Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   PC fährt nicht immer hoch, weißer Bildschirm (https://www.trojaner-board.de/143718-pc-faehrt-immer-hoch-weisser-bildschirm.html)

Christian480 28.10.2013 16:06
PC fährt nicht immer hoch, weißer Bildschirm
 
Hallo liebe Helfer,

ich habe den Tipp von meiner Freundin bekommen, hier mal nach Hilfe zu fragen. Und zwr geht es um ein älteres Notebook, welches ich übergangsweise fit bekommen möchte. Es war längere Zeit nicht im Dienst und ich habe es heute versucht fit zu bekommen. ls ds Notebook noch ktiv genutzt wure gb es uch desöfteren einen Bluescreen. :(

Habe heute avira und Co aktualisiert und nen Scan mit Malewarebytes und adw cleaner gemacht.(Wurde uch einiges gefunden) Es funktionierte auch alles soweit. Nur beim Neustart ist das Notebook nicht mehr richtig hochgefahren. Bzw. dauerte es ewig bis der weiße Bildschirm verschwand.

Nun meine Bitte, könnte sich das mal jemand anschauen? Das wäre toll. Ich füge schon mal die Logs ein, die ich habe.

Vielen Dank schon mal!

schrauber 28.10.2013 16:07
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Christian480 28.10.2013 16:12
Code:
# AdwCleaner v3.010 - Bericht erstellt am 28/10/2013 um 14:19:28
# Updated 20/10/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Basic Service Pack 1 (32 bits)
# Benutzername : Katrin - KATRIN-PC
# Gestartet von : C:\Users\Katrin\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\ICQ\ICQToolbar
Ordner Gelöscht : C:\ProgramData\Partner
Ordner Gelöscht : C:\Program Files\ICQ6Toolbar
Ordner Gelöscht : C:\Program Files\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Users\Katrin\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\ICQToolbarData
Ordner Gelöscht : C:\Program Files\Mozilla Firefox\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Ordner Gelöscht : C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Datei Gelöscht : C:\Program Files\Mozilla Firefox\.autoreg
Datei Gelöscht : C:\Program Files\Mozilla Firefox\Components\AskSearch.js
Datei Gelöscht : C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\searchplugins\Ask.xml
Datei Gelöscht : C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\searchplugins\Conduit.xml
Datei Gelöscht : C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\searchplugins\icqplugin.xml

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}]
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\pdfforge.org
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\AskBarDis
Schlüssel Gelöscht : HKLM\Software\ICQ\ICQToolbar
Schlüssel Gelöscht : HKLM\Software\pdfforge.org

***** [ Browser ] *****

-\\ Internet Explorer v7.0.6001.18602

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v3.6.16 (de)

[ Datei : C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\prefs.js ]

Zeile gelöscht : user_pref("browser.search.defaultthis.engineName", "Elf 1.13 Customized Web Search");
Zeile gelöscht : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2857573&SearchSource=3&q={searchTerms}");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Elf 1.13 Customized Web Search");
Zeile gelöscht : user_pref("icqtoolbar.allowSendURL", false);
Zeile gelöscht : user_pref("icqtoolbar.engineVerified", false);
Zeile gelöscht : user_pref("icqtoolbar.hiddenElements", "itb_options");
Zeile gelöscht : user_pref("icqtoolbar.history", "youtube");
Zeile gelöscht : user_pref("icqtoolbar.installsource", "1");
Zeile gelöscht : user_pref("icqtoolbar.numberOfSearches", 0);
Zeile gelöscht : user_pref("icqtoolbar.skip_default_search", "no");
Zeile gelöscht : user_pref("icqtoolbar.suggestions", false);
Zeile gelöscht : user_pref("icqtoolbar.uniqueID", "123616511312361651131236255709808");
Zeile gelöscht : user_pref("icqtoolbar.usageStatstTimestamp", 1236255743);
Zeile gelöscht : user_pref("icqtoolbar.version", "1.1.4");
Zeile gelöscht : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Zeile gelöscht : user_pref("icqtoolbar.xmlLanguage", "de");
Zeile gelöscht : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q=");

*************************

AdwCleaner[R0].txt - [6315 octets] - [28/10/2013 14:18:04]
AdwCleaner[S0].txt - [6191 octets] - [28/10/2013 14:19:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6251 octets] ##########
Code:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.28.05

Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 7.0.6001.18000
Katrin :: KATRIN-PC [Administrator]

28.10.2013 15:21:34
mbam-log-2013-10-28 (15-21-34).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 199319
Laufzeit: 15 Minute(n), 3 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 4
C:\Users\Katrin\Downloads\cubisdownload(2).exe (PUP.Downloader.ZYL) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Katrin\Downloads\cubisdownload(3).exe (PUP.Downloader.ZYL) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Katrin\Downloads\cubisdownload(4).exe (PUP.Downloader.ZYL) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Katrin\Downloads\cubisdownload.exe (PUP.Downloader.ZYL) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-10-2013
Ran by Katrin (administrator) on KATRIN-PC on 28-10-2013 15:46:49
Running from C:\Users\Katrin\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Egis Incorporated) C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
(Acer Inc.) C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
(Acer Inc.) C:\Acer\Empowering Technology\eNet\eNet Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Acer\Mobility Center\MobilityService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Conexant Systems, Inc.) C:\Windows\system32\DRIVERS\xaudio.exe
(Acer Inc.) C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
() C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
(acer) C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Geek Software GmbH) C:\Program Files\pdf24\pdf24.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [eRecoveryService] - [x]
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [PDFPrint] - C:\Program Files\pdf24\pdf24.exe [204680 2010-09-06] (Geek Software GmbH)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [421160 2010-09-24] (Apple Inc.)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [47904 2010-09-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - D:\Program Files\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-10] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - "C:\Users\Katrin\AppData\Local\Akamai\netsession_win.exe"
MountPoints2: F - F:\StartVMCLite.exe
MountPoints2: {b3066f7c-fa8b-11dd-b1cb-954bbe00f696} - F:\StartVMCLite.exe
MountPoints2: {b3066f8f-fa8b-11dd-b1cb-be21a9383141} - F:\StartVMCLite.exe
MountPoints2: {c3d91f61-c6e4-11dd-966f-000000000000} - F:\StartVMCLite.exe
MountPoints2: {c3d91f69-c6e4-11dd-966f-000000000000} - F:\StartVMCLite.exe
MountPoints2: {cd000468-9ec7-11de-9eb1-ad9dbe2ddfec} - G:\LaunchU3.exe -a
MountPoints2: {eebff00e-f865-11dd-8e9a-f5ae80772354} - F:\StartVMCLite.exe
MountPoints2: {eebff013-f865-11dd-8e9a-f5ae80772354} - F:\StartVMCLite.exe
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default\...\RunOnce: [AcerScrSav] - C:\Windows\ACER\run_NB.exe [ 2007-08-21] ()
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\RunOnce: [AcerScrSav] - C:\Windows\ACER\run_NB.exe [ 2007-08-21] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vb32&d=0908&m=extensa_5220
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {547EEAAC-3665-4e6c-B326-C622D698543A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=ASHTDF
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (HiTRUST)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: fluxhttp\0x00000007 - {8E2D00A0-82C6-4821-90BC-07F290841BB6} - C:\Program Files\Common Files\fluxDVD\Lib\XEB\xebnavigation.ax ()
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 34 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default
FF DefaultSearchEngine: ICQ Search
FF SearchEngineOrder.1: Ask
FF Homepage: hxxp://google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @unity3d.com/UnityPlayer - C:\Program Files\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: CrystalFox Qute - C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\Extensions\CrystalFox_Qute@BigRedBrent
FF Extension: Move Media Player - C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\Extensions\moveplayer@movenetworks.com
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 eDataSecurity Service; C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [506416 2008-01-03] (Egis Incorporated)
R2 eLockService; C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe [24576 2007-10-01] (Acer Inc.)
R2 eNet Service; C:\Acer\Empowering Technology\eNet\eNet Service.exe [131072 2007-12-20] (Acer Inc.)
R2 eRecoveryService; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [57344 2007-09-10] (Acer Inc.)
R2 eSettingsService; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [24576 2007-12-19] ()
R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-11-27] ()
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 WMIService; C:\Acer\Empowering Technology\ePower\ePowerSvc.exe [167936 2007-09-20] (acer)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 int15; C:\Windows\system32\drivers\int15.sys [15392 2007-11-30] (Acer, Inc.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-10-10] (Avira GmbH)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S0 ecxc; System32\drivers\akxjddmw.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-28 15:46 - 2013-10-28 15:46 - 00000000 ____D C:\FRST
2013-10-28 15:20 - 2013-10-28 15:20 - 00000910 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-28 15:20 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-28 15:19 - 2013-10-28 15:19 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Katrin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-28 15:18 - 2013-10-28 15:18 - 01089183 _____ (Farbar) C:\Users\Katrin\Desktop\FRST.exe
2013-10-28 15:15 - 2013-10-28 15:15 - 00000000 ____D C:\ProgramData\Oracle
2013-10-28 15:10 - 2013-10-28 15:10 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-28 15:10 - 2013-10-28 15:09 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-28 15:10 - 2013-10-28 15:09 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-28 15:10 - 2013-10-28 15:09 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-28 15:10 - 2013-10-28 15:09 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-28 15:06 - 2013-10-28 15:06 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Avira
2013-10-28 14:58 - 2013-10-28 14:58 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-28 14:58 - 2013-10-10 19:14 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-10-28 14:57 - 2013-10-28 14:58 - 00000000 ____D C:\ProgramData\Avira
2013-10-28 14:57 - 2013-10-28 14:57 - 00000000 ____D C:\Program Files\Avira
2013-10-28 14:48 - 2013-10-28 14:51 - 123853152 _____ C:\Users\Katrin\Desktop\avira_free_antivirus_de.exe
2013-10-28 14:18 - 2013-10-28 14:19 - 00000000 ____D C:\AdwCleaner
2013-10-28 14:14 - 2013-10-28 14:14 - 01060070 _____ C:\Users\Katrin\Desktop\adwcleaner.exe

