Skara93S | 15.09.2013 14:06 | Hallo Schrauber,
okay, ich versuch es jetzt mal mit den Tags:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-09-2013 04
Ran by Timo (administrator) on TIMO-PC on 15-09-2013 00:09:51
Running from C:\Users\Timo\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
() C:\Program Files\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\AutoDetector\Monitor.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
() C:\Windows\FixCamera.exe
() C:\Windows\tsnp2std.exe
(Sonix) C:\Windows\vsnp2std.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Samsung Electronics) C:\Program Files\Samsung\Kies\KiesAirMessage.exe
(Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
(Smartbar) C:\Users\Timo\AppData\Local\Smartbar\Application\SnapDo.exe
(Sony Corporation) C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Google) C:\Program Files\Google\Google Earth\client\googleearth.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HDAudDeck] - C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [3920496 2012-05-11] (VIA)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641664 2012-04-06] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [AMD AVT] - Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files\AMD AVT\bin\kdbsync.exe" aml
HKLM\...\Run: [NeroFilterCheck] - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [Ulead AutoDetector v2] - C:\Program Files\Common Files\Ulead Systems\AutoDetector\monitor.exe [90112 2004-11-26] (Ulead Systems, Inc.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-25] (CANON INC.)
HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [74752 2011-12-09] (Nullsoft, Inc.)
HKLM\...\Run: [FixCamera] - C:\Windows\FixCamera.exe [20480 2007-02-12] ()
HKLM\...\Run: [tsnp2std] - C:\Windows\tsnp2std.exe [270336 2007-05-12] ()
HKLM\...\Run: [snp2std] - C:\Windows\vsnp2std.exe [344064 2007-05-10] (Sonix)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356376 2013-01-31] (Kaspersky Lab ZAO)
HKLM\...\Run: [KiesTrayAgent] - C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [310640 2013-03-28] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [143360 2006-12-23] (Nero AG)
HKCU\...\Run: [KiesPreload] - C:\Program Files\Samsung\Kies\Kies.exe [1511792 2013-03-28] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files\Samsung\Kies\KiesAirMessage.exe [578560 2013-03-20] (Samsung Electronics)
HKCU\...\Run: [] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-03-28] (Samsung)
HKCU\...\Run: [TomTomHOME.exe] - C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-03-22] (TomTom)
HKCU\...\Run: [SSync] - C:\Users\Timo\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10] ()
HKCU\...\Run: [DataMgr] - C:\Users\Timo\AppData\Roaming\DataMgr\DataMgr.exe [168824 2013-07-21] (HTTO Group, Ltd.)
HKCU\...\Run: [NTRedirect] - C:\Windows\system32\rundll32.exe "C:\Users\Timo\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
HKCU\...\Run: [Browser Infrastructure Helper] - C:\Users\Timo\AppData\Local\Smartbar\Application\SnapDo.exe [21024 2013-08-04] (Smartbar)
HKCU\...\Run: [SCheck] - C:\Users\Timo\AppData\Roaming\SCheck\SCheck.exe [36864 2013-04-10] ()
HKCU\...\Run: [Snoozer] - C:\Users\Timo\AppData\Roaming\Snz\Snz.exe [1137764 2013-08-28] ()
HKCU\...\Run: [Intermediate] - C:\Users\Timo\AppData\Roaming\Intermediate\Intermediate.exe [36864 2013-04-10] ()
HKCU\...\Run: [OMESupervisor] - C:\Users\Timo\AppData\Local\omesuperv.exe [2218359 2013-08-28] ()
Startup: C:\Users\Timo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PMB Medien-Prüfung.lnk
ShortcutTarget: PMB Medien-Prüfung.lnk -> C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=7faf55bd-73b6-701d-b424-3297cc5787dc&searchtype=ds&q={searchTerms}&installDate=14/08/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.babylon.com/?babsrc=HP_ss_Btisdt4&mntrId=244D002522B0C423&affID=121564&tsp=4974
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1902D516493BCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=7faf55bd-73b6-701d-b424-3297cc5787dc&searchtype=ds&q={searchTerms}&installDate=14/08/2013
SearchScopes: HKLM - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=7faf55bd-73b6-701d-b424-3297cc5787dc&searchtype=ds&q={searchTerms}&installDate=14/08/2013
SearchScopes: HKLM - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=7faf55bd-73b6-701d-b424-3297cc5787dc&searchtype=ds&q={searchTerms}&installDate=14/08/2013
SearchScopes: HKCU - DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=7faf55bd-73b6-701d-b424-3297cc5787dc&searchtype=ds&q={searchTerms}&installDate=14/08/2013
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://isearch.babylon.com/?q={searchTerms}&babsrc=SP_ss_Btisdt4&mntrId=244D002522B0C423&affID=121564&tsp=4974
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q={searchTerms}
BHO: Lyrics Seeker - {14a771cd-f066-4d65-8e98-b0d5eb237c81} - C:\Program Files\LyricsSeeker\133.dll ()
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - No File
BHO: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: PiccShare BHO - {553318DA-D010-469E-84B1-496563CAE1C0} - C:\Users\Timo\AppData\Local\ext_piccshare\ext_piccshare.dll (HTTO Group, Ltd)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.22.0\bh\delta.dll No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default
FF user.js: detected! => C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\user.js
FF NewTab: hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=7faf55bd-73b6-701d-b424-3297cc5787dc&searchtype=nt&installDate=14/08/2013
FF DefaultSearchEngine: Search
FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", "");
FF SelectedSearchEngine: Search
FF Homepage: hxxp://isearch.babylon.com/?babsrc=HP_ss_Btisdt4&mntrId=244D002522B0C423&affID=121564&tsp=4974
FF Keyword.URL: hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @MagellanGPS.com/CommunicationPlugin - C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\searchplugins\search.xml
FF SearchPlugin: C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\searchplugins\search_the_web.xml
FF SearchPlugin: C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: LyricXeeker - C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\Extensions\125
FF Extension: Delta Toolbar - C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\Extensions\ffxtlbr@delta.com
FF Extension: DownloadHelper - C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: om - C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\Extensions\om@offermosquito.com.xpi
FF Extension: No Name - C:\Users\Timo\AppData\Roaming\Mozilla\Firefox\Profiles\8i8rqj6a.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Anti-Banner - C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak2
FF Extension: Modul zur Link-Untersuchung - C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2
FF HKLM\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru
FF HKLM\...\Firefox\Extensions: - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF HKCU\...\Firefox\Extensions: [{72273571-743d-427e-a1c1-0538fbc2ddd3}] - C:\Program Files\LyricsSeeker\133.xpi
FF Extension: No Name - C:\Program Files\LyricsSeeker\133.xpi
Chrome:
=======
CHR HomePage: hxxp://isearch.babylon.com/?babsrc=HP_ss_Btisdt4&mntrId=244D002522B0C423&affID=121564&tsp=4974
CHR RestoreOnStartup: "hxxp://isearch.babylon.com/?babsrc=HP_ss_Btisdt4&mntrId=244D002522B0C423&affID=121564&tsp=4974", "hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=7faf55bd-73b6-701d-b424-3297cc5787dc&searchtype=hp&installDate=14/08/2013"
CHR DefaultSearchURL: (Search) - hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q={searchTerms}
CHR DefaultSuggestURL: (Search) - "suggest_url": ""
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (GoogleChromeRemotePlugin) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl\1.4_0\GoogleChromeRemotePlugin.dll ( )
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Winamp Application Detector) - C:\Program Files\Mozilla Firefox\plugins\npwachk.dll (Nullsoft, Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Magellan Plug-In) - C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U5) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.50.255) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Snap.Do ) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl\1.4_0
CHR Extension: (YouTube) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0
CHR Extension: (PiccShare) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\docfnddcclkgokdfpnmngpiliiachclb\2.0_0
CHR Extension: (Delta Toolbar) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0
CHR Extension: (OfferMosquito) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.6.1_0
CHR Extension: (AdBlock) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.4_0
CHR Extension: (Safe Money) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_0
CHR Extension: (Virtual Keyboard) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_0
CHR Extension: (Lyrics Seeker) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgoiojnjnacbjngolldkokokgpcjbgjj\1.133_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Anti-Banner) - C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx
CHR HKLM\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Timo\AppData\Roaming\BabSolution\CR\Delta.crx
CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx
CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx
CHR HKLM\...\Chrome\Extension: [lgoiojnjnacbjngolldkokokgpcjbgjj] - C:\Program Files\LyricsSeeker\133.crx
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx
========================== Services (Whitelisted) =================
R2 AAV UpdateService; C:\Program Files\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-04-05] (Advanced Micro Devices, Inc.)
