Moin Moin schrauber,
Vielen Danke für deine Hilfe ! ! !
Hier kommt noch mal der Code von der FRST.txt
[
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-09-2013 02
Ran by Michael (administrator) on MICHAELQRL on 16-09-2013 21:12:44
Running from C:\Users\Michael\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Validity Sensors, Inc.) C:\Windows\system32\vcsFPService.exe
(AMD) C:\windows\system32\atieclxx.exe
(Microsoft Corporation) C:\windows\system32\WLANExt.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
() C:\ProgramData\BetterSoft\SaveByClick\SaveByClick.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Akamai Technologies, Inc.) C:\Users\Michael\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Michael\AppData\Local\Akamai\netsession_win.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Windows Net) C:\Users\Michael\AppData\Roaming\Windows Net Data\net.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apntex.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidFind.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Microsoft Corporation) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [QuickSet] - C:\Program Files\Dell\QuickSet\QuickSet.exe [3666800 2011-01-22] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] ()
HKLM\...\Run: [FreeFallProtection] - C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-07-28] (Intel(R) Corporation)
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1424896 2011-09-08] (IDT, Inc.)
HKLM\...\Run: [Ocs_SM] - C:\Users\Michael\AppData\Roaming\OCS\SM\SearchAnonymizer.exe
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Michael\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564016 2013-07-15] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560 2013-03-20] (Samsung Electronics)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-07-15] (Samsung)
HKCU\...\Run: [NokiaSuite.exe] - C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1090040 2012-12-21] (Nokia)
HKCU\...\Run: [DellSystemDetect] - C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms [370 2013-06-05] ()
HKCU\...\Run: [NTRedirect] - C:\windows\SysWOW64\rundll32.exe "C:\Users\Michael\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
MountPoints2: {f4655157-fe64-11e2-8b0b-ac7289e57f22} - E:\iLinker.exe
HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-12] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [RoxWatchTray] - c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] - c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM-x32\...\Run: [RemoteControl9] - C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-06] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-04-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-26] (Dell, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-09-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-07-15] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
Startup: C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
ShortcutTarget: net.lnk -> C:\Users\Michael\AppData\Roaming\Windows Net Data\net.exe (Windows Net)
Startup: C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Certified-Toolbar Search
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Certified-Toolbar Search
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x773C94E4A0B7CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = Babylon Search
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Certified-Toolbar Search
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = Certified-Toolbar Search
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:newtab
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = Certified-Toolbar Search
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = Certified-Toolbar Search
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.funmoods.com/results.php?f=4&q={searchTerms}&a=sware&chnl=sware&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzy0EyDyB0FtByCzzyC0DyEtN0D0Tzu0CtByEzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=1126344058
SearchScopes: HKLM-x32 - URL hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378936800000.000008&tguid=66920-6787-1378980517734-63BAC00F9CFC0F97E563FF0B2918C0D2&q={searchTerms}
SearchScopes: HKLM-x32 - SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=66920&gid=66920-6787-1378980517734-63BAC00F9CFC0F97E563FF0B2918C0D2&dbCode=1&command={searchTerms}
SearchScopes: HKLM-x32 - TopResultURLFallback hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378936800000.000008&tguid=66920-6787-1378980517734-63BAC00F9CFC0F97E563FF0B2918C0D2&q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.funmoods.com/results.php?f=4&q={searchTerms}&a=sware&chnl=sware&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzy0EyDyB0FtByCzzyC0DyEtN0D0Tzu0CtByEzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=1126344058
SearchScopes: HKLM-x32 - {5E3FCACC-FC78-C204-94D7-4640C40200E3} URL = hxxp://search.chatzum.com/?q={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378980517734&tguid=66920-6787-1378980517734-63BAC00F9CFC0F97E563FF0B2918C0D2&q={searchTerms}
SearchScopes: HKLM-x32 - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = hxxp://isearch.glarysoft.com/?q={searchTerms}&src=iesearch
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378936800000.000008&tguid=66920-6787-1378980517734-63BAC00F9CFC0F97E563FF0B2918C0D2&q={searchTerms}
SearchScopes: HKCU - Backup.Old.DefaultScope {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0E59EDC7-E16D-48DE-B383-C2866B47EC9B} URL = hxxp://www.pricerunner.de.anonymize-me.de/?to=707269636572756E6E65722E6465&st={searchTerms}&clid=bf3653df-fc20-4d27-be95-a31f69aaa094&pid=odownloadde&mode=bounce&k=0
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378936800000.000008&tguid=66920-6787-1378980517734-63BAC00F9CFC0F97E563FF0B2918C0D2&q={searchTerms}
SearchScopes: HKCU - {0F769C1A-24D6-44F8-B547-F94840583311} URL = hxxp://www.otto.de.anonymize-me.de/?to=6F74746F2E6465&st={searchTerms}&clid=bf3653df-fc20-4d27-be95-a31f69aaa094&pid=odownloadde&mode=bounce&k=0
SearchScopes: HKCU - {2115E46D-AAA3-4AAE-931D-1D599B77D529} URL = hxxp://search.ebay.de.anonymize-me.de/?to=656261792E6465&st={searchTerms}&clid=bf3653df-fc20-4d27-be95-a31f69aaa094&pid=odownloadde&mode=bounce&k=0
SearchScopes: HKCU - {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL =
SearchScopes: HKCU - {46F14E63-036D-4CBB-B028-60F0ADFBC13C} URL = hxxp://www.amazon.de.anonymize-me.de/?to=616D617A6F6E2E6465&st={searchTerms}&clid=bf3653df-fc20-4d27-be95-a31f69aaa094&pid=odownloadde&mode=bounce&k=0
SearchScopes: HKCU - {8A938C56-0785-4A2A-8863-D9FE70F40BD8} URL = hxxp://www.bing.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E62696E672E636F6D2F7365617263683F464F524D3D42444B5444462650433D4244543326713D7B7365617263685465726D737D267372633D49452D536561726368426F78&st={searchTerms}&clid=bf3653df-fc20-4d27-be95-a31f69aaa094&pid=odownloadde&k=0
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=horus
SearchScopes: HKCU - {B7A54D3B-C4A8-4838-A6F2-B6D46AB712A0} URL = hxxp://www.myvideo.de.anonymize-me.de/?to=6D79766964656F2E6465&st={searchTerms}&clid=bf3653df-fc20-4d27-be95-a31f69aaa094&pid=odownloadde&mode=bounce&k=0
SearchScopes: HKCU - {B8B2B468-5033-4607-BC27-9ED87E13E852} URL = hxxp://de.wikipedia.org.anonymize-me.de/?to=64652E77696B6970656469612E6F7267&st={searchTerms}&clid=bf3653df-fc20-4d27-be95-a31f69aaa094&pid=odownloadde&mode=bounce&k=0
SearchScopes: HKCU - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = hxxp://isearch.glarysoft.com.anonymize-me.de/?anonymto=687474703A2F2F697365617263682E676C617279736F66742E636F6D2F3F713D7B7365617263685465726D737D267372633D6965736561726368&st={searchTerms}&clid=bf3653df-fc20-4d27-be95-a31f69aaa094&pid=odownloadde&k=0
BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\bho\1009\TmIEPlg.dll No File
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Plus-HD-3.8 - {11111111-1111-1111-1111-110311901130} - C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-bho.dll (Plus HD)
BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\bho\1009\TmIEPlg32.dll No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DealPly Shopping - {9cf699ca-2174-4ed8-bec1-ba82095edce0} - C:\Program Files (x86)\DealPly\DealPlyIE.dll (DealPly)
BHO-x32: HomeTab - {a25e7121-3dd8-41b3-855b-756c5bc45449} - C:\Users\Michael\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech Ltd.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll (Delta-search.com)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaTlbr.dll (Delta-search.com)
Toolbar: HKLM-x32 - HomeTab - {a25e7121-3dd8-41b3-855b-756c5bc45449} - C:\Users\Michael\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech Ltd.)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\bho\1009\TmIEPlg.dll No File
