| RhönSprudel | 25.09.2013 08:36 |
Hallo,
anbei die Ergebnisse:
FRST
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-09-2013
Ran by Peter (administrator) on NB-POBERMAYER on 25-09-2013 09:00:57
Running from C:\Users\Peter\Desktop
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(ViCon GmbH) C:\Program Files (x86)\Common Files\ViCon Shared\ViCon Agent\ViConAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Dropbox, Inc.) C:\Users\Peter\AppData\Roaming\Dropbox\bin\Dropbox.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
() C:\StartP\SpFileImport\JfFolderMonitor_Win.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Mindjet) C:\Program Files (x86)\Mindjet\MindManager 6\MmReminderService.exe
(ViCon GmbH) C:\Program Files (x86)\ViCon\Update\03\UpdateClient.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16613_none_6273bd8950d6cae2\TiWorker.exe
(Microsoft Corporation) C:\Windows\system32\launchtm.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] - C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [765056 2012-09-29] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-09-29] (Atheros Communications)
HKLM\...\Run: [ACMON] - C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-09-11] (ASUS)
HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1737944 2013-09-04] (Bitdefender)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [com.apple.dav.bookmarks.daemon] - C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-04-29] (Google Inc.)
HKCU\...\Run: [Bitdefender-Geldbörse-Agent] - C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [554992 2013-09-04] (Bitdefender)
HKCU\...\Run: [Bitdefender-Geldbörse] - C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1005632 2013-09-04] (Bitdefender)
HKCU\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] - C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [621448 2013-09-04] (Bitdefender)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe [3417984 2012-08-28] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [JfFolderMonitor_SpPdfPrinter] - C:\StartP\SpFileImport\PdfImport.cmd [283 2011-08-29] ()
HKLM-x32\...\Run: [MMReminderService] - C:\Program Files (x86)\Mindjet\MindManager 6\MMReminderService.exe [31232 2006-12-14] (Mindjet)
HKLM-x32\...\Run: [ViCon Update] - C:\Program Files (x86)\ViCon\Update\03\UpdateClient.exe [275216 2013-08-19] (ViCon GmbH)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-03] (Avira Operations GmbH & Co. KG)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll acaptuser64.dll [245872 2013-04-08] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [201576 2013-04-08] (NVIDIA Corporation)
Startup: C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Peter\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * bddel.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {BBE0D7C8-7260-4B84-961B-C20A1DB00989} URL = hxxp://search.zonealarm.com/search?Source=Browser&oemCode=ZLN116433498114935-1001&toolbarId=base&affiliateId=1001&Lan=de&utid=fa4907d400000000000012689df7fb51&q={searchTerms}&r=843
BHO: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll (Bitdefender)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: CmjBrowserHelperObject Object - {AC41D38F-B56D-40AD-94E0-B493D130C959} - C:\Program Files (x86)\Mindjet\MindManager 6\Mm6InternetExplorer.dll (Mindjet)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Toolbar: HKCU - No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\Ole DB\msdaipp.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.5 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\xlfhko6y.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Bitdefender.com/PasswordManager;version=17.8 - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxnp.dll (Bitdefender)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: InfoBird Pro - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\xlfhko6y.default\Extensions\addon@infobirdpro.com
FF Extension: My Movie Magnet - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\xlfhko6y.default\Extensions\admin@mymoviemagnet.com
FF Extension: Boston MarketOne - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\xlfhko6y.default\Extensions\support@bostonmarketone.com
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: No Name - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman\
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman\
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: No Name - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF HKCU\...\Firefox\Extensions: [{4340308e-3e37-4dd7-9192-8cf05ce9c9f2}] - C:\Program Files (x86)\LyriXeeker\130.xpi
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Extension: (Google Docs) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Bitdefender Wallet) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl\17.16.0_0
CHR Extension: (Adblock Plus) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.5_0
CHR Extension: (Google Search) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-03] (Avira Operations GmbH & Co. KG)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-29] (Qualcomm Atheros Commnucations)
S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [75584 2013-07-05] (Bitdefender)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2013-09-04] (Bitdefender)
R2 ViCon Agent; C:\Program Files (x86)\Common Files\ViCon Shared\ViCon Agent\ViConAgent.exe [37648 2013-08-19] (ViCon GmbH)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1505688 2013-09-04] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-29] (Atheros)
S2 BingDesktopUpdate; "C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe" [x]