==================== One Month Modified Files and Folders =======

2013-10-28 15:47 - 2008-09-18 17:53 - 01991524 _____ C:\Windows\WindowsUpdate.log
2013-10-28 15:46 - 2013-10-28 15:46 - 00000000 ____D C:\FRST
2013-10-28 15:42 - 2008-01-21 04:02 - 14643344 _____ C:\Windows\PFRO.log
2013-10-28 15:42 - 2006-11-02 13:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-28 15:42 - 2006-11-02 13:45 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-28 15:42 - 2006-11-02 13:45 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-28 15:39 - 2008-09-19 02:37 - 00000000 ____D C:\Windows\Lan
2013-10-28 15:38 - 2006-11-02 13:58 - 00032538 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-28 15:20 - 2013-10-28 15:20 - 00000910 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-28 15:19 - 2013-10-28 15:19 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Katrin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-28 15:18 - 2013-10-28 15:18 - 01089183 _____ (Farbar) C:\Users\Katrin\Desktop\FRST.exe
2013-10-28 15:15 - 2013-10-28 15:15 - 00000000 ____D C:\ProgramData\Oracle
2013-10-28 15:15 - 2008-12-21 19:21 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-28 15:10 - 2013-10-28 15:10 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-28 15:09 - 2013-10-28 15:10 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-28 15:09 - 2013-10-28 15:10 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-28 15:09 - 2013-10-28 15:10 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-28 15:09 - 2013-10-28 15:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-28 15:09 - 2008-12-11 09:16 - 00000000 ____D C:\Program Files\Java
2013-10-28 15:06 - 2013-10-28 15:06 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Avira
2013-10-28 15:02 - 2006-11-02 11:33 - 01612090 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-28 14:58 - 2013-10-28 14:58 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-28 14:58 - 2013-10-28 14:57 - 00000000 ____D C:\ProgramData\Avira
2013-10-28 14:57 - 2013-10-28 14:57 - 00000000 ____D C:\Program Files\Avira
2013-10-28 14:51 - 2013-10-28 14:48 - 123853152 _____ C:\Users\Katrin\Desktop\avira_free_antivirus_de.exe
2013-10-28 14:30 - 2011-01-13 14:14 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy
2013-10-28 14:29 - 2012-01-29 08:47 - 00000000 ____D C:\Users\Katrin\AppData\Local\Akamai
2013-10-28 14:26 - 2011-01-13 14:14 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-28 14:26 - 2010-04-25 08:08 - 00000000 ____D C:\Program Files\PokerStars
2013-10-28 14:26 - 2009-01-03 21:29 - 00000000 ____D C:\Program Files\PokerStars.NET
2013-10-28 14:19 - 2013-10-28 14:18 - 00000000 ____D C:\AdwCleaner
2013-10-28 14:19 - 2011-02-13 14:37 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-10-28 14:19 - 2009-03-05 13:20 - 00000000 ____D C:\ProgramData\ICQ
2013-10-28 14:16 - 2011-02-13 14:38 - 00000000 ____D C:\Users\Katrin\Documents\DVDVideoSoft
2013-10-28 14:14 - 2013-10-28 14:14 - 01060070 _____ C:\Users\Katrin\Desktop\adwcleaner.exe
2013-10-10 19:14 - 2013-10-28 14:58 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys

Files to move or delete:
====================
C:\Users\Katrin\AppData\Roaming\desktop.ini


Some content of TEMP:
====================
C:\Users\Katrin\AppData\Local\Temp\AskSLib.dll
C:\Users\Katrin\AppData\Local\Temp\avgnt.exe
C:\Users\Katrin\AppData\Local\Temp\First15.exe
C:\Users\Katrin\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Katrin\AppData\Local\Temp\pdf24-creator-update.exe
C:\Users\Katrin\AppData\Local\Temp\Quarantine.exe
C:\Users\Katrin\AppData\Local\Temp\VP6Install.exe
C:\Users\Katrin\AppData\Local\Temp\VP6VFW.dll
C:\Users\Katrin\AppData\Local\Temp\_unps.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-28 15:49

==================== End Of Log ============================
--- --- ---

--- --- ---


Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 28-10-2013
Ran by Katrin at 2013-10-28 15:48:38
Running from C:\Users\Katrin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Acer eDataSecurity Management (Version: 2.8.4354)
Acer eLock Management (Version: 2.5.4302)
Acer Empowering Technology (Version: 2.5.4301)
Acer eNet Management (Version: 2.6.4303)
Acer ePower Management (Version: 2.5.4310)
Acer ePresentation Management (Version: 2.5.4300)
Acer eSettings Management (Version: 2.5.4302)
Acer GridVista (Version: 2.72.317)
Acer Mobility Center Plug-In (Version: 1.0.4301)
Acer ScreenSaver (Version: 2.11.20071207)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 10 ActiveX (Version: 10.1.85.3)
Adobe Flash Player 10 Plugin (Version: 10.2.153.1)
Adobe Reader 9.3.2 - Deutsch (Version: 9.3.2)
Apple Application Support (Version: 1.4.1)
Apple Mobile Device Support (Version: 3.2.0.47)
Apple Software Update (Version: 2.1.1.116)
Ashampoo Photo Commander 6.20 (Version: 6.2.0)
Audacity 1.2.6
Avira Free Antivirus (Version: 14.0.0.411)
Bonjour (Version: 2.0.3.0)
Broadcom Gigabit Integrated Controller (Version: 10.50.08)
BurnAware Free 2.3.1
Business Contact Manager für Outlook 2007 SP2 (Version: 3.0.8619.1)
DHTML Editing Component (Version: 6.02.0001)
ElsterFormular  (Version: 11.1.2.3848)
ElsterFormular für Privatanwender (Version: 12.0.0.5880p)
FastImageResizer (remove only)
FastStone Image Viewer 4.0 (Version: 4.0)
Free Audio CD Burner version 1.4.7
Free YouTube Download version 2.10.32.305
Free YouTube to MP3 Converter version 3.9.33
FreePDF XP (Remove only)
GPL Ghostscript 8.63
HDAUDIO Soft Data Fax Modem with SmartCP
Intel(R) Graphics Media Accelerator Driver
Intel(R) Matrix Storage Manager
iPhone-Konfigurationsprogramm (Version: 2.1.0.163)
iTunes (Version: 10.0.1.22)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Launch Manager
LightScribe  1.4.142.1 (Version: 1.4.142.1)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
McAfee Security Scan Plus (Version: 2.0.181.2)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 German Language Pack (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2003 Web Components (Version: 11.0.8003.0)
Microsoft Office Small Business Connectivity Components (Version: 2.0.7024.0)
Microsoft Office XP Standard für Schüler, Studierende und Lehrkräfte (Version: 10.0.6626.0)
Microsoft Silverlight (Version: 4.0.60310.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MobileMe Control Panel (Version: 3.1.3.0)
Mozilla Firefox (3.6.16) (Version: 3.6.16 (de))
Nokia Connectivity Cable Driver (Version: 6.80.5.1)
NTI Backup NOW! 4.7 (Version: 1.00.0000)
NTI CD & DVD-Maker (Version: 7)
NTI Shadow (Version: 3.7.6.37)
OpenAL
PDF24 Creator 2.8.5
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.5543)
RedMon - Redirection Port Monitor
Safari (Version: 4.31.9.1)
Synaptics Pointing Device Driver (Version: 10.0.15.0)
Texas Instruments PCIxx21/x515/xx12 drivers. (Version: 2.00.0002)
TIPCI (Version: 2.00.0002)
T-Online WLAN-Access Finder
Unity Web Player (Version: 2.5.1f5_24931)
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (Version: 9.00.5000.00)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver

==================== Restore Points  =========================

26-04-2011 04:55:07 Windows Update
27-04-2011 06:30:04 Windows Update
27-04-2011 07:02:57 Windows Update
28-04-2011 04:30:52 Windows Update
29-04-2011 07:18:56 Windows Update
29-04-2011 07:27:23 Windows Update
02-05-2011 15:12:14 Windows Update
29-01-2012 07:49:53 Windows Update
28-10-2013 14:03:25 Removed Java(TM) 6 Update 20
28-10-2013 14:08:41 Installed Java 7 Update 45

==================== Hosts content: ==========================

2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1      localhost
::1            localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {18DFD9FC-082E-4E9B-8285-5F21D2B4EDAE} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {5916F864-469C-4391-8604-E4EA141A2699} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\System32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {7C5A51E8-1AD7-48C6-8879-257A8A9609F5} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {8B0E6FAB-F43A-4988-AF0A-A21646C212F0} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {9ED703A9-5FFD-40D5-895A-4385EE1509DE} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\System32\RacAgent.exe [2008-01-21] (Microsoft Corporation)

==================== Loaded Modules (whitelisted) =============

2008-09-19 02:37 - 2007-08-20 21:10 - 00249856 _____ () C:\Windows\system32\igfxTMM.dll
2009-09-04 22:15 - 2009-09-04 22:15 - 00067872 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Katrin:zylomtest
AlternateDataStreams: C:\Users\Katrin:zylomtr{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVI1}
AlternateDataStreams: C:\Users\Katrin:zylomtr{08NHH4IA-GNRC-ULQQ-VTKC-29AOGI1G4T2C}
AlternateDataStreams: C:\ProgramData\TEMP:3BE54C3A

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: 6TO4 Adapter
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: 6TO4 Adapter
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (10/28/2013 03:42:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 03:40:35 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 03:02:37 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 03:01:11 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:56:36 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:55:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 02:52:26 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:51:35 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:45:56 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:41:26 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.


