Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Verdacht auf Trojaner- wie kann ich ihn erkennen? (https://www.trojaner-board.de/150586-verdacht-trojaner-ihn-erkennen.html)

jessicako 03.03.2014 21:01
Verdacht auf Trojaner- wie kann ich ihn erkennen?
 
Ich hatte mir gestern Cutout runtergeladen und mich bei pixxel regestriert und seitdem passieren merkwürdige Dinge auf meinem Laptop. mit meinem bitdefender kann ich keinen scan mehr machen, stattdessen will er, dass ich für ihn nochmal alles aktiviere :wtf: ich weiß nicht ob ich all dem herausgeber vertrauen kann:nixda:
ich habe einen verdacht auf einen trojaner , wie kann ich ihn erkennen?

M-K-D-B 03.03.2014 21:06
:hallo:


Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.


Bitte beachte folgende Hinweise:
  • Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  • Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags.
  • Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  • Solltest du mir nicht innerhalb von 4 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo.
    Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  • Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
  • Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort zu starten!
    Ich kann Dir niemals eine Garantie geben, dass auch ich alles finde. Eine Formatierung ist meist der schnellere und immer der sicherste Weg.
    Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis dir jemand vom Team sagt, dass Du clean bist.





Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


jessicako 03.03.2014 21:16
! Ich kann den download nicht öffnen, ''der Computer wurde durch Windows geschützt''
von Windows Smartscreen vor der unbekannten datei

M-K-D-B 03.03.2014 21:19
Servus,



Zitat:
Zitat von jessicako (Beitrag 1262050)
! Ich kann den download nicht öffnen, ''der Computer wurde durch Windows geschützt''
von Windows Smartscreen vor der unbekannten datei
Downloade das Programm nochmal. Anstatt auf "ok" zu klicken, klicke auf den Link "weitere Informationen" und dann auf "Trotzdem ausführen".

jessicako 03.03.2014 21:33
FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-03-2014 01
Ran by Jessica (administrator) on JESSIESNOTEBOOK on 03-03-2014 21:22:52
Running from C:\Users\Jessica\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums

==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\mpcmdrun.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HpDeviceDetection3.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicatorCom.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\seccenter.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\odscanui.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicator.exe
(Microsoft Corporation) C:\Windows\system32\wwahost.exe
() C:\Users\Jessica\Downloads\SystemLook.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Jessica\Downloads\FRST64 (1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1739480 2014-02-27] (Bitdefender)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-22] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2013-07-26] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1179576 2014-01-21] (NVIDIA Corporation)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-02-12] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-02-12] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse-Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [HP Officejet 6500 E710a-f (NET)] - C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
AppInit_DLLs: C:\PROGRA~3\Wincert\WIN64C~1.DLL => C:\ProgramData\Wincert\win64cert.dll [8704 2013-11-04] ()
AppInit_DLLs:  C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll => C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll [210448 2014-02-03] (Aztec Media Inc)
AppInit_DLLs:  C:\PROGRA~2\SETTIN~1\systemk\x64\syskldr.dll => C:\Program Files (x86)\Settings Manager\systemk\x64\syskldr.dll [23568 2014-02-06] ()
AppInit_DLLs-x32: C:\PROGRA~3\Wincert\WIN32C~1.DLL => C:\ProgramData\Wincert\win32cert.dll [7168 2013-11-04] ()
AppInit_DLLs-x32:  C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll => C:\Program Files (x86)\Linkey\IEExtension\iedll.dll [182800 2014-02-03] (Aztec Media Inc)
AppInit_DLLs-x32:  C:\PROGRA~2\SETTIN~1\systemk\syskldr.dll => C:\Program Files (x86)\Settings Manager\systemk\syskldr.dll [19984 2014-02-06] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
Startup: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6500 E710a-f (Netzwerk).lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6500 E710a-f (Netzwerk).lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll [485904 2014-02-06] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll [658960 2014-02-06] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x85F1697C9702CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=122&itype=n&ver=11471&tm=274&src=ds&p={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=122&itype=n&ver=11471&tm=274&src=ds&p={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=122&itype=n&ver=11471&tm=274&src=ds&p={searchTerms}
BHO: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll (Bitdefender)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} Automatically Find HP Updates | HP Support
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Chrome:
=======
CHR HomePage: hxxp://www.default-search.net?sid=476&aid=122&itype=n&ver=11471&tm=274&src=hmp
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: hxxp://www.default-search.net/search?sid=476&aid=122&itype=n&ver=11471&tm=274&src=ds&p={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-15]
CHR Extension: (Google Drive) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-15]
CHR Extension: (YouTube) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-15]
CHR Extension: (Bitdefender Wallet) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2013-12-15]
CHR Extension: (Google-Suche) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-15]
CHR Extension: (Google Wallet) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-15]
CHR Extension: (Google Mail) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-15]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-02-27]

==================== Services (Whitelisted) =================

S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [77632 2013-11-21] (Bitdefender)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [47416 2014-02-05] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3448848 2014-02-06] (Aztec Media Inc.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2013-10-07] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1507248 2014-02-27] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2014-02-04] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261056 2013-12-15] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2014-02-04] (BitDefender)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-07-24] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [429272 2013-08-21] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3068120 2014-01-13] (Realtek Semiconductor Corporation                          )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-07-26] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-08-07] (BitDefender S.R.L.)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]
U3 aswMBR; \??\C:\Users\Jessica\AppData\Local\Temp\aswMBR.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-03 21:22 - 2014-03-03 21:23 - 00019451 _____ () C:\Users\Jessica\Downloads\FRST.txt
2014-03-03 21:22 - 2014-03-03 21:22 - 00000000 ____D () C:\FRST
2014-03-03 21:21 - 2014-03-03 21:21 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64 (1).exe
2014-03-03 21:20 - 2014-03-03 21:20 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (2).exe
2014-03-03 21:17 - 2014-03-03 21:17 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64.exe
2014-03-03 21:15 - 2014-03-03 21:15 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (1).exe
2014-03-03 21:13 - 2014-03-03 21:13 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST.exe
2014-03-03 20:31 - 2014-03-03 20:31 - 00165376 _____ () C:\Users\Jessica\Downloads\SystemLook_x64.exe
2014-03-03 20:30 - 2014-03-03 20:30 - 00139264 _____ () C:\Users\Jessica\Downloads\SystemLook.exe
2014-03-03 20:28 - 2014-03-03 20:28 - 00001806 _____ () C:\Users\Jessica\Downloads\aswMBR.txt
2014-03-03 20:28 - 2014-03-03 20:28 - 00000512 _____ () C:\Users\Jessica\Downloads\MBR.dat
2014-03-03 20:23 - 2014-03-03 20:23 - 04745728 _____ (AVAST Software) C:\Users\Jessica\Downloads\aswMBR.exe
2014-03-03 20:19 - 2014-03-03 20:21 - 00144902 _____ () C:\Users\Jessica\Downloads\OTL.Txt
2014-03-03 20:19 - 2014-03-03 20:19 - 00073448 _____ () C:\Users\Jessica\Downloads\Extras.Txt
2014-03-03 20:10 - 2014-03-03 20:11 - 00602112 _____ (OldTimer Tools) C:\Users\Jessica\Downloads\otl.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 04212128 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp64998.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\System.sav
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-03-02 15:35 - 2014-03-02 15:35 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2014-03-02 15:35 - 2013-12-24 14:39 - 00382492 _____ () C:\Windows\system32\Drivers\FW7650.bin
2014-03-02 15:30 - 2014-03-02 15:31 - 63711280 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp63440.exe
2014-03-02 15:29 - 2014-03-02 15:32 - 92740112 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp65235.exe
2014-03-02 15:27 - 2014-03-02 15:30 - 152183640 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp64853.exe
2014-03-02 15:03 - 2014-03-02 15:03 - 02958800 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp63752.exe
2014-03-02 15:00 - 2014-03-02 15:00 - 04395008 _____ () C:\Users\Jessica\Downloads\HPSupportSolutionsFramework (1).msi
2014-03-02 14:55 - 2014-03-02 14:55 - 04605952 _____ (Ghisler Software GmbH) C:\Users\Jessica\Downloads\tcm850x64.exe
2014-03-02 14:55 - 2014-03-02 14:55 - 00001063 _____ () C:\Users\Jessica\Desktop\Total Commander 64 bit.lnk
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\GHISLER
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Program Files (x86)\totalcmd
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Local\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\ProgramData\René's Homepage
2014-03-02 12:08 - 2014-03-02 12:09 - 00000000 ____D () C:\Program Files\Snipping Tool
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 12:04 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-03-02 12:04 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-03-02 12:00 - 2014-03-02 12:00 - 00614816 _____ () C:\Users\Jessica\Downloads\snipping-tool-plus-3-4-1-0.exe
2014-03-02 11:12 - 2014-03-02 11:12 - 02764854 _____ () C:\Users\Jessica\Documents\zeugnis.bmp
2014-03-02 11:12 - 2014-03-02 11:12 - 02764818 _____ () C:\Users\Jessica\Documents\zeugnis.tga
2014-03-02 11:07 - 2014-03-02 11:18 - 00014848 ___SH () C:\Users\Jessica\Documents\Thumbs.db
2014-03-02 10:57 - 2014-03-02 10:57 - 00000000 ____D () C:\ProgramData\BrowserProtect
2014-03-02 10:57 - 2014-03-02 10:57 - 00000000 ____D () C:\ProgramData\Browser Manager
2014-03-02 10:57 - 2014-03-02 10:57 - 00000000 ____D () C:\ProgramData\BitGuard
2014-03-02 08:57 - 2014-03-02 08:57 - 00000850 _____ () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\ProgramData\Wincert
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\Program Files (x86)\Linkey
2014-03-02 08:56 - 2014-03-03 21:23 - 00000000 ____D () C:\ProgramData\systemk
2014-03-02 08:51 - 2014-03-02 08:51 - 00000000 ____D () C:\Program Files (x86)\PaintStar
2014-03-02 08:48 - 2014-03-02 08:48 - 00000000 ____D () C:\Program Files (x86)\Franzis
2014-03-02 08:47 - 2014-03-02 08:47 - 02703781 _____ () C:\Users\Jessica\Downloads\paintstar.zip
2014-03-02 08:36 - 2014-03-02 08:36 - 00401744 _____ (Softonic ) C:\Users\Jessica\Downloads\SoftonicDownloader_fuer_cutout.exe
2014-02-28 19:28 - 2014-02-28 19:28 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 19:27 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 15:34 - 2014-02-28 15:34 - 00064124 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00044850 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral
2014-02-28 13:26 - 2014-02-28 13:26 - 00051954 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-27 14:27 - 2014-02-27 14:27 - 00062354 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-27 00:03 - 2014-02-27 00:03 - 00024504 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral (1).rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00019701 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00017313 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:09 - 2014-02-26 23:09 - 00056878 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 23:08 - 2014-02-26 23:08 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:08 - 2014-02-26 23:08 - 00021776 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 22:14 - 2014-02-26 22:14 - 00069693 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.srt
2014-02-26 22:14 - 2014-02-26 22:14 - 00026294 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.rar
2014-02-26 21:19 - 2014-02-26 21:19 - 00061699 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 21:19 - 2014-02-26 21:19 - 00023578 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00060899 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 20:25 - 2014-02-26 20:25 - 00023248 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral
2014-02-26 19:22 - 2014-02-26 19:22 - 00067340 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 19:21 - 2014-02-26 19:21 - 00025465 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 18:15 - 2014-02-26 18:15 - 00056534 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 18:10 - 2014-02-26 18:10 - 00020202 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.HDTV.x264-2HD.de-SubCentral.rar
2014-02-26 18:10 - 2014-02-26 18:10 - 00016194 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 16:46 - 2014-02-26 16:46 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1)
2014-02-26 16:28 - 2014-02-26 16:28 - 00057822 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 16:11 - 2014-02-26 16:11 - 00016341 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.Valar.Morghulis.1080p.BluRay.x264-ROVERS.de-SubCentral.rar
2014-02-26 16:09 - 2014-02-26 16:09 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1).rar
2014-02-26 16:00 - 2014-02-26 16:00 - 00021916 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 15:56 - 2014-02-26 15:56 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral.rar
2014-02-20 19:18 - 2014-03-02 10:37 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-02-20 19:18 - 2014-03-02 10:37 - 00000000 ____D () C:\Windows\system32\NV
2014-02-20 19:18 - 2014-02-20 19:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-20 19:15 - 2014-02-08 19:34 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-20 19:15 - 2014-02-08 19:34 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00483104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00408352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00378656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-02-19 14:33 - 2013-12-27 19:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-02-19 14:33 - 2013-12-27 19:42 - 00033056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-02-15 21:34 - 2014-02-15 21:34 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\dvdcss
2014-02-15 21:15 - 2014-02-15 21:15 - 00000603 _____ () C:\Windows\wmsetup.log
2014-02-15 21:14 - 2014-02-15 21:14 - 25842736 _____ (Microsoft Corporation) C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe
2014-02-14 18:38 - 2014-01-09 09:25 - 02804224 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-02-14 18:38 - 2014-01-09 08:59 - 01020928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-02-14 18:38 - 2014-01-09 08:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-02-14 18:38 - 2014-01-09 08:49 - 00919040 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-02-14 18:38 - 2014-01-09 08:44 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-02-14 18:38 - 2014-01-09 08:43 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-02-14 18:38 - 2014-01-09 08:29 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-02-14 18:38 - 2014-01-09 08:28 - 04217344 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-02-14 18:38 - 2014-01-09 08:28 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-02-14 18:38 - 2014-01-09 08:18 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-02-14 18:37 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.exe
2014-02-14 18:37 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.exe
2014-02-14 18:36 - 2014-01-04 21:50 - 01462216 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-02-14 18:36 - 2014-01-04 20:22 - 01202888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-02-14 18:36 - 2014-01-04 15:30 - 13209088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-02-14 18:36 - 2014-01-04 15:23 - 11702272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-02-14 18:36 - 2014-01-04 14:42 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-02-14 18:36 - 2014-01-04 14:40 - 07416832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-02-14 18:36 - 2014-01-04 14:36 - 00830976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-02-14 18:36 - 2014-01-04 14:28 - 04961792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-02-14 18:36 - 2013-12-21 03:10 - 00009701 _____ () C:\Windows\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-14 18:36 - 2013-12-21 03:10 - 00009701 _____ () C:\Windows\system32\connectedsearch-results.searchconnector-ms
2014-02-14 18:35 - 2013-12-20 11:10 - 01113040 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-02-14 18:35 - 2013-12-20 07:13 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-02-14 18:35 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-14 18:35 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-14 18:05 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-14 18:05 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-14 18:05 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-14 18:05 - 2014-01-07 06:00 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-14 18:05 - 2014-01-07 05:30 - 02071552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-14 18:05 - 2013-12-09 01:27 - 02152448 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-14 18:05 - 2013-12-09 00:54 - 01317376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-14 18:05 - 2013-11-21 07:42 - 04604416 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-14 18:05 - 2013-11-21 06:44 - 03936256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-14 18:04 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-14 18:04 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-14 18:04 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-14 18:04 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-14 18:04 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-14 18:04 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-14 18:04 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-14 18:04 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-14 18:04 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-14 18:04 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-14 18:04 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-14 18:04 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-14 18:04 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-14 18:04 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-14 18:04 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-14 18:04 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-14 18:04 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-14 18:04 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-14 18:04 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-14 18:04 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-14 18:04 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-14 18:04 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-14 18:04 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-14 18:04 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-14 18:04 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-14 18:04 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-14 18:04 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-14 18:04 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-14 18:04 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-14 18:04 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-14 18:04 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-14 18:04 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-14 18:04 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-14 18:04 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-14 18:03 - 2013-12-24 04:16 - 01530712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-14 18:03 - 2013-12-09 03:57 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-14 18:03 - 2013-12-09 02:51 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-04 14:29 - 2014-02-12 20:59 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Apple Computer
2014-02-04 14:29 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple Computer
2014-02-04 14:28 - 2014-02-04 14:28 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-04 14:28 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-02-04 14:26 - 2014-02-04 14:27 - 00000000 ____D () C:\ProgramData\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-02-04 14:14 - 2014-02-04 14:17 - 148904784 _____ (Apple Inc.) C:\Users\Jessica\Downloads\iTunes64Setup.exe