==================== Drivers (Whitelisted) ====================
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2013-07-19] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2013-07-19] (BitDefender)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [132088 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-02-26] (Avira Operations GmbH & Co. KG)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23456 2012-07-11] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-04-09] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [106568 2012-10-17] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [109056 2013-01-29] (BitDefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-07-23] (BitDefender SRL)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [147232 2012-10-04] (BitDefender LLC)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-25 08:27 - 2013-09-25 08:28 - 01955802 _____ (Farbar) C:\Users\Peter\Desktop\FRST64.exe
2013-09-25 08:15 - 2013-09-25 08:15 - 00027136 ____N C:\Windows\system32\bddel.exe
2013-09-25 08:15 - 2013-09-25 08:15 - 00000092 _____ C:\Windows\system32\bddel.dat
2013-09-25 07:05 - 2013-09-25 07:05 - 97673008 _____ C:\Windows\SysWOW64\왻L²
2013-09-23 11:18 - 2013-09-23 11:18 - 00000000 ____D C:\ProgramData\bdch
2013-09-23 07:01 - 2013-09-23 07:01 - 00360680 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-16 15:30 - 2013-09-20 15:39 - 00000396 _____ C:\Windows\system32\checkdnsid.xml
2013-09-14 14:29 - 2013-09-25 07:05 - 00000000 ___RD C:\Users\Peter\Dropbox
2013-09-14 14:29 - 2013-09-14 14:29 - 00001006 _____ C:\Users\Peter\Desktop\Dropbox.lnk
2013-09-14 14:24 - 2013-09-14 14:24 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-14 14:20 - 2013-09-25 07:06 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Dropbox
2013-09-14 14:19 - 2013-09-14 14:20 - 33641960 _____ (Dropbox, Inc.) C:\Users\Peter\Downloads\Dropbox_2.2.13.exe
2013-09-13 14:45 - 2013-08-21 06:11 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-13 14:45 - 2013-08-16 07:41 - 00058200 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2013-09-13 14:45 - 2013-08-16 07:39 - 02371728 ____N (Microsoft Corporation) C:\Windows\system32\WSService.dll
2013-09-13 14:45 - 2013-08-16 07:39 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-09-13 14:45 - 2013-08-16 07:32 - 00209200 ____N (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2013-09-13 14:45 - 2013-08-16 07:22 - 04917760 ____N (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2013-09-13 14:45 - 2013-08-16 07:22 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-09-13 14:45 - 2013-08-16 07:21 - 03275776 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 01621504 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00204800 ____N (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-09-13 14:45 - 2013-08-16 07:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-09-13 14:45 - 2013-08-16 07:20 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00083968 _____ C:\Windows\SysWOW64\OEMLicense.dll
2013-09-13 14:45 - 2013-08-16 00:43 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-09-13 14:45 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2013-09-13 14:45 - 2013-08-16 00:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2013-09-13 14:45 - 2013-08-16 00:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2013-09-13 14:44 - 2013-08-21 06:12 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-13 14:44 - 2013-08-21 06:12 - 00051712 ____N (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-13 14:44 - 2013-08-21 06:11 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 03959296 ____N (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-13 14:44 - 2013-08-21 06:11 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-13 14:44 - 2013-08-21 04:34 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-13 14:44 - 2013-08-21 04:06 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-13 14:44 - 2013-08-21 04:06 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-13 14:44 - 2013-08-21 04:06 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-13 14:44 - 2013-08-21 04:05 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-13 14:44 - 2013-08-21 03:43 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-13 14:44 - 2013-08-21 01:52 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2013-09-13 14:44 - 2013-08-03 06:30 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-10 12:25 - 2013-09-11 14:16 - 01542725 _____ C:\Users\Peter\Desktop\Ergebnispräsentation.pptx
2013-09-06 08:37 - 2013-09-06 08:37 - 00000000 ____D C:\Program Files (x86)\Sweet Home 3D
2013-09-06 08:35 - 2013-09-06 08:35 - 00392024 _____ (Softonic ) C:\Users\Peter\Downloads\SoftonicDownloader_fuer_sweet-home-3d.exe
2013-09-06 08:07 - 2013-09-06 08:07 - 00604806 _____ C:\Users\Peter\Documents\Mietverteilung.xlsx
2013-09-05 13:40 - 2013-09-05 13:40 - 00001288 _____ C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\* * * * * * * * *.lnk
2013-09-05 13:31 - 2013-09-05 13:31 - 00282008 _____ (Mozilla) C:\Users\Peter\Downloads\Firefox Setup Stub 23.0.1.exe
2013-09-05 13:31 - 2013-09-05 13:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-05 13:31 - 2013-09-05 13:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-05 09:54 - 2013-09-05 09:54 - 00054793 _____ C:\Users\Peter\Downloads\FRST.txt
2013-09-05 07:42 - 2013-09-25 07:06 - 00003576 ____N C:\Windows\System32\Tasks\Bitdefender Auto-Scan
2013-09-04 14:19 - 2013-09-04 14:19 - 02347384 _____ (ESET) C:\Users\Peter\Downloads\esetsmartinstaller_enu.exe
2013-09-04 13:47 - 2013-09-04 13:47 - 00000385 _____ C:\Users\Peter\AppData\Roaminguser_gensett.xml