System errors:
=============
Error: (10/28/2013 03:43:42 PM) (Source: Service Control Manager) (User: )
Description: ecxc

Error: (10/28/2013 03:42:52 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (10/28/2013 03:42:28 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (10/28/2013 03:40:36 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (10/28/2013 03:40:08 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (10/28/2013 02:55:39 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (10/28/2013 02:55:13 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (10/28/2013 02:31:52 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (10/28/2013 02:31:05 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (10/28/2013 02:23:38 PM) (Source: Service Control Manager) (User: )
Description: 30000Akamai


Microsoft Office Sessions:
=========================
Error: (10/28/2013 03:42:52 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 03:40:35 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 03:02:37 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 03:01:11 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:56:36 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:55:39 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 02:52:26 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:51:35 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:45:56 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.

Error: (10/28/2013 02:41:26 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.


CodeIntegrity Errors:
===================================
  Date: 2013-10-28 15:47:55.372
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:47:55.153
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:47:54.982
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:47:54.826
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:47:54.638
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:47:54.482
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:47:54.311
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:47:54.124
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:29:57.798
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-28 15:29:57.626
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info ===========================

Percentage of memory in use: 72%
Total physical RAM: 1013.68 MB
Available physical RAM: 279.81 MB
Total Pagefile: 2293.71 MB
Available Pagefile: 1221 MB
Total Virtual: 2047.88 MB
Available Virtual: 1905.48 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:51.01 GB) (Free:4.51 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:51.01 GB) (Free:50.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 112 GB) (Disk ID: 635CB510)
Partition 1: (Not Active) - (Size=10 GB) - (Type=27)
Partition 2: (Active) - (Size=51 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=51 GB) - (Type=07 NTFS)

==================== End Of Log ============================

schrauber 29.10.2013 09:22
Sieht doch gar nit schlimm aus.

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
C:\Users\Katrin\AppData\Roaming\desktop.ini

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.





ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

Christian480 31.10.2013 09:54
Hallo, hier schon mal die Fixlist.txt

Code:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 30-10-2013
Ran by Katrin at 2013-10-30 13:56:47 Run:1
Running from C:\Users\Katrin\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
C:\Users\Katrin\AppData\Roaming\desktop.ini


*****************

C:\Users\Katrin\AppData\Roaming\desktop.ini => Moved successfully.