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356376 2013-01-31] (Kaspersky Lab ZAO)
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [370792 2010-01-21] ()
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [167528 2010-01-21] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1479488 2011-10-14] (TuneUp Software)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-05-04] (VIA Technologies, Inc.)
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [45184 2012-03-05] (Advanced Micro Devices)
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [136024 2012-06-19] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [594528 2013-04-25] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [24408 2012-08-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25944 2013-01-31] (Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25944 2013-01-31] (Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-06-20] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-25] (Kaspersky Lab ZAO)
U0 nhtsxqk; C:\Windows\System32\drivers\oauqqsl.sys [54016 2013-09-14] ()
R3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [199528 2011-12-02] (Realtek Semiconductor Corp.)
S3 SNP2STD; C:\Windows\System32\DRIVERS\snp2sxp.sys [12179584 2007-05-10] ()
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2011-10-13] (TuneUp Software)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1832560 2012-05-04] (VIA Technologies, Inc.)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-04-25] (Kaspersky Lab ZAO)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-15 00:09 - 2013-09-15 00:09 - 00000000 ____D C:\FRST
2013-09-15 00:08 - 2013-09-15 00:09 - 01083285 _____ (Farbar) C:\Users\Timo\Downloads\FRST.exe
2013-09-15 00:00 - 2013-09-15 00:00 - 00000470 _____ C:\Users\Timo\Downloads\defogger_disable.log
2013-09-15 00:00 - 2013-09-15 00:00 - 00000000 _____ C:\Users\Timo\defogger_reenable
2013-09-14 23:58 - 2013-09-14 23:58 - 00050477 _____ C:\Users\Timo\Downloads\Defogger.exe
2013-09-14 23:41 - 2013-09-14 23:41 - 00054016 _____ C:\Windows\system32\Drivers\oauqqsl.sys
2013-09-14 23:23 - 2013-09-14 23:23 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Malwarebytes
2013-09-14 23:20 - 2013-09-14 23:20 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-09-14 23:20 - 2013-09-14 23:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-14 23:20 - 2013-09-14 23:20 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-14 23:20 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-14 23:18 - 2013-09-14 23:19 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Timo\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-14 11:39 - 2013-09-14 13:56 - 00019220 _____ C:\Users\Timo\Documents\Vodafone_Erstattung Kosten Mehrwertdienste.odt
2013-09-13 05:59 - 2013-09-13 05:59 - 00018288 _____ C:\Users\Timo\Downloads\enigma2-plugin-newnigma2-xhamster_1.0git20130914-r0_dm7020hd.ipk
2013-09-13 05:59 - 2013-09-13 05:59 - 00015736 _____ C:\Users\Timo\Downloads\enigma2-plugin-newnigma2-eporner_1.0git20130914-r0_dm7020hd.ipk
2013-09-12 20:20 - 2013-09-12 20:20 - 00000000 ____D C:\ProgramData\Oracle
2013-09-12 20:19 - 2013-09-12 20:19 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-12 20:19 - 2013-09-12 20:18 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-12 20:18 - 2013-09-12 20:18 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-12 20:18 - 2013-09-12 20:18 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-12 20:18 - 2013-09-12 20:18 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-12 20:16 - 2013-09-12 20:16 - 00913832 _____ (Oracle Corporation) C:\Users\Timo\Downloads\jre-7u40-windows-i586-iftw.exe
2013-09-12 05:56 - 2013-09-14 19:46 - 00000362 _____ C:\Windows\Tasks\Lyrics Seeker Update.job
2013-09-12 05:56 - 2013-09-12 05:58 - 00000000 ____D C:\Program Files\LyricsSeeker
2013-09-11 20:15 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 20:15 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 20:15 - 2013-08-10 05:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 20:15 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 20:15 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 20:15 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 20:15 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 19:18 - 2013-08-08 03:03 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 19:18 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 19:18 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 19:18 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 19:18 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 19:18 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 19:18 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 19:18 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 19:18 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-11 06:35 - 2013-09-11 06:50 - 00000000 ____D C:\Users\Timo\Downloads\Lupi Gladius - Lucania
2013-09-11 06:12 - 2013-09-11 06:35 - 69062182 _____ C:\Users\Timo\Downloads\lucania_2013.rar
2013-09-10 06:49 - 2013-09-10 06:59 - 00000000 ____D C:\Users\Timo\Downloads\Sunset Wings - Shining Thro' The Veil Of Night
2013-09-10 06:48 - 2013-09-11 06:48 - 00000000 ____D C:\Users\Timo\Documents\Fußball-Vereine
2013-09-09 07:23 - 2013-09-09 07:36 - 00000000 ____D C:\Users\Timo\Downloads\Verney 1826 - Ex Libris
2013-09-08 20:59 - 2013-09-08 20:59 - 00000000 ____D C:\Users\Timo\Downloads\Karjalan Sissit - Viinaa Pittaa Juua
2013-09-06 19:00 - 2013-09-06 19:00 - 00016035 _____ C:\Users\Timo\Downloads\S_20130906_19027_Neue_Nachrichten.zip
2013-09-06 18:50 - 2013-09-06 18:50 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Snz
2013-08-28 20:47 - 2013-08-28 20:47 - 02218359 _____ C:\Users\Timo\AppData\Local\omesuperv.exe
2013-08-19 11:52 - 2013-08-19 11:52 - 06953096 _____ (Microsoft Corporation) C:\Users\Timo\Downloads\Silverlight (1).exe
2013-08-18 20:56 - 2013-08-18 22:35 - 00019013 _____ C:\Users\Timo\Documents\Frankreich2013-Rückfahrt.odt
2013-08-17 15:39 - 2013-08-17 15:39 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Apple Computer
2013-08-17 12:21 - 2013-08-17 12:22 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-08-17 12:10 - 2013-08-17 12:10 - 00001815 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-08-17 12:09 - 2013-08-17 12:11 - 00000000 ____D C:\Program Files\QuickTime
2013-08-17 12:09 - 2013-08-17 12:09 - 00000000 ____D C:\ProgramData\Apple Computer
