Hi,
verstehe zwar nur "Bahnhof", aber ich vermute, dass das Anhängen der Dateien keine gute Idee war. ich versuche es jetzt mal mit einfügen:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-11-2013
Ran by Finanzservice (administrator) on SATELLITEPRO on 10-11-2013 16:50:07
Running from C:\Users\Finanzservice\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Taiwan Shui Mu Chih Ching Technology Limited.) C:\Program Files (x86)\WinZipper\winzipersvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(TOSHIBA Corporation) C:\Windows\system32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\Spring Smart\updateSpringSmart.exe
() C:\Program Files (x86)\Spring Smart\bin\utilSpringSmart.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(Uniblue Systems Limited) C:\Program Files (x86)\Uniblue\RegistryBooster\registrybooster.exe
(Uniblue Systems Limited) C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesApp64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Mozilla Corporation) D:\Programme\Mozilla\Thunderbird\thunderbird.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
(BUFFALO INC.) C:\Program Files (x86)\BUFFALO\NASNAVI\NasNavi.exe
(BUFFALO INC.) C:\Program Files (x86)\BUFFALO\NASNAVI\nassche.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
(Microsoft Corporation) C:\Windows\sysWOW64\wbem\wmiprvse.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
(Taiwan Shui Mu Chih Ching Technology Limited.) C:\Program Files (x86)\WinZipper\WinZipper.exe
(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
() c:\progra~2\optimi~1\OptProCrash.exe
() C:\Program Files (x86)\JFileManager\JFileManager.exe
(Ascentive LLC) C:\Program Files (x86)\Ascentive\PC Prima\PCPrima.exe
(Microsoft Corporation) C:\Windows\SysWOW64\DllHost.exe
() C:\Users\FINANZ~1\AppData\Local\Temp\~nsu.tmp\Au_.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [TosNC] - C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe [595816 2010-03-19] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2052392 2010-03-10] (Synaptics Incorporated)
HKLM\...\Run: [Toshiba TEMPRO] - C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1050072 2010-05-11] (Toshiba Europe GmbH)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [896032 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe [566184 2010-09-28] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] - C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [915320 2010-05-10] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] - C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [35672 2010-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] - C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] - C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [136136 2010-04-19] (Toshiba Europe GmbH)
HKLM\...\Run: [IntelliPoint] - C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-08-12] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [{517CC397-B22F-4593-8DCB-DE72CC541E9A}] - C:\Users\Finanzservice\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe [34888568 2013-11-10] (Riot Games)
HKCU\...\Run: [Optimizer Pro] - C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [134648 2013-10-28] ()
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
MountPoints2: {9e9e61c2-b2f9-11e2-b32c-1c75087fb775} - F:\SETUP.EXE
MountPoints2: {fd3c83ad-27cc-11e0-9232-806e6f6e6963} - E:\Setup.exe
HKLM-x32\...\Run: [NBAgent] - C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2010-09-02] (Nero AG)
HKLM-x32\...\Run: [TWebCamera] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-02-24] (TOSHIBA CORPORATION.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [PC Prima] - C:\Program Files (x86)\Ascentive\PC Prima\PCPrima.exe [1732608 2012-03-07] (Ascentive LLC)
HKU\Chiano\...\Policies\system: [LogonHoursAction] 2
HKU\Chiano\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Default\...\Run: [TOSHIBA Online Product Information] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe [4581280 2010-03-03] (TOSHIBA)
HKU\Default User\...\Run: [TOSHIBA Online Product Information] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe [4581280 2010-03-03] (TOSHIBA)
HKU\Kiyara\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10x_ActiveX.exe -update activex
HKU\Kiyara\...\Policies\system: [LogonHoursAction] 2
HKU\Kiyara\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Nevio\...\Policies\system: [LogonHoursAction] 2
HKU\Nevio\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
AppInit_DLLs: C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL [2603312 2013-11-10] ()
AppInit_DLLs-x32: c:\progra~3\browse~1\261070~1.41\{c16c1~1\browse~1.dll c:\progra~2\optimi~1\optpro~1.dll [2869720 2013-10-29] ()
Startup: C:\Users\Chiano\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> D:\Programme\Apache_OOo3.4.1\program\quickstart.exe ()
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Finanzservice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BUFFALO NAS Navigator.lnk
ShortcutTarget: BUFFALO NAS Navigator.lnk -> C:\Program Files (x86)\BUFFALO\NASNAVI\NasNavi.exe (BUFFALO INC.)
Startup: C:\Users\Finanzservice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
Startup: C:\Users\Finanzservice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NAS Scheduler.lnk
ShortcutTarget: NAS Scheduler.lnk -> C:\Program Files (x86)\BUFFALO\NASNAVI\nassche.exe (BUFFALO INC.)
Startup: C:\Users\Kiyara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Nevio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
==================== Internet (Whitelisted) ====================
ProxyServer: internetproxy-ad.awd.de:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://start.qone8.com/?type=hp&ts=1382640504&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=d0003f68-93a6-4c04-890c-b4a1577c9683&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=05/05/2013&type=hp1000
HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistent = hxxp://www.the-exit.com/search
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = hxxp://www.the-exit.com/search
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.qone8.com/?type=hp&ts=1382640504&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBED419C064ABCB01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=d0003f68-93a6-4c04-890c-b4a1577c9683&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=05/05/2013&type=hp1000
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://start.qone8.com/?type=hp&ts=1382640504&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.qone8.com/?type=hp&ts=1382640504&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://start.qone8.com/?type=hp&ts=1382640504&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.qone8.com/?type=hp&ts=1382640504&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1382640505&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB&q={searchTerms}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1382640505&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1382640505&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=d0003f68-93a6-4c04-890c-b4a1577c9683&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=05/05/2013&type=hp1000
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1382640505&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB&q={searchTerms}
SearchScopes: HKLM-x32 - {DB3AAC4D-14B7-4B3E-9F70-58C2FDA8C5A2} URL = hxxp://search.chatzum.com/?orig=DS&affid=62&cztbid=542965517&q={searchTerms}
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=d0003f68-93a6-4c04-890c-b4a1577c9683&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=05/05/2013&type=hp1000
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=d0003f68-93a6-4c04-890c-b4a1577c9683&searchtype=ds&p={searchTerms}&fr=linkury-tb&installDate=05/05/2013&type=hp1000
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1382640505&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB&q={searchTerms}
BHO: Plus-HD-1.3 - {11111111-1111-1111-1111-110311121157} - C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-bho64.dll (Plus HD)
BHO: Feven 1.5 - {11111111-1111-1111-1111-110311851132} - C:\Program Files (x86)\Feven 1.5\Feven 1.5-bho64.dll (Feven)
BHO: CS Browser Assistant 2.0 - {11111111-1111-1111-1111-110411421186} - C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-bho64.dll (GetDeal GmbH)
BHO: Yahoo Community Smartbar (by Linkury)Engine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Plus-HD-1.3 - {11111111-1111-1111-1111-110311121157} - C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-bho.dll (Plus HD)
BHO-x32: Feven 1.5 - {11111111-1111-1111-1111-110311851132} - C:\Program Files (x86)\Feven 1.5\Feven 1.5-bho.dll (Feven)
BHO-x32: CS Browser Assistant 2.0 - {11111111-1111-1111-1111-110411421186} - C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-bho.dll (GetDeal GmbH)
BHO-x32: Broywsee2save - {29572963-3D4C-7B59-9599-0A0E33437AE4} - C:\ProgramData\Broywsee2save\5173025b1249e.dll ()
BHO-x32: Yahoo Community Smartbar (by Linkury)Engine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Spring Smart - {7f232128-6f42-4f37-8efe-2e6020b2d478} - C:\Program Files (x86)\Spring Smart\SpringSmartBHO.dll (Spring Smart)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: BRoawsoe2save - {A0AF96EA-FB97-D026-AE04-191DC64730A5} - C:\ProgramData\BRoawsoe2save\5172f5c3dcb96.dll ()
BHO-x32: Andasa iCat - {D3BA8E96-223F-4750-B36E-2BB19B582FDA} - C:\Program Files (x86)\Andasa\Andasa.dll (Andasa GmbH)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
Toolbar: HKLM - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {64EAD72B-FFD4-4E01-AA3A-4C71665D73E4} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default
FF user.js: detected! => C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\user.js
FF NewTab: hxxp://start.qone8.com/newtab/?type=nt&ts=1382640504&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB
FF SearchEngineOrder.1: ChatZumSearch
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");
FF Homepage: hxxp://start.qone8.com/?type=hp&ts=1382640504&from=adks&uid=TOSHIBAXMK3265GSXN_90LXB46OBXX90LXB46OB
FF Keyword.URL: hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=d0003f68-93a6-4c04-890c-b4a1577c9683&searchtype=ds&fr=linkury-tb&installDate=05/05/2013&type=hp1000&p=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files (x86)\Sony\Media Go\npmediago.dll (Sony Media Software and Services Inc)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @lightspark.github.com/Lightspark;version=1 - C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Finanzservice\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\qone8.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Feven 1.5 - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com
FF Extension: Plus-HD-1.3 - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\509508ef-0b14-4616-a557-0d58601be33d@c4a581e9-0ea6-46db-a185-58e021ee138c.com
FF Extension: Seearcuhy-NewTab - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\bpdtbb0d@tat.co.uk
FF Extension: Broywsee2save - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\czsc0eya@yyyaogxguue.net
FF Extension: CS Browser Assistant 2.0 - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\f642a7a0-3e89-45d2-875f-8394cf2f7196@2c30b4c2-9e83-4875-a4ca-6acd1e9923b2.com
FF Extension: Andasa iCat - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\plugin@andasa.de
FF Extension: BRoawsoe2save - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\roqtz@omcisfw.net
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: firefox - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\firefox@springsmart.net.xpi
FF Extension: toolbar - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\toolbar@web.de.xpi
FF Extension: Adblock Plus - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: prefs - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\{e411bb40-b04c-11d8-92e7-00d09e0179f2}.xpi
FF Extension: No Name - C:\Users\Finanzservice\AppData\Roaming\Mozilla\Firefox\Profiles\dbx8ql46.default\Extensions\{EC1B67CA-A2CD-4931-915A-63D5341D1285}.xpi
FF HKLM-x32\...\Firefox\Extensions: [ext@flash-Enhancer.com] - C:\Program Files (x86)\AmiExt\flashEnhancer\ff
Chrome:
=======
CHR Extension: (Feven 1.5) - C:\Users\FINANZ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\baodmgdpdoelldjmkhknbolcldnfjegg\1.25.48_0
CHR Extension: (Broywsee2save) - C:\Users\FINANZ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfpgofaahaiepjdbnhgpgbjoojfplglp\1
CHR Extension: (Plus-HD-1.3) - C:\Users\FINANZ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhlmghjmomaoodfgjeikphfdljhpcpkl\1.25.94_0
CHR Extension: (CS Browser Assistant 2.0) - C:\Users\FINANZ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jojaakapkmahmjjhblpccpbgfjdlpoce\1.25.6_0
CHR Extension: (Seearcuhy-NewTab) - C:\Users\FINANZ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbglgmjdogmefnloeeelfdjfagkilifk\1
CHR Extension: (BRoawsoe2save) - C:\Users\FINANZ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\momigjlafkofmgpbcejmfmejplbpnaed\1
CHR HKLM-x32\...\Chrome\Extension: [hempmfkijmahkaddljkmchcmjbojoedl] - C:\Users\Finanzservice\AppData\Local\CRE\hempmfkijmahkaddljkmchcmjbojoedl.crx
CHR HKLM-x32\...\Chrome\Extension: [ngnjhfpfhadncgafgbneeljaginimmmk] - C:\Users\FINANZ~1\AppData\Local\Temp\tbch.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 70e6ca8c; c:\progra~2\optimi~1\OptProCrash.exe [143488 2013-11-10] ()
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-08-12] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-08-12] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [3889424 2011-08-01] (INCA Internet Co., Ltd.)