2013-09-04 13:27 - 2013-09-04 13:27 - 00078752 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2013-09-04 13:18 - 2013-07-09 10:04 - 00120144 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2013-09-04 13:18 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-09-04 13:18 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2013-09-04 13:18 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2013-09-04 13:18 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2013-09-04 13:18 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2013-09-04 13:18 - 2013-07-09 00:46 - 00370688 ____N (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2013-09-04 13:18 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2013-09-04 13:18 - 2013-07-06 02:16 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-09-04 13:18 - 2013-07-03 02:23 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-09-04 13:18 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-09-04 13:18 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-09-04 13:18 - 2013-07-03 02:22 - 01300480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-09-04 13:18 - 2013-07-03 02:11 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-09-04 13:18 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-09-04 13:18 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2013-09-04 13:18 - 2013-07-02 00:08 - 00387583 _____ C:\Windows\system32\ApnDatabase.xml
2013-09-04 13:18 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2013-09-04 13:18 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2013-09-04 13:18 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-09-04 13:18 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-09-04 13:18 - 2013-06-29 07:43 - 00327512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2013-09-04 13:18 - 2013-06-29 03:12 - 01022464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-09-04 13:18 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2013-09-04 13:18 - 2013-06-26 04:59 - 00341504 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2013-09-04 13:18 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-09-04 13:18 - 2013-06-25 00:54 - 00263680 ____N (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2013-09-04 13:18 - 2013-06-25 00:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2013-09-04 13:18 - 2013-06-19 07:36 - 00183808 ____N (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2013-09-04 13:18 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-09-04 13:18 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2013-09-04 13:18 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2013-09-04 13:18 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2013-09-04 13:18 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-09-04 13:18 - 2013-06-10 23:17 - 00096512 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2013-09-04 13:18 - 2013-06-10 21:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-09-04 13:18 - 2013-06-10 21:15 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-09-04 13:18 - 2013-06-10 21:15 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-09-04 13:18 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-09-04 13:18 - 2013-06-10 21:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-09-04 13:18 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-09-04 13:18 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-09-04 13:04 - 2013-09-04 13:04 - 00639008 _____ C:\ProgramData\1378290655.bdinstall.bin
2013-09-04 12:40 - 2013-09-04 12:40 - 00000636 ____N C:\bdr-cf01
2013-09-04 12:40 - 2013-09-04 12:40 - 00000385 _____ C:\Windows\system32\user_gensett.xml
2013-09-04 12:40 - 2013-09-04 12:40 - 00000299 _____ C:\Windows\setupact.log
2013-09-04 12:40 - 2013-09-04 12:40 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2013-09-04 12:40 - 2013-09-04 12:40 - 00000000 ____D C:\ProgramData\BDLogging
2013-09-04 12:40 - 2013-09-04 12:40 - 00000000 _____ C:\Windows\setuperr.log
2013-09-04 12:40 - 2013-07-23 16:50 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2013-09-04 12:40 - 2013-04-09 17:20 - 00098768 _____ (BitDefender LLC) C:\Windows\system32\Drivers\bdfndisf6.sys
2013-09-04 12:40 - 2012-07-11 07:48 - 00023456 ____N (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys
2013-09-04 12:40 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2013-09-04 12:39 - 2013-07-19 18:08 - 00601360 ____N (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2013-09-04 12:39 - 2013-07-19 18:04 - 00727592 ____N (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2013-09-04 12:39 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2013-09-04 12:33 - 2013-09-04 12:40 - 00253404 ____N C:\bdr-ld01
2013-09-04 12:33 - 2013-09-04 12:40 - 00009216 ____N C:\bdr-ld01.mbr
2013-09-04 12:33 - 2013-09-04 12:33 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Bitdefender
2013-09-04 12:33 - 2013-06-25 18:20 - 38518480 ____N C:\bdr-im01.gz
2013-09-04 12:33 - 2012-08-15 15:28 - 02510608 ____N C:\bdr-bz01
2013-09-04 12:31 - 2013-09-04 12:40 - 00000000 ____D C:\ProgramData\Bitdefender
2013-09-04 12:31 - 2013-09-04 12:31 - 00000000 ____D C:\Program Files\Bitdefender
2013-09-04 12:31 - 2013-05-28 12:12 - 00382536 ____N (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2013-09-04 12:31 - 2012-10-04 14:30 - 00147232 ____N (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2013-09-04 12:30 - 2013-09-04 12:31 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2013-09-04 12:30 - 2013-09-04 12:30 - 05701712 _____ C:\Users\Peter\Downloads\bitdefender_14isecurity.exe
