Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 21.05.2014, 22:28   #1
RomKa.
 
Trojaner: TR/Drop.Rotbrow.K.1'  - hoher Datentraffic - Standard

Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic



Guten Tag!

Ich würde mich sehr freuen wenn mir hier jemand helfen kann. Ich habe folgendes Problem:

Auf meinem PC (Windows 8) hat Avira einen Trojaner TR/Drop.Rotbrow.K.1' gefunden und unter Quarantäne gesetzt.
Zuvor war mir ein überdurchschnittlich hoher Datenvebrauch bei meinem Internetanbieter aufgefallen. So hoch, dass ich mein Limit überschritten habe was ich zuvor nie annähernd erreichte. Ich denke es könnte mit dem Trojaner zu tun haben. Auch jetzt kommt mir der Upload in der "Echtzeitstatistik" noch zu hoch vor.

Hier die Logfiles:

defogger:

Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 22:09 on 21/05/2014 (pc)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         

FRST:

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-05-2014
Ran by pc (administrator) on UNSER-PC on 21-05-2014 22:13:20
Running from C:\Users\pc\Desktop
Platform: Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Program Files\Smart Menu\WinStartMenuLauncher.exe
() C:\Program Files (x86)\3DataManager\WTGService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Program Files\Smart Menu\Smart Menu.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
() C:\Program Files (x86)\3DataManager\3DataManager_Launcher.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Engelmann Media) C:\Program Files (x86)\Engelmann Media\Win8Starter\Win8Starter.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe
(WebToGo Mobile Internet GmbH) C:\Program Files (x86)\3DataManager\3DataManager.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
() C:\Users\pc\Desktop\Defogger.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-21] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [PopularScreensavers_7i Browser Plugin Loader 64] => C:\PROGRA~2\POPULA~2\bar\1.bin\7ibrmon64.exe
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-05-13] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1178855520-1670574489-2810800821-1001\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\pc\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKU\S-1-5-21-1178855520-1670574489-2810800821-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKU\S-1-5-21-1178855520-1670574489-2810800821-1001\...\MountPoints2: {81f282b1-84c1-11e3-814c-4c72b99cba45} - "F:\.\Autorun.exe" AUTORUN=1
HKU\S-1-5-21-1178855520-1670574489-2810800821-1001\...\MountPoints2: {9c5cd2db-3fa6-11e2-be6d-806e6f6e6963} - "F:\.\Autorun.exe" AUTORUN=1
HKU\S-1-5-21-1178855520-1670574489-2810800821-1001\...\MountPoints2: {9c5cd51e-3fa6-11e2-be6d-4c72b99cba45} - "F:\.\Autorun.exe" AUTORUN=1
HKU\S-1-5-21-1178855520-1670574489-2810800821-1001\...\MountPoints2: {c6bda06f-6d28-11e2-beb4-4c72b99cba45} - "G:\Startme.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk
ShortcutTarget: Launcher.lnk -> C:\Program Files (x86)\3DataManager\3DataManager_Launcher.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ShowDesktop.scf ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Win8Starter.lnk
ShortcutTarget: Win8Starter.lnk -> C:\Program Files (x86)\Engelmann Media\Win8Starter\Win8Starter.exe (Engelmann Media)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQCON13/12
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=204E0286EB47F1FE&affID=121565&tt=240913_246&tsp=5019
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQCON13/12
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/CQCON13/12
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQCON13/12
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/CQCON13/12
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPDTDFJS
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CPDTDF
SearchScopes: HKLM - {90E06257-D54F-4973-88F6-45AACC59DED2} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://at.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPDTDF
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5221-29880-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPDTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPDTDFJS
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = 
SearchScopes: HKCU - {90E06257-D54F-4973-88F6-45AACC59DED2} URL = 
SearchScopes: HKCU - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = 
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Tcpip\..\Interfaces\{D6AE6DC2-53BF-4A17-90F8-08802AFE6113}: [NameServer]213.94.78.16 213.94.78.17
Tcpip\..\Interfaces\{E97B22F1-2A57-4489-A4FF-CA5EF99E1415}: [NameServer]213.94.78.17 213.94.78.16

FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @wolfram.com/Mathematica - C:\Program Files (x86)\Common Files\Wolfram Research\Browser\9.0.1.4092550\npmathplugin.dll (Wolfram Research, Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\pc\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Users\pc\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-05-27] (Adobe Systems)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-21] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-21] (Avira Operations GmbH & Co. KG)
R2 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)
R2 WinStartMenuLauncher; C:\Program Files\Smart Menu\WinStartMenuLauncher.exe [249432 2014-02-18] ()
R2 WTGService; C:\Program Files (x86)\3DataManager\WTGService.exe [327680 2010-12-23] ()

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-28] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 zte_cdc_acm; C:\Windows\system32\DRIVERS\zte_cdc_acm.sys [78336 2010-12-20] (ZTE)
R3 zte_cdc_ecm; C:\Windows\system32\DRIVERS\zte_cdc_ecm.sys [52224 2010-12-20] (ZTE)
S3 zte_cpo; C:\Windows\system32\DRIVERS\zte_cpo.sys [14336 2010-12-20] (ZTE)
R3 zte_ecm_enum; C:\Windows\System32\drivers\zte_ecm_enum.sys [53248 2010-12-20] (ZTE)
R3 zte_ecm_enum_filter; C:\Windows\System32\drivers\zte_ecm_enum_filter.sys [53248 2010-12-20] (ZTE)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-21 22:13 - 2014-05-21 22:13 - 00014857 _____ () C:\Users\pc\Desktop\FRST.txt
2014-05-21 22:13 - 2014-05-21 22:13 - 00000000 ____D () C:\FRST
2014-05-21 22:11 - 2014-05-21 22:12 - 02067456 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2014-05-21 22:09 - 2014-05-21 22:09 - 00000466 _____ () C:\Users\pc\Desktop\defogger_disable.log
2014-05-21 22:09 - 2014-05-21 22:09 - 00000000 _____ () C:\Users\pc\defogger_reenable
2014-05-21 22:08 - 2014-05-21 22:08 - 00050477 _____ () C:\Users\pc\Desktop\Defogger.exe
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5282484.txt
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5282437.txt
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5279390.txt
2014-05-21 21:37 - 2014-05-21 21:37 - 00000117 _____ () C:\windows\system32\netcfg-4336937.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4268109.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4268046.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4265015.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4245109.txt
2014-05-21 21:32 - 2014-05-21 21:32 - 00000117 _____ () C:\windows\system32\netcfg-4079328.txt
2014-05-18 23:39 - 2014-05-18 23:39 - 00000117 _____ () C:\windows\system32\netcfg-16858531.txt
2014-05-18 23:37 - 2014-05-18 23:37 - 00000117 _____ () C:\windows\system32\netcfg-16758921.txt
2014-05-18 23:37 - 2014-05-18 23:37 - 00000117 _____ () C:\windows\system32\netcfg-16722421.txt
2014-05-18 23:36 - 2014-05-18 23:36 - 00000117 _____ () C:\windows\system32\netcfg-16681562.txt
2014-05-18 22:29 - 2014-05-18 22:29 - 00000117 _____ () C:\windows\system32\netcfg-12654984.txt
2014-05-18 22:25 - 2014-05-18 22:25 - 00000117 _____ () C:\windows\system32\netcfg-12422515.txt
2014-05-18 20:18 - 2014-05-18 20:18 - 00000117 _____ () C:\windows\system32\netcfg-4795562.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4648281.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4648234.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4645171.txt
2014-05-18 20:14 - 2014-05-18 20:14 - 00000117 _____ () C:\windows\system32\netcfg-4589640.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3890546.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3890500.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3887437.txt
2014-05-18 19:53 - 2014-05-18 19:53 - 00000117 _____ () C:\windows\system32\netcfg-3296156.txt
2014-05-18 19:00 - 2014-05-18 19:00 - 00000117 _____ () C:\windows\system32\netcfg-108656.txt
2014-05-17 23:31 - 2014-05-17 23:31 - 00000117 _____ () C:\windows\system32\netcfg-23217140.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9798109.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9798062.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9795078.txt
2014-05-17 16:57 - 2014-05-17 16:57 - 00000117 _____ () C:\windows\system32\netcfg-3821921.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1574718.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1574671.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1571640.txt
2014-05-17 16:18 - 2014-05-17 16:18 - 00000117 _____ () C:\windows\system32\netcfg-1529187.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-984593.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-984546.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-981875.txt
2014-05-17 13:57 - 2014-05-17 13:57 - 00000117 _____ () C:\windows\system32\netcfg-11853578.txt
2014-05-17 13:05 - 2014-05-17 13:05 - 00000000 ____D () C:\Users\pc\Documents\PC Speed Maximizer
2014-05-17 13:02 - 2014-05-17 13:02 - 01280956 _____ () C:\Users\pc\Downloads\happy_install (1).exe
2014-05-17 13:00 - 2014-05-17 13:00 - 01280956 _____ () C:\Users\pc\Downloads\happy_install.exe
2014-05-17 13:00 - 2014-05-17 13:00 - 00686664 _____ ( ) C:\Users\pc\Downloads\COMPUTER_BILD-Download-Manager_fuer_happy_install.exe
2014-05-17 13:00 - 2014-05-17 13:00 - 00000000 ____D () C:\ProgramData\Real
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8350687.txt
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8350640.txt
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8347656.txt
2014-05-17 11:41 - 2014-05-17 11:41 - 00000117 _____ () C:\windows\system32\netcfg-3699468.txt
2014-05-17 10:42 - 2014-05-17 10:42 - 00000117 _____ () C:\windows\system32\netcfg-128171.txt
2014-05-17 10:42 - 2014-05-17 10:42 - 00000117 _____ () C:\windows\system32\netcfg-128125.txt
2014-05-16 18:41 - 2014-05-16 18:41 - 00000117 _____ () C:\windows\system32\netcfg-12939687.txt
2014-05-16 17:53 - 2014-05-16 18:04 - 00000000 ____D () C:\Users\pc\AppData\Roaming\frogatto
2014-05-16 17:31 - 2014-05-16 17:52 - 238280554 _____ ( ) C:\Users\pc\Downloads\frogatto-setup-i386-1.3.exe
2014-05-16 17:23 - 2014-05-16 17:23 - 00443280 _____ () C:\Users\pc\Downloads\PopularScreensavers.exe
2014-05-16 17:23 - 2012-12-18 19:22 - 00039464 _____ (popularscreensavers.com) C:\windows\SysWOW64\p5PSSavr.scr
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7997171.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7997125.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7994078.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000000 ____D () C:\windows\System32\Tasks\Games
2014-05-16 16:49 - 2014-05-16 16:49 - 00000117 _____ () C:\windows\system32\netcfg-6211562.txt
2014-05-16 16:25 - 2014-05-16 16:25 - 00000117 _____ () C:\windows\system32\netcfg-4769218.txt
2014-05-16 12:13 - 2014-05-16 12:13 - 00000117 _____ () C:\windows\system32\netcfg-145462125.txt
2014-05-16 12:06 - 2014-05-16 12:06 - 00000117 _____ () C:\windows\system32\netcfg-145060375.txt
2014-05-15 22:48 - 2014-05-15 22:48 - 00000117 _____ () C:\windows\system32\netcfg-97160812.txt
2014-05-15 20:27 - 2014-05-15 20:27 - 00000117 _____ () C:\windows\system32\netcfg-88736687.txt
2014-05-15 20:24 - 2014-05-15 20:24 - 00000117 _____ () C:\windows\system32\netcfg-88574140.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81132218.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81132187.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81129125.txt
2014-05-15 08:59 - 2014-05-15 08:59 - 00000117 _____ () C:\windows\system32\netcfg-47438640.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41862046.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41862015.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41859031.txt
2014-05-14 07:52 - 2014-05-14 07:52 - 00000117 _____ () C:\windows\system32\netcfg-993171.txt
2014-05-14 07:50 - 2014-05-14 07:50 - 00000117 _____ () C:\windows\system32\netcfg-877093.txt
2014-05-14 07:36 - 2014-05-14 07:36 - 00000117 _____ () C:\windows\system32\netcfg-30562.txt
2014-05-13 20:32 - 2014-05-13 20:32 - 00000117 _____ () C:\windows\system32\netcfg-1341343.txt
2014-05-13 09:27 - 2014-05-13 09:27 - 00000117 _____ () C:\windows\system32\netcfg-2614656.txt
2014-05-13 08:51 - 2014-05-13 08:51 - 00000117 _____ () C:\windows\system32\netcfg-488375.txt
2014-05-12 22:00 - 2014-05-12 22:00 - 00000117 _____ () C:\windows\system32\netcfg-10696125.txt
2014-05-12 21:06 - 2014-05-12 21:06 - 00000117 _____ () C:\windows\system32\netcfg-7407687.txt
2014-05-12 20:54 - 2014-05-12 20:54 - 00000117 _____ () C:\windows\system32\netcfg-6698703.txt
2014-05-12 19:37 - 2014-05-12 19:37 - 00000117 _____ () C:\windows\system32\netcfg-2071671.txt
2014-05-12 08:51 - 2014-05-12 08:51 - 00000117 _____ () C:\windows\system32\netcfg-172394671.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171068234.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171068187.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171065171.txt
2014-05-11 23:36 - 2014-05-11 23:36 - 00000117 _____ () C:\windows\system32\netcfg-139134984.txt
2014-05-11 22:08 - 2014-05-11 22:08 - 00000117 _____ () C:\windows\system32\netcfg-133843265.txt
2014-05-11 20:00 - 2014-05-11 20:00 - 00000117 _____ () C:\windows\system32\netcfg-126150031.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121939875.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121939828.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121936812.txt
2014-05-10 23:18 - 2014-05-10 23:18 - 00000117 _____ () C:\windows\system32\netcfg-51647718.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48739671.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48739640.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48736562.txt
2014-05-10 09:34 - 2014-05-10 09:34 - 00000117 _____ () C:\windows\system32\netcfg-2213687.txt
2014-05-10 09:01 - 2014-05-10 09:01 - 00000117 _____ () C:\windows\system32\netcfg-234109.txt
2014-05-09 21:49 - 2014-05-09 21:49 - 00000117 _____ () C:\windows\system32\netcfg-3798406.txt
2014-05-09 21:03 - 2014-05-09 21:03 - 00000117 _____ () C:\windows\system32\netcfg-1009000.txt
2014-05-09 21:01 - 2014-05-09 21:01 - 00000117 _____ () C:\windows\system32\netcfg-902328.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-153234.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-153203.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-150375.txt
2014-05-09 09:29 - 2014-05-09 09:29 - 00000117 _____ () C:\windows\system32\netcfg-1040968.txt
2014-05-09 09:13 - 2014-05-09 09:13 - 00000117 _____ () C:\windows\system32\netcfg-98062.txt
2014-05-09 09:13 - 2014-05-09 09:13 - 00000117 _____ () C:\windows\system32\netcfg-98031.txt
2014-05-09 07:31 - 2014-05-09 07:31 - 00000117 _____ () C:\windows\system32\netcfg-45098687.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44826484.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44826453.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44823421.txt
2014-05-08 19:44 - 2014-05-08 19:44 - 00000117 _____ () C:\windows\system32\netcfg-2677718.txt
2014-05-08 19:02 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-114046.txt
2014-05-08 19:02 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-114015.txt
2014-05-08 19:01 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-111187.txt
2014-05-08 11:40 - 2014-05-08 11:40 - 00000117 _____ () C:\windows\system32\netcfg-2910265.txt
2014-05-08 11:05 - 2014-05-08 11:05 - 00000117 _____ () C:\windows\system32\netcfg-792484.txt
2014-05-07 21:39 - 2014-05-07 21:39 - 00000117 _____ () C:\windows\system32\netcfg-5929406.txt
2014-05-07 20:54 - 2014-05-15 18:21 - 00000000 ____D () C:\Users\pc\Documents\LUKAS
2014-05-07 20:23 - 2014-05-07 20:23 - 00000117 _____ () C:\windows\system32\netcfg-1385093.txt
2014-05-07 11:21 - 2014-05-07 11:21 - 00000117 _____ () C:\windows\system32\netcfg-9943078.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-397968.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-397937.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-394937.txt
2014-05-07 08:31 - 2014-05-07 08:31 - 00000117 _____ () C:\windows\system32\netcfg-41590250.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-41000406.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-41000328.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-40997468.txt
2014-05-06 21:58 - 2014-05-06 21:58 - 00000117 _____ () C:\windows\system32\netcfg-3608078.txt
2014-05-06 21:13 - 2014-05-06 21:13 - 00000117 _____ () C:\windows\system32\netcfg-898515.txt
2014-05-06 08:21 - 2014-05-06 08:21 - 00000117 _____ () C:\windows\system32\netcfg-2788296.txt
2014-05-06 07:36 - 2014-05-06 07:36 - 00000117 _____ () C:\windows\system32\netcfg-96812.txt
2014-05-06 07:36 - 2014-05-06 07:36 - 00000117 _____ () C:\windows\system32\netcfg-94109.txt
2014-05-05 19:14 - 2014-05-05 19:14 - 00000117 _____ () C:\windows\system32\netcfg-1109046.txt
2014-05-05 18:57 - 2014-05-05 18:57 - 00000117 _____ () C:\windows\system32\netcfg-87843.txt
2014-05-05 18:57 - 2014-05-05 18:57 - 00000117 _____ () C:\windows\system32\netcfg-87812.txt
2014-05-04 17:08 - 2014-05-04 17:08 - 00000117 _____ () C:\windows\system32\netcfg-312968.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-92359.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-92312.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-89500.txt
2014-05-04 08:34 - 2014-05-04 08:34 - 00000117 _____ () C:\windows\system32\netcfg-590031.txt
2014-05-04 08:26 - 2014-05-04 08:26 - 00000117 _____ () C:\windows\system32\netcfg-116343.txt
2014-05-03 20:14 - 2014-05-03 20:14 - 00000117 _____ () C:\windows\system32\netcfg-10217578.txt
2014-05-03 19:08 - 2014-05-03 19:22 - 49560580 _____ () C:\Users\pc\Downloads\Heilpflanzen.zip
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2013171.txt
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2013140.txt
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2010140.txt
2014-05-03 07:56 - 2014-05-03 07:56 - 00000117 _____ () C:\windows\system32\netcfg-680234.txt
2014-05-03 07:46 - 2014-05-03 07:46 - 00000117 _____ () C:\windows\system32\netcfg-92375.txt
2014-05-02 20:25 - 2014-05-02 20:25 - 00000117 _____ () C:\windows\system32\netcfg-2527031.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-518625.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-518593.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-515562.txt
2014-05-02 08:51 - 2014-05-02 08:51 - 00000117 _____ () C:\windows\system32\netcfg-2784453.txt
2014-05-02 08:06 - 2014-05-02 08:06 - 00000117 _____ () C:\windows\system32\netcfg-97906.txt
2014-05-02 08:06 - 2014-05-02 08:06 - 00000117 _____ () C:\windows\system32\netcfg-94921.txt
2014-05-01 22:45 - 2014-05-01 22:45 - 00000117 _____ () C:\windows\system32\netcfg-20648828.txt
2014-05-01 22:22 - 2014-05-01 22:22 - 00000117 _____ () C:\windows\system32\netcfg-19243171.txt
2014-05-01 22:15 - 2014-05-01 22:15 - 00000117 _____ () C:\windows\system32\netcfg-18841640.txt
2014-05-01 20:45 - 2014-05-01 20:45 - 00000117 _____ () C:\windows\system32\netcfg-13450718.txt
2014-05-01 20:28 - 2014-05-01 20:28 - 00000117 _____ () C:\windows\system32\netcfg-12419140.txt
2014-05-01 20:06 - 2014-05-01 20:06 - 00000117 _____ () C:\windows\system32\netcfg-11102265.txt
2014-05-01 19:44 - 2014-05-01 19:44 - 00000117 _____ () C:\windows\system32\netcfg-9774078.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6953875.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6953828.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6950765.txt
2014-05-01 18:56 - 2014-05-01 18:56 - 00000117 _____ () C:\windows\system32\netcfg-6904906.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4890781.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4890734.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4887687.txt
2014-04-30 20:57 - 2014-04-30 20:57 - 00000117 _____ () C:\windows\system32\netcfg-8475218.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8386140.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8383109.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8383046.txt
2014-04-30 19:24 - 2014-04-30 19:24 - 00000117 _____ () C:\windows\system32\netcfg-2889218.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-94968.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-94937.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-91921.txt
2014-04-30 09:46 - 2014-04-30 09:46 - 00000117 _____ () C:\windows\system32\netcfg-5401640.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4662546.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4662500.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4659453.txt
2014-04-30 08:47 - 2014-04-30 08:47 - 00000117 _____ () C:\windows\system32\netcfg-1898218.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-109421.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-109390.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-106843.txt
2014-04-29 22:17 - 2014-04-29 22:17 - 00000117 _____ () C:\windows\system32\netcfg-22920703.txt
2014-04-29 22:15 - 2014-04-29 22:15 - 00000117 _____ () C:\windows\system32\netcfg-22804187.txt
2014-04-29 22:15 - 2014-04-29 22:15 - 00000117 _____ () C:\windows\system32\netcfg-22792343.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19163796.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19163750.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19161250.txt
2014-04-29 15:55 - 2014-04-29 15:56 - 00283072 _____ () C:\windows\Minidump\042914-20343-01.dmp
2014-04-29 09:10 - 2014-04-29 09:10 - 00000117 _____ () C:\windows\system32\netcfg-919234.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-375203.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-375171.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-372750.txt
2014-04-27 22:21 - 2014-04-27 22:21 - 00000117 _____ () C:\windows\system32\netcfg-5867015.txt
2014-04-27 20:45 - 2014-04-27 20:45 - 00000117 _____ () C:\windows\system32\netcfg-104843.txt
2014-04-27 20:45 - 2014-04-27 20:45 - 00000117 _____ () C:\windows\system32\netcfg-104812.txt
2014-04-26 16:37 - 2014-04-26 16:37 - 00000117 _____ () C:\windows\system32\netcfg-1094718.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-196343.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-196296.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-193718.txt
2014-04-26 10:46 - 2014-04-26 10:46 - 00000117 _____ () C:\windows\system32\netcfg-7238937.txt
2014-04-26 10:19 - 2014-04-26 10:19 - 00000117 _____ () C:\windows\system32\netcfg-5627296.txt
2014-04-26 10:19 - 2014-04-26 10:19 - 00000117 _____ () C:\windows\system32\netcfg-5618531.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-400765.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-400718.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-397812.txt
2014-04-25 23:28 - 2014-04-25 23:28 - 00000117 _____ () C:\windows\system32\netcfg-57452343.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50666921.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50666859.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50663875.txt
2014-04-25 20:59 - 2014-04-25 20:59 - 00000117 _____ () C:\windows\system32\netcfg-48566671.txt
2014-04-25 18:37 - 2014-04-25 18:37 - 00000117 _____ () C:\windows\system32\netcfg-40031375.txt
2014-04-25 18:36 - 2014-04-25 18:36 - 00000117 _____ () C:\windows\system32\netcfg-39985843.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39405484.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39405437.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39402406.txt
2014-04-25 12:37 - 2014-04-25 12:37 - 00000117 _____ () C:\windows\system32\netcfg-18393875.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11289750.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11289703.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11286625.txt
2014-04-25 10:37 - 2014-04-25 10:37 - 00000117 _____ () C:\windows\system32\netcfg-11244859.txt
2014-04-25 10:02 - 2014-04-25 10:02 - 00000117 _____ () C:\windows\system32\netcfg-9136140.txt
2014-04-25 09:54 - 2014-04-25 09:54 - 00000117 _____ () C:\windows\system32\netcfg-8618906.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-844359.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-844328.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-841265.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-803984.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-777015.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-765484.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-206390.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-206359.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-203781.txt
2014-04-24 23:03 - 2014-04-24 23:03 - 00000117 _____ () C:\windows\system32\netcfg-46910937.txt
2014-04-24 19:37 - 2014-04-24 19:38 - 00000117 _____ () C:\windows\system32\netcfg-34558296.txt
2014-04-24 19:14 - 2014-04-24 19:14 - 00000117 _____ () C:\windows\system32\netcfg-33152109.txt
2014-04-24 18:36 - 2014-04-24 18:36 - 00000117 _____ () C:\windows\system32\netcfg-30881656.txt
2014-04-24 17:54 - 2014-04-24 17:54 - 00000117 _____ () C:\windows\system32\netcfg-28353828.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26074093.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26074046.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26071109.txt
2014-04-24 13:29 - 2014-04-24 13:29 - 00000117 _____ () C:\windows\system32\netcfg-12452984.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11158578.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11158484.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11155437.txt
2014-04-24 12:22 - 2014-04-24 12:22 - 00000117 _____ () C:\windows\system32\netcfg-8403921.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-126718.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-126687.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-124046.txt
2014-04-23 19:19 - 2014-04-23 19:19 - 00000117 _____ () C:\windows\system32\netcfg-3470734.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1912218.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1912171.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1909171.txt
2014-04-23 14:46 - 2014-04-23 14:46 - 00000117 _____ () C:\windows\system32\netcfg-2567656.txt
2014-04-23 14:05 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-95453.txt
2014-04-23 14:05 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-95406.txt
2014-04-23 14:04 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-92406.txt
2014-04-23 09:53 - 2014-04-23 09:53 - 00000117 _____ () C:\windows\system32\netcfg-3132718.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-209203.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-209171.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-206500.txt
2014-04-22 21:59 - 2014-04-22 21:59 - 00000117 _____ () C:\windows\system32\netcfg-5013031.txt
2014-04-22 21:43 - 2014-04-22 21:43 - 00000117 _____ () C:\windows\system32\netcfg-4104015.txt
2014-04-22 21:15 - 2014-04-22 21:15 - 00000117 _____ () C:\windows\system32\netcfg-2409437.txt
2014-04-22 20:38 - 2014-04-22 20:38 - 00000117 _____ () C:\windows\system32\netcfg-154078.txt
2014-04-22 20:37 - 2014-04-22 20:38 - 00000117 _____ () C:\windows\system32\netcfg-151359.txt
2014-04-22 20:19 - 2014-04-22 20:19 - 00000117 _____ () C:\windows\system32\netcfg-7576296.txt
2014-04-22 20:01 - 2014-04-22 20:01 - 00000117 _____ () C:\windows\system32\netcfg-6478953.txt
2014-04-22 19:34 - 2014-04-22 19:34 - 00000117 _____ () C:\windows\system32\netcfg-4838640.txt
2014-04-22 18:18 - 2014-04-22 18:18 - 00000117 _____ () C:\windows\system32\netcfg-280015.txt
2014-04-22 18:18 - 2014-04-22 18:18 - 00000117 _____ () C:\windows\system32\netcfg-279968.txt
2014-04-22 18:18 - 2014-04-22 18:18 - 00000117 _____ () C:\windows\system32\netcfg-277265.txt
2014-04-22 08:10 - 2014-04-22 08:10 - 00000117 _____ () C:\windows\system32\netcfg-439203.txt
2014-04-22 08:05 - 2014-04-22 08:05 - 00000117 _____ () C:\windows\system32\netcfg-122562.txt
2014-04-22 08:05 - 2014-04-22 08:05 - 00000117 _____ () C:\windows\system32\netcfg-122531.txt
2014-04-22 08:05 - 2014-04-22 08:05 - 00000117 _____ () C:\windows\system32\netcfg-119609.txt
2014-04-21 14:49 - 2014-04-21 14:49 - 00000117 _____ () C:\windows\system32\netcfg-1427265.txt
2014-04-21 14:29 - 2014-04-21 14:29 - 00000117 _____ () C:\windows\system32\netcfg-272234.txt
2014-04-21 14:29 - 2014-04-21 14:29 - 00000117 _____ () C:\windows\system32\netcfg-272187.txt
2014-04-21 14:29 - 2014-04-21 14:29 - 00000117 _____ () C:\windows\system32\netcfg-269546.txt