R2 OMSI download service; C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [90112 2009-04-30] ()
R2 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [124368 2010-05-11] (Toshiba Europe GmbH)
S3 TuneUp.Defrag; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe [607048 2011-06-17] (TuneUp Software)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe [1403208 2010-05-10] (TuneUp Software)
R2 Update Spring Smart; C:\Program Files (x86)\Spring Smart\updateSpringSmart.exe [66344 2013-11-08] ()
R2 Util Spring Smart; C:\Program Files (x86)\Spring Smart\bin\utilSpringSmart.exe [66344 2013-11-08] ()
R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [424104 2013-11-08] (Taiwan Shui Mu Chih Ching Technology Limited.)
S2 PnkBstrA;
==================== Drivers (Whitelisted) ====================
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2011-12-26] ()
S3 dump_wmimmc; No ImagePath
S3 EagleX64; No ImagePath
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2011-12-26] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation)
S3 NPPTNT2; No ImagePath
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 s1018bus; C:\Windows\System32\DRIVERS\s1018bus.sys [113704 2009-03-25] (MCCI Corporation)
S3 s1018mdfl; C:\Windows\System32\DRIVERS\s1018mdfl.sys [19496 2009-03-25] (MCCI Corporation)
S3 s1018mdm; C:\Windows\System32\DRIVERS\s1018mdm.sys [153128 2009-03-25] (MCCI Corporation)
S3 s1018mgmt; C:\Windows\System32\DRIVERS\s1018mgmt.sys [133160 2009-03-25] (MCCI Corporation)
S3 s1018nd5; C:\Windows\System32\DRIVERS\s1018nd5.sys [34856 2009-03-25] (MCCI Corporation)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [128552 2009-03-25] (MCCI Corporation)
S3 s1018unic; C:\Windows\System32\DRIVERS\s1018unic.sys [146472 2009-03-25] (MCCI Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [11856 2009-10-14] (TuneUp Software)
S3 X6va005; \??\C:\Users\FINANZ~1\AppData\Local\Temp\0053B76.tmp [x]
S3 X6va006; \??\C:\Users\FINANZ~1\AppData\Local\Temp\006FD4.tmp [x]
S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-10 16:06 - 2013-11-10 16:07 - 00040426 ____C C:\Users\Finanzservice\Downloads\Addition.txt
2013-11-10 15:59 - 2013-11-10 15:59 - 00000000 ____D C:\FRST
2013-11-10 15:57 - 2013-11-10 16:02 - 01957156 ____C (Farbar) C:\Users\Finanzservice\Downloads\FRST64.exe
2013-11-10 15:16 - 2013-11-10 15:16 - 00001105 _____ C:\Users\Public\Desktop\PC Prima.lnk
2013-11-10 15:16 - 2013-11-10 15:16 - 00000000 ____D C:\Program Files (x86)\Ascentive
2013-11-10 15:15 - 2013-11-10 15:15 - 00000000 ____D C:\ProgramData\Oracle
2013-11-10 15:14 - 2013-11-10 15:13 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-10 15:14 - 2013-11-10 15:13 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-10 15:14 - 2013-11-10 15:13 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-10 15:14 - 2013-11-10 15:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-10 14:48 - 2013-11-10 14:49 - 00000000 ____D C:\Program Files (x86)\JFileManager
2013-11-10 14:47 - 2013-11-10 14:47 - 00004330 _____ C:\Windows\System32\Tasks\Feven 1.5-updater
2013-11-10 14:47 - 2013-11-10 14:47 - 00004232 _____ C:\Windows\System32\Tasks\Feven 1.5-codedownloader
2013-11-10 14:47 - 2013-11-10 14:47 - 00004132 _____ C:\Windows\System32\Tasks\Feven 1.5-enabler
2013-11-10 14:47 - 2013-11-10 14:47 - 00001300 _____ C:\Windows\Tasks\Feven 1.5-updater.job
2013-11-10 14:47 - 2013-11-10 14:47 - 00001202 _____ C:\Windows\Tasks\Feven 1.5-codedownloader.job
2013-11-10 14:47 - 2013-11-10 14:47 - 00001102 _____ C:\Windows\Tasks\Feven 1.5-enabler.job
2013-11-10 14:47 - 2013-11-10 14:47 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Optimizer Pro
2013-11-10 14:46 - 2013-11-10 14:46 - 00001830 _____ C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job
2013-11-10 14:46 - 2013-11-10 14:46 - 00001054 ____C C:\Users\Finanzservice\Desktop\MyPC Backup.lnk
2013-11-10 14:46 - 2013-11-10 14:46 - 00001029 ____C C:\Users\Finanzservice\Desktop\Optimizer Pro.lnk
2013-11-10 14:46 - 2013-11-10 14:46 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-11-10 14:45 - 2013-11-10 14:47 - 00000000 ____D C:\Program Files (x86)\Feven 1.5
2013-11-10 14:45 - 2013-11-10 14:46 - 00001906 _____ C:\Windows\Tasks\Feven 1.5-chromeinstaller.job
2013-11-10 08:10 - 2013-11-10 08:10 - 00001729 _____ C:\Users\Public\Desktop\League of Legends spielen .lnk
2013-11-10 08:10 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-11-10 08:10 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-11-10 08:10 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-11-10 08:10 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-11-10 08:10 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-11-10 08:01 - 2013-11-10 08:02 - 00000000 ____D C:\Riot Games
2013-11-10 07:54 - 2013-11-10 07:58 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Riot Games
2013-11-10 07:52 - 2013-11-10 07:52 - 34888568 ____C (Riot Games) C:\Users\Finanzservice\Downloads\LeagueofLegends_EUW_Installer_06_12_13(1).exe
2013-11-10 07:41 - 2013-11-10 07:41 - 34888568 ____C (Riot Games) C:\Users\Finanzservice\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-11-08 11:46 - 2013-11-08 11:46 - 00003024 _____ C:\Windows\System32\Tasks\{FA700486-766D-4EE6-9D45-20416EDBC346}
2013-11-08 11:46 - 2013-11-08 11:46 - 00003024 _____ C:\Windows\System32\Tasks\{2D303B4E-4D6D-49D6-8294-A7D363393837}
2013-11-08 11:46 - 2013-11-08 11:46 - 00003024 _____ C:\Windows\System32\Tasks\{230BC273-FB22-426F-970F-317784EE973B}
2013-11-08 11:36 - 2013-11-08 11:36 - 00003024 _____ C:\Windows\System32\Tasks\{F46E0A5C-6751-4486-879D-9F2CE829DAA1}
2013-11-08 11:35 - 2013-11-08 11:35 - 00003024 _____ C:\Windows\System32\Tasks\{A2D07641-7CB1-45D0-8F27-F256AA5C3F57}
2013-11-08 10:41 - 2013-11-08 10:41 - 00000000 _____ C:\Windows\SysWOW64\sho889.tmp
2013-11-08 10:17 - 2013-11-08 10:17 - 00000000 ____D C:\Windows\system32\log
2013-11-08 10:16 - 2013-11-09 18:35 - 00000000 ____D C:\Program Files (x86)\WinZipper
2013-11-08 10:16 - 2013-11-09 14:30 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\WinZipper
2013-11-08 10:16 - 2013-11-08 10:17 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\iSafe
2013-11-07 19:27 - 2013-11-07 19:28 - 00000000 ____D C:\Users\Chiano\AppData\Roaming\Desk 365
2013-11-07 15:21 - 2013-11-07 15:21 - 00000000 ___DC C:\Users\Finanzservice\Documents\Optimizer Pro
2013-11-07 15:20 - 2013-11-10 14:47 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-11-07 15:20 - 2013-11-08 10:16 - 00000000 ____D C:\Program Files (x86)\Desk 365
2013-11-07 15:20 - 2013-11-08 10:14 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Desk 365
2013-11-07 15:16 - 2013-11-10 15:16 - 00001312 _____ C:\Windows\Tasks\Plus-HD-1.3-updater.job
2013-11-07 15:16 - 2013-11-10 15:16 - 00001114 _____ C:\Windows\Tasks\Plus-HD-1.3-enabler.job
2013-11-07 15:16 - 2013-11-07 15:16 - 00004342 _____ C:\Windows\System32\Tasks\Plus-HD-1.3-updater
2013-11-07 15:16 - 2013-11-07 15:16 - 00004144 _____ C:\Windows\System32\Tasks\Plus-HD-1.3-enabler
2013-11-07 15:15 - 2013-11-10 15:20 - 00001846 _____ C:\Windows\Tasks\Plus-HD-1.3-firefoxinstaller.job
2013-11-07 15:15 - 2013-11-10 15:15 - 00001922 _____ C:\Windows\Tasks\Plus-HD-1.3-chromeinstaller.job
2013-11-07 15:15 - 2013-11-10 15:15 - 00001214 _____ C:\Windows\Tasks\Plus-HD-1.3-codedownloader.job
2013-11-07 15:15 - 2013-11-07 15:16 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.3