2013-09-04 12:30 - 2013-09-04 12:30 - 00000000 ____D C:\Users\Peter\AppData\Roaming\QuickScan
2013-09-04 12:26 - 2013-09-04 12:30 - 00000000 ____D C:\Users\Peter\AppData\Roaming\FileZilla
2013-09-04 10:51 - 2013-09-04 10:51 - 00000000 ____D C:\Windows\ERUNT
2013-09-04 10:45 - 2013-09-04 10:47 - 00000000 ____D C:\AdwCleaner
2013-09-04 10:35 - 2013-09-04 10:35 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Malwarebytes
2013-09-04 10:35 - 2013-09-04 10:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-04 10:35 - 2013-09-04 10:35 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-04 10:35 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-04 10:34 - 2013-09-04 10:34 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Peter\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-04 09:37 - 2013-09-16 07:07 - 00015184 _____ C:\Windows\PFRO.log
2013-09-04 08:58 - 2013-09-04 08:58 - 00000472 _____ C:\Users\Peter\Downloads\defogger_disable.log
2013-09-04 08:58 - 2013-09-04 08:58 - 00000000 _____ C:\Users\Peter\defogger_reenable
2013-09-04 08:47 - 2013-09-04 08:48 - 00056741 _____ C:\Users\Peter\Downloads\Addition.txt
2013-09-04 08:45 - 2013-09-04 08:45 - 00000000 ____D C:\FRST
2013-09-04 07:29 - 2013-09-13 14:36 - 00000000 ____D C:\Users\Peter\Desktop\Stuff
2013-09-03 18:59 - 2013-09-04 07:11 - 95812354 _____ C:\Windows\SysWOW64\박鑕Lĕ
2013-09-02 19:15 - 2013-09-02 19:15 - 00000988 ____N C:\Users\Public\Desktop\Winamp.lnk
2013-09-02 19:15 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-09-02 19:15 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-09-02 19:14 - 2013-09-14 14:17 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Winamp
2013-09-02 19:14 - 2013-09-02 19:15 - 00000000 ____D C:\Program Files (x86)\Winamp
2013-09-02 19:14 - 2013-09-02 19:14 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-02 19:14 - 2013-09-02 19:14 - 00000000 ____D C:\Program Files (x86)\Winamp Detect
==================== One Month Modified Files and Folders =======
2013-09-25 09:00 - 2013-07-31 10:29 - 01985196 _____ C:\Windows\WindowsUpdate.log
2013-09-25 09:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-09-25 08:46 - 2013-01-15 11:49 - 00000000 ____D C:\StartP
2013-09-25 08:28 - 2013-09-25 08:27 - 01955802 _____ (Farbar) C:\Users\Peter\Desktop\FRST64.exe
2013-09-25 08:15 - 2013-09-25 08:15 - 00027136 ____N C:\Windows\system32\bddel.exe
2013-09-25 08:15 - 2013-09-25 08:15 - 00000092 _____ C:\Windows\system32\bddel.dat
2013-09-25 07:11 - 2012-08-03 01:02 - 00753134 _____ C:\Windows\system32\perfh007.dat
2013-09-25 07:11 - 2012-08-03 01:02 - 00155826 _____ C:\Windows\system32\perfc007.dat
2013-09-25 07:11 - 2012-07-26 09:28 - 01745416 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-25 07:08 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-09-25 07:06 - 2013-09-14 14:20 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Dropbox
2013-09-25 07:06 - 2013-09-05 07:42 - 00003576 ____N C:\Windows\System32\Tasks\Bitdefender Auto-Scan
2013-09-25 07:05 - 2013-09-25 07:05 - 97673008 _____ C:\Windows\SysWOW64\왻L²
2013-09-25 07:05 - 2013-09-14 14:29 - 00000000 ___RD C:\Users\Peter\Dropbox
2013-09-25 07:05 - 2013-01-15 11:09 - 00000488 _____ C:\Users\Peter\AppData\Roaming\sp_data.sys
2013-09-25 07:04 - 2013-01-17 14:48 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-25 07:04 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-25 07:03 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-09-24 19:40 - 2013-03-12 20:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-24 19:20 - 2013-01-17 14:48 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-24 18:44 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\LiveKernelReports
2013-09-24 09:22 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-09-23 16:01 - 2013-08-20 11:11 - 00000000 ____D C:\Users\Peter\Desktop\Roland
2013-09-23 11:18 - 2013-09-23 11:18 - 00000000 ____D C:\ProgramData\bdch
2013-09-23 07:01 - 2013-09-23 07:01 - 00360680 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-22 13:33 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-09-20 15:39 - 2013-09-16 15:30 - 00000396 _____ C:\Windows\system32\checkdnsid.xml
2013-09-19 15:55 - 2012-11-14 18:04 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-09-19 15:55 - 2012-11-14 18:04 - 00000000 ____D C:\Windows\system32\NV
2013-09-19 15:05 - 2012-11-14 18:03 - 00000000 ____D C:\ProgramData\NVIDIA
2013-09-19 01:26 - 2012-07-26 10:14 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-19 01:26 - 2012-07-26 10:14 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-18 10:32 - 2013-01-16 16:28 - 00000000 ____D C:\Users\Peter\AppData\Local\CrashDumps
2013-09-16 07:07 - 2013-09-04 09:37 - 00015184 _____ C:\Windows\PFRO.log
2013-09-16 07:05 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-09-16 07:05 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-09-15 14:49 - 2013-01-16 12:42 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-15 14:21 - 2013-08-15 09:10 - 00000000 ____D C:\Windows\system32\MRT
2013-09-15 14:18 - 2013-01-15 12:35 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-15 14:13 - 2013-01-15 11:16 - 00003600 ____N C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2992037335-1641209472-3248028402-1002
2013-09-14 14:29 - 2013-09-14 14:29 - 00001006 _____ C:\Users\Peter\Desktop\Dropbox.lnk
2013-09-14 14:29 - 2013-01-15 11:07 - 00000000 ____D C:\Users\Peter
2013-09-14 14:24 - 2013-09-14 14:24 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-09-14 14:24 - 2013-01-15 11:08 - 00000000 ___RD C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-14 14:20 - 2013-09-14 14:19 - 33641960 _____ (Dropbox, Inc.) C:\Users\Peter\Downloads\Dropbox_2.2.13.exe