2013-08-17 12:05 - 2013-08-17 12:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-08-17 12:04 - 2013-08-17 12:04 - 00000000 ____D C:\Users\Timo\AppData\Local\Apple
2013-08-17 12:04 - 2013-08-17 12:04 - 00000000 ____D C:\ProgramData\Apple
2013-08-17 12:04 - 2013-08-17 12:04 - 00000000 ____D C:\Program Files\Apple Software Update
2013-08-17 12:01 - 2013-08-17 12:03 - 41404760 _____ (Apple Inc.) C:\Users\Timo\Downloads\QuickTimeInstaller.exe
2013-08-16 06:27 - 2013-09-12 05:55 - 00000000 ____D C:\Program Files\LyriXeeker
==================== One Month Modified Files and Folders =======
2013-09-15 00:09 - 2013-09-15 00:09 - 00000000 ____D C:\FRST
2013-09-15 00:09 - 2013-09-15 00:08 - 01083285 _____ (Farbar) C:\Users\Timo\Downloads\FRST.exe
2013-09-15 00:09 - 2012-05-26 21:24 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-09-15 00:00 - 2013-09-15 00:00 - 00000470 _____ C:\Users\Timo\Downloads\defogger_disable.log
2013-09-15 00:00 - 2013-09-15 00:00 - 00000000 _____ C:\Users\Timo\defogger_reenable
2013-09-15 00:00 - 2012-05-26 15:02 - 00000000 ____D C:\Users\Timo
2013-09-14 23:58 - 2013-09-14 23:58 - 00050477 _____ C:\Users\Timo\Downloads\Defogger.exe
2013-09-14 23:41 - 2013-09-14 23:41 - 00054016 _____ C:\Windows\system32\Drivers\oauqqsl.sys
2013-09-14 23:25 - 2012-05-31 20:39 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-14 23:23 - 2013-09-14 23:23 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Malwarebytes
2013-09-14 23:20 - 2013-09-14 23:20 - 00001067 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-09-14 23:20 - 2013-09-14 23:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-14 23:20 - 2013-09-14 23:20 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-14 23:19 - 2013-09-14 23:18 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Timo\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-14 23:12 - 2012-05-27 13:55 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-14 22:34 - 2012-05-26 15:38 - 01725852 _____ C:\Windows\WindowsUpdate.log
2013-09-14 19:56 - 2009-07-14 06:34 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-14 19:56 - 2009-07-14 06:34 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-14 19:46 - 2013-09-12 05:56 - 00000362 _____ C:\Windows\Tasks\Lyrics Seeker Update.job
2013-09-14 19:46 - 2012-05-31 20:39 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-14 19:46 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-14 19:45 - 2009-07-14 06:39 - 00252537 _____ C:\Windows\setupact.log
2013-09-14 14:35 - 2012-05-26 18:59 - 00019738 _____ C:\Windows\PFRO.log
2013-09-14 13:56 - 2013-09-14 11:39 - 00019220 _____ C:\Users\Timo\Documents\Vodafone_Erstattung Kosten Mehrwertdienste.odt
2013-09-13 05:59 - 2013-09-13 05:59 - 00018288 _____ C:\Users\Timo\Downloads\enigma2-plugin-newnigma2-xhamster_1.0git20130914-r0_dm7020hd.ipk
2013-09-13 05:59 - 2013-09-13 05:59 - 00015736 _____ C:\Users\Timo\Downloads\enigma2-plugin-newnigma2-eporner_1.0git20130914-r0_dm7020hd.ipk
2013-09-12 20:20 - 2013-09-12 20:20 - 00000000 ____D C:\ProgramData\Oracle
2013-09-12 20:19 - 2013-09-12 20:19 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-12 20:18 - 2013-09-12 20:19 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-12 20:18 - 2013-09-12 20:18 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-12 20:18 - 2013-09-12 20:18 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-12 20:18 - 2013-09-12 20:18 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-12 20:18 - 2012-08-01 20:58 - 00868264 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-09-12 20:18 - 2012-08-01 20:58 - 00790440 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-09-12 20:16 - 2013-09-12 20:16 - 00913832 _____ (Oracle Corporation) C:\Users\Timo\Downloads\jre-7u40-windows-i586-iftw.exe
2013-09-12 16:55 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-12 05:58 - 2013-09-12 05:56 - 00000000 ____D C:\Program Files\LyricsSeeker
2013-09-12 05:55 - 2013-08-16 06:27 - 00000000 ____D C:\Program Files\LyriXeeker
2013-09-12 05:54 - 2009-07-14 06:33 - 00321360 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-12 05:51 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\hu-HU
2013-09-12 05:51 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-09-11 06:50 - 2013-09-11 06:35 - 00000000 ____D C:\Users\Timo\Downloads\Lupi Gladius - Lucania
2013-09-11 06:48 - 2013-09-10 06:48 - 00000000 ____D C:\Users\Timo\Documents\Fußball-Vereine
2013-09-11 06:35 - 2013-09-11 06:12 - 69062182 _____ C:\Users\Timo\Downloads\lucania_2013.rar
2013-09-11 06:12 - 2012-05-27 13:55 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-11 06:12 - 2012-05-27 13:55 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-10 20:35 - 2012-05-26 14:59 - 02277810 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-10 06:59 - 2013-09-10 06:49 - 00000000 ____D C:\Users\Timo\Downloads\Sunset Wings - Shining Thro' The Veil Of Night
2013-09-09 07:36 - 2013-09-09 07:23 - 00000000 ____D C:\Users\Timo\Downloads\Verney 1826 - Ex Libris
2013-09-08 20:59 - 2013-09-08 20:59 - 00000000 ____D C:\Users\Timo\Downloads\Karjalan Sissit - Viinaa Pittaa Juua
2013-09-07 16:29 - 2012-05-31 20:41 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-06 19:00 - 2013-09-06 19:00 - 00016035 _____ C:\Users\Timo\Downloads\S_20130906_19027_Neue_Nachrichten.zip
2013-09-06 18:51 - 2013-07-27 15:26 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Intermediate
2013-09-06 18:50 - 2013-09-06 18:50 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Snz
2013-08-28 20:47 - 2013-08-28 20:47 - 02218359 _____ C:\Users\Timo\AppData\Local\omesuperv.exe
2013-08-19 13:31 - 2012-11-24 17:44 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-08-19 11:52 - 2013-08-19 11:52 - 06953096 _____ (Microsoft Corporation) C:\Users\Timo\Downloads\Silverlight (1).exe
2013-08-18 22:35 - 2013-08-18 20:56 - 00019013 _____ C:\Users\Timo\Documents\Frankreich2013-Rückfahrt.odt
2013-08-18 19:45 - 2012-06-10 18:01 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-08-17 15:39 - 2013-08-17 15:39 - 00000000 ____D C:\Users\Timo\AppData\Roaming\Apple Computer
2013-08-17 12:22 - 2013-08-17 12:21 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-08-17 12:11 - 2013-08-17 12:09 - 00000000 ____D C:\Program Files\QuickTime
2013-08-17 12:10 - 2013-08-17 12:10 - 00001815 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-08-17 12:09 - 2013-08-17 12:09 - 00000000 ____D C:\ProgramData\Apple Computer
2013-08-17 12:05 - 2013-08-17 12:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-08-17 12:04 - 2013-08-17 12:04 - 00000000 ____D C:\Users\Timo\AppData\Local\Apple