Handler-x32: mso-offdap - No CLSID Value -
Handler-x32: mso-offdap11 - No CLSID Value -
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\bho\1009\TmIEPlg32.dll No File
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default
FF NewTab: about:home
FF DefaultSearchEngine: Web Search
FF SearchEngineOrder.1: Web Search
FF SearchEngineOrder.user_pref("browser.search.order.1S", "");: user_pref("browser.search.order.1S", "");
FF SelectedSearchEngine: Web Search
FF Homepage: about:home
FF Keyword.URL: hxxp://search.certified-toolbar.com?si=66920&tid=6787&ver=4.4&ts=1378936800000.000008&tguid=66920-6787-1378980517734-63BAC00F9CFC0F97E563FF0B2918C0D2&st=chrome&q=
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @java.com/DTPlugin,version=1.6.0_45 - C:\windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.dpliveupdate.com/DealPlyLive Update;version=3 - C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF Plugin-x32: @tools.dpliveupdate.com/DealPlyLive Update;version=9 - C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\holasearch.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\{4D88EACC-F00D-4B2E-8245-4896EF7DB0A9}.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\{C37690AF-0FE3-47A1-84B2-77930E5D4008}.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\searchplugins\{EB5D0E4F-C13B-4D89-8BB1-180FB181CEFB}.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\glarysearch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FoxyDeal - C:\Users\Michael\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{F58A62EB-38DC-43C4-A539-DC52E135208D}
FF Extension: No Name - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\c17236e8-fd66-44bc-aeef-1e00981cbb64@0a4ee0fe-5356-4fd3-b37c-5cd5671a315c.com
FF Extension: pricealarm - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\EFGLQA@78ETGYN-0W7FN789T87.COM
FF Extension: GMX MailCheck - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\toolbar@gmx.net
FF Extension: HomeTab - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\{ad7ef860-f366-4be1-8d12-4363b9356947}
FF Extension: DownloadHelper - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: FoxyDeal - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D}
FF Extension: adblockpopups - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\adblockpopups@jessehakanen.net.xpi
FF Extension: toolbar - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\toolbar@gmx.net.xpi
FF Extension: No Name - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\256e0fa9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\bho\1009\FirefoxExtension
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR Extension: (DownloadnSave) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\abdicchhekpnlefkolkokcdmlhnhkkdf\1.0_0
CHR Extension: () - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmlgoencnlndpglbocajlimaikjohmab\background.html
CHR Extension: (avast! Online Security) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.7_0
CHR Extension: (Hola Toolbar) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfikdpojhgckaejifppccjeedkjcndpp\1.0_0
CHR Extension: (Plus-HD-3.8) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofjgnhihlklpobkaloamkankaaoclfjh\1.23.19_0
CHR HKLM-x32\...\Chrome\Extension: [abdicchhekpnlefkolkokcdmlhnhkkdf] - C:\ProgramData\DownloadnSave\abdicchhekpnlefkolkokcdmlhnhkkdf.crx
CHR HKLM-x32\...\Chrome\Extension: [ejnmnhkgiphcaeefbaooconkceehicfi] - C:\Program Files (x86)\DealPly\DealPly.crx
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Michael\AppData\Roaming\BabSolution\CR\Delta.crx
CHR HKLM-x32\...\Chrome\Extension: [hfikdpojhgckaejifppccjeedkjcndpp] - C:\Users\Michael\AppData\Roaming\BabSolution\CR\hola.crx
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [137960 2013-08-30] (AVAST Software)
S4 BrowserDefendert; C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe [2838480 2013-08-13] ()
S2 dealplylive; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-08-22] (DealPly Technologies Ltd)
S3 dealplylivem; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-08-22] (DealPly Technologies Ltd)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-07-28] ()
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R1 aswFW; C:\Windows\System32\Drivers\aswFW.sys [131232 2013-08-30] (AVAST Software)
R0 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12368 2013-03-13] (ALWIL Software)
R0 aswNdis2; C:\Windows\System32\Drivers\aswNdis2.sys [270824 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
S3 FsUsbExDisk; C:\windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
S3 FsUsbExDisk; C:\windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
S2 itamem; C:\Windows\SysWow64\DRIVERS\itamem.sys [6656 2012-12-12] (Acculogic Inc)
R3 ST_ACCEL; C:\Windows\System32\DRIVERS\ST_ACCEL.sys [67184 2012-05-21] (STMicroelectronics)
S3 dcdbas; system32\DRIVERS\dcdbas64.sys [x]
S2 itamem; system32\DRIVERS\itamem.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-16 21:12 - 2013-09-16 21:12 - 00000000 ____D C:\FRST
2013-09-16 21:02 - 2013-09-16 21:02 - 01951262 _____ (Farbar) C:\Users\Michael\Downloads\FRST64.exe
2013-09-16 20:26 - 2013-09-16 20:26 - 05192704 _____ (Geza Kovacs) C:\Users\Michael\Downloads\unetbootin-windows-585.exe
2013-09-16 13:59 - 2013-09-16 13:59 - 00000991 _____ C:\Users\Public\Desktop\ISO to USB.lnk
2013-09-16 13:59 - 2013-09-16 13:59 - 00000000 ____D C:\Program Files (x86)\ISO to USB
2013-09-16 13:57 - 2013-09-16 13:58 - 01504620 _____ (isotousb.com ) C:\Users\Michael\Downloads\isotousb_setup.exe
2013-09-16 11:23 - 2013-09-16 12:14 - 339253248 _____ C:\Users\Michael\Downloads\kav_rescue_10(1).iso
2013-09-13 10:57 - 2013-09-13 10:57 - 00000084 _____ C:\Users\Michael\Desktop\meldung_12092013.txt
2013-09-13 09:48 - 2013-09-13 09:49 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Michael\Downloads\malwarebytes-anti-malware_20730.exe
2013-09-13 08:17 - 2013-09-13 08:17 - 00550112 _____ C:\Users\Michael\Downloads\16102012124528_C63-002-095_REV-C.dxf
2013-09-12 21:38 - 2013-07-31 16:17 - 17833472 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-09-12 21:38 - 2013-07-31 15:42 - 10926080 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-09-12 21:38 - 2013-07-31 15:29 - 02312704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-09-12 21:38 - 2013-07-31 15:20 - 01346560 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-09-12 21:38 - 2013-07-31 15:19 - 01392128 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-09-12 21:38 - 2013-07-31 15:18 - 01494528 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2013-09-12 21:38 - 2013-07-31 15:17 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-09-12 21:38 - 2013-07-31 15:16 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-09-12 21:38 - 2013-07-31 15:14 - 00173056 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2013-09-12 21:38 - 2013-07-31 15:13 - 00816640 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-09-12 21:38 - 2013-07-31 15:13 - 00599040 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-09-12 21:38 - 2013-07-31 15:11 - 02147840 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-09-12 21:38 - 2013-07-31 15:11 - 00729088 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-09-12 21:38 - 2013-07-31 15:09 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-09-12 21:38 - 2013-07-31 15:08 - 02382848 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-09-12 21:38 - 2013-07-31 15:05 - 00248320 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-09-12 21:38 - 2013-07-31 12:30 - 12335104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-09-12 21:38 - 2013-07-31 12:05 - 09738752 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-09-12 21:38 - 2013-07-31 12:00 - 01800704 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-09-12 21:38 - 2013-07-31 11:53 - 01104896 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-09-12 21:38 - 2013-07-31 11:52 - 01427968 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2013-09-12 21:38 - 2013-07-31 11:52 - 01129472 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-09-12 21:38 - 2013-07-31 11:51 - 00231936 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-09-12 21:38 - 2013-07-31 11:49 - 00065024 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-09-12 21:38 - 2013-07-31 11:48 - 00717824 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-09-12 21:38 - 2013-07-31 11:48 - 00420864 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-09-12 21:38 - 2013-07-31 11:48 - 00142848 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-09-12 21:38 - 2013-07-31 11:47 - 00607744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-09-12 21:38 - 2013-07-31 11:46 - 01796096 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-09-12 21:38 - 2013-07-31 11:45 - 02382848 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-09-12 21:38 - 2013-07-31 11:45 - 00073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-09-12 21:38 - 2013-07-31 11:42 - 00176640 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-09-12 14:42 - 2013-09-12 14:42 - 00000000 ____D C:\Users\Michael\Documents\Neuer Ordner