2013-09-14 14:17 - 2013-09-02 19:14 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Winamp
2013-09-13 14:36 - 2013-09-04 07:29 - 00000000 ____D C:\Users\Peter\Desktop\Stuff
2013-09-11 14:16 - 2013-09-10 12:25 - 01542725 _____ C:\Users\Peter\Desktop\Ergebnispräsentation.pptx
2013-09-11 12:02 - 2013-03-12 13:02 - 09168044 _____ C:\Windows\system32\ViCon Update.log
2013-09-11 12:02 - 2013-03-12 13:02 - 00030480 _____ C:\Windows\SysWOW64\ViCon Update.log
2013-09-06 08:37 - 2013-09-06 08:37 - 00000000 ____D C:\Program Files (x86)\Sweet Home 3D
2013-09-06 08:35 - 2013-09-06 08:35 - 00392024 _____ (Softonic ) C:\Users\Peter\Downloads\SoftonicDownloader_fuer_sweet-home-3d.exe
2013-09-06 08:07 - 2013-09-06 08:07 - 00604806 _____ C:\Users\Peter\Documents\Mietverteilung.xlsx
2013-09-05 13:50 - 2013-06-03 20:56 - 00000000 ____D C:\Users\Peter\Desktop\Studium
2013-09-05 13:40 - 2013-09-05 13:40 - 00001288 _____ C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\* * * * * * * * *.lnk
2013-09-05 13:31 - 2013-09-05 13:31 - 00282008 _____ (Mozilla) C:\Users\Peter\Downloads\Firefox Setup Stub 23.0.1.exe
2013-09-05 13:31 - 2013-09-05 13:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-05 13:31 - 2013-09-05 13:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-05 09:54 - 2013-09-05 09:54 - 00054793 _____ C:\Users\Peter\Downloads\FRST.txt
2013-09-04 14:19 - 2013-09-04 14:19 - 02347384 _____ (ESET) C:\Users\Peter\Downloads\esetsmartinstaller_enu.exe
2013-09-04 13:47 - 2013-09-04 13:47 - 00000385 _____ C:\Users\Peter\AppData\Roaminguser_gensett.xml
2013-09-04 13:43 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe
2013-09-04 13:42 - 2013-01-31 12:54 - 00000039 _____ C:\Windows\vbaddin.ini
2013-09-04 13:42 - 2012-07-26 07:26 - 00000199 _____ C:\Windows\win.ini
2013-09-04 13:36 - 2012-11-14 18:01 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-09-04 13:27 - 2013-09-04 13:27 - 00078752 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2013-09-04 13:04 - 2013-09-04 13:04 - 00639008 _____ C:\ProgramData\1378290655.bdinstall.bin
2013-09-04 12:40 - 2013-09-04 12:40 - 00000636 ____N C:\bdr-cf01
2013-09-04 12:40 - 2013-09-04 12:40 - 00000385 _____ C:\Windows\system32\user_gensett.xml
2013-09-04 12:40 - 2013-09-04 12:40 - 00000299 _____ C:\Windows\setupact.log
2013-09-04 12:40 - 2013-09-04 12:40 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2013-09-04 12:40 - 2013-09-04 12:40 - 00000000 ____D C:\ProgramData\BDLogging
2013-09-04 12:40 - 2013-09-04 12:40 - 00000000 _____ C:\Windows\setuperr.log
2013-09-04 12:40 - 2013-09-04 12:33 - 00253404 ____N C:\bdr-ld01
2013-09-04 12:40 - 2013-09-04 12:33 - 00009216 ____N C:\bdr-ld01.mbr
2013-09-04 12:40 - 2013-09-04 12:31 - 00000000 ____D C:\ProgramData\Bitdefender
2013-09-04 12:33 - 2013-09-04 12:33 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Bitdefender
2013-09-04 12:31 - 2013-09-04 12:31 - 00000000 ____D C:\Program Files\Bitdefender
2013-09-04 12:31 - 2013-09-04 12:30 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2013-09-04 12:30 - 2013-09-04 12:30 - 05701712 _____ C:\Users\Peter\Downloads\bitdefender_14isecurity.exe
2013-09-04 12:30 - 2013-09-04 12:30 - 00000000 ____D C:\Users\Peter\AppData\Roaming\QuickScan
2013-09-04 12:30 - 2013-09-04 12:26 - 00000000 ____D C:\Users\Peter\AppData\Roaming\FileZilla
2013-09-04 10:51 - 2013-09-04 10:51 - 00000000 ____D C:\Windows\ERUNT
2013-09-04 10:47 - 2013-09-04 10:45 - 00000000 ____D C:\AdwCleaner
2013-09-04 10:35 - 2013-09-04 10:35 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Malwarebytes
2013-09-04 10:35 - 2013-09-04 10:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-04 10:35 - 2013-09-04 10:35 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-04 10:34 - 2013-09-04 10:34 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Peter\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-04 08:58 - 2013-09-04 08:58 - 00000472 _____ C:\Users\Peter\Downloads\defogger_disable.log
2013-09-04 08:58 - 2013-09-04 08:58 - 00000000 _____ C:\Users\Peter\defogger_reenable
2013-09-04 08:48 - 2013-09-04 08:47 - 00056741 _____ C:\Users\Peter\Downloads\Addition.txt
2013-09-04 08:45 - 2013-09-04 08:45 - 00000000 ____D C:\FRST
2013-09-04 07:24 - 2013-05-22 16:23 - 00000000 ___RD C:\Users\Peter\Documents\UDC Output Files
2013-09-04 07:11 - 2013-09-03 18:59 - 95812354 _____ C:\Windows\SysWOW64\박鑕Lĕ
2013-09-03 12:59 - 2013-08-19 10:34 - 00132088 ____N (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-03 12:59 - 2013-08-19 10:34 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-03 12:59 - 2013-08-19 10:34 - 00082136 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-02 19:15 - 2013-09-02 19:15 - 00000988 ____N C:\Users\Public\Desktop\Winamp.lnk
2013-09-02 19:15 - 2013-09-02 19:14 - 00000000 ____D C:\Program Files (x86)\Winamp
2013-09-02 19:14 - 2013-09-02 19:14 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
2013-09-02 19:14 - 2013-09-02 19:14 - 00000000 ____D C:\Program Files (x86)\Winamp Detect
2013-09-02 07:11 - 2013-07-29 07:24 - 00000078 _____ C:\Users\Peter\AppData\Roaming\WB.CFG
2013-09-02 07:11 - 2013-06-20 07:24 - 00000005 _____ C:\Users\Peter\AppData\Roaming\WBPU-TTL.DAT
2013-08-27 11:53 - 2013-01-17 14:48 - 00000000 ____D C:\Users\Peter\AppData\Local\Google
Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-19 09:41
==================== End Of Log ============================
--- --- ---
--- --- ---
Addition Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-09-2013
Ran by Peter at 2013-09-25 09:07:11
Running from C:\Users\Peter\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: Bitdefender Antivirus (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}