==================== One Month Modified Files and Folders =======

2014-05-21 22:13 - 2014-05-21 22:13 - 00014857 _____ () C:\Users\pc\Desktop\FRST.txt
2014-05-21 22:13 - 2014-05-21 22:13 - 00000000 ____D () C:\FRST
2014-05-21 22:12 - 2014-05-21 22:11 - 02067456 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2014-05-21 22:09 - 2014-05-21 22:09 - 00000466 _____ () C:\Users\pc\Desktop\defogger_disable.log
2014-05-21 22:09 - 2014-05-21 22:09 - 00000000 _____ () C:\Users\pc\defogger_reenable
2014-05-21 22:09 - 2012-12-06 15:27 - 00000000 ____D () C:\Users\pc
2014-05-21 22:08 - 2014-05-21 22:08 - 00050477 _____ () C:\Users\pc\Desktop\Defogger.exe
2014-05-21 22:02 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\system32\sru
2014-05-21 22:00 - 2012-11-04 08:33 - 00749072 _____ () C:\windows\system32\perfh007.dat
2014-05-21 22:00 - 2012-11-04 08:33 - 00170498 _____ () C:\windows\system32\perfc007.dat
2014-05-21 22:00 - 2012-07-26 09:28 - 01761256 _____ () C:\windows\system32\PerfStringBackup.INI
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5282484.txt
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5282437.txt
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5279390.txt
2014-05-21 21:52 - 2014-01-24 08:45 - 00000000 ____D () C:\Users\pc\AppData\Roaming\3DataManager
2014-05-21 21:37 - 2014-05-21 21:37 - 00000117 _____ () C:\windows\system32\netcfg-4336937.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4268109.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4268046.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4265015.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4245109.txt
2014-05-21 21:32 - 2014-05-21 21:32 - 00000117 _____ () C:\windows\system32\netcfg-4079328.txt
2014-05-21 20:25 - 2012-07-26 09:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-05-20 21:24 - 2013-07-06 18:43 - 00000000 ____D () C:\Users\pc\Documents\ELIAS
2014-05-19 15:27 - 2012-12-06 15:27 - 02018113 _____ () C:\windows\WindowsUpdate.log
2014-05-18 23:39 - 2014-05-18 23:39 - 00000117 _____ () C:\windows\system32\netcfg-16858531.txt
2014-05-18 23:37 - 2014-05-18 23:37 - 00000117 _____ () C:\windows\system32\netcfg-16758921.txt
2014-05-18 23:37 - 2014-05-18 23:37 - 00000117 _____ () C:\windows\system32\netcfg-16722421.txt
2014-05-18 23:36 - 2014-05-18 23:36 - 00000117 _____ () C:\windows\system32\netcfg-16681562.txt
2014-05-18 22:29 - 2014-05-18 22:29 - 00000117 _____ () C:\windows\system32\netcfg-12654984.txt
2014-05-18 22:25 - 2014-05-18 22:25 - 00000117 _____ () C:\windows\system32\netcfg-12422515.txt
2014-05-18 20:18 - 2014-05-18 20:18 - 00000117 _____ () C:\windows\system32\netcfg-4795562.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4648281.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4648234.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4645171.txt
2014-05-18 20:14 - 2014-05-18 20:14 - 00000117 _____ () C:\windows\system32\netcfg-4589640.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3890546.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3890500.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3887437.txt
2014-05-18 19:53 - 2014-05-18 19:53 - 00000117 _____ () C:\windows\system32\netcfg-3296156.txt
2014-05-18 19:09 - 2012-12-06 15:35 - 00003600 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1178855520-1670574489-2810800821-1001
2014-05-18 19:00 - 2014-05-18 19:00 - 00000117 _____ () C:\windows\system32\netcfg-108656.txt
2014-05-17 23:31 - 2014-05-17 23:31 - 00000117 _____ () C:\windows\system32\netcfg-23217140.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9798109.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9798062.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9795078.txt
2014-05-17 16:57 - 2014-05-17 16:57 - 00000117 _____ () C:\windows\system32\netcfg-3821921.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1574718.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1574671.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1571640.txt
2014-05-17 16:18 - 2014-05-17 16:18 - 00000117 _____ () C:\windows\system32\netcfg-1529187.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-984593.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-984546.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-981875.txt
2014-05-17 15:53 - 2012-08-01 19:02 - 00744870 _____ () C:\windows\PFRO.log
2014-05-17 13:57 - 2014-05-17 13:57 - 00000117 _____ () C:\windows\system32\netcfg-11853578.txt
2014-05-17 13:05 - 2014-05-17 13:05 - 00000000 ____D () C:\Users\pc\Documents\PC Speed Maximizer
2014-05-17 13:02 - 2014-05-17 13:02 - 01280956 _____ () C:\Users\pc\Downloads\happy_install (1).exe
2014-05-17 13:02 - 2013-01-25 16:41 - 00000000 ____D () C:\games
2014-05-17 13:00 - 2014-05-17 13:00 - 01280956 _____ () C:\Users\pc\Downloads\happy_install.exe
2014-05-17 13:00 - 2014-05-17 13:00 - 00686664 _____ ( ) C:\Users\pc\Downloads\COMPUTER_BILD-Download-Manager_fuer_happy_install.exe
2014-05-17 13:00 - 2014-05-17 13:00 - 00000000 ____D () C:\ProgramData\Real
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8350687.txt
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8350640.txt
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8347656.txt
2014-05-17 11:41 - 2014-05-17 11:41 - 00000117 _____ () C:\windows\system32\netcfg-3699468.txt
2014-05-17 10:42 - 2014-05-17 10:42 - 00000117 _____ () C:\windows\system32\netcfg-128171.txt
2014-05-17 10:42 - 2014-05-17 10:42 - 00000117 _____ () C:\windows\system32\netcfg-128125.txt
2014-05-16 18:41 - 2014-05-16 18:41 - 00000117 _____ () C:\windows\system32\netcfg-12939687.txt
2014-05-16 18:04 - 2014-05-16 17:53 - 00000000 ____D () C:\Users\pc\AppData\Roaming\frogatto
2014-05-16 17:52 - 2014-05-16 17:31 - 238280554 _____ ( ) C:\Users\pc\Downloads\frogatto-setup-i386-1.3.exe
2014-05-16 17:23 - 2014-05-16 17:23 - 00443280 _____ () C:\Users\pc\Downloads\PopularScreensavers.exe
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7997171.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7997125.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7994078.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000000 ____D () C:\windows\System32\Tasks\Games
2014-05-16 16:49 - 2014-05-16 16:49 - 00000117 _____ () C:\windows\system32\netcfg-6211562.txt
2014-05-16 16:25 - 2014-05-16 16:25 - 00000117 _____ () C:\windows\system32\netcfg-4769218.txt
2014-05-16 12:13 - 2014-05-16 12:13 - 00000117 _____ () C:\windows\system32\netcfg-145462125.txt
2014-05-16 12:13 - 2012-07-26 07:26 - 00524288 ___SH () C:\windows\system32\config\BBI
2014-05-16 12:09 - 2014-01-31 13:01 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2014-05-16 12:09 - 2014-01-31 13:01 - 00000000 _____ () C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-05-16 12:06 - 2014-05-16 12:06 - 00000117 _____ () C:\windows\system32\netcfg-145060375.txt
2014-05-15 22:48 - 2014-05-15 22:48 - 00000117 _____ () C:\windows\system32\netcfg-97160812.txt
2014-05-15 20:27 - 2014-05-15 20:27 - 00000117 _____ () C:\windows\system32\netcfg-88736687.txt
2014-05-15 20:24 - 2014-05-15 20:24 - 00000117 _____ () C:\windows\system32\netcfg-88574140.txt
2014-05-15 19:06 - 2012-12-22 16:54 - 00000000 ____D () C:\Users\pc\Documents\_UNI
2014-05-15 18:21 - 2014-05-07 20:54 - 00000000 ____D () C:\Users\pc\Documents\LUKAS
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81132218.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81132187.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81129125.txt
2014-05-15 08:59 - 2014-05-15 08:59 - 00000117 _____ () C:\windows\system32\netcfg-47438640.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41862046.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41862015.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41859031.txt
2014-05-14 07:52 - 2014-05-14 07:52 - 00000117 _____ () C:\windows\system32\netcfg-993171.txt
2014-05-14 07:50 - 2014-05-14 07:50 - 00000117 _____ () C:\windows\system32\netcfg-877093.txt
2014-05-14 07:36 - 2014-05-14 07:36 - 00000117 _____ () C:\windows\system32\netcfg-30562.txt
2014-05-13 20:32 - 2014-05-13 20:32 - 00000117 _____ () C:\windows\system32\netcfg-1341343.txt
2014-05-13 09:27 - 2014-05-13 09:27 - 00000117 _____ () C:\windows\system32\netcfg-2614656.txt
2014-05-13 08:51 - 2014-05-13 08:51 - 00000117 _____ () C:\windows\system32\netcfg-488375.txt
2014-05-12 22:00 - 2014-05-12 22:00 - 00000117 _____ () C:\windows\system32\netcfg-10696125.txt
2014-05-12 21:06 - 2014-05-12 21:06 - 00000117 _____ () C:\windows\system32\netcfg-7407687.txt
2014-05-12 20:54 - 2014-05-12 20:54 - 00000117 _____ () C:\windows\system32\netcfg-6698703.txt
2014-05-12 19:37 - 2014-05-12 19:37 - 00000117 _____ () C:\windows\system32\netcfg-2071671.txt
2014-05-12 08:51 - 2014-05-12 08:51 - 00000117 _____ () C:\windows\system32\netcfg-172394671.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171068234.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171068187.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171065171.txt
2014-05-11 23:36 - 2014-05-11 23:36 - 00000117 _____ () C:\windows\system32\netcfg-139134984.txt
2014-05-11 22:08 - 2014-05-11 22:08 - 00000117 _____ () C:\windows\system32\netcfg-133843265.txt
2014-05-11 20:00 - 2014-05-11 20:00 - 00000117 _____ () C:\windows\system32\netcfg-126150031.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121939875.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121939828.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121936812.txt
2014-05-10 23:18 - 2014-05-10 23:18 - 00000117 _____ () C:\windows\system32\netcfg-51647718.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48739671.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48739640.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48736562.txt
2014-05-10 09:34 - 2014-05-10 09:34 - 00000117 _____ () C:\windows\system32\netcfg-2213687.txt
2014-05-10 09:01 - 2014-05-10 09:01 - 00000117 _____ () C:\windows\system32\netcfg-234109.txt
2014-05-09 21:49 - 2014-05-09 21:49 - 00000117 _____ () C:\windows\system32\netcfg-3798406.txt
2014-05-09 21:03 - 2014-05-09 21:03 - 00000117 _____ () C:\windows\system32\netcfg-1009000.txt
2014-05-09 21:01 - 2014-05-09 21:01 - 00000117 _____ () C:\windows\system32\netcfg-902328.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-153234.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-153203.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-150375.txt
2014-05-09 09:29 - 2014-05-09 09:29 - 00000117 _____ () C:\windows\system32\netcfg-1040968.txt
2014-05-09 09:13 - 2014-05-09 09:13 - 00000117 _____ () C:\windows\system32\netcfg-98062.txt
2014-05-09 09:13 - 2014-05-09 09:13 - 00000117 _____ () C:\windows\system32\netcfg-98031.txt
2014-05-09 07:31 - 2014-05-09 07:31 - 00000117 _____ () C:\windows\system32\netcfg-45098687.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44826484.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44826453.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44823421.txt
2014-05-08 19:44 - 2014-05-08 19:44 - 00000117 _____ () C:\windows\system32\netcfg-2677718.txt
2014-05-08 19:02 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-114046.txt
2014-05-08 19:02 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-114015.txt
2014-05-08 19:02 - 2014-05-08 19:01 - 00000117 _____ () C:\windows\system32\netcfg-111187.txt
2014-05-08 11:40 - 2014-05-08 11:40 - 00000117 _____ () C:\windows\system32\netcfg-2910265.txt
2014-05-08 11:05 - 2014-05-08 11:05 - 00000117 _____ () C:\windows\system32\netcfg-792484.txt
2014-05-07 21:39 - 2014-05-07 21:39 - 00000117 _____ () C:\windows\system32\netcfg-5929406.txt
2014-05-07 20:23 - 2014-05-07 20:23 - 00000117 _____ () C:\windows\system32\netcfg-1385093.txt
2014-05-07 11:21 - 2014-05-07 11:21 - 00000117 _____ () C:\windows\system32\netcfg-9943078.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-397968.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-397937.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-394937.txt
2014-05-07 08:31 - 2014-05-07 08:31 - 00000117 _____ () C:\windows\system32\netcfg-41590250.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-41000406.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-41000328.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-40997468.txt
2014-05-06 21:58 - 2014-05-06 21:58 - 00000117 _____ () C:\windows\system32\netcfg-3608078.txt
2014-05-06 21:13 - 2014-05-06 21:13 - 00000117 _____ () C:\windows\system32\netcfg-898515.txt
2014-05-06 08:21 - 2014-05-06 08:21 - 00000117 _____ () C:\windows\system32\netcfg-2788296.txt
2014-05-06 07:36 - 2014-05-06 07:36 - 00000117 _____ () C:\windows\system32\netcfg-96812.txt
2014-05-06 07:36 - 2014-05-06 07:36 - 00000117 _____ () C:\windows\system32\netcfg-94109.txt
2014-05-05 19:14 - 2014-05-05 19:14 - 00000117 _____ () C:\windows\system32\netcfg-1109046.txt
2014-05-05 18:57 - 2014-05-05 18:57 - 00000117 _____ () C:\windows\system32\netcfg-87843.txt
2014-05-05 18:57 - 2014-05-05 18:57 - 00000117 _____ () C:\windows\system32\netcfg-87812.txt
2014-05-04 17:08 - 2014-05-04 17:08 - 00000117 _____ () C:\windows\system32\netcfg-312968.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-92359.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-92312.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-89500.txt
2014-05-04 08:34 - 2014-05-04 08:34 - 00000117 _____ () C:\windows\system32\netcfg-590031.txt
2014-05-04 08:26 - 2014-05-04 08:26 - 00000117 _____ () C:\windows\system32\netcfg-116343.txt
2014-05-03 20:14 - 2014-05-03 20:14 - 00000117 _____ () C:\windows\system32\netcfg-10217578.txt
2014-05-03 19:22 - 2014-05-03 19:08 - 49560580 _____ () C:\Users\pc\Downloads\Heilpflanzen.zip
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2013171.txt
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2013140.txt
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2010140.txt
2014-05-03 07:56 - 2014-05-03 07:56 - 00000117 _____ () C:\windows\system32\netcfg-680234.txt
2014-05-03 07:46 - 2014-05-03 07:46 - 00000117 _____ () C:\windows\system32\netcfg-92375.txt
2014-05-02 20:25 - 2014-05-02 20:25 - 00000117 _____ () C:\windows\system32\netcfg-2527031.txt
2014-05-02 20:25 - 2013-02-15 20:53 - 00000000 ____D () C:\Users\pc\Documents\Michi
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-518625.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-518593.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-515562.txt
2014-05-02 08:51 - 2014-05-02 08:51 - 00000117 _____ () C:\windows\system32\netcfg-2784453.txt
2014-05-02 08:06 - 2014-05-02 08:06 - 00000117 _____ () C:\windows\system32\netcfg-97906.txt
2014-05-02 08:06 - 2014-05-02 08:06 - 00000117 _____ () C:\windows\system32\netcfg-94921.txt
2014-05-01 22:45 - 2014-05-01 22:45 - 00000117 _____ () C:\windows\system32\netcfg-20648828.txt
2014-05-01 22:22 - 2014-05-01 22:22 - 00000117 _____ () C:\windows\system32\netcfg-19243171.txt
2014-05-01 22:15 - 2014-05-01 22:15 - 00000117 _____ () C:\windows\system32\netcfg-18841640.txt
2014-05-01 20:45 - 2014-05-01 20:45 - 00000117 _____ () C:\windows\system32\netcfg-13450718.txt
2014-05-01 20:28 - 2014-05-01 20:28 - 00000117 _____ () C:\windows\system32\netcfg-12419140.txt
2014-05-01 20:06 - 2014-05-01 20:06 - 00000117 _____ () C:\windows\system32\netcfg-11102265.txt
2014-05-01 19:44 - 2014-05-01 19:44 - 00000117 _____ () C:\windows\system32\netcfg-9774078.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6953875.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6953828.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6950765.txt
2014-05-01 18:56 - 2014-05-01 18:56 - 00000117 _____ () C:\windows\system32\netcfg-6904906.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4890781.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4890734.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4887687.txt
2014-04-30 20:57 - 2014-04-30 20:57 - 00000117 _____ () C:\windows\system32\netcfg-8475218.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8386140.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8383109.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8383046.txt
2014-04-30 19:24 - 2014-04-30 19:24 - 00000117 _____ () C:\windows\system32\netcfg-2889218.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-94968.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-94937.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-91921.txt
2014-04-30 09:46 - 2014-04-30 09:46 - 00000117 _____ () C:\windows\system32\netcfg-5401640.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4662546.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4662500.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4659453.txt
2014-04-30 08:47 - 2014-04-30 08:47 - 00000117 _____ () C:\windows\system32\netcfg-1898218.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-109421.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-109390.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-106843.txt
2014-04-29 22:17 - 2014-04-29 22:17 - 00000117 _____ () C:\windows\system32\netcfg-22920703.txt
2014-04-29 22:15 - 2014-04-29 22:15 - 00000117 _____ () C:\windows\system32\netcfg-22804187.txt
2014-04-29 22:15 - 2014-04-29 22:15 - 00000117 _____ () C:\windows\system32\netcfg-22792343.txt
2014-04-29 22:11 - 2012-12-22 15:38 - 00000000 ____D () C:\Users\pc\Documents\rezepte
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19163796.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19163750.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19161250.txt
2014-04-29 15:56 - 2014-04-29 15:55 - 00283072 _____ () C:\windows\Minidump\042914-20343-01.dmp
2014-04-29 15:55 - 2012-12-22 16:11 - 591196088 _____ () C:\windows\MEMORY.DMP
2014-04-29 15:55 - 2012-12-22 16:11 - 00000000 ____D () C:\windows\Minidump
2014-04-29 09:10 - 2014-04-29 09:10 - 00000117 _____ () C:\windows\system32\netcfg-919234.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-375203.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-375171.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-372750.txt
2014-04-27 22:21 - 2014-04-27 22:21 - 00000117 _____ () C:\windows\system32\netcfg-5867015.txt
2014-04-27 20:45 - 2014-04-27 20:45 - 00000117 _____ () C:\windows\system32\netcfg-104843.txt
2014-04-27 20:45 - 2014-04-27 20:45 - 00000117 _____ () C:\windows\system32\netcfg-104812.txt
2014-04-26 16:37 - 2014-04-26 16:37 - 00000117 _____ () C:\windows\system32\netcfg-1094718.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-196343.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-196296.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-193718.txt
2014-04-26 10:46 - 2014-04-26 10:46 - 00000117 _____ () C:\windows\system32\netcfg-7238937.txt
2014-04-26 10:19 - 2014-04-26 10:19 - 00000117 _____ () C:\windows\system32\netcfg-5627296.txt
2014-04-26 10:19 - 2014-04-26 10:19 - 00000117 _____ () C:\windows\system32\netcfg-5618531.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-400765.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-400718.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-397812.txt
2014-04-25 23:28 - 2014-04-25 23:28 - 00000117 _____ () C:\windows\system32\netcfg-57452343.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50666921.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50666859.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50663875.txt
2014-04-25 20:59 - 2014-04-25 20:59 - 00000117 _____ () C:\windows\system32\netcfg-48566671.txt
2014-04-25 18:37 - 2014-04-25 18:37 - 00000117 _____ () C:\windows\system32\netcfg-40031375.txt
2014-04-25 18:36 - 2014-04-25 18:36 - 00000117 _____ () C:\windows\system32\netcfg-39985843.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39405484.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39405437.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39402406.txt
2014-04-25 12:37 - 2014-04-25 12:37 - 00000117 _____ () C:\windows\system32\netcfg-18393875.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11289750.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11289703.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11286625.txt
2014-04-25 10:37 - 2014-04-25 10:37 - 00000117 _____ () C:\windows\system32\netcfg-11244859.txt
2014-04-25 10:02 - 2014-04-25 10:02 - 00000117 _____ () C:\windows\system32\netcfg-9136140.txt
2014-04-25 09:54 - 2014-04-25 09:54 - 00000117 _____ () C:\windows\system32\netcfg-8618906.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-844359.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-844328.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-841265.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-803984.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-777015.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-765484.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-206390.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-206359.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-203781.txt
2014-04-24 23:03 - 2014-04-24 23:03 - 00000117 _____ () C:\windows\system32\netcfg-46910937.txt
2014-04-24 19:38 - 2014-04-24 19:37 - 00000117 _____ () C:\windows\system32\netcfg-34558296.txt
2014-04-24 19:14 - 2014-04-24 19:14 - 00000117 _____ () C:\windows\system32\netcfg-33152109.txt
2014-04-24 18:36 - 2014-04-24 18:36 - 00000117 _____ () C:\windows\system32\netcfg-30881656.txt
2014-04-24 17:54 - 2014-04-24 17:54 - 00000117 _____ () C:\windows\system32\netcfg-28353828.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26074093.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26074046.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26071109.txt
2014-04-24 13:29 - 2014-04-24 13:29 - 00000117 _____ () C:\windows\system32\netcfg-12452984.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11158578.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11158484.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11155437.txt
2014-04-24 12:22 - 2014-04-24 12:22 - 00000117 _____ () C:\windows\system32\netcfg-8403921.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-126718.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-126687.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-124046.txt
2014-04-23 19:19 - 2014-04-23 19:19 - 00000117 _____ () C:\windows\system32\netcfg-3470734.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1912218.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1912171.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1909171.txt
2014-04-23 14:46 - 2014-04-23 14:46 - 00000117 _____ () C:\windows\system32\netcfg-2567656.txt
2014-04-23 14:05 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-95453.txt
2014-04-23 14:05 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-95406.txt
2014-04-23 14:05 - 2014-04-23 14:04 - 00000117 _____ () C:\windows\system32\netcfg-92406.txt
2014-04-23 09:53 - 2014-04-23 09:53 - 00000117 _____ () C:\windows\system32\netcfg-3132718.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-209203.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-209171.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-206500.txt
2014-04-22 21:59 - 2014-04-22 21:59 - 00000117 _____ () C:\windows\system32\netcfg-5013031.txt
2014-04-22 21:43 - 2014-04-22 21:43 - 00000117 _____ () C:\windows\system32\netcfg-4104015.txt
2014-04-22 21:15 - 2014-04-22 21:15 - 00000117 _____ () C:\windows\system32\netcfg-2409437.txt
2014-04-22 20:38 - 2014-04-22 20:38 - 00000117 _____ () C:\windows\system32\netcfg-154078.txt
2014-04-22 20:38 - 2014-04-22 20:37 - 00000117 _____ () C:\windows\system32\netcfg-151359.txt
2014-04-22 20:19 - 2014-04-22 20:19 - 00000117 _____ () C:\windows\system32\netcfg-7576296.txt
2014-04-22 20:01 - 2014-04-22 20:01 - 00000117 _____ () C:\windows\system32\netcfg-6478953.txt
2014-04-22 19:51 - 2012-07-26 09:21 - 00039941 _____ () C:\windows\setupact.log
2014-04-22 19:34 - 2014-04-22 19:34 - 00000117 _____ () C:\windows\system32\netcfg-4838640.txt
2014-04-22 18:18 - 2014-04-22 18:18 - 00000117 _____ () C:\windows\system32\netcfg-280015.txt
2014-04-22 18:18 - 2014-04-22 18:18 - 00000117 _____ () C:\windows\system32\netcfg-279968.txt
2014-04-22 18:18 - 2014-04-22 18:18 - 00000117 _____ () C:\windows\system32\netcfg-277265.txt
2014-04-22 08:10 - 2014-04-22 08:10 - 00000117 _____ () C:\windows\system32\netcfg-439203.txt
2014-04-22 08:05 - 2014-04-22 08:05 - 00000117 _____ () C:\windows\system32\netcfg-122562.txt
2014-04-22 08:05 - 2014-04-22 08:05 - 00000117 _____ () C:\windows\system32\netcfg-122531.txt
2014-04-22 08:05 - 2014-04-22 08:05 - 00000117 _____ () C:\windows\system32\netcfg-119609.txt
2014-04-21 14:49 - 2014-04-21 14:49 - 00000117 _____ () C:\windows\system32\netcfg-1427265.txt
2014-04-21 14:29 - 2014-04-21 14:29 - 00000117 _____ () C:\windows\system32\netcfg-272234.txt
2014-04-21 14:29 - 2014-04-21 14:29 - 00000117 _____ () C:\windows\system32\netcfg-272187.txt
2014-04-21 14:29 - 2014-04-21 14:29 - 00000117 _____ () C:\windows\system32\netcfg-269546.txt

Some content of TEMP:
====================
C:\Users\pc\AppData\Local\Temp\AskSLib.dll
C:\Users\pc\AppData\Local\Temp\avgnt.exe
C:\Users\pc\AppData\Local\Temp\COMAP.EXE
C:\Users\pc\AppData\Local\Temp\lowproc.exe
C:\Users\pc\AppData\Local\Temp\mfc80.dll
C:\Users\pc\AppData\Local\Temp\mfc80u.dll
C:\Users\pc\AppData\Local\Temp\mfcm80.dll
C:\Users\pc\AppData\Local\Temp\mfcm80u.dll
C:\Users\pc\AppData\Local\Temp\msvcm80.dll
C:\Users\pc\AppData\Local\Temp\msvcp80.dll
C:\Users\pc\AppData\Local\Temp\msvcr80.dll
C:\Users\pc\AppData\Local\Temp\Smart Menu x64.exe
C:\Users\pc\AppData\Local\Temp\Softonic_chr_1-8-19-3.exe
C:\Users\pc\AppData\Local\Temp\Softonic_chr_1-8-19-3[1].exe
C:\Users\pc\AppData\Local\Temp\stubhelper.dll
C:\Users\pc\AppData\Local\Temp\uninst1.exe
C:\Users\pc\AppData\Local\Temp\Uninstaller.exe
C:\Users\pc\AppData\Local\Temp\WtgDriverInstallX.dll
C:\Users\pc\AppData\Local\Temp\WTGXMLUtil.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-17 11:10

==================== End Of Log ============================
         

Addition:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-05-2014
Ran by pc at 2014-05-21 22:14:09
Running from C:\Users\pc\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Out of date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Out of date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

3DataManager (HKLM-x32\...\3DataManager) (Version: 3.0 - 3DataManager)
Adobe Bridge 1.0 (x32 Version: 001.000.001 - Adobe Systems) Hidden
Adobe Common File Installer (x32 Version: 1.00.001 - Adobe System Incorporated) Hidden
Adobe Help Center 1.0 (x32 Version: 1.0.1 - Adobe Systems) Hidden
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Photoshop CS2 (x32 Version: 9.0 - Adobe Systems, Inc.) Hidden
Adobe Reader XI - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Adobe Stock Photos 1.0 (x32 Version: 1.0.1 - Adobe Systems) Hidden
Amazon MP3-Downloader 1.0.18 (HKCU\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
BitGuard (HKLM-x32\...\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}) (Version:  - MediaTechSoft Inc.) <==== ATTENTION
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1.5510 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.1.5510 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink Media Suite 10 (x32 Version: 10.0.1.1916 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.1.1902 - CyberLink Corp.) Hidden
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 10.0.1.4319 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)
Free YouTube Download version 3.2.18.1128 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.18.1128 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.2.430 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.2.430 - DVDVideoSoft Ltd.)
Free Zip Viewer (HKLM-x32\...\Free Zip Viewer) (Version: 1.0 - Free Zip Viewer)
Hewlett-Packard ACLM.NET v1.2.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP Postscript Converter (Version: 3.1.3591 - Hewlett-Packard) Hidden
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{FF27F674-821E-4BA2-985B-DDF539C2CD03}) (Version: 7.0.33.6 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2828 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Mathematica Extras 9.0 (4092550) (HKLM\...\A-WIN-Extras 9.0.1 4092550_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version:  - Microsoft)
Microsoft Office 2010 Service Pack 1 (SP1) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.4 - F.J. Wechselberger)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden
Scan2PDF 1.6 (HKLM-x32\...\Scan2PDF_is1) (Version:  - Koma-Code)
Smart Menu (HKCU\...\Smart Menu) (Version: 4.2 - Smart Menu)
Sony PC Companion 2.10.197 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.197 - Sony)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Win8Starter (HKLM\...\{F9383649-ED4F-47E5-0001-CB1F0FEBD122}) (Version: 1.0.12.1026 - Engelmann Media GmbH)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Wolfram CDF Player (M-WIN-D 9.0.1 4092685) (HKLM-x32\...\M-WIN-D 9.0.1 4092685_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
ZTE All 5.36.0751 (HKLM-x32\...\{31E45C82-3493-4809-95CD-F97834631CF9}) (Version: 5.36.0751 - ZTE)

==================== Restore Points  =========================

02-05-2014 06:41:51 Geplanter Prüfpunkt
10-05-2014 07:09:49 Geplanter Prüfpunkt
17-05-2014 09:20:44 Geplanter Prüfpunkt

==================== Hosts content: ==========================

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {28FD4CFB-1B87-4EE6-A9E2-732F79C79094} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Critical Actions Pending => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-08-15] (Hewlett-Packard Company)
Task: {3783ADAE-4202-4C95-81BA-7B121C0D2BC1} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1178855520-1670574489-2810800821-1001
Task: {6F106298-EC6A-4954-9FAD-D01BE18AF026} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-08-15] (Hewlett-Packard Company)
Task: {874FCCCB-3F59-40F0-8498-5374604FCB18} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-12-12] (Hewlett-Packard Company)
Task: {887D818F-3DBB-4DD1-B5E7-A5D0DEC31318} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-08-15] (Hewlett-Packard Company)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {AB96B97B-39C2-46A2-876A-EEB6AE199033} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\windows\system32\dism.exe [2012-07-26] (Microsoft Corporation)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask

==================== Loaded Modules (whitelisted) =============

2012-07-26 05:15 - 2012-07-26 00:52 - 02549248 _____ () C:\windows\system32\HPScanTRDrvWn8.dll
2014-02-18 15:44 - 2014-02-18 15:44 - 00249432 _____ () C:\Program Files\Smart Menu\WinStartMenuLauncher.exe
2014-01-24 08:45 - 2010-12-23 14:20 - 00327680 ____N () C:\Program Files (x86)\3DataManager\WTGService.exe
2012-08-29 12:02 - 2012-08-29 12:02 - 00120224 _____ () c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPItunesModule.dll
2012-08-29 12:02 - 2012-08-29 12:02 - 00048544 _____ () c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPItunesProxy.dll
2012-08-29 12:02 - 2012-08-29 12:02 - 00180224 _____ () c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\zxing.dll
2014-03-12 10:46 - 2014-03-12 10:46 - 00033792 _____ () C:\Program Files\Smart Menu\ShowStartBtnHook.dll
2011-03-17 01:07 - 2011-03-17 01:07 - 04297568 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2012-07-30 15:30 - 2012-07-30 15:30 - 00453744 ____N () C:\Program Files (x86)\Hewlett-Packard\Recovery\Protect.dll
2014-03-13 10:30 - 2014-03-13 10:30 - 02035840 _____ () C:\Program Files\Smart Menu\Smart Menu.exe
2014-01-16 18:04 - 2014-01-16 18:04 - 00860160 _____ () C:\Program Files\Smart Menu\libGLESv2.dll
2014-01-16 17:57 - 2014-01-16 17:57 - 01043968 _____ () C:\Program Files\Smart Menu\platforms\qwindows.dll
2014-01-16 18:05 - 2014-01-16 18:05 - 00052736 _____ () C:\Program Files\Smart Menu\libEGL.dll
2014-01-16 17:57 - 2014-01-16 17:57 - 00030208 _____ () C:\Program Files\Smart Menu\imageformats\qgif.dll
2014-01-16 17:57 - 2014-01-16 17:57 - 00236032 _____ () C:\Program Files\Smart Menu\imageformats\qjpeg.dll
2012-08-29 12:48 - 2012-08-29 12:48 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-08-20 20:06 - 2013-10-31 12:35 - 00070880 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2014-01-24 08:45 - 2011-01-28 13:44 - 00486344 ____N () C:\Program Files (x86)\3DataManager\3DataManager_Launcher.exe
2012-09-25 11:11 - 2012-09-25 11:11 - 00453632 _____ () C:\windows\system32\EMRegSys.dll
2012-08-29 12:02 - 2012-08-29 12:02 - 00120224 _____ () c:\program files (x86)\hewlett-packard\hp connected remote\HPItunesModule.dll
2012-12-06 15:28 - 2012-12-06 15:28 - 00120224 _____ () C:\Users\pc\AppData\Local\assembly\dl3\8P149J6J.Q93\QY1ZRXWW.OTJ\67cec283\0017145d_cd85cd01\HPItunesModule.DLL
2012-08-29 12:02 - 2012-08-29 12:02 - 00048544 _____ () c:\program files (x86)\hewlett-packard\hp connected remote\HPItunesProxy.dll
2012-08-29 12:02 - 2012-08-29 12:02 - 00180224 _____ () c:\program files (x86)\hewlett-packard\hp connected remote\zxing.dll
2014-05-21 22:08 - 2014-05-21 22:08 - 00050477 _____ () C:\Users\pc\Desktop\Defogger.exe
2013-02-07 19:05 - 2013-02-07 19:01 - 00397088 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2012-11-03 23:44 - 2012-07-18 10:36 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-08-20 20:06 - 2012-04-30 11:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2013-08-20 20:06 - 2013-09-13 11:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 14:54 - 2011-07-07 14:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2013-08-20 20:06 - 2013-05-20 12:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll
2013-08-20 20:06 - 2010-01-11 16:44 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2013-05-14 09:38 - 2013-05-14 09:38 - 00607744 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2013-01-08 17:03 - 2013-01-08 17:03 - 00086016 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\CalEngine.dll
2012-04-04 14:33 - 2012-04-04 14:33 - 00139776 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\CAgdLNotes.dll
2013-01-08 17:02 - 2013-01-08 17:02 - 00163840 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\CAgdOutlook.dll
2012-07-26 11:51 - 2012-07-26 11:51 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VistaCalendar.dll
2011-03-17 01:11 - 2011-03-17 01:11 - 04297568 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2012-11-03 23:51 - 2012-06-08 05:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 13:34 - 2012-06-08 13:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-01-24 08:45 - 2011-03-01 11:38 - 00196608 ____N () C:\Program Files (x86)\3DataManager\LiveBoxCM.dll
2014-01-24 08:45 - 2011-03-01 11:37 - 00073728 ____N () C:\Program Files (x86)\3DataManager\WtgDriverInstall.dll
2014-01-24 08:45 - 2011-03-01 11:38 - 00692224 ____N () C:\Program Files (x86)\3DataManager\WtgCore.dll
2014-01-24 08:45 - 2011-03-01 11:37 - 00110592 ____N () C:\Program Files (x86)\3DataManager\WtgDatabase.dll
2014-01-24 08:45 - 2011-03-01 11:37 - 00212992 ____N () C:\Program Files (x86)\3DataManager\WtgDetection.dll
2014-01-24 08:45 - 2011-03-01 11:37 - 00086016 ____N () C:\Program Files (x86)\3DataManager\WtgDialup.dll
2014-01-24 08:45 - 2011-03-01 11:37 - 00094208 ____N () C:\Program Files (x86)\3DataManager\WtgPorts.dll
2014-01-24 08:45 - 2011-03-01 11:36 - 00086016 ____N () C:\Program Files (x86)\3DataManager\WtgUtil.dll
2014-01-24 08:45 - 2011-03-01 11:37 - 00147456 ____N () C:\Program Files (x86)\3DataManager\WtgBluetooth.dll
2014-01-24 08:45 - 2007-02-27 16:14 - 00823296 ____N () C:\Program Files (x86)\3DataManager\LIBEAY32.dll
2014-01-24 08:45 - 2011-03-01 11:36 - 00012288 ____N () C:\Program Files (x86)\3DataManager\WTGDebugs.dll
2014-01-24 08:45 - 2011-03-01 11:36 - 00126976 ____N () C:\Program Files (x86)\3DataManager\WtgWiFi.dll
2014-01-24 08:45 - 2010-09-03 15:07 - 01097728 ____N () C:\Program Files (x86)\3DataManager\NDISAPI.dll
2014-01-24 08:45 - 2010-07-06 14:45 - 00598016 ____N () C:\Program Files (x86)\3DataManager\WTGXMLUtil.dll
2014-01-24 08:45 - 2011-03-01 11:37 - 00266240 ____N () C:\Program Files (x86)\3DataManager\WTGSMSPCClient.Dll
2014-01-24 08:45 - 2011-03-01 11:38 - 00012800 ____N () C:\Program Files (x86)\3DataManager\WTGDriverInstallX.Dll
2014-01-24 08:45 - 2010-10-28 13:52 - 00239104 ____N () C:\Program Files (x86)\3DataManager\WtgMobileBroadband7.dll
2014-01-24 08:45 - 2011-03-01 11:38 - 00021504 ____N () C:\Program Files (x86)\3DataManager\PhoenixUtil.dll
2010-12-21 02:15 - 2010-12-21 02:15 - 01041248 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\pc\Documents\Auszahlung des Teilkapitals bei CLEVER Invest.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\pc\Documents\Auszahlung des Teilkapitals bei CLEVER Invest.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\pc\Documents\Bankomatkarte hinten.jpeg.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\pc\Documents\Bankomatkarte hinten.jpeg.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\pc\Documents\Bankomatkarte vorne.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\pc\Documents\Bankomatkarte vorne.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\pc\Documents\Guthabensanforderung.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\pc\Documents\Guthabensanforderung.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\pc\Documents\Kaltwasserzähler.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\pc\Documents\Kaltwasserzähler.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a value of the ProxyServer registry value

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a buffer size for the ProxyServer registry value, code: 1008

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a value of the ProxyServer registry value

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a buffer size for the ProxyServer registry value, code: 1008

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a value of the ProxyServer registry value


System errors:
=============
Error: (05/21/2014 09:11:05 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Anmeldeinformationen Server für SSL. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.

Error: (05/21/2014 08:28:06 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Anmeldeinformationen Server für SSL. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.

Error: (05/20/2014 09:41:59 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Anmeldeinformationen Server für SSL. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.

Error: (05/20/2014 08:56:55 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Anmeldeinformationen Server für SSL. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.

Error: (05/20/2014 08:56:54 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Anmeldeinformationen Server für SSL. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.

Error: (05/19/2014 03:27:15 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Der Dienst Windows Update konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (05/19/2014 03:26:42 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Anmeldeinformationen Server für SSL. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.

Error: (05/19/2014 03:21:23 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Anmeldeinformationen Server für SSL. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.

Error: (05/19/2014 03:21:14 PM) (Source: Schannel) (EventID: 4102) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Zugriff auf den privaten Schlüssel der Anmeldeinformationen Server für SSL. Der vom kryptografischen Modul zurückgegebene Fehlercode lautet 0x8009030d. Der interne Fehlerstatus ist 10001.

Error: (05/18/2014 11:43:58 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Der Dienst Windows Update konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.


Microsoft Office Sessions:
=========================
Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a value of the ProxyServer registry value

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a buffer size for the ProxyServer registry value, code: 1008

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a value of the ProxyServer registry value

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a buffer size for the ProxyServer registry value, code: 1008

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Send POST failed, code: 12007

Error: (05/21/2014 09:50:10 PM) (Source: SmartMenuLogger) (EventID: 2) (User: )
Description: Can't query a value of the ProxyServer registry value


CodeIntegrity Errors:
===================================
  Date: 2014-05-18 21:06:49.811
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe with signing level Unsigned while the system requires signing level 6 or better to load.


==================== Memory info =========================== 

Percentage of memory in use: 46%
Total physical RAM: 3962.66 MB
Available physical RAM: 2126.47 MB
Total Pagefile: 7930.66 MB
Available Pagefile: 5818.48 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:455.68 GB) (Free:258.46 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Recovery Image) (Fixed) (Total:8.61 GB) (Free:1.04 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (3DataManager) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS
Drive h: (FreeAgent Drive) (Fixed) (Total:232.88 GB) (Free:42.29 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: BEB7F59D)

Partition: GPT Partition Type.

========================================================
Disk: 3 (Size: 233 GB) (Disk ID: A4B57300)
Partition 1: (Not Active) - (Size=233 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         

Gmer:

Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-05-21 22:23:55
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\00000034 ST500DM002-1BD142 rev.HP73 465,76GB
Running: Gmer-19357.exe; Driver: C:\Users\pc\AppData\Local\Temp\ugloapow.sys


---- User code sections - GMER 2.1 ----

.text    c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe[2820] C:\windows\system32\psapi.dll!GetProcessImageFileNameA + 306                                                                                          000007fa6fa3177a 4 bytes [A3, 6F, FA, 07]
.text    c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe[2820] C:\windows\system32\psapi.dll!GetProcessImageFileNameA + 314                                                                                          000007fa6fa31782 4 bytes [A3, 6F, FA, 07]
.text    C:\windows\Explorer.EXE[1184] C:\windows\SYSTEM32\MSIMG32.dll!GradientFill + 690                                                                                                                                                                    000007fa641a1532 4 bytes [1A, 64, FA, 07]
.text    C:\windows\Explorer.EXE[1184] C:\windows\SYSTEM32\MSIMG32.dll!GradientFill + 698                                                                                                                                                                    000007fa641a153a 4 bytes [1A, 64, FA, 07]
.text    C:\windows\Explorer.EXE[1184] C:\windows\SYSTEM32\MSIMG32.dll!TransparentBlt + 246                                                                                                                                                                  000007fa641a165a 4 bytes [1A, 64, FA, 07]
.text    C:\Windows\System32\igfxpers.exe[3208] C:\windows\system32\PSAPI.DLL!GetProcessImageFileNameA + 306                                                                                                                                                 000007fa6fa3177a 4 bytes [A3, 6F, FA, 07]
.text    C:\Windows\System32\igfxpers.exe[3208] C:\windows\system32\PSAPI.DLL!GetProcessImageFileNameA + 314                                                                                                                                                 000007fa6fa31782 4 bytes [A3, 6F, FA, 07]
.text    C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE[3312] C:\Program Files (x86)\Microsoft Office\Office14\BCSRuntime.dll!LoadMsoInfoPathEmbeddedEditor + 562                                                                              00000000605da5ac 4 bytes [FE, A1, B0, 48]
.text    C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE[3312] C:\Program Files (x86)\Microsoft Office\Office14\BCSProxy32.dll!ReleaseMutex + 215                                                                                               00000000605c2338 4 bytes [A6, A1, B0, 48]

---- Threads - GMER 2.1 ----

Thread   C:\windows\system32\csrss.exe [532:556]                                                                                                                                                                                                             fffff960008f95e8
---- Processes - GMER 2.1 ----

Library  C:\Users\pc\AppData\Local\assembly\dl3\8P149J6J.Q93\QY1ZRXWW.OTJ\ce3b761e\00bdb15a_cd85cd01\HPSeeker.DLL (*** suspicious ***) @ c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe [4056] (FILE NOT FOUND)        000000001c110000
Library  C:\Users\pc\AppData\Local\assembly\dl3\8P149J6J.Q93\QY1ZRXWW.OTJ\a1e0f642\00bdb15a_cd85cd01\HPSwitchBoard.DLL (*** suspicious ***) @ c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe [4056] (FILE NOT FOUND)   000000001c3f0000
Library  C:\Users\pc\AppData\Local\assembly\dl3\8P149J6J.Q93\QY1ZRXWW.OTJ\67cec283\0017145d_cd85cd01\HPItunesModule.DLL (*** suspicious ***) @ c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe [4056] (FILE NOT FOUND)  000000001c5d0000
Library  C:\Users\pc\AppData\Local\assembly\dl3\8P149J6J.Q93\QY1ZRXWW.OTJ\c0250bdf\00eae25b_cd85cd01\HPWMCModule.DLL (*** suspicious ***) @ c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe [4056] (FILE NOT FOUND)     000000001c840000
Library  C:\Users\pc\AppData\Local\assembly\dl3\8P149J6J.Q93\QY1ZRXWW.OTJ\d797c04d\00bdb15a_cd85cd01\HPWMPModule.DLL (*** suspicious ***) @ c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe [4056] (FILE NOT FOUND)     000000001d410000

---- Disk sectors - GMER 2.1 ----

Disk     \Device\Harddisk0\DR0                                                                                                                                                                                                                               unknown MBR code

---- EOF - GMER 2.1 ----
         


Die Logfile von Avira passt nicht mehr hier hinein. Wenn notwendig bitte um Info ob ich es noch posten soll.


Vielen Dank an euer Team!

VIELEN DANK!

Alt 22.05.2014, 05:44   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Trojaner: TR/Drop.Rotbrow.K.1'  - hoher Datentraffic - Standard

Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic



hi,

Adware & Co. deinstallieren
  • Lade Dir bitte von hier Revo Uninstaller herunter.
  • Installiere und starte das Programm.
  • Suche im Uninstallerfeld nach den Programmen, die unter:

    diesen Zusatz haben:
  • Wähle die Programme nacheinander aus und klicke jedesmal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

Solltest Du ein Programm nicht finden oder nicht deinstallieren können, mache bitte mit dem nächsten Schritt weiter:



Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________

__________________

Alt 22.05.2014, 08:20   #3
RomKa.
 
Trojaner: TR/Drop.Rotbrow.K.1'  - hoher Datentraffic - Standard

Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic



Hallo Schrauber,

danke für deine Hilfe!

Ich habe Revo Uninstaller durchgeführt. Allerdings waren im Uninstallerfeld keine Programme mit den erwähnten Zusätzen aufgelistet.

Combofix Log:

Code:
ATTFilter
ComboFix 14-05-19.01 - pc 22.05.2014   8:22.1.4 - x64
Microsoft Windows 8  6.2.9200.0.1252.43.1031.18.3963.2578 [GMT 2:00]
ausgeführt von:: c:\users\pc\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\pc\AppData\Local\assembly\tmp
c:\users\pc\AppData\Local\assembly\tmp\OR1C9OT1\__AssemblyInfo__.ini
c:\users\pc\AppData\Local\assembly\tmp\OR1C9OT1\HPWMPModule.DLL
c:\users\pc\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-04-22 bis 2014-05-22  ))))))))))))))))))))))))))))))
.
.
2014-05-22 06:27 . 2014-05-22 06:27	--------	d-----w-	c:\windows\ServiceProfiles\LocalService\winhttp
2014-05-22 06:25 . 2014-05-22 06:25	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-05-22 06:02 . 2014-05-22 06:02	--------	d-----w-	c:\program files (x86)\VS Revo Group
2014-05-21 20:58 . 2014-05-21 20:58	--------	d-----w-	c:\users\pc\AppData\Roaming\Avira
2014-05-21 20:55 . 2014-05-09 09:16	28600	----a-w-	c:\windows\system32\drivers\avkmgr.sys
2014-05-21 20:55 . 2014-05-09 09:16	130584	----a-w-	c:\windows\system32\drivers\avipbb.sys
2014-05-21 20:55 . 2014-05-09 09:16	112080	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2014-05-21 20:44 . 2014-05-21 20:55	--------	d-----w-	c:\program files (x86)\Avira
2014-05-21 20:44 . 2014-05-21 20:55	--------	d-----w-	c:\programdata\Avira
2014-05-21 20:13 . 2014-05-21 20:14	--------	d-----w-	C:\FRST
2014-05-16 15:53 . 2014-05-16 16:04	--------	d-----w-	c:\users\pc\AppData\Roaming\frogatto
2014-05-16 15:23 . 2012-12-18 17:22	39464	----a-w-	c:\windows\SysWow64\p5PSSavr.scr
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-01 16:00 . 2014-03-01 16:00	96168	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmazonMP3DownloaderHelper"="c:\users\pc\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe" [2013-05-22 400704]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2013-10-31 449760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"="c:\program files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" [2012-06-08 111120]
"CLVirtualDrive"="c:\program files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" [2012-07-02 491120]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"Avira Systray"="c:\program files (x86)\Avira\My Avira\Avira.OE.Systray.exe" [2014-05-14 183376]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-05-09 737872]
.
c:\users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
Launcher.lnk - c:\program files (x86)\3DataManager\3DataManager_Launcher.exe [2014-1-24 486344]
ShowDesktop.scf [2012-6-28 78]
Win8Starter.lnk - c:\program files (x86)\Engelmann Media\Win8Starter\Win8Starter.exe [2012-10-26 839040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R3 Impcd;Impcd;c:\windows\System32\drivers\Impcd.sys;c:\windows\SYSNATIVE\drivers\Impcd.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 zte_cpo;ZTE All Install;c:\windows\system32\DRIVERS\zte_cpo.sys;c:\windows\SYSNATIVE\DRIVERS\zte_cpo.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 Avira.OE.ServiceHost;Avira Service Host;c:\program files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe;c:\program files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
S2 HPConnectedRemote;HP Connected Remote Service;c:\program files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe;c:\program files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 WTGService;WTGService;c:\program files (x86)\3DataManager\WTGService.exe;c:\program files (x86)\3DataManager\WTGService.exe [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
S3 zte_cdc_acm;ZTE All CDC-ACM driver;c:\windows\system32\DRIVERS\zte_cdc_acm.sys;c:\windows\SYSNATIVE\DRIVERS\zte_cdc_acm.sys [x]
S3 zte_cdc_ecm;zte_cdc_ecm;c:\windows\system32\DRIVERS\zte_cdc_ecm.sys;c:\windows\SYSNATIVE\DRIVERS\zte_cdc_ecm.sys [x]
S3 zte_ecm_enum;ZTE All DC Enumerator;c:\windows\System32\drivers\zte_ecm_enum.sys;c:\windows\SYSNATIVE\drivers\zte_ecm_enum.sys [x]
S3 zte_ecm_enum_filter;zte_ecm_enum_filter;c:\windows\System32\drivers\zte_ecm_enum_filter.sys;c:\windows\SYSNATIVE\drivers\zte_ecm_enum_filter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
apphost	REG_MULTI_SZ   	apphostsvc
iissvcs	REG_MULTI_SZ   	w3svc was
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
2012-09-23 19:43	214664	----a-w-	c:\program files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-29 170304]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-29 440640]
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = https://www.google.at/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
TCP: Interfaces\{D6AE6DC2-53BF-4A17-90F8-08802AFE6113}: NameServer = 213.94.78.16 213.94.78.17
TCP: Interfaces\{E97B22F1-2A57-4489-A4FF-CA5EF99E1415}: NameServer = 213.94.78.17 213.94.78.16
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKLM-Run-PopularScreensavers_7i Browser Plugin Loader 64 - c:\progra~2\POPULA~2\bar\1.bin\7ibrmon64.exe
AddRemove-{FF27F674-821E-4BA2-985B-DDF539C2CD03} - c:\program files (x86)\InstallShield Installation Information\{FF27F674-821E-4BA2-985B-DDF539C2CD03}\setup.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-05-22  09:05:28 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-05-22 07:05
.
Vor Suchlauf: 14 Verzeichnis(se), 278*296*465*408 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 280*210*038*784 Bytes frei
.
- - End Of File - - 261FED8E78AEA9B75F07433C547BBA6C
5FB38429D5D77768867C76DCBDB35194
         


Gruß
Roman
__________________

Alt 23.05.2014, 10:47   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Trojaner: TR/Drop.Rotbrow.K.1'  - hoher Datentraffic - Standard

Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 23.05.2014, 22:48   #5
RomKa.
 