2013-09-12 14:35 - 2013-09-12 15:02 - 00000000 ____D C:\Users\Michael\AppData\Roaming\DXLog.net
2013-09-12 14:34 - 2013-09-12 14:35 - 00000000 ____D C:\Users\Michael\Downloads\DXLOG
2013-09-12 14:34 - 2013-09-12 14:34 - 00000987 _____ C:\Users\Public\Desktop\DXLog.net.lnk
2013-09-12 14:34 - 2013-09-12 14:34 - 00000000 ____D C:\Program Files (x86)\DXLog.net
2013-09-12 13:44 - 2013-09-16 20:45 - 00001908 _____ C:\windows\Tasks\Plus-HD-3.8-chromeinstaller.job
2013-09-12 13:44 - 2013-09-16 20:45 - 00001832 _____ C:\windows\Tasks\Plus-HD-3.8-firefoxinstaller.job
2013-09-12 13:44 - 2013-09-16 20:45 - 00001294 _____ C:\windows\Tasks\Plus-HD-3.8-updater.job
2013-09-12 13:44 - 2013-09-16 20:45 - 00001200 _____ C:\windows\Tasks\Plus-HD-3.8-codedownloader.job
2013-09-12 13:44 - 2013-09-16 20:45 - 00001098 _____ C:\windows\Tasks\Plus-HD-3.8-enabler.job
2013-09-12 13:44 - 2013-09-12 13:44 - 00004324 _____ C:\windows\System32\Tasks\Plus-HD-3.8-updater
2013-09-12 13:44 - 2013-09-12 13:44 - 00004230 _____ C:\windows\System32\Tasks\Plus-HD-3.8-codedownloader
2013-09-12 13:44 - 2013-09-12 13:44 - 00004128 _____ C:\windows\System32\Tasks\Plus-HD-3.8-enabler
2013-09-12 13:44 - 2013-09-12 13:44 - 00000000 ____D C:\Program Files (x86)\Plus-HD-3.8
2013-09-12 13:43 - 2013-09-12 13:43 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Windows Net Data
2013-09-12 13:43 - 2013-09-12 13:43 - 00000000 ____D C:\Program Files (x86)\FoxyDeal
2013-09-12 12:11 - 2013-09-12 12:11 - 00000000 ____D C:\SoloApp
2013-09-12 12:10 - 2013-09-12 16:22 - 00000000 ____D C:\Users\Michael\AppData\Roaming\HomeTab
2013-09-12 12:10 - 2013-09-12 16:22 - 00000000 ____D C:\Program Files (x86)\HomeTab
2013-09-12 12:10 - 2013-09-12 12:10 - 00000000 ____D C:\windows\System32\Tasks\ProtectedSearch
2013-09-12 12:10 - 2013-09-12 12:10 - 00000000 ____D C:\windows\System32\Tasks\Browser Updater
2013-09-12 12:10 - 2013-09-12 12:10 - 00000000 ____D C:\Users\Michael\AppData\Roaming\SimplyTech
2013-09-12 12:10 - 2013-08-13 08:38 - 00032328 _____ C:\windows\Launcher.exe
2013-09-12 12:06 - 2013-09-12 13:52 - 00000000 ____D C:\Users\Michael\AppData\Local\DownloadGuide
2013-09-12 09:04 - 2013-09-12 09:24 - 45936617 _____ C:\Users\Michael\Downloads\bitdefender-rescue-cd.iso
2013-09-12 08:52 - 2013-09-12 09:24 - 107414879 _____ C:\Users\Michael\Downloads\kis14.0.0.4651de-de.exe
2013-09-12 08:16 - 2013-09-12 08:16 - 00478560 _____ C:\Users\Michael\Downloads\kav-rescue-10-Downloader.exe
2013-09-12 08:10 - 2013-09-12 08:44 - 265306112 _____ C:\Users\Michael\Downloads\drweb-livecd-602.iso
2013-09-12 08:03 - 2013-09-12 08:14 - 112001024 _____ C:\Users\Michael\Downloads\avg_arl_cdi_all_120_130801a6481.iso
2013-09-12 07:55 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-09-12 07:55 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2013-09-12 07:55 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2013-09-12 07:55 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2013-09-12 07:55 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2013-09-12 07:55 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2013-09-12 07:55 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2013-09-12 07:55 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2013-09-12 07:55 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2013-09-12 07:55 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2013-09-12 07:55 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2013-09-12 07:55 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2013-09-12 07:55 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2013-09-12 07:55 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2013-09-12 07:55 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2013-09-12 07:55 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2013-09-12 07:55 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2013-09-12 07:55 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2013-09-12 07:55 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2013-09-12 07:55 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2013-09-12 07:55 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2013-09-12 07:55 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-12 07:55 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-12 07:55 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2013-09-12 07:55 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2013-09-12 07:55 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2013-09-12 07:55 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2013-09-11 20:44 - 2013-09-11 20:44 - 04561880 _____ (G Data Software AG ) C:\Users\Michael\Downloads\G_Data_LNK-Checker.setup.exe
2013-09-11 16:42 - 2013-09-11 16:42 - 00007168 _____ C:\Users\Michael\Documents\Auswertung_Conveyor_Verbiegung.xls
2013-09-11 15:14 - 2013-09-11 15:44 - 226580480 _____ C:\Users\Michael\Downloads\GDBootMedium_2014.iso
2013-09-06 08:14 - 2013-09-06 08:23 - 19217434 _____ C:\Users\Michael\Downloads\ResDivCalc.exe
2013-09-04 08:03 - 2013-09-04 15:15 - 08157696 _____ C:\Users\Michael\Documents\Barcode_reading.xls
2013-09-03 16:04 - 2013-09-03 16:04 - 00000074 _____ C:\Users\Michael\Desktop\MikeHeath.txt
2013-09-02 16:15 - 2013-09-06 13:22 - 00000000 ____D C:\Barcode_analyse
2013-08-29 12:54 - 2013-08-29 12:55 - 00000000 ____D C:\Zeichnungen_Closed_Loop_Shuttle
2013-08-29 12:53 - 2013-08-29 12:54 - 00000000 ____D C:\Zeichnung_BOSCH_Frame
2013-08-27 14:48 - 2013-08-27 14:49 - 00000000 ____D C:\Zeichnung_APM800_Info27082013
2013-08-24 09:08 - 2013-08-24 09:08 - 00004944 _____ C:\Users\Michael\Documents\wlanzugang_MM.txt
2013-08-23 21:00 - 2013-08-23 21:02 - 00266288 _____ C:\windows\Minidump\082313-40669-01.dmp
2013-08-22 21:49 - 2013-08-22 22:12 - 00015316 _____ C:\Users\Michael\Downloads\20130822-1212016056-umsatz.csv
2013-08-22 15:48 - 2013-08-22 15:48 - 00000000 ____D C:\Kernlochdurchmesser_Info
2013-08-22 11:17 - 2013-08-22 11:17 - 00001732 _____ C:\Users\Michael\Desktop\WirelessNetView.exe - Verknüpfung.lnk
2013-08-22 11:10 - 2013-08-22 11:17 - 00000000 ____D C:\Users\Michael\Downloads\wirelessnetview
2013-08-22 11:08 - 2013-08-22 11:08 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
2013-08-22 11:08 - 2013-08-22 11:08 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Delta
2013-08-22 11:08 - 2013-08-22 11:08 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-08-22 11:08 - 2013-08-22 11:08 - 00000000 ____D C:\Program Files (x86)\Delta
2013-08-22 11:07 - 2013-09-16 21:12 - 00000908 _____ C:\windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job
2013-08-22 11:07 - 2013-09-16 21:07 - 00000298 _____ C:\windows\Tasks\Dealply.job
2013-08-22 11:07 - 2013-09-16 20:45 - 00000904 _____ C:\windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job
2013-08-22 11:07 - 2013-08-22 11:07 - 00003904 _____ C:\windows\System32\Tasks\DealPlyLiveUpdateTaskMachineUA
2013-08-22 11:07 - 2013-08-22 11:07 - 00003652 _____ C:\windows\System32\Tasks\DealPlyLiveUpdateTaskMachineCore
2013-08-22 11:07 - 2013-08-22 11:07 - 00003370 _____ C:\windows\System32\Tasks\DealPlyUpdate
2013-08-22 11:07 - 2013-08-22 11:07 - 00003246 _____ C:\windows\System32\Tasks\Dealply
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Dealply
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Babylon
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\BabSolution
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Local\DealPlyLive
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\ProgramData\DealPlyLive
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\ProgramData\Babylon
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Program Files (x86)\DealPlyLive
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Program Files (x86)\DealPly
2013-08-22 11:07 - 2013-08-22 11:01 - 00053088 _____ C:\Users\Michael\Downloads\wirelessnetview.zip
2013-08-22 10:59 - 2013-08-22 10:59 - 00673560 _____ C:\Users\Michael\Downloads\wirelessnetview.exe
2013-08-21 09:34 - 2013-08-21 09:34 - 00000000 ____D C:\usbtest
2013-08-20 17:19 - 2013-08-20 17:19 - 00000479 _____ C:\Users\Michael\Documents\schleuse_info.txt
2013-08-19 10:45 - 2013-08-19 10:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-19 08:13 - 2013-08-19 08:13 - 00000000 ____D C:\Users\Michael\Desktop\stückliste
