 10:21 - 2011-03-03 06:29 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-10-29 10:21 - 2011-03-03 06:27 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-10-29 10:19 - 2013-01-04 06:41 - 01893224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-29 10:19 - 2013-01-04 06:40 - 00287576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-29 10:19 - 2013-01-04 06:37 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-10-29 10:19 - 2013-01-04 06:37 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-29 10:19 - 2013-01-04 06:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-10-29 10:19 - 2013-01-04 06:36 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-29 10:19 - 2013-01-04 06:33 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-10-29 10:19 - 2013-01-04 06:30 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-29 10:19 - 2013-01-04 06:30 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 06:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:51 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-29 10:19 - 2013-01-04 05:51 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-29 10:19 - 2013-01-04 05:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 05:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 04:19 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-29 10:19 - 2013-01-04 03:48 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-29 10:19 - 2013-01-04 03:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-29 10:19 - 2013-01-04 03:48 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-29 10:19 - 2013-01-04 03:48 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-29 10:19 - 2013-01-04 03:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 03:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 03:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-29 10:19 - 2013-01-04 03:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-29 10:19 - 2012-11-20 06:55 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-29 10:19 - 2012-11-20 06:10 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-10-29 10:19 - 2012-09-06 18:38 - 00295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-10-29 10:19 - 2012-08-24 19:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-29 10:19 - 2012-08-24 18:10 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-29 10:19 - 2012-04-28 04:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-29 10:19 - 2011-08-17 06:32 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-29 10:19 - 2011-08-17 06:27 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2013-10-29 10:19 - 2011-08-17 06:27 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-29 10:19 - 2011-08-17 06:27 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2013-10-29 10:19 - 2011-08-17 06:27 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2013-10-29 10:19 - 2011-08-17 05:26 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-10-29 10:19 - 2011-08-17 05:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax
2013-10-29 10:19 - 2011-08-17 05:22 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-10-29 10:19 - 2011-08-17 05:22 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax
2013-10-29 10:19 - 2011-08-17 05:22 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax
2013-10-29 10:19 - 2011-04-29 04:13 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-10-29 10:19 - 2011-04-29 04:12 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-10-29 10:19 - 2011-04-29 04:12 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-10-29 10:18 - 2012-09-25 23:39 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-10-29 10:18 - 2012-09-25 22:55 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-10-29 10:18 - 2012-08-11 01:53 - 00714752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-10-29 10:18 - 2012-08-11 00:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-10-29 10:18 - 2012-03-17 08:55 - 00075632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-29 10:18 - 2011-12-28 04:59 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-29 10:18 - 2011-05-24 12:21 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-29 10:18 - 2011-05-24 11:34 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-10-29 10:18 - 2011-05-24 11:34 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-10-29 10:18 - 2011-05-24 11:34 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-10-29 10:18 - 2011-05-24 11:32 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-10-29 10:18 - 2011-02-05 13:41 - 00640896 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-10-29 10:18 - 2011-02-05 13:41 - 00556928 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-10-29 10:18 - 2011-02-05 13:41 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-29 10:18 - 2011-02-05 13:41 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-29 10:18 - 2011-02-05 13:41 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-29 10:18 - 2011-02-05 13:39 - 00603976 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-29 10:18 - 2011-02-05 13:39 - 00518160 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-29 10:18 - 2010-12-18 07:08 - 01097216 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-29 10:18 - 2010-12-18 06:26 - 01034240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-29 10:17 - 2013-03-19 07:19 - 05497688 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-29 10:17 - 2013-03-19 06:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-29 10:17 - 2013-03-19 06:06 - 03958120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-29 10:17 - 2013-03-19 06:06 - 03902312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-29 10:17 - 2013-03-19 05:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-29 10:17 - 2013-03-19 04:19 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-29 10:17 - 2012-07-04 23:04 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-29 10:17 - 2012-07-04 23:01 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-10-29 10:17 - 2012-07-04 23:01 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-10-29 10:17 - 2012-07-04 22:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-10-29 10:17 - 2012-07-04 22:23 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-10-29 10:17 - 2012-05-14 06:20 - 00956416 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-10-29 10:17 - 2011-12-16 09:42 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-29 10:17 - 2011-12-16 08:59 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-10-29 10:17 - 2011-11-17 08:14 - 01739160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-29 10:17 - 2011-11-17 06:41 - 01292592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-29 10:17 - 2011-10-15 07:25 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-10-29 10:17 - 2011-10-15 06:48 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-10-29 10:17 - 2011-08-27 06:40 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-29 10:17 - 2011-08-27 06:40 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-10-29 10:17 - 2011-08-27 05:43 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-10-29 10:17 - 2011-08-27 05:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-10-29 10:17 - 2011-05-03 06:21 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-10-29 10:17 - 2011-05-03 05:50 - 00740864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-10-29 10:17 - 2011-02-23 06:15 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-10-29 10:17 - 2011-02-12 07:14 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-10-29 10:17 - 2010-10-16 06:17 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2013-10-29 10:17 - 2010-10-16 05:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2013-10-29 09:59 - 2012-06-02 06:25 - 01462784 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-29 09:59 - 2012-06-02 06:25 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-29 09:59 - 2012-06-02 06:25 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-29 09:59 - 2012-06-02 05:45 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-29 09:59 - 2012-06-02 05:45 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-29 09:59 - 2012-06-02 05:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-29 09:59 - 2011-11-19 16:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-10-29 09:59 - 2011-11-19 15:06 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-10-29 09:56 - 2012-02-15 07:27 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-10-29 09:56 - 2012-02-15 06:44 - 00826368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-10-29 09:56 - 2012-02-15 05:46 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys

==================== One Month Modified Files and Folders =======

2013-11-04 16:45 - 2010-09-17 20:31 - 02024352 _____ C:\Windows\WindowsUpdate.log
2013-11-04 16:44 - 2009-07-14 18:58 - 00697082 _____ C:\Windows\system32\perfh007.dat
2013-11-04 16:44 - 2009-07-14 18:58 - 00148346 _____ C:\Windows\system32\perfc007.dat
2013-11-04 16:44 - 2009-07-14 06:13 - 01613340 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-04 16:43 - 2013-11-04 16:43 - 01957098 _____ (Farbar) C:\Users\Breitenfellner\Downloads\FRST64.exe
2013-11-04 16:42 - 2009-07-14 05:51 - 00059247 _____ C:\Windows\setupact.log
2013-11-04 16:42 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2013-11-04 16:38 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-04 11:13 - 2009-07-14 05:45 - 00015504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-04 11:13 - 2009-07-14 05:45 - 00015504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-04 07:05 - 2013-11-03 18:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-03 18:15 - 2013-11-03 18:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-03 18:15 - 2013-11-03 18:13 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-03 18:15 - 2013-11-03 18:13 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-03 18:14 - 2013-11-03 18:14 - 00002170 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-11-03 18:14 - 2013-11-03 18:14 - 00000000 ____D C:\Users\Breitenfellner\AppData\Local\Macromedia
2013-11-03 18:14 - 2013-11-03 18:14 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-11-03 18:14 - 2013-11-03 18:14 - 00000000 ____D C:\ProgramData\McAfee
2013-11-03 18:13 - 2013-11-03 18:13 - 00000000 ____D C:\Windows\system32\Macromed
2013-11-03 18:13 - 2013-11-03 18:13 - 00000000 ____D C:\Program Files (x86)\McAfee Security Scan
2013-11-03 18:12 - 2010-09-17 16:18 - 00000000 ____D C:\Users\Breitenfellner\AppData\Local\Adobe
2013-11-03 18:11 - 2013-11-03 18:11 - 01070944 _____ (Solid State Networks) C:\Users\Breitenfellner\Downloads\install_flashplayer11x32_mssa_aaa_aih(1).exe
2013-11-03 18:11 - 2013-10-31 15:29 - 00000000 ____D C:\Users\Breitenfellner\AppData\Local\Mozilla
2013-11-03 09:42 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-31 17:54 - 2010-09-17 15:29 - 00114456 _____ C:\Windows\PFRO.log
2013-10-31 16:20 - 2013-10-31 16:20 - 00002070 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-31 16:19 - 2013-10-31 16:19 - 00000000 ____D C:\ProgramData\Avira
2013-10-31 16:19 - 2013-10-31 16:19 - 00000000 ____D C:\Program Files (x86)\Avira
2013-10-31 16:11 - 2002-02-13 18:39 - 00000000 ____D C:\ProgramData\MFAData
2013-10-31 16:10 - 2013-10-31 16:08 - 00002014 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-10-31 16:08 - 2010-09-17 16:20 - 00000000 ____D C:\ProgramData\Adobe
2013-10-31 16:08 - 2010-09-17 16:20 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-31 16:07 - 2002-02-13 18:42 - 00000000 ____D C:\ProgramData\AVG2014
2013-10-31 16:06 - 2002-02-13 18:42 - 00000000 ___HD C:\$AVG
2013-10-31 16:02 - 2013-10-31 16:02 - 00001443 _____ C:\Users\Breitenfellner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-31 16:02 - 2010-09-17 15:40 - 00001409 _____ C:\Users\Breitenfellner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2013-10-31 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-31 15:55 - 2013-10-30 09:07 - 00010101 _____ C:\Windows\IE9_main.log