==================== One Month Modified Files and Folders =======

2014-03-03 21:23 - 2014-03-03 21:22 - 00019451 _____ () C:\Users\Jessica\Downloads\FRST.txt
2014-03-03 21:23 - 2014-03-02 08:56 - 00000000 ____D () C:\ProgramData\systemk
2014-03-03 21:22 - 2014-03-03 21:22 - 00000000 ____D () C:\FRST
2014-03-03 21:21 - 2014-03-03 21:21 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64 (1).exe
2014-03-03 21:20 - 2014-03-03 21:20 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (2).exe
2014-03-03 21:17 - 2014-03-03 21:17 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64.exe
2014-03-03 21:15 - 2014-03-03 21:15 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (1).exe
2014-03-03 21:13 - 2014-03-03 21:13 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST.exe
2014-03-03 21:12 - 2013-12-15 15:01 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6E3DD834-7849-4F7C-9F02-BD3C0C45EF87}
2014-03-03 21:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-03-03 20:53 - 2013-12-15 15:38 - 00001144 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-03 20:37 - 2014-01-05 23:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-03 20:31 - 2014-03-03 20:31 - 00165376 _____ () C:\Users\Jessica\Downloads\SystemLook_x64.exe
2014-03-03 20:30 - 2014-03-03 20:30 - 00139264 _____ () C:\Users\Jessica\Downloads\SystemLook.exe
2014-03-03 20:28 - 2014-03-03 20:28 - 00001806 _____ () C:\Users\Jessica\Downloads\aswMBR.txt
2014-03-03 20:28 - 2014-03-03 20:28 - 00000512 _____ () C:\Users\Jessica\Downloads\MBR.dat
2014-03-03 20:23 - 2014-03-03 20:23 - 04745728 _____ (AVAST Software) C:\Users\Jessica\Downloads\aswMBR.exe
2014-03-03 20:21 - 2014-03-03 20:19 - 00144902 _____ () C:\Users\Jessica\Downloads\OTL.Txt
2014-03-03 20:19 - 2014-03-03 20:19 - 00073448 _____ () C:\Users\Jessica\Downloads\Extras.Txt
2014-03-03 20:11 - 2014-03-03 20:10 - 00602112 _____ (OldTimer Tools) C:\Users\Jessica\Downloads\otl.exe
2014-03-03 19:54 - 2013-12-15 14:46 - 02032855 _____ () C:\Windows\WindowsUpdate.log
2014-03-03 19:44 - 2013-12-15 15:01 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3920071593-1861241647-3757945225-1001
2014-03-03 19:40 - 2013-12-15 14:56 - 00000000 __RDO () C:\Users\Jessica\SkyDrive
2014-03-03 19:39 - 2013-12-15 15:39 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-03 19:39 - 2013-12-15 15:38 - 00001140 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-02 15:47 - 2014-03-02 15:47 - 04212128 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp64998.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\System.sav
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-03-02 15:45 - 2013-12-25 11:52 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-03-02 15:44 - 2013-12-15 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Packages
2014-03-02 15:43 - 2013-08-22 15:46 - 00015884 _____ () C:\Windows\setupact.log
2014-03-02 15:38 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-02 15:37 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-03-02 15:35 - 2014-03-02 15:35 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2014-03-02 15:35 - 2013-12-25 14:06 - 00000032 _____ () C:\Windows\0
2014-03-02 15:34 - 2013-12-15 15:12 - 00000000 ____D () C:\swsetup
2014-03-02 15:32 - 2014-03-02 15:29 - 92740112 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp65235.exe
2014-03-02 15:31 - 2014-03-02 15:30 - 63711280 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp63440.exe
2014-03-02 15:30 - 2014-03-02 15:27 - 152183640 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp64853.exe
2014-03-02 15:03 - 2014-03-02 15:03 - 02958800 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp63752.exe
2014-03-02 15:03 - 2013-12-25 11:49 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-03-02 15:00 - 2014-03-02 15:00 - 04395008 _____ () C:\Users\Jessica\Downloads\HPSupportSolutionsFramework (1).msi
2014-03-02 14:55 - 2014-03-02 14:55 - 04605952 _____ (Ghisler Software GmbH) C:\Users\Jessica\Downloads\tcm850x64.exe
2014-03-02 14:55 - 2014-03-02 14:55 - 00001063 _____ () C:\Users\Jessica\Desktop\Total Commander 64 bit.lnk
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\GHISLER
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Program Files (x86)\totalcmd
2014-03-02 13:50 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Local\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\ProgramData\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:08 - 00000000 ____D () C:\Program Files\Snipping Tool
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 12:06 - 2013-08-23 00:24 - 00766620 _____ () C:\Windows\system32\perfh007.dat
2014-03-02 12:06 - 2013-08-23 00:24 - 00159902 _____ () C:\Windows\system32\perfc007.dat
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 12:05 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-03-02 12:05 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\MUI
2014-03-02 12:00 - 2014-03-02 12:00 - 00614816 _____ () C:\Users\Jessica\Downloads\snipping-tool-plus-3-4-1-0.exe
2014-03-02 11:18 - 2014-03-02 11:07 - 00014848 ___SH () C:\Users\Jessica\Documents\Thumbs.db
2014-03-02 11:12 - 2014-03-02 11:12 - 02764854 _____ () C:\Users\Jessica\Documents\zeugnis.bmp
2014-03-02 11:12 - 2014-03-02 11:12 - 02764818 _____ () C:\Users\Jessica\Documents\zeugnis.tga
2014-03-02 10:57 - 2014-03-02 10:57 - 00000000 ____D () C:\ProgramData\BrowserProtect
2014-03-02 10:57 - 2014-03-02 10:57 - 00000000 ____D () C:\ProgramData\Browser Manager
2014-03-02 10:57 - 2014-03-02 10:57 - 00000000 ____D () C:\ProgramData\BitGuard
2014-03-02 10:37 - 2014-02-20 19:18 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-02 10:37 - 2014-02-20 19:18 - 00000000 ____D () C:\Windows\system32\NV
2014-03-02 08:57 - 2014-03-02 08:57 - 00000850 _____ () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\ProgramData\Wincert
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\Program Files (x86)\Linkey
2014-03-02 08:51 - 2014-03-02 08:51 - 00000000 ____D () C:\Program Files (x86)\PaintStar
2014-03-02 08:48 - 2014-03-02 08:48 - 00000000 ____D () C:\Program Files (x86)\Franzis
2014-03-02 08:47 - 2014-03-02 08:47 - 02703781 _____ () C:\Users\Jessica\Downloads\paintstar.zip
2014-03-02 08:36 - 2014-03-02 08:36 - 00401744 _____ (Softonic ) C:\Users\Jessica\Downloads\SoftonicDownloader_fuer_cutout.exe
2014-02-28 22:42 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-02-28 19:28 - 2014-02-28 19:28 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 19:27 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 16:39 - 2013-12-25 15:11 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\vlc
2014-02-28 15:34 - 2014-02-28 15:34 - 00064124 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00044850 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral
2014-02-28 13:26 - 2014-02-28 13:26 - 00051954 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-27 14:27 - 2014-02-27 14:27 - 00062354 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-27 00:03 - 2014-02-27 00:03 - 00024504 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral (1).rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00019701 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00017313 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:09 - 2014-02-26 23:09 - 00056878 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 23:08 - 2014-02-26 23:08 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:08 - 2014-02-26 23:08 - 00021776 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 22:14 - 2014-02-26 22:14 - 00069693 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.srt
2014-02-26 22:14 - 2014-02-26 22:14 - 00026294 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.rar
2014-02-26 21:19 - 2014-02-26 21:19 - 00061699 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 21:19 - 2014-02-26 21:19 - 00023578 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00060899 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 20:25 - 2014-02-26 20:25 - 00023248 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral
2014-02-26 19:22 - 2014-02-26 19:22 - 00067340 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 19:21 - 2014-02-26 19:21 - 00025465 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 18:15 - 2014-02-26 18:15 - 00056534 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 18:10 - 2014-02-26 18:10 - 00020202 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.HDTV.x264-2HD.de-SubCentral.rar
2014-02-26 18:10 - 2014-02-26 18:10 - 00016194 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 16:46 - 2014-02-26 16:46 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1)
2014-02-26 16:28 - 2014-02-26 16:28 - 00057822 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 16:11 - 2014-02-26 16:11 - 00016341 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.Valar.Morghulis.1080p.BluRay.x264-ROVERS.de-SubCentral.rar
2014-02-26 16:09 - 2014-02-26 16:09 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1).rar
2014-02-26 16:00 - 2014-02-26 16:00 - 00021916 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 15:56 - 2014-02-26 15:56 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral.rar
2014-02-26 15:48 - 2013-12-15 15:38 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-26 15:48 - 2013-12-15 15:38 - 00003880 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-26 15:36 - 2013-12-25 20:00 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\HpUpdate
2014-02-20 20:37 - 2014-01-05 23:32 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 20:32 - 2013-12-15 13:42 - 00029212 _____ () C:\Windows\PFRO.log
2014-02-20 19:18 - 2014-02-20 19:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-20 19:18 - 2013-12-15 15:30 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-20 19:18 - 2013-12-15 15:29 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-19 14:35 - 2014-01-25 11:19 - 00000000 ____D () C:\Users\Jessica\AppData\Local\NVIDIA Corporation
2014-02-17 22:00 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-17 22:00 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-15 21:34 - 2014-02-15 21:34 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\dvdcss
2014-02-15 21:33 - 2013-12-15 16:36 - 00000887 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-15 21:15 - 2014-02-15 21:15 - 00000603 _____ () C:\Windows\wmsetup.log
2014-02-15 21:14 - 2014-02-15 21:14 - 25842736 _____ (Microsoft Corporation) C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe
2014-02-14 21:20 - 2013-12-15 14:50 - 01689572 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\FileManager
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Camera
2014-02-14 18:45 - 2013-12-15 15:27 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-14 18:43 - 2013-12-15 15:27 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-14 18:41 - 2013-12-30 12:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-14 18:40 - 2013-08-22 14:25 - 00000167 _____ () C:\Windows\win.ini
2014-02-12 20:59 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Apple Computer
2014-02-08 19:34 - 2014-02-20 19:15 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-08 19:34 - 2014-02-20 19:15 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00483104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00408352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00378656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-02-08 19:34 - 2014-01-25 11:09 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-02-08 19:34 - 2014-01-25 11:09 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-02-08 19:34 - 2013-10-27 09:04 - 00947296 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00832424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00148528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-02-08 19:34 - 2013-10-27 09:03 - 03090184 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 06712608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 03498272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 01075488 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00923936 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-08 18:42 - 2013-12-15 15:30 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-06 13:16 - 2014-02-14 18:04 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-14 18:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-14 18:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-14 18:05 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-14 18:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-14 18:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-14 18:04 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-14 18:04 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:49 - 2014-02-14 18:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-14 18:04 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-14 18:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-14 18:04 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-14 18:04 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-14 18:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-14 18:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-14 18:04 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-14 18:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-14 18:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-14 18:05 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-14 18:04 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-14 18:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-14 18:04 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-14 18:04 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:47 - 2014-02-14 18:04 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-14 18:04 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-14 18:04 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-14 18:04 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-14 18:04 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-14 18:04 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-14 18:04 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-14 18:04 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-14 18:04 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-14 18:04 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-14 18:04 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-14 18:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-14 18:04 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-14 18:04 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 18:52 - 2013-12-15 15:30 - 03573739 _____ () C:\Windows\system32\nvcoproc.bin
2014-02-04 14:30 - 2013-12-15 15:49 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-02-04 14:30 - 2013-12-15 15:49 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-02-04 14:29 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple Computer
2014-02-04 14:28 - 2014-02-04 14:28 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-02-04 14:27 - 2014-02-04 14:26 - 00000000 ____D () C:\ProgramData\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-02-04 14:17 - 2014-02-04 14:14 - 148904784 _____ (Apple Inc.) C:\Users\Jessica\Downloads\iTunes64Setup.exe
2014-02-03 17:37 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache

Some content of TEMP:
====================
C:\Users\Jessica\AppData\Local\Temp\AutoRun.exe
C:\Users\Jessica\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Jessica\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\Jessica\AppData\Local\Temp\Delta.exe
C:\Users\Jessica\AppData\Local\Temp\DeltaTB.exe
C:\Users\Jessica\AppData\Local\Temp\eauninstall.exe
C:\Users\Jessica\AppData\Local\Temp\First15.exe
C:\Users\Jessica\AppData\Local\Temp\MybabylonTB.exe
C:\Users\Jessica\AppData\Local\Temp\SettingsManagerSetup.exe
C:\Users\Jessica\AppData\Local\Temp\The Sims 2_uninst.exe
C:\Users\Jessica\AppData\Local\Temp\vlc-2.1.3-win64.exe
C:\Users\Jessica\AppData\Local\Temp\VP6Install.exe
C:\Users\Jessica\AppData\Local\Temp\VP6VFW.dll
C:\Users\Jessica\AppData\Local\Temp\WSSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-02 16:08

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---
FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-03-2014 01
Ran by Jessica at 2014-03-03 21:23:22
Running from C:\Users\Jessica\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Bitdefender Antivirus (Disabled - Out of date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Disabled - Out of date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Disabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.347.0 - Microsoft Corporation)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.23.0.996 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{81FB7C60-565A-4869-9D90-3BE1D270E8B7}) (Version:  - Microsoft)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.117 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
HP Officejet 6500 E710a-f - Grundlegende Software für das Gerät (HKLM\...\{F28BD099-9FC0-4A03-A605-E069B8D17D47}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710a-f Hilfe (HKLM-x32\...\{037CD593-D760-4A00-B030-7BBAFA1123FE}) (Version: 140.0.2.2 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{86FD8326-909D-45F5-BB61-0619D0D31293}) (Version: 11.50.0011 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.1.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.1.1000 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
LibreOffice 4.1 Help Pack (German) (HKLM-x32\...\{43295475-62CA-4F25-B46C-43C59258780E}) (Version: 4.1.4.2 - The Document Foundation)
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
Linkey (HKCU\...\Linkey) (Version: 0.0.0.333 - Aztec Media Inc)
Mediatek Bluetooth (HKLM\...\{16BCAEDC-C115-1729-07C4-7A0091C699A6}) (Version: 11.0.749.0 - Mediatek)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2010 - German/Deutsch (HKLM-x32\...\Office14.OMUI.de-de) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office O MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Standard 2010 (HKLM-x32\...\Office14.STANDARD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Standard 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA GeForce Experience 1.8.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden
NVIDIA Update 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
PaintStar 2.70 (HKLM-x32\...\PaintStar_is1) (Version:  - Zhenzhou Wang)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 1.1.9200.23 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{F3E80B62-3C51-4940-A434-A1F517AB8D6A}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Settings Manager (HKLM-x32\...\Settings Manager) (Version: 5.0.0.11471 - Aztec Media Inc.)
SHIELD Streaming (Version: 1.7.306 - NVIDIA Corporation) Hidden
Studie zur Verbesserung von HP Officejet 6500 E710a-f Produkten (HKLM\...\{F51820F6-72AF-43FA-B750-3CA177C49F2F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.6.2 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837583) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{E21274CE-CA0C-49FA-93F4-DC292A052264}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.OMUI.de-de_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.STANDARD_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.OMUI.de-de_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.STANDARD_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.STANDARD_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.STANDARD_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.STANDARD_{DA2F7ECE-6629-4A80-9CDE-EC95261B75E2}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version:  - Microsoft)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)

==================== Restore Points  =========================

25-01-2014 10:13:09 DirectX wurde installiert
28-01-2014 17:45:23 Windows Update
04-02-2014 13:27:07 Installed iTunes
14-02-2014 17:38:41 Windows Update
19-02-2014 13:35:27 DirectX wurde installiert
02-03-2014 11:02:08 Windows Modules Installer

==================== Hosts content: ==========================

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3F90B584-AB3A-4A00-BB04-6DB74EBA3984} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-02-14] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {81A2306E-0F33-4715-905C-5B6C1BA64C76} - System32\Tasks\HPCustParticipation HP Officejet 6500 E710a-f => C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A99B04AE-7A40-4960-9ACB-955FABCBC38F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E0535C0D-DCE0-4A34-AD78-A311A0B89EC7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-15] (Google Inc.)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FCF68DB2-D7C5-405A-B4EC-E3F511ACC7D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-15] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-03-02 08:57 - 2014-02-06 11:11 - 00658960 _____ () C:\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll
2013-12-15 15:49 - 2013-06-19 11:45 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2013-12-15 15:49 - 2013-11-28 12:49 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2013-12-15 15:49 - 2011-11-14 19:17 - 00153680 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll
2013-12-15 15:49 - 2013-11-28 12:49 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2014-02-27 14:21 - 2014-02-27 14:21 - 00770792 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpbr.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpdsp.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 02592904 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpph.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 01315680 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttprbl.mdl
2013-10-27 09:03 - 2014-02-08 19:34 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-12-15 15:30 - 2014-02-08 18:42 - 00117024 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-02-27 13:08 - 2014-02-27 13:08 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-12-15 15:49 - 2013-09-03 13:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender\bdmetrics.dll
2013-12-15 15:49 - 2014-02-04 14:30 - 00467960 _____ () C:\Program Files\Bitdefender\Bitdefender\bdidntconp.dll
2013-12-15 15:49 - 2014-02-04 14:30 - 00202752 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\bdidntconp.ui
2014-03-03 20:30 - 2014-03-03 20:30 - 00139264 _____ () C:\Users\Jessica\Downloads\SystemLook.exe
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-02 08:57 - 2014-02-06 11:11 - 00485904 _____ () C:\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll
2014-03-02 08:57 - 2014-02-06 11:11 - 00019984 _____ () C:\Program Files (x86)\Settings Manager\systemk\syskldr.dll
2013-12-25 12:10 - 2013-09-03 17:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-12-15 15:49 - 2013-06-19 11:44 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2013-11-04 12:24 - 2013-11-04 12:24 - 00007168 _____ () C:\ProgramData\Wincert\win32cert.dll
2014-02-21 20:49 - 2014-02-20 02:02 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\chrome_elf.dll
2013-10-27 09:03 - 2014-02-08 19:34 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-02-21 20:49 - 2014-02-20 02:02 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\libglesv2.dll
2014-02-21 20:49 - 2014-02-20 02:02 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\libegl.dll
2014-02-21 20:49 - 2014-02-20 02:03 - 04060488 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\pdf.dll
2014-02-21 20:49 - 2014-02-20 02:03 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll
2014-02-21 20:49 - 2014-02-20 02:02 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Jessica\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Jessica\Downloads\332.21-notebook-win8-win7-64bit-international-whql.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\aswMBR.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\Dropbox 2.4.8.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST (2).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST64 (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\GoogleEarthSetup (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\GoogleEarthSetup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\irfanview_plugins_436_setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\iTunes64Setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\iview436_setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\OJ6500_E710a-f_1315.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\otl.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\Silverlight.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\snipping-tool-plus-3-4-1-0.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\SoftonicDownloader_fuer_cutout.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp59835.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63223.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63317.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63440.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63752.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63966.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63968.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63971.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63974.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63975.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64156 (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64156.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64853.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64998.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp65235.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\SystemLook.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\SystemLook_x64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\tcm850x64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\vlc-2.1.2-win64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe:BDU

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: HP USB BT Transceiver [1.2]
Description: HP USB BT Transceiver [1.2]
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: HP
Service: BTHUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/03/2014 09:12:20 PM) (Source: Application Hang) (User: )
Description: Programm chrome.exe, Version 33.0.1750.117 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1b98

Startzeit: 01cf3710058addaf

Endzeit: 9

Anwendungspfad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Berichts-ID: 120c0ae6-a310-11e3-8264-a0481c188b79

Vollständiger Name des fehlerhaften Pakets:

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (03/03/2014 08:33:13 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005

Error: (03/03/2014 08:30:41 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: nvtray.exe, Version: 7.17.13.3489, Zeitstempel: 0x52f663f5
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d5305
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006ba31
ID des fehlerhaften Prozesses: 0x185c
Startzeit der fehlerhaften Anwendung: 0xnvtray.exe0
Pfad der fehlerhaften Anwendung: nvtray.exe1
Pfad des fehlerhaften Moduls: nvtray.exe2
Berichtskennung: nvtray.exe3
Vollständiger Name des fehlerhaften Pakets: nvtray.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: nvtray.exe5

Error: (03/03/2014 07:40:58 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: nvtray.exe, Version: 7.17.13.3489, Zeitstempel: 0x52f663f5
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d5305
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006ba31
ID des fehlerhaften Prozesses: 0x1da8
Startzeit der fehlerhaften Anwendung: 0xnvtray.exe0
Pfad der fehlerhaften Anwendung: nvtray.exe1
Pfad des fehlerhaften Moduls: nvtray.exe2
Berichtskennung: nvtray.exe3
Vollständiger Name des fehlerhaften Pakets: nvtray.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: nvtray.exe5

Error: (03/03/2014 07:39:44 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ThumbnailExtractionHost.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215efa4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d5305
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006ba31
ID des fehlerhaften Prozesses: 0xe9c
Startzeit der fehlerhaften Anwendung: 0xThumbnailExtractionHost.exe0
Pfad der fehlerhaften Anwendung: ThumbnailExtractionHost.exe1
Pfad des fehlerhaften Moduls: ThumbnailExtractionHost.exe2
Berichtskennung: ThumbnailExtractionHost.exe3
Vollständiger Name des fehlerhaften Pakets: ThumbnailExtractionHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ThumbnailExtractionHost.exe5

Error: (03/03/2014 07:39:18 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: SynTPEnh.exe, Version: 17.0.6.2, Zeitstempel: 0x51f2ca42
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d5305
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006ba31
ID des fehlerhaften Prozesses: 0x1990
Startzeit der fehlerhaften Anwendung: 0xSynTPEnh.exe0
Pfad der fehlerhaften Anwendung: SynTPEnh.exe1
Pfad des fehlerhaften Moduls: SynTPEnh.exe2
Berichtskennung: SynTPEnh.exe3
Vollständiger Name des fehlerhaften Pakets: SynTPEnh.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SynTPEnh.exe5

Error: (03/03/2014 07:34:41 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: userinit.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215e1e0
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d5305
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006ba31
ID des fehlerhaften Prozesses: 0xd58
Startzeit der fehlerhaften Anwendung: 0xuserinit.exe0
Pfad der fehlerhaften Anwendung: userinit.exe1
Pfad des fehlerhaften Moduls: userinit.exe2
Berichtskennung: userinit.exe3
Vollständiger Name des fehlerhaften Pakets: userinit.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: userinit.exe5

Error: (03/02/2014 05:36:08 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/02/2014 05:36:07 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to kill already running streamer. [6]

Error: (03/02/2014 03:45:33 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: taskhost.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215df80
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d5305
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006ba35
ID des fehlerhaften Prozesses: 0x188c
Startzeit der fehlerhaften Anwendung: 0xtaskhost.exe0
Pfad der fehlerhaften Anwendung: taskhost.exe1
Pfad des fehlerhaften Moduls: taskhost.exe2
Berichtskennung: taskhost.exe3
Vollständiger Name des fehlerhaften Pakets: taskhost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: taskhost.exe5


System errors:
=============
Error: (03/02/2014 03:38:20 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (03/02/2014 03:11:28 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (03/02/2014 03:07:48 PM) (Source: Service Control Manager) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056

Error: (03/02/2014 03:07:18 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/02/2014 03:06:31 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst NvStreamSvc erreicht.