2013-08-17 12:04 - 2013-08-17 12:04 - 00000000 ____D C:\ProgramData\Apple
2013-08-17 12:04 - 2013-08-17 12:04 - 00000000 ____D C:\Program Files\Apple Software Update
2013-08-17 12:03 - 2013-08-17 12:01 - 41404760 _____ (Apple Inc.) C:\Users\Timo\Downloads\QuickTimeInstaller.exe
Some content of TEMP:
====================
C:\Users\Timo\AppData\Local\Temp\LyriXtmp.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-08 11:29
==================== End Of Log ============================ --- --- ---
--- --- ---
Nun das Addition-File: Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-09-2013 04
Ran by Timo at 2013-09-15 00:10:53
Running from C:\Users\Timo\Downloads
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
3D-Tool FreeViewer V10.02 (HKCU Version: V10.02)
AAVUpdateManager (Version: 18.00.0000)
Adobe Flash Player 11 Plugin (Version: 11.8.800.168)
Adobe Reader X (10.1.3) - Deutsch (Version: 10.1.3)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.923.1)
AMD Catalyst Install Manager (Version: 8.0.873.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0405.2205.37728)
AMD Media Foundation Decoders (Version: 1.0.70405.2224)
AMD VISION Engine Control Center (Version: 2012.0405.2205.37728)
Apple Application Support (Version: 2.3.4)
Apple Software Update (Version: 2.1.3.127)
BabylonObjectInstaller (Version: 2.0.0.2)
Canon Inkjet Printer Driver Add-On Module
Canon My Printer
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728)
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728)
Catalyst Control Center Localization All (Version: 2012.0405.2205.37728)
CCC Help Chinese Standard (Version: 2012.0405.2204.37728)
CCC Help Chinese Traditional (Version: 2012.0405.2204.37728)
CCC Help Czech (Version: 2012.0405.2204.37728)
CCC Help Danish (Version: 2012.0405.2204.37728)
CCC Help Dutch (Version: 2012.0405.2204.37728)
CCC Help English (Version: 2012.0405.2204.37728)
CCC Help Finnish (Version: 2012.0405.2204.37728)
CCC Help French (Version: 2012.0405.2204.37728)
CCC Help German (Version: 2012.0405.2204.37728)
CCC Help Greek (Version: 2012.0405.2204.37728)
CCC Help Hungarian (Version: 2012.0405.2204.37728)
CCC Help Italian (Version: 2012.0405.2204.37728)
CCC Help Japanese (Version: 2012.0405.2204.37728)
CCC Help Korean (Version: 2012.0405.2204.37728)
CCC Help Norwegian (Version: 2012.0405.2204.37728)
CCC Help Polish (Version: 2012.0405.2204.37728)
CCC Help Portuguese (Version: 2012.0405.2204.37728)
CCC Help Russian (Version: 2012.0405.2204.37728)
CCC Help Spanish (Version: 2012.0405.2204.37728)
CCC Help Swedish (Version: 2012.0405.2204.37728)
CCC Help Thai (Version: 2012.0405.2204.37728)
CCC Help Turkish (Version: 2012.0405.2204.37728)
ccc-utility (Version: 2012.0405.2205.37728)
Delta Chrome Toolbar
Delta toolbar (Version: 1.8.22.0)
dreamboxEDIT -- The one and only settings editor for your Dreambox
Driver Genius Professional Edition (Version: 10.0)
DVDx 4.0 Open Edition (Version: 4.0 (Open Edition))
E.M. Total Video Player 1.31
Free YouTube to MP3 Converter version 3.12.9.725 (Version: 3.12.9.725)
Google Chrome (Version: 29.0.1547.66)
Google Earth (Version: 6.2.2.6613)
Google Update Helper (Version: 1.3.21.153)
hama PC-Webcam Messenger Set II (Version: 5.7.19100.100)
IrfanView (remove only) (Version: 4.32)
IsoBuster 2.8.5 (Version: 2.8.5)
Java 7 Update 40 (Version: 7.0.400)
Java Auto Updater (Version: 2.1.9.8)
JavaFX 2.1.1 (Version: 2.1.1)
JDownloader 0.9 (Version: 0.9)
Kaspersky Internet Security 2013 (Version: 13.0.1.4190)
K-Lite Codec Pack 9.9.5 (Standard) (Version: 9.9.5)
Lyrics Seeker
Magellan Communicator (Version: 1.15.020)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 23.0.1 (x86 de) (Version: 23.0.1)
Mozilla Maintenance Service (Version: 23.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyFreeCodec
Nero 7 Premium (Version: 7.02.5043)
NVIDIA Drivers (Version: 1.10.57.35)
NVIDIA ForceWare Network Access Manager (Version: 1.00.7325.0)
OpenOffice.org 3.4 (Version: 3.4.9590)
PiccShare (HKCU Version: 2.0)
Platform (Version: 1.39)
Primo (Version: 1.00.0000)
QuickTime (Version: 7.74.80.86)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.6519)
Runtime (Version: 1.00.0000)
Samsung Kies (Version: 2.5.2.13021_10)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.22.0)
Skype™ 6.0 (Version: 6.0.126)
Snap.Do (Version: 1.107.1.11691)
Snap.Do Engine (HKCU Version: 1.107.1.11691)
Sony Picture Utility (Version: 4.2.00.15030)
Steuer-Spar-Erklärung 2013 (Version: 18.06)
TomTom HOME (Version: 2.9.5)
TomTom HOME Visual Studio Merge Modules (Version: 1.0.2)
TuneUp Utilities 2012 (Version: 12.0.2020.20)
TuneUp Utilities Language Pack (de-DE) (Version: 12.0.2020.20)
Ulead Photo Explorer 8.6 (Version: 8.6)
Ulead PhotoImpact 10 (Version: 10.0)
Universal Extractor 1.6.1 (Version: 1.6.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Video Converter
VIA Plattform-Geräte-Manager (Version: 1.39)
Video Converter Packages
VideoLAN VLC media player 0.8.6i (Version: 0.8.6i)
Werksfeuerwehr-Simulator Version 1.0
Winamp (Version: 5.623 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows Media Encoder 9-Reihe
Windows Media Encoder 9-Reihe (Version: 9.00.2980)
WinRAR 4.11 (32-Bit) (Version: 4.11.0)
XMedia Recode Version 3.1.6.9 (Version: 3.1.6.9)
==================== Restore Points =========================
==================== Hosts content: ==========================
2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0BF1C571-7D73-42E0-B9D5-58DB2556696A} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {0D9B5D92-3A22-486D-A887-3AA21597CF27} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {166715F7-31FB-4EF3-9429-BDDC4665C157} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {2C3455B9-AE5C-47E3-82FD-BE500BF089FA} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files\TuneUp Utilities 2012\OneClick.exe [2011-10-14] (TuneUp Software)
Task: {69601243-01EC-445A-93AB-F75917D6878B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {750C2C79-AF6D-46D8-AA86-7A3AC8B8286E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-05-31] (Google Inc.)
Task: {78128D5E-BD88-4C1F-B67C-E3F395DA34A7} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {7F846CAD-4A7D-4B5A-B7BE-91EEA344A545} - System32\Tasks\Lyrics Seeker Update => C:\Program Files\LyricsSeeker\Lupdate.exe [2013-09-11] ()
Task: {A6D59543-68C1-4B09-9C3F-CB515DA80D3C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-05-31] (Google Inc.)