2013-08-19 07:47 - 2013-08-19 07:47 - 00000000 ____D C:\Users\Michael\Documents\CyberLink
2013-08-19 07:47 - 2013-08-19 07:47 - 00000000 ____D C:\Users\Michael\AppData\Roaming\CyberLink
2013-08-19 07:47 - 2013-08-19 07:47 - 00000000 ____D C:\Users\Michael\AppData\Local\Cyberlink
2013-08-19 07:47 - 2013-08-19 07:47 - 00000000 ____D C:\ProgramData\CyberLink
2013-08-19 07:44 - 2013-08-19 07:44 - 00001104 _____ C:\Users\Public\Desktop\VLC media player.lnk
==================== One Month Modified Files and Folders =======
2013-09-16 21:12 - 2013-09-16 21:12 - 00000000 ____D C:\FRST
2013-09-16 21:12 - 2013-08-22 11:07 - 00000908 _____ C:\windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job
2013-09-16 21:07 - 2013-08-22 11:07 - 00000298 _____ C:\windows\Tasks\Dealply.job
2013-09-16 21:03 - 2011-10-20 08:39 - 01171521 _____ C:\windows\WindowsUpdate.log
2013-09-16 21:03 - 2009-07-14 05:20 - 00000000 ____D C:\windows\tracing
2013-09-16 21:02 - 2013-09-16 21:02 - 01951262 _____ (Farbar) C:\Users\Michael\Downloads\FRST64.exe
2013-09-16 21:00 - 2012-09-06 18:07 - 00000000 ____D C:\PDF_DRUCK
2013-09-16 20:53 - 2009-07-14 06:45 - 00020944 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-16 20:53 - 2009-07-14 06:45 - 00020944 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-16 20:51 - 2011-10-20 11:32 - 00710312 _____ C:\windows\system32\perfh007.dat
2013-09-16 20:51 - 2011-10-20 11:32 - 00152566 _____ C:\windows\system32\perfc007.dat
2013-09-16 20:51 - 2009-07-14 07:13 - 01643868 _____ C:\windows\system32\PerfStringBackup.INI
2013-09-16 20:50 - 2012-04-12 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Skype
2013-09-16 20:46 - 2012-06-13 10:10 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-09-16 20:46 - 2011-10-20 09:39 - 00000000 ____D C:\ProgramData\Sonic
2013-09-16 20:45 - 2013-09-12 13:44 - 00001908 _____ C:\windows\Tasks\Plus-HD-3.8-chromeinstaller.job
2013-09-16 20:45 - 2013-09-12 13:44 - 00001832 _____ C:\windows\Tasks\Plus-HD-3.8-firefoxinstaller.job
2013-09-16 20:45 - 2013-09-12 13:44 - 00001294 _____ C:\windows\Tasks\Plus-HD-3.8-updater.job
2013-09-16 20:45 - 2013-09-12 13:44 - 00001200 _____ C:\windows\Tasks\Plus-HD-3.8-codedownloader.job
2013-09-16 20:45 - 2013-09-12 13:44 - 00001098 _____ C:\windows\Tasks\Plus-HD-3.8-enabler.job
2013-09-16 20:45 - 2013-08-22 11:07 - 00000904 _____ C:\windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job
2013-09-16 20:45 - 2013-02-12 12:49 - 00065536 _____ C:\windows\system32\Ikeext.etl
2013-09-16 20:45 - 2013-01-22 11:11 - 00001108 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-16 20:45 - 2013-01-22 10:43 - 00000392 ____H C:\windows\Tasks\{C79FE135-29B4-424E-9B8B-B9E2DEF261CE}.job
2013-09-16 20:44 - 2010-11-21 05:47 - 00237124 _____ C:\windows\PFRO.log
2013-09-16 20:44 - 2009-07-14 07:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-09-16 20:44 - 2009-07-14 06:51 - 00323560 _____ C:\windows\setupact.log
2013-09-16 20:33 - 2013-01-22 11:11 - 00001112 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-16 20:26 - 2013-09-16 20:26 - 05192704 _____ (Geza Kovacs) C:\Users\Michael\Downloads\unetbootin-windows-585.exe
2013-09-16 13:59 - 2013-09-16 13:59 - 00000991 _____ C:\Users\Public\Desktop\ISO to USB.lnk
2013-09-16 13:59 - 2013-09-16 13:59 - 00000000 ____D C:\Program Files (x86)\ISO to USB
2013-09-16 13:58 - 2013-09-16 13:57 - 01504620 _____ (isotousb.com ) C:\Users\Michael\Downloads\isotousb_setup.exe
2013-09-16 12:14 - 2013-09-16 11:23 - 339253248 _____ C:\Users\Michael\Downloads\kav_rescue_10(1).iso
2013-09-16 10:18 - 2012-05-09 09:28 - 00000000 ____D C:\privat
2013-09-13 12:45 - 2012-06-13 10:10 - 00003822 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-09-13 12:45 - 2012-04-23 07:52 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-09-13 12:45 - 2012-04-23 07:52 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-13 11:22 - 2009-07-14 05:20 - 00000000 ____D C:\windows\rescache
2013-09-13 10:57 - 2013-09-13 10:57 - 00000084 _____ C:\Users\Michael\Desktop\meldung_12092013.txt
2013-09-13 10:01 - 2013-05-22 12:09 - 00003440 _____ C:\windows\System32\Tasks\PCDEventLauncherTask
2013-09-13 09:49 - 2013-09-13 09:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Michael\Downloads\malwarebytes-anti-malware_20730.exe
2013-09-13 08:17 - 2013-09-13 08:17 - 00550112 _____ C:\Users\Michael\Downloads\16102012124528_C63-002-095_REV-C.dxf
2013-09-13 07:52 - 2013-05-27 10:48 - 00003924 _____ C:\windows\System32\Tasks\avast! Emergency Update
2013-09-13 07:52 - 2012-09-26 10:14 - 00000000 _____ C:\windows\SysWOW64\config.nt
2013-09-13 07:44 - 2012-04-05 09:00 - 00000000 ___RD C:\Users\Michael\Virtual Machines
2013-09-13 07:44 - 2012-04-05 09:00 - 00000000 ___RD C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-13 07:44 - 2012-04-05 09:00 - 00000000 ___RD C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-13 07:42 - 2009-07-14 06:45 - 00354368 _____ C:\windows\system32\FNTCACHE.DAT
2013-09-12 21:43 - 2013-07-27 03:01 - 00000000 ____D C:\windows\system32\MRT
2013-09-12 21:43 - 2012-05-11 11:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-09-12 21:43 - 2011-10-20 08:57 - 01675166 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2013-09-12 21:39 - 2012-04-16 08:49 - 79143768 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-09-12 16:22 - 2013-09-12 12:10 - 00000000 ____D C:\Users\Michael\AppData\Roaming\HomeTab
2013-09-12 16:22 - 2013-09-12 12:10 - 00000000 ____D C:\Program Files (x86)\HomeTab
2013-09-12 15:02 - 2013-09-12 14:35 - 00000000 ____D C:\Users\Michael\AppData\Roaming\DXLog.net
2013-09-12 14:42 - 2013-09-12 14:42 - 00000000 ____D C:\Users\Michael\Documents\Neuer Ordner
2013-09-12 14:42 - 2012-07-25 08:44 - 00000000 ____D C:\Privat_Afu
2013-09-12 14:35 - 2013-09-12 14:34 - 00000000 ____D C:\Users\Michael\Downloads\DXLOG
2013-09-12 14:34 - 2013-09-12 14:34 - 00000987 _____ C:\Users\Public\Desktop\DXLog.net.lnk
2013-09-12 14:34 - 2013-09-12 14:34 - 00000000 ____D C:\Program Files (x86)\DXLog.net
2013-09-12 14:29 - 2011-10-20 09:38 - 00000000 ____D C:\ProgramData\Roxio
2013-09-12 13:52 - 2013-09-12 12:06 - 00000000 ____D C:\Users\Michael\AppData\Local\DownloadGuide
2013-09-12 13:44 - 2013-09-12 13:44 - 00004324 _____ C:\windows\System32\Tasks\Plus-HD-3.8-updater
2013-09-12 13:44 - 2013-09-12 13:44 - 00004230 _____ C:\windows\System32\Tasks\Plus-HD-3.8-codedownloader
2013-09-12 13:44 - 2013-09-12 13:44 - 00004128 _____ C:\windows\System32\Tasks\Plus-HD-3.8-enabler
2013-09-12 13:44 - 2013-09-12 13:44 - 00000000 ____D C:\Program Files (x86)\Plus-HD-3.8
2013-09-12 13:43 - 2013-09-12 13:43 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Windows Net Data
2013-09-12 13:43 - 2013-09-12 13:43 - 00000000 ____D C:\Program Files (x86)\FoxyDeal
2013-09-12 12:11 - 2013-09-12 12:11 - 00000000 ____D C:\SoloApp
2013-09-12 12:10 - 2013-09-12 12:10 - 00000000 ____D C:\windows\System32\Tasks\ProtectedSearch
2013-09-12 12:10 - 2013-09-12 12:10 - 00000000 ____D C:\windows\System32\Tasks\Browser Updater
2013-09-12 12:10 - 2013-09-12 12:10 - 00000000 ____D C:\Users\Michael\AppData\Roaming\SimplyTech
2013-09-12 12:09 - 2013-04-23 14:15 - 00003402 _____ C:\windows\System32\Tasks\EPUpdater
2013-09-12 12:01 - 2012-07-24 15:12 - 00000000 ____D C:\Zeichnungen_BPM710
2013-09-12 10:31 - 2012-05-02 16:15 - 00000000 ____D C:\Stator_Einbau_G&T
2013-09-12 09:24 - 2013-09-12 09:04 - 45936617 _____ C:\Users\Michael\Downloads\bitdefender-rescue-cd.iso
2013-09-12 09:24 - 2013-09-12 08:52 - 107414879 _____ C:\Users\Michael\Downloads\kis14.0.0.4651de-de.exe
2013-09-12 08:44 - 2013-09-12 08:10 - 265306112 _____ C:\Users\Michael\Downloads\drweb-livecd-602.iso
2013-09-12 08:16 - 2013-09-12 08:16 - 00478560 _____ C:\Users\Michael\Downloads\kav-rescue-10-Downloader.exe
2013-09-12 08:14 - 2013-09-12 08:03 - 112001024 _____ C:\Users\Michael\Downloads\avg_arl_cdi_all_120_130801a6481.iso
2013-09-12 08:04 - 2013-01-11 13:30 - 00002057 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk
2013-09-11 20:44 - 2013-09-11 20:44 - 04561880 _____ (G Data Software AG ) C:\Users\Michael\Downloads\G_Data_LNK-Checker.setup.exe
2013-09-11 16:42 - 2013-09-11 16:42 - 00007168 _____ C:\Users\Michael\Documents\Auswertung_Conveyor_Verbiegung.xls
2013-09-11 15:44 - 2013-09-11 15:14 - 226580480 _____ C:\Users\Michael\Downloads\GDBootMedium_2014.iso
2013-09-11 14:10 - 2013-04-17 12:16 - 00000000 ____D C:\Zeichnung_Rahme_G&T
2013-09-09 07:12 - 2013-06-05 09:39 - 00000000 ____D C:\Users\Michael\AppData\Local\Deployment
2013-09-06 13:22 - 2013-09-02 16:15 - 00000000 ____D C:\Barcode_analyse
2013-09-06 08:43 - 2009-07-14 05:20 - 00000000 ____D C:\windows\system32\NDF
2013-09-06 08:23 - 2013-09-06 08:14 - 19217434 _____ C:\Users\Michael\Downloads\ResDivCalc.exe