Error: (03/02/2014 03:05:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (03/02/2014 03:04:19 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%1062

Error: (03/02/2014 03:04:11 PM) (Source: DCOM) (User: JESSIESNOTEBOOK)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (03/02/2014 11:25:29 AM) (Source: DCOM) (User: JESSIESNOTEBOOK)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (03/02/2014 11:24:58 AM) (Source: DCOM) (User: JESSIESNOTEBOOK)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}


Microsoft Office Sessions:
=========================
Error: (03/03/2014 09:12:20 PM) (Source: Application Hang)(User: )
Description: chrome.exe33.0.1750.1171b9801cf3710058addaf9C:\Program Files (x86)\Google\Chrome\Application\chrome.exe120c0ae6-a310-11e3-8264-a0481c188b79

Error: (03/03/2014 08:33:13 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005

Error: (03/03/2014 08:30:41 PM) (Source: Application Error)(User: )
Description: nvtray.exe7.17.13.348952f663f5ntdll.dll6.3.9600.16408523d5305c0000005000000000006ba31185c01cf3717106026f7C:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Windows\SYSTEM32\ntdll.dll4e28bad9-a30a-11e3-8264-a0481c188b79

Error: (03/03/2014 07:40:58 PM) (Source: Application Error)(User: )
Description: nvtray.exe7.17.13.348952f663f5ntdll.dll6.3.9600.16408523d5305c0000005000000000006ba311da801cf37101e0cdccaC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Windows\SYSTEM32\ntdll.dll5bfcf7e2-a303-11e3-8264-a0481c188b79

Error: (03/03/2014 07:39:44 PM) (Source: Application Error)(User: )
Description: ThumbnailExtractionHost.exe6.3.9600.163845215efa4ntdll.dll6.3.9600.16408523d5305c0000005000000000006ba31e9c01cf370ff1df5a25C:\Windows\System32\ThumbnailExtractionHost.exeC:\Windows\SYSTEM32\ntdll.dll2f9a3665-a303-11e3-8264-a0481c188b79

Error: (03/03/2014 07:39:18 PM) (Source: Application Error)(User: )
Description: SynTPEnh.exe17.0.6.251f2ca42ntdll.dll6.3.9600.16408523d5305c0000005000000000006ba31199001cf370fe21ea919C:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Windows\SYSTEM32\ntdll.dll20a43617-a303-11e3-8264-a0481c188b79

Error: (03/03/2014 07:34:41 PM) (Source: Application Error)(User: )
Description: userinit.exe6.3.9600.163845215e1e0ntdll.dll6.3.9600.16408523d5305c0000005000000000006ba31d5801cf370f3d1387b9C:\Windows\system32\userinit.exeC:\Windows\SYSTEM32\ntdll.dll7b4da6db-a302-11e3-8264-a0481c188b79

Error: (03/02/2014 05:36:08 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/02/2014 05:36:07 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed to kill already running streamer. [6]

Error: (03/02/2014 03:45:33 PM) (Source: Application Error)(User: )
Description: taskhost.exe6.3.9600.163845215df80ntdll.dll6.3.9600.16408523d5305c0000005000000000006ba35188c01cf362610d83c55C:\Windows\system32\taskhost.exeC:\Windows\SYSTEM32\ntdll.dll4e8b19e9-a219-11e3-8264-a0481c188b79


CodeIntegrity Errors:
===================================
  Date: 2014-03-03 20:07:15.624
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 20:07:15.492
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-02 15:37:49.206
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-02 15:37:49.113
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-02 15:11:00.578
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-02 15:11:00.515
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-02 15:05:18.846
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-02 15:05:18.768
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-02 13:17:55.592
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-02 13:17:55.545
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

Percentage of memory in use: 30%
Total physical RAM: 7962.14 MB
Available physical RAM: 5522.12 MB
Total Pagefile: 9242.14 MB
Available Pagefile: 6525.47 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931 GB) (Free:878.99 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 710FD2B4)

Partition: GPT Partition Type.

==================== End Of Log ============================
--- --- ---

oh das mit meinem thread habe ich übersehen

M-K-D-B 03.03.2014 22:23
Servus,




Schritt 1
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).





Schritt 2

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.






Schritt 3
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.







Schritt 4
Bitte lade dir zoek.exe von hier: http://hijackthis.nl/smeenk/
  • Bitte deaktiviere während des Scans alle Virenscanner, da sie das Ergebnis beeinflussen können.
  • Starte die zoek.exe mit einem Doppelklick.
  • Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und sollte nicht 1:1 auf andere Computer übernommen werden.
  • Kopiere den Text der folgenden Box in das Skriptfenster von zoek:
    Code:
    FFdefaults;
    CHRdefaults;
    iedefaults;
    emptyclsid;
    autoclean;
  • Nun klicke auf "Run script" und sei geduldig bis das Skript durchgelaufen ist.
  • Wenn das Tool fertig ist, wird sich eine Logdatei öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:
  • Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken)





Bitte poste mit deiner nächsten Antwort
  • die Logdatei von AdwCleaner,
  • die Logdatei von JRT,
  • die Logdatei von MBAM,
  • die Logdatei von Zoek.

jessicako 04.03.2014 00:35
AdwCleaner Logfile:
Code:
# AdwCleaner v3.020 - Bericht erstellt am 03/03/2014 um 22:31:12
# Aktualisiert 27/02/2014 von Xplode
# Betriebssystem : Windows 8.1  (64 bits)
# Benutzername : Jessica - JESSIESNOTEBOOK
# Gestartet von : C:\Users\Jessica\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\BitGuard
Ordner Gelöscht : C:\ProgramData\Browser Manager
Ordner Gelöscht : C:\ProgramData\BrowserProtect
Ordner Gelöscht : C:\ProgramData\wincert
Ordner Gelöscht : C:\Users\Jessica\AppData\Local\Temp\OCS
Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Wert Gelöscht : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Wert Gelöscht : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\Softonic
Daten Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~3\Wincert\WIN32C~1.DLL
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~3\Wincert\WIN64C~1.DLL

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16518


-\\ Google Chrome v33.0.1750.117

[ Datei : C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : keyword

*************************

AdwCleaner[R0].txt - [4042 octets] - [03/03/2014 22:29:56]
AdwCleaner[S0].txt - [3694 octets] - [03/03/2014 22:31:12]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3754 octets] ##########
--- --- ---JRT Logfile:
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 8.1 x64
Ran by Jessica on 03.03.2014 at 22:43:52,37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.03.2014 at 22:53:02,72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
--- --- ---


Malwarebytes Anti-Malware (Test) 1.75.0.1300
Malwarebytes : Free Anti-Malware

Datenbank Version: v2014.03.03.07

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16518
Jessica :: JESSIESNOTEBOOK [Administrator]

Schutz: Aktiviert

03.03.2014 23:06:01
mbam-log-2014-03-03 (23-06-01).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 214650
Laufzeit: 3 Minute(n), 54 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 2
C:\Users\Jessica\Downloads\snipping-tool-plus-3-4-1-0.exe (PUP.Optional.DownloadSponsor) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jessica\Downloads\SoftonicDownloader_fuer_cutout.exe (PUP.Optional.Softonic.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

ich kann zoek.exe nicht öffnen, weil es unzureichende Berechtigungen hat :(

Code:
Zoek.exe v5.0.0.0 Updated 02-March-2014
Tool run by Jessica on 04.03.2014 at  0:09:43,26.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jessica\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

04.03.2014 00:11:40 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\GUM57.tmp deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"ffpwdman@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman" [28.11.2013 14:47]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ccahoghmggldkcdjiebjkidpfongdfbl - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx[27.02.2014 14:21]

Bitdefender Wallet - Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jessica\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jessica\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1 folders=1 53 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Jessica\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Jessica\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 04.03.2014 at  0:28:11,29 ======================

M-K-D-B 04.03.2014 12:45
Servus,



ah, da ist immer noch jede Menge Müll drauf, wir müssen nochmal nachlegen. :)





Wir spüren die letzten Reste auf, damit wir sie später entfernen können:





Schritt 1
Kontrollscan mit FRST
Führe wie zuvor beschrieben einen Scan mit FRST aus.
Setze dazu jeweils einen Haken bei Addition.txt und Shortcut.txt rechts unten und klicke auf Scan.
Es werden insgesamt drei Logdateien erzeugt. Poste mir diese.





Schritt 2
Lade dir die passende Version von SystemLook vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop:
SystemLook (32 bit) | SystemLook (64 bit)
  • Doppelklicke auf die SystemLook.exe, um das Tool zu starten.
  • Kopiere den Inhalt der folgenden Codebox in das Textfeld des Tools:

    Code:
    :filefind
    *Settings Manager*
    *Linkey*
    *default-search.net*
    *BitGuard*
    *wincert*

    :folderfind
    *Settings Manager*
    *Linkey*
    *default-search.net*
    *BitGuard*
    *wincert*

    :regfind
    Settings Manager
    Linkey
    default-search.net
    BitGuard
    wincert
  • Klicke nun auf den Button Look, um den Scan zu starten.
  • Der Suchlauf kann einige Zeit dauern.
  • Wenn der Suchlauf beendet ist, wird sich dein Editor mit den Ergebnissen öffnen, poste diese in deinen Thread.
  • Die Ergebnisse werden auch auf dem Desktop als SystemLook.txt gespeichert.








Gibt es noch Probleme mit Malware? Wenn ja, welche?
Wie läuft der Rechner derzeit?





Bitte poste mit deiner nächsten Antwort
  • die drei Logdateien von FRST,
  • die Logdatei von SystemLook,
  • die Beantwortung der gestellten Fragen.

jessicako 04.03.2014 14:44
ok :) der bitdefender hatte jetzt noch 7 viren gefunden, aber ich vermute das waren die viren, die wir schon gefunden hatten.


FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-03-2014 01
Ran by Jessica (administrator) on JESSIESNOTEBOOK on 04-03-2014 14:41:14
Running from C:\Users\Jessica\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums

==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicatorCom.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1739480 2014-02-27] (Bitdefender)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-22] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2013-07-26] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1179576 2014-01-21] (NVIDIA Corporation)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-02-12] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-02-12] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse-Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [HP Officejet 6500 E710a-f (NET)] - C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-02-12] (Bitdefender)
AppInit_DLLs: C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll => C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll [210448 2014-02-03] (Aztec Media Inc)
AppInit_DLLs:  C:\PROGRA~2\SETTIN~1\systemk\x64\syskldr.dll => C:\Program Files (x86)\Settings Manager\systemk\x64\syskldr.dll [23568 2014-02-06] ()
AppInit_DLLs-x32: C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll => C:\Program Files (x86)\Linkey\IEExtension\iedll.dll [182800 2014-02-03] (Aztec Media Inc)
AppInit_DLLs-x32:  C:\PROGRA~2\SETTIN~1\systemk\syskldr.dll => C:\Program Files (x86)\Settings Manager\systemk\syskldr.dll [19984 2014-02-06] ()
Startup: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6500 E710a-f (Netzwerk).lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6500 E710a-f (Netzwerk).lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
HKLM\...\AppCertDlls: [x64] -> c:\program files (x86)\settings manager\systemk\x64\sysapcrt.dll [658960 2014-02-06] ()
HKLM\...\AppCertDlls: [x86] -> c:\program files (x86)\settings manager\systemk\sysapcrt.dll [485904 2014-02-06] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x85F1697C9702CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll (Bitdefender)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} Automatically Find HP Updates | HP Support
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Chrome:
=======
CHR DefaultSearchKeyword: default-search.net
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: hxxp://www.default-search.net/search?sid=476&aid=122&itype=n&ver=11471&tm=274&src=ds&p={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Google Wallet) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-15]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-02-27]

==================== Services (Whitelisted) =================

S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [77632 2013-11-21] (Bitdefender)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [47416 2014-02-05] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3448848 2014-02-06] (Aztec Media Inc.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2013-10-07] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1507248 2014-02-27] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2014-02-04] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261056 2013-12-15] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2014-02-04] (BitDefender)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-07-24] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S4 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [429272 2013-08-21] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3068120 2014-01-13] (Realtek Semiconductor Corporation                          )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-07-26] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-08-07] (BitDefender S.R.L.)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-04 00:29 - 2014-03-04 00:29 - 00003576 _____ () C:\Windows\System32\Tasks\Bitdefender Auto-Scan
2014-03-04 00:25 - 2014-03-04 00:09 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-04 00:23 - 2014-03-04 00:28 - 00000000 ____D () C:\zoek
2014-03-04 00:11 - 2014-03-04 00:28 - 00004606 _____ () C:\zoek-results.log
2014-03-04 00:09 - 2014-03-04 00:24 - 00000000 ____D () C:\zoek_backup
2014-03-04 00:08 - 2014-03-04 00:08 - 01284608 _____ () C:\Users\Jessica\Downloads\zoek.exe
2014-03-03 23:03 - 2014-03-03 23:03 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Malwarebytes
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-03 23:03 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-03 23:02 - 2014-03-03 23:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jessica\Desktop\mbam-setup-1.75.0.1300.exe
2014-03-03 23:00 - 2014-03-03 23:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jessica\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-03 22:53 - 2014-03-03 22:53 - 00000616 _____ () C:\Users\Jessica\Desktop\JRT.txt
2014-03-03 22:43 - 2014-03-03 22:43 - 00000000 ____D () C:\Windows\ERUNT
2014-03-03 22:43 - 2014-03-03 22:39 - 01037734 _____ (Thisisu) C:\Users\Jessica\Desktop\JRT.exe
2014-03-03 22:38 - 2014-03-03 22:39 - 01037734 _____ (Thisisu) C:\Users\Jessica\Downloads\JRT.exe
2014-03-03 22:28 - 2014-03-03 22:31 - 00000000 ____D () C:\AdwCleaner
2014-03-03 22:28 - 2014-03-03 22:28 - 01244192 _____ () C:\Users\Jessica\Downloads\adwcleaner.exe
2014-03-03 21:23 - 2014-03-03 21:26 - 00043237 _____ () C:\Users\Jessica\Downloads\Addition.txt
2014-03-03 21:22 - 2014-03-04 14:41 - 00016829 _____ () C:\Users\Jessica\Downloads\FRST.txt
2014-03-03 21:22 - 2014-03-04 14:41 - 00000000 ____D () C:\FRST
2014-03-03 21:21 - 2014-03-03 21:21 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64 (1).exe
2014-03-03 21:20 - 2014-03-03 21:20 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (2).exe
2014-03-03 21:17 - 2014-03-03 21:17 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64.exe
2014-03-03 21:15 - 2014-03-03 21:15 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (1).exe
2014-03-03 21:13 - 2014-03-03 21:13 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST.exe
2014-03-03 20:31 - 2014-03-03 20:31 - 00165376 _____ () C:\Users\Jessica\Downloads\SystemLook_x64.exe
2014-03-03 20:30 - 2014-03-03 20:30 - 00139264 _____ () C:\Users\Jessica\Downloads\SystemLook.exe
2014-03-03 20:28 - 2014-03-03 20:28 - 00001806 _____ () C:\Users\Jessica\Downloads\aswMBR.txt
2014-03-03 20:28 - 2014-03-03 20:28 - 00000512 _____ () C:\Users\Jessica\Downloads\MBR.dat
2014-03-03 20:23 - 2014-03-03 20:23 - 04745728 _____ (AVAST Software) C:\Users\Jessica\Downloads\aswMBR.exe
2014-03-03 20:19 - 2014-03-03 20:21 - 00144902 _____ () C:\Users\Jessica\Downloads\OTL.Txt
2014-03-03 20:19 - 2014-03-03 20:19 - 00073448 _____ () C:\Users\Jessica\Downloads\Extras.Txt
2014-03-03 20:10 - 2014-03-03 20:11 - 00602112 _____ (OldTimer Tools) C:\Users\Jessica\Downloads\otl.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 04212128 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp64998.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\System.sav
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-03-02 15:35 - 2014-03-02 15:35 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2014-03-02 15:35 - 2013-12-24 14:39 - 00382492 _____ () C:\Windows\system32\Drivers\FW7650.bin
2014-03-02 15:30 - 2014-03-02 15:31 - 63711280 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp63440.exe
2014-03-02 15:29 - 2014-03-02 15:32 - 92740112 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp65235.exe
2014-03-02 15:27 - 2014-03-02 15:30 - 152183640 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp64853.exe
2014-03-02 15:03 - 2014-03-02 15:03 - 02958800 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp63752.exe
2014-03-02 15:00 - 2014-03-02 15:00 - 04395008 _____ () C:\Users\Jessica\Downloads\HPSupportSolutionsFramework (1).msi
2014-03-02 14:55 - 2014-03-02 14:55 - 04605952 _____ (Ghisler Software GmbH) C:\Users\Jessica\Downloads\tcm850x64.exe
2014-03-02 14:55 - 2014-03-02 14:55 - 00001063 _____ () C:\Users\Jessica\Desktop\Total Commander 64 bit.lnk
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\GHISLER
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Program Files (x86)\totalcmd
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Local\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\ProgramData\René's Homepage
2014-03-02 12:08 - 2014-03-02 12:09 - 00000000 ____D () C:\Program Files\Snipping Tool
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 12:04 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-03-02 12:04 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-03-02 11:12 - 2014-03-02 11:12 - 02764854 _____ () C:\Users\Jessica\Documents\zeugnis.bmp
2014-03-02 11:12 - 2014-03-02 11:12 - 02764818 _____ () C:\Users\Jessica\Documents\zeugnis.tga
2014-03-02 11:07 - 2014-03-02 11:18 - 00014848 ___SH () C:\Users\Jessica\Documents\Thumbs.db
2014-03-02 08:57 - 2014-03-02 08:57 - 00000850 _____ () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\Program Files (x86)\Linkey
2014-03-02 08:56 - 2014-03-04 14:41 - 00000000 ____D () C:\ProgramData\systemk
2014-03-02 08:51 - 2014-03-02 08:51 - 00000000 ____D () C:\Program Files (x86)\PaintStar
2014-03-02 08:48 - 2014-03-02 08:48 - 00000000 ____D () C:\Program Files (x86)\Franzis
2014-03-02 08:47 - 2014-03-02 08:47 - 02703781 _____ () C:\Users\Jessica\Downloads\paintstar.zip
2014-02-28 19:28 - 2014-02-28 19:28 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 19:27 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 15:34 - 2014-02-28 15:34 - 00064124 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00044850 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral
2014-02-28 13:26 - 2014-02-28 13:26 - 00051954 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-27 14:27 - 2014-02-27 14:27 - 00062354 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-27 00:03 - 2014-02-27 00:03 - 00024504 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral (1).rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00019701 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00017313 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:09 - 2014-02-26 23:09 - 00056878 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 23:08 - 2014-02-26 23:08 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:08 - 2014-02-26 23:08 - 00021776 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 22:14 - 2014-02-26 22:14 - 00069693 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.srt
2014-02-26 22:14 - 2014-02-26 22:14 - 00026294 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.rar
2014-02-26 21:19 - 2014-02-26 21:19 - 00061699 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 21:19 - 2014-02-26 21:19 - 00023578 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00060899 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 20:25 - 2014-02-26 20:25 - 00023248 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral
2014-02-26 19:22 - 2014-02-26 19:22 - 00067340 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 19:21 - 2014-02-26 19:21 - 00025465 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 18:15 - 2014-02-26 18:15 - 00056534 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 18:10 - 2014-02-26 18:10 - 00020202 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.HDTV.x264-2HD.de-SubCentral.rar
2014-02-26 18:10 - 2014-02-26 18:10 - 00016194 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 16:46 - 2014-02-26 16:46 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1)
2014-02-26 16:28 - 2014-02-26 16:28 - 00057822 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 16:11 - 2014-02-26 16:11 - 00016341 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.Valar.Morghulis.1080p.BluRay.x264-ROVERS.de-SubCentral.rar
2014-02-26 16:09 - 2014-02-26 16:09 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1).rar
2014-02-26 16:00 - 2014-02-26 16:00 - 00021916 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 15:56 - 2014-02-26 15:56 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral.rar
2014-02-20 19:18 - 2014-03-02 10:37 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-02-20 19:18 - 2014-03-02 10:37 - 00000000 ____D () C:\Windows\system32\NV
2014-02-20 19:18 - 2014-02-20 19:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-20 19:15 - 2014-02-08 19:34 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-20 19:15 - 2014-02-08 19:34 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00483104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00408352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00378656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-02-19 14:33 - 2013-12-27 19:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-02-19 14:33 - 2013-12-27 19:42 - 00033056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-02-15 21:34 - 2014-02-15 21:34 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\dvdcss
2014-02-15 21:15 - 2014-02-15 21:15 - 00000603 _____ () C:\Windows\wmsetup.log
2014-02-15 21:14 - 2014-02-15 21:14 - 25842736 _____ (Microsoft Corporation) C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe
2014-02-14 18:38 - 2014-01-09 09:25 - 02804224 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-02-14 18:38 - 2014-01-09 08:59 - 01020928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-02-14 18:38 - 2014-01-09 08:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-02-14 18:38 - 2014-01-09 08:49 - 00919040 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-02-14 18:38 - 2014-01-09 08:44 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-02-14 18:38 - 2014-01-09 08:43 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-02-14 18:38 - 2014-01-09 08:29 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-02-14 18:38 - 2014-01-09 08:28 - 04217344 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-02-14 18:38 - 2014-01-09 08:28 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-02-14 18:38 - 2014-01-09 08:18 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-02-14 18:37 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.exe
2014-02-14 18:37 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.exe
2014-02-14 18:36 - 2014-01-04 21:50 - 01462216 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-02-14 18:36 - 2014-01-04 20:22 - 01202888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-02-14 18:36 - 2014-01-04 15:30 - 13209088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-02-14 18:36 - 2014-01-04 15:23 - 11702272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-02-14 18:36 - 2014-01-04 14:42 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-02-14 18:36 - 2014-01-04 14:40 - 07416832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-02-14 18:36 - 2014-01-04 14:36 - 00830976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-02-14 18:36 - 2014-01-04 14:28 - 04961792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-02-14 18:36 - 2013-12-21 03:10 - 00009701 _____ () C:\Windows\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-14 18:36 - 2013-12-21 03:10 - 00009701 _____ () C:\Windows\system32\connectedsearch-results.searchconnector-ms
2014-02-14 18:35 - 2013-12-20 11:10 - 01113040 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-02-14 18:35 - 2013-12-20 07:13 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-02-14 18:35 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-14 18:35 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-14 18:05 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-14 18:05 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-14 18:05 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-14 18:05 - 2014-01-07 06:00 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-14 18:05 - 2014-01-07 05:30 - 02071552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-14 18:05 - 2013-12-09 01:27 - 02152448 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-14 18:05 - 2013-12-09 00:54 - 01317376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-14 18:05 - 2013-11-21 07:42 - 04604416 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-14 18:05 - 2013-11-21 06:44 - 03936256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-14 18:04 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-14 18:04 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-14 18:04 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-14 18:04 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-14 18:04 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-14 18:04 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-14 18:04 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-14 18:04 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-14 18:04 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-14 18:04 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-14 18:04 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-14 18:04 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-14 18:04 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-14 18:04 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-14 18:04 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-14 18:04 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-14 18:04 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-14 18:04 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-14 18:04 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-14 18:04 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-14 18:04 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-14 18:04 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-14 18:04 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-14 18:04 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-14 18:04 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-14 18:04 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-14 18:04 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-14 18:04 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-14 18:04 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-14 18:04 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-14 18:04 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-14 18:04 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-14 18:04 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-14 18:04 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-14 18:03 - 2013-12-24 04:16 - 01530712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-14 18:03 - 2013-12-09 03:57 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-14 18:03 - 2013-12-09 02:51 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-04 14:29 - 2014-02-12 20:59 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Apple Computer
2014-02-04 14:29 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple Computer
2014-02-04 14:28 - 2014-02-04 14:28 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-04 14:28 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-02-04 14:26 - 2014-02-04 14:27 - 00000000 ____D () C:\ProgramData\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-02-04 14:14 - 2014-02-04 14:17 - 148904784 _____ (Apple Inc.) C:\Users\Jessica\Downloads\iTunes64Setup.exe