2013-10-31 15:53 - 2013-10-31 15:53 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-31 15:53 - 2013-10-31 15:53 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-31 15:53 - 2013-10-31 15:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-31 15:53 - 2013-10-31 15:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-31 15:53 - 2013-10-31 15:53 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-31 15:53 - 2013-10-31 15:53 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-31 15:53 - 2013-10-31 15:53 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-31 15:53 - 2013-10-31 15:53 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-31 15:53 - 2013-10-31 15:53 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-31 15:53 - 2013-10-31 15:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-31 15:53 - 2013-10-31 15:53 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-31 15:53 - 2013-10-31 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-31 15:53 - 2013-10-31 15:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-31 15:50 - 2013-10-31 15:50 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-31 15:50 - 2013-10-31 15:50 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-31 15:50 - 2013-10-31 15:50 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-31 15:50 - 2013-10-31 15:50 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-31 15:50 - 2013-10-31 15:50 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-31 15:50 - 2013-10-31 15:50 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2013-10-31 15:31 - 2013-10-31 15:29 - 00000000 ____D C:\Users\Breitenfellner\AppData\Roaming\Mozilla
2013-10-31 15:29 - 2013-10-31 15:29 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-31 15:29 - 2013-10-31 15:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-31 15:29 - 2013-10-31 15:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-31 15:29 - 2013-10-31 15:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-31 15:27 - 2013-10-31 15:27 - 00283104 _____ (Mozilla) C:\Users\Breitenfellner\Downloads\Firefox Setup Stub 25.0.exe
2013-10-31 15:26 - 2013-10-31 15:26 - 00000000 ____D C:\Users\Breitenfellner\AppData\Roaming\Avira
2013-10-30 23:39 - 2013-10-30 23:39 - 00126778 _____ C:\OTL.Txt
2013-10-30 23:39 - 2013-10-30 23:39 - 00019874 _____ C:\Extras.Txt
2013-10-30 23:33 - 2010-09-17 15:39 - 00000000 ___RD C:\Users\Breitenfellner
2013-10-30 21:23 - 2013-10-30 21:23 - 00000000 ____D C:\FRST
2013-10-30 11:22 - 2010-09-20 08:24 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-30 11:11 - 2009-07-14 03:34 - 00000513 _____ C:\Windows\win.ini
2013-10-30 10:27 - 2010-09-17 15:43 - 00112360 _____ C:\Users\Breitenfellner\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-30 10:26 - 2010-09-17 15:40 - 00000000 ___RD C:\Users\Breitenfellner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-30 10:26 - 2010-09-17 15:40 - 00000000 ___RD C:\Users\Breitenfellner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-30 10:18 - 2009-07-14 05:45 - 02346264 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-30 10:17 - 2011-01-22 13:42 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-30 10:10 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-30 10:09 - 2009-07-14 19:18 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-30 09:48 - 2012-12-10 13:02 - 01590506 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-30 09:27 - 2013-10-30 09:27 - 00000000 ____D C:\Windows\Sun
2013-10-30 09:09 - 2012-03-08 18:11 - 00000000 ____D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2013-10-30 08:16 - 2010-09-20 08:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-10-30 08:10 - 2013-10-30 08:08 - 00000000 ____D C:\Windows\system32\MRT
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Windows\SysWOW64\cache
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2013-10-29 14:23 - 2013-10-29 14:23 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2013-10-29 11:00 - 2013-10-29 11:00 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-10 19:14 - 2013-10-31 16:19 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-10 19:14 - 2013-10-31 16:19 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-10 19:14 - 2013-10-31 16:19 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-10 19:14 - 2013-10-31 16:19 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