2013-09-05 13:59 - 2013-04-23 14:38 - 00000000 ____D C:\Users\Michael\AppData\Roaming\vlc
2013-09-05 08:37 - 2012-05-02 15:12 - 00000000 ____D C:\Ingun_Tip_Request
2013-09-04 15:16 - 2012-05-02 16:04 - 00000000 ____D C:\Service_CD_NEU_2007
2013-09-04 15:15 - 2013-09-04 08:03 - 08157696 _____ C:\Users\Michael\Documents\Barcode_reading.xls
2013-09-04 08:04 - 2012-05-02 14:56 - 00000000 ____D C:\Bode_on_shuttle
2013-09-03 16:04 - 2013-09-03 16:04 - 00000074 _____ C:\Users\Michael\Desktop\MikeHeath.txt
2013-09-03 15:34 - 2012-05-02 14:56 - 00000000 ____D C:\Zeichnungen_BPM700_Drawings_15092010
2013-08-30 13:28 - 2013-08-01 10:00 - 00000000 ____D C:\BOSCH_30072013_4
2013-08-30 09:56 - 2013-05-06 11:48 - 00000000 ____D C:\Zeichnung_Minifixture
2013-08-30 09:48 - 2013-05-27 11:00 - 00270824 _____ (AVAST Software) C:\windows\system32\Drivers\aswNdis2.sys
2013-08-30 09:48 - 2013-05-27 11:00 - 00131232 _____ (AVAST Software) C:\windows\system32\Drivers\aswFW.sys
2013-08-30 09:48 - 2013-05-27 11:00 - 00022600 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2013-08-30 09:48 - 2013-05-27 10:48 - 01030952 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2013-08-30 09:48 - 2013-05-27 10:48 - 00378944 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2013-08-30 09:48 - 2013-05-27 10:48 - 00204880 _____ C:\windows\system32\Drivers\aswVmm.sys
2013-08-30 09:48 - 2013-05-27 10:48 - 00080816 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2013-08-30 09:48 - 2013-05-27 10:48 - 00072016 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2013-08-30 09:48 - 2013-05-27 10:48 - 00065336 _____ C:\windows\system32\Drivers\aswRvrt.sys
2013-08-30 09:48 - 2013-05-27 10:48 - 00064288 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2013-08-30 09:48 - 2013-05-27 10:48 - 00033400 _____ (AVAST Software) C:\windows\system32\Drivers\aswFsBlk.sys
2013-08-30 09:47 - 2013-05-27 10:47 - 00041664 _____ (AVAST Software) C:\windows\avastSS.scr
2013-08-30 09:47 - 2013-02-12 13:08 - 00287840 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2013-08-29 12:55 - 2013-08-29 12:54 - 00000000 ____D C:\Zeichnungen_Closed_Loop_Shuttle
2013-08-29 12:54 - 2013-08-29 12:53 - 00000000 ____D C:\Zeichnung_BOSCH_Frame
2013-08-29 08:56 - 2012-04-05 15:00 - 00000000 ____D C:\ProgramData\PCDr
2013-08-28 14:35 - 2012-05-02 15:58 - 00000000 ____D C:\OpenOffice3_0_DE
2013-08-27 14:49 - 2013-08-27 14:48 - 00000000 ____D C:\Zeichnung_APM800_Info27082013
2013-08-24 09:08 - 2013-08-24 09:08 - 00004944 _____ C:\Users\Michael\Documents\wlanzugang_MM.txt
2013-08-23 21:02 - 2013-08-23 21:00 - 00266288 _____ C:\windows\Minidump\082313-40669-01.dmp
2013-08-23 21:00 - 2013-01-10 16:18 - 624589370 _____ C:\windows\MEMORY.DMP
2013-08-23 21:00 - 2013-01-10 16:18 - 00000000 ____D C:\windows\Minidump
2013-08-23 11:32 - 2012-05-02 15:14 - 00000000 ____D C:\Kunden_Visit_Inbetriebnahme
2013-08-22 22:15 - 2012-05-11 11:26 - 00000000 ____D C:\Users\Michael\AppData\Roaming\SoftGrid Client
2013-08-22 22:12 - 2013-08-22 21:49 - 00015316 _____ C:\Users\Michael\Downloads\20130822-1212016056-umsatz.csv
2013-08-22 15:48 - 2013-08-22 15:48 - 00000000 ____D C:\Kernlochdurchmesser_Info
2013-08-22 11:17 - 2013-08-22 11:17 - 00001732 _____ C:\Users\Michael\Desktop\WirelessNetView.exe - Verknüpfung.lnk
2013-08-22 11:17 - 2013-08-22 11:10 - 00000000 ____D C:\Users\Michael\Downloads\wirelessnetview
2013-08-22 11:08 - 2013-08-22 11:08 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
2013-08-22 11:08 - 2013-08-22 11:08 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Delta
2013-08-22 11:08 - 2013-08-22 11:08 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-08-22 11:08 - 2013-08-22 11:08 - 00000000 ____D C:\Program Files (x86)\Delta
2013-08-22 11:07 - 2013-08-22 11:07 - 00003904 _____ C:\windows\System32\Tasks\DealPlyLiveUpdateTaskMachineUA
2013-08-22 11:07 - 2013-08-22 11:07 - 00003652 _____ C:\windows\System32\Tasks\DealPlyLiveUpdateTaskMachineCore
2013-08-22 11:07 - 2013-08-22 11:07 - 00003370 _____ C:\windows\System32\Tasks\DealPlyUpdate
2013-08-22 11:07 - 2013-08-22 11:07 - 00003246 _____ C:\windows\System32\Tasks\Dealply
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Dealply
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Babylon
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Roaming\BabSolution
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Users\Michael\AppData\Local\DealPlyLive
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\ProgramData\DealPlyLive
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\ProgramData\Babylon
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Program Files (x86)\DealPlyLive
2013-08-22 11:07 - 2013-08-22 11:07 - 00000000 ____D C:\Program Files (x86)\DealPly
2013-08-22 11:01 - 2013-08-22 11:07 - 00053088 _____ C:\Users\Michael\Downloads\wirelessnetview.zip
2013-08-22 10:59 - 2013-08-22 10:59 - 00673560 _____ C:\Users\Michael\Downloads\wirelessnetview.exe
2013-08-21 09:34 - 2013-08-21 09:34 - 00000000 ____D C:\usbtest
2013-08-20 17:19 - 2013-08-20 17:19 - 00000479 _____ C:\Users\Michael\Documents\schleuse_info.txt
2013-08-20 07:45 - 2012-09-28 12:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-19 10:46 - 2013-08-19 10:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-19 09:43 - 2013-07-15 11:56 - 00000000 ____D C:\SMEMA
2013-08-19 08:13 - 2013-08-19 08:13 - 00000000 ____D C:\Users\Michael\Desktop\stückliste
2013-08-19 07:47 - 2013-08-19 07:47 - 00000000 ____D C:\Users\Michael\Documents\CyberLink
2013-08-19 07:47 - 2013-08-19 07:47 - 00000000 ____D C:\Users\Michael\AppData\Roaming\CyberLink
2013-08-19 07:47 - 2013-08-19 07:47 - 00000000 ____D C:\Users\Michael\AppData\Local\Cyberlink
2013-08-19 07:47 - 2013-08-19 07:47 - 00000000 ____D C:\ProgramData\CyberLink
2013-08-19 07:44 - 2013-08-19 07:44 - 00001104 _____ C:\Users\Public\Desktop\VLC media player.lnk
Files to move or delete:
====================
C:\Windows\Tasks\{C79FE135-29B4-424E-9B8B-B9E2DEF261CE}.job
Some content of TEMP:
====================
C:\Users\Michael\AppData\Local\Temp\0cez2puq.dll
C:\Users\Michael\AppData\Local\Temp\4wqh2tji.dll
C:\Users\Michael\AppData\Local\Temp\apptorun.exe
C:\Users\Michael\AppData\Local\Temp\DefaultAssets.exe
C:\Users\Michael\AppData\Local\Temp\DefaultOfflineContent.exe
C:\Users\Michael\AppData\Local\Temp\ezLooker-S-Setup_Suite1.exe
C:\Users\Michael\AppData\Local\Temp\ffe3syat.dll
C:\Users\Michael\AppData\Local\Temp\firefoxjre_exe.exe
C:\Users\Michael\AppData\Local\Temp\fsxabeuu.dll
C:\Users\Michael\AppData\Local\Temp\hbrzqpsp.dll
C:\Users\Michael\AppData\Local\Temp\i4jdel0.exe
C:\Users\Michael\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Michael\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Michael\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
C:\Users\Michael\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Michael\AppData\Local\Temp\m4nomh42.dll
C:\Users\Michael\AppData\Local\Temp\MSN66F2.exe
C:\Users\Michael\AppData\Local\Temp\mwphhpyo.dll
C:\Users\Michael\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\Michael\AppData\Local\Temp\o0h3trba.dll
C:\Users\Michael\AppData\Local\Temp\PCCU_Installer.exe
C:\Users\Michael\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Michael\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Michael\AppData\Local\Temp\sfareca00002.dll
C:\Users\Michael\AppData\Local\Temp\sfextra.dll
C:\Users\Michael\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Michael\AppData\Local\Temp\tbu7B85.exe
C:\Users\Michael\AppData\Local\Temp\vlc-2.0.8-win32.exe
C:\Users\Michael\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Michael\AppData\Local\Temp\YontooSetup-S.exe
C:\Users\Michael\AppData\Local\Temp\yvlygdzy.dll
C:\Users\Michael\AppData\Local\Temp\_PC_DRIVERS_HQAssets.exe
C:\Users\Michael\AppData\Local\Temp\{57864CB4-69D7-48BA-95E2-833C4A389F09}-24.0.1312.57_24.0.1312.56_chrome_updater.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-11 13:27
==================== End Of Log ============================
--- --- ---
]
Addition.txt
[/Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2013 02
Ran by Michael at 2013-09-16 21:13:54
Running from C:\Users\Michael\Downloads
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
AccuTrax (x32 Version: 1.82.0010)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.174)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168)
Adobe Reader X (10.1.8) MUI (x32 Version: 10.1.8)
Advanced Audio FX Engine (x32 Version: 1.12.05)
Akamai NetSession Interface (HKCU)
AMD APP SDK Runtime (Version: 2.4.595.1)
ATI AVIVO64 Codecs (Version: 11.6.0.10511)
ATI Catalyst Install Manager (Version: 3.0.820.0)
avast! Internet Security (x32 Version: 8.0.1497.0)
Barcode Forge 4.3 (x32)