Trojaner: TR/Drop.Rotbrow.K.1'  - hoher Datentraffic - Standard

Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic



Danke, Schrauber für die Anleitungen. Hier die Logfiles:

mbam:

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 23.05.2014
Suchlauf-Zeit: 22:42:28
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.05.23.11
Rootkit Datenbank: v2014.05.21.01
Lizenz: Testversion
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Aktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 8
CPU: x64
Dateisystem: NTFS
Benutzer: pc

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 303466
Verstrichene Zeit: 17 Min, 51 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 6
PUP.Optional.Delta.A, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [5a7d470dcead4de9f0d1511140c2e917], 
PUP.Optional.Delta.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [5a7d470dcead4de9f0d1511140c2e917], 
PUP.Optional.DataMngr.A, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr_Toolbar, Löschen bei Neustart, [af28df75dd9e85b1e03e3685ca39d729], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, Löschen bei Neustart, [f8df490b36457fb7e155663f8c767090], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Löschen bei Neustart, [60770a4a5d1e0c2a6bd8d7e4d3307f81], 
PUP.Optional.BProtector.A, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\bProtectSettings, Löschen bei Neustart, [1fb8371da9d2979f35421da1e81bd42c], 

Registrierungswerte: 3
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0R0DtO0U1C1S1U1StR0J1Q2P1J1K1I2R, Löschen bei Neustart, [60770a4a5d1e0c2a6bd8d7e4d3307f81]
PUP.BProtector, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|bProtector Start Page, hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=204E0286EB47F1FE&affID=121565&tt=240913_246&tsp=5019, Löschen bei Neustart, [3b9c2133d1aa42f46bb5308b51b204fc]
PUP.BProtector, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|bProtectorDefaultScope, {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, Löschen bei Neustart, [34a3540008732016c0611d9e1ee537c9]

Registrierungsdaten: 3
PUP.Optional.Snapdo, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}, Gut: (hxxp://www.google.com), Schlecht: (hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}),Löschen bei Neustart,[f3e4490b1d5e43f37612ee67f2123ec2]
PUP.Optional.Snapdo, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}, Gut: (hxxp://www.google.com), Schlecht: (hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}),Löschen bei Neustart,[00d70153631891a5dfaabe9755af19e7]
PUP.Optional.SnapDo.A, HKU\S-1-5-21-1178855520-1670574489-2810800821-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}, Gut: (www.google.com), Schlecht: (hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBTU&co=AT&userid=f7868929-2ff2-77cb-c302-e33f22654fb7&searchtype=ds&q={searchTerms}&installDate={installDate}),Löschen bei Neustart,[f6e1480cccafeb4bca570c407f8552ae]

Ordner: 6
PUP.Optional.OpenCandy, C:\Users\pc\AppData\Roaming\OpenCandy, In Quarantäne, [8651b4a06a117db9714dc0b56c96a35d], 
PUP.Optional.OpenCandy, C:\Users\pc\AppData\Roaming\OpenCandy\249701F761A14299925929991D5B8EAC, In Quarantäne, [8651b4a06a117db9714dc0b56c96a35d], 
PUP.Optional.OpenCandy, C:\Users\pc\AppData\Roaming\OpenCandy\28E1B9DA21474A61A614B0FEE431118B, In Quarantäne, [8651b4a06a117db9714dc0b56c96a35d], 
PUP.Optional.OpenCandy, C:\Users\pc\AppData\Roaming\OpenCandy\5BB9B449CA3445429140F2FC8C047C75, In Quarantäne, [8651b4a06a117db9714dc0b56c96a35d], 
PUP.Optional.OpenCandy, C:\Users\pc\AppData\Roaming\OpenCandy\FB303F36EF6940A398A19C201C666D71, In Quarantäne, [8651b4a06a117db9714dc0b56c96a35d], 
PUP.Optional.OpenCandy, C:\Users\pc\AppData\Roaming\OpenCandy\OpenCandy_28E1B9DA21474A61A614B0FEE431118B, In Quarantäne, [8651b4a06a117db9714dc0b56c96a35d], 

Dateien: 9
PUP.Optional.Delta.A, C:\ProgramData\DSearchLink\DSearchLink.exe, In Quarantäne, [8f48a2b28dee7bbb82fa6fad679db947], 
PUP.Optional.Babylon.A, C:\Users\pc\AppData\Roaming\OpenCandy\249701F761A14299925929991D5B8EAC\DeltaTB.exe, In Quarantäne, [884fb1a3d2a9b482a8b37b8bb34e15eb], 
PUP.Optional.Linkury.A, C:\Users\pc\AppData\Roaming\OpenCandy\5BB9B449CA3445429140F2FC8C047C75\Installer.exe, In Quarantäne, [b324a3b12f4c979f36148c96857f6799], 
PUP.Optional.Spigot.A, C:\Users\pc\Downloads\zip.exe, In Quarantäne, [b3243e16097241f52209a77e9170f20e], 
PUP.Optional.OpenCandy, C:\Users\pc\Downloads\MyPhoneExplorer_Setup_1.8.4.exe, In Quarantäne, [8d4af85cb0cbef4788725623a85cd62a], 
PUP.Optional.MindSpark.A, C:\Users\pc\Downloads\PopularScreensavers.exe, In Quarantäne, [c21563f15625b87e5d514dda42c232ce], 
PUP.Optional.Softonic, C:\Users\pc\Downloads\SoftonicDownloader_fuer_free-youtube-to-mp3-converter.exe, In Quarantäne, [5186074d0a7137ff160b5ca94ab7837d], 
PUP.Optional.OpenCandy, C:\Users\pc\AppData\Roaming\OpenCandy\28E1B9DA21474A61A614B0FEE431118B\TuneUpUtilities2013_de-DE.exe, In Quarantäne, [8651b4a06a117db9714dc0b56c96a35d], 
PUP.Optional.OpenCandy, C:\Users\pc\AppData\Roaming\OpenCandy\FB303F36EF6940A398A19C201C666D71\Trial-14.0.1000.89_de-DE_1004727_AT-2.exe, In Quarantäne, [8651b4a06a117db9714dc0b56c96a35d], 

Physische Sektoren: 0
(No malicious items detected)


(end)
         


AdwCleaner:

Code:
ATTFilter
# AdwCleaner v3.210 - Bericht erstellt am 23/05/2014 um 23:11:44
# Aktualisiert 19/05/2014 von Xplode
# Betriebssystem : Windows 8  (64 bits)
# Benutzername : pc - UNSER-PC
# Gestartet von : C:\Users\pc\Desktop\adwcleaner_3.210.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\BitGuard
Ordner Gelöscht : C:\ProgramData\DSearchLink
Ordner Gelöscht : C:\Users\pc\AppData\LocalLow\Softonic
Ordner Gelöscht : C:\Users\pc\AppData\Roaming\BabSolution
Ordner Gelöscht : C:\Users\pc\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Ordner Gelöscht : C:\Users\pc\Documents\PC Speed Maximizer
Datei Gelöscht : C:\windows\SysWOW64\p5PSSavr.scr

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gelöscht : HKCU\Software\596da8ce76ebe14
Schlüssel Gelöscht : HKLM\SOFTWARE\596da8ce76ebe14
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Schlüssel Gelöscht : HKLM\Software\DataMngr

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16384


*************************

AdwCleaner[R0].txt - [2802 octets] - [23/05/2014 23:09:50]
AdwCleaner[S0].txt - [2463 octets] - [23/05/2014 23:11:44]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2523 octets] ##########
         


JRT:

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 x64
Ran by pc on 23.05.2014 at 23:17:37,75
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1178855520-1670574489-2810800821-1001\Software\sweetim



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\pc\appdata\locallow\popularscreensavers_7i"
Successfully deleted: [Folder] "C:\Users\pc\appdata\locallow\popularscreensavers_7iei"
Successfully deleted: [Empty Folder] C:\Users\pc\appdata\local\{1CC45653-C2DF-4479-83C7-B868BD8A8306}
Successfully deleted: [Empty Folder] C:\Users\pc\appdata\local\{857DABF1-9155-431D-A225-7B3A05643915}
Successfully deleted: [Empty Folder] C:\Users\pc\appdata\local\{B5E59D13-6BB5-4A00-828C-5B5E89F9590B}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.05.2014 at 23:22:09,71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         


FRST:


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-05-2014
Ran by pc (administrator) on UNSER-PC on 23-05-2014 23:42:49
Running from C:\Users\pc\Desktop
Platform: Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
() C:\Program Files (x86)\3DataManager\WTGService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Engelmann Media) C:\Program Files (x86)\Engelmann Media\Win8Starter\Win8Starter.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(WebToGo Mobile Internet GmbH) C:\Program Files (x86)\3DataManager\3DataManager.exe
() C:\Program Files (x86)\3DataManager\3DataManager_Launcher.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [183376 2014-05-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [737872 2014-05-09] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1178855520-1670574489-2810800821-1001\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\pc\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKU\S-1-5-21-1178855520-1670574489-2810800821-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk
ShortcutTarget: Launcher.lnk -> C:\Program Files (x86)\3DataManager\3DataManager_Launcher.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ShowDesktop.scf ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Win8Starter.lnk
ShortcutTarget: Win8Starter.lnk -> C:\Program Files (x86)\Engelmann Media\Win8Starter\Win8Starter.exe (Engelmann Media)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/CQCON13/12
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQCON13/12
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/CQCON13/12
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPDTDFJS
SearchScopes: HKLM - {90E06257-D54F-4973-88F6-45AACC59DED2} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5221-29880-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {90E06257-D54F-4973-88F6-45AACC59DED2} URL = 
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = 
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Tcpip\..\Interfaces\{D6AE6DC2-53BF-4A17-90F8-08802AFE6113}: [NameServer]213.94.78.17 213.94.78.16
Tcpip\..\Interfaces\{E97B22F1-2A57-4489-A4FF-CA5EF99E1415}: [NameServer]213.94.78.17 213.94.78.16

FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Users\pc\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-05-27] (Adobe Systems)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-05-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-05-09] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [123984 2014-05-14] (Avira Operations GmbH & Co. KG)
R2 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)
R2 WTGService; C:\Program Files (x86)\3DataManager\WTGService.exe [327680 2010-12-23] ()