2013-11-07 15:15 - 2013-11-07 15:15 - 00004244 _____ C:\Windows\System32\Tasks\Plus-HD-1.3-codedownloader
2013-11-07 15:14 - 2013-11-10 14:43 - 00000000 _____ C:\END
2013-11-07 15:14 - 2013-11-07 15:14 - 00000000 ___DC C:\Users\Finanzservice\AppData\Local\SearchProtect
2013-11-07 15:14 - 2013-11-07 15:14 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2013-11-07 13:25 - 2013-11-07 13:25 - 00000000 ____D C:\Windows\pss
2013-11-07 13:18 - 2013-11-07 13:18 - 00000017 ____C C:\Users\Finanzservice\AppData\Local\resmon.resmoncfg
2013-11-05 16:14 - 2013-11-07 12:42 - 00000000 ____D C:\Program Files (x86)\AmiExt
2013-11-05 16:13 - 2013-11-10 16:18 - 00001954 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-firefoxinstaller.job
2013-11-05 16:13 - 2013-11-10 16:13 - 00002028 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-chromeinstaller.job
2013-11-05 16:13 - 2013-11-10 16:13 - 00001394 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-updater.job
2013-11-05 16:13 - 2013-11-10 16:13 - 00001296 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-codedownloader.job
2013-11-05 16:13 - 2013-11-10 16:13 - 00001196 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-enabler.job
2013-11-05 16:13 - 2013-11-05 16:13 - 00004424 _____ C:\Windows\System32\Tasks\CS Browser Assistant 2.0-updater
2013-11-05 16:13 - 2013-11-05 16:13 - 00004326 _____ C:\Windows\System32\Tasks\CS Browser Assistant 2.0-codedownloader
2013-11-05 16:13 - 2013-11-05 16:13 - 00004226 _____ C:\Windows\System32\Tasks\CS Browser Assistant 2.0-enabler
2013-11-05 16:13 - 2013-11-05 16:13 - 00000000 ____D C:\Program Files (x86)\CSBrowserHelper
2013-11-05 16:13 - 2013-11-05 16:13 - 00000000 ____D C:\Program Files (x86)\CS Browser Assistant 2.0
2013-11-05 16:12 - 2013-11-10 14:35 - 00000388 _____ C:\Windows\Tasks\AmiUpdXp.job
2013-11-05 16:12 - 2013-11-07 12:43 - 00000000 ___DC C:\Users\Finanzservice\AppData\Local\Lollipop
2013-11-05 16:12 - 2013-11-05 16:12 - 00003424 _____ C:\Windows\System32\Tasks\AmiUpdXp
2013-11-05 16:12 - 2013-11-05 16:12 - 00000000 ___DC C:\Users\Finanzservice\AppData\Local\SwvUpdater
2013-11-05 16:08 - 2013-11-05 16:08 - 00152608 ____C (Amônétízé Ltd) C:\Users\Finanzservice\Downloads\FlashPlayer__4003_i121498356_il296.exe
2013-10-25 19:48 - 2013-10-25 19:49 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2013-10-25 15:33 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-25 15:33 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-25 15:33 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-25 15:33 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-25 15:33 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-25 15:33 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-25 15:33 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-24 20:20 - 2013-10-24 20:20 - 00001020 ____C C:\Users\Finanzservice\Desktop\Free PDF to Word Doc Converter.lnk
2013-10-24 20:20 - 2013-10-24 20:20 - 00000000 ____D C:\Program Files (x86)\Free PDF to Word Doc Converter
2013-10-24 19:49 - 2013-10-25 19:52 - 00000000 ____D C:\Program Files (x86)\Spring Smart
2013-10-24 19:48 - 2013-11-01 02:19 - 00000000 ____D C:\ProgramData\eSafe
2013-10-24 19:39 - 2013-10-24 19:29 - 01884456 ____C (Express Install ) C:\Users\Finanzservice\Downloads\Updater_Setup(1).exe
2013-10-24 19:27 - 2013-10-24 19:28 - 01884456 ____C (Express Install ) C:\Users\Finanzservice\Downloads\Updater_Setup.exe
2013-10-22 14:37 - 2013-10-22 15:50 - 00008000 _____ C:\Users\Chiano\Desktop\Ozonschicht text.odt
2013-10-20 19:02 - 2013-10-20 19:02 - 00011879 _____ C:\Users\Chiano\Desktop\Ozonloch Text.odt
2013-10-20 17:21 - 2013-10-22 14:56 - 06610932 _____ C:\Users\Chiano\Desktop\Referat Ozonloch.odp
2013-10-20 16:33 - 2013-10-20 16:50 - 00000000 ____D C:\Users\Chiano\Desktop\Ozon
2013-10-11 02:49 - 2013-10-11 02:49 - 00000000 _____ C:\Windows\SysWOW64\sho370B.tmp
2013-10-11 02:25 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 02:25 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 02:25 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 02:25 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 02:25 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 02:25 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 02:25 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 02:25 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 02:25 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 02:25 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 02:25 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 02:25 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 02:25 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 02:25 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 02:25 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 02:25 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 02:25 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 02:25 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 02:25 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 02:24 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 02:24 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 02:24 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 02:24 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
==================== One Month Modified Files and Folders =======
2013-11-10 16:53 - 2012-08-29 19:40 - 00000000 ___DC C:\Users\Finanzservice\AppData\Local\PMB Files
2013-11-10 16:51 - 2011-11-17 21:45 - 11806720 __SHC C:\Users\Finanzservice\Downloads\Thumbs.db
2013-11-10 16:41 - 2012-04-17 15:47 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-10 16:27 - 2011-01-24 16:11 - 01881886 _____ C:\Windows\WindowsUpdate.log
2013-11-10 16:18 - 2013-11-05 16:13 - 00001954 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-firefoxinstaller.job
2013-11-10 16:13 - 2013-11-05 16:13 - 00002028 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-chromeinstaller.job
2013-11-10 16:13 - 2013-11-05 16:13 - 00001394 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-updater.job
2013-11-10 16:13 - 2013-11-05 16:13 - 00001296 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-codedownloader.job
2013-11-10 16:13 - 2013-11-05 16:13 - 00001196 _____ C:\Windows\Tasks\CS Browser Assistant 2.0-enabler.job
2013-11-10 16:07 - 2013-11-10 16:06 - 00040426 ____C C:\Users\Finanzservice\Downloads\Addition.txt
2013-11-10 16:02 - 2013-11-10 15:57 - 01957156 ____C (Farbar) C:\Users\Finanzservice\Downloads\FRST64.exe
2013-11-10 15:59 - 2013-11-10 15:59 - 00000000 ____D C:\FRST
2013-11-10 15:20 - 2013-11-07 15:15 - 00001846 _____ C:\Windows\Tasks\Plus-HD-1.3-firefoxinstaller.job
2013-11-10 15:16 - 2013-11-10 15:16 - 00001105 _____ C:\Users\Public\Desktop\PC Prima.lnk
2013-11-10 15:16 - 2013-11-10 15:16 - 00000000 ____D C:\Program Files (x86)\Ascentive
2013-11-10 15:16 - 2013-11-07 15:16 - 00001312 _____ C:\Windows\Tasks\Plus-HD-1.3-updater.job
2013-11-10 15:16 - 2013-11-07 15:16 - 00001114 _____ C:\Windows\Tasks\Plus-HD-1.3-enabler.job
2013-11-10 15:15 - 2013-11-10 15:15 - 00000000 ____D C:\ProgramData\Oracle
2013-11-10 15:15 - 2013-11-07 15:15 - 00001922 _____ C:\Windows\Tasks\Plus-HD-1.3-chromeinstaller.job
2013-11-10 15:15 - 2013-11-07 15:15 - 00001214 _____ C:\Windows\Tasks\Plus-HD-1.3-codedownloader.job
2013-11-10 15:13 - 2013-11-10 15:14 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-10 15:13 - 2013-11-10 15:14 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-10 15:13 - 2013-11-10 15:14 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-10 15:13 - 2013-11-10 15:14 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-10 15:13 - 2012-07-09 09:10 - 00868264 _____ (Oracle Corporation) C:\Windows\SysWOW64\npdeployJava1.dll