BrowserDefender (x32)
Cadence Allegro Free Physical Viewers 16.6 (x32 Version: 16.6.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2011.0511.2322.40127)
Catalyst Control Center InstallProxy (x32 Version: 2011.0511.2322.40127)
Catalyst Control Center Localization All (x32 Version: 2011.0511.2322.40127)
Catalyst Control Center Profiles Mobile (x32 Version: 2011.0511.2322.40127)
CCC Help Chinese Standard (x32 Version: 2011.0511.2321.40127)
CCC Help Chinese Traditional (x32 Version: 2011.0511.2321.40127)
CCC Help Danish (x32 Version: 2011.0511.2321.40127)
CCC Help Dutch (x32 Version: 2011.0511.2321.40127)
CCC Help English (x32 Version: 2011.0511.2321.40127)
CCC Help Finnish (x32 Version: 2011.0511.2321.40127)
CCC Help French (x32 Version: 2011.0511.2321.40127)
CCC Help German (x32 Version: 2011.0511.2321.40127)
CCC Help Italian (x32 Version: 2011.0511.2321.40127)
CCC Help Japanese (x32 Version: 2011.0511.2321.40127)
CCC Help Korean (x32 Version: 2011.0511.2321.40127)
CCC Help Norwegian (x32 Version: 2011.0511.2321.40127)
CCC Help Portuguese (x32 Version: 2011.0511.2321.40127)
CCC Help Russian (x32 Version: 2011.0511.2321.40127)
CCC Help Spanish (x32 Version: 2011.0511.2321.40127)
CCC Help Swedish (x32 Version: 2011.0511.2321.40127)
ccc-utility64 (Version: 2011.0511.2322.40127)
Cisco WebEx Meetings (HKCU)
CwGet V2.26 (x32)
CyberLink PowerDVD 9.5 (x32 Version: 9.5.1.3225)
D3DX10 (x32 Version: 15.4.2368.0902)
Dealply (HKCU)
DealPly (remove only) (x32 Version: 4.8.7.3)
Dell Backup and Recovery Manager (Version: 1.3)
Dell DataSafe Online (x32 Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell System Detect (HKCU Version: 5.1.0.41)
Dell Touchpad (Version: 7.1209.101.204)
Dell Webcam Central (x32 Version: 2.00.44)
Delta Chrome Toolbar (x32)
Delta toolbar (x32 Version: 1.8.24.6)
DesignPro 5 (x32 Version: 5.5.708)
Digital Wireless Camera (x32 Version: 1.00.0000)
DirectX 9 Runtime (x32 Version: 1.00.0000)
DspHost (x32)
DXLog.net (x32 Version: 2.0)
ELECTRA 2.9.5 (x32)
FileZilla Client 3.7.0.2 (x32 Version: 3.7.0.2)
Filter Design 4.5 (x32 Version: 4.5)
FoxyDeal (x32 Version: 1.1.0)
Free DWG Viewer 7.1 (x32 Version: 7.1)
Glarysoft Toolbar (x32 Version: 1.2.0)
Glarysoft Toolbar 1.2 (x32 Version: 1.2)
Google Drive (x32 Version: 1.11.4865.2530)
Google Earth (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.153)
HomeTab 4.7 (x32 Version: 4.7)
IDT Audio (x32 Version: 1.0.6365.0)
Integrator (v5.4.3978) (x32 Version: 5.4.3978)
Integrator5.0 (x32 Version: 5.0.2194)
Integrator5.1.3195 (x32 Version: 5.1.3195)
Integrator5.1.3872 (x32 Version: 5.1.3872)
Integrator5.3.3263 (x32 Version: 5.3.3263)
Integrator5.3.3628 (x32 Version: 5.3.3628)
Integrator5.3.3888 (x32 Version: 5.3.3888)
Intel PROSet Wireless
Intel PROSet Wireless (x32)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Display Audio Driver (x32 Version: 6.14.00.3074)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1118)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (Version: 1.2.0.0587)
Intel(R) PROSet/Wireless WiFi-Software (Version: 14.2.0000)
Intel(R) Rapid Storage Technology (x32 Version: 10.1.0.1008)
Intel(R) WiDi (x32 Version: 2.1.35.0)
Intel(R) Wireless Display
IrfanView (remove only) (x32 Version: 4.36)
ISO to USB (x32)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Java(TM) 6 Update 35 (x32 Version: 6.0.350)
Java(TM) 6 Update 45 (64-bit) (Version: 6.0.450)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30320)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Access 2003 Runtime (x32 Version: 11.0.7969.0)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.4763.1000)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (x32 Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
Mozilla Thunderbird 17.0.8 (x86 de) (x32 Version: 17.0.8)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (x32 Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (x32 Version: 1.0.1.2)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
My Dell (Version: 3.3.6280.92)
MyFreeCodec (HKCU)
Nokia Connectivity Cable Driver (x32 Version: 7.1.101.0)
Nokia Suite (x32 Version: 3.7.22.0)
Notepad++ (x32 Version: 6.1.5)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)
PC Connectivity Solution (x32 Version: 12.0.76.0)
PDFCreator (x32 Version: 1.6.2)
pdfforge PDFArchitect 0.5.5.509 (Version: 0.5.5.509)
PhotoShowExpress (x32 Version: 2.0.063)
Plus-HD-3.8 (x32 Version: 1.27.153.11)
PowerXpressHybrid (x32 Version: 1.00.0000)
PX Profile Update (x32 Version: 1.00.1.)
Quickset64 (Version: 10.09.20)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek Ethernet Controller Driver (x32 Version: 7.31.1025.2010)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30126)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0)
Roxio Activation Module (x32 Version: 1.0)
Roxio BackOnTrack (x32 Version: 1.3.3)
Roxio Burn (x32 Version: 1.8)
Roxio Creator Starter (x32 Version: 1.0.439)
Roxio Creator Starter (x32 Version: 12.1.77.0)
Roxio Creator Starter (x32 Version: 5.0.0)
Roxio Express Labeler 3 (x32 Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Samsung Kies (x32 Version: 2.5.0.12094_27)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
SaveByClick (Version: 1.0)
Security Task Manager 1.8f (x32 Version: 1.8f)
Skype Click to Call (x32 Version: 6.3.11079)
Skype™ 6.6 (x32 Version: 6.6.106)
SolidWorks eDrawings 2013 (x32 Version: 13.2.110)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0)
Spectrum Lab V2.78 (x32)
SQLtoMDB (x32)
ST Microelectronics 3 Axis Digital Accelerometer Solution (x32 Version: 4.11.0028)
Target 3001! V16 discover (x32 Version: )
TransistorAmp (x32 Version: 1.0.4)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.0 (Version: 2.1.23.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Validity Sensors DDK (Version: 4.3.108.0)
ViewMate 11.4 (x32 Version: 11.4.45)
VLC media player 2.0.8 (x32 Version: 2.0.8)
Windows Driver Package - OEM (mr8980) Image (11/30/2009 1.0.0.0) (Version: 11/30/2009 1.0.0.0)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3508.1109)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Utils (x32)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (Version: 05/31/2012 7.1.2.0)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
XMatic (x32 Version: 9.1.x)
==================== Restore Points =========================
23-08-2013 05:49:26 Windows Update
28-08-2013 05:30:58 Windows Update
28-08-2013 10:00:16 Windows-Sicherung
31-08-2013 12:55:53 Windows Update
03-09-2013 06:07:08 Windows-Sicherung
03-09-2013 06:41:11 Windows-Sicherung
03-09-2013 08:01:31 Windows-Sicherung
03-09-2013 08:44:34 Windows-Sicherung
03-09-2013 09:02:39 Windows-Sicherung
09-09-2013 05:16:06 Windows Update
12-09-2013 05:40:04 Windows Update
12-09-2013 12:33:32 Installed DXLog.net
12-09-2013 19:36:48 Windows Update
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {07EFB7E7-CBA5-41E0-A9DA-3CE27314FCC0} - System32\Tasks\{DA5FBA5A-DBFF-4377-8DA0-049CA9A86B0E} => Firefox.exe hxxp://ui.skype.com/ui/0/5.9.0.123/de/go/help.faq.installer?LastError=1603
Task: {0DF85746-D45F-41F5-8908-E2271BD46FED} - System32\Tasks\{C8297366-8B52-40A2-8769-00109A5FAE11} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {15B2C3A3-FF63-4C8D-A962-43A09B5B3835} - System32\Tasks\{0D0C6D6E-65DB-496F-B1E9-9E9D69D3F5C5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {17141FDD-2D1E-4752-853A-417E1558B41A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\System32\sdengin2.dll [2010-11-21] (Microsoft Corporation)
Task: {18D2C26F-09DE-4DCD-8CE5-B19686C5E259} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {219EF023-8D03-4C13-AA5C-E7944D2FCF1C} - System32\Tasks\{4EF8B6CB-1460-44A2-8F61-9359C11F3519} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {26058F83-9039-4E8B-BE2E-59D0588B57A1} - System32\Tasks\{A5D43A29-1836-41C6-BDBB-5E36F57A3AA6} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3ABB27C3-51E9-4584-B970-3D9E93EC13C4} - System32\Tasks\EPUpdater => C:\Users\Michael\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-08-04] ()
Task: {3D4DCE10-896F-4B05-AFB2-FB7E87BE33CF} - System32\Tasks\{C79FE135-29B4-424E-9B8B-B9E2DEF261CE} => C:\ProgramData\BetterSoft\SaveByClick\SaveByClick.exe [2013-01-17] ()
Task: {3E4676C1-1B74-4EC8-86B5-CC7C5C904FAF} - System32\Tasks\SystemToolsDailyTest => C:\Windows\System32\uaclauncher.exe
Task: {3F265352-CBC1-4450-8526-E673123A3B10} - System32\Tasks\{75547F8F-DB81-4F33-AE9C-02C6E00D8CEC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3F63FE56-994B-4644-867D-39A9B4A3911D} - System32\Tasks\{A094B25E-6593-4144-9EDA-B55B876A04BA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {40BC8D99-2D11-4A84-A12E-5375B98D3D0E} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2013-05-07] (PC-Doctor, Inc.)