Task: {B316679C-2EB8-4246-A112-7A6876C1C194} - System32\Tasks\EPUpdater => C:\Users\Timo\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [2013-08-04] ()
Task: {EB6DA5EF-D89E-41BC-8675-19A85B8A3482} - System32\Tasks\QtraxPlayer => C:\Program Files\Microsoft Silverlight\sllauncher.exe [2013-05-13] (Microsoft Corporation)
Task: {F659C82C-201C-4A8A-9806-BD1BC0D3643B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-11] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Lyrics Seeker Update.job => C:\Program Files\LyricsSeeker\Lupdate.exe
==================== Loaded Modules (whitelisted) =============
2006-12-23 18:11 - 2006-12-23 18:11 - 01142784 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\MediaLibraryNSE.dll
2012-05-26 16:02 - 2012-05-11 15:45 - 00080496 ____R () C:\Program Files\VIA\VIAudioi\VDeck\QsApoApi.dll
2012-05-26 16:02 - 2012-05-11 15:45 - 00113264 ____R () C:\Program Files\VIA\VIAudioi\VDeck\Dts2ApoApi.dll
2012-05-26 16:02 - 2012-05-11 15:45 - 02198128 ____R (VIA) C:\Program Files\VIA\VIAudioi\VDeck\Skin.dll
2012-05-26 16:02 - 2012-05-11 15:45 - 03156592 ____R (TODO: <Company name>) C:\Program Files\VIA\VIAudioi\VDeck\Skin3.dll
2012-05-28 18:32 - 2004-07-26 17:11 - 00028672 ____N () C:\Program Files\Common Files\Ulead Systems\AutoDetector\DetMethod.dll
2012-05-28 20:56 - 2010-03-29 02:50 - 00077824 _____ (CANON INC.) C:\Program Files\Canon\MyPrinter\BJMyRes.dll
2012-08-17 22:40 - 2013-06-20 06:48 - 00083648 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ushata.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 00013240 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpinit.dll
2012-08-17 22:38 - 2013-04-25 08:51 - 00828096 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpmain.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00097720 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\fssync.DLL
2012-08-17 22:39 - 2012-08-17 22:39 - 00147896 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\DumpWriter.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00611768 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\service.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00159672 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prremote.DLL
2012-08-17 22:39 - 2012-08-17 22:39 - 00369080 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prloader.dll
2012-08-17 22:41 - 2012-08-17 22:41 - 00110008 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\nfio.ppl
2012-08-17 22:41 - 2012-08-17 22:41 - 00021432 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\fsdrvplg.ppl
2012-08-17 22:41 - 2012-08-17 22:41 - 00038840 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\winreg.ppl
2012-08-17 22:41 - 2013-01-31 18:33 - 00045576 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\pxstub.ppl
2012-08-17 22:41 - 2013-02-26 20:56 - 01329008 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\params.ppl
2012-08-17 22:38 - 2012-08-17 22:38 - 01108408 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\app_core_legacy.dll
2012-08-17 22:39 - 2013-01-31 18:32 - 00609288 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\key_value_storage.DLL
2012-08-17 22:39 - 2012-08-17 22:39 - 00254392 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\eka_meta.dll
2012-08-17 22:40 - 2012-08-17 22:40 - 00253368 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\updater_meta.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 00126904 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\content_filtering_meta.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 00256440 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\am_meta.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 00434616 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ac_meta.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 00362936 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\app_core_meta.dll
2012-08-17 22:39 - 2013-01-31 18:33 - 00825784 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\product_metainfo.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00208824 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\plugins_meta.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00297400 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_meta.dll
2012-08-17 22:40 - 2013-04-25 08:51 - 00238272 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ucp_meta.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00183224 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\klifpp_meta.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00097720 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\instrumental_meta.dll
2012-08-17 22:40 - 2012-08-17 22:40 - 00395192 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\storage.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 00036280 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpservice.dll
2012-08-17 22:41 - 2013-02-26 20:56 - 04885872 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpgui.ppl
2012-08-17 22:39 - 2012-08-17 22:39 - 02321336 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\QtCore4.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 02289080 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\QtDeclarative4.dll
2012-08-17 22:40 - 2012-08-17 22:40 - 01296824 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\QtScript4.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00182200 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\QtSql4.dll
2012-08-17 22:40 - 2012-08-17 22:40 - 07269816 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\QtGui4.dll
2012-08-17 22:40 - 2012-08-17 22:40 - 02051512 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\QtNetwork4.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 00479160 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll
2012-08-17 22:41 - 2013-01-31 18:33 - 02162616 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\basegui.ppl
2012-08-17 22:41 - 2013-02-26 20:56 - 00041328 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\thpimpl.ppl
2012-08-17 22:39 - 2012-08-17 22:39 - 00085944 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\memmon.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00657336 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\localization_manager.dll
2012-08-17 22:39 - 2013-01-31 18:33 - 00288696 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\parental_control_gui.dll
2012-08-17 22:41 - 2012-08-17 22:41 - 00018360 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\hashmd5.ppl
2012-08-17 22:40 - 2012-08-17 22:40 - 00034232 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qgif4.dll
2012-08-17 22:40 - 2012-08-17 22:40 - 00036792 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qico4.dll
2012-08-17 22:40 - 2012-08-17 22:40 - 00189368 _____ (Digia Plc) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qjpeg4.dll
2012-08-17 22:41 - 2012-08-17 22:41 - 00088504 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\propmap.ppl
2013-02-13 20:32 - 2013-03-28 11:25 - 00250368 _____ (Windows (R) Codename Longhorn DDK provider) C:\Program Files\Samsung\Kies\External\DeviceModules\UPNPDevice_Kies.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00195512 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\gadget.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00207800 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\remote_eka_prague_loader.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00159672 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prremote.dll
2007-01-15 13:20 - 2007-01-15 13:20 - 03043328 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll
2006-12-23 18:06 - 2006-12-23 18:06 - 00015360 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvrPS.dll
2006-12-23 17:48 - 2006-12-23 17:48 - 01294336 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMDataServices.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 02123264 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies\acfd31db5e9efa2fbd5508803d784cf5\Kies.ni.exe
2013-08-14 20:43 - 2013-08-14 20:43 - 01260032 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Interface\93abd206a7a31d3ed74b6c7a8af157b5\Kies.Interface.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 01934336 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\a2f1fb21601924a49a492468bcafc433\Kies.UI.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 00079360 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\c1eaf4e082be90312f0deb565e6464f9\Kies.MVVM.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 00160256 _____ (hxxp://code.google.com/p/gong-wpf-dragdrop) C:\Windows\assembly\NativeImages_v4.0.30319_32\GongSolutions.Wpf.D#\66fa34073852beddee22e89b8bba2d75\GongSolutions.Wpf.DragDrop.ni.dll