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [30208 2012-07-26] (Microsoft Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [112080 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [130584 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-05-23] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 zte_cdc_acm; C:\Windows\system32\DRIVERS\zte_cdc_acm.sys [78336 2010-12-20] (ZTE)
R3 zte_cdc_ecm; C:\Windows\system32\DRIVERS\zte_cdc_ecm.sys [52224 2010-12-20] (ZTE)
S3 zte_cpo; C:\Windows\system32\DRIVERS\zte_cpo.sys [14336 2010-12-20] (ZTE)
R3 zte_ecm_enum; C:\Windows\System32\drivers\zte_ecm_enum.sys [53248 2010-12-20] (ZTE)
R3 zte_ecm_enum_filter; C:\Windows\System32\drivers\zte_ecm_enum_filter.sys [53248 2010-12-20] (ZTE)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-23 23:40 - 2014-05-23 23:40 - 00000117 _____ () C:\windows\system32\netcfg-1665875.txt
2014-05-23 23:22 - 2014-05-23 23:22 - 00001284 _____ () C:\Users\pc\Desktop\JRT.txt
2014-05-23 23:17 - 2014-05-23 23:17 - 00000000 ____D () C:\windows\ERUNT
2014-05-23 23:16 - 2014-05-23 23:16 - 01016261 _____ (Thisisu) C:\Users\pc\Desktop\JRT.exe
2014-05-23 23:16 - 2014-05-23 23:16 - 00000117 _____ () C:\windows\system32\netcfg-254234.txt
2014-05-23 23:12 - 2014-05-23 23:12 - 00000117 _____ () C:\windows\system32\netcfg-585234.txt
2014-05-23 23:09 - 2014-05-23 23:11 - 00000000 ____D () C:\AdwCleaner
2014-05-23 23:09 - 2014-05-23 23:09 - 01326389 _____ () C:\Users\pc\Desktop\adwcleaner_3.210.exe
2014-05-23 23:05 - 2014-05-23 23:05 - 00000117 _____ () C:\windows\system32\netcfg-185781.txt
2014-05-23 23:02 - 2014-05-23 23:02 - 00000117 _____ () C:\windows\system32\netcfg-138994328.txt
2014-05-23 23:01 - 2014-05-23 23:01 - 00007025 _____ () C:\Users\pc\Desktop\mbam.txt
2014-05-23 22:41 - 2014-05-23 23:14 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-23 22:41 - 2014-05-23 22:41 - 00001108 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-23 22:41 - 2014-05-23 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-23 22:41 - 2014-05-23 22:41 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-23 22:41 - 2014-05-23 22:41 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-23 22:41 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-05-23 22:41 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-05-23 22:41 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-05-23 22:31 - 2014-05-23 22:32 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\pc\Desktop\mbam-setup-2.0.2.1012.exe
2014-05-23 21:42 - 2014-05-23 21:57 - 00000000 ____D () C:\Users\pc\Documents\___Wichtiges
2014-05-23 19:39 - 2014-05-23 19:39 - 00000117 _____ () C:\windows\system32\netcfg-126800437.txt
2014-05-23 19:34 - 2014-05-23 19:34 - 00000117 _____ () C:\windows\system32\netcfg-126488390.txt
2014-05-23 18:39 - 2014-05-23 18:39 - 00000117 _____ () C:\windows\system32\netcfg-123197125.txt
2014-05-23 18:39 - 2014-05-23 18:39 - 00000117 _____ () C:\windows\system32\netcfg-123197062.txt
2014-05-23 18:39 - 2014-05-23 18:39 - 00000117 _____ () C:\windows\system32\netcfg-123194046.txt
2014-05-22 20:27 - 2014-05-22 20:27 - 00000117 _____ () C:\windows\system32\netcfg-43316046.txt
2014-05-22 20:10 - 2014-05-22 20:10 - 00000117 _____ () C:\windows\system32\netcfg-42255859.txt
2014-05-22 09:30 - 2014-05-22 09:30 - 00000117 _____ () C:\windows\system32\netcfg-3862562.txt
2014-05-22 09:13 - 2014-05-22 09:13 - 00000117 _____ () C:\windows\system32\netcfg-2839171.txt
2014-05-22 09:13 - 2014-05-22 09:13 - 00000117 _____ () C:\windows\system32\netcfg-2839125.txt
2014-05-22 09:13 - 2014-05-22 09:13 - 00000117 _____ () C:\windows\system32\netcfg-2836125.txt
2014-05-22 09:05 - 2014-05-22 09:05 - 00010988 _____ () C:\ComboFix.txt
2014-05-22 08:20 - 2014-05-22 09:05 - 00000000 ____D () C:\Qoobox
2014-05-22 08:20 - 2014-05-22 09:03 - 00000000 ____D () C:\windows\erdnt
2014-05-22 08:20 - 2011-06-26 08:45 - 00256000 _____ () C:\windows\PEV.exe
2014-05-22 08:20 - 2010-11-07 19:20 - 00208896 _____ () C:\windows\MBR.exe
2014-05-22 08:20 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\windows\NIRCMD.exe
2014-05-22 08:20 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\windows\SWREG.exe
2014-05-22 08:20 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\windows\SWSC.exe
2014-05-22 08:20 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\windows\SWXCACLS.exe
2014-05-22 08:20 - 2000-08-31 02:00 - 00098816 _____ () C:\windows\sed.exe
2014-05-22 08:20 - 2000-08-31 02:00 - 00080412 _____ () C:\windows\grep.exe
2014-05-22 08:20 - 2000-08-31 02:00 - 00068096 _____ () C:\windows\zip.exe
2014-05-22 08:18 - 2014-05-22 08:18 - 00000117 _____ () C:\windows\system32\netcfg-2101609.txt
2014-05-22 08:17 - 2014-05-22 08:17 - 05200426 ____R (Swearware) C:\Users\pc\Desktop\ComboFix.exe
2014-05-22 08:02 - 2014-05-22 08:02 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\pc\Desktop\revosetup95.exe
2014-05-22 08:02 - 2014-05-22 08:02 - 00001270 _____ () C:\Users\pc\Desktop\Revo Uninstaller.lnk
2014-05-22 08:02 - 2014-05-22 08:02 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-22 07:48 - 2014-05-22 07:48 - 00000117 _____ () C:\windows\system32\netcfg-281921.txt
2014-05-21 23:29 - 2014-05-21 23:29 - 00000117 _____ () C:\windows\system32\netcfg-2958062.txt
2014-05-21 22:58 - 2014-05-21 22:58 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Avira
2014-05-21 22:55 - 2014-05-09 11:16 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avipbb.sys
2014-05-21 22:55 - 2014-05-09 11:16 - 00112080 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avgntflt.sys
2014-05-21 22:55 - 2014-05-09 11:16 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avkmgr.sys
2014-05-21 22:45 - 2014-05-21 22:45 - 00000117 _____ () C:\windows\system32\netcfg-306343.txt
2014-05-21 22:45 - 2014-05-21 22:45 - 00000117 _____ () C:\windows\system32\netcfg-277281.txt
2014-05-21 22:44 - 2014-05-21 22:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-05-21 22:44 - 2014-05-21 22:55 - 00000000 ____D () C:\ProgramData\Avira
2014-05-21 22:44 - 2014-05-21 22:55 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-05-21 22:44 - 2014-05-21 22:44 - 00001139 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-05-21 22:42 - 2014-05-21 22:43 - 04536336 _____ (Avira Operations GmbH & Co. KG) C:\Users\pc\Downloads\avira_de_av___ws.exe
2014-05-21 22:41 - 2014-05-21 22:41 - 00000117 _____ () C:\windows\system32\netcfg-93890.txt
2014-05-21 22:41 - 2014-05-21 22:41 - 00000117 _____ () C:\windows\system32\netcfg-93843.txt
2014-05-21 22:41 - 2014-05-21 22:41 - 00000117 _____ () C:\windows\system32\netcfg-91453.txt
2014-05-21 22:37 - 2014-05-21 22:37 - 00000117 _____ () C:\windows\system32\netcfg-7943125.txt
2014-05-21 22:26 - 2014-05-21 22:26 - 00000117 _____ () C:\windows\system32\netcfg-7308656.txt
2014-05-21 22:26 - 2014-05-21 22:26 - 00000117 _____ () C:\windows\system32\netcfg-7308625.txt
2014-05-21 22:26 - 2014-05-21 22:26 - 00000117 _____ () C:\windows\system32\netcfg-7305765.txt
2014-05-21 22:23 - 2014-05-21 22:23 - 00004994 _____ () C:\Users\pc\Desktop\Gmer.txt
2014-05-21 22:18 - 2014-05-21 22:18 - 00380416 _____ () C:\Users\pc\Desktop\Gmer-19357.exe
2014-05-21 22:18 - 2014-05-21 22:18 - 00000117 _____ () C:\windows\system32\netcfg-6826718.txt
2014-05-21 22:14 - 2014-05-21 22:14 - 00030195 _____ () C:\Users\pc\Desktop\Addition.txt
2014-05-21 22:13 - 2014-05-23 23:42 - 00013196 _____ () C:\Users\pc\Desktop\FRST.txt
2014-05-21 22:13 - 2014-05-23 23:42 - 00000000 ____D () C:\FRST
2014-05-21 22:11 - 2014-05-21 22:12 - 02067456 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2014-05-21 22:09 - 2014-05-21 22:09 - 00000466 _____ () C:\Users\pc\Desktop\defogger_disable.log
2014-05-21 22:09 - 2014-05-21 22:09 - 00000000 _____ () C:\Users\pc\defogger_reenable
2014-05-21 22:08 - 2014-05-21 22:08 - 00050477 _____ () C:\Users\pc\Desktop\Defogger.exe
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5282484.txt
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5282437.txt
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5279390.txt
2014-05-21 21:37 - 2014-05-21 21:37 - 00000117 _____ () C:\windows\system32\netcfg-4336937.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4268109.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4268046.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4265015.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4245109.txt
2014-05-21 21:32 - 2014-05-21 21:32 - 00000117 _____ () C:\windows\system32\netcfg-4079328.txt
2014-05-18 23:39 - 2014-05-18 23:39 - 00000117 _____ () C:\windows\system32\netcfg-16858531.txt
2014-05-18 23:37 - 2014-05-18 23:37 - 00000117 _____ () C:\windows\system32\netcfg-16758921.txt
2014-05-18 23:37 - 2014-05-18 23:37 - 00000117 _____ () C:\windows\system32\netcfg-16722421.txt
2014-05-18 23:36 - 2014-05-18 23:36 - 00000117 _____ () C:\windows\system32\netcfg-16681562.txt
2014-05-18 22:29 - 2014-05-18 22:29 - 00000117 _____ () C:\windows\system32\netcfg-12654984.txt
2014-05-18 22:25 - 2014-05-18 22:25 - 00000117 _____ () C:\windows\system32\netcfg-12422515.txt
2014-05-18 20:18 - 2014-05-18 20:18 - 00000117 _____ () C:\windows\system32\netcfg-4795562.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4648281.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4648234.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4645171.txt
2014-05-18 20:14 - 2014-05-18 20:14 - 00000117 _____ () C:\windows\system32\netcfg-4589640.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3890546.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3890500.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3887437.txt
2014-05-18 19:53 - 2014-05-18 19:53 - 00000117 _____ () C:\windows\system32\netcfg-3296156.txt
2014-05-18 19:00 - 2014-05-18 19:00 - 00000117 _____ () C:\windows\system32\netcfg-108656.txt
2014-05-17 23:31 - 2014-05-17 23:31 - 00000117 _____ () C:\windows\system32\netcfg-23217140.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9798109.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9798062.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9795078.txt
2014-05-17 16:57 - 2014-05-17 16:57 - 00000117 _____ () C:\windows\system32\netcfg-3821921.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1574718.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1574671.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1571640.txt
2014-05-17 16:18 - 2014-05-17 16:18 - 00000117 _____ () C:\windows\system32\netcfg-1529187.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-984593.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-984546.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-981875.txt
2014-05-17 13:57 - 2014-05-17 13:57 - 00000117 _____ () C:\windows\system32\netcfg-11853578.txt
2014-05-17 13:02 - 2014-05-17 13:02 - 01280956 _____ () C:\Users\pc\Downloads\happy_install (1).exe
2014-05-17 13:00 - 2014-05-17 13:00 - 01280956 _____ () C:\Users\pc\Downloads\happy_install.exe
2014-05-17 13:00 - 2014-05-17 13:00 - 00686664 _____ ( ) C:\Users\pc\Downloads\COMPUTER_BILD-Download-Manager_fuer_happy_install.exe
2014-05-17 13:00 - 2014-05-17 13:00 - 00000000 ____D () C:\ProgramData\Real
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8350687.txt
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8350640.txt
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8347656.txt
2014-05-17 11:41 - 2014-05-17 11:41 - 00000117 _____ () C:\windows\system32\netcfg-3699468.txt
2014-05-17 10:42 - 2014-05-17 10:42 - 00000117 _____ () C:\windows\system32\netcfg-128171.txt
2014-05-17 10:42 - 2014-05-17 10:42 - 00000117 _____ () C:\windows\system32\netcfg-128125.txt
2014-05-16 18:41 - 2014-05-16 18:41 - 00000117 _____ () C:\windows\system32\netcfg-12939687.txt
2014-05-16 17:53 - 2014-05-16 18:04 - 00000000 ____D () C:\Users\pc\AppData\Roaming\frogatto
2014-05-16 17:31 - 2014-05-16 17:52 - 238280554 _____ ( ) C:\Users\pc\Downloads\frogatto-setup-i386-1.3.exe
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7997171.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7997125.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7994078.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000000 ____D () C:\windows\System32\Tasks\Games
2014-05-16 16:49 - 2014-05-16 16:49 - 00000117 _____ () C:\windows\system32\netcfg-6211562.txt
2014-05-16 16:25 - 2014-05-16 16:25 - 00000117 _____ () C:\windows\system32\netcfg-4769218.txt
2014-05-16 12:13 - 2014-05-16 12:13 - 00000117 _____ () C:\windows\system32\netcfg-145462125.txt
2014-05-16 12:06 - 2014-05-16 12:06 - 00000117 _____ () C:\windows\system32\netcfg-145060375.txt
2014-05-15 22:48 - 2014-05-15 22:48 - 00000117 _____ () C:\windows\system32\netcfg-97160812.txt
2014-05-15 20:27 - 2014-05-15 20:27 - 00000117 _____ () C:\windows\system32\netcfg-88736687.txt
2014-05-15 20:24 - 2014-05-15 20:24 - 00000117 _____ () C:\windows\system32\netcfg-88574140.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81132218.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81132187.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81129125.txt
2014-05-15 08:59 - 2014-05-15 08:59 - 00000117 _____ () C:\windows\system32\netcfg-47438640.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41862046.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41862015.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41859031.txt
2014-05-14 07:52 - 2014-05-14 07:52 - 00000117 _____ () C:\windows\system32\netcfg-993171.txt
2014-05-14 07:50 - 2014-05-14 07:50 - 00000117 _____ () C:\windows\system32\netcfg-877093.txt
2014-05-14 07:36 - 2014-05-14 07:36 - 00000117 _____ () C:\windows\system32\netcfg-30562.txt
2014-05-13 20:32 - 2014-05-13 20:32 - 00000117 _____ () C:\windows\system32\netcfg-1341343.txt
2014-05-13 09:27 - 2014-05-13 09:27 - 00000117 _____ () C:\windows\system32\netcfg-2614656.txt
2014-05-13 08:51 - 2014-05-13 08:51 - 00000117 _____ () C:\windows\system32\netcfg-488375.txt
2014-05-12 22:00 - 2014-05-12 22:00 - 00000117 _____ () C:\windows\system32\netcfg-10696125.txt
2014-05-12 21:06 - 2014-05-12 21:06 - 00000117 _____ () C:\windows\system32\netcfg-7407687.txt
2014-05-12 20:54 - 2014-05-12 20:54 - 00000117 _____ () C:\windows\system32\netcfg-6698703.txt
2014-05-12 19:37 - 2014-05-12 19:37 - 00000117 _____ () C:\windows\system32\netcfg-2071671.txt
2014-05-12 08:51 - 2014-05-12 08:51 - 00000117 _____ () C:\windows\system32\netcfg-172394671.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171068234.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171068187.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171065171.txt
2014-05-11 23:36 - 2014-05-11 23:36 - 00000117 _____ () C:\windows\system32\netcfg-139134984.txt
2014-05-11 22:08 - 2014-05-11 22:08 - 00000117 _____ () C:\windows\system32\netcfg-133843265.txt
2014-05-11 20:00 - 2014-05-11 20:00 - 00000117 _____ () C:\windows\system32\netcfg-126150031.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121939875.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121939828.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121936812.txt
2014-05-10 23:18 - 2014-05-10 23:18 - 00000117 _____ () C:\windows\system32\netcfg-51647718.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48739671.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48739640.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48736562.txt
2014-05-10 09:34 - 2014-05-10 09:34 - 00000117 _____ () C:\windows\system32\netcfg-2213687.txt
2014-05-10 09:01 - 2014-05-10 09:01 - 00000117 _____ () C:\windows\system32\netcfg-234109.txt
2014-05-09 21:49 - 2014-05-09 21:49 - 00000117 _____ () C:\windows\system32\netcfg-3798406.txt
2014-05-09 21:03 - 2014-05-09 21:03 - 00000117 _____ () C:\windows\system32\netcfg-1009000.txt
2014-05-09 21:01 - 2014-05-09 21:01 - 00000117 _____ () C:\windows\system32\netcfg-902328.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-153234.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-153203.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-150375.txt
2014-05-09 09:29 - 2014-05-09 09:29 - 00000117 _____ () C:\windows\system32\netcfg-1040968.txt
2014-05-09 09:13 - 2014-05-09 09:13 - 00000117 _____ () C:\windows\system32\netcfg-98062.txt
2014-05-09 09:13 - 2014-05-09 09:13 - 00000117 _____ () C:\windows\system32\netcfg-98031.txt
2014-05-09 07:31 - 2014-05-09 07:31 - 00000117 _____ () C:\windows\system32\netcfg-45098687.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44826484.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44826453.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44823421.txt
2014-05-08 19:44 - 2014-05-08 19:44 - 00000117 _____ () C:\windows\system32\netcfg-2677718.txt
2014-05-08 19:02 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-114046.txt
2014-05-08 19:02 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-114015.txt
2014-05-08 19:01 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-111187.txt
2014-05-08 11:40 - 2014-05-08 11:40 - 00000117 _____ () C:\windows\system32\netcfg-2910265.txt
2014-05-08 11:05 - 2014-05-08 11:05 - 00000117 _____ () C:\windows\system32\netcfg-792484.txt
2014-05-07 21:39 - 2014-05-07 21:39 - 00000117 _____ () C:\windows\system32\netcfg-5929406.txt
2014-05-07 20:23 - 2014-05-07 20:23 - 00000117 _____ () C:\windows\system32\netcfg-1385093.txt
2014-05-07 11:21 - 2014-05-07 11:21 - 00000117 _____ () C:\windows\system32\netcfg-9943078.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-397968.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-397937.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-394937.txt
2014-05-07 08:31 - 2014-05-07 08:31 - 00000117 _____ () C:\windows\system32\netcfg-41590250.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-41000406.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-41000328.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-40997468.txt
2014-05-06 21:58 - 2014-05-06 21:58 - 00000117 _____ () C:\windows\system32\netcfg-3608078.txt
2014-05-06 21:13 - 2014-05-06 21:13 - 00000117 _____ () C:\windows\system32\netcfg-898515.txt
2014-05-06 08:21 - 2014-05-06 08:21 - 00000117 _____ () C:\windows\system32\netcfg-2788296.txt
2014-05-06 07:36 - 2014-05-06 07:36 - 00000117 _____ () C:\windows\system32\netcfg-96812.txt
2014-05-06 07:36 - 2014-05-06 07:36 - 00000117 _____ () C:\windows\system32\netcfg-94109.txt
2014-05-05 19:14 - 2014-05-05 19:14 - 00000117 _____ () C:\windows\system32\netcfg-1109046.txt
2014-05-05 18:57 - 2014-05-05 18:57 - 00000117 _____ () C:\windows\system32\netcfg-87843.txt
2014-05-05 18:57 - 2014-05-05 18:57 - 00000117 _____ () C:\windows\system32\netcfg-87812.txt
2014-05-04 17:08 - 2014-05-04 17:08 - 00000117 _____ () C:\windows\system32\netcfg-312968.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-92359.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-92312.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-89500.txt
2014-05-04 08:34 - 2014-05-04 08:34 - 00000117 _____ () C:\windows\system32\netcfg-590031.txt
2014-05-04 08:26 - 2014-05-04 08:26 - 00000117 _____ () C:\windows\system32\netcfg-116343.txt
2014-05-03 20:14 - 2014-05-03 20:14 - 00000117 _____ () C:\windows\system32\netcfg-10217578.txt
2014-05-03 19:08 - 2014-05-03 19:22 - 49560580 _____ () C:\Users\pc\Downloads\Heilpflanzen.zip
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2013171.txt
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2013140.txt
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2010140.txt
2014-05-03 07:56 - 2014-05-03 07:56 - 00000117 _____ () C:\windows\system32\netcfg-680234.txt
2014-05-03 07:46 - 2014-05-03 07:46 - 00000117 _____ () C:\windows\system32\netcfg-92375.txt
2014-05-02 20:25 - 2014-05-02 20:25 - 00000117 _____ () C:\windows\system32\netcfg-2527031.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-518625.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-518593.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-515562.txt
2014-05-02 08:51 - 2014-05-02 08:51 - 00000117 _____ () C:\windows\system32\netcfg-2784453.txt
2014-05-02 08:06 - 2014-05-02 08:06 - 00000117 _____ () C:\windows\system32\netcfg-97906.txt
2014-05-02 08:06 - 2014-05-02 08:06 - 00000117 _____ () C:\windows\system32\netcfg-94921.txt
2014-05-01 22:45 - 2014-05-01 22:45 - 00000117 _____ () C:\windows\system32\netcfg-20648828.txt
2014-05-01 22:22 - 2014-05-01 22:22 - 00000117 _____ () C:\windows\system32\netcfg-19243171.txt
2014-05-01 22:15 - 2014-05-01 22:15 - 00000117 _____ () C:\windows\system32\netcfg-18841640.txt
2014-05-01 20:45 - 2014-05-01 20:45 - 00000117 _____ () C:\windows\system32\netcfg-13450718.txt
2014-05-01 20:28 - 2014-05-01 20:28 - 00000117 _____ () C:\windows\system32\netcfg-12419140.txt
2014-05-01 20:06 - 2014-05-01 20:06 - 00000117 _____ () C:\windows\system32\netcfg-11102265.txt
2014-05-01 19:44 - 2014-05-01 19:44 - 00000117 _____ () C:\windows\system32\netcfg-9774078.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6953875.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6953828.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6950765.txt
2014-05-01 18:56 - 2014-05-01 18:56 - 00000117 _____ () C:\windows\system32\netcfg-6904906.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4890781.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4890734.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4887687.txt
2014-04-30 20:57 - 2014-04-30 20:57 - 00000117 _____ () C:\windows\system32\netcfg-8475218.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8386140.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8383109.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8383046.txt
2014-04-30 19:24 - 2014-04-30 19:24 - 00000117 _____ () C:\windows\system32\netcfg-2889218.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-94968.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-94937.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-91921.txt
2014-04-30 09:46 - 2014-04-30 09:46 - 00000117 _____ () C:\windows\system32\netcfg-5401640.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4662546.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4662500.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4659453.txt
2014-04-30 08:47 - 2014-04-30 08:47 - 00000117 _____ () C:\windows\system32\netcfg-1898218.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-109421.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-109390.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-106843.txt
2014-04-29 22:17 - 2014-04-29 22:17 - 00000117 _____ () C:\windows\system32\netcfg-22920703.txt
2014-04-29 22:15 - 2014-04-29 22:15 - 00000117 _____ () C:\windows\system32\netcfg-22804187.txt
2014-04-29 22:15 - 2014-04-29 22:15 - 00000117 _____ () C:\windows\system32\netcfg-22792343.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19163796.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19163750.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19161250.txt
2014-04-29 15:55 - 2014-04-29 15:56 - 00283072 _____ () C:\windows\Minidump\042914-20343-01.dmp
2014-04-29 09:10 - 2014-04-29 09:10 - 00000117 _____ () C:\windows\system32\netcfg-919234.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-375203.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-375171.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-372750.txt
2014-04-27 22:21 - 2014-04-27 22:21 - 00000117 _____ () C:\windows\system32\netcfg-5867015.txt
2014-04-27 20:45 - 2014-04-27 20:45 - 00000117 _____ () C:\windows\system32\netcfg-104843.txt
2014-04-27 20:45 - 2014-04-27 20:45 - 00000117 _____ () C:\windows\system32\netcfg-104812.txt
2014-04-26 16:37 - 2014-04-26 16:37 - 00000117 _____ () C:\windows\system32\netcfg-1094718.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-196343.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-196296.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-193718.txt
2014-04-26 10:46 - 2014-04-26 10:46 - 00000117 _____ () C:\windows\system32\netcfg-7238937.txt
2014-04-26 10:19 - 2014-04-26 10:19 - 00000117 _____ () C:\windows\system32\netcfg-5627296.txt
2014-04-26 10:19 - 2014-04-26 10:19 - 00000117 _____ () C:\windows\system32\netcfg-5618531.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-400765.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-400718.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-397812.txt
2014-04-25 23:28 - 2014-04-25 23:28 - 00000117 _____ () C:\windows\system32\netcfg-57452343.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50666921.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50666859.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50663875.txt
2014-04-25 20:59 - 2014-04-25 20:59 - 00000117 _____ () C:\windows\system32\netcfg-48566671.txt
2014-04-25 18:37 - 2014-04-25 18:37 - 00000117 _____ () C:\windows\system32\netcfg-40031375.txt
2014-04-25 18:36 - 2014-04-25 18:36 - 00000117 _____ () C:\windows\system32\netcfg-39985843.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39405484.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39405437.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39402406.txt
2014-04-25 12:37 - 2014-04-25 12:37 - 00000117 _____ () C:\windows\system32\netcfg-18393875.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11289750.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11289703.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11286625.txt
2014-04-25 10:37 - 2014-04-25 10:37 - 00000117 _____ () C:\windows\system32\netcfg-11244859.txt
2014-04-25 10:02 - 2014-04-25 10:02 - 00000117 _____ () C:\windows\system32\netcfg-9136140.txt
2014-04-25 09:54 - 2014-04-25 09:54 - 00000117 _____ () C:\windows\system32\netcfg-8618906.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-844359.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-844328.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-841265.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-803984.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-777015.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-765484.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-206390.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-206359.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-203781.txt
2014-04-24 23:03 - 2014-04-24 23:03 - 00000117 _____ () C:\windows\system32\netcfg-46910937.txt
2014-04-24 19:37 - 2014-04-24 19:38 - 00000117 _____ () C:\windows\system32\netcfg-34558296.txt
2014-04-24 19:14 - 2014-04-24 19:14 - 00000117 _____ () C:\windows\system32\netcfg-33152109.txt
2014-04-24 18:36 - 2014-04-24 18:36 - 00000117 _____ () C:\windows\system32\netcfg-30881656.txt
2014-04-24 17:54 - 2014-04-24 17:54 - 00000117 _____ () C:\windows\system32\netcfg-28353828.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26074093.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26074046.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26071109.txt
2014-04-24 13:29 - 2014-04-24 13:29 - 00000117 _____ () C:\windows\system32\netcfg-12452984.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11158578.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11158484.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11155437.txt
2014-04-24 12:22 - 2014-04-24 12:22 - 00000117 _____ () C:\windows\system32\netcfg-8403921.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-126718.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-126687.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-124046.txt
2014-04-23 19:19 - 2014-04-23 19:19 - 00000117 _____ () C:\windows\system32\netcfg-3470734.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1912218.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1912171.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1909171.txt
2014-04-23 14:46 - 2014-04-23 14:46 - 00000117 _____ () C:\windows\system32\netcfg-2567656.txt
2014-04-23 14:05 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-95453.txt
2014-04-23 14:05 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-95406.txt
2014-04-23 14:04 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-92406.txt
2014-04-23 09:53 - 2014-04-23 09:53 - 00000117 _____ () C:\windows\system32\netcfg-3132718.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-209203.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-209171.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-206500.txt