Task: {45C63E8B-20E2-4047-AF38-055712023015} - System32\Tasks\DealPlyLiveUpdateTaskMachineUA => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-08-22] (DealPly Technologies Ltd)
Task: {468B87E7-2D4A-4052-BDF2-E161F4F30906} - System32\Tasks\4872 => C:\Windows\System32\wscript.exe [2009-07-14] (Microsoft Corporation)
Task: {548F1F57-93A5-43BE-93CB-35990F9664AD} - System32\Tasks\BrowserProtect => Sc.exe start BrowserProtect
Task: {552F9A55-055C-4355-B46F-759E059DF780} - System32\Tasks\Dealply => C:\Users\Michael\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe [2013-04-12] ()
Task: {5C7C823B-4ECF-4865-A03D-9846F47749C3} - System32\Tasks\DealPlyLiveUpdateTaskMachineCore => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-08-22] (DealPly Technologies Ltd)
Task: {5F000347-A065-4E25-B8C9-9200BACA9B7F} - System32\Tasks\Plus-HD-3.8-codedownloader => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-codedownloader.exe [2013-09-12] (Plus HD)
Task: {603A2DAF-C3BE-4081-8380-C919F429D29C} - System32\Tasks\{1C3C26D6-86F1-4778-A785-9BFF5ECC950B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {605FE7FB-10A5-4A78-A03F-89755308957F} - System32\Tasks\{67A0A94C-6423-463C-8F1C-F86B979857E3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {64586F25-9CD9-440E-BF71-0196C796C8E3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-21] (Microsoft Corporation)
Task: {685DD145-3ABD-4FAD-98E0-5D0A1C221336} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-22] (Google Inc.)
Task: {712BC300-9F26-4769-997B-F04DFE571D0F} - System32\Tasks\{3DC28225-6B5A-4494-950B-3FFE94E39C8A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {73C30265-50B9-4A35-AF91-60A9C2AFE72A} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-13] (Adobe Systems Incorporated)
Task: {842EFC24-D2D8-4A3E-83DB-B31F18700A35} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-22] (Google Inc.)
Task: {8AFDC460-1940-4583-B88F-190B15A2B1CC} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {8C030FEB-AB72-4E48-BEC2-1FAC63CF8648} - System32\Tasks\0 => Iexplore.exe
Task: {8C7C90DF-2763-479F-9D8D-69D917FB8F8F} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-21] (Microsoft Corporation)
Task: {9251F796-4E5C-4C52-8AFE-DB99D4041020} - System32\Tasks\Plus-HD-3.8-firefoxinstaller => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-firefoxinstaller.exe [2013-09-12] (Plus HD)
Task: {94807657-E95F-4DF9-8605-8CD496778360} - System32\Tasks\Plus-HD-3.8-chromeinstaller => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-chromeinstaller.exe [2013-09-12] (Plus HD)
Task: {961EC1D1-8A72-44FA-A2D8-6AE9ECE662DD} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {9C7E46E7-EC38-4A52-AC28-A247F4D399A5} - System32\Tasks\{DF7F44F7-3DE3-44A4-BE23-614CA4B18DA0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9F51C95B-A74E-4C81-8391-A0B477860036} - System32\Tasks\{7C27630A-C489-4C6F-8B9E-06B5850B8AF1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A1EFF7A1-1AC8-48ED-8259-68F66D657964} - System32\Tasks\{1DD092D9-7E41-4608-AE1B-1C175A624252} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A69AB2BA-C483-4DD8-BA96-B8378729556A} - System32\Tasks\{3AB5ECAA-E41A-429D-90EC-AE132DACD80B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AC558104-C96D-4E02-A160-F0945E723C10} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2013-07-18] (PC-Doctor, Inc.)
Task: {AF86DBAD-76E1-40B3-86D7-5A73D89DDD0B} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files (x86)\HomeTab\ProtectedSearch.exe [2013-08-13] (Simplygen)
Task: {C1BEC0D9-D219-4477-9346-DCE8575810D0} - System32\Tasks\{D90C91A8-7C23-4CA7-A1AC-5C0EFA34BD51} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C9A0E859-1BBC-49AF-AFAA-B4E235B00506} - System32\Tasks\Browser Updater\Browser Updater => C:\Program Files (x86)\HomeTab\TBUpdater.dll [2013-08-22] (Simply Tech Ltd.)
Task: {D26074B6-AAAD-4CD2-B5A3-00FC1AAA5BAE} - System32\Tasks\{F1652699-A40C-4853-9E41-00A5EE77D0B2} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D89276C1-6557-4D55-B29B-7B9B9969D77A} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {DCF7F620-4ED4-4D95-92E1-C8D2B0A48023} - System32\Tasks\DealPlyUpdate => C:\Program
Task: {DD251C76-22E9-4ABE-BA5E-29D8BBD035BC} - System32\Tasks\{2B3ECC30-A4FA-44BD-AA51-13F056930FE3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E8E0750F-1DE0-4E07-AB38-459261ABFB88} - System32\Tasks\{0A7BCC98-938B-495C-9262-D16989F0A6EA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EB47FF98-4267-493E-9627-BA558322EF53} - System32\Tasks\Plus-HD-3.8-updater => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-updater.exe [2013-09-12] (Plus HD)
Task: {EFE6EAC9-E8E2-422A-8120-235D101EF626} - System32\Tasks\{F79AF657-8E77-4E1D-8BF7-0190B29FB2E3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F0A000C8-0AC9-4975-B6AF-4D10B3F861D8} - System32\Tasks\Plus-HD-3.8-enabler => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-enabler.exe [2013-09-12] (Plus HD)
Task: {F75942FE-5282-47D3-8D0D-ECCEC2FEB1F7} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\Dealply.job => C:\Users\Michael\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE
Task: C:\windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe
Task: C:\windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Plus-HD-3.8-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-chromeinstaller.exe
Task: C:\windows\Tasks\Plus-HD-3.8-codedownloader.job => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-codedownloader.exe
Task: C:\windows\Tasks\Plus-HD-3.8-enabler.job => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-enabler.exe
Task: C:\windows\Tasks\Plus-HD-3.8-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-firefoxinstaller.exe
Task: C:\windows\Tasks\Plus-HD-3.8-updater.job => C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-updater.exe
Task: C:\windows\Tasks\{C79FE135-29B4-424E-9B8B-B9E2DEF261CE}.job => C:\ProgramData\BetterSoft\SaveByClick\SaveByClick.exe
==================== Loaded Modules (whitelisted) =============
2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2011-10-20 11:09 - 2011-04-10 21:13 - 00286720 _____ (Intel Corporation) C:\windows\system32\igfxrDEU.lrc
2011-10-20 11:09 - 2011-04-10 20:40 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-10-20 11:09 - 2011-05-10 03:00 - 00113224 _____ (Alps Electric Co., Ltd.) C:\windows\system32\Vxdif.dll
2011-07-28 03:44 - 2011-07-28 03:44 - 01077248 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
2011-07-28 03:07 - 2011-07-28 03:07 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2011-07-28 04:20 - 2011-07-28 04:20 - 00045568 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\DEU\FrWrkDEU.dll
2011-07-28 03:55 - 2011-07-28 03:55 - 01746432 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll
2011-07-28 03:46 - 2011-07-28 03:46 - 01045504 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.DLL
2011-07-28 03:44 - 2011-07-28 03:44 - 00234496 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.dll
2011-07-28 03:50 - 2011-07-28 03:50 - 02072576 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
2011-07-28 03:51 - 2011-07-28 03:51 - 01278976 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\MurocApi.dll
2011-07-28 03:46 - 2011-07-28 03:46 - 00841728 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\IntStngs.dll
2011-07-28 03:53 - 2011-07-28 03:53 - 00570368 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\PanApi.dll
2011-07-28 03:44 - 2011-07-28 03:44 - 00177152 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
2011-07-28 03:44 - 2011-07-28 03:44 - 00846336 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\DbEngine.dll
2011-07-28 04:24 - 2011-07-28 04:24 - 00097280 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\LangResources\DEU\PanTrDEU.dll
2012-09-26 09:33 - 2011-09-08 05:42 - 04113408 _____ (IDT, Inc.) C:\Program Files\IDT\WDM\STLang64.dll
2012-09-25 09:36 - 2011-09-08 05:42 - 00655872 ____N (IDT, Inc.) C:\windows\system32\stapi64.dll
2009-01-20 20:51 - 2009-01-20 20:51 - 00007168 _____ ( ) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2011-03-22 17:17 - 2011-03-22 17:17 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-05-12 06:21 - 2011-05-12 06:21 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-10-20 11:09 - 2011-05-10 03:00 - 00113224 _____ (Alps Electric Co., Ltd.) C:\windows\system32\VXDIF.DLL
2012-09-26 20:57 - 2012-09-26 20:57 - 00307200 _____ ( MarkAny.) C:\Program Files (x86)\Samsung\Kies\External\MACSSDK.dll
2013-06-21 09:53 - 2013-06-21 09:53 - 00088680 ____R (Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.dll
2013-09-13 12:45 - 2013-09-13 12:45 - 16244616 ____R (Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\Flash32_11_8_800_174.ocx
2012-12-21 17:57 - 2012-12-21 17:57 - 08507384 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 02354168 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 01014776 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00364536 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 02481144 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 01347064 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00206328 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 02653176 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00033272 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00035832 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00207352 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 11166712 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00276984 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll
2012-12-21 15:29 - 2012-12-21 15:29 - 00391600 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll
2012-12-21 15:29 - 2012-12-21 15:29 - 00059280 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll
2012-12-21 17:56 - 2012-12-21 17:56 - 00438264 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00446456 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00520696 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00720888 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll
2012-12-21 17:56 - 2012-12-21 17:56 - 00606200 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll
2012-12-21 17:57 - 2012-12-21 17:57 - 00093176 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll
2012-12-21 15:29 - 2012-12-21 15:29 - 00110080 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\mediaservice\dsengine.dll
2013-08-22 11:07 - 2013-08-22 12:02 - 00187888 _____ () C:\Users\Michael\AppData\Roaming\BabSolution\Shared\enhancedNT.dll
2011-10-20 08:50 - 2009-09-08 17:01 - 00237056 ____N (Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
2011-10-20 08:50 - 2010-07-22 20:01 - 00065536 ____N (Creative Technology Ltd.) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
2013-08-14 14:08 - 2013-08-14 14:08 - 00475648 _____ (Intel Corporation) C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\2b87cb064e64ff40778ca12322abb710\IAStorUtil.ni.dll
2013-07-16 10:29 - 2013-07-16 10:29 - 00014336 _____ (Intel Corp.) C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\14dd60b57c8e7542cc9711866ef63e8a\IAStorCommon.ni.dll
2010-11-17 19:52 - 2010-11-17 19:52 - 00096904 _____ (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
2010-11-22 20:27 - 2010-11-22 20:27 - 00190960 _____ (Roxio, Inc.) c:\program files (x86)\common files\roxio shared\dllshared\rsl.dll
2010-11-25 05:44 - 2010-11-25 05:44 - 00375280 _____ () c:\program files (x86)\common files\roxio shared\dllshared\SQLite352.dll
2012-09-28 20:17 - 2013-07-15 12:16 - 00250368 _____ (Windows (R) Codename Longhorn DDK provider) C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\UPNPDevice_Kies.dll
2013-05-26 17:53 - 2013-05-26 17:53 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2012-08-10 17:51 - 2012-08-10 17:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2013-09-03 15:54 - 2013-09-03 15:54 - 00056832 _____ () C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Locale\de_de\brdlang32.DEU
2012-04-17 10:18 - 2013-09-12 09:21 - 09489408 _____ () C:\Users\Michael\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_rdlang32.deu
2013-09-03 15:53 - 2013-09-03 15:53 - 00305520 _____ () C:\Program Files (x86)\Adobe\Reader 10.0\Reader\sqlite.dll
2012-07-27 22:51 - 2012-07-27 22:51 - 06549432 _____ () C:\Program Files (x86)\Adobe\Reader 10.0\Reader\authplay.dll
2012-04-17 10:19 - 2013-09-12 09:21 - 03065856 _____ () C:\Users\Michael\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_Annots.DEU
2012-05-11 11:07 - 2013-09-12 09:21 - 00023040 _____ () C:\Users\Michael\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_SendMail.DEU
2012-04-17 10:19 - 2013-09-12 09:21 - 00014336 _____ () C:\Users\Michael\AppData\Local\Adobe\Acrobat\10.0\Cache\RdLang_Updater.DEU
==================== Alternate Data Streams (whitelisted) ==========
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/16/2013 08:46:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/16/2013 08:41:53 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC
Error: (09/16/2013 08:41:53 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC
Error: (09/16/2013 08:37:40 PM) (Source: GenericUpdater) (User: )
Description: Script error at line 0: No update hosts configured
Error: (09/16/2013 08:11:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/16/2013 04:52:45 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC
Error: (09/16/2013 04:45:07 PM) (Source: GenericUpdater) (User: )
Description: Script error at line 0: No update hosts configured
Error: (09/16/2013 03:45:07 PM) (Source: GenericUpdater) (User: )
Description: Script error at line 0: No update hosts configured
Error: (09/16/2013 02:45:08 PM) (Source: GenericUpdater) (User: )
Description: Script error at line 0: No update hosts configured
Error: (09/16/2013 02:16:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (09/16/2013 08:45:22 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "itamem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/16/2013 08:45:22 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\DRIVERS\itamem.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (09/16/2013 08:45:22 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "devMem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/16/2013 08:45:22 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\devMem.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (09/16/2013 08:41:57 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (09/16/2013 08:11:18 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "itamem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/16/2013 08:11:18 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\DRIVERS\itamem.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (09/16/2013 08:11:17 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "devMem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/16/2013 08:11:17 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\devMem.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (09/16/2013 04:52:52 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Microsoft Office Sessions:
=========================
Error: (09/16/2013 08:46:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/16/2013 08:41:53 PM) (Source: ATIeRecord)(User: )
Description:
Error: (09/16/2013 08:41:53 PM) (Source: ATIeRecord)(User: )
Description:
Error: (09/16/2013 08:37:40 PM) (Source: GenericUpdater)(User: )
Description: Script error at line 0: No update hosts configured
Error: (09/16/2013 08:11:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/16/2013 04:52:45 PM) (Source: ATIeRecord)(User: )
Description:
Error: (09/16/2013 04:45:07 PM) (Source: GenericUpdater)(User: )
Description: Script error at line 0: No update hosts configured
Error: (09/16/2013 03:45:07 PM) (Source: GenericUpdater)(User: )
Description: Script error at line 0: No update hosts configured
Error: (09/16/2013 02:45:08 PM) (Source: GenericUpdater)(User: )
Description: Script error at line 0: No update hosts configured
Error: (09/16/2013 02:16:52 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
CodeIntegrity Errors:
===================================
Date: 2013-02-22 07:11:54.001
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:53.948
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:51.847
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:51.789
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:49.660
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:49.621
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:47.509
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:47.466
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:45.372
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-22 07:11:45.334
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 49%
Total physical RAM: 4003.18 MB
Available physical RAM: 2022.2 MB
Total Pagefile: 8004.54 MB
Available Pagefile: 5504.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:231.23 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: EA239A0A)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS)
==================== End Of Log ============================]
Vielleicht sagt dir das was --- Ich stehe da ziemlich Alleine da.
Habe in der Zwischen Zeit noch mal eine Malwarebytes Anti Malware runtergeladen und mal laufen gelassen.
Und da kam das raus Siehe log:
[Malwarebytes Anti-Malware (Test) 1.75.0.1300
Malwarebytes : Free anti-malware download
Datenbank Version: v2013.09.19.07
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Michael :: MICHAELQRL [Administrator]
Schutz: Aktiviert
19.09.2013 20:10:44
MBAM-log-2013-09-19 (20-26-31).txt
Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 221979
Laufzeit: 6 Minute(n), 46 Sekunde(n)
Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung: 8
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Search Page (Hijack.SearchPage) -> Bösartig: (Certified-Toolbar Search) Gut: (Google) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Search Bar (Hijack.SearchPage) -> Bösartig: (Certified-Toolbar Search) Gut: (Google) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Default_Search_URL (Hijack.SearchPage) -> Bösartig: (Certified-Toolbar Search) Gut: (Google) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search|Default_Search_URL (Hijack.SearchPage) -> Bösartig: (Certified-Toolbar Search) Gut: (Google) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Default_Search_URL (Hijack.SearchPage) -> Bösartig: (Certified-Toolbar Search) Gut: (Google) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Search Page (Hijack.SearchPage) -> Bösartig: (Certified-Toolbar Search) Gut: (Google) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Search Bar (Hijack.SearchPage) -> Bösartig: (Certified-Toolbar Search) Gut: (Google) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search|Default_Search_URL (Hijack.SearchPage) -> Bösartig: (Certified-Toolbar Search) Gut: (Google) -> Keine Aktion durchgeführt.
Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Dateien: 4
C:\Users\Michael\AppData\Local\Temp\CSM9E70.tmp (PUP.Adware.RelevantKnowledge) -> Keine Aktion durchgeführt.
C:\Users\Michael\AppData\Local\Temp\is956058749\13002687_Setup.ZIP (PUP.WirelessNetworkTool) -> Keine Aktion durchgeführt.
C:\Users\Michael\Downloads\cwget morse decoder setup.exe (PUP.AdBundle) -> Keine Aktion durchgeführt.
C:\Users\Michael\Downloads\wirelessnetview.zip (PUP.WirelessNetworkTool) -> Keine Aktion durchgeführt.
(Ende)
][/CODE]
Was ich nicht verstehe ist der Virenscanner ist doch immer an --- aber meldet nix.
Sind das dann Fehlmedungen.
Ich würde mich freunden wenn du vielleicht einen guten Tip für mich hast.
Vielen Dank im vorraus.
Gruß MM_SH