Some content of TEMP:
====================
C:\Users\Breitenfellner\AppData\Local\Temp\avgnt.exe
C:\Users\Breitenfellner\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Breitenfellner\AppData\Local\Temp\UNINSTALL.EXE


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-02-03 09:34

==================== End Of Log ============================

--- --- ---

--- --- ---

Addition.txt:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by Breitenfellner at 2013-11-04 16:48:12
Running from C:\Users\Breitenfellner\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

64 Bit HP CIO Components Installer (Version: 7.2.4)
Adobe Anchor Service CS3 (x32 Version: 1.0)
Adobe Asset Services CS3 (x32 Version: 3)
Adobe Bridge CS3 (x32 Version: 2)
Adobe Bridge Start Meeting (x32 Version: 1.0)
Adobe Camera Raw 4.0 (x32 Version: 4.0)
Adobe CMaps (x32 Version: 1.0)
Adobe Color - Photoshop Specific (x32 Version: 1.0)
Adobe Color Common Settings (x32 Version: 1.0)
Adobe Color EU Recommended Settings (x32 Version: 1.0)
Adobe Color JA Extra Settings (x32 Version: 1.0)
Adobe Color NA Extra Settings (x32 Version: 1.0)
Adobe Default Language CS3 (x32 Version: 1.0)
Adobe Device Central CS3 (x32 Version: 1.0)
Adobe ExtendScript Toolkit 2 (x32 Version: 2.0)
Adobe Flash Player 10 ActiveX (x32 Version: 10.1.85.3)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Fonts All (x32 Version: 1.0)
Adobe Help Viewer CS3 (x32 Version: 1)
Adobe Linguistics CS3 (x32 Version: 3.0.0)
Adobe PDF Library Files (x32 Version: 8.0)
Adobe Photoshop CS3 (x32 Version: 10)
Adobe Photoshop CS3 (x32 Version: 10.0)
Adobe Reader 9.5.5 - Deutsch (x32 Version: 9.5.5)
Adobe Setup (x32 Version: 1.0)
Adobe Stock Photos CS3 (x32 Version: 1.5)
Adobe Type Support (x32 Version: 1.0)
Adobe Update Manager CS3 (x32 Version: 5.1.0)
Adobe Version Cue CS3 Client (x32 Version: 3)
Adobe WinSoft Linguistics Plugin (x32 Version: 1.0)
Adobe XMP Panels CS3 (x32 Version: 1.0)
Apple Application Support (x32 Version: 1.4.1)
Apple Software Update (x32 Version: 2.1.1.116)
ArchiCAD 15 R1 AUT (Version: 15.0)
ArchiCAD 16 GER (Version: 16.0)
ATI Catalyst Install Manager (Version: 3.0.732.0)
Avira Free Antivirus (x32 Version: 14.0.0.411)
B110 (x32 Version: 140.0.283.000)
Bing Bar (x32 Version: 7.2.241.0)
BufferChm (x32 Version: 140.0.212.000)
Camera Recorder (x32 Version: 1.0.909.0801)
Catalyst Control Center Core Implementation (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Graphics Full New (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Graphics Light (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center InstallProxy (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Localization All (x32 Version: 2009.0729.2227.38498)
CCC Help Chinese Standard (x32 Version: 2009.0729.2226.38498)
CCC Help English (x32 Version: 2009.0729.2226.38498)
CCC Help French (x32 Version: 2009.0729.2226.38498)
CCC Help German (x32 Version: 2009.0729.2226.38498)
CCC Help Italian (x32 Version: 2009.0729.2226.38498)
CCC Help Japanese (x32 Version: 2009.0729.2226.38498)
CCC Help Portuguese (x32 Version: 2009.0729.2226.38498)
CCC Help Spanish (x32 Version: 2009.0729.2226.38498)
ccc-core-static (x32 Version: 2009.0729.2227.38498)
ccc-utility64 (Version: 2009.0729.2227.38498)
CorelDRAW Graphics Suite X3 (x32 Version: 13.0)
DE (x32 Version: 13.0)
Destinations (x32 Version: 140.0.77.000)
DeviceDiscovery (x32 Version: 140.0.212.000)
FontNav (x32 Version: 5.0)
Galileo Family Quiz - Spezial I (x32)
GPBaseService2 (x32 Version: 140.0.211.000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (x32 Version: 5.002.002.002)
HPAppStudio (x32 Version: 140.0.95.000)
HPPhotoGadget (x32 Version: 140.0.524.000)
HPProductAssistant (x32 Version: 140.0.212.000)
HPSSupply (x32 Version: 140.0.211.000)
Java Auto Updater (x32 Version: 2.0.2.4)
Java(TM) 6 Update 23 (x32 Version: 6.0.230)
MarketResearch (x32 Version: 140.0.212.000)
McAfee Security Scan Plus (x32 Version: 3.0.285.6)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 25.0 (x86 de) (x32 Version: 25.0)
Mozilla Maintenance Service (x32 Version: 25.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
Nero 7 Premium (x32 Version: 7.02.4716)
Network64 (Version: 140.0.215.000)
PDF Settings (x32 Version: 1.0)
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000)
QuickTime (x32 Version: 7.69.80.9)
QuickTransfer (x32 Version: 140.0.98.000)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.11.1127.2009)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5880)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30111)
Scan (x32 Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
SmartWebPrinting (x32 Version: 140.0.186.000)
SolutionCenter (x32 Version: 140.0.214.000)
Status (x32 Version: 140.0.256.000)
System Control Manager (x32 Version: 2.209.1106.005.10)
Toolbox (x32 Version: 140.0.428.000)
TrayApp (x32 Version: 140.0.212.000)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2827325) 32-Bit Edition (x32)
Update Manager (x32 Version: 4.60)
VBA (x32 Version: 6.2)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1)
WebReg (x32 Version: 140.0.212.017)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)