==================== One Month Modified Files and Folders =======

2014-03-04 14:41 - 2014-03-03 21:22 - 00016829 _____ () C:\Users\Jessica\Downloads\FRST.txt
2014-03-04 14:41 - 2014-03-03 21:22 - 00000000 ____D () C:\FRST
2014-03-04 14:41 - 2014-03-02 08:56 - 00000000 ____D () C:\ProgramData\systemk
2014-03-04 14:37 - 2014-01-05 23:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-04 14:37 - 2013-12-15 15:01 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3920071593-1861241647-3757945225-1001
2014-03-04 14:35 - 2013-12-15 15:01 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6E3DD834-7849-4F7C-9F02-BD3C0C45EF87}
2014-03-04 14:32 - 2013-12-15 15:39 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-04 14:32 - 2013-12-15 15:38 - 00001140 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-04 14:32 - 2013-12-15 14:56 - 00000000 __RDO () C:\Users\Jessica\SkyDrive
2014-03-04 14:32 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-03-04 00:44 - 2013-12-15 14:46 - 01203156 _____ () C:\Windows\WindowsUpdate.log
2014-03-04 00:29 - 2014-03-04 00:29 - 00003576 _____ () C:\Windows\System32\Tasks\Bitdefender Auto-Scan
2014-03-04 00:28 - 2014-03-04 00:23 - 00000000 ____D () C:\zoek
2014-03-04 00:28 - 2014-03-04 00:11 - 00004606 _____ () C:\zoek-results.log
2014-03-04 00:27 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-04 00:26 - 2013-12-15 13:42 - 00088768 _____ () C:\Windows\PFRO.log
2014-03-04 00:26 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-03-04 00:24 - 2014-03-04 00:09 - 00000000 ____D () C:\zoek_backup
2014-03-04 00:09 - 2014-03-04 00:25 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-04 00:08 - 2014-03-04 00:08 - 01284608 _____ () C:\Users\Jessica\Downloads\zoek.exe
2014-03-03 23:53 - 2013-12-15 15:38 - 00001144 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-03 23:53 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-03-03 23:50 - 2013-12-15 14:53 - 00000000 ____D () C:\Users\Jessica
2014-03-03 23:03 - 2014-03-03 23:03 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Malwarebytes
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-03 23:00 - 2014-03-03 23:02 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jessica\Desktop\mbam-setup-1.75.0.1300.exe
2014-03-03 23:00 - 2014-03-03 23:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jessica\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-03 22:54 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-03-03 22:53 - 2014-03-03 22:53 - 00000616 _____ () C:\Users\Jessica\Desktop\JRT.txt
2014-03-03 22:43 - 2014-03-03 22:43 - 00000000 ____D () C:\Windows\ERUNT
2014-03-03 22:39 - 2014-03-03 22:43 - 01037734 _____ (Thisisu) C:\Users\Jessica\Desktop\JRT.exe
2014-03-03 22:39 - 2014-03-03 22:38 - 01037734 _____ (Thisisu) C:\Users\Jessica\Downloads\JRT.exe
2014-03-03 22:31 - 2014-03-03 22:28 - 00000000 ____D () C:\AdwCleaner
2014-03-03 22:28 - 2014-03-03 22:28 - 01244192 _____ () C:\Users\Jessica\Downloads\adwcleaner.exe
2014-03-03 21:26 - 2014-03-03 21:23 - 00043237 _____ () C:\Users\Jessica\Downloads\Addition.txt
2014-03-03 21:21 - 2014-03-03 21:21 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64 (1).exe
2014-03-03 21:20 - 2014-03-03 21:20 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (2).exe
2014-03-03 21:17 - 2014-03-03 21:17 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64.exe
2014-03-03 21:15 - 2014-03-03 21:15 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (1).exe
2014-03-03 21:13 - 2014-03-03 21:13 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST.exe
2014-03-03 20:31 - 2014-03-03 20:31 - 00165376 _____ () C:\Users\Jessica\Downloads\SystemLook_x64.exe
2014-03-03 20:30 - 2014-03-03 20:30 - 00139264 _____ () C:\Users\Jessica\Downloads\SystemLook.exe
2014-03-03 20:28 - 2014-03-03 20:28 - 00001806 _____ () C:\Users\Jessica\Downloads\aswMBR.txt
2014-03-03 20:28 - 2014-03-03 20:28 - 00000512 _____ () C:\Users\Jessica\Downloads\MBR.dat
2014-03-03 20:23 - 2014-03-03 20:23 - 04745728 _____ (AVAST Software) C:\Users\Jessica\Downloads\aswMBR.exe
2014-03-03 20:21 - 2014-03-03 20:19 - 00144902 _____ () C:\Users\Jessica\Downloads\OTL.Txt
2014-03-03 20:19 - 2014-03-03 20:19 - 00073448 _____ () C:\Users\Jessica\Downloads\Extras.Txt
2014-03-03 20:11 - 2014-03-03 20:10 - 00602112 _____ (OldTimer Tools) C:\Users\Jessica\Downloads\otl.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 04212128 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp64998.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\System.sav
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-03-02 15:45 - 2013-12-25 11:52 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-03-02 15:44 - 2013-12-15 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Packages
2014-03-02 15:43 - 2013-08-22 15:46 - 00015884 _____ () C:\Windows\setupact.log
2014-03-02 15:35 - 2014-03-02 15:35 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2014-03-02 15:35 - 2013-12-25 14:06 - 00000032 _____ () C:\Windows\0
2014-03-02 15:34 - 2013-12-15 15:12 - 00000000 ____D () C:\swsetup
2014-03-02 15:32 - 2014-03-02 15:29 - 92740112 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp65235.exe
2014-03-02 15:31 - 2014-03-02 15:30 - 63711280 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp63440.exe
2014-03-02 15:30 - 2014-03-02 15:27 - 152183640 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp64853.exe
2014-03-02 15:03 - 2014-03-02 15:03 - 02958800 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp63752.exe
2014-03-02 15:03 - 2013-12-25 11:49 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-03-02 15:00 - 2014-03-02 15:00 - 04395008 _____ () C:\Users\Jessica\Downloads\HPSupportSolutionsFramework (1).msi
2014-03-02 14:55 - 2014-03-02 14:55 - 04605952 _____ (Ghisler Software GmbH) C:\Users\Jessica\Downloads\tcm850x64.exe
2014-03-02 14:55 - 2014-03-02 14:55 - 00001063 _____ () C:\Users\Jessica\Desktop\Total Commander 64 bit.lnk
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\GHISLER
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Program Files (x86)\totalcmd
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Local\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\ProgramData\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:08 - 00000000 ____D () C:\Program Files\Snipping Tool
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 12:06 - 2013-08-23 00:24 - 00766620 _____ () C:\Windows\system32\perfh007.dat
2014-03-02 12:06 - 2013-08-23 00:24 - 00159902 _____ () C:\Windows\system32\perfc007.dat
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 12:05 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-03-02 12:05 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\MUI
2014-03-02 11:18 - 2014-03-02 11:07 - 00014848 ___SH () C:\Users\Jessica\Documents\Thumbs.db
2014-03-02 11:12 - 2014-03-02 11:12 - 02764854 _____ () C:\Users\Jessica\Documents\zeugnis.bmp
2014-03-02 11:12 - 2014-03-02 11:12 - 02764818 _____ () C:\Users\Jessica\Documents\zeugnis.tga
2014-03-02 10:37 - 2014-02-20 19:18 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-02 10:37 - 2014-02-20 19:18 - 00000000 ____D () C:\Windows\system32\NV
2014-03-02 08:57 - 2014-03-02 08:57 - 00000850 _____ () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-03-02 08:57 - 2014-03-02 08:57 - 00000000 ____D () C:\Program Files (x86)\Linkey
2014-03-02 08:51 - 2014-03-02 08:51 - 00000000 ____D () C:\Program Files (x86)\PaintStar
2014-03-02 08:48 - 2014-03-02 08:48 - 00000000 ____D () C:\Program Files (x86)\Franzis
2014-03-02 08:47 - 2014-03-02 08:47 - 02703781 _____ () C:\Users\Jessica\Downloads\paintstar.zip
2014-02-28 19:28 - 2014-02-28 19:28 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 19:27 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 16:39 - 2013-12-25 15:11 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\vlc
2014-02-28 15:34 - 2014-02-28 15:34 - 00064124 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00044850 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral
2014-02-28 13:26 - 2014-02-28 13:26 - 00051954 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-27 14:27 - 2014-02-27 14:27 - 00062354 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-27 00:03 - 2014-02-27 00:03 - 00024504 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral (1).rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00019701 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00017313 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:09 - 2014-02-26 23:09 - 00056878 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 23:08 - 2014-02-26 23:08 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:08 - 2014-02-26 23:08 - 00021776 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 22:14 - 2014-02-26 22:14 - 00069693 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.srt
2014-02-26 22:14 - 2014-02-26 22:14 - 00026294 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.rar
2014-02-26 21:19 - 2014-02-26 21:19 - 00061699 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 21:19 - 2014-02-26 21:19 - 00023578 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00060899 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 20:25 - 2014-02-26 20:25 - 00023248 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral
2014-02-26 19:22 - 2014-02-26 19:22 - 00067340 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 19:21 - 2014-02-26 19:21 - 00025465 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 18:15 - 2014-02-26 18:15 - 00056534 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 18:10 - 2014-02-26 18:10 - 00020202 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.HDTV.x264-2HD.de-SubCentral.rar
2014-02-26 18:10 - 2014-02-26 18:10 - 00016194 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 16:46 - 2014-02-26 16:46 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1)
2014-02-26 16:28 - 2014-02-26 16:28 - 00057822 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 16:11 - 2014-02-26 16:11 - 00016341 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.Valar.Morghulis.1080p.BluRay.x264-ROVERS.de-SubCentral.rar
2014-02-26 16:09 - 2014-02-26 16:09 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1).rar
2014-02-26 16:00 - 2014-02-26 16:00 - 00021916 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 15:56 - 2014-02-26 15:56 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral.rar
2014-02-26 15:48 - 2013-12-15 15:38 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-26 15:48 - 2013-12-15 15:38 - 00003880 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-26 15:36 - 2013-12-25 20:00 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\HpUpdate
2014-02-20 20:37 - 2014-01-05 23:32 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 19:18 - 2014-02-20 19:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-20 19:18 - 2013-12-15 15:30 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-20 19:18 - 2013-12-15 15:29 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-19 14:35 - 2014-01-25 11:19 - 00000000 ____D () C:\Users\Jessica\AppData\Local\NVIDIA Corporation
2014-02-17 22:00 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-17 22:00 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-15 21:34 - 2014-02-15 21:34 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\dvdcss
2014-02-15 21:33 - 2013-12-15 16:36 - 00000887 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-15 21:15 - 2014-02-15 21:15 - 00000603 _____ () C:\Windows\wmsetup.log
2014-02-15 21:14 - 2014-02-15 21:14 - 25842736 _____ (Microsoft Corporation) C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe
2014-02-14 21:20 - 2013-12-15 14:50 - 01689572 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\FileManager
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Camera
2014-02-14 18:45 - 2013-12-15 15:27 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-14 18:43 - 2013-12-15 15:27 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-14 18:41 - 2013-12-30 12:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-14 18:40 - 2013-08-22 14:25 - 00000167 _____ () C:\Windows\win.ini
2014-02-12 20:59 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Apple Computer
2014-02-08 19:34 - 2014-02-20 19:15 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-08 19:34 - 2014-02-20 19:15 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00483104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00408352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00378656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-02-08 19:34 - 2014-01-25 11:09 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-02-08 19:34 - 2014-01-25 11:09 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-02-08 19:34 - 2013-10-27 09:04 - 00947296 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00832424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00148528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-02-08 19:34 - 2013-10-27 09:03 - 03090184 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 06712608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 03498272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 01075488 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00923936 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-08 18:42 - 2013-12-15 15:30 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-06 13:16 - 2014-02-14 18:04 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-14 18:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-14 18:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-14 18:05 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-14 18:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-14 18:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-14 18:04 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-14 18:04 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:49 - 2014-02-14 18:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-14 18:04 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-14 18:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-14 18:04 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-14 18:04 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-14 18:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-14 18:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-14 18:04 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-14 18:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-14 18:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-14 18:05 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-14 18:04 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-14 18:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-14 18:04 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-14 18:04 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:47 - 2014-02-14 18:04 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-14 18:04 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-14 18:04 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-14 18:04 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-14 18:04 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-14 18:04 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-14 18:04 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-14 18:04 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-14 18:04 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-14 18:04 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-14 18:04 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-14 18:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-14 18:04 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-14 18:04 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 18:52 - 2013-12-15 15:30 - 03573739 _____ () C:\Windows\system32\nvcoproc.bin
2014-02-04 14:30 - 2013-12-15 15:49 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-02-04 14:30 - 2013-12-15 15:49 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-02-04 14:29 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple Computer
2014-02-04 14:28 - 2014-02-04 14:28 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-02-04 14:27 - 2014-02-04 14:26 - 00000000 ____D () C:\ProgramData\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-02-04 14:17 - 2014-02-04 14:14 - 148904784 _____ (Apple Inc.) C:\Users\Jessica\Downloads\iTunes64Setup.exe
2014-02-03 17:37 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-02 16:08