2013-11-10 15:13 - 2011-06-21 23:20 - 00790440 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-11-10 14:49 - 2013-11-10 14:48 - 00000000 ____D C:\Program Files (x86)\JFileManager
2013-11-10 14:47 - 2013-11-10 14:47 - 00004330 _____ C:\Windows\System32\Tasks\Feven 1.5-updater
2013-11-10 14:47 - 2013-11-10 14:47 - 00004232 _____ C:\Windows\System32\Tasks\Feven 1.5-codedownloader
2013-11-10 14:47 - 2013-11-10 14:47 - 00004132 _____ C:\Windows\System32\Tasks\Feven 1.5-enabler
2013-11-10 14:47 - 2013-11-10 14:47 - 00001300 _____ C:\Windows\Tasks\Feven 1.5-updater.job
2013-11-10 14:47 - 2013-11-10 14:47 - 00001202 _____ C:\Windows\Tasks\Feven 1.5-codedownloader.job
2013-11-10 14:47 - 2013-11-10 14:47 - 00001102 _____ C:\Windows\Tasks\Feven 1.5-enabler.job
2013-11-10 14:47 - 2013-11-10 14:47 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Optimizer Pro
2013-11-10 14:47 - 2013-11-10 14:45 - 00000000 ____D C:\Program Files (x86)\Feven 1.5
2013-11-10 14:47 - 2013-11-07 15:20 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-11-10 14:47 - 2013-04-20 21:09 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2013-11-10 14:46 - 2013-11-10 14:46 - 00001830 _____ C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job
2013-11-10 14:46 - 2013-11-10 14:46 - 00001054 ____C C:\Users\Finanzservice\Desktop\MyPC Backup.lnk
2013-11-10 14:46 - 2013-11-10 14:46 - 00001029 ____C C:\Users\Finanzservice\Desktop\Optimizer Pro.lnk
2013-11-10 14:46 - 2013-11-10 14:46 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-11-10 14:46 - 2013-11-10 14:45 - 00001906 _____ C:\Windows\Tasks\Feven 1.5-chromeinstaller.job
2013-11-10 14:46 - 2011-06-09 21:24 - 00000000 __RDC C:\Users\Finanzservice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-10 14:43 - 2013-11-07 15:14 - 00000000 _____ C:\END
2013-11-10 14:35 - 2013-11-05 16:12 - 00000388 _____ C:\Windows\Tasks\AmiUpdXp.job
2013-11-10 13:32 - 2008-08-24 19:19 - 00497664 __SHC C:\Users\Finanzservice\Desktop\Thumbs.db
2013-11-10 09:24 - 2011-06-15 20:45 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Skype
2013-11-10 08:12 - 2012-08-29 19:40 - 00000000 ____D C:\ProgramData\PMB Files
2013-11-10 08:10 - 2013-11-10 08:10 - 00001729 _____ C:\Users\Public\Desktop\League of Legends spielen .lnk
2013-11-10 08:02 - 2013-11-10 08:01 - 00000000 ____D C:\Riot Games
2013-11-10 08:01 - 2010-11-11 17:37 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-10 07:58 - 2013-11-10 07:54 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Riot Games
2013-11-10 07:52 - 2013-11-10 07:52 - 34888568 ____C (Riot Games) C:\Users\Finanzservice\Downloads\LeagueofLegends_EUW_Installer_06_12_13(1).exe
2013-11-10 07:41 - 2013-11-10 07:41 - 34888568 ____C (Riot Games) C:\Users\Finanzservice\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-11-09 21:51 - 2013-06-27 22:29 - 00000360 _____ C:\Windows\Tasks\rbmonitor.job
2013-11-09 21:51 - 2013-06-27 22:29 - 00000328 _____ C:\Windows\Tasks\RegistryBooster.job
2013-11-09 18:40 - 2009-07-14 05:45 - 00020144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-09 18:40 - 2009-07-14 05:45 - 00020144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-09 18:35 - 2013-11-08 10:16 - 00000000 ____D C:\Program Files (x86)\WinZipper
2013-11-09 18:32 - 2012-08-13 00:00 - 00051100 _____ C:\Windows\setupact.log
2013-11-09 18:32 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-09 14:30 - 2013-11-08 10:16 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\WinZipper
2013-11-08 18:00 - 2004-12-02 11:53 - 00000000 ___DC C:\Users\Finanzservice\Documents\Privat
2013-11-08 11:46 - 2013-11-08 11:46 - 00003024 _____ C:\Windows\System32\Tasks\{FA700486-766D-4EE6-9D45-20416EDBC346}
2013-11-08 11:46 - 2013-11-08 11:46 - 00003024 _____ C:\Windows\System32\Tasks\{2D303B4E-4D6D-49D6-8294-A7D363393837}
2013-11-08 11:46 - 2013-11-08 11:46 - 00003024 _____ C:\Windows\System32\Tasks\{230BC273-FB22-426F-970F-317784EE973B}
2013-11-08 11:36 - 2013-11-08 11:36 - 00003024 _____ C:\Windows\System32\Tasks\{F46E0A5C-6751-4486-879D-9F2CE829DAA1}
2013-11-08 11:35 - 2013-11-08 11:35 - 00003024 _____ C:\Windows\System32\Tasks\{A2D07641-7CB1-45D0-8F27-F256AA5C3F57}
2013-11-08 10:44 - 2011-06-10 22:17 - 00270330 _____ C:\Windows\PFRO.log
2013-11-08 10:41 - 2013-11-08 10:41 - 00000000 _____ C:\Windows\SysWOW64\sho889.tmp
2013-11-08 10:17 - 2013-11-08 10:17 - 00000000 ____D C:\Windows\system32\log
2013-11-08 10:17 - 2013-11-08 10:16 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\iSafe
2013-11-08 10:16 - 2013-11-07 15:20 - 00000000 ____D C:\Program Files (x86)\Desk 365
2013-11-08 10:16 - 2011-02-19 23:03 - 00421032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp100.dll
2013-11-08 10:14 - 2013-11-07 15:20 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Desk 365
2013-11-08 06:49 - 2011-12-01 18:01 - 00003950 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{DA887EC8-84A2-4E47-969F-35A9F4E82CC9}
2013-11-07 19:28 - 2013-11-07 19:27 - 00000000 ____D C:\Users\Chiano\AppData\Roaming\Desk 365
2013-11-07 16:19 - 2013-04-20 21:24 - 00000000 ____D C:\ProgramData\Broywsee2save
2013-11-07 16:11 - 2013-04-20 21:08 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-07 15:21 - 2013-11-07 15:21 - 00000000 ___DC C:\Users\Finanzservice\Documents\Optimizer Pro
2013-11-07 15:16 - 2013-11-07 15:16 - 00004342 _____ C:\Windows\System32\Tasks\Plus-HD-1.3-updater
2013-11-07 15:16 - 2013-11-07 15:16 - 00004144 _____ C:\Windows\System32\Tasks\Plus-HD-1.3-enabler
2013-11-07 15:16 - 2013-11-07 15:15 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.3
2013-11-07 15:15 - 2013-11-07 15:15 - 00004244 _____ C:\Windows\System32\Tasks\Plus-HD-1.3-codedownloader
2013-11-07 15:14 - 2013-11-07 15:14 - 00000000 ___DC C:\Users\Finanzservice\AppData\Local\SearchProtect
2013-11-07 15:14 - 2013-11-07 15:14 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2013-11-07 13:25 - 2013-11-07 13:25 - 00000000 ____D C:\Windows\pss
2013-11-07 13:18 - 2013-11-07 13:18 - 00000017 ____C C:\Users\Finanzservice\AppData\Local\resmon.resmoncfg
2013-11-07 12:50 - 2011-07-16 13:40 - 00133120 __SHC C:\Users\Finanzservice\Thumbs.db
2013-11-07 12:45 - 2011-06-21 23:20 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-07 12:43 - 2013-11-05 16:12 - 00000000 ___DC C:\Users\Finanzservice\AppData\Local\Lollipop
2013-11-07 12:42 - 2013-11-05 16:14 - 00000000 ____D C:\Program Files (x86)\AmiExt
2013-11-07 12:09 - 2013-07-01 23:02 - 00000000 __RDC C:\Users\Finanzservice\Dropbox
2013-11-07 12:09 - 2013-07-01 22:59 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\Dropbox
2013-11-06 13:34 - 2013-10-06 14:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-06 13:34 - 2012-04-26 19:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-05 22:27 - 2011-06-14 20:58 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\SoftGrid Client
2013-11-05 16:13 - 2013-11-05 16:13 - 00004424 _____ C:\Windows\System32\Tasks\CS Browser Assistant 2.0-updater
2013-11-05 16:13 - 2013-11-05 16:13 - 00004326 _____ C:\Windows\System32\Tasks\CS Browser Assistant 2.0-codedownloader
2013-11-05 16:13 - 2013-11-05 16:13 - 00004226 _____ C:\Windows\System32\Tasks\CS Browser Assistant 2.0-enabler
2013-11-05 16:13 - 2013-11-05 16:13 - 00000000 ____D C:\Program Files (x86)\CSBrowserHelper