FW: Bitdefender Firewall (Enabled) {A364D236-8096-DCCF-EF3F-4E4DBCD170CF}
==================== Installed Programs ======================
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe Acrobat 9 Pro Extended - English, Français, Deutsch (x32 Version: 9.5.5)
Adobe Acrobat 9 Pro Extended 64-bit Add-On (Version: 9.0.0)
Adobe Acrobat 9.5.5 - CPSID_83708 (x32)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168)
Apple Application Support (x32 Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
ASUS Instant Connect (x32 Version: 1.2.8)
ASUS InstantOn (x32 Version: 3.0.4)
ASUS LifeFrame3 (x32 Version: 3.1.9)
ASUS Live Update (x32 Version: 3.1.9)
ASUS Power4Gear Hybrid (Version: 2.0.4)
ASUS Product Demo Movie (x32 Version: 1.0.3)
ASUS Smart Gesture (x32 Version: 1.0.35)
ASUS Splendid Video Enhancement Technology (x32 Version: 1.03.0005)
ASUS Tutor (x32 Version: 1.0.7)
ASUS USB Charger Plus (x32 Version: 2.1.5)
ASUS WebStorage Sync Agent (x32 Version: 1.1.9.120)
ASUSDVD (x32 Version: 10.0.4126.52)
ATK Package (x32 Version: 1.0.0023)
Bitdefender Internet Security (Version: 17.15.0.682)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 3.26)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Dropbox (HKCU Version: 2.2.13)
Google Chrome (x32 Version: 29.0.1547.76)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4413.1752)
Google Update Helper (x32 Version: 1.3.21.153)
HP Designjet 30-130 Printer Series (x32)
HP ICC Profiles_x64 (Version: 2.0.0)
HP Systemwartung für HP Designjet 30 130 series (x32)
HP Webregistrierung (x32 Version: 1.0.0.0)
iCloud (Version: 2.1.2.8)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252)
Intel(R) Processor Graphics (x32 Version: 9.17.10.2843)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
iTunes (Version: 11.0.5.5)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Microsoft Access 2002 Runtime (x32 Version: 10.0.6626.0)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Home and Business 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Visio 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Visio MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visio Standard 2010 (x32 Version: 14.0.7015.1000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mindjet MindManager Pro 6 (x32 Version: 6.2.399)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
NVIDIA Grafiktreiber 311.44 (Version: 311.44)
NVIDIA Install Application (Version: 2.1002.109.706)
NVIDIA Optimus 1.11.3 (Version: 1.11.3)
NVIDIA PhysX (x32 Version: 9.12.0613)
NVIDIA PhysX System Software 9.12.0613 (Version: 9.12.0613)
NVIDIA Systemsteuerung 311.44 (Version: 311.44)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.210)
Qualcomm Atheros Client Installation Program (x32 Version: 10.0)
Realtek Ethernet Controller Driver (x32 Version: 8.3.730.2012)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6657)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.8400.30136)
Revo Uninstaller 1.95 (x32 Version: 1.95)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Shared C Run-time for x64 (Version: 10.0.0)
Start+ (x32)
Sweet Home 3D version 4.1 (x32)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553157) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589370) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760758) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Zip Opener (HKCU)
ViCon Update (x32 Version: 3.0.1455)
ViFlow 4.5 / ViFlow Reporter 4.5 (x32 Version: 4.5.22.0000)
ViFlow WebModel Viewer 2 (x32 Version: 2.0.1011)
Winamp (x32 Version: 5.65 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows-Treiberpaket - ASUS (ATP) Mouse (10/29/2012 1.0.0.148) (Version: 10/29/2012 1.0.0.148)
WinFlash (x32 Version: 2.41.1)
Zip Opener Packages 56 (HKCU)
==================== Restore Points =========================
11-09-2013 10:01:37 ViCon Update Library
14-09-2013 12:17:20 Windows Update
23-09-2013 08:34:45 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {004B5519-FF38-4421-8713-6041E24EBCA6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-12-19] (Piriform Ltd)
Task: {0C21B237-0606-421B-B44D-1693BBDB3CC9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-11] (Adobe Systems Incorporated)
Task: {236E020C-8CB0-4620-84FB-B848CE94B733} - \DealPly No Task File
Task: {3A3A2AE9-ACCA-491B-99FC-32566820B6EF} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2012-10-31] (AsusTek)
Task: {45C3EC17-A383-4768-A189-DEF77285F43F} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe [2012-08-15] (Microsoft Corporation)
Task: {4C66245B-3D54-4EB2-9756-BEC3F31386DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-17] (Google Inc.)
Task: {4F116C39-2404-4186-9CF8-1D7FD139836D} - \DSite No Task File
Task: {669BC4C6-37CF-4D00-8D76-E67B2DA35E79} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {821C19BB-356C-4C73-BF31-AA3FB7AEC513} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {8A29BB74-DB07-4A84-8DCA-9A0E01A90EEB} - \QtraxPlayer No Task File
Task: {8D55A10C-7B42-4DA6-B16E-50E2025EE985} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2012-09-20] (Microsoft Corporation)
Task: {9A08ADB7-9CB6-4ED5-87BC-1EB1619151A6} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {A81298A3-9D49-429A-817A-278FB5798A66} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-17] (Google Inc.)
Task: {CB804B98-0FA1-40CD-A42B-D84B24847FE5} - System32\Tasks\Bitdefender Auto-Scan => C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe [2013-06-19] (Bitdefender)
Task: {D8FBB61A-04B3-4742-A34A-8548F2F0FACB} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.)