==================== One Month Modified Files and Folders =======

2014-05-23 23:43 - 2014-05-21 22:13 - 00013196 _____ () C:\Users\pc\Desktop\FRST.txt
2014-05-23 23:42 - 2014-05-21 22:13 - 00000000 ____D () C:\FRST
2014-05-23 23:40 - 2014-05-23 23:40 - 00000117 _____ () C:\windows\system32\netcfg-1665875.txt
2014-05-23 23:40 - 2014-01-24 08:45 - 00000000 ____D () C:\Users\pc\AppData\Roaming\3DataManager
2014-05-23 23:29 - 2012-12-06 15:27 - 01135294 _____ () C:\windows\WindowsUpdate.log
2014-05-23 23:22 - 2014-05-23 23:22 - 00001284 _____ () C:\Users\pc\Desktop\JRT.txt
2014-05-23 23:20 - 2012-11-04 08:33 - 00749072 _____ () C:\windows\system32\perfh007.dat
2014-05-23 23:20 - 2012-11-04 08:33 - 00170498 _____ () C:\windows\system32\perfc007.dat
2014-05-23 23:20 - 2012-07-26 09:28 - 01761256 _____ () C:\windows\system32\PerfStringBackup.INI
2014-05-23 23:17 - 2014-05-23 23:17 - 00000000 ____D () C:\windows\ERUNT
2014-05-23 23:16 - 2014-05-23 23:16 - 01016261 _____ (Thisisu) C:\Users\pc\Desktop\JRT.exe
2014-05-23 23:16 - 2014-05-23 23:16 - 00000117 _____ () C:\windows\system32\netcfg-254234.txt
2014-05-23 23:14 - 2014-05-23 22:41 - 00122584 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-23 23:13 - 2012-07-26 09:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-05-23 23:12 - 2014-05-23 23:12 - 00000117 _____ () C:\windows\system32\netcfg-585234.txt
2014-05-23 23:12 - 2012-08-01 19:02 - 00836602 _____ () C:\windows\PFRO.log
2014-05-23 23:11 - 2014-05-23 23:09 - 00000000 ____D () C:\AdwCleaner
2014-05-23 23:09 - 2014-05-23 23:09 - 01326389 _____ () C:\Users\pc\Desktop\adwcleaner_3.210.exe
2014-05-23 23:05 - 2014-05-23 23:05 - 00000117 _____ () C:\windows\system32\netcfg-185781.txt
2014-05-23 23:02 - 2014-05-23 23:02 - 00000117 _____ () C:\windows\system32\netcfg-138994328.txt
2014-05-23 23:01 - 2014-05-23 23:01 - 00007025 _____ () C:\Users\pc\Desktop\mbam.txt
2014-05-23 23:00 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\system32\sru
2014-05-23 22:41 - 2014-05-23 22:41 - 00001108 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-23 22:41 - 2014-05-23 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-23 22:41 - 2014-05-23 22:41 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-23 22:41 - 2014-05-23 22:41 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-23 22:32 - 2014-05-23 22:31 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\pc\Desktop\mbam-setup-2.0.2.1012.exe
2014-05-23 21:57 - 2014-05-23 21:42 - 00000000 ____D () C:\Users\pc\Documents\___Wichtiges
2014-05-23 19:39 - 2014-05-23 19:39 - 00000117 _____ () C:\windows\system32\netcfg-126800437.txt
2014-05-23 19:34 - 2014-05-23 19:34 - 00000117 _____ () C:\windows\system32\netcfg-126488390.txt
2014-05-23 18:39 - 2014-05-23 18:39 - 00000117 _____ () C:\windows\system32\netcfg-123197125.txt
2014-05-23 18:39 - 2014-05-23 18:39 - 00000117 _____ () C:\windows\system32\netcfg-123197062.txt
2014-05-23 18:39 - 2014-05-23 18:39 - 00000117 _____ () C:\windows\system32\netcfg-123194046.txt
2014-05-22 20:27 - 2014-05-22 20:27 - 00000117 _____ () C:\windows\system32\netcfg-43316046.txt
2014-05-22 20:10 - 2014-05-22 20:10 - 00000117 _____ () C:\windows\system32\netcfg-42255859.txt
2014-05-22 09:30 - 2014-05-22 09:30 - 00000117 _____ () C:\windows\system32\netcfg-3862562.txt
2014-05-22 09:24 - 2012-12-06 15:35 - 00003600 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1178855520-1670574489-2810800821-1001
2014-05-22 09:13 - 2014-05-22 09:13 - 00000117 _____ () C:\windows\system32\netcfg-2839171.txt
2014-05-22 09:13 - 2014-05-22 09:13 - 00000117 _____ () C:\windows\system32\netcfg-2839125.txt
2014-05-22 09:13 - 2014-05-22 09:13 - 00000117 _____ () C:\windows\system32\netcfg-2836125.txt
2014-05-22 09:05 - 2014-05-22 09:05 - 00010988 _____ () C:\ComboFix.txt
2014-05-22 09:05 - 2014-05-22 08:20 - 00000000 ____D () C:\Qoobox
2014-05-22 09:05 - 2012-07-26 07:37 - 00000000 __RHD () C:\Users\Default
2014-05-22 09:03 - 2014-05-22 08:20 - 00000000 ____D () C:\windows\erdnt
2014-05-22 09:02 - 2012-07-26 07:26 - 00000215 _____ () C:\windows\system.ini
2014-05-22 08:27 - 2012-07-26 09:21 - 00040044 _____ () C:\windows\setupact.log
2014-05-22 08:18 - 2014-05-22 08:18 - 00000117 _____ () C:\windows\system32\netcfg-2101609.txt
2014-05-22 08:17 - 2014-05-22 08:17 - 05200426 ____R (Swearware) C:\Users\pc\Desktop\ComboFix.exe
2014-05-22 08:02 - 2014-05-22 08:02 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\pc\Desktop\revosetup95.exe
2014-05-22 08:02 - 2014-05-22 08:02 - 00001270 _____ () C:\Users\pc\Desktop\Revo Uninstaller.lnk
2014-05-22 08:02 - 2014-05-22 08:02 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-22 07:59 - 2013-06-10 13:43 - 00000000 ____D () C:\Users\pc\AppData\Roaming\DVDVideoSoft
2014-05-22 07:58 - 2012-11-03 23:43 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-22 07:57 - 2013-04-04 17:19 - 00000000 ____D () C:\Users\pc\AppData\Local\Unity
2014-05-22 07:48 - 2014-05-22 07:48 - 00000117 _____ () C:\windows\system32\netcfg-281921.txt
2014-05-21 23:29 - 2014-05-21 23:29 - 00000117 _____ () C:\windows\system32\netcfg-2958062.txt
2014-05-21 22:58 - 2014-05-21 22:58 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Avira
2014-05-21 22:55 - 2014-05-21 22:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-05-21 22:55 - 2014-05-21 22:44 - 00000000 ____D () C:\ProgramData\Avira
2014-05-21 22:55 - 2014-05-21 22:44 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-05-21 22:45 - 2014-05-21 22:45 - 00000117 _____ () C:\windows\system32\netcfg-306343.txt
2014-05-21 22:45 - 2014-05-21 22:45 - 00000117 _____ () C:\windows\system32\netcfg-277281.txt
2014-05-21 22:44 - 2014-05-21 22:44 - 00001139 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-05-21 22:43 - 2014-05-21 22:42 - 04536336 _____ (Avira Operations GmbH & Co. KG) C:\Users\pc\Downloads\avira_de_av___ws.exe
2014-05-21 22:43 - 2014-02-22 19:05 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-21 22:41 - 2014-05-21 22:41 - 00000117 _____ () C:\windows\system32\netcfg-93890.txt
2014-05-21 22:41 - 2014-05-21 22:41 - 00000117 _____ () C:\windows\system32\netcfg-93843.txt
2014-05-21 22:41 - 2014-05-21 22:41 - 00000117 _____ () C:\windows\system32\netcfg-91453.txt
2014-05-21 22:40 - 2012-07-26 07:26 - 00524288 ___SH () C:\windows\system32\config\BBI
2014-05-21 22:37 - 2014-05-21 22:37 - 00000117 _____ () C:\windows\system32\netcfg-7943125.txt
2014-05-21 22:26 - 2014-05-21 22:26 - 00000117 _____ () C:\windows\system32\netcfg-7308656.txt
2014-05-21 22:26 - 2014-05-21 22:26 - 00000117 _____ () C:\windows\system32\netcfg-7308625.txt
2014-05-21 22:26 - 2014-05-21 22:26 - 00000117 _____ () C:\windows\system32\netcfg-7305765.txt
2014-05-21 22:23 - 2014-05-21 22:23 - 00004994 _____ () C:\Users\pc\Desktop\Gmer.txt
2014-05-21 22:18 - 2014-05-21 22:18 - 00380416 _____ () C:\Users\pc\Desktop\Gmer-19357.exe
2014-05-21 22:18 - 2014-05-21 22:18 - 00000117 _____ () C:\windows\system32\netcfg-6826718.txt
2014-05-21 22:14 - 2014-05-21 22:14 - 00030195 _____ () C:\Users\pc\Desktop\Addition.txt
2014-05-21 22:12 - 2014-05-21 22:11 - 02067456 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2014-05-21 22:09 - 2014-05-21 22:09 - 00000466 _____ () C:\Users\pc\Desktop\defogger_disable.log
2014-05-21 22:09 - 2014-05-21 22:09 - 00000000 _____ () C:\Users\pc\defogger_reenable
2014-05-21 22:09 - 2012-12-06 15:27 - 00000000 ____D () C:\Users\pc
2014-05-21 22:08 - 2014-05-21 22:08 - 00050477 _____ () C:\Users\pc\Desktop\Defogger.exe
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5282484.txt
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5282437.txt
2014-05-21 21:52 - 2014-05-21 21:52 - 00000117 _____ () C:\windows\system32\netcfg-5279390.txt
2014-05-21 21:37 - 2014-05-21 21:37 - 00000117 _____ () C:\windows\system32\netcfg-4336937.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4268109.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4268046.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4265015.txt
2014-05-21 21:35 - 2014-05-21 21:35 - 00000117 _____ () C:\windows\system32\netcfg-4245109.txt
2014-05-21 21:32 - 2014-05-21 21:32 - 00000117 _____ () C:\windows\system32\netcfg-4079328.txt
2014-05-18 23:39 - 2014-05-18 23:39 - 00000117 _____ () C:\windows\system32\netcfg-16858531.txt
2014-05-18 23:37 - 2014-05-18 23:37 - 00000117 _____ () C:\windows\system32\netcfg-16758921.txt
2014-05-18 23:37 - 2014-05-18 23:37 - 00000117 _____ () C:\windows\system32\netcfg-16722421.txt
2014-05-18 23:36 - 2014-05-18 23:36 - 00000117 _____ () C:\windows\system32\netcfg-16681562.txt
2014-05-18 22:29 - 2014-05-18 22:29 - 00000117 _____ () C:\windows\system32\netcfg-12654984.txt
2014-05-18 22:25 - 2014-05-18 22:25 - 00000117 _____ () C:\windows\system32\netcfg-12422515.txt
2014-05-18 20:18 - 2014-05-18 20:18 - 00000117 _____ () C:\windows\system32\netcfg-4795562.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4648281.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4648234.txt
2014-05-18 20:15 - 2014-05-18 20:15 - 00000117 _____ () C:\windows\system32\netcfg-4645171.txt
2014-05-18 20:14 - 2014-05-18 20:14 - 00000117 _____ () C:\windows\system32\netcfg-4589640.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3890546.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3890500.txt
2014-05-18 20:03 - 2014-05-18 20:03 - 00000117 _____ () C:\windows\system32\netcfg-3887437.txt
2014-05-18 19:53 - 2014-05-18 19:53 - 00000117 _____ () C:\windows\system32\netcfg-3296156.txt
2014-05-18 19:00 - 2014-05-18 19:00 - 00000117 _____ () C:\windows\system32\netcfg-108656.txt
2014-05-17 23:31 - 2014-05-17 23:31 - 00000117 _____ () C:\windows\system32\netcfg-23217140.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9798109.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9798062.txt
2014-05-17 19:47 - 2014-05-17 19:47 - 00000117 _____ () C:\windows\system32\netcfg-9795078.txt
2014-05-17 16:57 - 2014-05-17 16:57 - 00000117 _____ () C:\windows\system32\netcfg-3821921.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1574718.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1574671.txt
2014-05-17 16:19 - 2014-05-17 16:19 - 00000117 _____ () C:\windows\system32\netcfg-1571640.txt
2014-05-17 16:18 - 2014-05-17 16:18 - 00000117 _____ () C:\windows\system32\netcfg-1529187.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-984593.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-984546.txt
2014-05-17 16:09 - 2014-05-17 16:09 - 00000117 _____ () C:\windows\system32\netcfg-981875.txt
2014-05-17 13:57 - 2014-05-17 13:57 - 00000117 _____ () C:\windows\system32\netcfg-11853578.txt
2014-05-17 13:02 - 2014-05-17 13:02 - 01280956 _____ () C:\Users\pc\Downloads\happy_install (1).exe
2014-05-17 13:02 - 2013-01-25 16:41 - 00000000 ____D () C:\games
2014-05-17 13:00 - 2014-05-17 13:00 - 01280956 _____ () C:\Users\pc\Downloads\happy_install.exe
2014-05-17 13:00 - 2014-05-17 13:00 - 00686664 _____ ( ) C:\Users\pc\Downloads\COMPUTER_BILD-Download-Manager_fuer_happy_install.exe
2014-05-17 13:00 - 2014-05-17 13:00 - 00000000 ____D () C:\ProgramData\Real
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8350687.txt
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8350640.txt
2014-05-17 12:59 - 2014-05-17 12:59 - 00000117 _____ () C:\windows\system32\netcfg-8347656.txt
2014-05-17 11:41 - 2014-05-17 11:41 - 00000117 _____ () C:\windows\system32\netcfg-3699468.txt
2014-05-17 10:42 - 2014-05-17 10:42 - 00000117 _____ () C:\windows\system32\netcfg-128171.txt
2014-05-17 10:42 - 2014-05-17 10:42 - 00000117 _____ () C:\windows\system32\netcfg-128125.txt
2014-05-16 18:41 - 2014-05-16 18:41 - 00000117 _____ () C:\windows\system32\netcfg-12939687.txt
2014-05-16 18:04 - 2014-05-16 17:53 - 00000000 ____D () C:\Users\pc\AppData\Roaming\frogatto
2014-05-16 17:52 - 2014-05-16 17:31 - 238280554 _____ ( ) C:\Users\pc\Downloads\frogatto-setup-i386-1.3.exe
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7997171.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7997125.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000117 _____ () C:\windows\system32\netcfg-7994078.txt
2014-05-16 17:19 - 2014-05-16 17:19 - 00000000 ____D () C:\windows\System32\Tasks\Games
2014-05-16 16:49 - 2014-05-16 16:49 - 00000117 _____ () C:\windows\system32\netcfg-6211562.txt
2014-05-16 16:25 - 2014-05-16 16:25 - 00000117 _____ () C:\windows\system32\netcfg-4769218.txt
2014-05-16 12:13 - 2014-05-16 12:13 - 00000117 _____ () C:\windows\system32\netcfg-145462125.txt
2014-05-16 12:09 - 2014-01-31 13:01 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2014-05-16 12:09 - 2014-01-31 13:01 - 00000000 _____ () C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-05-16 12:06 - 2014-05-16 12:06 - 00000117 _____ () C:\windows\system32\netcfg-145060375.txt
2014-05-15 22:48 - 2014-05-15 22:48 - 00000117 _____ () C:\windows\system32\netcfg-97160812.txt
2014-05-15 20:27 - 2014-05-15 20:27 - 00000117 _____ () C:\windows\system32\netcfg-88736687.txt
2014-05-15 20:24 - 2014-05-15 20:24 - 00000117 _____ () C:\windows\system32\netcfg-88574140.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81132218.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81132187.txt
2014-05-15 18:20 - 2014-05-15 18:20 - 00000117 _____ () C:\windows\system32\netcfg-81129125.txt
2014-05-15 08:59 - 2014-05-15 08:59 - 00000117 _____ () C:\windows\system32\netcfg-47438640.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41862046.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41862015.txt
2014-05-15 07:26 - 2014-05-15 07:26 - 00000117 _____ () C:\windows\system32\netcfg-41859031.txt
2014-05-14 07:52 - 2014-05-14 07:52 - 00000117 _____ () C:\windows\system32\netcfg-993171.txt
2014-05-14 07:50 - 2014-05-14 07:50 - 00000117 _____ () C:\windows\system32\netcfg-877093.txt
2014-05-14 07:36 - 2014-05-14 07:36 - 00000117 _____ () C:\windows\system32\netcfg-30562.txt
2014-05-13 20:32 - 2014-05-13 20:32 - 00000117 _____ () C:\windows\system32\netcfg-1341343.txt
2014-05-13 09:27 - 2014-05-13 09:27 - 00000117 _____ () C:\windows\system32\netcfg-2614656.txt
2014-05-13 08:51 - 2014-05-13 08:51 - 00000117 _____ () C:\windows\system32\netcfg-488375.txt
2014-05-12 22:00 - 2014-05-12 22:00 - 00000117 _____ () C:\windows\system32\netcfg-10696125.txt
2014-05-12 21:06 - 2014-05-12 21:06 - 00000117 _____ () C:\windows\system32\netcfg-7407687.txt
2014-05-12 20:54 - 2014-05-12 20:54 - 00000117 _____ () C:\windows\system32\netcfg-6698703.txt
2014-05-12 19:37 - 2014-05-12 19:37 - 00000117 _____ () C:\windows\system32\netcfg-2071671.txt
2014-05-12 08:51 - 2014-05-12 08:51 - 00000117 _____ () C:\windows\system32\netcfg-172394671.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171068234.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171068187.txt
2014-05-12 08:29 - 2014-05-12 08:29 - 00000117 _____ () C:\windows\system32\netcfg-171065171.txt
2014-05-12 07:26 - 2014-05-23 22:41 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-23 22:41 - 00064216 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-23 22:41 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-05-11 23:36 - 2014-05-11 23:36 - 00000117 _____ () C:\windows\system32\netcfg-139134984.txt