==================== Restore Points  =========================

13-02-2002 16:35:23 Windows Update
13-02-2002 17:41:24 Installed AVG 2014
13-02-2002 17:41:53 Installed AVG 2014
22-12-2012 11:17:09 Geplanter Prüfpunkt
03-02-2013 08:41:01 Geplanter Prüfpunkt
29-10-2013 09:03:41 Windows Update
29-10-2013 09:59:43 Windows Update
30-10-2013 06:51:27 Windows Update
30-10-2013 10:08:02 Windows Update
31-10-2013 14:33:02 Windows Update
31-10-2013 15:03:04 Removed AVG 2014
31-10-2013 15:07:49 Removed AVG 2014

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {BEED45FD-6B61-44AC-94EC-C79DD1B5201F} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {C6790CDA-0178-4B93-8836-6B5EB9811F16} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.)
Task: {D845FBE6-89B1-44B0-B1A8-278B4BC6D472} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-03] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2010-09-17 15:41 - 2010-09-17 15:41 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-10-31 16:19 - 2013-10-10 19:14 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/04/2013 11:18:23 AM) (Source: RasClient) (User: )
Description: CoID={D0FD0943-444E-463D-A388-B8450B647434}: Der Benutzer "NB-0001\Breitenfellner" hat eine Verbindung mit dem Namen "Breitbandverbindung" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 651.

Error: (11/03/2013 09:38:38 AM) (Source: RasClient) (User: )
Description: CoID={3AA29163-157E-4147-AA0A-D364D46714CD}: Der Benutzer "NB-0001\Breitenfellner" hat eine Verbindung mit dem Namen "Breitbandverbindung" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 691.

Error: (11/03/2013 09:33:35 AM) (Source: RasClient) (User: )
Description: CoID={DBDDFFC2-3DB4-4C08-BC41-C26A0507D8DF}: Der Benutzer "NB-0001\Breitenfellner" hat eine Verbindung mit dem Namen "Breitbandverbindung" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 691.

Error: (11/02/2013 07:17:43 PM) (Source: Application Hang) (User: )
Description: Programm chess.exe, Version 6.1.7600.16385 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: d40

Startzeit: 01ced7f7588ba25a

Endzeit: 47

Anwendungspfad: C:\Program Files\Microsoft Games\chess\chess.exe

Berichts-ID: 0a91cfe7-43eb-11e3-90da-406186b299f5

Error: (10/30/2013 05:13:17 PM) (Source: System Restore) (User: )
Description: Die Systemwiederherstellung wurde wegen eines Stromausfalls oder eines Programmfehlers unerwartet beendet. Zusätzliche Informationen: (Windows Update).