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-03-2014 01
Ran by Jessica at 2014-03-04 14:41:56
Running from C:\Users\Jessica\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.347.0 - Microsoft Corporation)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.23.0.996 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{81FB7C60-565A-4869-9D90-3BE1D270E8B7}) (Version:  - Microsoft)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.117 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
HP Officejet 6500 E710a-f - Grundlegende Software für das Gerät (HKLM\...\{F28BD099-9FC0-4A03-A605-E069B8D17D47}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710a-f Hilfe (HKLM-x32\...\{037CD593-D760-4A00-B030-7BBAFA1123FE}) (Version: 140.0.2.2 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{86FD8326-909D-45F5-BB61-0619D0D31293}) (Version: 11.50.0011 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.1.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.1.1000 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
LibreOffice 4.1 Help Pack (German) (HKLM-x32\...\{43295475-62CA-4F25-B46C-43C59258780E}) (Version: 4.1.4.2 - The Document Foundation)
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
Linkey (HKCU\...\Linkey) (Version: 0.0.0.333 - Aztec Media Inc)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Mediatek Bluetooth (HKLM\...\{16BCAEDC-C115-1729-07C4-7A0091C699A6}) (Version: 11.0.749.0 - Mediatek)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2010 - German/Deutsch (HKLM-x32\...\Office14.OMUI.de-de) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office O MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Standard 2010 (HKLM-x32\...\Office14.STANDARD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Standard 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA GeForce Experience 1.8.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden
NVIDIA Update 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
PaintStar 2.70 (HKLM-x32\...\PaintStar_is1) (Version:  - Zhenzhou Wang)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 1.1.9200.23 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{F3E80B62-3C51-4940-A434-A1F517AB8D6A}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Settings Manager (HKLM-x32\...\Settings Manager) (Version: 5.0.0.11471 - Aztec Media Inc.)
SHIELD Streaming (Version: 1.7.306 - NVIDIA Corporation) Hidden
Studie zur Verbesserung von HP Officejet 6500 E710a-f Produkten (HKLM\...\{F51820F6-72AF-43FA-B750-3CA177C49F2F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.6.2 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837583) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{E21274CE-CA0C-49FA-93F4-DC292A052264}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.OMUI.de-de_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.STANDARD_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.OMUI.de-de_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.STANDARD_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.STANDARD_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.STANDARD_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.STANDARD_{DA2F7ECE-6629-4A80-9CDE-EC95261B75E2}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version:  - Microsoft)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)

==================== Restore Points  =========================

25-01-2014 10:13:09 DirectX wurde installiert
28-01-2014 17:45:23 Windows Update
04-02-2014 13:27:07 Installed iTunes
14-02-2014 17:38:41 Windows Update
19-02-2014 13:35:27 DirectX wurde installiert
02-03-2014 11:02:08 Windows Modules Installer
03-03-2014 23:11:16 zoek.exe restore point

==================== Hosts content: ==========================

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {113C4AB9-D378-45CC-84F4-9D4AD14112F6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-02-14] (Microsoft Corporation)
Task: {1C9CBDDA-7CFF-41A3-A6DC-70146400E947} - System32\Tasks\Bitdefender Auto-Scan => C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe [2013-06-19] (Bitdefender)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {81A2306E-0F33-4715-905C-5B6C1BA64C76} - System32\Tasks\HPCustParticipation HP Officejet 6500 E710a-f => C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A99B04AE-7A40-4960-9ACB-955FABCBC38F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E0535C0D-DCE0-4A34-AD78-A311A0B89EC7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-15] (Google Inc.)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FCF68DB2-D7C5-405A-B4EC-E3F511ACC7D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-15] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-03-02 08:57 - 2014-02-06 11:11 - 00658960 _____ () c:\program files (x86)\settings manager\systemk\x64\sysapcrt.dll
2013-12-15 15:49 - 2013-06-19 11:45 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2013-12-15 15:49 - 2013-11-28 12:49 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2013-12-15 15:49 - 2011-11-14 19:17 - 00153680 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll
2013-12-15 15:49 - 2013-11-28 12:49 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2014-02-27 14:21 - 2014-02-27 14:21 - 00770792 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpbr.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpdsp.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 02592904 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpph.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 01315680 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttprbl.mdl
2013-10-27 09:03 - 2014-02-08 19:34 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-12-15 15:30 - 2014-02-08 18:42 - 00117024 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-02 08:57 - 2014-02-06 11:11 - 00485904 _____ () c:\program files (x86)\settings manager\systemk\sysapcrt.dll
2014-03-02 08:57 - 2014-02-06 11:11 - 00019984 _____ () C:\Program Files (x86)\Settings Manager\systemk\syskldr.dll
2014-03-02 08:57 - 2014-02-06 11:11 - 00019984 _____ () c:\program files (x86)\settings manager\systemk\syskldr.dll
2013-12-25 12:10 - 2013-09-03 17:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-12-15 15:49 - 2013-06-19 11:44 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2014-02-21 20:49 - 2014-02-20 02:02 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\chrome_elf.dll
2014-02-21 20:49 - 2014-02-20 02:02 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\libglesv2.dll
2014-02-21 20:49 - 2014-02-20 02:02 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\libegl.dll
2013-10-27 09:03 - 2014-02-08 19:34 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-02-21 20:49 - 2014-02-20 02:03 - 04060488 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\pdf.dll
2014-02-21 20:49 - 2014-02-20 02:03 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll
2014-02-21 20:49 - 2014-02-20 02:02 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ffmpegsumo.dll
2014-02-21 20:49 - 2014-02-20 02:03 - 13632840 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Jessica\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Jessica\Desktop\JRT.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Desktop\mbam-setup-1.75.0.1300.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\332.21-notebook-win8-win7-64bit-international-whql.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\adwcleaner.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\aswMBR.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\Dropbox 2.4.8.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST (2).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST64 (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\GoogleEarthSetup (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\GoogleEarthSetup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\irfanview_plugins_436_setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\iTunes64Setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\iview436_setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\JRT.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\mbam-setup-1.75.0.1300.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\OJ6500_E710a-f_1315.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\otl.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\Silverlight.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp59835.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63223.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63317.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63440.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63752.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63966.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63968.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63971.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63974.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63975.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64156 (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64156.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64853.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64998.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp65235.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\SystemLook.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\SystemLook_x64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\tcm850x64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\vlc-2.1.2-win64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\zoek.exe:BDU

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: HP USB BT Transceiver [1.2]
Description: HP USB BT Transceiver [1.2]
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: HP
Service: BTHUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 49357578

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 49357578

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/04/2014 00:49:25 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/04/2014 00:26:02 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/04/2014 00:04:52 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/03/2014 11:50:35 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GoogleCrashHandler64.exe, Version: 1.3.22.5, Zeitstempel: 0x52e9d299
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d5305
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006ba31
ID des fehlerhaften Prozesses: 0xec8
Startzeit der fehlerhaften Anwendung: 0xGoogleCrashHandler64.exe0
Pfad der fehlerhaften Anwendung: GoogleCrashHandler64.exe1
Pfad des fehlerhaften Moduls: GoogleCrashHandler64.exe2
Berichtskennung: GoogleCrashHandler64.exe3
Vollständiger Name des fehlerhaften Pakets: GoogleCrashHandler64.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GoogleCrashHandler64.exe5

Error: (03/03/2014 11:15:28 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]


System errors:
=============
Error: (03/04/2014 00:27:24 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (03/04/2014 00:24:01 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:24:01 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:24:00 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:24:00 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:23:59 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:06:00 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (03/03/2014 11:49:58 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (03/03/2014 11:49:44 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎03.‎03.‎2014 um 23:17:17 unerwartet heruntergefahren.

Error: (03/03/2014 11:39:10 PM) (Source: Service Control Manager) (User: )
Description: Dienst "MBAMScheduler" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office Sessions:
=========================
Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 49357578

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 49357578

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/04/2014 00:49:25 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/04/2014 00:26:02 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/04/2014 00:04:52 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/03/2014 11:50:35 PM) (Source: Application Error)(User: )
Description: GoogleCrashHandler64.exe1.3.22.552e9d299ntdll.dll6.3.9600.16408523d5305c0000005000000000006ba31ec801cf3732f962a5c3C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exeC:\Windows\SYSTEM32\ntdll.dll3af196c7-a326-11e3-8267-a0481c188b79

Error: (03/03/2014 11:15:28 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]


CodeIntegrity Errors:
===================================
  Date: 2014-03-04 00:27:01.136
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-04 00:27:01.120
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-04 00:05:34.115
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-04 00:05:34.084
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 23:49:14.237
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 23:49:14.206
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 23:16:50.577
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 23:16:50.561
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 22:53:42.979
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 22:53:42.947
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

Percentage of memory in use: 27%
Total physical RAM: 7962.14 MB
Available physical RAM: 5798.66 MB
Total Pagefile: 9242.14 MB
Available Pagefile: 7182.64 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931 GB) (Free:880.24 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 710FD2B4)

Partition: GPT Partition Type.

==================== End Of Log ============================
--- --- ---

jessicako 04.03.2014 15:18
Users shortcut scan result (x64) Version: 03-03-2014 01
Ran by Jessica at 2014-03-04 14:42:31
Running from C:\Users\Jessica\Downloads
Boot Mode: Normal
==================== Shortcuts =============================

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1031-7B44-AB0000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk -> C:\Windows\BrowserChoice\html\default.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera.lnk -> C:\Windows\Camera\Camera.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk -> C:\Windows\FileManager\FileManager.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk -> C:\Program Files (x86)\Hp\IrisOCR_12.3.4.0\regipe.exe (I.R.I.S. Image Recognition Integarted Systems)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotosApp.lnk -> C:\Windows\FileManager\PhotosApp.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Store.lnk -> C:\Windows\WinStore\WinStore.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools\HP Utility Center.lnk -> C:\Program Files\Hewlett-Packard\HP Utility Center\HPPU.exe (Hewlett-Packard Development Company, L.P.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PaintStar\PaintStar.lnk -> C:\Program Files (x86)\PaintStar\PaintStar.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PaintStar\Uninstall PaintStar.lnk -> C:\Program Files (x86)\PaintStar\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe (NVIDIA)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Excel 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\xlicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft OneNote 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\joticon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Outlook 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\outicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft PowerPoint 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\pptico.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Publisher 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\pubs.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Word 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\wordicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Digital Certificate for VBA Projects.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Clip Organizer.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\cagicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office 2010 Language Preferences.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office 2010 Upload Center.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\msouc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office Picture Manager.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\oisicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware entfernen.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Base.lnk -> C:\Program Files (x86)\LibreOffice 4\program\sbase.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Calc.lnk -> C:\Program Files (x86)\LibreOffice 4\program\scalc.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Draw.lnk -> C:\Program Files (x86)\LibreOffice 4\program\sdraw.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Impress.lnk -> C:\Program Files (x86)\LibreOffice 4\program\simpress.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Math.lnk -> C:\Program Files (x86)\LibreOffice 4\program\smath.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Writer.lnk -> C:\Program Files (x86)\LibreOffice 4\program\swriter.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice.lnk -> C:\Program Files (x86)\LibreOffice 4\program\soffice.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\Über iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.Resources\de.lproj\About iTunes.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\About IrfanView.lnk -> C:\Program Files (x86)\IrfanView\i_about.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\Available Languages.lnk -> C:\Program Files (x86)\IrfanView\i_languages.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\Available PlugIns.lnk -> C:\Program Files (x86)\IrfanView\i_plugins.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\Command line Options.lnk -> C:\Program Files (x86)\IrfanView\i_options.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView 4.36.lnk -> C:\Program Files (x86)\IrfanView\i_view32.exe (Irfan Skiljan)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView Help.lnk -> C:\Program Files (x86)\IrfanView\i_view32.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\What's New.lnk -> C:\Program Files (x86)\IrfanView\i_changes.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel(R) Rapid Storage Technology.lnk -> C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorUI.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP*Update.lnk -> C:\Program Files (x86)\Hp\HP Software Update\hpwucli.exe (Hewlett-Packard)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Copyright.lnk -> C:\Program Files (x86)\Franzis\Cutout\Copyright.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Handbuch.lnk -> C:\Program Files (x86)\Franzis\Cutout\CutOut3.0-Handbuch.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Hotline.lnk -> C:\Program Files (x86)\Franzis\Cutout\Hotline.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Video-Tutorials\Ausschneiden und Einfügen.lnk -> C:\Program Files (x86)\Franzis\Cutout\AusschnEinf.wmv ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Video-Tutorials\Retuschieren.lnk -> C:\Program Files (x86)\Franzis\Cutout\Retuschieren.wmv ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Bitdefender Safepay.lnk -> C:\Program Files\Bitdefender\Bitdefender\antispam32\obk.exe (Bitdefender)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Hilfe.lnk -> C:\Program Files\Bitdefender\Bitdefender\support\offlinemanual\html\index.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Readme.lnk -> C:\Program Files\Bitdefender\Bitdefender\_enHTML\readme.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Reparieren oder Deinstallieren.lnk -> C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\installer.exe (Bitdefender)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bing-Desktop\Bing-Desktop.lnk -> C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe (Microsoft Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\microsoft shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\Links\Desktop.lnk -> C:\Users\Jessica\Desktop ()
Shortcut: C:\Users\Jessica\Links\Downloads.lnk -> C:\Users\Jessica\Downloads ()
Shortcut: C:\Users\Jessica\Desktop\Total Commander 64 bit.lnk -> C:\Program Files (x86)\totalcmd\TOTALCMD64.EXE (Ghisler Software GmbH)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk -> C:\Program Files (x86)\Linkey\${BRAND_EXE} (No File)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander\Total Commander 64 bit Entfernen oder Reparieren.lnk -> C:\Program Files (x86)\totalcmd\TCUNIN64.EXE ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander\Total Commander 64 bit.lnk -> C:\Program Files (x86)\totalcmd\TOTALCMD64.EXE (Ghisler Software GmbH)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander\Total Commander Hilfe.lnk -> C:\Program Files (x86)\totalcmd\TOTALCMD.CHM ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\SendTo\Dropbox.lnk -> C:\Users\Jessica\Dropbox ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Adobe Reader XI.lnk -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Public\Desktop\Bitdefender Safepay.lnk -> C:\Program Files\Bitdefender\Bitdefender\antispam32\obk.exe (Bitdefender)
Shortcut: C:\Users\Public\Desktop\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe (NVIDIA)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\Google Earth.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google)
Shortcut: C:\Users\Public\Desktop\iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\Users\Public\Desktop\LibreOffice 4.1.lnk -> C:\Program Files (x86)\LibreOffice 4\program\soffice.exe (The Document Foundation)
Shortcut: C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Users\Public\Desktop\Shop für Zubehör - HP Officejet 6500 E710a-f.lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\hpqDTSS.exe (Hewlett-Packard Co.)
Shortcut: C:\Users\Public\Desktop\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)




ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView - Thumbnails.lnk -> C:\Program Files (x86)\IrfanView\i_view32.exe (Irfan Skiljan) -> /thumbs
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6500 E710a-f\HP Officejet 6500 E710a-f.lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HP Officejet 6500 E710a-f.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth im DirectX-Modus starten.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) -> -setDX
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth im OpenGL-Modus starten.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) -> -setOGL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Bitdefender Internet Security.lnk -> C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Bitdefender) -> /seccenter
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6500 E710a-f (Netzwerk).lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN15T340KB05JZ;CONNECTION=NW;MONITOR=1;
ShortcutWithArgument: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Public\Desktop\Bitdefender Internet Security.lnk -> C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Bitdefender) -> /seccenter
ShortcutWithArgument: C:\Users\Public\Desktop\HP Officejet 6500 E710a-f.lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HP Officejet 6500 E710a-f.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage


InternetURL: C:\Users\Jessica\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142

==================== End of log =============================

oh soll ich letzteres nochmal in eine code datei umwandeln :o

SystemLook 30.07.11 by jpshortstuff
Log created at 14:49 on 04/03/2014 by Jessica
Administrator - Elevation successful

========== filefind ==========

Searching for "*Settings Manager*"
No files found.

Searching for "*Linkey*"
C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk --a---- 850 bytes [07:57 02/03/2014] [07:57 02/03/2014] 32E0A9E0FFAA079411BA4E77AAD5463A

Searching for "*default-search.net*"
No files found.

Searching for "*BitGuard*"
No files found.

Searching for "*wincert*"
No files found.

========== folderfind ==========

Searching for "*Settings Manager*"
C:\Program Files (x86)\Settings Manager d------ [07:57 02/03/2014]

Searching for "*Linkey*"
C:\Program Files (x86)\Linkey d------ [07:57 02/03/2014]

Searching for "*default-search.net*"
No folders found.

Searching for "*BitGuard*"
No folders found.

Searching for "*wincert*"
C:\AdwCleaner\Quarantine\C\ProgramData\wincert d------ [21:31 03/03/2014]

========== regfind ==========

Searching for "Settings Manager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\ARP]
"5"="Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall Settings Manager C:\Program Files (x86)\Settings Manager\systemk\Uninstall.exe /browser=all"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager]
"Path"="C:\Program Files (x86)\Settings Manager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager]
"DisplayName"="Settings Manager"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager]
"DisplayIcon"="C:\Program Files (x86)\Settings Manager\systemk\Uninstall.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager]
"UninstallString"="C:\Program Files (x86)\Settings Manager\systemk\Uninstall.exe /browser=all"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\SystemK\General]
"home"="C:\Program Files (x86)\Settings Manager"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls]
"x64"="c:\program files (x86)\settings manager\systemk\x64\sysapcrt.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls]
"x86"="c:\program files (x86)\settings manager\systemk\sysapcrt.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SystemkService]
"ImagePath"="C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls]
"x64"="c:\program files (x86)\settings manager\systemk\x64\sysapcrt.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls]
"x86"="c:\program files (x86)\settings manager\systemk\sysapcrt.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SystemkService]
"ImagePath"="C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe"

Searching for "Linkey"
[HKEY_CURRENT_USER\Software\Linkey]
[HKEY_CURRENT_USER\Software\Linkey]
"home"="C:\Program Files (x86)\Linkey"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
"DisplayName"="Linkey"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
"InstallLocation"="C:\Program Files (x86)\Linkey"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
"UninstallString"=""C:\Program Files (x86)\Linkey\uninstall.exe""
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
"DisplayIcon"="C:\Program Files (x86)\Linkey\uninstall.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{6A7CD9EC-D8BD-4340-BCD0-77C09A282921}]
@="Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
@="Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\InprocServer32]
@="C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\ProgID]
@="Linkey.Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\VersionIndependentProgID]
@="Linkey.Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{4613B1C1-FBC0-43C3-A4B9-B1D6CD360BB3}]
@="ILinkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Linkey.Linkey]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Linkey.Linkey]
@="Linkey Class"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}\1.0\0\win32]
@="C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}\1.0\HELPDIR]
@="C:\PROGRA~2\Linkey\IEEXTE~1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
@="Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\InprocServer32]
@="C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\ProgID]
@="Linkey.Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\VersionIndependentProgID]
@="Linkey.Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{4613B1C1-FBC0-43C3-A4B9-B1D6CD360BB3}]
@="ILinkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{6A7CD9EC-D8BD-4340-BCD0-77C09A282921}]
@="Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}\1.0\0\win32]
@="C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}\1.0\HELPDIR]
@="C:\PROGRA~2\Linkey\IEEXTE~1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Linkey]
[HKEY_LOCAL_MACHINE\SOFTWARE\Linkey]
"ie_jsurl"="hxxp://app.linkeyproject.com/popup/IE/background.js"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
@="Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\ARP]
"4"="S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall Linkey "C:\Program Files (x86)\Linkey\uninstall.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll C:\PROGRA~2\SETTIN~1\systemk\x64\syskldr.dll "
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Linkey]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Linkey]
"ie_jsurl"="hxxp://app.linkeyproject.com/popup/IE/background.js"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
@="Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll C:\PROGRA~2\SETTIN~1\systemk\syskldr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}]
@="Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\InprocServer32]
@="C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\ProgID]
@="Linkey.Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}\VersionIndependentProgID]
@="Linkey.Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Interface\{4613B1C1-FBC0-43C3-A4B9-B1D6CD360BB3}]
@="ILinkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\AppID\{6A7CD9EC-D8BD-4340-BCD0-77C09A282921}]
@="Linkey"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}\1.0\0\win32]
@="C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}\1.0\HELPDIR]
@="C:\PROGRA~2\Linkey\IEEXTE~1"
[HKEY_USERS\S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Linkey]
[HKEY_USERS\S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Linkey]
"home"="C:\Program Files (x86)\Linkey"
[HKEY_USERS\S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
[HKEY_USERS\S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
"DisplayName"="Linkey"
[HKEY_USERS\S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
"InstallLocation"="C:\Program Files (x86)\Linkey"
[HKEY_USERS\S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
"UninstallString"=""C:\Program Files (x86)\Linkey\uninstall.exe""
[HKEY_USERS\S-1-5-21-3920071593-1861241647-3757945225-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey]
"DisplayIcon"="C:\Program Files (x86)\Linkey\uninstall.exe"

Searching for "default-search.net"
No data found.