2014-05-11 22:08 - 2014-05-11 22:08 - 00000117 _____ () C:\windows\system32\netcfg-133843265.txt
2014-05-11 20:00 - 2014-05-11 20:00 - 00000117 _____ () C:\windows\system32\netcfg-126150031.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121939875.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121939828.txt
2014-05-11 18:50 - 2014-05-11 18:50 - 00000117 _____ () C:\windows\system32\netcfg-121936812.txt
2014-05-10 23:18 - 2014-05-10 23:18 - 00000117 _____ () C:\windows\system32\netcfg-51647718.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48739671.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48739640.txt
2014-05-10 22:30 - 2014-05-10 22:30 - 00000117 _____ () C:\windows\system32\netcfg-48736562.txt
2014-05-10 09:34 - 2014-05-10 09:34 - 00000117 _____ () C:\windows\system32\netcfg-2213687.txt
2014-05-10 09:01 - 2014-05-10 09:01 - 00000117 _____ () C:\windows\system32\netcfg-234109.txt
2014-05-09 21:49 - 2014-05-09 21:49 - 00000117 _____ () C:\windows\system32\netcfg-3798406.txt
2014-05-09 21:03 - 2014-05-09 21:03 - 00000117 _____ () C:\windows\system32\netcfg-1009000.txt
2014-05-09 21:01 - 2014-05-09 21:01 - 00000117 _____ () C:\windows\system32\netcfg-902328.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-153234.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-153203.txt
2014-05-09 20:49 - 2014-05-09 20:49 - 00000117 _____ () C:\windows\system32\netcfg-150375.txt
2014-05-09 11:16 - 2014-05-21 22:55 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avipbb.sys
2014-05-09 11:16 - 2014-05-21 22:55 - 00112080 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avgntflt.sys
2014-05-09 11:16 - 2014-05-21 22:55 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avkmgr.sys
2014-05-09 09:29 - 2014-05-09 09:29 - 00000117 _____ () C:\windows\system32\netcfg-1040968.txt
2014-05-09 09:13 - 2014-05-09 09:13 - 00000117 _____ () C:\windows\system32\netcfg-98062.txt
2014-05-09 09:13 - 2014-05-09 09:13 - 00000117 _____ () C:\windows\system32\netcfg-98031.txt
2014-05-09 07:31 - 2014-05-09 07:31 - 00000117 _____ () C:\windows\system32\netcfg-45098687.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44826484.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44826453.txt
2014-05-09 07:27 - 2014-05-09 07:27 - 00000117 _____ () C:\windows\system32\netcfg-44823421.txt
2014-05-08 19:44 - 2014-05-08 19:44 - 00000117 _____ () C:\windows\system32\netcfg-2677718.txt
2014-05-08 19:02 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-114046.txt
2014-05-08 19:02 - 2014-05-08 19:02 - 00000117 _____ () C:\windows\system32\netcfg-114015.txt
2014-05-08 19:02 - 2014-05-08 19:01 - 00000117 _____ () C:\windows\system32\netcfg-111187.txt
2014-05-08 11:40 - 2014-05-08 11:40 - 00000117 _____ () C:\windows\system32\netcfg-2910265.txt
2014-05-08 11:05 - 2014-05-08 11:05 - 00000117 _____ () C:\windows\system32\netcfg-792484.txt
2014-05-07 21:39 - 2014-05-07 21:39 - 00000117 _____ () C:\windows\system32\netcfg-5929406.txt
2014-05-07 20:23 - 2014-05-07 20:23 - 00000117 _____ () C:\windows\system32\netcfg-1385093.txt
2014-05-07 11:21 - 2014-05-07 11:21 - 00000117 _____ () C:\windows\system32\netcfg-9943078.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-397968.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-397937.txt
2014-05-07 08:42 - 2014-05-07 08:42 - 00000117 _____ () C:\windows\system32\netcfg-394937.txt
2014-05-07 08:31 - 2014-05-07 08:31 - 00000117 _____ () C:\windows\system32\netcfg-41590250.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-41000406.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-41000328.txt
2014-05-07 08:21 - 2014-05-07 08:21 - 00000117 _____ () C:\windows\system32\netcfg-40997468.txt
2014-05-06 21:58 - 2014-05-06 21:58 - 00000117 _____ () C:\windows\system32\netcfg-3608078.txt
2014-05-06 21:13 - 2014-05-06 21:13 - 00000117 _____ () C:\windows\system32\netcfg-898515.txt
2014-05-06 08:21 - 2014-05-06 08:21 - 00000117 _____ () C:\windows\system32\netcfg-2788296.txt
2014-05-06 07:36 - 2014-05-06 07:36 - 00000117 _____ () C:\windows\system32\netcfg-96812.txt
2014-05-06 07:36 - 2014-05-06 07:36 - 00000117 _____ () C:\windows\system32\netcfg-94109.txt
2014-05-05 19:14 - 2014-05-05 19:14 - 00000117 _____ () C:\windows\system32\netcfg-1109046.txt
2014-05-05 18:57 - 2014-05-05 18:57 - 00000117 _____ () C:\windows\system32\netcfg-87843.txt
2014-05-05 18:57 - 2014-05-05 18:57 - 00000117 _____ () C:\windows\system32\netcfg-87812.txt
2014-05-04 17:08 - 2014-05-04 17:08 - 00000117 _____ () C:\windows\system32\netcfg-312968.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-92359.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-92312.txt
2014-05-04 17:05 - 2014-05-04 17:05 - 00000117 _____ () C:\windows\system32\netcfg-89500.txt
2014-05-04 08:34 - 2014-05-04 08:34 - 00000117 _____ () C:\windows\system32\netcfg-590031.txt
2014-05-04 08:26 - 2014-05-04 08:26 - 00000117 _____ () C:\windows\system32\netcfg-116343.txt
2014-05-03 20:14 - 2014-05-03 20:14 - 00000117 _____ () C:\windows\system32\netcfg-10217578.txt
2014-05-03 19:22 - 2014-05-03 19:08 - 49560580 _____ () C:\Users\pc\Downloads\Heilpflanzen.zip
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2013171.txt
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2013140.txt
2014-05-03 17:58 - 2014-05-03 17:58 - 00000117 _____ () C:\windows\system32\netcfg-2010140.txt
2014-05-03 07:56 - 2014-05-03 07:56 - 00000117 _____ () C:\windows\system32\netcfg-680234.txt
2014-05-03 07:46 - 2014-05-03 07:46 - 00000117 _____ () C:\windows\system32\netcfg-92375.txt
2014-05-02 20:25 - 2014-05-02 20:25 - 00000117 _____ () C:\windows\system32\netcfg-2527031.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-518625.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-518593.txt
2014-05-02 19:51 - 2014-05-02 19:51 - 00000117 _____ () C:\windows\system32\netcfg-515562.txt
2014-05-02 08:51 - 2014-05-02 08:51 - 00000117 _____ () C:\windows\system32\netcfg-2784453.txt
2014-05-02 08:06 - 2014-05-02 08:06 - 00000117 _____ () C:\windows\system32\netcfg-97906.txt
2014-05-02 08:06 - 2014-05-02 08:06 - 00000117 _____ () C:\windows\system32\netcfg-94921.txt
2014-05-01 22:45 - 2014-05-01 22:45 - 00000117 _____ () C:\windows\system32\netcfg-20648828.txt
2014-05-01 22:22 - 2014-05-01 22:22 - 00000117 _____ () C:\windows\system32\netcfg-19243171.txt
2014-05-01 22:15 - 2014-05-01 22:15 - 00000117 _____ () C:\windows\system32\netcfg-18841640.txt
2014-05-01 20:45 - 2014-05-01 20:45 - 00000117 _____ () C:\windows\system32\netcfg-13450718.txt
2014-05-01 20:28 - 2014-05-01 20:28 - 00000117 _____ () C:\windows\system32\netcfg-12419140.txt
2014-05-01 20:06 - 2014-05-01 20:06 - 00000117 _____ () C:\windows\system32\netcfg-11102265.txt
2014-05-01 19:44 - 2014-05-01 19:44 - 00000117 _____ () C:\windows\system32\netcfg-9774078.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6953875.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6953828.txt
2014-05-01 18:57 - 2014-05-01 18:57 - 00000117 _____ () C:\windows\system32\netcfg-6950765.txt
2014-05-01 18:56 - 2014-05-01 18:56 - 00000117 _____ () C:\windows\system32\netcfg-6904906.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4890781.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4890734.txt
2014-05-01 18:22 - 2014-05-01 18:22 - 00000117 _____ () C:\windows\system32\netcfg-4887687.txt
2014-04-30 20:57 - 2014-04-30 20:57 - 00000117 _____ () C:\windows\system32\netcfg-8475218.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8386140.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8383109.txt
2014-04-30 20:56 - 2014-04-30 20:56 - 00000117 _____ () C:\windows\system32\netcfg-8383046.txt
2014-04-30 19:24 - 2014-04-30 19:24 - 00000117 _____ () C:\windows\system32\netcfg-2889218.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-94968.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-94937.txt
2014-04-30 18:38 - 2014-04-30 18:38 - 00000117 _____ () C:\windows\system32\netcfg-91921.txt
2014-04-30 09:46 - 2014-04-30 09:46 - 00000117 _____ () C:\windows\system32\netcfg-5401640.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4662546.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4662500.txt
2014-04-30 09:33 - 2014-04-30 09:33 - 00000117 _____ () C:\windows\system32\netcfg-4659453.txt
2014-04-30 08:47 - 2014-04-30 08:47 - 00000117 _____ () C:\windows\system32\netcfg-1898218.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-109421.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-109390.txt
2014-04-30 08:17 - 2014-04-30 08:17 - 00000117 _____ () C:\windows\system32\netcfg-106843.txt
2014-04-29 22:17 - 2014-04-29 22:17 - 00000117 _____ () C:\windows\system32\netcfg-22920703.txt
2014-04-29 22:15 - 2014-04-29 22:15 - 00000117 _____ () C:\windows\system32\netcfg-22804187.txt
2014-04-29 22:15 - 2014-04-29 22:15 - 00000117 _____ () C:\windows\system32\netcfg-22792343.txt
2014-04-29 22:11 - 2012-12-22 15:38 - 00000000 ____D () C:\Users\pc\Documents\rezepte
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19163796.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19163750.txt
2014-04-29 21:14 - 2014-04-29 21:14 - 00000117 _____ () C:\windows\system32\netcfg-19161250.txt
2014-04-29 15:56 - 2014-04-29 15:55 - 00283072 _____ () C:\windows\Minidump\042914-20343-01.dmp
2014-04-29 15:55 - 2012-12-22 16:11 - 591196088 _____ () C:\windows\MEMORY.DMP
2014-04-29 15:55 - 2012-12-22 16:11 - 00000000 ____D () C:\windows\Minidump
2014-04-29 09:10 - 2014-04-29 09:10 - 00000117 _____ () C:\windows\system32\netcfg-919234.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-375203.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-375171.txt
2014-04-29 09:01 - 2014-04-29 09:01 - 00000117 _____ () C:\windows\system32\netcfg-372750.txt
2014-04-27 22:21 - 2014-04-27 22:21 - 00000117 _____ () C:\windows\system32\netcfg-5867015.txt
2014-04-27 20:45 - 2014-04-27 20:45 - 00000117 _____ () C:\windows\system32\netcfg-104843.txt
2014-04-27 20:45 - 2014-04-27 20:45 - 00000117 _____ () C:\windows\system32\netcfg-104812.txt
2014-04-26 16:37 - 2014-04-26 16:37 - 00000117 _____ () C:\windows\system32\netcfg-1094718.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-196343.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-196296.txt
2014-04-26 16:22 - 2014-04-26 16:22 - 00000117 _____ () C:\windows\system32\netcfg-193718.txt
2014-04-26 10:46 - 2014-04-26 10:46 - 00000117 _____ () C:\windows\system32\netcfg-7238937.txt
2014-04-26 10:19 - 2014-04-26 10:19 - 00000117 _____ () C:\windows\system32\netcfg-5627296.txt
2014-04-26 10:19 - 2014-04-26 10:19 - 00000117 _____ () C:\windows\system32\netcfg-5618531.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-400765.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-400718.txt
2014-04-26 08:52 - 2014-04-26 08:52 - 00000117 _____ () C:\windows\system32\netcfg-397812.txt
2014-04-25 23:28 - 2014-04-25 23:28 - 00000117 _____ () C:\windows\system32\netcfg-57452343.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50666921.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50666859.txt
2014-04-25 21:34 - 2014-04-25 21:34 - 00000117 _____ () C:\windows\system32\netcfg-50663875.txt
2014-04-25 20:59 - 2014-04-25 20:59 - 00000117 _____ () C:\windows\system32\netcfg-48566671.txt
2014-04-25 18:37 - 2014-04-25 18:37 - 00000117 _____ () C:\windows\system32\netcfg-40031375.txt
2014-04-25 18:36 - 2014-04-25 18:36 - 00000117 _____ () C:\windows\system32\netcfg-39985843.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39405484.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39405437.txt
2014-04-25 18:27 - 2014-04-25 18:27 - 00000117 _____ () C:\windows\system32\netcfg-39402406.txt
2014-04-25 12:37 - 2014-04-25 12:37 - 00000117 _____ () C:\windows\system32\netcfg-18393875.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11289750.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11289703.txt
2014-04-25 10:38 - 2014-04-25 10:38 - 00000117 _____ () C:\windows\system32\netcfg-11286625.txt
2014-04-25 10:37 - 2014-04-25 10:37 - 00000117 _____ () C:\windows\system32\netcfg-11244859.txt
2014-04-25 10:02 - 2014-04-25 10:02 - 00000117 _____ () C:\windows\system32\netcfg-9136140.txt
2014-04-25 09:54 - 2014-04-25 09:54 - 00000117 _____ () C:\windows\system32\netcfg-8618906.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-844359.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-844328.txt
2014-04-25 07:44 - 2014-04-25 07:44 - 00000117 _____ () C:\windows\system32\netcfg-841265.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-803984.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-777015.txt
2014-04-25 07:43 - 2014-04-25 07:43 - 00000117 _____ () C:\windows\system32\netcfg-765484.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-206390.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-206359.txt
2014-04-25 07:33 - 2014-04-25 07:33 - 00000117 _____ () C:\windows\system32\netcfg-203781.txt
2014-04-24 23:03 - 2014-04-24 23:03 - 00000117 _____ () C:\windows\system32\netcfg-46910937.txt
2014-04-24 19:38 - 2014-04-24 19:37 - 00000117 _____ () C:\windows\system32\netcfg-34558296.txt
2014-04-24 19:14 - 2014-04-24 19:14 - 00000117 _____ () C:\windows\system32\netcfg-33152109.txt
2014-04-24 18:36 - 2014-04-24 18:36 - 00000117 _____ () C:\windows\system32\netcfg-30881656.txt
2014-04-24 17:54 - 2014-04-24 17:54 - 00000117 _____ () C:\windows\system32\netcfg-28353828.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26074093.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26074046.txt
2014-04-24 17:16 - 2014-04-24 17:16 - 00000117 _____ () C:\windows\system32\netcfg-26071109.txt
2014-04-24 13:29 - 2014-04-24 13:29 - 00000117 _____ () C:\windows\system32\netcfg-12452984.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11158578.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11158484.txt
2014-04-24 13:07 - 2014-04-24 13:07 - 00000117 _____ () C:\windows\system32\netcfg-11155437.txt
2014-04-24 12:22 - 2014-04-24 12:22 - 00000117 _____ () C:\windows\system32\netcfg-8403921.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-126718.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-126687.txt
2014-04-24 10:03 - 2014-04-24 10:03 - 00000117 _____ () C:\windows\system32\netcfg-124046.txt
2014-04-23 19:19 - 2014-04-23 19:19 - 00000117 _____ () C:\windows\system32\netcfg-3470734.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1912218.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1912171.txt
2014-04-23 18:53 - 2014-04-23 18:53 - 00000117 _____ () C:\windows\system32\netcfg-1909171.txt
2014-04-23 14:46 - 2014-04-23 14:46 - 00000117 _____ () C:\windows\system32\netcfg-2567656.txt
2014-04-23 14:05 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-95453.txt
2014-04-23 14:05 - 2014-04-23 14:05 - 00000117 _____ () C:\windows\system32\netcfg-95406.txt
2014-04-23 14:05 - 2014-04-23 14:04 - 00000117 _____ () C:\windows\system32\netcfg-92406.txt
2014-04-23 09:53 - 2014-04-23 09:53 - 00000117 _____ () C:\windows\system32\netcfg-3132718.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-209203.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-209171.txt
2014-04-23 09:04 - 2014-04-23 09:04 - 00000117 _____ () C:\windows\system32\netcfg-206500.txt