Task: {DC6767E5-0997-4388-B0B8-293FBB2AD7B4} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {F616B911-98E5-4F39-A549-1AE5494A9522} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?
==================== Loaded Modules (whitelisted) =============
2012-08-24 19:26 - 2012-08-24 19:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2012-11-14 18:01 - 2013-04-08 13:32 - 02833232 _____ (NVIDIA Corporation) C:\Windows\SYSTEM32\nvapi64.dll
2013-01-16 10:29 - 2013-01-16 10:32 - 00175008 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2012-10-10 11:38 - 2012-08-31 04:35 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc
2012-09-29 21:02 - 2012-09-29 21:02 - 00010880 _____ (Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\ExtensionToolkit.dll
2012-09-29 21:02 - 2012-09-29 21:02 - 00034944 _____ (Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.Infrastructure.dll
2012-09-29 21:02 - 2012-09-29 21:02 - 00114304 _____ (Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\CommApiInterop.dll
2012-09-29 21:02 - 2012-09-29 21:02 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-09-29 21:02 - 2012-09-29 21:02 - 00042112 _____ (Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.Toolkit.dll
2012-11-14 18:01 - 2013-04-08 13:32 - 01107440 _____ (NVIDIA Corporation) C:\Windows\SYSTEM32\nvumdshimx.dll
2012-11-14 18:01 - 2013-04-08 13:32 - 00245872 ____N (NVIDIA Corporation) C:\Windows\SYSTEM32\nvinitx.dll
2012-09-29 20:57 - 2012-09-29 20:57 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2012-09-29 20:59 - 2012-09-29 20:59 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-09-04 12:40 - 2013-06-19 12:45 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2013-09-04 12:39 - 2013-04-18 16:54 - 03359248 _____ (Terra Informatica Software, Inc., British Columbia, Canada.) C:\Program Files\Bitdefender\Bitdefender\htmlayout.dll
2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 ____N () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-09-04 12:39 - 2013-06-19 12:44 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2013-09-04 12:39 - 2013-04-18 16:49 - 02349288 _____ (Terra Informatica Software, Inc., British Columbia, Canada.) C:\Program Files\Bitdefender\Bitdefender\antispam32\htmlayout.dll
2006-12-14 01:21 - 2006-12-14 01:21 - 00106496 ____N (Mindjet) C:\Program Files (x86)\Mindjet\MindManager 6\Mm5OutlookMapMinderLinker.dll
2006-12-14 00:55 - 2006-12-14 00:55 - 01146880 ____R (Mindjet) C:\Program Files (x86)\Mindjet\MindManager 6\MmUtilities.dll
2006-12-14 00:55 - 2006-12-14 00:55 - 00208896 ____R (Mindjet) C:\Program Files (x86)\Mindjet\MindManager 6\MmServiceUtilities.dll
2005-03-16 15:34 - 2005-03-16 15:34 - 00110592 ____R () C:\Program Files (x86)\Mindjet\MindManager 6\zlib.dll
2006-12-14 00:52 - 2006-12-14 00:52 - 02301952 ____R (BCGSoft Ltd / Mindjet LLC) C:\Program Files (x86)\Mindjet\MindManager 6\BCGCBPRO730u.dll
2006-12-14 01:21 - 2006-12-14 01:21 - 00004608 ____R (Mindjet) C:\Program Files (x86)\Mindjet\MindManager 6\Mm5OutlookMapMinderLinkerGerman.dll
2006-12-14 01:21 - 2006-12-14 01:21 - 00380928 ____N (Mindjet) C:\Program Files (x86)\Mindjet\MindManager 6\Mm6OutlookLinker.dll
2006-12-14 01:20 - 2006-12-14 01:20 - 00016896 ____R (Mindjet) C:\Program Files (x86)\Mindjet\MindManager 6\Mm6OutlookLinkerGerman.dll
2013-02-14 15:46 - 2013-02-14 15:46 - 01044048 ____N () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
2012-09-11 16:01 - 2012-09-11 16:01 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-09-11 16:01 - 2012-09-11 16:01 - 01595392 _____ (TODO: <Company name>) C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 00053648 _____ (Open Source Software community project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 ____N () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-11-14 01:32 - 2012-11-14 01:32 - 03558400 ____N (wxWidgets development team) C:\Users\Peter\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
2013-03-13 22:48 - 2013-03-13 22:48 - 24978944 _____ () C:\Users\Peter\AppData\Roaming\Dropbox\bin\libcef.dll
2013-03-13 22:48 - 2013-03-13 22:48 - 09956864 _____ (The ICU Project) C:\Users\Peter\AppData\Roaming\Dropbox\bin\icudt.dll
2013-09-11 12:02 - 2013-09-11 12:02 - 00054544 _____ (ViCon GmbH) C:\Windows\assembly\GAC_32\ViCon.Common\1.0.1455.20717__6a82cca778164983\ViCon.Common.dll
2013-09-11 12:02 - 2013-09-11 12:02 - 00126976 _____ (ViCon GmbH) C:\Users\Peter\AppData\Local\Temp\UpdateClient_cache\UpdateClient, Version=3.0.1455.4506, Culture=neutral, PublicKeyToken=6a82cca778164983\assembly\dl3\319fdb1a\00eb7538_c79cce01\UpdateClient.resources.DLL
2013-09-11 12:02 - 2013-09-11 12:02 - 00058128 _____ (ViCon GmbH) C:\Users\Peter\AppData\Local\Temp\UpdateClient_cache\UpdateClient, Version=3.0.1455.4506, Culture=neutral, PublicKeyToken=6a82cca778164983\assembly\dl3\815d22c1\0064e234_c79cce01\ViCon.Update.DLL
2013-06-18 07:02 - 2009-02-27 17:39 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.deu
2013-09-23 07:21 - 2013-09-17 05:20 - 00709584 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\libglesv2.dll
2013-09-23 07:21 - 2013-09-17 05:20 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\libegl.dll
2013-09-23 07:21 - 2013-09-17 05:21 - 04053456 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll
2013-09-23 07:21 - 2013-09-17 05:21 - 00410576 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll
2013-09-23 07:21 - 2013-09-17 05:20 - 01604560 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Peter\Desktop\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Peter\Downloads\Dropbox_2.2.13.exe:BDU