Searching for "BitGuard"
No data found.

Searching for "wincert"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\SystemK\General]
"ToolPath"="C:\ProgramData\Wincert"

-= EOF =-

mein laptop pfeift :O aber nur ein paar mal, jetzt ist er wieder still...
Sonst will der laptop, dass ich wieder meine identität bestätige, was ich seit dem 2. mal jetzt nicht gemacht hatte, und meine emailadresse eingebe.
sonst ist meine suchmaschine default-search.net und yahoo, was ich nicht eingerichtet habe. ein paar dateien von cutout sind noch drauf, sollte ich da grund zur beunruhigung haben? :D
Bitdefender geht jedenfalls wieder :)

M-K-D-B 04.03.2014 17:40
Servus,


so geht es weiter:



Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument


Code:
start
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3448848 2014-02-06] (Aztec Media Inc.)
HKLM-x32\...\Run: [] - [X]
AppInit_DLLs: C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll => C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll [210448 2014-02-03] (Aztec Media Inc)
AppInit_DLLs:  C:\PROGRA~2\SETTIN~1\systemk\x64\syskldr.dll => C:\Program Files (x86)\Settings Manager\systemk\x64\syskldr.dll [23568 2014-02-06] ()
AppInit_DLLs-x32: C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll => C:\Program Files (x86)\Linkey\IEExtension\iedll.dll [182800 2014-02-03] (Aztec Media Inc)
AppInit_DLLs-x32:  C:\PROGRA~2\SETTIN~1\systemk\syskldr.dll => C:\Program Files (x86)\Settings Manager\systemk\syskldr.dll [19984 2014-02-06] ()
C:\Program Files (x86)\Settings Manager
C:\Program Files (x86)\Linkey
HKLM\...\AppCertDlls: [x64] -> c:\program files (x86)\settings manager\systemk\x64\sysapcrt.dll [658960 2014-02-06] ()
HKLM\...\AppCertDlls: [x86] -> c:\program files (x86)\settings manager\systemk\sysapcrt.dll [485904 2014-02-06] ()
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\SystemK" /f
Reg: reg delete "HKEY_CURRENT_USER\Software\Linkey" /f
Reg: reg delete "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{6A7CD9EC-D8BD-4340-BCD0-77C09A282921}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{4613B1C1-FBC0-43C3-A4B9-B1D6CD360BB3}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Linkey.Linkey" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Linkey" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Linkey" /f
end

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.






Schritt 2
Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.
  • Starte die HitmanPro.exe
  • Klicke auf
  • Entferne den Haken bei
  • Klicke auf
    und
  • Akzeptiere die Lizenzbedingungen und klicke auf
  • Klicke auf

    und auf
  • Wenn der Scan beendet wurde, nichts löschen lassen etc. sondern wähle unten links auf der Button-Leiste
    und speichere die Logdatei auf Deinem Desktop.
  • Schließe HitmanPro und poste mir das Log.

 







Schritt 3
  • Öffne Google Chrome.
  • Klicke rechts oben auf Google Chrome anpassen.
  • Wähle Einstellungen.
    -------------------------------------------------------------
  • Unter Erscheinungsbild > Haken setzen bei "Schaltfläche Startseite anzeigen"
  • Unter "Neuer Tab"-Seite klicke auf Ändern
  • Unter Diese Seite öffnen gib deine gewünschte Seite ein, z. B. www.google.de
  • Bestätige mit Ok.
    -------------------------------------------------------------
  • Unter Beim Start > Wähle "Bestimmte Seite oder Seiten öffnen" aus und klicke auf Seiten festlegen.
  • Gib die gewünschte Startseite ein und bestätige mit Ok.
    -------------------------------------------------------------
  • Unter Suche klicke auf Suchmachinen verwalten.
  • Bewege den Mauszeiger auf Google.de und klicke auf den blau hinterlegten Button Als Standard festlegen.
  • Bewege nun den Mauszeiger auf default-search.net und klicke rechts auf das Symbol X.
  • Bestätige mit Fertig.
    -------------------------------------------------------------
  • Klicke links oben auf Erweiterungen und setze nun ein Häkchen vor Entwicklermodus.
  • Kopiere dir die Namen aller Erweiterungen, inklusive der jeweiligen ID, wie z. B.
    avast! WebRep 8.0.1483 -> ID: icmlaeflemplmjndnaapfdbbnpncnbda
    und poste mir die Namen und IDs mit deiner nächsten Antwort.
  • Schließe Google Chrome.




Schritt 4
Lade dir TFC (TempFileCleaner von Oldtimer) herunter und speichere es auf den Desktop.
  • Öffne die TFC.exe.
    Vista und Win 7 User mit Rechtsklick "als Administrator starten".
  • Schließe alle anderen Programme.
  • Drücke auf den Button Start.
  • Falls du zu einem Neustart aufgefordert wirst, bestätige diesen.






Schritt 5
Kontrollscan mit FRST
Führe wie zuvor beschrieben einen Scan mit FRST aus.
Setze dazu jeweils einen Haken bei Addition.txt und Shortcut.txt rechts unten und klicke auf Scan.
Es werden drei Logdateien erzeugt. Poste mir diese.




Wie läuft dein Rechner mittlerweile? Gibt es noch Probleme? Wenn ja, welche?





Bitte poste mit deiner nächsten Antwort
  • die Logdatei des FRST-Fix,
  • die Logdatei von HitmanPro,
  • die Rückmeldung von GoogleChrome,
  • die beiden neuen Logdateien von FRST,
  • die Beantwortung der gestellten Fragen.

jessicako 04.03.2014 18:49
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 03-03-2014 01
Ran by Jessica at 2014-03-04 17:56:45 Run:1
Running from C:\Users\Jessica\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(Aztec Media Inc.) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3448848 2014-02-06] (Aztec Media Inc.)
HKLM-x32\...\Run: [] - [X]
AppInit_DLLs: C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll => C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll [210448 2014-02-03] (Aztec Media Inc)
AppInit_DLLs: C:\PROGRA~2\SETTIN~1\systemk\x64\syskldr.dll => C:\Program Files (x86)\Settings Manager\systemk\x64\syskldr.dll [23568 2014-02-06] ()
AppInit_DLLs-x32: C:\PROGRA~2\Linkey\IEEXTE~1\iedll.dll => C:\Program Files (x86)\Linkey\IEExtension\iedll.dll [182800 2014-02-03] (Aztec Media Inc)
AppInit_DLLs-x32: C:\PROGRA~2\SETTIN~1\systemk\syskldr.dll => C:\Program Files (x86)\Settings Manager\systemk\syskldr.dll [19984 2014-02-06] ()
C:\Program Files (x86)\Settings Manager
C:\Program Files (x86)\Linkey
HKLM\...\AppCertDlls: [x64] -> c:\program files (x86)\settings manager\systemk\x64\sysapcrt.dll [658960 2014-02-06] ()
HKLM\...\AppCertDlls: [x86] -> c:\program files (x86)\settings manager\systemk\sysapcrt.dll [485904 2014-02-06] ()
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\SystemK" /f
Reg: reg delete "HKEY_CURRENT_USER\Software\Linkey" /f
Reg: reg delete "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{6A7CD9EC-D8BD-4340-BCD0-77C09A282921}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{4613B1C1-FBC0-43C3-A4B9-B1D6CD360BB3}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Linkey.Linkey" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Linkey" /f
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Linkey" /f
end
*****************

[2912] C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe => Process closed successfully.
[4528] C:\Program Files (x86)\Settings Manager\systemk\systemku.exe => Process closed successfully.
SystemkService => Service deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
"C:\\PROGRA~2\\Linkey\\IEEXTE~1\\iedll64.dll" => Value Data removed successfully.
" C:\\PROGRA~2\\SETTIN~1\\systemk\\x64\\syskldr.dll" => Value Data removed successfully.
"C:\\PROGRA~2\\Linkey\\IEEXTE~1\\iedll.dll" => Value Data removed successfully.
" C:\\PROGRA~2\\SETTIN~1\\systemk\\syskldr.dll" => Value Data removed successfully.
C:\Program Files (x86)\Settings Manager => Moved successfully.
C:\Program Files (x86)\Linkey => Moved successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x64 => Value deleted successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x86 => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKCR\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} => Key deleted successfully.
C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Linkey.lnk => Moved successfully.

========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\SystemK" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_CURRENT_USER\Software\Linkey" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{6A7CD9EC-D8BD-4340-BCD0-77C09A282921}" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}" /f =========

FEHLER: Der angegebene Registrierungsschlssel bzw. Wert wurde nicht gefunden.


========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{4613B1C1-FBC0-43C3-A4B9-B1D6CD360BB3}" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Linkey.Linkey" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Linkey" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Linkey" /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


==== End of Fixlog ====

ich hab für hitman pro das rausbekommen, ich hoffe es ist das richtige:

Code:
HitmanPro 3.7.9.212
www.hitmanpro.com

  Computer name . . . . : JESSIESNOTEBOOK
  Windows . . . . . . . : 6.3.0.9600.X64/4
  User name . . . . . . : JESSIESNOTEBOOK\Jessica
  UAC . . . . . . . . . : Enabled
  License . . . . . . . : Free

  Scan date . . . . . . : 2014-03-04 18:01:27
  Scan mode . . . . . . : Normal
  Scan duration . . . . : 4m 14s
  Disk access mode  . . : Direct disk access (SRB)
  Cloud . . . . . . . . : Internet
  Reboot  . . . . . . . : No

  Threats . . . . . . . : 0
  Traces  . . . . . . . : 56

  Objects scanned . . . : 1.238.867
  Files scanned . . . . : 20.524
  Remnants scanned  . . : 282.901 files / 935.442 keys

Cookies _____________________________________________________________________

  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad-emea.doubleclick.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.123-template.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.ad-srv.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adc-serv.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adnet.biz
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adnet.de
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adserver01.de
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.dyntracker.de
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.mlnadvertising.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.movad.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.zanox.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.ad4game.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.adjet.de
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.adnet.de
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.creative-serving.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.stadthunde.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.stickyadstv.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.webadgency.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.yahoo.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechus.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:apmebf.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:bs.serving-sys.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:c1.atdmt.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:de.sitestat.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:eas.apm.emediate.eu
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:emjcd.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:img-cdn.mediaplex.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:mediaplex.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:smartadserver.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:specificclick.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.effiliation.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.tnm.de
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:ww251.smartadserver.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.etracker.de
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com
  C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Cookies:xiti.com
  C:\Users\Jessica\AppData\Local\Microsoft\Windows\INetCookies\ED56JYQC.txt
Es gab keine Erweiterungen mehr :-)


FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-03-2014 01
Ran by Jessica (administrator) on JESSIESNOTEBOOK on 04-03-2014 18:44:42
Running from C:\Users\Jessica\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums

==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicatorCom.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1739480 2014-02-27] (Bitdefender)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-22] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2013-07-26] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1179576 2014-01-21] (NVIDIA Corporation)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-02-12] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-02-12] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse-Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [567888 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614232 2014-02-12] (Bitdefender)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [HP Officejet 6500 E710a-f (NET)] - C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3920071593-1861241647-3757945225-1001\...\Run: [Bitdefender-Geldbörse] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1001536 2014-02-12] (Bitdefender)
Startup: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6500 E710a-f (Netzwerk).lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6500 E710a-f (Netzwerk).lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x85F1697C9702CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll (Bitdefender)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} Automatically Find HP Updates | HP Support
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR Extension: (Google Wallet) - C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-15]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-02-27]

==================== Services (Whitelisted) =================

S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [77632 2013-11-21] (Bitdefender)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [47416 2014-02-05] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2013-10-07] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1507248 2014-02-27] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2014-02-04] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261056 2013-12-15] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2014-02-04] (BitDefender)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-07-24] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S4 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [429272 2013-08-21] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3068120 2014-01-13] (Realtek Semiconductor Corporation                          )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-07-26] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-08-07] (BitDefender S.R.L.)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-04 18:36 - 2014-03-04 18:36 - 00448512 _____ (OldTimer Tools) C:\Users\Jessica\Downloads\TFC.exe
2014-03-04 18:08 - 2014-03-04 18:08 - 00011778 _____ () C:\Users\Jessica\Downloads\HitmanPro_20140304_1808.log
2014-03-04 18:07 - 2014-03-04 18:07 - 00011778 _____ () C:\Users\Jessica\Downloads\HitmanPro_20140304_1806.log
2014-03-04 17:59 - 2014-03-04 18:08 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-03-04 17:59 - 2014-03-04 17:59 - 10820032 _____ (SurfRight B.V.) C:\Users\Jessica\Downloads\HitmanPro_x64.exe
2014-03-04 14:49 - 2014-03-04 14:51 - 00018884 _____ () C:\Users\Jessica\Downloads\SystemLook.txt
2014-03-04 14:49 - 2014-03-04 14:49 - 00165376 _____ () C:\Users\Jessica\Downloads\SystemLook_x64 (1).exe
2014-03-04 14:42 - 2014-03-04 14:42 - 00033331 _____ () C:\Users\Jessica\Downloads\Shortcut.txt
2014-03-04 00:29 - 2014-03-04 00:29 - 00003576 _____ () C:\Windows\System32\Tasks\Bitdefender Auto-Scan
2014-03-04 00:25 - 2014-03-04 00:09 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-04 00:23 - 2014-03-04 00:28 - 00000000 ____D () C:\zoek
2014-03-04 00:11 - 2014-03-04 00:28 - 00004606 _____ () C:\zoek-results.log
2014-03-04 00:09 - 2014-03-04 00:24 - 00000000 ____D () C:\zoek_backup
2014-03-04 00:08 - 2014-03-04 00:08 - 01284608 _____ () C:\Users\Jessica\Downloads\zoek.exe
2014-03-03 23:03 - 2014-03-03 23:03 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Malwarebytes
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-03 23:03 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-03 23:02 - 2014-03-03 23:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jessica\Desktop\mbam-setup-1.75.0.1300.exe
2014-03-03 23:00 - 2014-03-03 23:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jessica\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-03 22:53 - 2014-03-03 22:53 - 00000616 _____ () C:\Users\Jessica\Desktop\JRT.txt
2014-03-03 22:43 - 2014-03-03 22:43 - 00000000 ____D () C:\Windows\ERUNT
2014-03-03 22:43 - 2014-03-03 22:39 - 01037734 _____ (Thisisu) C:\Users\Jessica\Desktop\JRT.exe
2014-03-03 22:38 - 2014-03-03 22:39 - 01037734 _____ (Thisisu) C:\Users\Jessica\Downloads\JRT.exe
2014-03-03 22:28 - 2014-03-03 22:31 - 00000000 ____D () C:\AdwCleaner
2014-03-03 22:28 - 2014-03-03 22:28 - 01244192 _____ () C:\Users\Jessica\Downloads\adwcleaner.exe
2014-03-03 21:23 - 2014-03-04 14:42 - 00040146 _____ () C:\Users\Jessica\Downloads\Addition.txt
2014-03-03 21:22 - 2014-03-04 18:45 - 00014646 _____ () C:\Users\Jessica\Downloads\FRST.txt
2014-03-03 21:22 - 2014-03-04 18:44 - 00000000 ____D () C:\FRST
2014-03-03 21:21 - 2014-03-03 21:21 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64 (1).exe
2014-03-03 21:20 - 2014-03-03 21:20 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (2).exe
2014-03-03 21:17 - 2014-03-03 21:17 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64.exe
2014-03-03 21:15 - 2014-03-03 21:15 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (1).exe
2014-03-03 21:13 - 2014-03-03 21:13 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST.exe
2014-03-03 20:31 - 2014-03-03 20:31 - 00165376 _____ () C:\Users\Jessica\Downloads\SystemLook_x64.exe
2014-03-03 20:30 - 2014-03-03 20:30 - 00139264 _____ () C:\Users\Jessica\Downloads\SystemLook.exe
2014-03-03 20:28 - 2014-03-03 20:28 - 00001806 _____ () C:\Users\Jessica\Downloads\aswMBR.txt
2014-03-03 20:28 - 2014-03-03 20:28 - 00000512 _____ () C:\Users\Jessica\Downloads\MBR.dat
2014-03-03 20:23 - 2014-03-03 20:23 - 04745728 _____ (AVAST Software) C:\Users\Jessica\Downloads\aswMBR.exe
2014-03-03 20:19 - 2014-03-03 20:21 - 00144902 _____ () C:\Users\Jessica\Downloads\OTL.Txt
2014-03-03 20:19 - 2014-03-03 20:19 - 00073448 _____ () C:\Users\Jessica\Downloads\Extras.Txt
2014-03-03 20:10 - 2014-03-03 20:11 - 00602112 _____ (OldTimer Tools) C:\Users\Jessica\Downloads\otl.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 04212128 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp64998.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\System.sav
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-03-02 15:35 - 2014-03-02 15:35 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2014-03-02 15:35 - 2013-12-24 14:39 - 00382492 _____ () C:\Windows\system32\Drivers\FW7650.bin
2014-03-02 15:30 - 2014-03-02 15:31 - 63711280 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp63440.exe
2014-03-02 15:29 - 2014-03-02 15:32 - 92740112 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp65235.exe
2014-03-02 15:27 - 2014-03-02 15:30 - 152183640 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp64853.exe
2014-03-02 15:03 - 2014-03-02 15:03 - 02958800 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp63752.exe
2014-03-02 15:00 - 2014-03-02 15:00 - 04395008 _____ () C:\Users\Jessica\Downloads\HPSupportSolutionsFramework (1).msi
2014-03-02 14:55 - 2014-03-02 14:55 - 04605952 _____ (Ghisler Software GmbH) C:\Users\Jessica\Downloads\tcm850x64.exe
2014-03-02 14:55 - 2014-03-02 14:55 - 00001063 _____ () C:\Users\Jessica\Desktop\Total Commander 64 bit.lnk
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\GHISLER
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Program Files (x86)\totalcmd
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Local\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\ProgramData\René's Homepage
2014-03-02 12:08 - 2014-03-02 12:09 - 00000000 ____D () C:\Program Files\Snipping Tool
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 12:04 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-03-02 12:04 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-03-02 12:04 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-03-02 11:12 - 2014-03-02 11:12 - 02764854 _____ () C:\Users\Jessica\Documents\zeugnis.bmp
2014-03-02 11:12 - 2014-03-02 11:12 - 02764818 _____ () C:\Users\Jessica\Documents\zeugnis.tga
2014-03-02 11:07 - 2014-03-02 11:18 - 00014848 ___SH () C:\Users\Jessica\Documents\Thumbs.db
2014-03-02 08:56 - 2014-03-04 17:56 - 00000000 ____D () C:\ProgramData\systemk
2014-03-02 08:51 - 2014-03-02 08:51 - 00000000 ____D () C:\Program Files (x86)\PaintStar
2014-03-02 08:48 - 2014-03-02 08:48 - 00000000 ____D () C:\Program Files (x86)\Franzis
2014-03-02 08:47 - 2014-03-02 08:47 - 02703781 _____ () C:\Users\Jessica\Downloads\paintstar.zip
2014-02-28 19:28 - 2014-02-28 19:28 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 19:27 - 2014-02-28 19:28 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 19:27 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 15:34 - 2014-02-28 15:34 - 00064124 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00044850 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral
2014-02-28 13:26 - 2014-02-28 13:26 - 00051954 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-27 14:27 - 2014-02-27 14:27 - 00062354 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-27 00:03 - 2014-02-27 00:03 - 00024504 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral (1).rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00019701 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00017313 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:09 - 2014-02-26 23:09 - 00056878 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 23:08 - 2014-02-26 23:08 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:08 - 2014-02-26 23:08 - 00021776 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 22:14 - 2014-02-26 22:14 - 00069693 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.srt
2014-02-26 22:14 - 2014-02-26 22:14 - 00026294 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.rar
2014-02-26 21:19 - 2014-02-26 21:19 - 00061699 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 21:19 - 2014-02-26 21:19 - 00023578 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00060899 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 20:25 - 2014-02-26 20:25 - 00023248 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral
2014-02-26 19:22 - 2014-02-26 19:22 - 00067340 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 19:21 - 2014-02-26 19:21 - 00025465 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 18:15 - 2014-02-26 18:15 - 00056534 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 18:10 - 2014-02-26 18:10 - 00020202 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.HDTV.x264-2HD.de-SubCentral.rar
2014-02-26 18:10 - 2014-02-26 18:10 - 00016194 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 16:46 - 2014-02-26 16:46 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1)
2014-02-26 16:28 - 2014-02-26 16:28 - 00057822 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 16:11 - 2014-02-26 16:11 - 00016341 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.Valar.Morghulis.1080p.BluRay.x264-ROVERS.de-SubCentral.rar
2014-02-26 16:09 - 2014-02-26 16:09 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1).rar
2014-02-26 16:00 - 2014-02-26 16:00 - 00021916 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 15:56 - 2014-02-26 15:56 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral.rar
2014-02-20 19:18 - 2014-03-02 10:37 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-02-20 19:18 - 2014-03-02 10:37 - 00000000 ____D () C:\Windows\system32\NV
2014-02-20 19:18 - 2014-02-20 19:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-20 19:15 - 2014-02-08 19:34 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-20 19:15 - 2014-02-08 19:34 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00483104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00408352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00378656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-20 19:15 - 2014-02-08 19:34 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-02-19 14:33 - 2013-12-27 19:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-02-19 14:33 - 2013-12-27 19:42 - 00033056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-02-15 21:34 - 2014-02-15 21:34 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\dvdcss
2014-02-15 21:15 - 2014-02-15 21:15 - 00000603 _____ () C:\Windows\wmsetup.log
2014-02-15 21:14 - 2014-02-15 21:14 - 25842736 _____ (Microsoft Corporation) C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe
2014-02-14 18:38 - 2014-01-09 09:25 - 02804224 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-02-14 18:38 - 2014-01-09 08:59 - 01020928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-02-14 18:38 - 2014-01-09 08:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-02-14 18:38 - 2014-01-09 08:49 - 00919040 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-02-14 18:38 - 2014-01-09 08:44 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-02-14 18:38 - 2014-01-09 08:43 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-02-14 18:38 - 2014-01-09 08:29 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-02-14 18:38 - 2014-01-09 08:28 - 04217344 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-02-14 18:38 - 2014-01-09 08:28 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-02-14 18:38 - 2014-01-09 08:18 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-02-14 18:37 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.exe
2014-02-14 18:37 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.exe
2014-02-14 18:36 - 2014-01-04 21:50 - 01462216 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-02-14 18:36 - 2014-01-04 20:22 - 01202888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-02-14 18:36 - 2014-01-04 15:30 - 13209088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-02-14 18:36 - 2014-01-04 15:23 - 11702272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-02-14 18:36 - 2014-01-04 14:42 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-02-14 18:36 - 2014-01-04 14:40 - 07416832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-02-14 18:36 - 2014-01-04 14:36 - 00830976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-02-14 18:36 - 2014-01-04 14:28 - 04961792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-02-14 18:36 - 2013-12-21 03:10 - 00009701 _____ () C:\Windows\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-14 18:36 - 2013-12-21 03:10 - 00009701 _____ () C:\Windows\system32\connectedsearch-results.searchconnector-ms
2014-02-14 18:35 - 2013-12-20 11:10 - 01113040 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-02-14 18:35 - 2013-12-20 07:13 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-02-14 18:35 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-14 18:35 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-14 18:05 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-14 18:05 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-14 18:05 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-14 18:05 - 2014-01-07 06:00 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-14 18:05 - 2014-01-07 05:30 - 02071552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-14 18:05 - 2013-12-09 01:27 - 02152448 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-14 18:05 - 2013-12-09 00:54 - 01317376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-14 18:05 - 2013-11-21 07:42 - 04604416 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-14 18:05 - 2013-11-21 06:44 - 03936256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-14 18:04 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-14 18:04 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-14 18:04 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-14 18:04 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-14 18:04 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-14 18:04 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-14 18:04 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-14 18:04 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-14 18:04 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-14 18:04 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-14 18:04 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-14 18:04 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-14 18:04 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-14 18:04 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-14 18:04 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-14 18:04 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-14 18:04 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-14 18:04 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-14 18:04 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-14 18:04 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-14 18:04 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-14 18:04 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-14 18:04 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-14 18:04 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-14 18:04 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-14 18:04 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-14 18:04 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-14 18:04 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-14 18:04 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-14 18:04 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-14 18:04 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-14 18:04 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-14 18:04 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-14 18:04 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-14 18:03 - 2013-12-24 04:16 - 01530712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-14 18:03 - 2013-12-09 03:57 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-14 18:03 - 2013-12-09 02:51 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-04 14:29 - 2014-02-12 20:59 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Apple Computer
2014-02-04 14:29 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple Computer
2014-02-04 14:28 - 2014-02-04 14:28 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-04 14:28 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-02-04 14:26 - 2014-02-04 14:27 - 00000000 ____D () C:\ProgramData\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-02-04 14:14 - 2014-02-04 14:17 - 148904784 _____ (Apple Inc.) C:\Users\Jessica\Downloads\iTunes64Setup.exe