2013-11-05 16:13 - 2013-11-05 16:13 - 00000000 ____D C:\Program Files (x86)\CS Browser Assistant 2.0
2013-11-05 16:12 - 2013-11-05 16:12 - 00003424 _____ C:\Windows\System32\Tasks\AmiUpdXp
2013-11-05 16:12 - 2013-11-05 16:12 - 00000000 ___DC C:\Users\Finanzservice\AppData\Local\SwvUpdater
2013-11-05 16:08 - 2013-11-05 16:08 - 00152608 ____C (Amônétízé Ltd) C:\Users\Finanzservice\Downloads\FlashPlayer__4003_i121498356_il296.exe
2013-11-03 21:06 - 2011-08-27 19:16 - 00000000 ___DC C:\Users\Finanzservice\AppData\Local\FreePDF_XP
2013-11-02 21:40 - 2009-07-14 18:58 - 00708164 _____ C:\Windows\system32\perfh007.dat
2013-11-02 21:40 - 2009-07-14 18:58 - 00153466 _____ C:\Windows\system32\perfc007.dat
2013-11-02 21:40 - 2009-07-14 06:13 - 01644364 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-02 14:53 - 2011-10-26 17:06 - 00000000 ____D C:\Users\Chiano\AppData\Roaming\Skype
2013-11-02 00:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-11-01 02:19 - 2013-10-24 19:48 - 00000000 ____D C:\ProgramData\eSafe
2013-10-25 19:52 - 2013-10-24 19:49 - 00000000 ____D C:\Program Files (x86)\Spring Smart
2013-10-25 19:49 - 2013-10-25 19:48 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2013-10-25 13:36 - 2011-06-20 14:16 - 00003812 _____ C:\Windows\System32\Tasks\Adobe Reader and Acrobat Manager
2013-10-24 20:50 - 2013-05-12 13:59 - 00001986 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-24 20:32 - 2011-08-30 08:15 - 00000000 ___DC C:\Users\Finanzservice\AppData\Roaming\EurekaLog
2013-10-24 20:20 - 2013-10-24 20:20 - 00001020 ____C C:\Users\Finanzservice\Desktop\Free PDF to Word Doc Converter.lnk
2013-10-24 20:20 - 2013-10-24 20:20 - 00000000 ____D C:\Program Files (x86)\Free PDF to Word Doc Converter
2013-10-24 20:02 - 2012-10-15 10:14 - 00001114 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-24 19:48 - 2011-06-09 22:49 - 00001640 ____C C:\Users\Finanzservice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-24 19:29 - 2013-10-24 19:39 - 01884456 ____C (Express Install ) C:\Users\Finanzservice\Downloads\Updater_Setup(1).exe
2013-10-24 19:28 - 2013-10-24 19:27 - 01884456 ____C (Express Install ) C:\Users\Finanzservice\Downloads\Updater_Setup.exe
2013-10-23 11:55 - 2010-03-03 14:35 - 00000000 ___DC C:\Users\Finanzservice\Documents\Datensicherung
2013-10-22 17:33 - 2011-08-28 17:08 - 00000000 ____D C:\Users\Chiano\AppData\Roaming\SoftGrid Client
2013-10-22 15:50 - 2013-10-22 14:37 - 00008000 _____ C:\Users\Chiano\Desktop\Ozonschicht text.odt
2013-10-22 14:56 - 2013-10-20 17:21 - 06610932 _____ C:\Users\Chiano\Desktop\Referat Ozonloch.odp
2013-10-20 19:02 - 2013-10-20 19:02 - 00011879 _____ C:\Users\Chiano\Desktop\Ozonloch Text.odt
2013-10-20 16:50 - 2013-10-20 16:33 - 00000000 ____D C:\Users\Chiano\Desktop\Ozon
2013-10-19 01:26 - 2006-01-25 16:53 - 02033152 __SHC C:\Users\Finanzservice\Documents\Thumbs.db
2013-10-16 20:44 - 2012-04-18 22:09 - 00001912 _____ C:\Windows\epplauncher.mif
2013-10-16 20:44 - 2012-04-18 22:08 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-10-16 20:44 - 2012-04-18 22:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-10-16 13:13 - 2011-06-09 21:24 - 00000000 ___DC C:\Users\Finanzservice
2013-10-16 13:13 - 2011-04-02 11:05 - 00227328 ____C C:\Users\Finanzservice\Kisteninventur.xls
2013-10-11 05:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 02:51 - 2009-07-14 05:45 - 00349344 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 02:50 - 2013-03-13 22:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 02:50 - 2010-11-11 17:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 02:49 - 2013-10-11 02:49 - 00000000 _____ C:\Windows\SysWOW64\sho370B.tmp
2013-10-11 02:21 - 2011-06-14 20:57 - 01622258 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-11 02:16 - 2013-08-06 03:30 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 02:11 - 2011-06-21 17:05 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
Files to move or delete:
====================
C:\ProgramData\hpe9A66.dll
Some content of TEMP:
====================
C:\Users\Chiano\AppData\Local\Temp\jk-bstlc.dll
C:\Users\Chiano\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Chiano\AppData\Local\Temp\wsalssmz.dll
C:\Users\Finanzservice\AppData\Local\Temp\BackupSetup.exe
C:\Users\Finanzservice\AppData\Local\Temp\bootstrapper.exe
C:\Users\Finanzservice\AppData\Local\Temp\chatzum_softonic_yahoo_62_v5.exe
C:\Users\Finanzservice\AppData\Local\Temp\fft8283.tmp.exe
C:\Users\Finanzservice\AppData\Local\Temp\iet393.tmp.exe
C:\Users\Finanzservice\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Finanzservice\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Finanzservice\AppData\Local\Temp\mediago_setup.exe
C:\Users\Finanzservice\AppData\Local\Temp\NGM.exe
C:\Users\Finanzservice\AppData\Local\Temp\NGMDll.dll
C:\Users\Finanzservice\AppData\Local\Temp\NGMResource.dll
C:\Users\Finanzservice\AppData\Local\Temp\NGMSetup.exe
C:\Users\Finanzservice\AppData\Local\Temp\setup.exe
C:\Users\Finanzservice\AppData\Local\Temp\Shockwave_Installer_FF.exe
C:\Users\Finanzservice\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Finanzservice\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Finanzservice\AppData\Local\Temp\tbBitt.dll
C:\Users\Finanzservice\AppData\Local\Temp\tbedrs.dll
C:\Users\Finanzservice\AppData\Local\Temp\unicows.dll
C:\Users\Finanzservice\AppData\Local\Temp\uninst1.exe
C:\Users\Finanzservice\AppData\Local\Temp\Upgrade.exe
C:\Users\Finanzservice\AppData\Local\Temp\uttE57D.tmp.exe
C:\Users\Finanzservice\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Finanzservice\AppData\Local\Temp\vcredist_x86.exe
C:\Users\Finanzservice\AppData\Local\Temp\_is472F.exe
C:\Users\Kiyara\AppData\Local\Temp\FlashPlayerUpdate.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-07 21:34
==================== End Of Log ============================
--- --- ---
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-11-2013
Ran by Finanzservice at 2013-11-10 16:55:53
Running from C:\Users\Finanzservice\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.4.144)
Andasa iCat (x32 Version: 2.0.319)
Bluetooth Stack for Windows by Toshiba (Version: v7.10.10(T))
Broadcom 802.11 Network Adapter (Version: 5.60.48.42)
BrowseToSave 1.74 (x32)
BSHHilfe v1.2 (x32 Version: 1.2)
BSHTOPExtra v1.9 AllVersions (x32 Version: 1.9)
BSHTOPExtra v1.9.2 AllVersions (x32 Version: 1.9.2)
BUFFALO NAS Navigator (x32)
CS Browser Assistant 2.0 (x32 Version: 1.29.153.0)
D3DX10 (x32 Version: 15.4.2368.0902)
DMUninstaller (x32)
Dropbox (HKCU Version: 2.2.13)
eXPert PDF 6 (x32 Version: 6.0.1400.0)
Feven 1.5 (x32 Version: 1.30.153.0)
Finanzplan in Excel Version 3.3.02 (x32)
Free PDF to Word Doc Converter v1.1 (x32 Version: 1.1)
FreePDF (Remove only) (x32)
GPL Ghostscript (x32 Version: 9.04)
HP Officejet Pro 8500 A910 - Grundlegende Software für das Gerät (Version: 22.0.334.0)
HP Officejet Pro 8500 A910 Hilfe (x32 Version: 140.0.2.2)
HP Update (x32 Version: 5.003.001.001)
I.R.I.S. OCR (x32 Version: 12.3.4)
Intel(R) Graphics Media Accelerator Driver (x32 Version: 8.15.10.2086)
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179)
Intel(R) Rapid Storage Technology (x32 Version: 9.5.7.1002)
Java 7 Update 40 (x32 Version: 7.0.400)
Java Auto Updater (x32 Version: 2.1.9.8)
JFileManager (x32 Version: v1.10)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
League of Legends (x32 Version: 1.3)
Media Go (x32 Version: 1.4.269)