2013-07-10 20:21 - 2013-07-10 20:21 - 00052224 _____ ( ) C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DeviceSearc#\0ea6ef1c98aaa51bfa8b25517980d8f2\Interop.DeviceSearchLib.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 00281600 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Util\9055ee9af901656b847fd53be491c8ae\Kies.Common.Util.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 06892544 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceHost\764e99421c1a5997ecbd3b356db025b2\DeviceHost.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00109056 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.CRMMana#\f236d7a307bf64e12e2a19ef0f058ed9\Kies.Common.CRMManager.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00066560 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DBManag#\b43a0c9441a5b8b093b2302f7d36dca0\Kies.Common.DBManager.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00205824 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MainUI\364e40976f939f40a4935928d514ae48\Kies.Common.MainUI.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 01180160 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\46b230526482c840c1af7d9e771cc195\Kies.Common.DeviceService.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00063488 _____ (Samsung Electronics) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.AllShare\04f1a650382f04e54c69cfb3a95f3a55\Kies.Common.AllShare.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00515584 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MediaDB\6bde80c3c4db30bb90c364c98f592b8c\Kies.Common.MediaDB.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00029184 _____ (Samsung Electronics) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.StoreMa#\b83cfebc60105d7b3768c43c666a1b5b\Kies.Common.StoreManager.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00283648 _____ (mobileleader) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\3431ec41f2faf236745d79de440f7833\Kies.Common.DeviceServiceLib.FirmwareUpdate.Common.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00189952 _____ (mobileleader) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\c199712392f438f179b0af05b9770d1f\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 02201088 _____ (Samsung Electronics) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Multime#\1c19d03a2479b9cee07847ac4618bf51\Kies.Common.Multimedia.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 00187904 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\9c66cf67211133c8dfdeceb962470f00\Kies.Common.DeviceServiceLib.Interface.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 01618432 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Locale\a2cad9a39eba4104b766ee263c3d064f\Kies.Locale.ni.dll
2013-08-14 20:43 - 2013-08-14 20:43 - 00630784 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\f63dae9aa2532ee23ccf9eb3a703f638\Kies.Common.DeviceServiceLib.DeviceDataService.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00404480 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\BATPlugin\49debd23447fb70e5a6ea561243fc75d\BATPlugin.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00946176 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\MusicManager\dc2104396dccbf7cb189f8c31f634547\MusicManager.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 01984000 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\Phonebook\876a30fb60e690c77a246509c239a486\Phonebook.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00783360 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\PhotoManager\9547e0e086cc6be5067ae7dcf6e3468e\PhotoManager.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 01144832 _____ (Samsung Electronics) C:\Windows\assembly\NativeImages_v4.0.30319_32\Podcaster\37c4ffa4238124c524508707ff63b44c\Podcaster.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00475648 _____ (samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\VideoManager\2bb2496b15b50e6da5f32727b9bf208c\VideoManager.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00306176 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceMusic\302cc7dbd3ff0a4545c094a27b040ccd\DeviceMusic.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00354304 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePhoto\1a07d631354ef960dd564594ca00fdf3\DevicePhoto.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00299008 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceVideo\5c0430e7570e85dd4387ec8361d7089a\DeviceVideo.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00615936 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePodcast\a41c8ca0b601597ed6f28d7f0fddf477\DevicePodcast.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00307200 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\DummyStorePlugin\6aade1f7e93114465b33ad70b76d71bd\DummyStorePlugin.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 17490432 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\7ad5b3d69190792ac662ddf1b2b7f3b7\Kies.Theme.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00583168 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\71126b43c6ceebe4df51ca77d4168382\Kies.Common.DeviceServiceLib.FileService.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00928256 _____ (Samsung) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\22cc31739275d4bab2255931e941664f\Kies.Common.DeviceServiceLib.DeviceManagement.ni.dll
2013-07-10 20:22 - 2013-07-10 20:22 - 00045056 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\af00733ee98489d57df43ed1a9fe0731\Kies.Common.DeviceServiceLib.FirmwareUpdate.FirmwareUpdateAgentHelper.ni.dll
2013-07-10 20:21 - 2013-07-10 20:21 - 00395776 _____ (ElmueSoft) C:\Windows\assembly\NativeImages_v4.0.30319_32\CabLib\abebd90a3673cde0cd3a1b81a9f18f86\CabLib.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00732160 _____ (MSC) C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Plugin.Content#\e837ccfb5210cdcb2c791a0e95ca0bc6\Kies.Plugin.ContentsManagerLib.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00701952 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceCommonLib\b2e26f833b94a225b38baad4d062eee5\DeviceCommonLib.ni.dll
2013-07-10 20:22 - 2013-07-10 20:22 - 00175616 _____ ( ) C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DevFileServ#\38036ca28a3a2e8b52e6d88d6c8fd7c3\Interop.DevFileServiceLib.ni.dll
2013-08-14 20:44 - 2013-08-14 20:44 - 00232960 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\c5efe841e2998c266e0f5e29bed04b55\ASF_cSharpAPI.ni.dll
2013-07-10 20:22 - 2013-07-10 20:22 - 00171520 _____ ( ) C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.P3MPINTERFA#\a474771ad225ef2b83d38a86a160ed53\Interop.P3MPINTERFACECTRLLib.ni.dll
2013-07-10 20:22 - 2013-07-10 20:22 - 00030720 _____ ( ) C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.PRPLAYERCOR#\8602606d50580b475b4cd3fcd83a0985\Interop.PRPLAYERCORELib.ni.dll
2013-07-10 20:22 - 2013-07-10 20:22 - 00052224 _____ ( ) C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.MP3FileInfo#\be9d4a331a41a83465c56b735845c86b\Interop.MP3FileInfoCOMLib.ni.dll
2013-07-10 20:22 - 2013-07-10 20:22 - 00032256 _____ ( ) C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.OGGFileInfo#\0cd09e4839a2bfe65311191d2e61c698\Interop.OGGFileInfoCOMLib.ni.dll
2013-02-05 18:54 - 2013-02-05 18:54 - 00307200 _____ ( MarkAny.) C:\Program Files\Samsung\Kies\External\MACSSDK.dll
2013-02-13 12:00 - 2013-03-20 10:06 - 00247176 _____ (Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\GlobalUtil.dll
2013-02-13 12:00 - 2013-03-20 10:06 - 00363408 _____ (Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\AgentDialogs.dll
2013-02-13 12:00 - 2013-03-20 10:06 - 00106496 _____ (TODO: <Company name>) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\BaseUI.dll
2013-02-13 12:00 - 2013-03-20 10:06 - 01037200 _____ (Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\CommonModule.dll
2013-02-13 12:00 - 2013-03-20 10:06 - 00053640 _____ (Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\AgentModels.dll
2013-02-13 12:00 - 2013-03-20 10:06 - 01617800 _____ (Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\AgentModule.dll
2013-02-13 12:00 - 2013-03-20 10:06 - 06977944 _____ (Codejock Software) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\ToolkitPro1331vc90U.dll
2006-12-23 17:44 - 2006-12-23 17:44 - 00286720 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMSQLDB.dll
2006-12-23 17:42 - 2006-12-23 17:42 - 00065536 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMLogCxx.dll
2005-09-04 14:29 - 2005-09-04 14:29 - 00737280 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\log4cxx.dll
2006-12-23 17:43 - 2006-12-23 17:43 - 00499712 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMCoFoundation.dll
2006-12-23 17:43 - 2006-12-23 17:43 - 00102400 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMPluginBase.dll
2006-12-23 17:43 - 2006-12-23 17:43 - 00155648 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMFullTextExtraction.dll
2006-12-23 17:52 - 2006-12-23 17:52 - 00172032 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMSearchPluginSimilarImages.dll
2006-12-28 13:42 - 2006-12-28 13:42 - 03371008 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NeroIPP.dll
2006-12-23 18:07 - 2006-12-23 18:07 - 00027648 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexingServicePS.dll