==================== One Month Modified Files and Folders =======

2014-03-04 18:45 - 2014-03-03 21:22 - 00014646 _____ () C:\Users\Jessica\Downloads\FRST.txt
2014-03-04 18:44 - 2014-03-03 21:22 - 00000000 ____D () C:\FRST
2014-03-04 18:40 - 2013-12-15 15:01 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6E3DD834-7849-4F7C-9F02-BD3C0C45EF87}
2014-03-04 18:37 - 2014-01-05 23:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-04 18:36 - 2014-03-04 18:36 - 00448512 _____ (OldTimer Tools) C:\Users\Jessica\Downloads\TFC.exe
2014-03-04 18:08 - 2014-03-04 18:08 - 00011778 _____ () C:\Users\Jessica\Downloads\HitmanPro_20140304_1808.log
2014-03-04 18:08 - 2014-03-04 17:59 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-03-04 18:07 - 2014-03-04 18:07 - 00011778 _____ () C:\Users\Jessica\Downloads\HitmanPro_20140304_1806.log
2014-03-04 18:02 - 2013-12-15 15:01 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3920071593-1861241647-3757945225-1001
2014-03-04 18:02 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-03-04 17:59 - 2014-03-04 17:59 - 10820032 _____ (SurfRight B.V.) C:\Users\Jessica\Downloads\HitmanPro_x64.exe
2014-03-04 17:56 - 2014-03-02 08:56 - 00000000 ____D () C:\ProgramData\systemk
2014-03-04 17:56 - 2013-12-15 14:46 - 01230997 _____ () C:\Windows\WindowsUpdate.log
2014-03-04 17:53 - 2013-12-15 15:38 - 00001144 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-04 17:42 - 2013-12-15 15:39 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-04 17:42 - 2013-12-15 15:38 - 00001140 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-04 17:42 - 2013-12-15 14:56 - 00000000 __RDO () C:\Users\Jessica\SkyDrive
2014-03-04 15:11 - 2013-12-15 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Packages
2014-03-04 15:11 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-03-04 14:51 - 2014-03-04 14:49 - 00018884 _____ () C:\Users\Jessica\Downloads\SystemLook.txt
2014-03-04 14:49 - 2014-03-04 14:49 - 00165376 _____ () C:\Users\Jessica\Downloads\SystemLook_x64 (1).exe
2014-03-04 14:42 - 2014-03-04 14:42 - 00033331 _____ () C:\Users\Jessica\Downloads\Shortcut.txt
2014-03-04 14:42 - 2014-03-03 21:23 - 00040146 _____ () C:\Users\Jessica\Downloads\Addition.txt
2014-03-04 00:29 - 2014-03-04 00:29 - 00003576 _____ () C:\Windows\System32\Tasks\Bitdefender Auto-Scan
2014-03-04 00:28 - 2014-03-04 00:23 - 00000000 ____D () C:\zoek
2014-03-04 00:28 - 2014-03-04 00:11 - 00004606 _____ () C:\zoek-results.log
2014-03-04 00:27 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-04 00:26 - 2013-12-15 13:42 - 00088768 _____ () C:\Windows\PFRO.log
2014-03-04 00:26 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-03-04 00:24 - 2014-03-04 00:09 - 00000000 ____D () C:\zoek_backup
2014-03-04 00:09 - 2014-03-04 00:25 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-04 00:08 - 2014-03-04 00:08 - 01284608 _____ () C:\Users\Jessica\Downloads\zoek.exe
2014-03-03 23:53 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-03-03 23:50 - 2013-12-15 14:53 - 00000000 ____D () C:\Users\Jessica
2014-03-03 23:03 - 2014-03-03 23:03 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Malwarebytes
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-03 23:03 - 2014-03-03 23:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-03 23:00 - 2014-03-03 23:02 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jessica\Desktop\mbam-setup-1.75.0.1300.exe
2014-03-03 23:00 - 2014-03-03 23:00 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jessica\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-03 22:53 - 2014-03-03 22:53 - 00000616 _____ () C:\Users\Jessica\Desktop\JRT.txt
2014-03-03 22:43 - 2014-03-03 22:43 - 00000000 ____D () C:\Windows\ERUNT
2014-03-03 22:39 - 2014-03-03 22:43 - 01037734 _____ (Thisisu) C:\Users\Jessica\Desktop\JRT.exe
2014-03-03 22:39 - 2014-03-03 22:38 - 01037734 _____ (Thisisu) C:\Users\Jessica\Downloads\JRT.exe
2014-03-03 22:31 - 2014-03-03 22:28 - 00000000 ____D () C:\AdwCleaner
2014-03-03 22:28 - 2014-03-03 22:28 - 01244192 _____ () C:\Users\Jessica\Downloads\adwcleaner.exe
2014-03-03 21:21 - 2014-03-03 21:21 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64 (1).exe
2014-03-03 21:20 - 2014-03-03 21:20 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (2).exe
2014-03-03 21:17 - 2014-03-03 21:17 - 02156544 _____ (Farbar) C:\Users\Jessica\Downloads\FRST64.exe
2014-03-03 21:15 - 2014-03-03 21:15 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST (1).exe
2014-03-03 21:13 - 2014-03-03 21:13 - 01145344 _____ (Farbar) C:\Users\Jessica\Downloads\FRST.exe
2014-03-03 20:31 - 2014-03-03 20:31 - 00165376 _____ () C:\Users\Jessica\Downloads\SystemLook_x64.exe
2014-03-03 20:30 - 2014-03-03 20:30 - 00139264 _____ () C:\Users\Jessica\Downloads\SystemLook.exe
2014-03-03 20:28 - 2014-03-03 20:28 - 00001806 _____ () C:\Users\Jessica\Downloads\aswMBR.txt
2014-03-03 20:28 - 2014-03-03 20:28 - 00000512 _____ () C:\Users\Jessica\Downloads\MBR.dat
2014-03-03 20:23 - 2014-03-03 20:23 - 04745728 _____ (AVAST Software) C:\Users\Jessica\Downloads\aswMBR.exe
2014-03-03 20:21 - 2014-03-03 20:19 - 00144902 _____ () C:\Users\Jessica\Downloads\OTL.Txt
2014-03-03 20:19 - 2014-03-03 20:19 - 00073448 _____ () C:\Users\Jessica\Downloads\Extras.Txt
2014-03-03 20:11 - 2014-03-03 20:10 - 00602112 _____ (OldTimer Tools) C:\Users\Jessica\Downloads\otl.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 04212128 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp64998.exe
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\System.sav
2014-03-02 15:47 - 2014-03-02 15:47 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-03-02 15:45 - 2013-12-25 11:52 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-03-02 15:43 - 2013-08-22 15:46 - 00015884 _____ () C:\Windows\setupact.log
2014-03-02 15:35 - 2014-03-02 15:35 - 00000000 ____D () C:\Program Files (x86)\Ralink Corporation
2014-03-02 15:35 - 2013-12-25 14:06 - 00000032 _____ () C:\Windows\0
2014-03-02 15:34 - 2013-12-15 15:12 - 00000000 ____D () C:\swsetup
2014-03-02 15:32 - 2014-03-02 15:29 - 92740112 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp65235.exe
2014-03-02 15:31 - 2014-03-02 15:30 - 63711280 _____ (Hewlett-Packard Company ) C:\Users\Jessica\Downloads\sp63440.exe
2014-03-02 15:30 - 2014-03-02 15:27 - 152183640 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp64853.exe
2014-03-02 15:03 - 2014-03-02 15:03 - 02958800 _____ (Hewlett-Packard ) C:\Users\Jessica\Downloads\sp63752.exe
2014-03-02 15:03 - 2013-12-25 11:49 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-03-02 15:00 - 2014-03-02 15:00 - 04395008 _____ () C:\Users\Jessica\Downloads\HPSupportSolutionsFramework (1).msi
2014-03-02 14:55 - 2014-03-02 14:55 - 04605952 _____ (Ghisler Software GmbH) C:\Users\Jessica\Downloads\tcm850x64.exe
2014-03-02 14:55 - 2014-03-02 14:55 - 00001063 _____ () C:\Users\Jessica\Desktop\Total Commander 64 bit.lnk
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\GHISLER
2014-03-02 14:55 - 2014-03-02 14:55 - 00000000 ____D () C:\Program Files (x86)\totalcmd
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Jessica\AppData\Local\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\ProgramData\René's Homepage
2014-03-02 12:09 - 2014-03-02 12:08 - 00000000 ____D () C:\Program Files\Snipping Tool
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-03-02 12:06 - 2014-03-02 12:06 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-03-02 12:06 - 2013-08-23 00:24 - 00766620 _____ () C:\Windows\system32\perfh007.dat
2014-03-02 12:06 - 2013-08-23 00:24 - 00159902 _____ () C:\Windows\system32\perfc007.dat
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-03-02 12:05 - 2014-03-02 12:05 - 00000000 ____D () C:\Program Files\MSBuild
2014-03-02 12:05 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-03-02 12:05 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\MUI
2014-03-02 11:18 - 2014-03-02 11:07 - 00014848 ___SH () C:\Users\Jessica\Documents\Thumbs.db
2014-03-02 11:12 - 2014-03-02 11:12 - 02764854 _____ () C:\Users\Jessica\Documents\zeugnis.bmp
2014-03-02 11:12 - 2014-03-02 11:12 - 02764818 _____ () C:\Users\Jessica\Documents\zeugnis.tga
2014-03-02 10:37 - 2014-02-20 19:18 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-02 10:37 - 2014-02-20 19:18 - 00000000 ____D () C:\Windows\system32\NV
2014-03-02 08:51 - 2014-03-02 08:51 - 00000000 ____D () C:\Program Files (x86)\PaintStar
2014-03-02 08:48 - 2014-03-02 08:48 - 00000000 ____D () C:\Program Files (x86)\Franzis
2014-03-02 08:47 - 2014-03-02 08:47 - 02703781 _____ () C:\Users\Jessica\Downloads\paintstar.zip
2014-02-28 19:28 - 2014-02-28 19:28 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 19:28 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 19:27 - 2014-02-28 19:27 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 16:39 - 2013-12-25 15:11 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\vlc
2014-02-28 15:34 - 2014-02-28 15:34 - 00064124 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00044850 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-28 14:40 - 2014-02-28 14:40 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral
2014-02-28 13:26 - 2014-02-28 13:26 - 00051954 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-27 14:27 - 2014-02-27 14:27 - 00062354 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.srt
2014-02-27 00:03 - 2014-02-27 00:03 - 00024504 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E10.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral (1).rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00019701 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E08.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-27 00:03 - 2014-02-27 00:03 - 00017313 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E09.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:09 - 2014-02-26 23:09 - 00056878 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 23:08 - 2014-02-26 23:08 - 00023602 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E07.720p.HDTV.x264-EVOLVE.DE-SubCentral.rar
2014-02-26 23:08 - 2014-02-26 23:08 - 00021776 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E06.INTERNAL.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 22:14 - 2014-02-26 22:14 - 00069693 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.srt
2014-02-26 22:14 - 2014-02-26 22:14 - 00026294 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E05.720p.HDTV.x264-KILLERS.de-SubCentral.rar
2014-02-26 21:19 - 2014-02-26 21:19 - 00061699 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 21:19 - 2014-02-26 21:19 - 00023578 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E04.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00060899 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 20:25 - 2014-02-26 20:25 - 00023248 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 20:25 - 2014-02-26 20:25 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E03.720p.HDTV.x264-EVOLVE.de-SubCentral
2014-02-26 19:22 - 2014-02-26 19:22 - 00067340 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 19:21 - 2014-02-26 19:21 - 00025465 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E02.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 18:15 - 2014-02-26 18:15 - 00056534 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.srt
2014-02-26 18:10 - 2014-02-26 18:10 - 00020202 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.HDTV.x264-2HD.de-SubCentral.rar
2014-02-26 18:10 - 2014-02-26 18:10 - 00016194 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S03E01.REPACK.720p.HDTV.x264-EVOLVE.de-SubCentral.rar
2014-02-26 16:46 - 2014-02-26 16:46 - 00000000 ____D () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1)
2014-02-26 16:28 - 2014-02-26 16:28 - 00057822 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.srt
2014-02-26 16:11 - 2014-02-26 16:11 - 00016341 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.Valar.Morghulis.1080p.BluRay.x264-ROVERS.de-SubCentral.rar
2014-02-26 16:09 - 2014-02-26 16:09 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral (1).rar
2014-02-26 16:00 - 2014-02-26 16:00 - 00021916 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.720p.HDTV.x264-IMMERSE.de-SubCentral.rar
2014-02-26 15:56 - 2014-02-26 15:56 - 00021908 _____ () C:\Users\Jessica\Downloads\Game.of.Thrones.S02E10.HDTV.x264-ASAP.de-SubCentral.rar
2014-02-26 15:48 - 2013-12-15 15:38 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-26 15:48 - 2013-12-15 15:38 - 00003880 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-26 15:36 - 2013-12-25 20:00 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\HpUpdate
2014-02-20 20:37 - 2014-01-05 23:32 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 19:18 - 2014-02-20 19:18 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-20 19:18 - 2013-12-15 15:30 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-20 19:18 - 2013-12-15 15:29 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-19 14:35 - 2014-01-25 11:19 - 00000000 ____D () C:\Users\Jessica\AppData\Local\NVIDIA Corporation
2014-02-17 22:00 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-17 22:00 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-15 21:34 - 2014-02-15 21:34 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\dvdcss
2014-02-15 21:33 - 2013-12-15 16:36 - 00000887 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-15 21:15 - 2014-02-15 21:15 - 00000603 _____ () C:\Windows\wmsetup.log
2014-02-15 21:14 - 2014-02-15 21:14 - 25842736 _____ (Microsoft Corporation) C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe
2014-02-14 21:20 - 2013-12-15 14:50 - 01689572 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\FileManager
2014-02-14 18:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Camera
2014-02-14 18:45 - 2013-12-15 15:27 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-14 18:43 - 2013-12-15 15:27 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-14 18:41 - 2013-12-30 12:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-14 18:40 - 2013-08-22 14:25 - 00000167 _____ () C:\Windows\win.ini
2014-02-12 20:59 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Roaming\Apple Computer
2014-02-08 19:34 - 2014-02-20 19:15 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-08 19:34 - 2014-02-20 19:15 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00483104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00408352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00378656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-08 19:34 - 2014-02-20 19:15 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-02-08 19:34 - 2014-01-25 11:09 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-02-08 19:34 - 2014-01-25 11:09 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-02-08 19:34 - 2013-10-27 09:04 - 00947296 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00832424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-02-08 19:34 - 2013-10-27 09:04 - 00148528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-02-08 19:34 - 2013-10-27 09:03 - 03090184 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 06712608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 03498272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 01075488 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00923936 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-08 18:42 - 2013-12-15 15:30 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2014-02-08 18:42 - 2013-12-15 15:30 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-06 13:16 - 2014-02-14 18:04 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-14 18:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-14 18:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-14 18:05 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-14 18:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-14 18:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-14 18:04 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-14 18:04 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:49 - 2014-02-14 18:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-14 18:04 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-14 18:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-14 18:04 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-14 18:04 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-14 18:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-14 18:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-14 18:04 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-14 18:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-14 18:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-14 18:05 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-14 18:04 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-14 18:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-14 18:04 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-14 18:04 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:47 - 2014-02-14 18:04 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-14 18:04 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-14 18:04 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-14 18:04 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-14 18:04 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-14 18:04 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-14 18:04 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-14 18:04 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-14 18:04 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-14 18:04 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-14 18:04 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-14 18:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-14 18:04 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-14 18:04 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 18:52 - 2013-12-15 15:30 - 03573739 _____ () C:\Windows\system32\nvcoproc.bin
2014-02-04 14:30 - 2013-12-15 15:49 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-02-04 14:30 - 2013-12-15 15:49 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-02-04 14:29 - 2014-02-04 14:29 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple Computer
2014-02-04 14:28 - 2014-02-04 14:28 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Users\Jessica\AppData\Local\Apple
2014-02-04 14:27 - 2014-02-04 14:27 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-02-04 14:27 - 2014-02-04 14:26 - 00000000 ____D () C:\ProgramData\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-04 14:26 - 2014-02-04 14:26 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-02-04 14:17 - 2014-02-04 14:14 - 148904784 _____ (Apple Inc.) C:\Users\Jessica\Downloads\iTunes64Setup.exe
2014-02-03 17:37 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-02 16:08