==== End of Fixlog ====
Code:
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=ae3079e38a6ab4499e399c0122af58ab
# engine=15694
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-30 02:53:51
# local_time=2013-10-30 03:53:51 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.0.6001 NT Service Pack 1
# compatibility_mode=1799 16775165 100 95 11106 1715989 3827 0
# compatibility_mode=5892 16776574 100 100 79082690 220677603 0 0
# scanned=269573
# found=0
# cleaned=0
# scan_time=6504
Code:
Results of screen317's Security Check version 0.99.74 
 Windows Vista Service Pack 1 x86 (UAC is enabled) 
 Out of date service pack!!
 Internet Explorer 7 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Avira Desktop 
 Antivirus up to date!  (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware Version 1.75.0.1300 
 Java 7 Update 45 
 Java version out of Date!
 Adobe Flash Player 10 Flash Player out of Date!
  Adobe Flash Player        10.2.153.1 Flash Player out of Date! 
 Adobe Reader 9 Adobe Reader out of Date!
 Mozilla Firefox (3.6.16) Firefox out of Date! 
````````Process Check: objlist.exe by Laurent```````` 
 Avira Antivir avgnt.exe
 Avira Antivir avguard.exe
 Empowering Technology eSettings Service capuserv.exe
 Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 30-10-2013
Ran by Katrin (administrator) on KATRIN-PC on 30-10-2013 17:20:31
Running from C:\Users\Katrin\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Geek Software GmbH) C:\Program Files\pdf24\pdf24.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Egis Incorporated) C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
(Acer Inc.) C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
(Acer Inc.) C:\Acer\Empowering Technology\eNet\eNet Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Acer\Mobility Center\MobilityService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Conexant Systems, Inc.) C:\Windows\system32\DRIVERS\xaudio.exe
(Acer Inc.) C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
() C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
(acer) C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [eRecoveryService] - [x]
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [PDFPrint] - C:\Program Files\pdf24\pdf24.exe [204680 2010-09-06] (Geek Software GmbH)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [421160 2010-09-24] (Apple Inc.)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [47904 2010-09-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - D:\Program Files\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-10] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - "C:\Users\Katrin\AppData\Local\Akamai\netsession_win.exe"
MountPoints2: F - F:\StartVMCLite.exe
MountPoints2: {b3066f7c-fa8b-11dd-b1cb-954bbe00f696} - F:\StartVMCLite.exe
MountPoints2: {b3066f8f-fa8b-11dd-b1cb-be21a9383141} - F:\StartVMCLite.exe
MountPoints2: {c3d91f61-c6e4-11dd-966f-000000000000} - F:\StartVMCLite.exe
MountPoints2: {c3d91f69-c6e4-11dd-966f-000000000000} - F:\StartVMCLite.exe
MountPoints2: {cd000468-9ec7-11de-9eb1-ad9dbe2ddfec} - G:\LaunchU3.exe -a
MountPoints2: {eebff00e-f865-11dd-8e9a-f5ae80772354} - F:\StartVMCLite.exe
MountPoints2: {eebff013-f865-11dd-8e9a-f5ae80772354} - F:\StartVMCLite.exe
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default\...\RunOnce: [AcerScrSav] - C:\Windows\ACER\run_NB.exe [ 2007-08-21] ()
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\RunOnce: [AcerScrSav] - C:\Windows\ACER\run_NB.exe [ 2007-08-21] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vb32&d=0908&m=extensa_5220
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {547EEAAC-3665-4e6c-B326-C622D698543A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=ASHTDF
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (HiTRUST)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
Handler: fluxhttp\0x00000007 - {8E2D00A0-82C6-4821-90BC-07F290841BB6} - C:\Program Files\Common Files\fluxDVD\Lib\XEB\xebnavigation.ax ()
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 34 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default
FF DefaultSearchEngine: ICQ Search
FF SearchEngineOrder.1: Ask
FF Homepage: hxxp://google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @unity3d.com/UnityPlayer - C:\Program Files\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: CrystalFox Qute - C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\Extensions\CrystalFox_Qute@BigRedBrent
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\oi6u7p5g.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 eDataSecurity Service; C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [506416 2008-01-03] (Egis Incorporated)
R2 eLockService; C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe [24576 2007-10-01] (Acer Inc.)
R2 eNet Service; C:\Acer\Empowering Technology\eNet\eNet Service.exe [131072 2007-12-20] (Acer Inc.)
R2 eRecoveryService; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [57344 2007-09-10] (Acer Inc.)
R2 eSettingsService; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [24576 2007-12-19] ()
R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-11-27] ()
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 WMIService; C:\Acer\Empowering Technology\ePower\ePowerSvc.exe [167936 2007-09-20] (acer)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 int15; C:\Windows\system32\drivers\int15.sys [15392 2007-11-30] (Acer, Inc.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-10-10] (Avira GmbH)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S0 ecxc; System32\drivers\akxjddmw.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-30 17:20 - 2013-10-30 17:20 - 00000000 _____ C:\Users\Katrin\Desktop\FRST.txt
2013-10-30 14:02 - 2013-10-30 14:02 - 00000000 ____D C:\Program Files\ESET
2013-10-30 13:58 - 2013-10-30 13:58 - 00891167 _____ C:\Users\Katrin\Desktop\SecurityCheck.exe
2013-10-30 13:57 - 2013-10-30 13:57 - 02347384 _____ (ESET) C:\Users\Katrin\Desktop\esetsmartinstaller_enu.exe
2013-10-30 13:56 - 2013-10-30 13:56 - 01089275 _____ (Farbar) C:\Users\Katrin\Desktop\FRST.exe
2013-10-28 15:48 - 2013-10-28 15:49 - 00019008 _____ C:\Users\Katrin\Desktop\Addition.txt
2013-10-28 15:46 - 2013-10-28 15:46 - 00000000 ____D C:\FRST
2013-10-28 15:20 - 2013-10-28 15:20 - 00000910 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-28 15:20 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-28 15:19 - 2013-10-28 15:19 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Katrin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-28 15:15 - 2013-10-28 15:15 - 00000000 ____D C:\ProgramData\Oracle
2013-10-28 15:10 - 2013-10-28 15:10 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-28 15:10 - 2013-10-28 15:09 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-28 15:10 - 2013-10-28 15:09 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-28 15:10 - 2013-10-28 15:09 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-28 15:10 - 2013-10-28 15:09 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-28 15:06 - 2013-10-28 15:06 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Avira
2013-10-28 14:58 - 2013-10-28 14:58 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-28 14:58 - 2013-10-10 19:14 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-10-28 14:57 - 2013-10-28 14:58 - 00000000 ____D C:\ProgramData\Avira
2013-10-28 14:57 - 2013-10-28 14:57 - 00000000 ____D C:\Program Files\Avira
2013-10-28 14:48 - 2013-10-28 14:51 - 123853152 _____ C:\Users\Katrin\Desktop\avira_free_antivirus_de.exe
2013-10-28 14:18 - 2013-10-28 14:19 - 00000000 ____D C:\AdwCleaner
2013-10-28 14:14 - 2013-10-28 14:14 - 01060070 _____ C:\Users\Katrin\Desktop\adwcleaner.exe

==================== One Month Modified Files and Folders =======

2013-10-30 17:20 - 2013-10-30 17:20 - 00000000 _____ C:\Users\Katrin\Desktop\FRST.txt
2013-10-30 17:09 - 2006-11-02 13:49 - 00175986 _____ C:\Windows\setupact.log
2013-10-30 16:51 - 2008-09-18 17:53 - 02020827 _____ C:\Windows\WindowsUpdate.log
2013-10-30 15:46 - 2006-11-02 13:45 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-30 15:46 - 2006-11-02 13:45 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-30 14:02 - 2013-10-30 14:02 - 00000000 ____D C:\Program Files\ESET
2013-10-30 13:58 - 2013-10-30 13:58 - 00891167 _____ C:\Users\Katrin\Desktop\SecurityCheck.exe
2013-10-30 13:57 - 2013-10-30 13:57 - 02347384 _____ (ESET) C:\Users\Katrin\Desktop\esetsmartinstaller_enu.exe
2013-10-30 13:56 - 2013-10-30 13:56 - 01089275 _____ (Farbar) C:\Users\Katrin\Desktop\FRST.exe
2013-10-30 13:50 - 2006-11-02 11:33 - 01612090 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-30 13:46 - 2008-01-21 04:02 - 14643790 _____ C:\Windows\PFRO.log
2013-10-30 13:46 - 2006-11-02 13:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-28 16:22 - 2006-11-02 13:58 - 00032538 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-28 16:18 - 2009-10-08 20:15 - 00000000 ____D C:\Windows\Minidump
2013-10-28 15:49 - 2013-10-28 15:48 - 00019008 _____ C:\Users\Katrin\Desktop\Addition.txt
2013-10-28 15:46 - 2013-10-28 15:46 - 00000000 ____D C:\FRST
2013-10-28 15:39 - 2008-09-19 02:37 - 00000000 ____D C:\Windows\Lan
2013-10-28 15:20 - 2013-10-28 15:20 - 00000910 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-28 15:19 - 2013-10-28 15:19 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Katrin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-28 15:15 - 2013-10-28 15:15 - 00000000 ____D C:\ProgramData\Oracle
2013-10-28 15:15 - 2008-12-21 19:21 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-28 15:10 - 2013-10-28 15:10 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-28 15:09 - 2013-10-28 15:10 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-28 15:09 - 2013-10-28 15:10 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-28 15:09 - 2013-10-28 15:10 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-28 15:09 - 2013-10-28 15:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-28 15:09 - 2008-12-11 09:16 - 00000000 ____D C:\Program Files\Java
2013-10-28 15:06 - 2013-10-28 15:06 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Avira
2013-10-28 14:58 - 2013-10-28 14:58 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-28 14:58 - 2013-10-28 14:57 - 00000000 ____D C:\ProgramData\Avira
2013-10-28 14:57 - 2013-10-28 14:57 - 00000000 ____D C:\Program Files\Avira
2013-10-28 14:51 - 2013-10-28 14:48 - 123853152 _____ C:\Users\Katrin\Desktop\avira_free_antivirus_de.exe
2013-10-28 14:30 - 2011-01-13 14:14 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy
2013-10-28 14:29 - 2012-01-29 08:47 - 00000000 ____D C:\Users\Katrin\AppData\Local\Akamai
2013-10-28 14:26 - 2011-01-13 14:14 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-28 14:26 - 2010-04-25 08:08 - 00000000 ____D C:\Program Files\PokerStars
2013-10-28 14:26 - 2009-01-03 21:29 - 00000000 ____D C:\Program Files\PokerStars.NET
2013-10-28 14:19 - 2013-10-28 14:18 - 00000000 ____D C:\AdwCleaner
2013-10-28 14:19 - 2011-02-13 14:37 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-10-28 14:19 - 2009-03-05 13:20 - 00000000 ____D C:\ProgramData\ICQ
2013-10-28 14:16 - 2011-02-13 14:38 - 00000000 ____D C:\Users\Katrin\Documents\DVDVideoSoft
2013-10-28 14:14 - 2013-10-28 14:14 - 01060070 _____ C:\Users\Katrin\Desktop\adwcleaner.exe
2013-10-10 19:14 - 2013-10-28 14:58 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys

Some content of TEMP:
====================
C:\Users\Katrin\AppData\Local\Temp\avgnt.exe
C:\Users\Katrin\AppData\Local\Temp\First15.exe
C:\Users\Katrin\AppData\Local\Temp\Quarantine.exe
C:\Users\Katrin\AppData\Local\Temp\VP6Install.exe
C:\Users\Katrin\AppData\Local\Temp\VP6VFW.dll
C:\Users\Katrin\AppData\Local\Temp\_unps.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-30 13:54

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---


Mit dem Browser hab ich gerade ziemliche Probleme. Hängt sich immer wieder für einige Minuten auf. :( (Benutze Mozilla und habe dies auch aktualisiert)

Kannst Du mir dabei auch helfen? Das wäre perfekt. :)

Nachtrag: Der ganze PC hängt sich immer wieder auf, so dass nur ein Neustart hilft.

schrauber 31.10.2013 10:27
Flash, Adobe, Firefox und unbedingt Windows updatne.

Firefox am besten mal neu installieren, keine Daten behalten.
Revo Uninstaller - Download - Filepony


Downloade Dir bitte TFC ( von Oldtimer ) und speichere die Datei auf dem Desktop.