2013-08-22 18:18 - 2013-08-22 12:03 - 00187984 _____ () C:\Users\Timo\AppData\Roaming\BabSolution\Shared\enhancedNT.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00032800 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00056352 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.AutomaticUpdates.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00150560 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2007-05-11 22:09 - 2007-05-11 22:09 - 00218536 _____ (Microsoft Corporation) C:\Users\Timo\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.Logging.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00112672 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00045600 _____ (Smartbar) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettingsAutoUpdater.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 01767456 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00078880 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessLogic.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00017440 _____ (Microsoft) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Personalization.Settings.UserSettingsManager.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00036384 _____ (Microsoft) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.Base.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00013344 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.EventManager.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00726048 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00101408 _____ (Microsoft) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessEntities.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00059936 _____ (Microsoft) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.ChromeLocalPlugin.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00177696 _____ (Microsoft) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettings.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00081952 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00014368 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00016928 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00020512 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.SideBySide.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00026144 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.Utilities.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00029728 _____ (Microsoft) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.DefaultBrowser.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00014880 _____ (Microsoft) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.ShareManagerLocalPlugin.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00054304 _____ (Microsoft) C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.FireFoxLocalPlugin.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00057888 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2013-08-14 07:02 - 2013-08-14 07:02 - 00146464 _____ ( ) C:\Windows\assembly\GAC_MSIL\Interop.SHDocVw\1.1.0.0__84542ff99aed6a4d\Interop.SHDocVw.dll
2013-08-14 07:02 - 2013-08-14 07:02 - 08013664 _____ ( ) C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00014368 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.ProcessDownMonitor.dll
2013-08-14 07:03 - 2013-08-14 07:03 - 00911128 _____ () C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.66.0__db937bc2d44ff139\System.Data.SQLite.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00014880 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.GUI.Multimedia.Loader.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00052256 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2013-08-04 20:01 - 2013-08-04 20:01 - 00048160 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2013-08-04 20:01 - 2013-08-04 20:01 - 00026144 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00026144 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2013-08-04 19:41 - 2013-08-04 19:41 - 00194080 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.GUI.Multimedia.dll
2013-08-04 19:40 - 2013-08-04 19:40 - 00068640 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll
2013-08-04 19:40 - 2013-08-04 19:40 - 00351264 _____ ( ) C:\Users\Timo\AppData\Local\Smartbar\Application\Interop.WMPLib.dll
2013-08-04 20:02 - 2013-08-04 20:02 - 00246304 _____ () C:\Users\Timo\AppData\Local\Smartbar\Application\Smartbar.Resources.NetSeer.dll
2007-05-11 22:08 - 2007-05-11 22:08 - 00079272 _____ (Microsoft Corporation) C:\Users\Timo\AppData\Local\Smartbar\Application\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll
2012-11-18 13:19 - 2008-09-30 18:04 - 00052736 _____ (Sony Corporation) C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcherLOC.DLL
2012-04-05 21:57 - 2012-04-05 21:57 - 00311296 _____ (Advanced Mirco Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2012-04-05 21:57 - 2012-04-05 21:57 - 00192512 _____ (Advanced Mirco Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2009-01-20 14:51 - 2009-01-20 14:51 - 00007168 _____ ( ) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2012-04-05 21:56 - 2012-04-05 21:56 - 00037376 _____ (AMD) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\FUEL.Implementation.dll
2012-04-05 21:56 - 2012-04-05 21:56 - 00095232 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2012-04-05 22:00 - 2012-04-05 22:00 - 00028160 _____ (Advanced Mirco Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll
2012-04-05 22:00 - 2012-04-05 22:00 - 00369152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2012-04-14 11:22 - 2012-04-14 11:22 - 32602112 _____ () C:\Program Files\Google\Google Earth\client\googleearth_free.dll
2012-01-10 03:49 - 2012-01-10 03:49 - 00087040 _____ () C:\Program Files\Google\Google Earth\client\ge_expat.dll
2012-08-17 22:39 - 2012-08-17 22:39 - 00351160 _____ (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\office_antivirus.dll
2013-09-07 16:29 - 2013-09-02 22:35 - 00709584 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\libglesv2.dll
2013-09-07 16:29 - 2013-09-02 22:35 - 00099792 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\libegl.dll
2013-09-07 16:29 - 2013-09-02 22:35 - 04053456 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll
2013-09-07 16:29 - 2013-09-02 22:35 - 00410576 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
2013-09-07 16:29 - 2013-09-02 22:35 - 01604560 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll
2013-08-14 07:03 - 2013-08-04 20:01 - 00170016 _____ ( ) C:\Users\Timo\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl\1.4_0\GoogleChromeRemotePlugin.dll
2013-09-07 16:29 - 2013-09-02 22:35 - 13599184 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) ==========
AlternateDataStreams: C:\ProgramData\TEMP:B946D9EE
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/14/2013 04:20:55 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x77c
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/14/2013 02:53:25 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x794
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/14/2013 02:05:12 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x7d0
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/13/2013 06:03:58 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x7b0
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/12/2013 09:41:44 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x6a0
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/12/2013 09:13:33 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x798
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/12/2013 05:59:25 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x7a0
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/12/2013 06:05:35 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x65c
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/12/2013 05:52:35 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x670
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/11/2013 08:16:42 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4f7e4d40
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e00b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002bdc
ID des fehlerhaften Prozesses: 0x788
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
System errors:
=============
Error: (09/14/2013 08:34:26 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst ShellHWDetection erreicht.
Error: (09/14/2013 07:45:52 PM) (Source: volmgr) (User: )
Description: Das System konnte den Treiber für das Speicherabbild nicht laden.
Error: (09/14/2013 07:45:47 PM) (Source: volmgr) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (09/14/2013 04:20:57 PM) (Source: Service Control Manager) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/14/2013 03:40:55 PM) (Source: volmgr) (User: )
Description: Das System konnte den Treiber für das Speicherabbild nicht laden.
Error: (09/14/2013 03:40:50 PM) (Source: volmgr) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (09/14/2013 02:53:25 PM) (Source: Service Control Manager) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/14/2013 02:35:33 PM) (Source: volmgr) (User: )
Description: Das System konnte den Treiber für das Speicherabbild nicht laden.
Error: (09/14/2013 02:35:27 PM) (Source: volmgr) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (09/14/2013 02:05:13 PM) (Source: Service Control Manager) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Microsoft Office Sessions:
=========================
Error: (09/14/2013 04:20:55 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc77c01ceb15012b79326C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dllddd19558-1d48-11e3-b0e0-002522b0c423
Error: (09/14/2013 02:53:25 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc79401ceb146f1011972C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dlla43fdc2f-1d3c-11e3-ae4d-002522b0c423
Error: (09/14/2013 02:05:12 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc7d001ceb12a42a4b49aC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dlle8133928-1d35-11e3-954b-002522b0c423
Error: (09/13/2013 06:03:58 AM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc7b001ceb034b345e1d4C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll832d9fe6-1c29-11e3-be6a-002522b0c423
Error: (09/12/2013 09:41:44 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc6a001ceafee2d2cd274C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll5a1688b2-1be3-11e3-9f69-002522b0c423
Error: (09/12/2013 09:13:33 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc79801ceafdc850e8db4C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll6a471581-1bdf-11e3-ba4a-002522b0c423
Error: (09/12/2013 05:59:25 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc7a001ceafc4ae84e49eC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll4bb219b0-1bc4-11e3-a470-002522b0c423
Error: (09/12/2013 06:05:35 AM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc65c01ceaf6bd42d0aeaC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll929e49a8-1b60-11e3-b17a-002522b0c423
Error: (09/12/2013 05:52:35 AM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc67001ceaf6b5e04e0a4C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dllc204592c-1b5e-11e3-9ce5-002522b0c423
Error: (09/11/2013 08:16:42 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d40Device.dll4.1.0.04f55e00bc000000500002bdc78801ceaf111d5e3f46C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll4e7b7e66-1b0e-11e3-9d3f-002522b0c423
CodeIntegrity Errors:
===================================
Date: 2013-09-08 11:33:06.053
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.052
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.050
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.046
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.044
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.042
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.035
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.033
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.031
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-08 11:33:06.025
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 82%
Total physical RAM: 3583.3 MB
Available physical RAM: 611.69 MB
Total Pagefile: 7164.9 MB
Available Pagefile: 3317.82 MB
Total Virtual: 2047.88 MB
Available Virtual: 1903.4 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:103.83 GB) (Free:3.26 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive g: (Volume) (Fixed) (Total:48.83 GB) (Free:24.47 GB) NTFS
Drive h: (FREECOM HDD) (Fixed) (Total:931.28 GB) (Free:865.06 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 153 GB) (Disk ID: 75EE6FC8)
Partition 1: (Active) - (Size=104 GB) - (Type=42)
Partition 2: (Not Active) - (Size=49 GB) - (Type=42)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 932 GB) (Disk ID: 79AAAD8A)
Partition 1: (Not Active) - (Size=932 GB) - (Type=0C)
==================== End Of Log ============================ Weiter mit dem GMER-File: Code:
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-09-15 00:33:21
Windows 6.1.7601 Service Pack 1 \Device\Harddisk0\DR0 -> \Device\00000060 Maxtor_6 rev.BANC 152,67GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Timo\AppData\Local\Temp\kxldipog.sys
---- System - GMER 2.1 ----
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwAdjustPrivilegesToken [0x92CA46BA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwAlpcConnectPort [0x92C57C02]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwAlpcCreatePort [0x92C57F4A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwAlpcSendWaitReceivePort [0x92C58390]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwClose [0x92C4028C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwConnectPort [0x92C578DC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreateEvent [0x92C40804]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreateMutant [0x92C406EA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreatePort [0x92C57DAE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreateSection [0x92CA7528]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreateSemaphore [0x92C40924]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreateThread [0x92CA69BC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreateThreadEx [0x92CA6BFC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreateUserProcess [0x92CA6660]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwCreateWaitablePort [0x92C57E7C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwDebugActiveProcess [0x92CA6506]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwDeviceIoControlFile [0x92C402D0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwDuplicateObject [0x92CA47FC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwLoadDriver [0x92CA4464]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwMapViewOfSection [0x92CA7320]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwNotifyChangeKey [0x92C5606C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwOpenEvent [0x92C4089A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwOpenMutant [0x92C4077A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwOpenProcess [0x92CA60AE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwOpenSection [0x92CA77D4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwOpenSemaphore [0x92C409BA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwOpenThread [0x92CA6718]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwQueryDirectoryObject [0x92C40A44]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwQueryObject [0x92C5627A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwQueueApcThread [0x92CA71D4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwReplyPort [0x92C58174]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwReplyWaitReceivePort [0x92C58002]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwReplyWaitReceivePortEx [0x92C580B8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwRequestWaitReplyPort [0x92C581E4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwResumeThread [0x92CA6EFE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwSecureConnectPort [0x92C57A6A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwSetContextThread [0x92CA705C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwSetInformationToken [0x92C40AE6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwSetSystemInformation [0x92CA456E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwSuspendProcess [0x92CA624E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwSuspendThread [0x92CA6DA6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwSystemDebugControl [0x92C40AF8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwTerminateProcess [0x92CA63AE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwTerminateThread [0x92CA68B8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwUnmapViewOfSection [0x92CA793C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys ZwWriteVirtualMemory [0x92CA7666]
---- Kernel code sections - GMER 2.1 ----
.text ntkrnlpa.exe!ZwRollbackEnlistment + 142D 8303FA15 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 83079212 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text ntkrnlpa.exe!KeRemoveQueueEx + 10D7 8308046C 4 Bytes [BA, 46, CA, 92]
.text ntkrnlpa.exe!KeRemoveQueueEx + 10FF 83080494 8 Bytes [02, 7C, C5, 92, 4A, 7F, C5, ...] {ADD BH, [EBP+EAX*8-0x6e]; DEC EDX; JG 0xffffffcc; XCHG EDX, EAX}
.text ntkrnlpa.exe!KeRemoveQueueEx + 1143 830804D8 4 Bytes [90, 83, C5, 92] {NOP ; ADD EBP, -0x6e}
.text ntkrnlpa.exe!KeRemoveQueueEx + 116F 83080504 4 Bytes [8C, 02, C4, 92]
.text ntkrnlpa.exe!KeRemoveQueueEx + 1193 83080528 4 Bytes [DC, 78, C5, 92] {FDIVR QWORD [EAX-0x3b]; XCHG EDX, EAX}
.text ...
.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x94639000, 0x3DBAA0, 0xE8000020]
---- User code sections - GMER 2.1 ----
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[2004] C:\Windows\SYSTEM32\ntdll.dll time/date stamp mismatch;
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[2004] ntdll.dll!NtProtectVirtualMemory 77075F58 5 Bytes JMP 6FF42066 C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ushata.dll
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[2004] C:\Windows\system32\kernel32.dll time/date stamp mismatch; unknown module: KERNELBASE.dll
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[2004] C:\Windows\system32\ole32.dll time/date stamp mismatch; unknown module: CRYPTSP.dllunknown module: MPR.dllunknown module: msiltcfg.dllunknown module: CLBCatQ.DLLunknown module: OLEAUT32.dllunknown module: imagehlp.dllunknown module: KERNELBASE.dll
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[2004] USER32.dll!NotifyWinEvent + 6AE 7549D66C 4 Bytes [83, 30, F4, 6F] {XOR DWORD [EAX], -0xc; OUTS DX, DWORD [ESI]}
.text C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe[2176] ntdll.dll!DbgBreakPoint 77064108 1 Byte [C3]
.text C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe[2176] ntdll.dll!DbgUiRemoteBreakin 770CF1B3 5 Bytes JMP 7708E3B2 C:\Windows\SYSTEM32\ntdll.dll
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[3068] C:\Windows\SYSTEM32\ntdll.dll time/date stamp mismatch;
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[3068] ntdll.dll!NtProtectVirtualMemory 77075F58 5 Bytes JMP 6FF42066 C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ushata.dll
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[3068] C:\Windows\system32\kernel32.dll time/date stamp mismatch; unknown module: KERNELBASE.dll
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[3068] C:\Windows\system32\ole32.dll time/date stamp mismatch; unknown module: CRYPTSP.dllunknown module: MPR.dllunknown module: msiltcfg.dllunknown module: CLBCatQ.DLLunknown module: OLEAUT32.dllunknown module: imagehlp.dllunknown module: KERNELBASE.dll
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[3068] USER32.dll!NotifyWinEvent + 6AE 7549D66C 4 Bytes [83, 30, F4, 6F] {XOR DWORD [EAX], -0xc; OUTS DX, DWORD [ESI]}
---- Devices - GMER 2.1 ----
AttachedDevice \Driver\tdx \Device\Tcp kltdi.sys
AttachedDevice \Driver\tdx \Device\Udp kltdi.sys
AttachedDevice \Driver\tdx \Device\RawIp kltdi.sys
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys
---- EOF - GMER 2.1 ----
Rest kommt im nächsten Posting ....
Ich hoffe, du kannst mir helfen.
Schönen Sonntag, Skara ...:wtf: |