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-03-2014 01
Ran by Jessica at 2014-03-04 18:45:16
Running from C:\Users\Jessica\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.347.0 - Microsoft Corporation)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.23.0.996 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{81FB7C60-565A-4869-9D90-3BE1D270E8B7}) (Version:  - Microsoft)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
HP Officejet 6500 E710a-f - Grundlegende Software für das Gerät (HKLM\...\{F28BD099-9FC0-4A03-A605-E069B8D17D47}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710a-f Hilfe (HKLM-x32\...\{037CD593-D760-4A00-B030-7BBAFA1123FE}) (Version: 140.0.2.2 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{86FD8326-909D-45F5-BB61-0619D0D31293}) (Version: 11.50.0011 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.1.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.1.1000 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
LibreOffice 4.1 Help Pack (German) (HKLM-x32\...\{43295475-62CA-4F25-B46C-43C59258780E}) (Version: 4.1.4.2 - The Document Foundation)
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Mediatek Bluetooth (HKLM\...\{16BCAEDC-C115-1729-07C4-7A0091C699A6}) (Version: 11.0.749.0 - Mediatek)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2010 - German/Deutsch (HKLM-x32\...\Office14.OMUI.de-de) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office O MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Standard 2010 (HKLM-x32\...\Office14.STANDARD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Standard 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA GeForce Experience 1.8.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden
NVIDIA Update 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 11.10.11 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
PaintStar 2.70 (HKLM-x32\...\PaintStar_is1) (Version:  - Zhenzhou Wang)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 1.1.9200.23 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{F3E80B62-3C51-4940-A434-A1F517AB8D6A}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 1.7.306 - NVIDIA Corporation) Hidden
Studie zur Verbesserung von HP Officejet 6500 E710a-f Produkten (HKLM\...\{F51820F6-72AF-43FA-B750-3CA177C49F2F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.6.2 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837583) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{E21274CE-CA0C-49FA-93F4-DC292A052264}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.OMUI.de-de_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.STANDARD_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.OMUI.de-de_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.STANDARD_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.STANDARD_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.STANDARD_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.OMUI.de-de_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.STANDARD_{DA2F7ECE-6629-4A80-9CDE-EC95261B75E2}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.STANDARD_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version:  - Microsoft)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)

==================== Restore Points  =========================

25-01-2014 10:13:09 DirectX wurde installiert
28-01-2014 17:45:23 Windows Update
04-02-2014 13:27:07 Installed iTunes
14-02-2014 17:38:41 Windows Update
19-02-2014 13:35:27 DirectX wurde installiert
02-03-2014 11:02:08 Windows Modules Installer
03-03-2014 23:11:16 zoek.exe restore point

==================== Hosts content: ==========================

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {113C4AB9-D378-45CC-84F4-9D4AD14112F6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-02-14] (Microsoft Corporation)
Task: {1C9CBDDA-7CFF-41A3-A6DC-70146400E947} - System32\Tasks\Bitdefender Auto-Scan => C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe [2013-06-19] (Bitdefender)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {81A2306E-0F33-4715-905C-5B6C1BA64C76} - System32\Tasks\HPCustParticipation HP Officejet 6500 E710a-f => C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A99B04AE-7A40-4960-9ACB-955FABCBC38F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E0535C0D-DCE0-4A34-AD78-A311A0B89EC7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-15] (Google Inc.)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FCF68DB2-D7C5-405A-B4EC-E3F511ACC7D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-15] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-15 15:49 - 2013-06-19 11:45 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2013-12-15 15:49 - 2013-11-28 12:49 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2013-12-15 15:49 - 2011-11-14 19:17 - 00153680 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll
2013-12-15 15:49 - 2013-11-28 12:49 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2014-02-27 14:21 - 2014-02-27 14:21 - 00770792 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpbr.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpdsp.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 02592904 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttpph.mdl
2014-02-27 14:21 - 2014-02-27 14:21 - 01315680 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00036_006\ashttprbl.mdl
2013-10-27 09:03 - 2014-02-08 19:34 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-12-15 15:30 - 2014-02-08 18:42 - 00117024 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-12-25 12:10 - 2013-09-03 17:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-12-15 15:49 - 2013-06-19 11:44 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-04 14:54 - 2014-03-02 03:35 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
2014-03-04 14:54 - 2014-03-02 03:35 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libglesv2.dll
2014-03-04 14:54 - 2014-03-02 03:35 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libegl.dll
2013-10-27 09:03 - 2014-02-08 19:34 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-03-04 14:54 - 2014-03-02 03:35 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll
2014-03-04 14:54 - 2014-03-02 03:35 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll
2014-03-04 14:54 - 2014-03-02 03:35 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Jessica\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Jessica\Desktop\JRT.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Desktop\mbam-setup-1.75.0.1300.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\332.21-notebook-win8-win7-64bit-international-whql.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\adwcleaner.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\aswMBR.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\Dropbox 2.4.8.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST (2).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST64 (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\GoogleEarthSetup (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\GoogleEarthSetup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\HitmanPro_x64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\irfanview_plugins_436_setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\iTunes64Setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\iview436_setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\JRT.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\mbam-setup-1.75.0.1300.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\OJ6500_E710a-f_1315.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\otl.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\setup.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\Silverlight.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp59835.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63223.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63317.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63440.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63752.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63966.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63968.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63971.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63974.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp63975.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64156 (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64156.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64853.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp64998.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\sp65235.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\SystemLook.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\SystemLook_x64 (1).exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\SystemLook_x64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\tcm850x64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\TFC.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\vlc-2.1.2-win64.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\wmp11-windowsxp-x86-DE-DE.exe:BDU
AlternateDataStreams: C:\Users\Jessica\Downloads\zoek.exe:BDU

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: HP USB BT Transceiver [1.2]
Description: HP USB BT Transceiver [1.2]
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: HP
Service: BTHUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/04/2014 05:42:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 52500

Error: (03/04/2014 05:42:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 52500

Error: (03/04/2014 05:42:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/04/2014 05:35:59 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7976468

Error: (03/04/2014 05:35:59 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7976468

Error: (03/04/2014 05:35:59 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/04/2014 03:14:33 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 49357578

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 49357578

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (03/04/2014 06:40:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Apple Mobile Device" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/04/2014 06:37:32 PM) (Source: Service Control Manager) (User: )
Description: Dienst "Adobe Acrobat Update Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (03/04/2014 05:56:45 PM) (Source: Service Control Manager) (User: )
Description: Dienst "Systemk Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (03/04/2014 05:36:19 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "ANNA-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{2E085B74-6F9B-4CEB-9827-3AB6B2D26CE0}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (03/04/2014 00:27:24 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (03/04/2014 00:24:01 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:24:01 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:24:00 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:24:00 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/04/2014 00:23:59 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.


Microsoft Office Sessions:
=========================
Error: (03/04/2014 05:42:10 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 52500

Error: (03/04/2014 05:42:10 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 52500

Error: (03/04/2014 05:42:10 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/04/2014 05:35:59 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7976468

Error: (03/04/2014 05:35:59 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7976468

Error: (03/04/2014 05:35:59 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/04/2014 03:14:33 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 49357578

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 49357578

Error: (03/04/2014 02:32:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


CodeIntegrity Errors:
===================================
  Date: 2014-03-04 15:09:01.062
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-04 15:09:01.029
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-04 00:27:01.136
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-04 00:27:01.120
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-04 00:05:34.115
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-04 00:05:34.084
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 23:49:14.237
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 23:49:14.206
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 23:16:50.577
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-03-03 23:16:50.561
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

Percentage of memory in use: 27%
Total physical RAM: 7962.14 MB
Available physical RAM: 5765.41 MB
Total Pagefile: 9242.14 MB
Available Pagefile: 7191.26 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931 GB) (Free:880.14 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 710FD2B4)

Partition: GPT Partition Type.

==================== End Of Log ============================
--- --- ---

jessicako 04.03.2014 19:00
Users shortcut scan result (x64) Version: 03-03-2014 01
Ran by Jessica at 2014-03-04 18:45:49
Running from C:\Users\Jessica\Downloads
Boot Mode: Normal
==================== Shortcuts =============================

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1031-7B44-AB0000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk -> C:\Windows\BrowserChoice\html\default.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera.lnk -> C:\Windows\Camera\Camera.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk -> C:\Windows\FileManager\FileManager.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk -> C:\Program Files (x86)\Hp\IrisOCR_12.3.4.0\regipe.exe (I.R.I.S. Image Recognition Integarted Systems)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotosApp.lnk -> C:\Windows\FileManager\PhotosApp.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Store.lnk -> C:\Windows\WinStore\WinStore.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools\HP Utility Center.lnk -> C:\Program Files\Hewlett-Packard\HP Utility Center\HPPU.exe (Hewlett-Packard Development Company, L.P.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PaintStar\PaintStar.lnk -> C:\Program Files (x86)\PaintStar\PaintStar.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PaintStar\Uninstall PaintStar.lnk -> C:\Program Files (x86)\PaintStar\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe (NVIDIA)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Excel 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\xlicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft OneNote 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\joticon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Outlook 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\outicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft PowerPoint 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\pptico.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Publisher 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\pubs.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Word 2010.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\wordicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Digital Certificate for VBA Projects.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Clip Organizer.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\cagicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office 2010 Language Preferences.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office 2010 Upload Center.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\msouc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office Picture Manager.lnk -> C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\oisicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware entfernen.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Base.lnk -> C:\Program Files (x86)\LibreOffice 4\program\sbase.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Calc.lnk -> C:\Program Files (x86)\LibreOffice 4\program\scalc.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Draw.lnk -> C:\Program Files (x86)\LibreOffice 4\program\sdraw.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Impress.lnk -> C:\Program Files (x86)\LibreOffice 4\program\simpress.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Math.lnk -> C:\Program Files (x86)\LibreOffice 4\program\smath.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice Writer.lnk -> C:\Program Files (x86)\LibreOffice 4\program\swriter.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.1\LibreOffice.lnk -> C:\Program Files (x86)\LibreOffice 4\program\soffice.exe (The Document Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\Über iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.Resources\de.lproj\About iTunes.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\About IrfanView.lnk -> C:\Program Files (x86)\IrfanView\i_about.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\Available Languages.lnk -> C:\Program Files (x86)\IrfanView\i_languages.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\Available PlugIns.lnk -> C:\Program Files (x86)\IrfanView\i_plugins.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\Command line Options.lnk -> C:\Program Files (x86)\IrfanView\i_options.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView 4.36.lnk -> C:\Program Files (x86)\IrfanView\i_view32.exe (Irfan Skiljan)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView Help.lnk -> C:\Program Files (x86)\IrfanView\i_view32.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\What's New.lnk -> C:\Program Files (x86)\IrfanView\i_changes.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel(R) Rapid Storage Technology.lnk -> C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorUI.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP*Update.lnk -> C:\Program Files (x86)\Hp\HP Software Update\hpwucli.exe (Hewlett-Packard)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Copyright.lnk -> C:\Program Files (x86)\Franzis\Cutout\Copyright.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Handbuch.lnk -> C:\Program Files (x86)\Franzis\Cutout\CutOut3.0-Handbuch.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Hotline.lnk -> C:\Program Files (x86)\Franzis\Cutout\Hotline.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Video-Tutorials\Ausschneiden und Einfügen.lnk -> C:\Program Files (x86)\Franzis\Cutout\AusschnEinf.wmv ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout\Video-Tutorials\Retuschieren.lnk -> C:\Program Files (x86)\Franzis\Cutout\Retuschieren.wmv ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Bitdefender Safepay.lnk -> C:\Program Files\Bitdefender\Bitdefender\antispam32\obk.exe (Bitdefender)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Hilfe.lnk -> C:\Program Files\Bitdefender\Bitdefender\support\offlinemanual\html\index.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Readme.lnk -> C:\Program Files\Bitdefender\Bitdefender\_enHTML\readme.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Reparieren oder Deinstallieren.lnk -> C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\installer.exe (Bitdefender)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bing-Desktop\Bing-Desktop.lnk -> C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe (Microsoft Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\microsoft shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\Links\Desktop.lnk -> C:\Users\Jessica\Desktop ()
Shortcut: C:\Users\Jessica\Links\Downloads.lnk -> C:\Users\Jessica\Downloads ()
Shortcut: C:\Users\Jessica\Desktop\Total Commander 64 bit.lnk -> C:\Program Files (x86)\totalcmd\TOTALCMD64.EXE (Ghisler Software GmbH)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander\Total Commander 64 bit Entfernen oder Reparieren.lnk -> C:\Program Files (x86)\totalcmd\TCUNIN64.EXE ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander\Total Commander 64 bit.lnk -> C:\Program Files (x86)\totalcmd\TOTALCMD64.EXE (Ghisler Software GmbH)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander\Total Commander Hilfe.lnk -> C:\Program Files (x86)\totalcmd\TOTALCMD.CHM ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\SendTo\Dropbox.lnk -> C:\Users\Jessica\Dropbox ()
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Jessica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Adobe Reader XI.lnk -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Public\Desktop\Bitdefender Safepay.lnk -> C:\Program Files\Bitdefender\Bitdefender\antispam32\obk.exe (Bitdefender)
Shortcut: C:\Users\Public\Desktop\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe (NVIDIA)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\Google Earth.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google)
Shortcut: C:\Users\Public\Desktop\iTunes.lnk -> C:\Program Files (x86)\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\Users\Public\Desktop\LibreOffice 4.1.lnk -> C:\Program Files (x86)\LibreOffice 4\program\soffice.exe (The Document Foundation)
Shortcut: C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Users\Public\Desktop\Shop für Zubehör - HP Officejet 6500 E710a-f.lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\hpqDTSS.exe (Hewlett-Packard Co.)
Shortcut: C:\Users\Public\Desktop\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)




ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView - Thumbnails.lnk -> C:\Program Files (x86)\IrfanView\i_view32.exe (Irfan Skiljan) -> /thumbs
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6500 E710a-f\HP Officejet 6500 E710a-f.lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HP Officejet 6500 E710a-f.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth im DirectX-Modus starten.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) -> -setDX
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth im OpenGL-Modus starten.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) -> -setOGL
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender\Bitdefender Internet Security.lnk -> C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Bitdefender) -> /seccenter
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6500 E710a-f (Netzwerk).lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> "C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN15T340KB05JZ;CONNECTION=NW;MONITOR=1;
ShortcutWithArgument: C:\Users\Jessica\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Jessica\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Public\Desktop\Bitdefender Internet Security.lnk -> C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Bitdefender) -> /seccenter
ShortcutWithArgument: C:\Users\Public\Desktop\HP Officejet 6500 E710a-f.lnk -> C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HP Officejet 6500 E710a-f.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage


InternetURL: C:\Users\Jessica\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142

==================== End of log =============================

Er läuft momentan super, danke! :-)

M-K-D-B 05.03.2014 15:00
Servus,



Wir kontrollieren nochmal alles. ESET kann länger (> 2 h) dauern.
Im Anschluss daran räumen wir auf und ich gebe dir noch ein paar Tipps mit auf den Weg.





Schritt 1

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset






Schritt 2
Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei von ESET,
  • die Logdatei von SecurityCheck.

jessicako 05.03.2014 21:04
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=6fa2899a0df4b74ba4cbfef4df900ec8
# engine=17325
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-03-05 07:45:38
# local_time=2014-03-05 08:45:38 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode=5893 16776574 100 94 6930662 16882440 0 0
# scanned=147961
# found=0
# cleaned=0
# scan_time=18794

Es sind noch weitere Esetordner dabei. Soll sollte ich die auch löschen? :-)

Results of screen317's Security Check version 0.99.79
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Bitdefender Antivirus
Windows Defender
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware Version 1.75.0.1300
Adobe Flash Player 12.0.0.70
Adobe Reader XI
Google Chrome 33.0.1750.117
Google Chrome 33.0.1750.146
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
Bitdefender Bitdefender vsserv.exe
Bitdefender Bitdefender updatesrv.exe
Bitdefender Bitdefender bdagent.exe
Bitdefender Bitdefender pmbxag.exe
Bitdefender Bitdefender antispam32 bdapppassmgr.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````


Alle Zeitangaben in WEZ +1. Es ist jetzt 12:37 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131