Mesh Runtime (x32 Version: 15.4.5722.2)
Messenger Companion (x32 Version: 15.4.3502.0922)
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322)
Microsoft .NET Framework 1.1 German Language Pack (x32 Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office OneNote 2003 (x32 Version: 11.0.8173.0)
Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.4763.1000)
Microsoft PowerPoint Viewer (x32 Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.3.0219.0)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.3.219.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Works 7.0 (x32 Version: 07.02.0702)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0)
Mozilla Firefox 25.0 (x86 de) (x32 Version: 25.0)
Mozilla Maintenance Service (x32 Version: 25.0)
Mozilla Thunderbird (8.0) (x32 Version: 8.0 (de))
Mozilla Thunderbird 24.1.0 (x86 de) (HKCU Version: 24.1.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MyPC Backup (Version: )
Nero 10 Movie ThemePack Basic (x32 Version: 10.0.10600.6.0)
Nero BackItUp 10 (x32 Version: 5.4.24700.31.100)
Nero BackItUp 10 Help (CHM) (x32 Version: 1.0.10900)
Nero BurnRights 10 (x32 Version: 4.0.11300.14.100)
Nero BurnRights 10 Help (CHM) (x32 Version: 1.0.10900)
Nero Control Center 10 (x32 Version: 10.2.200.0.2)
Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10900)
Nero Core Components 10 (x32 Version: 2.0.16800.7.15)
Nero Express 10 (x32 Version: 10.0.12100.22.100)
Nero Express 10 Help (CHM) (x32 Version: 1.0.10900)
Nero InfoTool 10 (x32 Version: 7.0.11400.15.100)
Nero InfoTool 10 Help (CHM) (x32 Version: 1.0.10900)
Nero MediaHub 10 (x32 Version: 1.0.14800.28.100)
Nero MediaHub 10 Help (CHM) (x32 Version: 1.0.10900)
Nero Multimedia Suite 10 Essentials (x32 Version: 10.0.15000)
Nero RescueAgent 10 (x32 Version: 3.0.11800.26.100)
Nero RescueAgent 10 Help (CHM) (x32 Version: 1.0.10900)
Nero StartSmart 10 (x32 Version: 10.0.12300.27.100)
Nero StartSmart 10 Help (CHM) (x32 Version: 1.0.10900)
Nero Update (x32 Version: 1.0.0018)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)
Optimizer Pro v3.2 (x32)
Pando Media Booster (x32 Version: 2.6.0.8)
PC Prima (x32 Version: 7.5.5)
phase-6 2.3.4-beta-1 (x32 Version: 2.3.4-beta-1)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Plus-HD-1.3 (x32 Version: 1.30.153.0)
posterXXL.de Bestellsoftware 4.80 (x32)
QuickTime (x32 Version: 7.73.80.64)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.13.112.2010)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6069)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30111)
RedMon - Redirection Port Monitor
Sherlock Holmes jagt Arsene Lupin (x32 Version: 1.00.0777)
Skype™ 6.6 (x32 Version: 6.6.106)
Software Version Updater (x32 Version: 1.1.3.8)
Sony Ericsson PC Companion 1.60.13 (x32 Version: 1.60.13)
Sony Ericsson PC Suite 6.011.00 (x32 Version: 6.011.00)
Spring Smart 1.0.0 (Version: 1.0.0)
swMSM (x32 Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.0.8.1)
TeamViewer 8 (x32 Version: 8.0.22298)
Toshiba Assist (x32 Version: 3.00.11)
TOSHIBA Bulletin Board (Version: 1.6.07.64)
TOSHIBA Bulletin Board (x32 Version: 1.6.07.64)
TOSHIBA ConfigFree (x32 Version: 8.0.35)
TOSHIBA Disc Creator (Version: 2.1.0.2 for x64)
TOSHIBA eco Utility (Version: 1.2.11.64)
TOSHIBA eco Utility (x32 Version: 1.2.11.64)
TOSHIBA Face Recognition (Version: 3.1.3.64)
TOSHIBA Face Recognition (x32 Version: 3.1.3.64)
TOSHIBA Flash Cards Support Utility (x32 Version: 1.63.0.11C)
TOSHIBA Hardware Setup (x32 Version: 1.63.0.30C)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.6)
TOSHIBA HDD/SSD Alert (x32 Version: 3.1.64.6)
Toshiba Manuals (x32 Version: 10.02)
TOSHIBA Media Controller (x32 Version: 1.0.80.8.64)
TOSHIBA Media Controller Plug-in (x32 Version: 1.0.5.11)
TOSHIBA Online Product Information (x32 Version: 2.09.0001)
TOSHIBA PC Health Monitor (Version: 1.6.0.64)
TOSHIBA Recovery Media Creator (Version: 2.1.0.5 x64)
TOSHIBA Recovery Media Creator Reminder (x32 Version: 1.00.0019)
TOSHIBA ReelTime (Version: 1.6.06.64)
TOSHIBA ReelTime (x32 Version: 1.6.06.64)
TOSHIBA Service Station (x32 Version: 2.1.40)
TOSHIBA Supervisor Password (x32 Version: 1.63.0.10C)
TOSHIBA Supervisorkennwort (x32 Version: 1.63.0.10C)
Toshiba TEMPRO (x32 Version: 3.33)
TOSHIBA Value Added Package (Version: 1.3.19.64)
TOSHIBA Value Added Package (x32 Version: 1.3.19.64)
TOSHIBA Web Camera Application (x32 Version: 1.1.1.15)
TRORMCLauncher (Version: 1.0.0.10)
TRORMCLauncher (x32 Version: )
TuneUp Utilities (x32 Version: 9.0.4100.36)
TuneUp Utilities Language Pack (de-DE) (x32 Version: 9.0.4100.36)
Uniblue RegistryBooster (x32 Version: 6.1.1.2)
Unity Web Player (HKCU Version: )
uniVersa Windows Edition (x32 Version: 6.10)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Utility Common Driver (x32 Version: 1.0.52.2C)
VideoPerformer (x32)
VOIS 5.15.22 (x32 Version: 5.15.22)
WEB.DE MailCheck für Mozilla Firefox (x32 Version: 2.1.4.1300)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
WinRAR 4.01 (32-Bit) (x32 Version: 4.01.0)
WinZipper (x32 Version: 1.4.8)
==================== Restore Points =========================
07-11-2013 20:41:15 Geplanter Prüfpunkt
09-11-2013 10:47:28 Windows Update
10-11-2013 06:56:40 Installed League of Legends
10-11-2013 07:01:29 Installiert League of Legends
10-11-2013 14:10:37 Installed Java 7 Update 40
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {060117FF-D5C0-4EA5-ADEE-863A248EB63F} - System32\Tasks\CS Browser Assistant 2.0-updater => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-updater.exe [2013-11-05] (GetDeal GmbH)
Task: {07E378C8-EB59-4748-971E-438D28258300} - System32\Tasks\{B8F6F61C-8196-45C3-82B9-666E2690E34D} => C:\Riot Games\League of Legends\lol.launcher.exe [2012-05-29] ()
Task: {09EB3681-2D0D-4218-8B5F-68CA581CB8A9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10] (Adobe Systems Incorporated)
Task: {0BF0165F-1C6C-41D2-B4ED-0DCF1ABFFDF2} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe
Task: {0E1C62F2-680C-4544-8786-A84D46145DCD} - System32\Tasks\RegistryBooster => C:\Program Files (x86)\Uniblue\RegistryBooster\registrybooster.exe [2013-06-17] (Uniblue Systems Limited)
Task: {11D9A419-DBBC-4135-B2E5-E85915A1B31A} - System32\Tasks\{DA07D2CC-4DC4-4FEF-82CB-71212B195F6E} => D:\Programme\Apache_OOo3.4.1\program\soffice.exe [2012-08-13] (OpenOffice.org)
Task: {134F6F12-EF89-41F0-83B8-51F00A7D43C6} - System32\Tasks\CS Browser Assistant 2.0-chromeinstaller => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-chromeinstaller.exe [2013-11-05] (GetDeal GmbH)
Task: {1445389E-4E6E-4C5F-825B-E6A7D989E821} - System32\Tasks\{4A701CB7-9013-42BF-9391-10DB705991C7} => C:\Riot Games\League of Legends\lol.launcher.exe [2012-05-29] ()
Task: {182F0A18-7304-4CAA-8BB6-3A973AAE7160} - System32\Tasks\{56F41EA2-0DAD-4F52-88F3-7014AF354877} => D:\Programme\Apache_OOo3.4.1\program\soffice.exe [2012-08-13] (OpenOffice.org)
Task: {1E1751FD-3978-4EEF-8B59-CE21974C4E8C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\Program Files (x86)\TuneUp Utilities 2010\OneClick.exe [2010-05-10] (TuneUp Software)
Task: {21E746D6-1E1B-4A94-83A8-8CA0F517E440} - System32\Tasks\Finanzservice Local Autobackup 5 4 => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBCore.exe [2010-09-02] (Nero AG)
Task: {2428921F-C2CB-4208-8D99-4A46FB7ED6F0} - System32\Tasks\{FA700486-766D-4EE6-9D45-20416EDBC346} => C:\Program Files (x86)\HP\HP Officejet Pro 8500 A910\bin\HPScan.exe [2010-06-14] (Hewlett-Packard Co.)