Some content of TEMP:
====================
C:\Users\pc\AppData\Local\Temp\avgnt.exe
C:\Users\pc\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-17 11:10

==================== End Of Log ============================
         
--- --- ---

--- --- ---





DANKE!


Alt 24.05.2014, 18:24   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Trojaner: TR/Drop.Rotbrow.K.1'  - hoher Datentraffic - Standard

Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
--> Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic

Antwort

Themen zu Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic
antivir, association, computer_bild-download-manager, converter, dvdvideosoft ltd., failed, problem, pup.bprotector, pup.optional.babylon.a, pup.optional.bprotector.a, pup.optional.datamngr.a, pup.optional.delta.a, pup.optional.installcore.a, pup.optional.linkury.a, pup.optional.mindspark.a, pup.optional.opencandy, pup.optional.snapdo, pup.optional.snapdo.a, pup.optional.softonic, pup.optional.spigot.a, rotbrow.k, rundll, services.exe, svchost.exe, tr/drop.rotbrow.k.1', windows



Ähnliche Themen: Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic


  1. Viren (APPL/RedCap (Cloud), SPR/Agent.dkb, TR/Drop.Rotbrow.K.1, ADWARE/InstallCore.Gen7 und zweimal ADWARE/BHO.Bprotector.1.4).
    Plagegeister aller Art und deren Bekämpfung - 10.05.2015 (7)
  2. Windows7: Seiten springen auf Werbung um, Seiten nich zu öffnen oder schließen "Tr.Drop.Rotbrow.K.1 " und 8 weitere Viren in Quarantäne"
    Log-Analyse und Auswertung - 21.03.2015 (9)
  3. Beim Scan diverse Trojaner gefunden Rotbrowse, Rotbrow.A, BProtector, System läuft extrem langsam und Programme bzw IE stürzen regelmäßig ab
    Log-Analyse und Auswertung - 14.10.2014 (5)
  4. Avira meldet TR/Drop.Rotbrow.N
    Antiviren-, Firewall- und andere Schutzprogramme - 09.08.2014 (21)
  5. Trojaner Rotbrow.K vollständig entfernen
    Log-Analyse und Auswertung - 10.01.2014 (5)
  6. MSE meldet Rotbrow.A, B, C und E
    Log-Analyse und Auswertung - 31.12.2013 (9)
  7. Trojaner Rotbrow
    Log-Analyse und Auswertung - 07.12.2013 (9)
  8. Avira Antivirus, Trojaner Dropper Rotbrow.A gemeldet und isoliert,
    Log-Analyse und Auswertung - 08.11.2013 (15)
  9. Avira findet Trojaner Drop.Rotbrow.A
    Log-Analyse und Auswertung - 07.11.2013 (15)
  10. Infektion mit TR/Drop.Rotbrow.A
    Log-Analyse und Auswertung - 06.11.2013 (15)
  11. Drop.Rotbrow, Wilokii + divers. Trojaner hilfe beim entfernen
    Log-Analyse und Auswertung - 29.10.2013 (9)
  12. TrojanDropper Rotbrow.A
    Plagegeister aller Art und deren Bekämpfung - 29.10.2013 (15)
  13. GVU Trojaner-Problem!(Exploit.Drop.GS;Exploit.drop.GSA;trojan.ransom.SUGen;--->Malwarebytes-Funde)
    Plagegeister aller Art und deren Bekämpfung - 02.03.2013 (6)
  14. Hoher Ping und geringe Bandbreite - Trojaner?
    Plagegeister aller Art und deren Bekämpfung - 18.04.2010 (0)
  15. Trojaner gefunden: TR/Drop.fra.2168720', TR/Drop.fra.2168720' u 'TR/Dldr.Client.kiu
    Plagegeister aller Art und deren Bekämpfung - 09.08.2009 (3)
  16. TR/Crypt.XPACK.Gen'/ TR/Drop.Agent.qkm/ TR/Drop.Mudr.CY.305...alles seit heut morgen!
    Plagegeister aller Art und deren Bekämpfung - 06.04.2009 (8)
  17. Einmaliger hoher Upload - Trojaner?
    Log-Analyse und Auswertung - 30.01.2009 (1)

Zum Thema Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic - Guten Tag! Ich würde mich sehr freuen wenn mir hier jemand helfen kann. Ich habe folgendes Problem: Auf meinem PC (Windows 8) hat Avira einen Trojaner TR/Drop.Rotbrow.K.1' gefunden und unter - Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic...
Archiv
Du betrachtest: Trojaner: TR/Drop.Rotbrow.K.1' - hoher Datentraffic auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.