Schließe nun alle offenen Programme und trenne Dich von dem Internet.
Doppelklick auf die TFC.exe und drücke auf Start.
Sollte TFC nicht alle Dateien löschen können wird es einen Neustart verlangen. Dies bitte zulassen.

wenn Servicepack 2 drauf ist, frisches FRST log bitte.

Christian480 01.11.2013 05:10
So, habe deine anweisungen befolgt und auch alles aktualisiert. :)



FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 30-10-2013
Ran by Katrin (administrator) on KATRIN-PC on 31-10-2013 18:44:46
Running from C:\Users\Katrin\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Egis Incorporated) C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
(Acer Inc.) C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
(Acer Inc.) C:\Acer\Empowering Technology\eNet\eNet Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Acer\Mobility Center\MobilityService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Conexant Systems, Inc.) C:\Windows\system32\DRIVERS\xaudio.exe
(Acer Inc.) C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
() C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
(acer) C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Geek Software GmbH) C:\Program Files\pdf24\pdf24.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Realtek Semiconductor Corp.) C:\Users\Katrin\AppData\Local\Temp\RtkBtMnt.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [eRecoveryService] - [x]
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [PDFPrint] - C:\Program Files\pdf24\pdf24.exe [204680 2010-09-06] (Geek Software GmbH)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-10] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [4853760 2008-01-08] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Windows\SkyTel.exe [1826816 2007-11-21] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
MountPoints2: F - F:\StartVMCLite.exe
MountPoints2: {b3066f7c-fa8b-11dd-b1cb-954bbe00f696} - F:\StartVMCLite.exe
MountPoints2: {b3066f8f-fa8b-11dd-b1cb-be21a9383141} - F:\StartVMCLite.exe
MountPoints2: {c3d91f61-c6e4-11dd-966f-000000000000} - F:\StartVMCLite.exe
MountPoints2: {c3d91f69-c6e4-11dd-966f-000000000000} - F:\StartVMCLite.exe
MountPoints2: {cd000468-9ec7-11de-9eb1-ad9dbe2ddfec} - G:\LaunchU3.exe -a
MountPoints2: {eebff00e-f865-11dd-8e9a-f5ae80772354} - F:\StartVMCLite.exe
MountPoints2: {eebff013-f865-11dd-8e9a-f5ae80772354} - F:\StartVMCLite.exe
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default\...\RunOnce: [AcerScrSav] - C:\Windows\ACER\run_NB.exe [ 2007-08-21] ()
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\RunOnce: [AcerScrSav] - C:\Windows\ACER\run_NB.exe [ 2007-08-21] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vb32&d=0908&m=extensa_5220
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP50DF&PC=UP50&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP50DF&PC=UP50&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKCU - {547EEAAC-3665-4e6c-B326-C622D698543A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=ASHTDF
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (HiTRUST)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
Handler: fluxhttp\0x00000007 - {8E2D00A0-82C6-4821-90BC-07F290841BB6} - C:\Program Files\Common Files\fluxDVD\Lib\XEB\xebnavigation.ax ()
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Katrin\AppData\Roaming\Mozilla\Firefox\Profiles\tuynm91z.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @unity3d.com/UnityPlayer - C:\Program Files\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 eDataSecurity Service; C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [506416 2008-01-03] (Egis Incorporated)
R2 eLockService; C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe [24576 2007-10-01] (Acer Inc.)
R2 eNet Service; C:\Acer\Empowering Technology\eNet\eNet Service.exe [131072 2007-12-20] (Acer Inc.)
R2 eRecoveryService; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [57344 2007-09-10] (Acer Inc.)
R2 eSettingsService; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [24576 2007-12-19] ()
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-11-27] ()
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 WMIService; C:\Acer\Empowering Technology\ePower\ePowerSvc.exe [167936 2007-09-20] (acer)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 int15; C:\Windows\system32\drivers\int15.sys [15392 2007-11-30] (Acer, Inc.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-10-10] (Avira GmbH)
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8064 2008-05-02] (Windows (R) Codename Longhorn DDK provider)
S0 ecxc; System32\drivers\akxjddmw.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 USBAAPL; System32\Drivers\usbaapl.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-31 18:26 - 2013-10-31 18:26 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-31 18:26 - 2013-10-31 18:24 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-31 18:25 - 2013-10-31 18:24 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-31 18:25 - 2013-10-31 18:24 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-31 18:25 - 2013-10-31 18:24 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-31 18:17 - 2013-10-31 18:17 - 00915368 _____ (Oracle Corporation) C:\Users\Katrin\Downloads\jxpiinstall.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 12336128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-31 17:53 - 2013-10-31 17:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-31 17:53 - 2013-10-31 17:53 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-31 17:53 - 2013-10-31 17:53 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-31 17:53 - 2013-10-31 17:53 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-31 17:53 - 2013-10-31 17:53 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-31 17:50 - 2013-10-31 17:52 - 18733360 _____ (Microsoft Corporation) C:\Users\Katrin\Downloads\IE9-WindowsVista-x86-deu.exe
2013-10-31 17:50 - 2013-10-31 17:50 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-10-31 17:49 - 2013-10-31 17:49 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00797184 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-10-31 17:48 - 2013-10-31 17:48 - 00638336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-31 17:48 - 2013-10-31 17:48 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-10-31 17:48 - 2013-10-31 17:48 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-10-31 17:44 - 2013-10-31 17:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-31 17:41 - 2013-10-31 17:52 - 00008599 _____ C:\Windows\IE9_main.log
2013-10-31 17:38 - 2013-10-31 17:38 - 00000850 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-31 17:38 - 2013-10-31 17:38 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-10-31 17:38 - 2013-10-31 17:38 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-31 17:27 - 2013-10-31 17:27 - 00001061 _____ C:\Users\Katrin\Desktop\Revo Uninstaller.lnk
2013-10-31 17:27 - 2013-10-31 17:27 - 00000000 ____D C:\Program Files\VS Revo Group
2013-10-31 17:24 - 2013-10-31 17:24 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Katrin\Downloads\revosetup95.exe
2013-10-31 15:23 - 2013-10-31 15:23 - 00448512 _____ (OldTimer Tools) C:\Users\Katrin\Desktop\TFC.exe
2013-10-31 14:52 - 2013-10-31 14:55 - 00000000 ____D C:\Windows\system32\vi-VN
2013-10-31 14:52 - 2013-10-31 14:55 - 00000000 ____D C:\Windows\system32\eu-ES
2013-10-31 14:52 - 2013-10-31 14:55 - 00000000 ____D C:\Windows\system32\ca-ES
2013-10-31 13:25 - 2013-10-31 13:25 - 00000000 ____D C:\Windows\system32\EventProviders
2013-10-31 11:44 - 2009-04-11 07:32 - 00438744 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 02134528 _____ (Microsoft Corporation) C:\Windows\system32\FunctionDiscoveryFolder.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 01576960 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 01480704 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 01459200 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 01081344 _____ (Microsoft Corporation) C:\Windows\system32\SLCExt.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00968192 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz2.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00928768 _____ (Microsoft Corporation) C:\Windows\system32\scavenge.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\WscEapPr.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2013-10-31 11:44 - 2009-04-11 07:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\EhStorShell.dll
2013-10-31 11:44 - 2009-04-11 07:28 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2013-10-31 11:44 - 2009-04-11 07:27 - 03408896 _____ (Microsoft Corporation) C:\Windows\system32\SLsvc.exe
2013-10-31 11:44 - 2009-04-11 07:27 - 00441344 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-10-31 11:44 - 2009-04-11 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingWizard.exe
2013-10-31 11:44 - 2009-04-11 06:03 - 12240896 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2013-10-31 11:44 - 2009-04-11 06:03 - 02644480 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2013-10-31 11:44 - 2009-04-11 05:42 - 00561152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2013-10-31 11:44 - 2009-04-11 03:52 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys
2013-10-31 11:44 - 2009-02-18 19:39 - 00779136 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2013-10-31 11:44 - 2009-02-18 19:38 - 00619864 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2013-10-31 11:43 - 2009-04-11 07:33 - 00986600 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-31 11:43 - 2009-04-11 07:33 - 00614376 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2013-10-31 11:43 - 2009-04-11 07:32 - 01083880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-31 11:43 - 2009-04-11 07:32 - 00223208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-10-31 11:43 - 2009-04-11 07:28 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2013-10-31 11:43 - 2009-04-11 07:28 - 03174400 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 02012160 _____ (Microsoft Corporation) C:\Windows\system32\milcore.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01985024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01788416 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\apds.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01591296 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01589248 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01324032 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01112064 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01078784 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01055232 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2013-10-31 11:43 - 2009-04-11 07:28 - 01053696 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00807424 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2013-10-31 11:43 - 2009-04-11 07:28 - 00679936 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00618496 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00582144 _____ (Microsoft Corporation) C:\Windows\system32\SLCommDlg.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00550400 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00454144 _____ (Microsoft) C:\Windows\system32\IasMigPlugin.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-10-31 11:43 - 2009-04-11 07:28 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\msvcp60.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2013-10-31 11:43 - 2009-04-11 07:28 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\SLC.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\sperror.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\spoolss.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\nlhtml.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00117248 _____ C:\Windows\system32\EhStorAuthn.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\slwmi.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\xmlfilter.dll
2013-10-31 11:43 - 2009-04-11 07:28 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\EhStorPwdMgr.dll
2013-10-31 11:43 - 2009-04-11 07:27 - 02926592 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 02092544 _____ (Microsoft Corporation) C:\Windows\system32\dfsr.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2013-10-31 11:43 - 2009-04-11 07:27 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\IasMigReader.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-31 11:43 - 2009-04-11 07:27 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-10-31 11:43 - 2009-04-11 07:27 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\compcln.exe
2013-10-31 11:43 - 2009-04-11 07:22 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2013-10-31 11:43 - 2009-04-11 05:43 - 00442788 _____ C:\Windows\system32\dot3.tmf
2013-10-31 11:43 - 2009-04-11 05:43 - 00392170 _____ C:\Windows\system32\onex.tmf
2013-10-31 11:43 - 2009-04-11 05:14 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2013-10-31 11:43 - 2009-04-11 05:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-31 11:43 - 2009-04-11 02:59 - 00107612 _____ C:\Windows\system32\StructuredQuerySchema.bin
2013-10-31 11:43 - 2009-04-11 02:54 - 03662128 _____ C:\Windows\system32\locale.nls
2013-10-31 11:43 - 2009-03-07 02:11 - 00130008 _____ C:\Windows\system32\systemsf.ebd
2013-10-31 11:43 - 2009-02-20 01:20 - 00009239 _____ C:\Windows\system32\spcinstrumentation.man
2013-10-31 11:43 - 2009-02-18 19:39 - 00102816 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-31 11:43 - 2009-02-18 19:38 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2013-10-31 11:42 - 2013-10-31 11:48 - 00000000 ____D C:\Windows\system32\MRT
2013-10-31 11:42 - 2009-04-11 07:33 - 00926184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-31 11:42 - 2009-04-11 07:33 - 00292840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00527848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00265688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00245736 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00180712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00149480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00125928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00122344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00109032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00099816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-31 11:42 - 2009-04-11 07:32 - 00054248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00053736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00053224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00050664 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2013-10-31 11:42 - 2009-04-11 07:32 - 00048104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00043496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00035304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2013-10-31 11:42 - 2009-04-11 07:32 - 00017896 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 02205184 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 02167808 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 01856512 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 01823744 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\chsbrkr.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 01533440 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 01502720 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 01382912 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2013-10-31 11:42 - 2009-04-11 07:28 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\wercon.exe
2013-10-31 11:42 - 2009-04-11 07:28 - 01107968 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00996352 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00385536 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2013-10-31 11:42 - 2009-04-11 07:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\devmgr.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00368640 _____ C:\Windows\system32\msjetoledb40.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00364032 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2013-10-31 11:42 - 2009-04-11 07:28 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\SLUI.exe
2013-10-31 11:42 - 2009-04-11 07:28 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-10-31 11:42 - 2009-04-11 07:28 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2013-10-31 11:42 - 2009-04-11 07:28 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2013-10-31 11:42 - 2009-04-11 07:28 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\adsldpc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\iassam.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2013-10-31 11:42 - 2009-04-11 07:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\fundisc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\propdefs.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\SLUINotify.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingProxy.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msstrc.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\rtffilt.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\msscb.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\hidserv.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2013-10-31 11:42 - 2009-04-11 07:28 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\fdBthProxy.dll
2013-10-31 11:42 - 2009-04-11 07:27 - 01122304 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2013-10-31 11:42 - 2009-04-11 07:27 - 00799744 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-31 11:42 - 2009-04-11 07:27 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2013-10-31 11:42 - 2009-04-11 07:27 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2013-10-31 11:42 - 2009-04-11 07:27 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2013-10-31 11:42 - 2009-04-11 07:27 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2013-10-31 11:42 - 2009-04-11 07:27 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2013-10-31 11:42 - 2009-04-11 07:27 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2013-10-31 11:42 - 2009-04-11 07:27 - 00241128 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2013-10-31 11:42 - 2009-04-11 07:27 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2013-10-31 11:42 - 2009-04-11 07:27 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2013-10-31 11:42 - 2009-04-11 07:27 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2013-10-31 11:42 - 2009-04-11 07:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2013-10-31 11:42 - 2009-04-11 07:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2013-10-31 11:42 - 2009-04-11 07:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2013-10-31 11:42 - 2009-04-11 07:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2013-10-31 11:42 - 2009-04-11 07:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2013-10-31 11:42 - 2009-04-11 07:22 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2013-10-31 11:42 - 2009-04-11 07:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2013-10-31 11:42 - 2009-04-11 07:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2013-10-31 11:42 - 2009-04-11 05:48 - 00344698 _____ C:\Windows\system32\eaphost.tmf
2013-10-31 11:42 - 2009-04-11 05:46 - 00208966 _____ C:\Windows\system32\WFP.TMF
2013-10-31 11:42 - 2009-04-11 05:43 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-31 11:42 - 2009-04-11 05:42 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-31 11:42 - 2009-04-11 05:42 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-10-31 11:42 - 2009-04-11 05:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2013-10-31 11:42 - 2009-03-30 05:42 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2013-10-31 11:42 - 2009-02-18 19:39 - 00092918 _____ C:\Windows\system32\slmgr.vbs
2013-10-31 11:42 - 2009-02-18 19:39 - 00035680 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2013-10-31 11:42 - 2009-02-18 19:38 - 00035168 _____ (Microsoft Corporation) C:\Windows\system32\infocardcpl.cpl
2013-10-31 11:42 - 2009-02-18 19:38 - 00009048 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2013-10-31 11:41 - 2009-04-11 07:32 - 00226280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-10-31 11:41 - 2009-04-11 07:32 - 00190424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2013-10-31 11:41 - 2009-04-11 07:32 - 00177640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys
2013-10-31 11:41 - 2009-04-11 07:32 - 00161752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2013-10-31 11:41 - 2009-04-11 07:32 - 00141288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2013-10-31 11:41 - 2009-04-11 07:32 - 00027624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys
2013-10-31 11:41 - 2009-04-11 07:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-31 11:41 - 2009-04-11 07:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2013-10-31 11:41 - 2009-04-11 07:32 - 00017384 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 01575936 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2013-10-31 11:41 - 2009-04-11 07:28 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 01342464 _____ (Microsoft Corporation) C:\Windows\system32\brcpl.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2013-10-31 11:41 - 2009-04-11 07:28 - 00759296 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2013-10-31 11:41 - 2009-04-11 07:28 - 00612864 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00551936 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00507904 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\RelMon.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\wow32.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\wscntfy.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-10-31 11:41 - 2009-04-11 07:28 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2013-10-31 11:41 - 2009-04-11 07:28 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\offfilt.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\pnpsetup.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-10-31 11:41 - 2009-04-11 07:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2013-10-31 11:41 - 2009-04-11 07:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\iashlpr.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\wsepno.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2013-10-31 11:41 - 2009-04-11 07:28 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\spcmsg.dll
2013-10-31 11:41 - 2009-04-11 07:27 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2013-10-31 11:41 - 2009-04-11 07:27 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2013-10-31 11:41 - 2009-04-11 07:27 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2013-10-31 11:41 - 2009-04-11 07:27 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-10-31 11:41 - 2009-04-11 07:27 - 00130024 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2013-10-31 11:41 - 2009-04-11 07:27 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2013-10-31 11:41 - 2009-04-11 07:27 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2013-10-31 11:41 - 2009-04-11 07:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2013-10-31 11:41 - 2009-04-11 05:45 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2013-10-31 11:40 - 2009-04-11 07:28 - 06103040 _____ (Microsoft Corporation) C:\Windows\system32\chtbrkr.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 03072000 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 02515968 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 02225664 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 02153472 _____ (Microsoft Corporation) C:\Windows\system32\oobefldr.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 01645568 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 01580544 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 01224192 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 01152000 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00777216 _____ (Microsoft Corporation) C:\Windows\system32\slcc.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00657408 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2013-10-31 11:40 - 2009-04-11 07:28 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-10-31 11:40 - 2009-04-11 07:28 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\pnpui.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00532992 _____ (Microsoft Corporation) C:\Windows\system32\wpcao.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\cmdial32.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\modemui.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\rasmontr.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2013-10-31 11:40 - 2009-04-11 07:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\dsprop.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\ntmarta.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\wshext.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mstlsapi.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\feclient.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\TSTheme.exe
2013-10-31 11:40 - 2009-04-11 07:28 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\whealogr.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\uxsms.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2013-10-31 11:40 - 2009-04-11 07:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\spwinsat.dll
2013-10-31 11:40 - 2009-04-11 07:27 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2013-10-31 11:40 - 2009-04-11 07:27 - 01102848 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2013-10-31 11:40 - 2009-04-11 07:27 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2013-10-31 11:40 - 2009-04-11 07:27 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2013-10-31 11:40 - 2009-04-11 07:27 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-10-31 11:40 - 2009-04-11 07:27 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\conime.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\cmmon32.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\rekeywiz.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\PnPutil.exe
2013-10-31 11:40 - 2009-04-11 07:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEject.exe
2013-10-31 11:40 - 2009-04-11 07:23 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2013-10-31 11:40 - 2009-04-11 05:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2013-10-31 11:40 - 2009-04-11 05:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2013-10-31 11:40 - 2009-04-11 05:42 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-10-31 11:40 - 2009-04-11 05:42 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-31 11:40 - 2009-04-11 05:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2013-10-31 11:40 - 2009-04-11 05:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2013-10-31 11:40 - 2009-04-11 05:38 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2013-10-31 11:40 - 2009-04-11 05:19 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-10-31 11:40 - 2009-04-11 05:14 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2013-10-31 11:40 - 2009-04-11 05:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2013-10-31 11:40 - 2009-03-30 05:42 - 00155456 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00542720 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\thawbrkr.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\SLLUA.exe
2013-10-31 11:39 - 2009-04-11 07:28 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\softkbd.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\dmsynth.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\dmusic.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00083456 _____ (Microsoft) C:\Windows\system32\SMBHelperClass.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\wlgpclnt.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssoc.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-31 11:39 - 2009-04-11 07:28 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Storprop.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\l2nacp.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\slcinst.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\networkitemfactory.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\bitsigd.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\msimtf.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\ifmon.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\version.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\winrnr.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\NcdProp.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\MsCtfMonitor.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\vdmdbg.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\midimap.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mmcico.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2013-10-31 11:39 - 2009-04-11 07:28 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\CHxReadingStringIME.dll
2013-10-31 11:39 - 2009-04-11 07:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\gpresult.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2013-10-31 11:39 - 2009-04-11 07:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\cipher.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\csrstub.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cbsra.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.drv
2013-10-31 11:39 - 2009-04-11 07:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\fc.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\rasdial.exe
2013-10-31 11:39 - 2009-04-11 07:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\gpupdate.exe
2013-10-31 11:39 - 2009-04-11 07:23 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2013-10-31 11:39 - 2009-04-11 07:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\f3ahvoas.dll
2013-10-31 11:39 - 2009-04-11 06:42 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2013-10-31 11:39 - 2009-04-11 05:51 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-31 11:39 - 2009-04-11 05:46 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2013-10-31 11:39 - 2009-04-11 05:46 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys
2013-10-31 11:39 - 2009-04-11 05:46 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys
2013-10-31 11:39 - 2009-04-11 05:46 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-10-31 11:39 - 2009-04-11 05:46 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-31 11:39 - 2009-04-11 05:45 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2013-10-31 11:39 - 2009-04-11 05:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys
2013-10-31 11:39 - 2009-04-11 05:43 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2013-10-31 11:39 - 2009-04-11 05:43 - 00062208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys
2013-10-31 11:39 - 2009-04-11 05:42 - 00052992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2013-10-31 11:39 - 2009-04-11 05:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-31 11:39 - 2009-04-11 05:42 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2013-10-31 11:39 - 2009-04-11 05:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2013-10-31 11:39 - 2009-04-11 05:39 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2013-10-31 11:39 - 2009-04-11 05:39 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-10-31 11:39 - 2009-04-11 05:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2013-10-31 11:39 - 2009-04-11 05:39 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2013-10-31 11:39 - 2009-04-11 05:27 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2013-10-31 11:39 - 2009-04-11 05:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys
2013-10-31 11:39 - 2009-04-11 05:22 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys
2013-10-31 11:39 - 2009-04-11 05:13 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2013-10-31 11:39 - 2009-04-11 05:13 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2013-10-31 11:39 - 2009-02-20 01:20 - 00009212 _____ C:\Windows\system32\RacUR.xml
2013-10-31 11:37 - 2009-04-11 07:28 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2013-10-31 11:37 - 2009-04-11 07:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2013-10-31 11:37 - 2009-04-11 07:27 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2013-10-31 11:36 - 2009-04-11 07:28 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2013-10-31 11:30 - 2011-06-02 14:34 - 02043392 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-31 11:30 - 2011-04-21 14:58 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-31 11:30 - 2011-04-14 15:59 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2013-10-31 11:29 - 2011-07-06 16:31 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-10-31 11:29 - 2011-05-02 18:16 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-10-31 11:29 - 2011-04-29 14:25 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-10-31 11:29 - 2011-04-29 14:25 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-10-31 11:29 - 2011-04-29 14:24 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-10-31 11:29 - 2011-04-29 14:24 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-10-31 11:29 - 2011-04-20 16:55 - 00375808 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-31 11:29 - 2011-04-20 16:50 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-31 11:29 - 2010-12-20 17:35 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-31 11:07 - 2011-04-12 17:07 - 00892416 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-31 10:59 - 2011-04-29 16:59 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-31 10:17 - 2013-10-31 10:29 - 455611504 _____ (Microsoft Corporation) C:\Users\Katrin\Downloads\Windows6.0-KB936330-X86-wave0(1).exe
2013-10-31 10:08 - 2013-10-31 10:24 - 455611504 _____ (Microsoft Corporation) C:\Users\Katrin\Downloads\Windows6.0-KB936330-X86-wave0.exe
2013-10-31 09:03 - 2013-10-31 09:09 - 172186488 _____ C:\Users\Katrin\Downloads\WinVistaSide_UpdateInstaller_Vista_Sp2_13.06_x86.exe
2013-10-31 07:46 - 2013-10-31 07:46 - 00347304 _____ (Microsoft Corporation) C:\Users\Katrin\Downloads\MicrosoftFixit.wu.Run.exe
2013-10-30 19:49 - 2013-10-30 19:49 - 00001896 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk
2013-10-30 19:42 - 2013-10-30 19:42 - 00000000 ____D C:\Users\Katrin\AppData\Local\Macromedia
2013-10-30 19:38 - 2013-10-31 18:21 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-30 19:38 - 2013-10-30 20:21 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-30 19:38 - 2013-10-30 20:21 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-30 19:04 - 2013-10-30 19:04 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-30 18:43 - 2013-10-30 18:43 - 00013824 _____ C:\Users\Katrin\Documents\übersicht_nOVEMBER.xls
2013-10-30 14:02 - 2013-10-30 14:02 - 00000000 ____D C:\Program Files\ESET
2013-10-30 13:58 - 2013-10-30 13:58 - 00891167 _____ C:\Users\Katrin\Desktop\SecurityCheck.exe
2013-10-30 13:57 - 2013-10-30 13:57 - 02347384 _____ (ESET) C:\Users\Katrin\Desktop\esetsmartinstaller_enu.exe
2013-10-30 13:56 - 2013-10-31 17:22 - 01089275 _____ (Farbar) C:\Users\Katrin\Desktop\FRST.exe
2013-10-28 15:46 - 2013-10-28 15:46 - 00000000 ____D C:\FRST
2013-10-28 15:20 - 2013-10-28 15:20 - 00000910 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-28 15:20 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-28 15:19 - 2013-10-28 15:19 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Katrin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-28 15:15 - 2013-10-31 18:26 - 00000000 ____D C:\ProgramData\Oracle
2013-10-28 15:06 - 2013-10-28 15:06 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Avira
2013-10-28 14:58 - 2013-10-28 14:58 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-28 14:58 - 2013-10-10 19:14 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-28 14:58 - 2013-10-10 19:14 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2013-10-28 14:57 - 2013-10-28 14:58 - 00000000 ____D C:\ProgramData\Avira
2013-10-28 14:57 - 2013-10-28 14:57 - 00000000 ____D C:\Program Files\Avira
2013-10-28 14:48 - 2013-10-28 14:51 - 123853152 _____ C:\Users\Katrin\Desktop\avira_free_antivirus_de.exe
2013-10-28 14:18 - 2013-10-28 14:19 - 00000000 ____D C:\AdwCleaner
2013-10-28 14:14 - 2013-10-28 14:14 - 01060070 _____ C:\Users\Katrin\Desktop\adwcleaner.exe

==================== One Month Modified Files and Folders =======

2013-10-31 18:35 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2013-10-31 18:28 - 2008-12-12 10:44 - 00000000 ____D C:\Users\Katrin\AppData\Local\Adobe
2013-10-31 18:26 - 2013-10-31 18:26 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-31 18:26 - 2013-10-28 15:15 - 00000000 ____D C:\ProgramData\Oracle
2013-10-31 18:24 - 2013-10-31 18:26 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-31 18:24 - 2013-10-31 18:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-31 18:24 - 2013-10-31 18:25 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-31 18:24 - 2013-10-31 18:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-31 18:23 - 2008-12-11 09:16 - 00000000 ____D C:\Program Files\Java
2013-10-31 18:21 - 2013-10-30 19:38 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-31 18:17 - 2013-10-31 18:17 - 00915368 _____ (Oracle Corporation) C:\Users\Katrin\Downloads\jxpiinstall.exe
2013-10-31 18:12 - 2008-09-18 17:53 - 01936371 _____ C:\Windows\WindowsUpdate.log
2013-10-31 18:06 - 2006-11-02 11:33 - 01707722 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-31 18:01 - 2008-12-10 12:08 - 00000953 _____ C:\Users\Katrin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-31 18:01 - 2006-11-02 13:45 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-31 18:01 - 2006-11-02 13:45 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-31 17:58 - 2006-11-02 13:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-31 17:57 - 2008-01-21 04:02 - 14894544 _____ C:\Windows\PFRO.log
2013-10-31 17:55 - 2006-11-02 13:58 - 00032538 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-31 17:54 - 2008-03-28 07:28 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2013-10-31 17:54 - 2006-11-02 12:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-10-31 17:54 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-10-31 17:54 - 2006-11-02 07:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-10-31 17:54 - 2006-11-02 07:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-10-31 17:53 - 2013-10-31 17:53 - 12336128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-31 17:53 - 2013-10-31 17:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-31 17:53 - 2013-10-31 17:53 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-31 17:53 - 2013-10-31 17:53 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-31 17:53 - 2013-10-31 17:53 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-31 17:53 - 2013-10-31 17:53 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-31 17:53 - 2013-10-31 17:53 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-31 17:53 - 2013-10-31 17:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-31 17:52 - 2013-10-31 17:50 - 18733360 _____ (Microsoft Corporation) C:\Users\Katrin\Downloads\IE9-WindowsVista-x86-deu.exe
2013-10-31 17:52 - 2013-10-31 17:41 - 00008599 _____ C:\Windows\IE9_main.log
2013-10-31 17:50 - 2013-10-31 17:50 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-10-31 17:50 - 2013-10-31 17:50 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-10-31 17:49 - 2013-10-31 17:49 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00797184 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-31 17:49 - 2013-10-31 17:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-10-31 17:48 - 2013-10-31 17:48 - 00638336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-31 17:48 - 2013-10-31 17:48 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-10-31 17:48 - 2013-10-31 17:48 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-31 17:48 - 2013-10-31 17:48 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-10-31 17:44 - 2013-10-31 17:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-10-31 17:44 - 2013-10-31 17:44 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-31 17:39 - 2008-12-21 19:21 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Mozilla
2013-10-31 17:38 - 2013-10-31 17:38 - 00000850 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-31 17:38 - 2013-10-31 17:38 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-10-31 17:38 - 2013-10-31 17:38 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-31 17:27 - 2013-10-31 17:27 - 00001061 _____ C:\Users\Katrin\Desktop\Revo Uninstaller.lnk
2013-10-31 17:27 - 2013-10-31 17:27 - 00000000 ____D C:\Program Files\VS Revo Group
2013-10-31 17:24 - 2013-10-31 17:24 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Katrin\Downloads\revosetup95.exe
2013-10-31 17:22 - 2013-10-30 13:56 - 01089275 _____ (Farbar) C:\Users\Katrin\Desktop\FRST.exe
2013-10-31 15:23 - 2013-10-31 15:23 - 00448512 _____ (OldTimer Tools) C:\Users\Katrin\Desktop\TFC.exe
2013-10-31 15:11 - 2008-12-10 12:08 - 00000919 _____ C:\Users\Katrin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2013-10-31 15:04 - 2006-11-02 13:44 - 00383960 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-31 14:56 - 2006-11-02 13:35 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-10-31 14:56 - 2006-11-02 13:35 - 00000000 ____D C:\Program Files\Windows Photo Gallery
2013-10-31 14:56 - 2006-11-02 13:35 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-31 14:56 - 2006-11-02 13:35 - 00000000 ____D C:\Program Files\Windows Collaboration
2013-10-31 14:56 - 2006-11-02 13:35 - 00000000 ____D C:\Program Files\Windows Calendar
2013-10-31 14:56 - 2006-11-02 13:35 - 00000000 ____D C:\Program Files\Movie Maker
2013-10-31 14:56 - 2006-11-02 12:18 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-31 14:55 - 2013-10-31 14:52 - 00000000 ____D C:\Windows\system32\vi-VN
2013-10-31 14:55 - 2013-10-31 14:52 - 00000000 ____D C:\Windows\system32\eu-ES
2013-10-31 14:55 - 2013-10-31 14:52 - 00000000 ____D C:\Windows\system32\ca-ES
2013-10-31 14:55 - 2006-11-02 13:35 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\zh-TW
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\zh-CN
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\uk-UA
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\th-TH
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\sv-SE
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\SLUI
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\sl-SI
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\sk-SK
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ru-RU
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ro-RO
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\pt-PT
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\pt-BR
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\pl-PL
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\nl-NL
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\nb-NO
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\lv-LV
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\lt-LT
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ko-KR
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ja-JP
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\it-IT
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\hu-HU
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\hr-HR
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\he-IL
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\fr-FR
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\fi-FI
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\et-EE
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\el-GR
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\bg-BG
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ar-SA
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2013-10-31 14:55 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\IME
2013-10-31 14:50 - 2006-11-02 13:49 - 00182232 _____ C:\Windows\setupact.log
2013-10-31 14:49 - 2008-03-27 22:47 - 00000000 ____D C:\Windows\system32\RTCOM
2013-10-31 13:25 - 2013-10-31 13:25 - 00000000 ____D C:\Windows\system32\EventProviders
2013-10-31 13:07 - 2008-12-14 11:58 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-31 11:48 - 2013-10-31 11:42 - 00000000 ____D C:\Windows\system32\MRT
2013-10-31 10:29 - 2013-10-31 10:17 - 455611504 _____ (Microsoft Corporation) C:\Users\Katrin\Downloads\Windows6.0-KB936330-X86-wave0(1).exe
2013-10-31 10:24 - 2013-10-31 10:08 - 455611504 _____ (Microsoft Corporation) C:\Users\Katrin\Downloads\Windows6.0-KB936330-X86-wave0.exe
2013-10-31 09:09 - 2013-10-31 09:03 - 172186488 _____ C:\Users\Katrin\Downloads\WinVistaSide_UpdateInstaller_Vista_Sp2_13.06_x86.exe
2013-10-31 07:46 - 2013-10-31 07:46 - 00347304 _____ (Microsoft Corporation) C:\Users\Katrin\Downloads\MicrosoftFixit.wu.Run.exe
2013-10-30 20:21 - 2013-10-30 19:38 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-30 20:21 - 2013-10-30 19:38 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-30 19:49 - 2013-10-30 19:49 - 00001896 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk
2013-10-30 19:48 - 2009-11-20 10:12 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-10-30 19:47 - 2008-03-27 22:57 - 00000000 ____D C:\ProgramData\Adobe
2013-10-30 19:46 - 2008-03-27 22:57 - 00000000 ____D C:\Program Files\Adobe
2013-10-30 19:42 - 2013-10-30 19:42 - 00000000 ____D C:\Users\Katrin\AppData\Local\Macromedia
2013-10-30 19:41 - 2010-05-21 07:07 - 00001923 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-30 19:41 - 2010-05-21 07:07 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-30 19:04 - 2013-10-30 19:04 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-30 18:43 - 2013-10-30 18:43 - 00013824 _____ C:\Users\Katrin\Documents\übersicht_nOVEMBER.xls
2013-10-30 17:34 - 2011-02-13 14:37 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-10-30 17:30 - 2008-12-12 12:02 - 00000000 ____D C:\ProgramData\FreePDF
2013-10-30 17:30 - 2008-12-12 12:02 - 00000000 ____D C:\Program Files\FreePDF_XP
2013-10-30 14:02 - 2013-10-30 14:02 - 00000000 ____D C:\Program Files\ESET
2013-10-30 13:58 - 2013-10-30 13:58 - 00891167 _____ C:\Users\Katrin\Desktop\SecurityCheck.exe
2013-10-30 13:57 - 2013-10-30 13:57 - 02347384 _____ (ESET) C:\Users\Katrin\Desktop\esetsmartinstaller_enu.exe
2013-10-28 16:18 - 2009-10-08 20:15 - 00000000 ____D C:\Windows\Minidump
2013-10-28 15:46 - 2013-10-28 15:46 - 00000000 ____D C:\FRST
2013-10-28 15:39 - 2008-09-19 02:37 - 00000000 ____D C:\Windows\Lan
2013-10-28 15:20 - 2013-10-28 15:20 - 00000910 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-28 15:20 - 2013-10-28 15:20 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-28 15:19 - 2013-10-28 15:19 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Katrin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-28 15:06 - 2013-10-28 15:06 - 00000000 ____D C:\Users\Katrin\AppData\Roaming\Avira
2013-10-28 14:58 - 2013-10-28 14:58 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-28 14:58 - 2013-10-28 14:57 - 00000000 ____D C:\ProgramData\Avira
2013-10-28 14:57 - 2013-10-28 14:57 - 00000000 ____D C:\Program Files\Avira
2013-10-28 14:51 - 2013-10-28 14:48 - 123853152 _____ C:\Users\Katrin\Desktop\avira_free_antivirus_de.exe
2013-10-28 14:29 - 2012-01-29 08:47 - 00000000 ____D C:\Users\Katrin\AppData\Local\Akamai
2013-10-28 14:26 - 2011-01-13 14:14 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-28 14:19 - 2013-10-28 14:18 - 00000000 ____D C:\AdwCleaner
2013-10-28 14:19 - 2009-03-05 13:20 - 00000000 ____D C:\ProgramData\ICQ
2013-10-28 14:16 - 2011-02-13 14:38 - 00000000 ____D C:\Users\Katrin\Documents\DVDVideoSoft
2013-10-28 14:14 - 2013-10-28 14:14 - 01060070 _____ C:\Users\Katrin\Desktop\adwcleaner.exe
2013-10-10 19:14 - 2013-10-28 14:58 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-10 19:14 - 2013-10-28 14:58 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys

Some content of TEMP:
====================
C:\Users\Katrin\AppData\Local\Temp\avgnt.exe
C:\Users\Katrin\AppData\Local\Temp\RtkBtMnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-31 18:06

==================== End Of Log ============================
--- --- ---

--- --- ---


Guten Morgen, der PC brauchte jetzt auch wieder eine Ewigkeit, bis er betriebsbereit war. :(

schrauber 01.11.2013 18:47
How to perform a clean boot in Windows 8.1, Windows 8, Windows 7, or Windows Vista

Mach mal Clean Boot, besser?

Christian480 02.11.2013 08:20
Moin, danke nochml für deine ganze Hilfe. Clean Boot hat leider keine Besserung verschafft. Es dauert ewig bis er Progrmme öffnet und der Browser braucht auch Ewigkeiten beim Öffnen von Seiten und Links. Es kommt fast nur noch die Meldung von Firefox: Keine Rückmeldung. :(

schrauber 02.11.2013 18:54
Auch mit Clean Boot? Dann ist an Windows selbst was verbogen.

Vista DVD zur hand?

Christian480 02.11.2013 19:30
Für das Notebook haben wir keine CD. Das Betriebssystem war bei Kauf bereits drauf.

schrauber 03.11.2013 08:06
Schlecht. Kannste eine leihen bei Bekannten mit gleichem System?

Christian480 03.11.2013 09:24
Leider nicht. Kennen keinen der Vista hat. :( Gibt es irgendeine andere Möglichkeit?

schrauber 03.11.2013 16:46
Nö. Wir müssen Windows reparieren. Haste nen gültigen Key von Vista?

Christian480 05.11.2013 10:36
Huhu, also nen Key habe ich auch nicht. :( Ein Freund meinte jetzt, dass man Vista über die versteckte Recovery Partition (?) neu aufsetzen kann. Würde das was bringen?


Alle Zeitangaben in WEZ +1. Es ist jetzt 09:34 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19