Task: {24560599-8B7D-4416-9AB0-86E04303A8D7} - System32\Tasks\{0B3E286F-0079-4CDD-87B6-BEF7C8EED0A2} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {26BDDDBC-388F-476A-BDFF-162F7FC99319} - System32\Tasks\{FA04F026-30FB-4668-A555-B978066535F8} => C:\Riot Games\League of Legends\lol.launcher.exe [2012-05-29] ()
Task: {29739579-8775-49F2-93DE-C44672B1D390} - System32\Tasks\{C698CA8B-A42C-4219-BB77-81EB31528E20} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {3263D8CF-9705-435D-9BD6-884C1ECDB27A} - System32\Tasks\{7C494669-4C67-4F87-944A-076498AB7549} => Firefox.exe hxxp://ui.skype.com/ui/0/5.3.0.120.280/de/go/help.faq.installer?LastError=1618
Task: {3895990D-A2AA-4DCC-A536-66C44DE1D33C} - System32\Tasks\{B189EAB6-1CA7-47F9-B742-850CBEE300C6} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {39D3B9C7-29B7-4ABA-9149-E25BB53CC0CC} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {3B932135-A119-4ADF-85F9-6FAAD7355E49} - System32\Tasks\{E76AD490-CEAE-4454-98B4-653628DB7016} => C:\Riot Games\League of Legends\lol.launcher.exe [2012-05-29] ()
Task: {3DF95F96-E8B5-442E-A8C2-61B789109723} - System32\Tasks\AmiUpdXp => C:\Users\Finanzservice\AppData\Local\SwvUpdater\Updater.exe [2013-11-05] (Amonetizé Ltd)
Task: {3EC6B02D-C04B-4AC2-947E-92110124AA96} - System32\Tasks\{B0091AD8-7A03-47F1-A2FA-F420FA10CC45} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {41E2BE0D-945A-4FEE-A7A9-3EE5E02782C9} - System32\Tasks\{D99858F7-9755-414B-9A07-F9B28E1B9077} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {438B2A0C-A134-404D-8C0C-F71B0C9DFDA4} - System32\Tasks\{C6DA0661-F2F8-49E6-86B6-89BFAC0C78DB} => C:\Program Files (x86)\Bshtop2SA\BSHTop.exe
Task: {4C8D8CA9-1072-464D-9717-B22E583E525E} - System32\Tasks\Plus-HD-1.3-enabler => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-enabler.exe [2013-11-07] (Plus HD)
Task: {4E32BF64-F92B-4AB7-8155-456094E577B9} - System32\Tasks\{82D9DB96-4EFB-4FED-8892-3DFD7846C622} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {534CCC64-36A4-4891-9FCC-5539295FF047} - System32\Tasks\Plus-HD-1.3-updater => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-updater.exe [2013-11-07] (Plus HD)
Task: {545BCD48-A2A7-4E1E-B511-9BF90432D587} - System32\Tasks\{8A521F2E-3016-48E2-B3DA-96C354D01C34} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {54D96B66-5FA6-47F3-962F-D15603C011CA} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {6AC298B0-4622-4B93-8585-A032C5D271B7} - System32\Tasks\Feven 1.5-enabler => C:\Program Files (x86)\Feven 1.5\Feven 1.5-enabler.exe [2013-11-10] (Feven)
Task: {6C98022F-8943-44B4-96ED-62CF46235C05} - System32\Tasks\{AADF7717-505F-4601-8860-9D693B85CEA3} => C:\Riot Games\League of Legends\lol.launcher.exe [2012-05-29] ()
Task: {70D006EE-FFC1-42DB-958E-E4D13E826FA4} - System32\Tasks\{91B0FA4C-1A0E-474B-AB19-F486AB9364AC} => D:\Programme\Apache_OOo3.4.1\program\soffice.exe [2012-08-13] (OpenOffice.org)
Task: {738BE1AA-6CFA-4663-9D44-2CED80886FF4} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {780ABB0E-E11F-4B73-9BF2-C377E44D4963} - System32\Tasks\{E280CEAE-5558-4E30-8E5A-29FC23B41F40} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {7876492B-8022-46EE-A166-A316C7B5A2E9} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01] (Microsoft Corporation)
Task: {799DE6E4-AC26-4FF6-8612-705525B878CE} - System32\Tasks\rbmonitor => C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe [2013-06-17] (Uniblue Systems Limited)
Task: {7AE9A3DF-1EFB-46E5-B17F-451EDD4347A9} - System32\Tasks\{A2D07641-7CB1-45D0-8F27-F256AA5C3F57} => C:\Program Files (x86)\HP\HP Officejet Pro 8500 A910\bin\HPScan.exe [2010-06-14] (Hewlett-Packard Co.)
Task: {819C9F76-9712-42FF-A604-4B911A2EDF7C} - System32\Tasks\{8383A5F0-F969-4935-994E-67804A8B6B59} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {842D4BF1-BF44-458C-95E6-AB456C912090} - System32\Tasks\CS Browser Assistant 2.0-firefoxinstaller => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-firefoxinstaller.exe [2013-11-05] (GetDeal GmbH)
Task: {86A24A7F-96A6-4ED5-9E8D-92C0EC547D0B} - System32\Tasks\{8FF2705D-2F6D-42A1-A3E6-2FB3BE6A36A3} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {90B29FBE-2787-45B4-AECC-CC77A374ADFF} - System32\Tasks\{9261E90B-A4D7-4492-BE42-4674DB7D458A} => C:\Riot Games\League of Legends\lol.launcher.exe [2012-05-29] ()
Task: {929B0039-643F-4072-9DA1-8884B223300F} - System32\Tasks\Feven 1.5-codedownloader => C:\Program Files (x86)\Feven 1.5\Feven 1.5-codedownloader.exe [2013-11-10] (Feven)
Task: {92E66E42-A540-4DD4-B176-10AD55D7550D} - System32\Tasks\{C54170AF-6C67-444B-AB03-1A71E8A9A223} => C:\Riot Games\League of Legends\lol.launcher.exe [2012-05-29] ()
Task: {96AE827B-F5CD-497E-837D-C825137E375B} - System32\Tasks\CS Browser Assistant 2.0-codedownloader => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-codedownloader.exe [2013-11-05] (GetDeal GmbH)
Task: {9843B874-B541-45A3-B2E8-FA4B90B67A8D} - System32\Tasks\CS Browser Assistant 2.0-enabler => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-enabler.exe [2013-11-05] (GetDeal GmbH)
Task: {9B578904-67DC-4F45-ADFA-4B134F51D9D4} - System32\Tasks\{4DFB4988-9B57-44B2-84E3-DD158B67916D} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {A1851B89-4895-4735-A540-5D6CECE45599} - System32\Tasks\{A196B0C9-D4AD-4340-BA3C-E203E4B32E2B} => D:\Programme\Apache_OOo3.4.1\program\soffice.exe [2012-08-13] (OpenOffice.org)
Task: {A324DA5A-FAEB-4762-814D-FBCF23DD4701} - System32\Tasks\{2622F4A1-D0B8-40D8-82C0-1D901FC3BEC5} => C:\Program Files (x86)\Bshtop2SA\BSHTop.exe
Task: {A67FA94D-E156-41A8-B46F-518BEED97725} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {A88E3A23-40CC-4930-B06D-31F5900B4531} - System32\Tasks\Feven 1.5-updater => C:\Program Files (x86)\Feven 1.5\Feven 1.5-updater.exe [2013-11-10] (Feven)
Task: {AB2FAD2E-FD76-407D-BB91-7BD505F6FC20} - System32\Tasks\{F46E0A5C-6751-4486-879D-9F2CE829DAA1} => C:\Program Files (x86)\HP\HP Officejet Pro 8500 A910\bin\HPScan.exe [2010-06-14] (Hewlett-Packard Co.)
Task: {B1FCC4BF-789B-4502-A63E-4CC65AB3D971} - System32\Tasks\Plus-HD-1.3-codedownloader => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-codedownloader.exe [2013-11-07] (Plus HD)
Task: {B5370DFD-660D-4CF5-B2CC-5F8A638BAD98} - System32\Tasks\{8CF4BB92-D1AD-4DAC-8EE3-0CE20117D1FD} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {BDCE6950-A0FD-418F-8908-F30F34323A2F} - System32\Tasks\{1C1D3377-489E-4881-B276-50491460F75D} => C:\Riot Games\League of Legends\lol.launcher.exe [2012-05-29] ()
Task: {C716380C-C3A4-4B56-9B18-93BC91B20C0D} - System32\Tasks\{230BC273-FB22-426F-970F-317784EE973B} => C:\Program Files (x86)\HP\HP Officejet Pro 8500 A910\bin\HPScan.exe [2010-06-14] (Hewlett-Packard Co.)
Task: {CDEFF7F7-A105-42A3-9BB4-167FEF29DFBC} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [2011-05-10] (Hewlett-Packard)
Task: {CFCC5705-786B-4479-B8BB-90210F51404E} - System32\Tasks\Feven 1.5-chromeinstaller => C:\Program Files (x86)\Feven 1.5\Feven 1.5-chromeinstaller.exe [2013-11-10] (Feven)
Task: {D09625CA-CC38-4630-9860-C3BB129E95BA} - System32\Tasks\Plus-HD-1.3-firefoxinstaller => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-firefoxinstaller.exe [2013-11-07] (Plus HD)
Task: {D7009B1E-D1B4-4177-8565-2A549C7CCFCE} - System32\Tasks\{D0C9B404-A98F-46D1-80CD-DB3D19ED738B} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {D994EC25-5998-41F0-B8B8-818A372F37BB} - System32\Tasks\{D27E7FDB-5F37-4694-AD80-C0152025765A} => D:\Programme\Apache_OOo3.4.1\program\soffice.exe [2012-08-13] (OpenOffice.org)
Task: {DE16727B-18DD-4BC0-B355-3B42D0002172} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2010-06-03] (TOSHIBA CORPORATION)
Task: {E3B20B7D-0CD6-4239-A2B4-7A7C42EE19B1} - System32\Tasks\{2D303B4E-4D6D-49D6-8294-A7D363393837} => C:\Program Files (x86)\HP\HP Officejet Pro 8500 A910\bin\HPScan.exe [2010-06-14] (Hewlett-Packard Co.)
Task: {EC18A0F1-8C4D-443B-A700-FA51C04812DD} - System32\Tasks\{18D22775-519D-4636-99BC-B49B4838AE39} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/abandoninstall?page=tsProgressBar
Task: {F519F686-65EC-4F52-ABEF-5EEE6511D558} - System32\Tasks\Plus-HD-1.3-chromeinstaller => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-chromeinstaller.exe [2013-11-07] (Plus HD)
Task: {FB5F843E-E1D8-4EF8-9A2C-CCD82458D590} - System32\Tasks\Feven 1.5-firefoxinstaller => C:\Program Files (x86)\Feven 1.5\Feven 1.5-firefoxinstaller.exe [2013-11-10] (Feven)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Finanzservice\AppData\Local\SwvUpdater\Updater.exe
Task: C:\Windows\Tasks\CS Browser Assistant 2.0-chromeinstaller.job => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-chromeinstaller.exe
Task: C:\Windows\Tasks\CS Browser Assistant 2.0-codedownloader.job => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-codedownloader.exe
Task: C:\Windows\Tasks\CS Browser Assistant 2.0-enabler.job => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-enabler.exe
Task: C:\Windows\Tasks\CS Browser Assistant 2.0-firefoxinstaller.job => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-firefoxinstaller.exe
Task: C:\Windows\Tasks\CS Browser Assistant 2.0-updater.job => C:\Program Files (x86)\CS Browser Assistant 2.0\CS Browser Assistant 2.0-updater.exe
Task: C:\Windows\Tasks\Feven 1.5-chromeinstaller.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-chromeinstaller.exe
Task: C:\Windows\Tasks\Feven 1.5-codedownloader.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-codedownloader.exe
Task: C:\Windows\Tasks\Feven 1.5-enabler.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-enabler.exe
Task: C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-firefoxinstaller.exe
Task: C:\Windows\Tasks\Feven 1.5-updater.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-updater.exe
Task: C:\Windows\Tasks\Plus-HD-1.3-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-chromeinstaller.exe
Task: C:\Windows\Tasks\Plus-HD-1.3-codedownloader.job => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-codedownloader.exe
Task: C:\Windows\Tasks\Plus-HD-1.3-enabler.job => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-enabler.exe
Task: C:\Windows\Tasks\Plus-HD-1.3-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-firefoxinstaller.exe
Task: C:\Windows\Tasks\Plus-HD-1.3-updater.job => C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-updater.exe
Task: C:\Windows\Tasks\rbmonitor.job => C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe
Task: C:\Windows\Tasks\RegistryBooster.job => C:\Program Files (x86)\Uniblue\RegistryBooster\registrybooster.exe
==================== Loaded Modules (whitelisted) =============
2010-03-19 14:28 - 2010-03-19 14:28 - 03409256 _____ () C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll
2010-04-07 16:07 - 2010-04-07 16:07 - 09468728 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
2009-11-03 13:26 - 2009-11-03 13:26 - 00053560 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll
2010-11-11 17:37 - 2009-06-22 14:40 - 00022328 _____ () C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll
2009-03-12 19:08 - 2009-03-12 19:08 - 00048640 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll
2009-07-25 16:38 - 2009-07-25 16:38 - 00017800 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
2010-02-05 17:44 - 2010-02-05 17:44 - 00079192 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
2013-09-19 23:37 - 2013-09-19 23:37 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll
2013-09-19 23:32 - 2013-09-19 23:32 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll
2013-11-08 10:16 - 2013-11-08 10:16 - 00612520 _____ () C:\Program Files (x86)\WinZipper\sqlite3.dll
2013-10-25 23:11 - 2013-10-25 23:11 - 00337920 _____ () C:\Program Files (x86)\Spring Smart\bin\sqlite3.DLL
2012-04-17 15:59 - 2013-06-17 09:25 - 00115040 _____ () C:\Program Files (x86)\Uniblue\RegistryBooster\InstallerExtensions.dll
2013-06-27 22:29 - 2013-06-17 09:25 - 00137568 _____ () C:\Program Files (x86)\Uniblue\RegistryBooster\locale\de\de.dll
2012-04-17 15:59 - 2013-06-17 09:25 - 00019808 _____ () C:\Program Files (x86)\Uniblue\RegistryBooster\cwebpage.dll
2013-10-31 15:40 - 2013-10-31 15:40 - 03008624 _____ () D:\Programme\Mozilla\Thunderbird\mozjs.dll
2013-10-31 15:40 - 2013-10-31 15:40 - 00158832 _____ () D:\Programme\Mozilla\Thunderbird\NSLDAP32V60.dll
2013-10-31 15:40 - 2013-10-31 15:40 - 00023152 _____ () D:\Programme\Mozilla\Thunderbird\NSLDAPPR32V60.dll
2013-11-08 10:16 - 2013-11-08 10:16 - 00181928 _____ () C:\Program Files (x86)\WinZipper\libpng.dll
2013-11-10 14:47 - 2013-10-29 14:08 - 02869720 _____ () C:\Program Files (x86)\Optimizer Pro\OptProCrash.dll
2013-11-10 15:36 - 2013-11-10 15:36 - 00011264 ____C () C:\Users\Finanzservice\AppData\Local\Temp\nsc90E.tmp\System.dll
2013-10-06 14:04 - 2013-11-06 13:27 - 03368048 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2003-07-11 01:09 - 2003-07-11 01:09 - 00048192 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\1031\nsextint.dll
2013-10-10 14:42 - 2013-10-10 14:42 - 16233864 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/10/2013 04:48:35 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (11/10/2013 03:31:45 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000c4102
ID des fehlerhaften Prozesses: 0xb20
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Error: (11/10/2013 09:30:51 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (11/10/2013 07:58:03 AM) (Source: MsiInstaller) (User: SatellitePro)
Description: Produkt: League of Legends -- Fehler 4153. Visual C++ 2005 SP1 Redistributable (x64) Eine erforderliche Abhängigkeit wurde nicht richtig installiert.
Error: (11/10/2013 07:50:15 AM) (Source: Application Hang) (User: )
Description: Programm firefox.exe, Version 25.0.0.5046 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 14ec
Startzeit: 01cedd8d9f2f8bb7
Endzeit: 3150
Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Berichts-ID: 2552285a-49d4-11e3-b1c2-1c75087fb775
Error: (11/09/2013 07:05:34 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0"1". Fehler in Manifest- oder Richtliniendatei "Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0"2" in Zeile Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0".
Definition: Sony.Mrs,processorArchitecture="x86",type="win32",version="2.2.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (11/08/2013 03:34:49 PM) (Source: Microsoft-Windows-RestartManager) (User: SatellitePro)
Description: Die Anwendung oder der Dienst "Firefox" konnte nicht heruntergefahren werden.
Error: (11/08/2013 03:28:26 PM) (Source: Desktop Window Manager) (User: )
Description: Der Desktopfenster-Manager hat einen schwerwiegenden Fehler (0x8007000e) festgestellt.
Error: (11/07/2013 09:37:07 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0"1". Fehler in Manifest- oder Richtliniendatei "Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0"2" in Zeile Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0".
Definition: Sony.Mrs,processorArchitecture="x86",type="win32",version="2.2.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (11/06/2013 04:06:58 PM) (Source: Application Hang) (User: )
Description: Programm IEXPLORE.EXE, Version 10.0.9200.16720 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: b8c
Startzeit: 01cedb01a742b894
Endzeit: 41
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Berichts-ID:
System errors:
=============
Error: (11/10/2013 00:03:42 AM) (Source: Microsoft Antimalware) (User: )
Description: Vom Echtzeitschutz-Feature von %%860 wurde ein Fehler festgestellt
Feature: %%834
Fehlercode: 0x80004005
Fehlerbeschreibung: Unbekannter Fehler
Grund: %%838
Error: (11/09/2013 06:34:11 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (11/09/2013 06:32:46 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PnkBstrA" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3
Error: (11/09/2013 06:32:40 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 09.11.2013 um 17:18:22 unerwartet heruntergefahren.
Error: (11/09/2013 00:02:27 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{2D710A5D-46C8-4F99-91B3-BB0881FA2FBF}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.
Error: (11/09/2013 11:35:47 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (11/09/2013 11:34:28 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PnkBstrA" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3
Error: (11/09/2013 11:34:20 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 09.11.2013 um 01:16:29 unerwartet heruntergefahren.
Error: (11/08/2013 03:24:57 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (11/08/2013 03:18:22 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Microsoft Office Sessions:
=========================
Error: (11/10/2013 04:48:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Finanzservice\Downloads\SoftonicDownloader_fuer_portable-openoffice.exe
Error: (11/10/2013 03:31:45 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4ntdll.dll6.1.7601.18247521eaf24c000037400000000000c4102b2001cedd8d8c0be100C:\Windows\Explorer.EXEC:\Windows\SYSTEM32 \ntdll.dlld2665696-4a14-11e3-b1c2-1c75087fb775
Error: (11/10/2013 09:30:51 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Finanzservice\Downloads\SoftonicDownloader_fuer_portable-openoffice.exe
Error: (11/10/2013 07:58:03 AM) (Source: MsiInstaller)(User: SatellitePro)
Description: Produkt: League of Legends -- Fehler 4153. Visual C++ 2005 SP1 Redistributable (x64) Eine erforderliche Abhängigkeit wurde nicht richtig installiert.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/10/2013 07:50:15 AM) (Source: Application Hang)(User: )
Description: firefox.exe25.0.0.504614ec01cedd8d9f2f8bb73150C:\Program Files (x86)\Mozilla Firefox\firefox.exe2552285a-49d4-11e3-b1c2-1c75087fb775
Error: (11/09/2013 07:05:34 PM) (Source: SideBySide)(User: )
Description: Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0"Sony.Mrs,processorArchitecture="x86",type="win32",version="2.2.0.0"C:\Program Files (x86)\Sony\Media Go\MediaGo.exeC:\Program Files (x86)\Sony\Media Go\Sony.Mrs.MANIFEST3
Error: (11/08/2013 03:34:49 PM) (Source: Microsoft-Windows-RestartManager)(User: SatellitePro)
Description: 1C:\Program Files (x86)\Mozilla Firefox\firefox.exeFirefox0111738160
Error: (11/08/2013 03:28:26 PM) (Source: Desktop Window Manager)(User: )
Description: 0x8007000e
Error: (11/07/2013 09:37:07 PM) (Source: SideBySide)(User: )
Description: Sony.Mrs,processorArchitecture="AMD64",type="win32",version="2.2.0.0"Sony.Mrs,processorArchitecture="x86",type="win32",version="2.2.0.0"C:\Program Files (x86)\Sony\Media Go\MediaGo.exeC:\Program Files (x86)\Sony\Media Go\Sony.Mrs.MANIFEST3
Error: (11/06/2013 04:06:58 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE10.0.9200.16720b8c01cedb01a742b89441C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
==================== Memory info ===========================
Percentage of memory in use: 41%
Total physical RAM: 3890.67 MB
Available physical RAM: 2293.68 MB
Total Pagefile: 7779.52 MB
Available Pagefile: 4416.51 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (WINDOWS) (Fixed) (Total:149.04 GB) (Free:32.77 GB) NTFS
Drive d: (Data) (Fixed) (Total:148.65 GB) (Free:131.57 GB) NTFS
Drive e: (HP OJ8500_A910) (CDROM) (Total:0.32 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: E384D617)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=149 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Ich hoffe das war richtig so.