Error: (10/30/2013 03:53:40 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Vom Kryptografiedienst konnte das VSS-Sicherungsobjekt "System Writer" nicht initialisiert werden.


Details:
Could not query the status of the EventSystem service.

System Error:
Der Computer wird heruntergefahren.
.

Error: (10/30/2013 11:27:22 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7600.16450, Zeitstempel: 0x4aebab8d
Name des fehlerhaften Moduls: kernel32.dll, Version: 6.1.7600.17206, Zeitstempel: 0x50e669a1
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001c829
ID des fehlerhaften Prozesses: 0x9d0
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (10/30/2013 10:15:46 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: avgdumpx.exe, Version: 14.0.0.4110, Zeitstempel: 0x5213e30c
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x73ba6a64
ID des fehlerhaften Prozesses: 0x818
Startzeit der fehlerhaften Anwendung: 0xavgdumpx.exe0
Pfad der fehlerhaften Anwendung: avgdumpx.exe1
Pfad des fehlerhaften Moduls: avgdumpx.exe2
Berichtskennung: avgdumpx.exe3

Error: (10/30/2013 10:15:37 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: loggingserver.exe, Version: 17.0.0.12, Zeitstempel: 0x51d41c91
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x73ba6a64
ID des fehlerhaften Prozesses: 0xf24
Startzeit der fehlerhaften Anwendung: 0xloggingserver.exe0
Pfad der fehlerhaften Anwendung: loggingserver.exe1
Pfad des fehlerhaften Moduls: loggingserver.exe2
Berichtskennung: loggingserver.exe3

Error: (10/30/2013 10:15:32 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ToolbarUpdater.exe, Version: 17.0.0.12, Zeitstempel: 0x521c91ff
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x73ba6a64
ID des fehlerhaften Prozesses: 0xbc
Startzeit der fehlerhaften Anwendung: 0xToolbarUpdater.exe0
Pfad der fehlerhaften Anwendung: ToolbarUpdater.exe1
Pfad des fehlerhaften Moduls: ToolbarUpdater.exe2
Berichtskennung: ToolbarUpdater.exe3


System errors:
=============
Error: (11/04/2013 04:40:51 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/04/2013 04:40:51 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen: 
%%5

Error: (11/04/2013 04:40:50 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen: 
%%5

Error: (11/04/2013 04:38:45 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/04/2013 04:38:45 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (11/04/2013 11:07:36 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (11/04/2013 11:07:36 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Media Player-Netzwerkfreigabedienst erreicht.

Error: (11/04/2013 11:05:34 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/04/2013 11:05:34 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (11/04/2013 06:57:24 AM) (Source: atikmdag) (User: )
Description: Display is not active


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 51%
Total physical RAM: 3839.3 MB
Available physical RAM: 1843.84 MB
Total Pagefile: 7676.75 MB
Available Pagefile: 5374.16 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.99 GB) (Free:209.96 GB) NTFS
Drive e: () (Removable) (Total:14.92 GB) (Free:11.6 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 12C2E065)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 15 GB) (Disk ID: 3E992300)
Partition 1: (Active) - (Size=15 GB) - (Type=07 NTFS)

==================== End Of Log ============================

cosinus · 04.11.2013, 22:50

Wozu hast du Adobe CS3? Ist das ein gewerblich genutzer Rechner?

gloanaflo · 05.11.2013, 16:38

Hallo,

Kann ich dir leider nicht sagen, ich hab den Laptop nur zum reparieren bekommen.
Ich schätze, dass das Photoshop für irgendwas mit Baupläne zeichnen und 3D-Modelle anschauen benutzt wird. Ich denke der Bekannte hat es von der Schule erhalten, da sich ja noch andere Zeichen- und CAD-Programme auf dem Laptop befinden.

cosinus · 05.11.2013, 22:47

Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

gloanaflo · 06.11.2013, 19:13

Hallo,

Hier der Log:

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.07.0.1007
www.malwarebytes.org

Database version: v2013.11.06.08

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Breitenfellner :: NB-0001 [administrator]

06.11.2013 18:53:07
mbar-log-2013-11-06 (18-53-07).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 230914
Time elapsed: 17 minute(s), 2 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

cosinus · 06.11.2013, 21:33

Adware/Junkware/Toolbars entfernen

1. Schritt: adwCleaner

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

gloanaflo · 06.11.2013, 22:37

Hallo,

Hier die einzelnen Ergebnisse:

adwcleaner:

Code:

ATTFilter

# AdwCleaner v3.011 - Bericht erstellt am 06/11/2013 um 22:14:46
# Updated 03/11/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Breitenfellner - NB-0001
# Gestartet von : C:\Users\Breitenfellner\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Program Files (x86)\Common Files\AVG Secure Search
Datei Gelöscht : C:\Users\BREITE~1\AppData\Local\Temp\Uninstall.exe

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16514


-\\ Mozilla Firefox v25.0 (de)

[ Datei : C:\Users\Breitenfellner\AppData\Roaming\Mozilla\Firefox\Profiles\ugs17uye.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1926 octets] - [06/11/2013 22:12:43]
AdwCleaner[S0].txt - [1841 octets] - [06/11/2013 22:14:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1901 octets] ##########

jrt:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Breitenfellner on 06.11.2013 at 22:19:24,66
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.11.2013 at 22:27:41,27
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

gloanaflo · 06.11.2013, 22:41

Teil 2:

FRST ist zu lang, darum als angehängte .txt

Addition:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by Breitenfellner at 2013-11-06 22:32:19
Running from C:\Users\Breitenfellner\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

64 Bit HP CIO Components Installer (Version: 7.2.4)
Adobe Anchor Service CS3 (x32 Version: 1.0)
Adobe Asset Services CS3 (x32 Version: 3)
Adobe Bridge CS3 (x32 Version: 2)
Adobe Bridge Start Meeting (x32 Version: 1.0)
Adobe Camera Raw 4.0 (x32 Version: 4.0)
Adobe CMaps (x32 Version: 1.0)
Adobe Color - Photoshop Specific (x32 Version: 1.0)
Adobe Color Common Settings (x32 Version: 1.0)
Adobe Color EU Recommended Settings (x32 Version: 1.0)
Adobe Color JA Extra Settings (x32 Version: 1.0)
Adobe Color NA Extra Settings (x32 Version: 1.0)
Adobe Default Language CS3 (x32 Version: 1.0)
Adobe Device Central CS3 (x32 Version: 1.0)
Adobe ExtendScript Toolkit 2 (x32 Version: 2.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Fonts All (x32 Version: 1.0)
Adobe Help Viewer CS3 (x32 Version: 1)
Adobe Linguistics CS3 (x32 Version: 3.0.0)
Adobe PDF Library Files (x32 Version: 8.0)
Adobe Photoshop CS3 (x32 Version: 10)
Adobe Photoshop CS3 (x32 Version: 10.0)
Adobe Reader 9.5.5 - Deutsch (x32 Version: 9.5.5)
Adobe Setup (x32 Version: 1.0)
Adobe Stock Photos CS3 (x32 Version: 1.5)
Adobe Type Support (x32 Version: 1.0)
Adobe Update Manager CS3 (x32 Version: 5.1.0)
Adobe Version Cue CS3 Client (x32 Version: 3)
Adobe WinSoft Linguistics Plugin (x32 Version: 1.0)
Adobe XMP Panels CS3 (x32 Version: 1.0)
Apple Application Support (x32 Version: 1.4.1)
Apple Software Update (x32 Version: 2.1.1.116)
ArchiCAD 15 R1 AUT (Version: 15.0)
ArchiCAD 16 GER (Version: 16.0)
ATI Catalyst Install Manager (Version: 3.0.732.0)
Avira Free Antivirus (x32 Version: 14.0.0.411)
B110 (x32 Version: 140.0.283.000)
Bing Bar (x32 Version: 7.2.241.0)
BufferChm (x32 Version: 140.0.212.000)
Camera Recorder (x32 Version: 1.0.909.0801)
Catalyst Control Center Core Implementation (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Graphics Full New (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Graphics Light (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center InstallProxy (x32 Version: 2009.0729.2227.38498)
Catalyst Control Center Localization All (x32 Version: 2009.0729.2227.38498)
CCC Help Chinese Standard (x32 Version: 2009.0729.2226.38498)
CCC Help English (x32 Version: 2009.0729.2226.38498)
CCC Help French (x32 Version: 2009.0729.2226.38498)
CCC Help German (x32 Version: 2009.0729.2226.38498)
CCC Help Italian (x32 Version: 2009.0729.2226.38498)
CCC Help Japanese (x32 Version: 2009.0729.2226.38498)
CCC Help Portuguese (x32 Version: 2009.0729.2226.38498)
CCC Help Spanish (x32 Version: 2009.0729.2226.38498)
ccc-core-static (x32 Version: 2009.0729.2227.38498)
ccc-utility64 (Version: 2009.0729.2227.38498)
CorelDRAW Graphics Suite X3 (x32 Version: 13.0)
DE (x32 Version: 13.0)
Destinations (x32 Version: 140.0.77.000)
DeviceDiscovery (x32 Version: 140.0.212.000)
FontNav (x32 Version: 5.0)
Galileo Family Quiz - Spezial I (x32)
GPBaseService2 (x32 Version: 140.0.211.000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (x32 Version: 5.002.002.002)
HPAppStudio (x32 Version: 140.0.95.000)
HPPhotoGadget (x32 Version: 140.0.524.000)
HPProductAssistant (x32 Version: 140.0.212.000)
HPSSupply (x32 Version: 140.0.211.000)
Java Auto Updater (x32 Version: 2.0.2.4)
Java(TM) 6 Update 23 (x32 Version: 6.0.230)
MarketResearch (x32 Version: 140.0.212.000)
McAfee Security Scan Plus (x32 Version: 3.0.285.6)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 25.0 (x86 de) (x32 Version: 25.0)
Mozilla Maintenance Service (x32 Version: 25.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
Nero 7 Premium (x32 Version: 7.02.4716)
Network64 (Version: 140.0.215.000)
PDF Settings (x32 Version: 1.0)
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.142.000)
QuickTime (x32 Version: 7.69.80.9)
QuickTransfer (x32 Version: 140.0.98.000)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.11.1127.2009)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5880)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30111)
Scan (x32 Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
SmartWebPrinting (x32 Version: 140.0.186.000)
SolutionCenter (x32 Version: 140.0.214.000)
Status (x32 Version: 140.0.256.000)
System Control Manager (x32 Version: 2.209.1106.005.10)
Toolbox (x32 Version: 140.0.428.000)
TrayApp (x32 Version: 140.0.212.000)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2827325) 32-Bit Edition (x32)
Update Manager (x32 Version: 4.60)
VBA (x32 Version: 6.2)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1)
WebReg (x32 Version: 140.0.212.017)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)

==================== Restore Points  =========================

06-11-2013 20:33:56 Windows 7 Service Pack 1

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {BEED45FD-6B61-44AC-94EC-C79DD1B5201F} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {C6790CDA-0178-4B93-8836-6B5EB9811F16} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.)
Task: {D845FBE6-89B1-44B0-B1A8-278B4BC6D472} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-04] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2010-09-17 15:41 - 2010-09-17 15:41 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-10-31 16:19 - 2013-10-10 19:14 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 33%
Total physical RAM: 3839.3 MB
Available physical RAM: 2570.61 MB
Total Pagefile: 7676.79 MB
Available Pagefile: 6014 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.99 GB) (Free:217.86 GB) NTFS
Drive e: (U3 System) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS
Drive f: () (Removable) (Total:3.74 GB) (Free:3.64 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 12C2E065)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 6D2A7D90)
Partition 1: (Not Active) - (Size=4 GB) - (Type=07 NTFS)

==================== End Of Log ============================

cosinus · 06.11.2013, 22:49

Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM)

Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

01.11.2013, 00:21	#4
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows 7 Home Premium nach Boot nur noch weißer Screen & Abgesicherter Modus startet sofort neu Startet Windows wieder normal? __________________ Logfiles bitte immer in CODE-Tags posten

04.11.2013, 22:50	#8
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows 7 Home Premium nach Boot nur noch weißer Screen & Abgesicherter Modus startet sofort neu Wozu hast du Adobe CS3? Ist das ein gewerblich genutzer Rechner? __________________ Logfiles bitte immer in CODE-Tags posten

Windows 7 Home Premium nach Boot nur noch weißer Screen & Abgesicherter Modus startet sofort neu

Plagegeister aller Art und deren Bekämpfung: Windows 7 Home Premium nach Boot nur noch weißer Screen & Abgesicherter Modus startet sofort neu