AlternateDataStreams: C:\Users\Peter\Downloads\esetsmartinstaller_enu.exe:BDU
AlternateDataStreams: C:\Users\Peter\Downloads\SoftonicDownloader_fuer_sweet-home-3d.exe:BDU
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/25/2013 09:09:26 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
Error: (09/25/2013 09:00:45 AM) (Source: Application Hang) (User: )
Description: Programm Explorer.EXE, Version 6.2.9200.16628 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 9ec
Startzeit: 01ceb9acb1d583a8
Endzeit: 16
Anwendungspfad: C:\Windows\Explorer.EXE
Berichts-ID: 1043d84d-25b0-11e3-bec6-50465dd0d0fb
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/25/2013 08:47:33 AM) (Source: Application Hang) (User: )
Description: Programm FRST64.exe, Version 3.3.8.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ff4
Startzeit: 01ceb9b8c4c36216
Endzeit: 110
Anwendungspfad: C:\Users\Peter\Desktop\FRST64.exe
Berichts-ID: 56552c89-25ae-11e3-bec6-50465dd0d0fb
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/22/2013 02:11:11 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
Error: (09/22/2013 02:07:19 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
Error: (09/22/2013 01:33:32 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
Error: (09/22/2013 01:32:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 29661578
Error: (09/22/2013 01:32:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 29661578
Error: (09/22/2013 01:32:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/22/2013 05:18:24 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1109
System errors:
=============
Error: (09/25/2013 08:10:56 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 10. Der Windows-SChannel-Fehlerstatus lautet: 10.
Error: (09/25/2013 07:06:18 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 10. Der Windows-SChannel-Fehlerstatus lautet: 10.
Error: (09/25/2013 07:03:14 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst VSSERV erreicht.
Error: (09/25/2013 07:02:44 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst Gruppenrichtlinienclient konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
Error: (09/25/2013 07:02:12 AM) (Source: DCOM) (User: nb-pobermayer)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (09/24/2013 04:49:43 PM) (Source: DCOM) (User: nb-pobermayer)
Description: C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {9BA05972-F6A8-11CF-A442-00A0C90A8F39} -Embedding5{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Nicht verfügbarNicht verfügbar
Error: (09/24/2013 04:35:05 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 10. Der Windows-SChannel-Fehlerstatus lautet: 10.
Error: (09/24/2013 03:31:27 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 10. Der Windows-SChannel-Fehlerstatus lautet: 10.
Error: (09/24/2013 02:27:49 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 10. Der Windows-SChannel-Fehlerstatus lautet: 10.
Error: (09/24/2013 01:23:11 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 10. Der Windows-SChannel-Fehlerstatus lautet: 10.
Microsoft Office Sessions:
=========================
Error: (09/25/2013 09:09:26 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\Adobe\Acrobat 9.0\Designer 8.2\FormDesigner.exe
Error: (09/25/2013 09:00:45 AM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.2.9200.166289ec01ceb9acb1d583a816C:\Windows\Explorer.EXE1043d84d-25b0-11e3-bec6-50465dd0d0fb
Error: (09/25/2013 08:47:33 AM) (Source: Application Hang)(User: )
Description: FRST64.exe3.3.8.1ff401ceb9b8c4c36216110C:\Users\Peter\Desktop\FRST64.exe56552c89-25ae-11e3-bec6-50465dd0d0fb
Error: (09/22/2013 02:11:11 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\Adobe\Acrobat 9.0\Designer 8.2\FormDesigner.exe
Error: (09/22/2013 02:07:19 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\Adobe\Acrobat 9.0\Designer 8.2\FormDesigner.exe
Error: (09/22/2013 01:33:32 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\Adobe\Acrobat 9.0\Designer 8.2\FormDesigner.exe
Error: (09/22/2013 01:32:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 29661578
Error: (09/22/2013 01:32:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 29661578
Error: (09/22/2013 01:32:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/22/2013 05:18:24 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1109
CodeIntegrity Errors:
===================================
Date: 2013-01-24 09:16:23.875
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 09:15:11.121
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 08:56:30.356
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 08:51:15.366
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 08:41:30.454
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 08:32:22.227
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 08:13:26.637
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 07:44:30.076
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 07:37:35.904
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-24 07:16:14.169
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 28%
Total physical RAM: 8069.54 MB
Available physical RAM: 5731.8 MB
Total Pagefile: 9285.54 MB
Available Pagefile: 6410.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (WIN-8) (Fixed) (Total:279.45 GB) (Free:213.09 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATEN) (Fixed) (Total:398.17 GB) (Free:344.05 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 699 GB) (Disk ID: 4AD209D2)
Partition: GPT Partition Type
==================== End Of Log ============================
Gruß |
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
SecurityCheck und:
