Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   PC lahmt und zeigt Fehlermeldungen (https://www.trojaner-board.de/145750-pc-lahmt-zeigt-fehlermeldungen.html)

Ljojo 08.12.2013 15:50
PC lahmt und zeigt Fehlermeldungen
 
Liebe Helfer/innen vom Trojaner Board,

Ich habe ein Problem: Seit geraumer Zeit lahmt mein PC. Er braucht ewig, um hochzufahren und reagiert nicht immer auf Befehle. Wenn mehrere Programme laufen, hängt er sich nach einer Weile meisten auf und lässt sich nur noch per Power-Knopf herunterfahren oder zeigt "keine Rückmeldung". Gestern habe ich alle unnötigen Programme deinstalliert aber es hat sich nichts geändert. Was kann ich dagegen tun?

schrauber 08.12.2013 16:18
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Ljojo 08.12.2013 16:36
Besten Dank schon mal!


FRST Logfile:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-12-2013 02
Ran by Lisa-Marie (administrator) on LISA on 08-12-2013 16:27:59
Running from C:\Users\Lisa-Marie\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(McAfee, Inc.) C:\Program Files\McAfeeEx\MOCP\core\OcpTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
() E:\PC Lisa\Programmen\avira_free3640_antivirus_de.exe
(Avira Operations GmbH & Co. KG) C:\Users\Lisa-Marie\AppData\Local\Temp\RarSFX0\presetup.exe
(Avira Operations GmbH & Co. KG) C:\Users\Lisa-Marie\AppData\Local\Temp\RarSFX0\setup.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] - C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-13] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-21] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [1527896 2012-06-21] (McAfee, Inc.)
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [724576 2012-07-27] (Sony Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [152896 2012-06-25] (Intel Corporation)
HKLM-x32\...\Run: [mcpltui_exe] - C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe [644656 2013-08-17] (McAfee, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0DEE3AEE-1610-4E26-A4D2-895A4BA9DB72} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
SearchScopes: HKCU - {023D110E-75C9-4F4A-BAF4-B5B58471E003} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q312&_nkw={searchTerms}
SearchScopes: HKCU - {0DEE3AEE-1610-4E26-A4D2-895A4BA9DB72} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Lisa-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\manq08n4.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: https://www.google.de/?gws_rd=cr&ei=M3qkUpqxJMG8ygPCtIKQCQ
FF Plugin: @java.com/DTPlugin,version=10.5.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.0 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\progra~2\mcafee\msc\npmcsn~1.dll ()
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-13] (Qualcomm Atheros Commnucations)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-08-06] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-08-06] (Intel Corporation)
S3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [383608 2012-05-22] (McAfee, Inc.)
R2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McOobeSv2; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McSchedulerSvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [237920 2012-06-22] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-08] (McAfee, Inc.)
R2 mfeicfcoreocp; C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe [2776256 2013-08-08] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-08] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [623784 2012-08-18] (Sony Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-08-08] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-13] (Atheros)

==================== Drivers (Whitelisted) ====================

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-08-20] (Advanced Micro Devices)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-13] (Qualcomm Atheros)
R3 BTATH_VDP; C:\Windows\system32\drivers\btath_vdp.sys [427416 2012-08-13] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [69672 2012-06-22] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-08] (McAfee, Inc.)
U3 mfeapfk01; No ImagePath
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-08] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [66712 2012-06-18] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-08] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-08] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-08] (McAfee, Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-21] (Synaptics Incorporated)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-08 16:27 - 2013-12-08 16:29 - 00014616 _____ C:\Users\Lisa-Marie\Downloads\FRST.txt
2013-12-08 16:27 - 2013-12-08 16:27 - 00000000 ____D C:\FRST
2013-12-08 16:26 - 2013-12-08 16:27 - 01927772 _____ (Farbar) C:\Users\Lisa-Marie\Downloads\FRST64.exe
2013-12-08 16:26 - 2013-12-08 16:27 - 01060441 _____ (Farbar) C:\Users\Lisa-Marie\Downloads\FRST.exe
2013-12-08 16:26 - 2013-02-26 16:56 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-12-08 16:23 - 2013-02-26 16:56 - 00130016 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-12-08 16:21 - 2013-02-26 16:56 - 00100712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-08 16:13 - 2013-12-08 16:13 - 00003140 _____ C:\Windows\System32\Tasks\{87479441-9B24-4A8C-9AFA-05B545C022E1}
2013-12-08 16:10 - 2013-12-08 16:24 - 01069568 _____ (Solid State Networks) C:\Users\Lisa-Marie\Downloads\install_reader11_de_mssd_aaa_aih.exe
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\DAEMON Tools Lite
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-12-08 16:04 - 2013-12-08 16:04 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-12-08 16:04 - 2005-05-31 08:52 - 00636998 _____ (DVD Shrink) C:\Users\Lisa-Marie\Desktop\DVD Shrink 3.2 DE.exe
2013-12-08 15:56 - 2013-12-08 15:56 - 00000000 ____D C:\PS_CS2_Gr_NonRet
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\ProgramData\Avira
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Avira
2013-12-08 15:52 - 2013-12-08 15:52 - 00001196 _____ C:\Users\Lisa-Marie\Desktop\IsoBuster.lnk
2013-12-08 15:52 - 2013-12-08 15:52 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2013-12-08 15:43 - 2013-12-08 15:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-08 15:35 - 2013-12-08 15:35 - 00001011 _____ C:\Users\Public\Desktop\Audacity.lnk
2013-12-08 15:34 - 2013-12-08 15:35 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-12-08 15:34 - 2013-12-08 15:34 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Kindle
2013-12-08 15:19 - 2013-12-08 15:21 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Schule
2013-12-08 15:17 - 2013-12-08 15:17 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-08 15:17 - 2013-12-08 15:17 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-12-08 15:16 - 2013-12-08 15:16 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\vlc
2013-12-08 15:13 - 2013-12-08 15:13 - 00000117 _____ C:\Windows\system32\netcfg-30421.txt
2013-12-08 15:12 - 2013-12-08 15:12 - 00000117 _____ C:\Windows\system32\netcfg-834109.txt
2013-12-08 15:10 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Adobe
2013-12-08 15:07 - 2013-06-01 20:48 - 00000503 _____ C:\Users\Lisa-Marie\Documents\Liebe.txt
2013-12-08 15:07 - 2013-05-30 16:24 - 00002092 _____ C:\Users\Lisa-Marie\Documents\Neues Textdokument.txt
2013-12-08 15:07 - 2013-04-04 13:32 - 00007662 _____ C:\Users\Lisa-Marie\Documents\rubinrot.txt
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Macromedia
2013-12-08 14:59 - 2013-12-08 14:59 - 00000117 _____ C:\Windows\system32\netcfg-71687.txt
2013-12-08 14:57 - 2013-12-08 14:57 - 00000117 _____ C:\Windows\system32\netcfg-4347031.txt
2013-12-08 14:54 - 2013-12-08 16:21 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1108325158-3463833279-2753141017-1001
2013-12-08 14:54 - 2013-12-08 15:39 - 00000000 ____D C:\Update
2013-12-08 14:53 - 2013-12-08 16:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-08 14:53 - 2013-12-08 15:27 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Sony Corporation
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\Documents\Bluetooth Folder
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\ATI
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Atheros
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\BMExplorer
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\ATI
2013-12-08 14:49 - 2013-12-08 14:49 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-08 14:48 - 2013-12-08 15:31 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Sony Corporation
2013-12-08 14:48 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Adobe
2013-12-08 14:48 - 2013-12-08 14:48 - 00001442 _____ C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\SysWOW64\VAIO Startup Setting Tool
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\pss
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Power2Go8
2013-12-08 14:47 - 2013-12-08 14:51 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Packages
2013-12-08 14:47 - 2013-12-08 14:47 - 00000020 ___SH C:\Users\Lisa-Marie\ntuser.ini
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Vorlagen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Startmenü
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Netzwerkumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Lokale Einstellungen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Eigene Dateien
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Druckumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Musik
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Bilder
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Verlauf
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\VirtualStore
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-08 14:46 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600890.txt
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600500.txt
2013-12-08 14:44 - 2013-12-08 14:44 - 00000117 _____ C:\Windows\system32\netcfg-3584015.txt
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-08 13:44 - 2013-12-08 13:44 - 00000000 _____ C:\Recovery.txt

==================== One Month Modified Files and Folders =======

2013-12-08 16:29 - 2013-12-08 16:27 - 00014616 _____ C:\Users\Lisa-Marie\Downloads\FRST.txt
2013-12-08 16:28 - 2012-11-22 16:31 - 00000000 ____D C:\ProgramData\MOCP
2013-12-08 16:28 - 2012-11-22 16:07 - 01422164 _____ C:\Windows\WindowsUpdate.log
2013-12-08 16:27 - 2013-12-08 16:27 - 00000000 ____D C:\FRST
2013-12-08 16:27 - 2013-12-08 16:26 - 01927772 _____ (Farbar) C:\Users\Lisa-Marie\Downloads\FRST64.exe
2013-12-08 16:27 - 2013-12-08 16:26 - 01060441 _____ (Farbar) C:\Users\Lisa-Marie\Downloads\FRST.exe
2013-12-08 16:24 - 2013-12-08 16:10 - 01069568 _____ (Solid State Networks) C:\Users\Lisa-Marie\Downloads\install_reader11_de_mssd_aaa_aih.exe
2013-12-08 16:21 - 2013-12-08 14:54 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1108325158-3463833279-2753141017-1001
2013-12-08 16:13 - 2013-12-08 16:13 - 00003140 _____ C:\Windows\System32\Tasks\{87479441-9B24-4A8C-9AFA-05B545C022E1}
2013-12-08 16:06 - 2013-12-08 14:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\DAEMON Tools Lite
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-12-08 16:04 - 2013-12-08 16:04 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-12-08 16:00 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\sru
2013-12-08 15:56 - 2013-12-08 15:56 - 00000000 ____D C:\PS_CS2_Gr_NonRet
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\ProgramData\Avira
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Avira
2013-12-08 15:52 - 2013-12-08 15:52 - 00001196 _____ C:\Users\Lisa-Marie\Desktop\IsoBuster.lnk
2013-12-08 15:52 - 2013-12-08 15:52 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2013-12-08 15:43 - 2013-12-08 15:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-08 15:39 - 2013-12-08 14:54 - 00000000 ____D C:\Update
2013-12-08 15:35 - 2013-12-08 15:35 - 00001011 _____ C:\Users\Public\Desktop\Audacity.lnk
2013-12-08 15:35 - 2013-12-08 15:34 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-12-08 15:34 - 2013-12-08 15:34 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Kindle
2013-12-08 15:31 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Sony Corporation
2013-12-08 15:27 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Mozilla
2013-12-08 15:21 - 2013-12-08 15:19 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Schule
2013-12-08 15:18 - 2012-11-22 15:43 - 00753134 _____ C:\Windows\system32\perfh007.dat
2013-12-08 15:18 - 2012-11-22 15:43 - 00155826 _____ C:\Windows\system32\perfc007.dat
2013-12-08 15:18 - 2012-07-26 08:28 - 01745416 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-08 15:17 - 2013-12-08 15:17 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-08 15:17 - 2013-12-08 15:17 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-12-08 15:16 - 2013-12-08 15:16 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\vlc
2013-12-08 15:13 - 2013-12-08 15:13 - 00000117 _____ C:\Windows\system32\netcfg-30421.txt
2013-12-08 15:13 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-08 15:12 - 2013-12-08 15:12 - 00000117 _____ C:\Windows\system32\netcfg-834109.txt
2013-12-08 15:12 - 2012-08-03 03:22 - 00001982 _____ C:\Windows\PFRO.log
2013-12-08 15:12 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-12-08 15:11 - 2012-11-22 15:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-08 15:10 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Adobe
2013-12-08 15:10 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Adobe
2013-12-08 15:09 - 2012-11-22 16:48 - 00000000 ____D C:\Program Files (x86)\WildGames
2013-12-08 15:06 - 2012-11-22 16:45 - 00000000 ____D C:\ProgramData\WildTangent
2013-12-08 15:05 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-12-08 15:03 - 2012-11-22 16:10 - 00000000 ____D C:\ProgramData\McAfee
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Macromedia
2013-12-08 14:59 - 2013-12-08 14:59 - 00000117 _____ C:\Windows\system32\netcfg-71687.txt
2013-12-08 14:57 - 2013-12-08 14:57 - 00000117 _____ C:\Windows\system32\netcfg-4347031.txt
2013-12-08 14:56 - 2012-11-22 15:50 - 00000000 ____D C:\ProgramData\Sony Corporation
2013-12-08 14:53 - 2013-12-08 14:53 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Sony Corporation
2013-12-08 14:52 - 2012-07-26 08:21 - 00020708 _____ C:\Windows\setupact.log
2013-12-08 14:51 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Packages
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\Documents\Bluetooth Folder
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\ATI
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Atheros
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\BMExplorer
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\ATI
2013-12-08 14:50 - 2012-11-22 17:34 - 00000000 ____D C:\ProgramData\Atheros
2013-12-08 14:50 - 2012-11-22 16:10 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-12-08 14:50 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-12-08 14:49 - 2013-12-08 14:49 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-08 14:49 - 2012-11-22 16:12 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation
2013-12-08 14:48 - 2013-12-08 14:48 - 00001442 _____ C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\SysWOW64\VAIO Startup Setting Tool
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\pss
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Power2Go8
2013-12-08 14:48 - 2013-12-08 14:46 - 00000000 ____D C:\Users\Lisa-Marie
2013-12-08 14:48 - 2012-11-22 16:27 - 00000000 ____D C:\Windows\System32\Tasks\SONY
2013-12-08 14:48 - 2012-11-22 15:44 - 00000000 ____D C:\Program Files\Sony
2013-12-08 14:47 - 2013-12-08 14:47 - 00000020 ___SH C:\Users\Lisa-Marie\ntuser.ini
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Vorlagen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Startmenü
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Netzwerkumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Lokale Einstellungen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Eigene Dateien
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Druckumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Musik
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Bilder
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Verlauf
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\VirtualStore
2013-12-08 14:47 - 2012-11-22 16:10 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-12-08 14:47 - 2012-07-26 09:12 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-12-08 14:47 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\WinStore
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600890.txt
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600500.txt
2013-12-08 14:44 - 2013-12-08 14:44 - 00000117 _____ C:\Windows\system32\netcfg-3584015.txt
2013-12-08 13:47 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\rescache
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-08 13:45 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT
2013-12-08 13:45 - 2012-07-26 06:37 - 00000000 __RHD C:\Users\Default
2013-12-08 13:44 - 2013-12-08 13:44 - 00000000 _____ C:\Recovery.txt
2013-12-08 13:44 - 2012-07-26 09:13 - 00262144 _____ C:\Windows\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\Lisa-Marie\AppData\Local\Temp\AskSLib.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2012-08-03 03:22

==================== End Of Log ============================
--- --- ---



Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-12-2013 02
Ran by Lisa-Marie at 2013-12-08 16:29:19
Running from C:\Users\Lisa-Marie\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: McAfee  Anti-Virus und Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee  Anti-Virus und Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee  Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}

==================== Installed Programs ======================

Adobe Reader X MUI (x32 Version: 10.0.0)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
Audacity 2.0.4 (x32 Version: 2.0.4)
Bejeweled 3 (x32 Version: 2.2.0.98)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2012.0806.1156.19437)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0806.1156.19437)
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1156.19437)
Catalyst Control Center Localization All (x32 Version: 2012.0806.1156.19437)
CCC Help Chinese Standard (x32 Version: 2012.0806.1155.19437)
CCC Help Chinese Traditional (x32 Version: 2012.0806.1155.19437)
CCC Help Czech (x32 Version: 2012.0806.1155.19437)
CCC Help Danish (x32 Version: 2012.0806.1155.19437)
CCC Help Dutch (x32 Version: 2012.0806.1155.19437)
CCC Help English (x32 Version: 2012.0806.1155.19437)
CCC Help Finnish (x32 Version: 2012.0806.1155.19437)
CCC Help French (x32 Version: 2012.0806.1155.19437)
CCC Help German (x32 Version: 2012.0806.1155.19437)
CCC Help Greek (x32 Version: 2012.0806.1155.19437)
CCC Help Hungarian (x32 Version: 2012.0806.1155.19437)
CCC Help Italian (x32 Version: 2012.0806.1155.19437)
CCC Help Japanese (x32 Version: 2012.0806.1155.19437)
CCC Help Korean (x32 Version: 2012.0806.1155.19437)
CCC Help Norwegian (x32 Version: 2012.0806.1155.19437)
CCC Help Polish (x32 Version: 2012.0806.1155.19437)
CCC Help Portuguese (x32 Version: 2012.0806.1155.19437)
CCC Help Russian (x32 Version: 2012.0806.1155.19437)
CCC Help Spanish (x32 Version: 2012.0806.1155.19437)
CCC Help Swedish (x32 Version: 2012.0806.1155.19437)
CCC Help Thai (x32 Version: 2012.0806.1155.19437)
CCC Help Turkish (x32 Version: 2012.0806.1155.19437)
ccc-utility64 (Version: 2012.0806.1156.19437)
CyberLink Power2Go 8 (x32 Version: 8.0.0.1923)
CyberLink PowerDVD (x32 Version: 9.0.5601.52)
FDUx86 (x32 Version: 1.0.0)
Intel AppUp(SM) center (x32 Version: 03.05.11)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.3.1004)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
IsoBuster 3.2 (x32 Version: 3.2)
Java Auto Updater (x32 Version: 2.1.6.0)
Java(TM) 7 Update 5 (64-bit) (Version: 7.0.50)
Java(TM) 7 Update 5 (x32 Version: 7.0.50)
KUx86 (x32 Version: 1.0.0)
LAME v3.99.3 (for Windows) (x32)
Mahjongg Artifacts (x32 Version: 2.2.0.110)
McAfee Internet Security (x32 Version: 11.6.385)
McAfee Parental Controls (x32 Version: 2.2.122.12)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 25.0.1)
PlayMemories Home (x32 Version: 6.3.02.07270)
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.206)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6695)
Realtek PCIE Card Reader (x32 Version: 6.1.8400.28121)
Restore (x32 Version: 1.0.0)
Shared C Run-time for x64 (Version: 10.0.0)
SSLx64 (Version: 1.0.0)
SSLx86 (x32 Version: 1.0.0)
Synaptics Pointing Device Driver (Version: 16.2.10.5)
VAIO - Xperia Link (x32 Version: 1.0.0.08170)
VAIO Care (Version: 8.0.0.08150)
VAIO Control Center (x32 Version: 6.0.0.08200)
VAIO Data Restore Tool (x32 Version: 1.10.0.07270)
VAIO Easy Connect (x32 Version: 1.2.0.08150)
VAIO Gate (x32 Version: 3.0.0.08140)
VAIO Gate Default (x32 Version: 3.0.0.08060)
VAIO Gesture Control (x32 Version: 2.0.0.08240)
VAIO Image Optimizer (x32 Version: 3.0.00.08170)
VAIO Improvement (x32 Version: 2.0.0.08090)
VAIO Media Server Settings (Version: 1.0.0.08240)
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170)
VAIO Update (x32 Version: 6.3.0.08010)
VAIO*CPU-Lüfterdiagnose (x32 Version: 1.1.0.09200)
VAIO-Handbuch (x32 Version: 3.0.0.08100)
VAIO-Support für Übertragungen (x32 Version: 1.8.0.08212)
VCCx64 (Version: 1.0.0)
VCCx86 (x32 Version: 1.0.0)
VGClientX64 (Version: 1.0.0)
VHD (x32 Version: 1.0.0)
VIx64 (Version: 1.0.0)
VIx86 (x32 Version: 1.0.0)
VLC media player 2.0.5 (x32 Version: 2.0.5)
VMLx86 (x32 Version: 1.0.0)
VPMx64 (Version: 1.0.0)
VSSTx64 (Version: 1.0.0)
VSSTx86 (x32 Version: 1.0.0)
VU5x64 (Version: 1.0.0)
VU5x86 (x32 Version: 1.0.0)
VUx64 (Version: 1.0.0)
VUx86 (x32 Version: 1.0.0)
VWSTx86 (x32 Version: 1.0.0)
WildTangent-Spiele (x32 Version: 1.0.3.0)
XperiaLinkx86 (x32 Version: 1.0.0)

==================== Restore Points  =========================

08-12-2013 13:56:06 Installiert VAIO Update

==================== Hosts content: ==========================

2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {01CC75E9-F972-4E91-AE5F-17B076DCFEE8} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {2C6C02B7-87C4-4D84-8138-163B9718088F} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {554F42D0-19B2-4136-B96B-0C476606BD25} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2012-08-09] (Sony Corporation)
Task: {56124EE6-2C78-4FC3-B8F8-B344A8F908FF} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {6EA8BE6A-26BD-45F9-80EF-7D624DC0477C} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2012-08-09] (Sony Corporation)
Task: {7814D8A8-2A2E-4DD3-AD45-0E93F48CCC91} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-08-14] (Sony Corporation)
Task: {7BDEDCEE-7140-40C0-B682-5943CF3212BA} - System32\Tasks\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-07-31] (Sony Corporation)
Task: {9389FCA8-3F65-4E50-B64B-53E3CDAAABE6} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {9482871E-6D98-4F79-8A10-9E90056525C8} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2012-08-04] (Sony Corporation)
Task: {9C5BE95F-F89F-4D77-8C1F-0B1822515B87} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {A02FDF31-AD70-4871-A6B6-B6481B436282} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2012-08-09] (Sony Corporation)
Task: {A5C57849-D73F-42B9-A4FD-551029578DC9} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {AB96B97B-39C2-46A2-876A-EEB6AE199033} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\Windows\System32\Dism.exe [2012-07-26] (Microsoft Corporation)
Task: {AE428465-EF29-4787-B5BE-5B1B9224BCF6} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {C394E647-37BE-4985-AD6F-BC1A1E3A0D05} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-08-01] (Sony Corporation)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {CDCBD2EA-E88B-4AAF-AE05-1E58743398F6} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-08-01] (Sony Corporation)
Task: {CE141073-161F-4B36-BA5A-DE69CB0F1343} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {DDDE080F-C442-44F6-9324-D3F8BFE1D975} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {DED5F951-BA9B-46C8-A0F6-B2225AB5FE49} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-06-08] (CyberLink)
Task: {ED015731-D917-405E-8880-A0A1D8027FA5} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {FBECDE25-2C50-4EF3-B918-01282923A655} - System32\Tasks\{87479441-9B24-4A8C-9AFA-05B545C022E1} => Firefox.exe hxxp://ui.skype.com/ui/0/6.0.0.126/de/abandoninstall?source=lightinstaller&page=tsInstall

==================== Loaded Modules (whitelisted) =============

2012-08-13 17:25 - 2012-08-13 17:25 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-08-13 17:20 - 2012-08-13 17:20 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2012-08-06 11:54 - 2012-08-06 11:54 - 00369664 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2012-11-22 16:31 - 2013-09-10 13:38 - 00277416 _____ () C:\Program Files\McAfeeEx\MOCP\core\OCP_LD.dll
2012-11-22 16:39 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 11:34 - 2012-06-08 11:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2012-11-22 16:03 - 2012-08-06 18:54 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-12-08 15:43 - 2013-12-08 15:43 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/08/2013 04:28:36 PM) (Source: Application Hang) (User: )
Description: Programm setup.exe, Version 13.6.1.1276 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1a90

Startzeit: 01cef42530293394

Endzeit: 4294967295

Anwendungspfad: C:\Users\LISA-M~1\AppData\Local\Temp\RarSFX0\setup.exe

Berichts-ID: 6700b199-601d-11e3-be74-a41731d31bd2

Vollständiger Name des fehlerhaften Pakets:

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/08/2013 04:14:15 PM) (Source: Application Hang) (User: )
Description: Programm SkypeSetup.exe, Version 6.0.0.126 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1474

Startzeit: 01cef42692f5922f

Endzeit: 4294967295

Anwendungspfad: E:\PC Lisa\Programmen\SkypeSetup.exe

Berichts-ID: 6554f54d-601b-11e3-be74-a41731d31bd2

Vollständiger Name des fehlerhaften Pakets:

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:


System errors:
=============
Error: (12/08/2013 02:57:25 PM) (Source: DCOM) (User: Lisa)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (12/08/2013 02:57:25 PM) (Source: DCOM) (User: Lisa)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (12/08/2013 02:51:25 PM) (Source: DCOM) (User: Lisa)
Description: Microsoft.WindowsLive.Platform.Service.RemoteProcess

Error: (12/08/2013 01:45:07 PM) (Source: volmgr) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (11/22/2012 05:37:23 PM) (Source: DCOM) (User: Lisa)
Description: {9B3BEB4E-1C5E-4A5F-BB36-2F6587DD34E2}


Microsoft Office Sessions:
=========================
Error: (12/08/2013 04:28:36 PM) (Source: Application Hang)(User: )
Description: setup.exe13.6.1.12761a9001cef425302933944294967295C:\Users\LISA-M~1\AppData\Local\Temp\RarSFX0\setup.exe6700b199-601d-11e3-be74-a41731d31bd2

Error: (12/08/2013 04:14:15 PM) (Source: Application Hang)(User: )
Description: SkypeSetup.exe6.0.0.126147401cef42692f5922f4294967295E:\PC Lisa\Programmen\SkypeSetup.exe6554f54d-601b-11e3-be74-a41731d31bd2


==================== Memory info ===========================

Percentage of memory in use: 41%
Total physical RAM: 4043.27 MB
Available physical RAM: 2383.6 MB
Total Pagefile: 7627.27 MB
Available Pagefile: 5570.8 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:435.9 GB) (Free:393.19 GB) NTFS
Drive e: (WD Elements Play) (Fixed) (Total:1863.01 GB) (Free:1435.56 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 30CE75BA)

Partition: GPT Partition Type
========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 82610D69)
Partition 1: (Not Active) - (Size=-198627982848) - (Type=07 NTFS)

==================== End Of Log ============================

schrauber 09.12.2013 08:32
hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Ljojo 09.12.2013 16:45
C:\Combofix.txt:

Code:
ComboFix 13-12-08.01 - Lisa-Marie 09.12.2013  16:35:10.1.2 - x64
Microsoft Windows 8  6.2.9200.0.1252.49.1031.18.4043.3058 [GMT 1:00]
ausgeführt von:: c:\users\Lisa-Marie\Desktop\ComboFix.exe
AV: McAfee  Anti-Virus und Anti-Spyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee  Firewall *Disabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: McAfee  Anti-Virus und Anti-Spyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((  Dateien erstellt von 2013-11-09 bis 2013-12-09  ))))))))))))))))))))))))))))))
.
.
2013-12-09 15:40 . 2013-12-09 15:40        --------        d-----w-        c:\users\Default\AppData\Local\temp
2013-12-09 15:19 . 2013-12-09 15:19        50784        ----a-w-        c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2013-12-09 15:19 . 2013-12-09 15:19        17536        ----a-w-        c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-12-08 17:05 . 2013-11-05 22:58        78296        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-08 17:05 . 2013-11-05 22:58        694232        ----a-w-        c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-08 16:47 . 2013-12-08 16:49        --------        d-----w-        c:\windows\system32\MRT
2013-12-08 16:14 . 2013-04-09 04:51        13648384        ----a-w-        c:\windows\system32\Windows.UI.Xaml.dll
2013-12-08 16:12 . 2013-04-09 04:49        231936        ----a-w-        c:\windows\system32\fhengine.dll
2013-12-08 15:43 . 2012-10-06 04:53        2893824        ----a-w-        c:\windows\system32\msmpeg2vdec.dll
2013-12-08 15:43 . 2012-10-06 04:15        2400256        ----a-w-        c:\windows\SysWow64\msmpeg2vdec.dll
2013-12-08 15:42 . 2013-09-23 22:30        419328        ----a-w-        c:\windows\system32\schannel.dll
2013-12-08 15:42 . 2013-09-23 22:30        323072        ----a-w-        c:\windows\SysWow64\schannel.dll
2013-12-08 15:42 . 2013-06-01 09:25        496640        ----a-w-        c:\windows\SysWow64\qedit.dll
2013-12-08 15:42 . 2013-06-01 09:21        595968        ----a-w-        c:\windows\system32\qedit.dll
2013-12-08 15:42 . 2012-10-24 03:25        26624        ----a-w-        c:\windows\system32\ReAgentc.exe
2013-12-08 15:42 . 2012-10-24 02:48        24064        ----a-w-        c:\windows\SysWow64\ReAgentc.exe
2013-12-08 15:42 . 2013-03-02 08:23        375808        ----a-w-        c:\windows\SysWow64\ReAgent.dll
2013-12-08 15:42 . 2013-03-02 02:44        1011200        ----a-w-        c:\windows\system32\reseteng.dll
2013-12-08 15:42 . 2012-12-15 04:55        443392        ----a-w-        c:\windows\system32\ReAgent.dll
2013-12-08 15:42 . 2012-11-03 05:26        132096        ----a-w-        c:\windows\system32\sysreset.exe
2013-12-08 15:42 . 2012-11-03 05:25        945152        ----a-w-        c:\windows\system32\resetengmig.dll
2013-12-08 15:37 . 2013-05-26 22:59        46080        ----a-w-        c:\windows\system32\atmlib.dll
2013-12-08 15:37 . 2013-05-25 03:15        362496        ----a-w-        c:\windows\system32\atmfd.dll
2013-12-08 15:37 . 2013-05-25 02:32        300032        ----a-w-        c:\windows\SysWow64\atmfd.dll
2013-12-08 15:37 . 2013-05-26 23:17        35328        ----a-w-        c:\windows\SysWow64\atmlib.dll
2013-12-08 15:37 . 2012-11-08 04:24        75776        ----a-w-        c:\windows\SysWow64\fontsub.dll
2013-12-08 15:37 . 2012-11-08 04:24        10752        ----a-w-        c:\windows\SysWow64\dciman32.dll
2013-12-08 15:37 . 2012-11-08 04:20        96256        ----a-w-        c:\windows\system32\fontsub.dll
2013-12-08 15:37 . 2012-11-08 04:20        14336        ----a-w-        c:\windows\system32\dciman32.dll
2013-12-08 15:37 . 2012-11-08 04:02        3072        ----a-w-        c:\windows\system32\lpk.dll
2013-12-08 15:37 . 2012-11-08 04:01        3072        ----a-w-        c:\windows\SysWow64\lpk.dll
2013-12-08 15:32 . 2013-08-23 05:11        4040192        ----a-w-        c:\windows\system32\win32k.sys
2013-12-08 15:30 . 2013-02-05 22:29        370688        ----a-w-        c:\windows\system32\drivers\mrxsmb.sys
2013-12-08 15:29 . 2013-03-06 06:31        222208        ----a-w-        c:\windows\system32\shdocvw.dll
2013-12-08 15:29 . 2013-03-06 07:10        112872        ----a-w-        c:\windows\system32\consent.exe
2013-12-08 15:29 . 2013-03-06 06:29        70144        ----a-w-        c:\windows\system32\appinfo.dll
2013-12-08 15:29 . 2013-05-04 06:59        2842112        ----a-w-        c:\windows\system32\WMVDECOD.DLL
2013-12-08 15:29 . 2013-05-04 04:57        2620928        ----a-w-        c:\windows\SysWow64\WMVDECOD.DLL
2013-12-08 15:27 . 2013-12-08 15:27        --------        d-----w-        C:\FRST
2013-12-08 15:26 . 2013-02-26 15:56        28600        ----a-w-        c:\windows\system32\drivers\avkmgr.sys
2013-12-08 15:25 . 2013-08-02 06:28        10116608        ----a-w-        c:\windows\system32\twinui.dll
2013-12-08 15:25 . 2013-08-02 05:08        8858112        ----a-w-        c:\windows\SysWow64\twinui.dll
2013-12-08 15:25 . 2013-10-01 23:26        2304512        ----a-w-        c:\windows\system32\authui.dll
2013-12-08 15:25 . 2013-03-02 02:43        2146304        ----a-w-        c:\windows\system32\actxprxy.dll
2013-12-08 15:25 . 2013-02-07 01:33        754176        ----a-w-        c:\windows\SysWow64\actxprxy.dll
2013-12-08 15:25 . 2013-10-01 23:37        2035712        ----a-w-        c:\windows\SysWow64\authui.dll
2013-12-08 15:25 . 2013-03-02 10:39        69864        ----a-w-        c:\windows\system32\drivers\pdc.sys
2013-12-08 15:23 . 2013-02-26 15:56        130016        ----a-w-        c:\windows\system32\drivers\avipbb.sys
2013-12-08 15:21 . 2013-02-26 15:56        100712        ----a-w-        c:\windows\system32\drivers\avgntflt.sys
2013-12-08 15:05 . 2013-12-08 15:05        --------        d-----w-        c:\programdata\DAEMON Tools Lite
2013-12-08 15:04 . 2013-12-08 15:04        --------        d-----w-        c:\programdata\DVD Shrink
2013-12-08 14:56 . 2013-12-08 14:56        --------        d-----w-        C:\PS_CS2_Gr_NonRet
2013-12-08 14:55 . 2013-12-08 14:55        --------        d-----w-        c:\program files (x86)\Lame For Audacity
2013-12-08 14:55 . 2013-12-08 14:55        --------        d-----w-        c:\programdata\Avira
2013-12-08 14:55 . 2013-12-08 14:55        --------        d-----w-        c:\program files (x86)\Avira
2013-12-08 14:46 . 2013-03-22 03:49        2382336        ----a-w-        c:\windows\SysWow64\esent.dll
2013-12-08 14:46 . 2013-03-21 22:47        2851840        ----a-w-        c:\windows\system32\esent.dll
2013-12-08 14:46 . 2013-04-02 23:37        25088        ----a-w-        c:\windows\SysWow64\cryptdlg.dll
2013-12-08 14:46 . 2013-04-02 23:12        30720        ----a-w-        c:\windows\system32\cryptdlg.dll
2013-12-08 14:44 . 2013-08-07 05:15        144896        ----a-w-        c:\windows\system32\tssdisai.dll
2013-12-08 14:44 . 2012-11-10 04:22        122880        ----a-w-        c:\windows\system32\VmHostAI.dll
2013-12-08 14:44 . 2012-11-10 04:22        126976        ----a-w-        c:\windows\system32\RDWebAI.dll
2013-12-08 14:44 . 2012-11-10 04:20        135680        ----a-w-        c:\windows\system32\appserverai.dll
2013-12-08 14:44 . 2012-11-10 04:23        132608        ----a-w-        c:\windows\SysWow64\poqexec.exe
2013-12-08 14:44 . 2012-11-10 04:23        148480        ----a-w-        c:\windows\system32\poqexec.exe
2013-12-08 14:39 . 2012-11-01 04:40        2361344        ----a-w-        c:\windows\system32\msxml6.dll
2013-12-08 14:39 . 2012-11-01 04:40        1836032        ----a-w-        c:\windows\system32\msxml3.dll
2013-12-08 14:39 . 2012-11-01 04:41        1802240        ----a-w-        c:\windows\SysWow64\msxml6.dll
2013-12-08 14:39 . 2012-11-01 04:41        1438720        ----a-w-        c:\windows\SysWow64\msxml3.dll
2013-12-08 14:39 . 2012-11-01 04:21        2048        ----a-w-        c:\windows\system32\msxml6r.dll
2013-12-08 14:39 . 2012-11-01 04:21        2048        ----a-w-        c:\windows\system32\msxml3r.dll
2013-12-08 14:39 . 2012-11-01 04:20        2048        ----a-w-        c:\windows\SysWow64\msxml6r.dll
2013-12-08 14:39 . 2012-11-01 04:20        2048        ----a-w-        c:\windows\SysWow64\msxml3r.dll
2013-12-08 14:34 . 2013-12-08 14:35        --------        d-----w-        c:\program files (x86)\Audacity
2013-12-08 14:17 . 2013-12-08 14:17        --------        d-----w-        c:\program files (x86)\VideoLAN
2013-12-08 13:54 . 2013-12-08 14:39        --------        d-----w-        C:\Update
2013-12-08 13:53 . 2013-12-08 15:06        --------        d-----w-        c:\program files (x86)\Mozilla Maintenance Service
2013-12-08 13:48 . 2013-12-08 13:48        --------        d-----w-        c:\windows\SysWow64\VAIO Startup Setting Tool
2013-12-08 13:46 . 2013-12-08 13:48        --------        d-----w-        c:\users\Lisa-Marie
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-08 13:47 . 2012-07-26 08:13        22240        ----a-w-        c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-06 642216]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-06-21 1527896]
"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2012-08-17 68776]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [2012-07-27 724576]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-15 35736]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-15 932288]
"Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-06-25 152896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R0 mfeelamk;McAfee Inc. mfeelamk;c:\windows\system32\drivers\mfeelamk.sys;c:\windows\SYSNATIVE\drivers\mfeelamk.sys [x]
R2 McOobeSv2;McAfee OOBE Service2;c:\program files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [x]
R3 e1yexpress;Intel(R) Gigabit-Netzwerkverbindungstreiber;c:\windows\system32\DRIVERS\e1y60x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1y60x64.sys [x]
R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys;c:\windows\SYSNATIVE\drivers\HipShieldK.sys [x]
R3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe;c:\progra~1\mcafee\msc\mcawfwk.exe [x]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys;c:\windows\SYSNATIVE\drivers\mferkdet.sys [x]
R3 NetworkSupport;NetworkSupport;c:\program files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe;c:\program files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [x]
R3 SOHCImp;VAIO Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [x]
R3 SOHDms;VAIO Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [x]
R3 SOHDs;VAIO Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [x]
R3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [x]
R3 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe;c:\program files\Sony\VAIO Power Management\SPMService.exe [x]
R3 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [x]
R3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe;c:\program files\Sony\VAIO Care\VCService.exe [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]
S1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [x]
S2 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [x]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [x]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe;c:\program files\Sony\VAIO Care\VCPerfService.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW86.sys;c:\windows\SYSNATIVE\drivers\AtihdW86.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
S3 BTATH_VDP;Bluetooth VDP Driver;c:\windows\system32\drivers\btath_vdp.sys;c:\windows\SYSNATIVE\drivers\btath_vdp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 BthLEEnum;Treiber für energiearme Bluetooth-Geräte;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\System32\drivers\SFEP.sys;c:\windows\SYSNATIVE\drivers\SFEP.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 SOWS;Sony Wireless State Device;c:\windows\System32\drivers\sows.sys;c:\windows\SYSNATIVE\drivers\sows.sys [x]
S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update\VUAgent.exe;c:\program files\Sony\VAIO Update\VUAgent.exe [x]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2012-08-20 1214608]
"BtPreLoad"="c:\program files (x86)\Bluetooth Suite\BtPreLoad.exe" [2012-08-13 64640]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://sony13.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Lisa-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\manq08n4.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxps://www.google.de/?gws_rd=cr&ei=M3qkUpqxJMG8ygPCtIKQCQ
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=10000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"&\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\%C3 & Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfeeEx]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Zeit der Fertigstellung: 2013-12-09  16:42:10
ComboFix-quarantined-files.txt  2013-12-09 15:42
.
Vor Suchlauf: 12 Verzeichnis(se), 413.969.969.152 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 413.764.980.736 Bytes frei
.
- - End Of File - - 94855070B082104DCF9396044A4BB3B6

schrauber 10.12.2013 10:21
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

Ljojo 11.12.2013 10:44
ok, also

Code:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.11.02

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16736
Lisa-Marie :: LISA [Administrator]

11.12.2013 10:09:32
mbam-log-2013-12-11 (10-09-32).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 212217
Laufzeit: 3 Minute(n), 13 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
AdwCleaner\AdwCleaner[Sx].txt:

Code:
# AdwCleaner v3.015 - Bericht erstellt am 11/12/2013 um 10:15:29
# Updated 10/12/2013 von Xplode
# Betriebssystem : Windows 8  (64 bits)
# Benutzername : Lisa-Marie - LISA
# Gestartet von : C:\Users\Lisa-Marie\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Schlüssel Gelöscht : HKCU\Software\OCS

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Mozilla Firefox v25.0.1 (de)

[ Datei : C:\Users\Lisa-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\manq08n4.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [965 octets] - [11/12/2013 10:14:11]
AdwCleaner[S0].txt - [841 octets] - [11/12/2013 10:15:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [900 octets] ##########
JRT.txt:

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8 x64
Ran by Lisa-Marie on 11.12.2013 at 10:28:02,13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11.12.2013 at 10:31:43,00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST log:


FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-12-2013 01
Ran by Lisa-Marie (administrator) on LISA on 11-12-2013 10:35:01
Running from C:\Users\Lisa-Marie\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] - C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-13] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-21] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [1527896 2012-06-21] (McAfee, Inc.)
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [724576 2012-07-27] (Sony Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [152896 2012-06-25] (Intel Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {023D110E-75C9-4F4A-BAF4-B5B58471E003} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q312&_nkw={searchTerms}
SearchScopes: HKCU - {0DEE3AEE-1610-4E26-A4D2-895A4BA9DB72} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Lisa-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\manq08n4.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: https://www.google.de/?gws_rd=cr&ei=M3qkUpqxJMG8ygPCtIKQCQ
FF Plugin: @java.com/DTPlugin,version=10.5.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.0 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\progra~2\mcafee\msc\npmcsn~1.dll ()
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-13] (Qualcomm Atheros Commnucations)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-08-06] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-08-06] (Intel Corporation)
S3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [383608 2012-05-22] (McAfee, Inc.)
R2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [237920 2012-06-22] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-08] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-08] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [623784 2012-08-18] (Sony Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-08-08] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-13] (Atheros)
S2 McOobeSv2; "C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [x]

==================== Drivers (Whitelisted) ====================

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-08-20] (Advanced Micro Devices)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-13] (Qualcomm Atheros)
R3 BTATH_VDP; C:\Windows\system32\drivers\btath_vdp.sys [427416 2012-08-13] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [69672 2012-06-22] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-08] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-08] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [66712 2012-06-18] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-08] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-08] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-08] (McAfee, Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-21] (Synaptics Incorporated)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [30208 2012-07-26] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-11 10:34 - 2013-12-11 10:34 - 00000000 ____D C:\Users\Lisa-Marie\Downloads\FRST-OlderVersion
2013-12-11 10:31 - 2013-12-11 10:31 - 00000617 _____ C:\Users\Lisa-Marie\Desktop\JRT.txt
2013-12-11 10:20 - 2013-12-11 10:20 - 00000000 ____D C:\Windows\ERUNT
2013-12-11 10:18 - 2013-12-11 10:18 - 00000979 _____ C:\Users\Lisa-Marie\Desktop\AdwCleaner[S0].txt
2013-12-11 10:16 - 2013-12-11 10:17 - 00281248 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 10:13 - 2013-12-11 10:15 - 00000000 ____D C:\AdwCleaner
2013-12-11 10:11 - 2013-12-11 10:12 - 01034531 _____ (Thisisu) C:\Users\Lisa-Marie\Desktop\JRT.exe
2013-12-11 10:10 - 2013-12-11 10:11 - 01226802 _____ C:\Users\Lisa-Marie\Downloads\adwcleaner.exe
2013-12-11 10:03 - 2013-12-11 10:03 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Malwarebytes
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-11 10:03 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-11 09:55 - 2013-12-11 09:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Lisa-Marie\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-09 17:11 - 2013-12-11 09:52 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-09 16:42 - 2013-12-09 16:42 - 00020118 _____ C:\ComboFix.txt
2013-12-09 16:42 - 2013-09-14 02:15 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-12-09 16:42 - 2013-09-13 23:36 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-12-09 16:42 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-12-09 16:42 - 2013-09-13 23:36 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-12-09 16:42 - 2013-09-13 23:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-12-09 16:42 - 2013-09-13 23:36 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-12-09 16:42 - 2013-09-13 23:34 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-12-09 16:42 - 2013-09-13 23:33 - 03279360 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 01622016 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-12-09 16:42 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2013-12-09 16:42 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-12-09 16:42 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2013-12-09 16:42 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-12-09 16:42 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-12-09 16:42 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-12-09 16:42 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2013-12-09 16:42 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2013-12-09 16:42 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-12-09 16:42 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-12-09 16:42 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-12-09 16:42 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-12-09 16:42 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2013-12-09 16:42 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2013-12-09 16:42 - 2012-09-20 07:48 - 00062488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2013-12-09 16:37 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2013-12-09 16:37 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-12-09 16:37 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2013-12-09 16:37 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2013-12-09 16:37 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2013-12-09 16:37 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2013-12-09 16:37 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2013-12-09 16:37 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2013-12-09 16:37 - 2013-07-06 01:16 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-12-09 16:37 - 2013-07-03 01:23 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-12-09 16:37 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-09 16:37 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-12-09 16:37 - 2013-07-03 01:11 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-12-09 16:37 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-09 16:37 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2013-12-09 16:37 - 2013-07-01 23:08 - 00387583 _____ C:\Windows\system32\ApnDatabase.xml
2013-12-09 16:37 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2013-12-09 16:37 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2013-12-09 16:37 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-12-09 16:37 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-12-09 16:37 - 2013-06-29 06:43 - 00327512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2013-12-09 16:37 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2013-12-09 16:37 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2013-12-09 16:37 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-12-09 16:37 - 2013-06-24 23:54 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2013-12-09 16:37 - 2013-06-24 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2013-12-09 16:37 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2013-12-09 16:37 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-12-09 16:37 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2013-12-09 16:37 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2013-12-09 16:37 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2013-12-09 16:37 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-12-09 16:37 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 16:37 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 16:37 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-12-09 16:37 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-12-09 16:37 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-12-09 16:37 - 2012-10-02 08:34 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-12-09 16:33 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-09 16:33 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-09 16:33 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\Windows\SWXCACLS.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-09 16:24 - 2013-12-09 16:42 - 00000000 ____D C:\Qoobox
2013-12-09 16:24 - 2013-12-09 16:40 - 00000000 ____D C:\Windows\erdnt
2013-12-09 16:20 - 2013-12-09 16:22 - 05153091 ____R (Swearware) C:\Users\Lisa-Marie\Desktop\ComboFix.exe
2013-12-08 18:05 - 2013-11-05 23:58 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-08 18:05 - 2013-11-05 23:58 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-08 17:54 - 2012-08-31 01:53 - 00017888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2013-12-08 17:54 - 2012-08-31 01:52 - 00017888 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2013-12-08 17:50 - 2013-03-02 11:57 - 00332520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-12-08 17:50 - 2013-03-02 11:39 - 00495336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2013-12-08 17:50 - 2013-03-02 09:23 - 01338880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-12-08 17:50 - 2013-03-02 09:23 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2013-12-08 17:50 - 2013-03-02 09:23 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2013-12-08 17:50 - 2013-03-02 09:23 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-12-08 17:50 - 2013-03-02 09:23 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2013-12-08 17:50 - 2013-03-02 09:22 - 05091840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-12-08 17:50 - 2013-03-02 09:22 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-12-08 17:50 - 2013-03-02 09:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2013-12-08 17:50 - 2013-03-02 09:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 05978624 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2013-12-08 17:50 - 2013-03-01 05:56 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2013-12-08 17:50 - 2013-03-01 05:55 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-12-08 17:49 - 2013-03-02 11:57 - 00077544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2013-12-08 17:49 - 2013-03-02 09:23 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncInfo.dll
2013-12-08 17:49 - 2013-03-02 09:21 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2013-12-08 17:49 - 2013-03-02 09:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2013-12-08 17:49 - 2013-03-02 03:45 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2013-12-08 17:49 - 2013-03-02 03:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2013-12-08 17:49 - 2013-03-02 03:44 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncInfo.dll
2013-12-08 17:49 - 2013-03-02 03:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2013-12-08 17:49 - 2013-03-02 03:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2013-12-08 17:49 - 2013-03-02 03:43 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2013-12-08 17:49 - 2013-03-02 03:15 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2013-12-08 17:49 - 2013-03-01 05:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2013-12-08 17:49 - 2013-01-09 04:59 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-12-08 17:49 - 2013-01-09 04:58 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2013-12-08 17:47 - 2013-12-08 17:49 - 00000000 ____D C:\Windows\system32\MRT
2013-12-08 17:46 - 2013-11-07 16:00 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-08 17:46 - 2013-01-10 02:53 - 00028904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2013-12-08 17:46 - 2013-01-10 02:29 - 00091880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-12-08 17:46 - 2013-01-10 00:26 - 01752064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2013-12-08 17:46 - 2013-01-10 00:26 - 01611776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2013-12-08 17:46 - 2013-01-10 00:26 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2013-12-08 17:46 - 2013-01-10 00:26 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2013-12-08 17:46 - 2013-01-10 00:26 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2013-12-08 17:46 - 2013-01-10 00:26 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2013-12-08 17:46 - 2013-01-10 00:26 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 02094592 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2013-12-08 17:46 - 2013-01-10 00:23 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2013-12-08 17:46 - 2013-01-10 00:22 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2013-12-08 17:46 - 2013-01-10 00:22 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-12-08 17:46 - 2013-01-10 00:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2013-12-08 17:46 - 2013-01-10 00:22 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2013-12-08 17:46 - 2013-01-10 00:22 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2013-12-08 17:46 - 2012-11-02 06:19 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2013-12-08 17:31 - 2013-05-31 00:24 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-08 17:31 - 2013-05-31 00:08 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-12-08 17:30 - 2013-05-04 07:59 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2013-12-08 17:30 - 2013-05-04 07:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-12-08 17:30 - 2013-05-04 07:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2013-12-08 17:30 - 2013-05-04 07:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2013-12-08 17:30 - 2013-05-04 07:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2013-12-08 17:30 - 2013-05-04 07:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2013-12-08 17:30 - 2013-05-04 07:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2013-12-08 17:30 - 2013-05-04 05:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2013-12-08 17:30 - 2013-05-04 05:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2013-12-08 17:30 - 2013-05-04 05:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2013-12-08 17:30 - 2013-05-04 05:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2013-12-08 17:29 - 2013-05-04 08:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2013-12-08 17:29 - 2013-05-04 08:34 - 00284416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2013-12-08 17:29 - 2013-05-04 07:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2013-12-08 17:29 - 2013-05-04 07:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-12-08 17:29 - 2013-05-04 07:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2013-12-08 17:29 - 2013-05-04 07:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2013-12-08 17:29 - 2013-05-04 07:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2013-12-08 17:29 - 2013-05-04 05:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2013-12-08 17:29 - 2013-05-04 05:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2013-12-08 17:29 - 2013-05-04 05:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2013-12-08 17:29 - 2013-05-04 05:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2013-12-08 17:29 - 2013-05-04 05:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2013-12-08 17:29 - 2013-05-04 05:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2013-12-08 17:29 - 2013-05-04 05:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2013-12-08 17:29 - 2013-05-04 05:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-12-08 17:29 - 2013-05-04 05:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2013-12-08 17:29 - 2013-05-04 05:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2013-12-08 17:29 - 2013-05-04 05:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2013-12-08 17:29 - 2013-03-02 03:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-12-08 17:29 - 2013-03-02 03:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2013-12-08 17:29 - 2012-11-06 05:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2013-12-08 17:29 - 2012-11-06 05:00 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wushareduxresources.dll
2013-12-08 17:27 - 2013-05-15 03:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2013-12-08 17:27 - 2013-05-15 03:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2013-12-08 17:27 - 2013-05-15 03:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2013-12-08 17:27 - 2013-05-15 03:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2013-12-08 17:13 - 2013-04-09 06:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2013-12-08 17:13 - 2013-04-09 06:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2013-12-08 17:13 - 2013-04-09 06:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2013-12-08 17:13 - 2013-04-09 06:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll
2013-12-08 17:13 - 2013-04-09 06:17 - 01829408 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-08 17:13 - 2013-04-09 05:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-12-08 17:13 - 2013-04-09 05:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2013-12-08 17:13 - 2013-04-09 05:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-12-08 17:13 - 2013-04-09 05:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-08 17:13 - 2013-04-09 05:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-12-08 17:13 - 2013-04-09 05:50 - 01285632 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2013-12-08 17:13 - 2013-04-09 05:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-12-08 17:13 - 2013-04-09 05:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2013-12-08 17:13 - 2013-04-09 05:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2013-12-08 17:13 - 2013-04-09 05:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2013-12-08 17:13 - 2013-04-09 05:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2013-12-08 17:13 - 2013-04-09 05:48 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2013-12-08 17:13 - 2013-04-09 03:33 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-12-08 17:13 - 2013-04-09 03:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2013-12-08 17:13 - 2013-04-09 03:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-12-08 17:13 - 2013-04-09 00:39 - 01408896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-08 17:13 - 2013-04-09 00:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2013-12-08 17:13 - 2013-04-09 00:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2013-12-08 17:13 - 2013-04-08 22:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-08 17:13 - 2013-04-08 22:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-12-08 17:13 - 2013-04-08 22:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-12-08 17:13 - 2013-04-08 22:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-12-08 17:13 - 2013-04-08 22:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-12-08 17:13 - 2013-04-08 22:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2013-12-08 17:13 - 2013-04-08 22:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2013-12-08 17:13 - 2013-04-08 22:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-12-08 17:13 - 2013-04-05 00:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2013-12-08 17:13 - 2013-03-30 19:16 - 01403784 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-12-08 17:13 - 2013-03-30 19:16 - 01267424 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-12-08 17:13 - 2013-03-28 23:09 - 01217328 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-12-08 17:13 - 2013-03-28 23:09 - 01093880 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-12-08 17:13 - 2013-03-15 23:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2013-12-08 17:13 - 2013-03-15 23:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2013-12-08 17:13 - 2012-09-20 07:32 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2013-12-08 17:13 - 2012-09-20 06:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2013-12-08 17:12 - 2013-04-09 06:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2013-12-08 17:12 - 2013-04-09 06:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll
2013-12-08 17:12 - 2013-04-09 05:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-12-08 17:12 - 2013-04-09 05:52 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2013-12-08 17:12 - 2013-04-09 05:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2013-12-08 17:12 - 2013-04-09 05:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-12-08 17:12 - 2013-04-09 05:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2013-12-08 17:12 - 2013-04-09 05:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2013-12-08 17:12 - 2013-04-09 05:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2013-12-08 17:12 - 2013-04-09 05:48 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2013-12-08 17:12 - 2013-04-09 03:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2013-12-08 17:12 - 2013-04-09 03:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2013-12-08 17:12 - 2013-04-09 03:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2013-12-08 17:12 - 2013-04-09 00:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2013-12-08 17:12 - 2013-04-08 22:52 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-12-08 17:12 - 2013-04-08 22:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-12-08 17:12 - 2013-04-08 22:52 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2013-12-08 17:12 - 2013-04-08 22:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2013-12-08 17:12 - 2013-02-02 09:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2013-12-08 17:12 - 2013-02-02 09:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-12-08 17:12 - 2013-01-10 02:40 - 00303848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-12-08 17:12 - 2012-12-13 05:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-08 17:12 - 2012-12-13 04:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-08 17:12 - 2012-11-20 05:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys
2013-12-08 17:12 - 2012-11-06 08:33 - 00522640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2013-12-08 17:12 - 2012-11-06 06:00 - 00463768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2013-12-08 17:12 - 2012-11-06 05:18 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2013-12-08 17:12 - 2012-10-11 06:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-12-08 17:12 - 2012-10-11 06:44 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2013-12-08 17:12 - 2012-10-11 06:06 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2013-12-08 17:12 - 2012-10-11 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-12-08 17:12 - 2012-09-20 07:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2013-12-08 17:12 - 2012-09-20 07:33 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2013-12-08 17:12 - 2012-09-20 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2013-12-08 17:12 - 2012-09-20 07:32 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2013-12-08 17:12 - 2012-09-20 07:32 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2013-12-08 17:12 - 2012-09-20 07:32 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2013-12-08 17:12 - 2012-09-20 07:32 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2013-12-08 17:12 - 2012-09-20 07:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2013-12-08 17:12 - 2012-09-20 07:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhautoplay.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2013-12-08 17:12 - 2012-09-20 07:12 - 09374208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-08 17:12 - 2012-09-20 07:09 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2013-12-08 17:12 - 2012-09-20 06:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2013-12-08 17:12 - 2012-09-20 06:55 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2013-12-08 17:12 - 2012-09-20 06:54 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2013-12-08 17:12 - 2012-09-20 06:54 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2013-12-08 17:12 - 2012-09-20 06:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2013-12-08 17:12 - 2012-09-20 06:54 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2013-12-08 17:12 - 2012-09-20 06:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2013-12-08 17:12 - 2012-09-20 06:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2013-12-08 17:12 - 2012-09-20 06:32 - 09374208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-08 16:58 - 2013-07-02 01:44 - 00036288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2013-12-08 16:58 - 2013-07-01 23:08 - 00247216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2013-12-08 16:58 - 2012-10-10 08:04 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-12-08 16:58 - 2012-10-10 07:31 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-12-08 16:57 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-08 16:56 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2013-12-08 16:56 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-12-08 16:56 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-08 16:56 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2013-12-08 16:56 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2013-12-08 16:56 - 2013-08-16 06:32 - 00209200 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2013-12-08 16:56 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2013-12-08 16:56 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2013-12-08 16:56 - 2013-08-16 06:20 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00083968 _____ C:\Windows\SysWOW64\OEMLicense.dll
2013-12-08 16:56 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2013-12-08 16:56 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2013-12-08 16:56 - 2012-09-20 07:33 - 00110592 _____ C:\Windows\system32\OEMLicense.dll
2013-12-08 16:53 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-08 16:53 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-12-08 16:53 - 2012-11-26 05:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2013-12-08 16:53 - 2012-11-26 05:20 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2013-12-08 16:51 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-08 16:51 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-08 16:51 - 2013-04-16 03:34 - 01455368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-08 16:49 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-08 16:49 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-12-08 16:48 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-08 16:48 - 2013-07-05 23:01 - 00210560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-12-08 16:48 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2013-12-08 16:48 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-08 16:48 - 2013-06-29 04:07 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-08 16:47 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-08 16:47 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-08 16:47 - 2013-05-24 00:02 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-08 16:47 - 2013-05-23 23:25 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-12-08 16:46 - 2013-04-24 00:13 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-12-08 16:46 - 2013-04-24 00:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-12-08 16:46 - 2013-04-23 23:56 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-12-08 16:46 - 2013-04-23 23:55 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-08 16:45 - 2013-07-09 07:07 - 02233168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-08 16:45 - 2013-03-02 10:59 - 00411880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-12-08 16:43 - 2012-10-06 05:53 - 02893824 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-12-08 16:43 - 2012-10-06 05:15 - 02400256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-12-08 16:42 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-08 16:42 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-12-08 16:42 - 2013-06-01 10:25 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-12-08 16:42 - 2013-06-01 10:21 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-12-08 16:42 - 2013-03-02 09:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2013-12-08 16:42 - 2013-03-02 03:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2013-12-08 16:42 - 2012-12-15 05:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2013-12-08 16:42 - 2012-11-03 06:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe
2013-12-08 16:42 - 2012-11-03 06:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll
2013-12-08 16:42 - 2012-10-24 04:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2013-12-08 16:42 - 2012-10-24 03:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2013-12-08 16:37 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-12-08 16:37 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-08 16:37 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-08 16:37 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-12-08 16:37 - 2012-11-08 05:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-08 16:37 - 2012-11-08 05:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-12-08 16:37 - 2012-11-08 05:20 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-08 16:37 - 2012-11-08 05:20 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-08 16:37 - 2012-11-08 05:02 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-08 16:37 - 2012-11-08 05:01 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-12-08 16:32 - 2013-08-23 06:11 - 04040192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-08 16:31 - 2013-02-02 11:54 - 01933544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-12-08 16:31 - 2013-02-02 11:28 - 00993512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-12-08 16:31 - 2013-02-02 09:40 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2013-12-08 16:31 - 2013-02-02 09:40 - 00370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2013-12-08 16:31 - 2013-02-02 09:40 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2013-12-08 16:31 - 2013-02-02 09:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2013-12-08 16:31 - 2013-02-02 09:40 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2013-12-08 16:31 - 2013-02-02 09:39 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2013-12-08 16:31 - 2013-02-02 09:39 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-12-08 16:31 - 2013-02-02 09:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2013-12-08 16:31 - 2013-02-02 09:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2013-12-08 16:31 - 2013-02-02 09:38 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2013-12-08 16:31 - 2013-02-02 09:24 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2013-12-08 16:31 - 2013-02-02 09:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2013-12-08 16:31 - 2013-02-02 09:23 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2013-12-08 16:31 - 2013-02-02 09:23 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\wlroamextension.dll
2013-12-08 16:31 - 2013-02-02 09:23 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2013-12-08 16:31 - 2013-02-02 09:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2013-12-08 16:31 - 2013-02-02 09:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2013-12-08 16:31 - 2013-02-02 09:21 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-12-08 16:31 - 2013-02-02 09:21 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2013-12-08 16:31 - 2013-02-02 09:20 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2013-12-08 16:31 - 2013-02-02 09:20 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2013-12-08 16:31 - 2013-02-02 08:25 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2013-12-08 16:31 - 2013-02-02 08:25 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2013-12-08 16:31 - 2012-11-27 04:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2013-12-08 16:31 - 2012-11-27 04:55 - 00029952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthhfHid.sys
2013-12-08 16:31 - 2012-09-20 07:32 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-12-08 16:31 - 2012-09-20 07:32 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-12-08 16:30 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-08 16:30 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-08 16:30 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-08 16:30 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-08 16:30 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-08 16:30 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-08 16:30 - 2013-04-11 23:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-12-08 16:30 - 2013-04-11 23:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-12-08 16:30 - 2013-03-06 07:31 - 19758592 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-08 16:30 - 2013-03-06 06:03 - 17561600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-12-08 16:30 - 2013-02-12 01:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-12-08 16:30 - 2013-02-05 23:29 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-12-08 16:30 - 2013-02-05 23:28 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-12-08 16:30 - 2013-02-02 06:41 - 01437184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2013-12-08 16:30 - 2013-02-02 06:31 - 01690624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2013-12-08 16:30 - 2012-11-20 05:56 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-08 16:29 - 2013-12-08 16:37 - 00015915 _____ C:\Users\Lisa-Marie\Downloads\Addition.txt
2013-12-08 16:29 - 2013-05-04 07:59 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-08 16:29 - 2013-05-04 05:57 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-12-08 16:29 - 2013-03-06 08:10 - 00112872 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-12-08 16:29 - 2013-03-06 07:31 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-08 16:29 - 2013-03-06 07:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-12-08 16:29 - 2013-03-06 06:03 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-12-08 16:28 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-08 16:28 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-08 16:28 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-08 16:28 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-08 16:28 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-08 16:28 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-08 16:28 - 2013-05-15 23:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2013-12-08 16:28 - 2013-05-15 23:35 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2013-12-08 16:28 - 2013-05-14 14:14 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-08 16:28 - 2013-05-14 10:23 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-08 16:28 - 2013-04-28 23:28 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2013-12-08 16:28 - 2013-04-27 06:20 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-12-08 16:28 - 2013-02-21 11:29 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-08 16:28 - 2013-02-21 11:29 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-08 16:28 - 2013-02-21 11:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-08 16:28 - 2013-02-21 11:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-08 16:28 - 2013-02-21 11:14 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-08 16:28 - 2013-02-21 11:14 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-08 16:28 - 2013-02-19 10:53 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2013-12-08 16:28 - 2012-11-08 05:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-08 16:28 - 2012-11-08 05:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-08 16:27 - 2013-12-11 10:35 - 00013445 _____ C:\Users\Lisa-Marie\Downloads\FRST.txt
2013-12-08 16:27 - 2013-12-11 10:34 - 00000000 ____D C:\FRST
2013-12-08 16:26 - 2013-12-11 10:34 - 01928212 _____ (Farbar) C:\Users\Lisa-Marie\Downloads\FRST64.exe
2013-12-08 16:26 - 2013-02-26 16:56 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-12-08 16:25 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-08 16:25 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-08 16:25 - 2013-08-02 07:28 - 10116608 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2013-12-08 16:25 - 2013-08-02 06:08 - 08858112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-12-08 16:25 - 2013-03-02 11:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2013-12-08 16:25 - 2013-03-02 03:43 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2013-12-08 16:25 - 2013-02-07 02:33 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2013-12-08 16:23 - 2013-02-26 16:56 - 00130016 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-12-08 16:21 - 2013-02-26 16:56 - 00100712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-08 16:13 - 2013-12-08 16:13 - 00003140 _____ C:\Windows\System32\Tasks\{87479441-9B24-4A8C-9AFA-05B545C022E1}
2013-12-08 16:10 - 2013-12-08 16:24 - 01069568 _____ (Solid State Networks) C:\Users\Lisa-Marie\Downloads\install_reader11_de_mssd_aaa_aih.exe
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\DAEMON Tools Lite
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-12-08 16:04 - 2013-12-08 16:04 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-12-08 16:04 - 2005-05-31 08:52 - 00636998 _____ (DVD Shrink) C:\Users\Lisa-Marie\Desktop\DVD Shrink 3.2 DE.exe
2013-12-08 15:56 - 2013-12-08 15:56 - 00000000 ____D C:\PS_CS2_Gr_NonRet
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\ProgramData\Avira
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Avira
2013-12-08 15:52 - 2013-12-08 15:52 - 00001196 _____ C:\Users\Lisa-Marie\Desktop\IsoBuster.lnk
2013-12-08 15:52 - 2013-12-08 15:52 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2013-12-08 15:52 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-12-08 15:52 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-12-08 15:52 - 2013-07-19 23:13 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-08 15:52 - 2013-07-19 23:13 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-08 15:52 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-08 15:52 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-08 15:52 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2013-12-08 15:52 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2013-12-08 15:52 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-12-08 15:52 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2013-12-08 15:52 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2013-12-08 15:52 - 2013-07-02 02:41 - 00447320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-12-08 15:52 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-12-08 15:52 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2013-12-08 15:52 - 2013-03-15 01:17 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2013-12-08 15:52 - 2012-11-03 06:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2013-12-08 15:52 - 2012-11-03 06:26 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2013-12-08 15:52 - 2012-11-03 06:24 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2013-12-08 15:52 - 2012-11-03 06:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2013-12-08 15:52 - 2012-11-03 06:04 - 00003584 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2013-12-08 15:52 - 2012-11-03 06:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2013-12-08 15:52 - 2012-11-03 06:00 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2013-12-08 15:52 - 2012-10-24 04:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2013-12-08 15:52 - 2012-10-24 04:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2013-12-08 15:52 - 2012-10-24 04:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2013-12-08 15:52 - 2012-10-24 04:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2013-12-08 15:46 - 2013-04-03 00:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-12-08 15:46 - 2013-04-03 00:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-12-08 15:46 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-12-08 15:46 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-12-08 15:45 - 2013-04-11 07:40 - 06987528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-08 15:44 - 2013-08-07 06:15 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2013-12-08 15:44 - 2012-11-10 05:23 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-12-08 15:44 - 2012-11-10 05:23 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-12-08 15:44 - 2012-11-10 05:22 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\RDWebAI.dll
2013-12-08 15:44 - 2012-11-10 05:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VmHostAI.dll
2013-12-08 15:44 - 2012-11-10 05:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\appserverai.dll
2013-12-08 15:43 - 2013-12-08 15:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-08 15:39 - 2012-11-01 05:41 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-12-08 15:39 - 2012-11-01 05:41 - 01438720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-12-08 15:39 - 2012-11-01 05:40 - 02361344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-12-08 15:39 - 2012-11-01 05:40 - 01836032 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-12-08 15:39 - 2012-11-01 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2013-12-08 15:39 - 2012-11-01 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-12-08 15:39 - 2012-11-01 05:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2013-12-08 15:39 - 2012-11-01 05:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-12-08 15:35 - 2013-12-08 15:35 - 00001011 _____ C:\Users\Public\Desktop\Audacity.lnk
2013-12-08 15:34 - 2013-12-08 15:35 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-12-08 15:34 - 2013-12-08 15:34 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Kindle
2013-12-08 15:19 - 2013-12-08 15:21 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Schule
2013-12-08 15:17 - 2013-12-08 15:17 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-08 15:17 - 2013-12-08 15:17 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-12-08 15:16 - 2013-12-08 15:16 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\vlc
2013-12-08 15:13 - 2013-12-08 15:13 - 00000117 _____ C:\Windows\system32\netcfg-30421.txt
2013-12-08 15:12 - 2013-12-08 15:12 - 00000117 _____ C:\Windows\system32\netcfg-834109.txt
2013-12-08 15:10 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Adobe
2013-12-08 15:07 - 2013-06-01 20:48 - 00000503 _____ C:\Users\Lisa-Marie\Documents\Liebe.txt
2013-12-08 15:07 - 2013-05-30 16:24 - 00002092 _____ C:\Users\Lisa-Marie\Documents\Neues Textdokument.txt
2013-12-08 15:07 - 2013-04-04 13:32 - 00007662 _____ C:\Users\Lisa-Marie\Documents\rubinrot.txt
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Macromedia
2013-12-08 14:59 - 2013-12-08 14:59 - 00000117 _____ C:\Windows\system32\netcfg-71687.txt
2013-12-08 14:57 - 2013-12-08 14:57 - 00000117 _____ C:\Windows\system32\netcfg-4347031.txt
2013-12-08 14:54 - 2013-12-11 10:35 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1108325158-3463833279-2753141017-1001
2013-12-08 14:54 - 2013-12-08 15:39 - 00000000 ____D C:\Update
2013-12-08 14:53 - 2013-12-08 16:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-08 14:53 - 2013-12-08 15:27 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Sony Corporation
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\Documents\Bluetooth Folder
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\ATI
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Atheros
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\BMExplorer
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\ATI
2013-12-08 14:49 - 2013-12-08 14:49 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-08 14:48 - 2013-12-08 20:59 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-08 14:48 - 2013-12-08 20:59 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-08 14:48 - 2013-12-08 15:31 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Sony Corporation
2013-12-08 14:48 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Adobe
2013-12-08 14:48 - 2013-12-08 14:48 - 00001442 _____ C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\SysWOW64\VAIO Startup Setting Tool
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\pss
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Power2Go8
2013-12-08 14:47 - 2013-12-11 09:52 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Packages
2013-12-08 14:47 - 2013-12-08 14:47 - 00000020 ___SH C:\Users\Lisa-Marie\ntuser.ini
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Vorlagen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Startmenü
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Netzwerkumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Lokale Einstellungen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Eigene Dateien
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Druckumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Musik
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Bilder
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Verlauf
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\VirtualStore
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-08 14:46 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600890.txt
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600500.txt
2013-12-08 14:44 - 2013-12-08 14:44 - 00000117 _____ C:\Windows\system32\netcfg-3584015.txt
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-08 13:44 - 2013-12-08 13:44 - 00000000 _____ C:\Recovery.txt

==================== One Month Modified Files and Folders =======

2013-12-11 10:35 - 2013-12-08 16:27 - 00013445 _____ C:\Users\Lisa-Marie\Downloads\FRST.txt
2013-12-11 10:35 - 2013-12-08 14:54 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1108325158-3463833279-2753141017-1001
2013-12-11 10:34 - 2013-12-11 10:34 - 00000000 ____D C:\Users\Lisa-Marie\Downloads\FRST-OlderVersion
2013-12-11 10:34 - 2013-12-08 16:27 - 00000000 ____D C:\FRST
2013-12-11 10:34 - 2013-12-08 16:26 - 01928212 _____ (Farbar) C:\Users\Lisa-Marie\Downloads\FRST64.exe
2013-12-11 10:31 - 2013-12-11 10:31 - 00000617 _____ C:\Users\Lisa-Marie\Desktop\JRT.txt
2013-12-11 10:25 - 2012-11-22 16:07 - 01373641 _____ C:\Windows\WindowsUpdate.log
2013-12-11 10:24 - 2012-11-22 15:43 - 00753134 _____ C:\Windows\system32\perfh007.dat
2013-12-11 10:24 - 2012-11-22 15:43 - 00155826 _____ C:\Windows\system32\perfc007.dat
2013-12-11 10:24 - 2012-07-26 08:28 - 01745416 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-11 10:20 - 2013-12-11 10:20 - 00000000 ____D C:\Windows\ERUNT
2013-12-11 10:18 - 2013-12-11 10:18 - 00000979 _____ C:\Users\Lisa-Marie\Desktop\AdwCleaner[S0].txt
2013-12-11 10:18 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-12-11 10:17 - 2013-12-11 10:16 - 00281248 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 10:17 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-11 10:16 - 2012-08-03 03:22 - 00102106 _____ C:\Windows\PFRO.log
2013-12-11 10:15 - 2013-12-11 10:13 - 00000000 ____D C:\AdwCleaner
2013-12-11 10:12 - 2013-12-11 10:11 - 01034531 _____ (Thisisu) C:\Users\Lisa-Marie\Desktop\JRT.exe
2013-12-11 10:11 - 2013-12-11 10:10 - 01226802 _____ C:\Users\Lisa-Marie\Downloads\adwcleaner.exe
2013-12-11 10:03 - 2013-12-11 10:03 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Malwarebytes
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-11 10:00 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\sru
2013-12-11 09:59 - 2013-12-11 09:55 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Lisa-Marie\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-11 09:56 - 2012-11-22 16:10 - 00000000 ____D C:\ProgramData\McAfee
2013-12-11 09:52 - 2013-12-09 17:11 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-11 09:52 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Packages
2013-12-11 09:52 - 2012-08-03 03:25 - 00000000 ____D C:\ProgramData\PRICache
2013-12-09 17:16 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-12-09 17:12 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-09 17:12 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-09 17:12 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Defender
2013-12-09 17:12 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-09 17:11 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\WinStore
2013-12-09 17:11 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-09 17:11 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-12-09 17:11 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2013-12-09 17:09 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\system32\oobe
2013-12-09 17:08 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-09 17:08 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-09 17:08 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-12-09 17:08 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-12-09 17:08 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-12-09 17:08 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\system32\Dism
2013-12-09 16:42 - 2013-12-09 16:42 - 00020118 _____ C:\ComboFix.txt
2013-12-09 16:42 - 2013-12-09 16:24 - 00000000 ____D C:\Qoobox
2013-12-09 16:42 - 2012-07-26 06:37 - 00000000 __RHD C:\Users\Default
2013-12-09 16:40 - 2013-12-09 16:24 - 00000000 ____D C:\Windows\erdnt
2013-12-09 16:40 - 2012-07-26 06:26 - 00000215 _____ C:\Windows\system.ini
2013-12-09 16:30 - 2012-11-22 16:10 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-12-09 16:29 - 2012-11-22 16:31 - 00000000 ____D C:\Program Files\McAfeeEx
2013-12-09 16:22 - 2013-12-09 16:20 - 05153091 ____R (Swearware) C:\Users\Lisa-Marie\Desktop\ComboFix.exe
2013-12-08 20:59 - 2013-12-08 14:48 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-08 20:59 - 2013-12-08 14:48 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-08 18:34 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\rescache
2013-12-08 18:05 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\servicing
2013-12-08 18:01 - 2012-07-26 09:12 - 00000000 ___RD C:\Windows\ToastData
2013-12-08 17:49 - 2013-12-08 17:47 - 00000000 ____D C:\Windows\system32\MRT
2013-12-08 16:37 - 2013-12-08 16:29 - 00015915 _____ C:\Users\Lisa-Marie\Downloads\Addition.txt
2013-12-08 16:24 - 2013-12-08 16:10 - 01069568 _____ (Solid State Networks) C:\Users\Lisa-Marie\Downloads\install_reader11_de_mssd_aaa_aih.exe
2013-12-08 16:13 - 2013-12-08 16:13 - 00003140 _____ C:\Windows\System32\Tasks\{87479441-9B24-4A8C-9AFA-05B545C022E1}
2013-12-08 16:06 - 2013-12-08 14:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\DAEMON Tools Lite
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-12-08 16:04 - 2013-12-08 16:04 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-12-08 15:56 - 2013-12-08 15:56 - 00000000 ____D C:\PS_CS2_Gr_NonRet
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\ProgramData\Avira
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Avira
2013-12-08 15:52 - 2013-12-08 15:52 - 00001196 _____ C:\Users\Lisa-Marie\Desktop\IsoBuster.lnk
2013-12-08 15:52 - 2013-12-08 15:52 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2013-12-08 15:43 - 2013-12-08 15:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-08 15:39 - 2013-12-08 14:54 - 00000000 ____D C:\Update
2013-12-08 15:35 - 2013-12-08 15:35 - 00001011 _____ C:\Users\Public\Desktop\Audacity.lnk
2013-12-08 15:35 - 2013-12-08 15:34 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-12-08 15:34 - 2013-12-08 15:34 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Kindle
2013-12-08 15:31 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Sony Corporation
2013-12-08 15:27 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Mozilla
2013-12-08 15:21 - 2013-12-08 15:19 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Schule
2013-12-08 15:17 - 2013-12-08 15:17 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-08 15:17 - 2013-12-08 15:17 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-12-08 15:16 - 2013-12-08 15:16 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\vlc
2013-12-08 15:13 - 2013-12-08 15:13 - 00000117 _____ C:\Windows\system32\netcfg-30421.txt
2013-12-08 15:13 - 2012-11-22 16:10 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-12-08 15:12 - 2013-12-08 15:12 - 00000117 _____ C:\Windows\system32\netcfg-834109.txt
2013-12-08 15:12 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-12-08 15:11 - 2012-11-22 15:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-08 15:10 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Adobe
2013-12-08 15:10 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Adobe
2013-12-08 15:09 - 2012-11-22 16:48 - 00000000 ____D C:\Program Files (x86)\WildGames
2013-12-08 15:06 - 2012-11-22 16:45 - 00000000 ____D C:\ProgramData\WildTangent
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Macromedia
2013-12-08 14:59 - 2013-12-08 14:59 - 00000117 _____ C:\Windows\system32\netcfg-71687.txt
2013-12-08 14:57 - 2013-12-08 14:57 - 00000117 _____ C:\Windows\system32\netcfg-4347031.txt
2013-12-08 14:56 - 2012-11-22 15:50 - 00000000 ____D C:\ProgramData\Sony Corporation
2013-12-08 14:53 - 2013-12-08 14:53 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Sony Corporation
2013-12-08 14:52 - 2012-07-26 08:21 - 00020708 _____ C:\Windows\setupact.log
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\Documents\Bluetooth Folder
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\ATI
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Atheros
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\BMExplorer
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\ATI
2013-12-08 14:50 - 2012-11-22 17:34 - 00000000 ____D C:\ProgramData\Atheros
2013-12-08 14:49 - 2013-12-08 14:49 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-08 14:49 - 2012-11-22 16:12 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation
2013-12-08 14:48 - 2013-12-08 14:48 - 00001442 _____ C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\SysWOW64\VAIO Startup Setting Tool
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\pss
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Power2Go8
2013-12-08 14:48 - 2013-12-08 14:46 - 00000000 ____D C:\Users\Lisa-Marie
2013-12-08 14:48 - 2012-11-22 16:27 - 00000000 ____D C:\Windows\System32\Tasks\SONY
2013-12-08 14:48 - 2012-11-22 15:44 - 00000000 ____D C:\Program Files\Sony
2013-12-08 14:47 - 2013-12-08 14:47 - 00000020 ___SH C:\Users\Lisa-Marie\ntuser.ini
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Vorlagen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Startmenü
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Netzwerkumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Lokale Einstellungen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Eigene Dateien
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Druckumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Musik
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Bilder
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Verlauf
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\VirtualStore
2013-12-08 14:47 - 2012-07-26 09:12 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600890.txt
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600500.txt
2013-12-08 14:44 - 2013-12-08 14:44 - 00000117 _____ C:\Windows\system32\netcfg-3584015.txt
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-08 13:45 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT
2013-12-08 13:44 - 2013-12-08 13:44 - 00000000 _____ C:\Recovery.txt
2013-12-08 13:44 - 2012-07-26 09:13 - 00262144 _____ C:\Windows\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\Lisa-Marie\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2012-08-03 03:22

==================== End Of Log ============================
--- --- ---

--- --- ---

schrauber 12.12.2013 09:02

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

Ljojo 12.12.2013 17:00
EsetOnlineScanner\log.txt:
Code:
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=bbdb306945b81c49a919c9c6a03f9ab8
# engine=16244
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-12-12 03:48:10
# local_time=2013-12-12 04:48:10 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode=1797 16774142 0 35 350384 32678561 0 0
# compatibility_mode=5122 16777213 100 79 356457 94860856 0 0
# compatibility_mode=5893 16776574 100 94 261369 46369401 0 0
# scanned=177874
# found=0
# cleaned=0
# scan_time=4063
checkup.txt:
Code:
Results of screen317's Security Check version 0.99.77 
  x64 (UAC is enabled) 
 Internet Explorer 10 Out of date!
``````````````Antivirus/Firewall Check:``````````````
McAfee  Anti-Virus und Anti-Spyware 
Windows Defender                     
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware Version 1.75.0.1300 
 Java(TM) 7 Update 5 
 Java version out of Date!
 Mozilla Firefox (25.0.1)
````````Process Check: objlist.exe by Laurent```````` 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-12-2013
Ran by Lisa-Marie (administrator) on LISA on 12-12-2013 16:56:03
Running from C:\Users\Lisa-Marie\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] - C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-13] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-21] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [1527896 2012-06-21] (McAfee, Inc.)
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [724576 2012-07-27] (Sony Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [152896 2012-06-25] (Intel Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {023D110E-75C9-4F4A-BAF4-B5B58471E003} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q312&_nkw={searchTerms}
SearchScopes: HKCU - {0DEE3AEE-1610-4E26-A4D2-895A4BA9DB72} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Lisa-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\manq08n4.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: https://www.google.de/?gws_rd=cr&ei=M3qkUpqxJMG8ygPCtIKQCQ
FF Plugin: @java.com/DTPlugin,version=10.5.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.0 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\progra~2\mcafee\msc\npmcsn~1.dll ()
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-13] (Qualcomm Atheros Commnucations)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-08-06] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-08-06] (Intel Corporation)
S3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [383608 2012-05-22] (McAfee, Inc.)
R2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [237920 2012-06-22] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-08] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-08] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [623784 2012-08-18] (Sony Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-08-08] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-13] (Atheros)
S2 McOobeSv2; "C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [x]

==================== Drivers (Whitelisted) ====================

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-08-20] (Advanced Micro Devices)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-13] (Qualcomm Atheros)
R3 BTATH_VDP; C:\Windows\system32\drivers\btath_vdp.sys [427416 2012-08-13] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [69672 2012-06-22] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-08] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-08] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [66712 2012-06-18] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-08] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-08] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-08] (McAfee, Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-21] (Synaptics Incorporated)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [30208 2012-07-26] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-12 14:50 - 2013-12-12 14:50 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-12 14:49 - 2013-12-12 15:14 - 38904134 _____ C:\Users\Lisa-Marie\Downloads\avira_free1402_antivirus_de.exe
2013-12-12 14:48 - 2013-12-12 14:49 - 00891200 _____ C:\Users\Lisa-Marie\Desktop\SecurityCheck.exe
2013-12-12 14:47 - 2013-12-12 14:49 - 02347384 _____ (ESET) C:\Users\Lisa-Marie\Desktop\esetsmartinstaller_enu.exe
2013-12-11 10:34 - 2013-12-12 16:55 - 00000000 ____D C:\Users\Lisa-Marie\Downloads\FRST-OlderVersion
2013-12-11 10:20 - 2013-12-11 10:20 - 00000000 ____D C:\Windows\ERUNT
2013-12-11 10:16 - 2013-12-11 10:17 - 00281248 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 10:13 - 2013-12-11 10:15 - 00000000 ____D C:\AdwCleaner
2013-12-11 10:10 - 2013-12-11 10:11 - 01226802 _____ C:\Users\Lisa-Marie\Downloads\adwcleaner.exe
2013-12-11 10:03 - 2013-12-11 10:03 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Malwarebytes
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-11 10:03 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-11 09:55 - 2013-12-11 09:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Lisa-Marie\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-09 17:11 - 2013-12-11 09:52 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-09 16:42 - 2013-12-09 16:42 - 00020118 _____ C:\ComboFix.txt
2013-12-09 16:42 - 2013-09-14 02:15 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-12-09 16:42 - 2013-09-13 23:36 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-12-09 16:42 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-12-09 16:42 - 2013-09-13 23:36 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-12-09 16:42 - 2013-09-13 23:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-12-09 16:42 - 2013-09-13 23:36 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-12-09 16:42 - 2013-09-13 23:34 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-12-09 16:42 - 2013-09-13 23:33 - 03279360 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 01622016 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-12-09 16:42 - 2013-09-13 23:33 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-12-09 16:42 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2013-12-09 16:42 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-12-09 16:42 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2013-12-09 16:42 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-12-09 16:42 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-12-09 16:42 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-12-09 16:42 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2013-12-09 16:42 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2013-12-09 16:42 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-12-09 16:42 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-12-09 16:42 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-12-09 16:42 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-12-09 16:42 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2013-12-09 16:42 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2013-12-09 16:42 - 2012-09-20 07:48 - 00062488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2013-12-09 16:37 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2013-12-09 16:37 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-12-09 16:37 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2013-12-09 16:37 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2013-12-09 16:37 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2013-12-09 16:37 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2013-12-09 16:37 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2013-12-09 16:37 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2013-12-09 16:37 - 2013-07-06 01:16 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-12-09 16:37 - 2013-07-03 01:23 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-12-09 16:37 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-09 16:37 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-12-09 16:37 - 2013-07-03 01:11 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-12-09 16:37 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-09 16:37 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2013-12-09 16:37 - 2013-07-01 23:08 - 00387583 _____ C:\Windows\system32\ApnDatabase.xml
2013-12-09 16:37 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2013-12-09 16:37 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2013-12-09 16:37 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-12-09 16:37 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-12-09 16:37 - 2013-06-29 06:43 - 00327512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2013-12-09 16:37 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2013-12-09 16:37 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2013-12-09 16:37 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-12-09 16:37 - 2013-06-24 23:54 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2013-12-09 16:37 - 2013-06-24 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2013-12-09 16:37 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2013-12-09 16:37 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-12-09 16:37 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2013-12-09 16:37 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2013-12-09 16:37 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2013-12-09 16:37 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-12-09 16:37 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 16:37 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 16:37 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-12-09 16:37 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-12-09 16:37 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-12-09 16:37 - 2012-10-02 08:34 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-12-09 16:33 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-09 16:33 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-09 16:33 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\Windows\SWXCACLS.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-09 16:33 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-09 16:24 - 2013-12-09 16:42 - 00000000 ____D C:\Qoobox
2013-12-09 16:24 - 2013-12-09 16:40 - 00000000 ____D C:\Windows\erdnt
2013-12-08 18:05 - 2013-11-05 23:58 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-08 18:05 - 2013-11-05 23:58 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-08 17:54 - 2012-08-31 01:53 - 00017888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2013-12-08 17:54 - 2012-08-31 01:52 - 00017888 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2013-12-08 17:50 - 2013-03-02 11:57 - 00332520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-12-08 17:50 - 2013-03-02 11:39 - 00495336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2013-12-08 17:50 - 2013-03-02 09:23 - 01338880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-12-08 17:50 - 2013-03-02 09:23 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2013-12-08 17:50 - 2013-03-02 09:23 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2013-12-08 17:50 - 2013-03-02 09:23 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-12-08 17:50 - 2013-03-02 09:23 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2013-12-08 17:50 - 2013-03-02 09:22 - 05091840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-12-08 17:50 - 2013-03-02 09:22 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-12-08 17:50 - 2013-03-02 09:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2013-12-08 17:50 - 2013-03-02 09:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2013-12-08 17:50 - 2013-03-02 03:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 05978624 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2013-12-08 17:50 - 2013-03-02 03:44 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2013-12-08 17:50 - 2013-03-01 05:56 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2013-12-08 17:50 - 2013-03-01 05:55 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-12-08 17:49 - 2013-03-02 11:57 - 00077544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2013-12-08 17:49 - 2013-03-02 09:23 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncInfo.dll
2013-12-08 17:49 - 2013-03-02 09:21 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2013-12-08 17:49 - 2013-03-02 09:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2013-12-08 17:49 - 2013-03-02 03:45 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2013-12-08 17:49 - 2013-03-02 03:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2013-12-08 17:49 - 2013-03-02 03:44 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncInfo.dll
2013-12-08 17:49 - 2013-03-02 03:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2013-12-08 17:49 - 2013-03-02 03:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2013-12-08 17:49 - 2013-03-02 03:43 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2013-12-08 17:49 - 2013-03-02 03:15 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2013-12-08 17:49 - 2013-03-01 05:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2013-12-08 17:49 - 2013-01-09 04:59 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-12-08 17:49 - 2013-01-09 04:58 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2013-12-08 17:47 - 2013-12-08 17:49 - 00000000 ____D C:\Windows\system32\MRT
2013-12-08 17:46 - 2013-11-07 16:00 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-08 17:46 - 2013-01-10 02:53 - 00028904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2013-12-08 17:46 - 2013-01-10 02:29 - 00091880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-12-08 17:46 - 2013-01-10 00:26 - 01752064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2013-12-08 17:46 - 2013-01-10 00:26 - 01611776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2013-12-08 17:46 - 2013-01-10 00:26 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2013-12-08 17:46 - 2013-01-10 00:26 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2013-12-08 17:46 - 2013-01-10 00:26 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2013-12-08 17:46 - 2013-01-10 00:26 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2013-12-08 17:46 - 2013-01-10 00:26 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 02094592 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2013-12-08 17:46 - 2013-01-10 00:23 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2013-12-08 17:46 - 2013-01-10 00:23 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2013-12-08 17:46 - 2013-01-10 00:22 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2013-12-08 17:46 - 2013-01-10 00:22 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-12-08 17:46 - 2013-01-10 00:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2013-12-08 17:46 - 2013-01-10 00:22 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2013-12-08 17:46 - 2013-01-10 00:22 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2013-12-08 17:46 - 2012-11-02 06:19 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2013-12-08 17:46 - 2012-11-02 06:18 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2013-12-08 17:31 - 2013-05-31 00:24 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-08 17:31 - 2013-05-31 00:08 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-12-08 17:30 - 2013-05-04 07:59 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2013-12-08 17:30 - 2013-05-04 07:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-12-08 17:30 - 2013-05-04 07:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2013-12-08 17:30 - 2013-05-04 07:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2013-12-08 17:30 - 2013-05-04 07:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2013-12-08 17:30 - 2013-05-04 07:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2013-12-08 17:30 - 2013-05-04 07:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2013-12-08 17:30 - 2013-05-04 05:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2013-12-08 17:30 - 2013-05-04 05:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2013-12-08 17:30 - 2013-05-04 05:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2013-12-08 17:30 - 2013-05-04 05:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2013-12-08 17:29 - 2013-05-04 08:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2013-12-08 17:29 - 2013-05-04 08:34 - 00284416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2013-12-08 17:29 - 2013-05-04 07:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2013-12-08 17:29 - 2013-05-04 07:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-12-08 17:29 - 2013-05-04 07:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2013-12-08 17:29 - 2013-05-04 07:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2013-12-08 17:29 - 2013-05-04 07:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2013-12-08 17:29 - 2013-05-04 07:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2013-12-08 17:29 - 2013-05-04 05:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2013-12-08 17:29 - 2013-05-04 05:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2013-12-08 17:29 - 2013-05-04 05:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2013-12-08 17:29 - 2013-05-04 05:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2013-12-08 17:29 - 2013-05-04 05:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2013-12-08 17:29 - 2013-05-04 05:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2013-12-08 17:29 - 2013-05-04 05:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2013-12-08 17:29 - 2013-05-04 05:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2013-12-08 17:29 - 2013-05-04 05:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2013-12-08 17:29 - 2013-05-04 05:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2013-12-08 17:29 - 2013-05-04 05:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2013-12-08 17:29 - 2013-03-02 03:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-12-08 17:29 - 2013-03-02 03:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2013-12-08 17:29 - 2012-11-06 05:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2013-12-08 17:29 - 2012-11-06 05:00 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wushareduxresources.dll
2013-12-08 17:27 - 2013-05-15 03:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2013-12-08 17:27 - 2013-05-15 03:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2013-12-08 17:27 - 2013-05-15 03:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2013-12-08 17:27 - 2013-05-15 03:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2013-12-08 17:13 - 2013-04-09 06:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2013-12-08 17:13 - 2013-04-09 06:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2013-12-08 17:13 - 2013-04-09 06:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2013-12-08 17:13 - 2013-04-09 06:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll
2013-12-08 17:13 - 2013-04-09 06:17 - 01829408 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-08 17:13 - 2013-04-09 05:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-12-08 17:13 - 2013-04-09 05:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2013-12-08 17:13 - 2013-04-09 05:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-12-08 17:13 - 2013-04-09 05:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2013-12-08 17:13 - 2013-04-09 05:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-08 17:13 - 2013-04-09 05:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-12-08 17:13 - 2013-04-09 05:50 - 01285632 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2013-12-08 17:13 - 2013-04-09 05:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-12-08 17:13 - 2013-04-09 05:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2013-12-08 17:13 - 2013-04-09 05:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2013-12-08 17:13 - 2013-04-09 05:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2013-12-08 17:13 - 2013-04-09 05:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2013-12-08 17:13 - 2013-04-09 05:48 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2013-12-08 17:13 - 2013-04-09 03:33 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-12-08 17:13 - 2013-04-09 03:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2013-12-08 17:13 - 2013-04-09 03:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-12-08 17:13 - 2013-04-09 00:39 - 01408896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-08 17:13 - 2013-04-09 00:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2013-12-08 17:13 - 2013-04-09 00:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2013-12-08 17:13 - 2013-04-08 22:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-08 17:13 - 2013-04-08 22:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-12-08 17:13 - 2013-04-08 22:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-12-08 17:13 - 2013-04-08 22:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-12-08 17:13 - 2013-04-08 22:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-12-08 17:13 - 2013-04-08 22:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2013-12-08 17:13 - 2013-04-08 22:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2013-12-08 17:13 - 2013-04-08 22:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-12-08 17:13 - 2013-04-05 00:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2013-12-08 17:13 - 2013-03-30 19:16 - 01403784 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-12-08 17:13 - 2013-03-30 19:16 - 01267424 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-12-08 17:13 - 2013-03-28 23:09 - 01217328 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-12-08 17:13 - 2013-03-28 23:09 - 01093880 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-12-08 17:13 - 2013-03-15 23:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2013-12-08 17:13 - 2013-03-15 23:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2013-12-08 17:13 - 2012-09-20 07:32 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2013-12-08 17:13 - 2012-09-20 06:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2013-12-08 17:12 - 2013-04-09 06:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2013-12-08 17:12 - 2013-04-09 06:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll
2013-12-08 17:12 - 2013-04-09 05:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-12-08 17:12 - 2013-04-09 05:52 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2013-12-08 17:12 - 2013-04-09 05:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-12-08 17:12 - 2013-04-09 05:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2013-12-08 17:12 - 2013-04-09 05:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-12-08 17:12 - 2013-04-09 05:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2013-12-08 17:12 - 2013-04-09 05:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2013-12-08 17:12 - 2013-04-09 05:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2013-12-08 17:12 - 2013-04-09 05:48 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2013-12-08 17:12 - 2013-04-09 03:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2013-12-08 17:12 - 2013-04-09 03:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2013-12-08 17:12 - 2013-04-09 03:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2013-12-08 17:12 - 2013-04-09 00:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2013-12-08 17:12 - 2013-04-08 22:52 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-12-08 17:12 - 2013-04-08 22:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-12-08 17:12 - 2013-04-08 22:52 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2013-12-08 17:12 - 2013-04-08 22:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2013-12-08 17:12 - 2013-04-08 22:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2013-12-08 17:12 - 2013-02-02 09:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2013-12-08 17:12 - 2013-02-02 09:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-12-08 17:12 - 2013-01-10 02:40 - 00303848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-12-08 17:12 - 2012-12-13 05:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-08 17:12 - 2012-12-13 04:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-08 17:12 - 2012-11-20 05:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys
2013-12-08 17:12 - 2012-11-06 08:33 - 00522640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2013-12-08 17:12 - 2012-11-06 06:00 - 00463768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2013-12-08 17:12 - 2012-11-06 05:18 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2013-12-08 17:12 - 2012-10-11 06:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-12-08 17:12 - 2012-10-11 06:44 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2013-12-08 17:12 - 2012-10-11 06:06 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2013-12-08 17:12 - 2012-10-11 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-12-08 17:12 - 2012-09-20 07:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2013-12-08 17:12 - 2012-09-20 07:33 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2013-12-08 17:12 - 2012-09-20 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2013-12-08 17:12 - 2012-09-20 07:32 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2013-12-08 17:12 - 2012-09-20 07:32 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2013-12-08 17:12 - 2012-09-20 07:32 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2013-12-08 17:12 - 2012-09-20 07:32 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2013-12-08 17:12 - 2012-09-20 07:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2013-12-08 17:12 - 2012-09-20 07:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhautoplay.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2013-12-08 17:12 - 2012-09-20 07:31 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2013-12-08 17:12 - 2012-09-20 07:12 - 09374208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-08 17:12 - 2012-09-20 07:09 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2013-12-08 17:12 - 2012-09-20 06:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2013-12-08 17:12 - 2012-09-20 06:55 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2013-12-08 17:12 - 2012-09-20 06:54 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2013-12-08 17:12 - 2012-09-20 06:54 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2013-12-08 17:12 - 2012-09-20 06:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2013-12-08 17:12 - 2012-09-20 06:54 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2013-12-08 17:12 - 2012-09-20 06:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2013-12-08 17:12 - 2012-09-20 06:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2013-12-08 17:12 - 2012-09-20 06:32 - 09374208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-08 16:58 - 2013-07-02 01:44 - 00036288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2013-12-08 16:58 - 2013-07-01 23:08 - 00247216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2013-12-08 16:58 - 2012-10-10 08:04 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-12-08 16:58 - 2012-10-10 07:31 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-12-08 16:57 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-08 16:56 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2013-12-08 16:56 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-12-08 16:56 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-08 16:56 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2013-12-08 16:56 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2013-12-08 16:56 - 2013-08-16 06:32 - 00209200 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2013-12-08 16:56 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2013-12-08 16:56 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2013-12-08 16:56 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2013-12-08 16:56 - 2013-08-16 06:20 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-08 16:56 - 2013-08-15 23:43 - 00083968 _____ C:\Windows\SysWOW64\OEMLicense.dll
2013-12-08 16:56 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2013-12-08 16:56 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2013-12-08 16:56 - 2012-09-20 07:33 - 00110592 _____ C:\Windows\system32\OEMLicense.dll
2013-12-08 16:53 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-08 16:53 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-12-08 16:53 - 2012-11-26 05:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2013-12-08 16:53 - 2012-11-26 05:20 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2013-12-08 16:51 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-08 16:51 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-08 16:51 - 2013-04-16 03:34 - 01455368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-08 16:49 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-08 16:49 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-12-08 16:48 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-08 16:48 - 2013-07-05 23:01 - 00210560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-12-08 16:48 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2013-12-08 16:48 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-08 16:48 - 2013-06-29 04:07 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-08 16:47 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-08 16:47 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-08 16:47 - 2013-05-24 00:02 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-08 16:47 - 2013-05-23 23:25 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-12-08 16:46 - 2013-04-24 00:13 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-12-08 16:46 - 2013-04-24 00:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-12-08 16:46 - 2013-04-23 23:56 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-12-08 16:46 - 2013-04-23 23:55 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-08 16:45 - 2013-07-09 07:07 - 02233168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-08 16:45 - 2013-03-02 10:59 - 00411880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-12-08 16:43 - 2012-10-06 05:53 - 02893824 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-12-08 16:43 - 2012-10-06 05:15 - 02400256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-12-08 16:42 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-08 16:42 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-12-08 16:42 - 2013-06-01 10:25 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-12-08 16:42 - 2013-06-01 10:21 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-12-08 16:42 - 2013-03-02 09:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2013-12-08 16:42 - 2013-03-02 03:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2013-12-08 16:42 - 2012-12-15 05:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2013-12-08 16:42 - 2012-11-03 06:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe
2013-12-08 16:42 - 2012-11-03 06:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll
2013-12-08 16:42 - 2012-10-24 04:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2013-12-08 16:42 - 2012-10-24 03:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2013-12-08 16:37 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-12-08 16:37 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-08 16:37 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-08 16:37 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-12-08 16:37 - 2012-11-08 05:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-08 16:37 - 2012-11-08 05:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-12-08 16:37 - 2012-11-08 05:20 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-08 16:37 - 2012-11-08 05:20 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-08 16:37 - 2012-11-08 05:02 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-08 16:37 - 2012-11-08 05:01 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-12-08 16:32 - 2013-08-23 06:11 - 04040192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-08 16:31 - 2013-02-02 11:54 - 01933544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-12-08 16:31 - 2013-02-02 11:28 - 00993512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-12-08 16:31 - 2013-02-02 09:40 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2013-12-08 16:31 - 2013-02-02 09:40 - 00370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2013-12-08 16:31 - 2013-02-02 09:40 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2013-12-08 16:31 - 2013-02-02 09:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2013-12-08 16:31 - 2013-02-02 09:40 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2013-12-08 16:31 - 2013-02-02 09:39 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2013-12-08 16:31 - 2013-02-02 09:39 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-12-08 16:31 - 2013-02-02 09:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2013-12-08 16:31 - 2013-02-02 09:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2013-12-08 16:31 - 2013-02-02 09:38 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2013-12-08 16:31 - 2013-02-02 09:24 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2013-12-08 16:31 - 2013-02-02 09:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2013-12-08 16:31 - 2013-02-02 09:23 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2013-12-08 16:31 - 2013-02-02 09:23 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\wlroamextension.dll
2013-12-08 16:31 - 2013-02-02 09:23 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2013-12-08 16:31 - 2013-02-02 09:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2013-12-08 16:31 - 2013-02-02 09:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2013-12-08 16:31 - 2013-02-02 09:21 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-12-08 16:31 - 2013-02-02 09:21 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2013-12-08 16:31 - 2013-02-02 09:20 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2013-12-08 16:31 - 2013-02-02 09:20 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2013-12-08 16:31 - 2013-02-02 08:25 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2013-12-08 16:31 - 2013-02-02 08:25 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2013-12-08 16:31 - 2012-11-27 04:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2013-12-08 16:31 - 2012-11-27 04:55 - 00029952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthhfHid.sys
2013-12-08 16:31 - 2012-09-20 07:32 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-12-08 16:31 - 2012-09-20 07:32 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-12-08 16:30 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-08 16:30 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-08 16:30 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-08 16:30 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-08 16:30 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-08 16:30 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-08 16:30 - 2013-04-11 23:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-12-08 16:30 - 2013-04-11 23:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-12-08 16:30 - 2013-03-06 07:31 - 19758592 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-08 16:30 - 2013-03-06 06:03 - 17561600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-12-08 16:30 - 2013-02-12 01:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-12-08 16:30 - 2013-02-05 23:29 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-12-08 16:30 - 2013-02-05 23:28 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-12-08 16:30 - 2013-02-02 06:41 - 01437184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2013-12-08 16:30 - 2013-02-02 06:31 - 01690624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2013-12-08 16:30 - 2012-11-20 05:56 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-08 16:29 - 2013-12-08 16:37 - 00015915 _____ C:\Users\Lisa-Marie\Downloads\Addition.txt
2013-12-08 16:29 - 2013-05-04 07:59 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-08 16:29 - 2013-05-04 05:57 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-12-08 16:29 - 2013-03-06 08:10 - 00112872 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-12-08 16:29 - 2013-03-06 07:31 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-08 16:29 - 2013-03-06 07:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-12-08 16:29 - 2013-03-06 06:03 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-12-08 16:28 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-08 16:28 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-08 16:28 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-08 16:28 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-08 16:28 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-08 16:28 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-08 16:28 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-08 16:28 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-08 16:28 - 2013-05-15 23:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2013-12-08 16:28 - 2013-05-15 23:35 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2013-12-08 16:28 - 2013-05-14 14:14 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-08 16:28 - 2013-05-14 10:23 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-08 16:28 - 2013-04-28 23:28 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2013-12-08 16:28 - 2013-04-27 06:20 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-12-08 16:28 - 2013-02-21 11:29 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-08 16:28 - 2013-02-21 11:29 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-08 16:28 - 2013-02-21 11:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-08 16:28 - 2013-02-21 11:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-08 16:28 - 2013-02-21 11:14 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-08 16:28 - 2013-02-21 11:14 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-08 16:28 - 2013-02-19 10:53 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2013-12-08 16:28 - 2012-11-08 05:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-08 16:28 - 2012-11-08 05:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-08 16:27 - 2013-12-12 16:56 - 00013569 _____ C:\Users\Lisa-Marie\Downloads\FRST.txt
2013-12-08 16:27 - 2013-12-12 16:55 - 00000000 ____D C:\FRST
2013-12-08 16:26 - 2013-12-12 16:55 - 01927106 _____ (Farbar) C:\Users\Lisa-Marie\Downloads\FRST64.exe
2013-12-08 16:26 - 2013-02-26 16:56 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-12-08 16:25 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-08 16:25 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-08 16:25 - 2013-08-02 07:28 - 10116608 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2013-12-08 16:25 - 2013-08-02 06:08 - 08858112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-12-08 16:25 - 2013-03-02 11:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2013-12-08 16:25 - 2013-03-02 03:43 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2013-12-08 16:25 - 2013-02-07 02:33 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2013-12-08 16:23 - 2013-02-26 16:56 - 00130016 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-12-08 16:21 - 2013-02-26 16:56 - 00100712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-08 16:13 - 2013-12-08 16:13 - 00003140 _____ C:\Windows\System32\Tasks\{87479441-9B24-4A8C-9AFA-05B545C022E1}
2013-12-08 16:10 - 2013-12-08 16:24 - 01069568 _____ (Solid State Networks) C:\Users\Lisa-Marie\Downloads\install_reader11_de_mssd_aaa_aih.exe
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\DAEMON Tools Lite
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-12-08 16:04 - 2013-12-08 16:04 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-12-08 16:04 - 2005-05-31 08:52 - 00636998 _____ (DVD Shrink) C:\Users\Lisa-Marie\Desktop\DVD Shrink 3.2 DE.exe
2013-12-08 15:56 - 2013-12-08 15:56 - 00000000 ____D C:\PS_CS2_Gr_NonRet
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\ProgramData\Avira
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Avira
2013-12-08 15:52 - 2013-12-08 15:52 - 00001196 _____ C:\Users\Lisa-Marie\Desktop\IsoBuster.lnk
2013-12-08 15:52 - 2013-12-08 15:52 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2013-12-08 15:52 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-12-08 15:52 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-12-08 15:52 - 2013-07-19 23:13 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-08 15:52 - 2013-07-19 23:13 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-08 15:52 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-08 15:52 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-08 15:52 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2013-12-08 15:52 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2013-12-08 15:52 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-12-08 15:52 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2013-12-08 15:52 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2013-12-08 15:52 - 2013-07-02 02:41 - 00447320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-12-08 15:52 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-12-08 15:52 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2013-12-08 15:52 - 2013-03-15 01:17 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2013-12-08 15:52 - 2012-11-03 06:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2013-12-08 15:52 - 2012-11-03 06:26 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2013-12-08 15:52 - 2012-11-03 06:24 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2013-12-08 15:52 - 2012-11-03 06:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2013-12-08 15:52 - 2012-11-03 06:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2013-12-08 15:52 - 2012-11-03 06:04 - 00003584 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2013-12-08 15:52 - 2012-11-03 06:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2013-12-08 15:52 - 2012-11-03 06:00 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2013-12-08 15:52 - 2012-10-24 04:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2013-12-08 15:52 - 2012-10-24 04:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2013-12-08 15:52 - 2012-10-24 04:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2013-12-08 15:52 - 2012-10-24 04:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2013-12-08 15:46 - 2013-04-03 00:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-12-08 15:46 - 2013-04-03 00:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-12-08 15:46 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-12-08 15:46 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-12-08 15:45 - 2013-04-11 07:40 - 06987528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-08 15:44 - 2013-08-07 06:15 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2013-12-08 15:44 - 2012-11-10 05:23 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-12-08 15:44 - 2012-11-10 05:23 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-12-08 15:44 - 2012-11-10 05:22 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\RDWebAI.dll
2013-12-08 15:44 - 2012-11-10 05:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VmHostAI.dll
2013-12-08 15:44 - 2012-11-10 05:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\appserverai.dll
2013-12-08 15:43 - 2013-12-08 15:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-08 15:39 - 2012-11-01 05:41 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-12-08 15:39 - 2012-11-01 05:41 - 01438720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-12-08 15:39 - 2012-11-01 05:40 - 02361344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-12-08 15:39 - 2012-11-01 05:40 - 01836032 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-12-08 15:39 - 2012-11-01 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2013-12-08 15:39 - 2012-11-01 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-12-08 15:39 - 2012-11-01 05:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2013-12-08 15:39 - 2012-11-01 05:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-12-08 15:35 - 2013-12-08 15:35 - 00001011 _____ C:\Users\Public\Desktop\Audacity.lnk
2013-12-08 15:34 - 2013-12-08 15:35 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-12-08 15:34 - 2013-12-08 15:34 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Kindle
2013-12-08 15:19 - 2013-12-08 15:21 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Schule
2013-12-08 15:17 - 2013-12-08 15:17 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-08 15:17 - 2013-12-08 15:17 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-12-08 15:16 - 2013-12-08 15:16 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\vlc
2013-12-08 15:13 - 2013-12-08 15:13 - 00000117 _____ C:\Windows\system32\netcfg-30421.txt
2013-12-08 15:12 - 2013-12-08 15:12 - 00000117 _____ C:\Windows\system32\netcfg-834109.txt
2013-12-08 15:10 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Adobe
2013-12-08 15:07 - 2013-06-01 20:48 - 00000503 _____ C:\Users\Lisa-Marie\Documents\Liebe.txt
2013-12-08 15:07 - 2013-05-30 16:24 - 00002092 _____ C:\Users\Lisa-Marie\Documents\Neues Textdokument.txt
2013-12-08 15:07 - 2013-04-04 13:32 - 00007662 _____ C:\Users\Lisa-Marie\Documents\rubinrot.txt
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Macromedia
2013-12-08 14:59 - 2013-12-08 14:59 - 00000117 _____ C:\Windows\system32\netcfg-71687.txt
2013-12-08 14:57 - 2013-12-08 14:57 - 00000117 _____ C:\Windows\system32\netcfg-4347031.txt
2013-12-08 14:54 - 2013-12-11 11:04 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1108325158-3463833279-2753141017-1001
2013-12-08 14:54 - 2013-12-08 15:39 - 00000000 ____D C:\Update
2013-12-08 14:53 - 2013-12-08 16:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-08 14:53 - 2013-12-08 15:27 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Sony Corporation
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\Documents\Bluetooth Folder
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\ATI
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Atheros
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\BMExplorer
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\ATI
2013-12-08 14:49 - 2013-12-08 14:49 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-08 14:48 - 2013-12-08 20:59 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-08 14:48 - 2013-12-08 20:59 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-08 14:48 - 2013-12-08 15:31 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Sony Corporation
2013-12-08 14:48 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Adobe
2013-12-08 14:48 - 2013-12-08 14:48 - 00001442 _____ C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\SysWOW64\VAIO Startup Setting Tool
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\pss
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Power2Go8
2013-12-08 14:47 - 2013-12-11 09:52 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Packages
2013-12-08 14:47 - 2013-12-08 14:47 - 00000020 ___SH C:\Users\Lisa-Marie\ntuser.ini
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Vorlagen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Startmenü
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Netzwerkumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Lokale Einstellungen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Eigene Dateien
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Druckumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Musik
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Bilder
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Verlauf
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\VirtualStore
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-08 14:47 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-08 14:46 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600890.txt
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600500.txt
2013-12-08 14:44 - 2013-12-08 14:44 - 00000117 _____ C:\Windows\system32\netcfg-3584015.txt
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-08 13:44 - 2013-12-08 13:44 - 00000000 _____ C:\Recovery.txt

==================== One Month Modified Files and Folders =======

2013-12-12 16:56 - 2013-12-08 16:27 - 00013569 _____ C:\Users\Lisa-Marie\Downloads\FRST.txt
2013-12-12 16:55 - 2013-12-11 10:34 - 00000000 ____D C:\Users\Lisa-Marie\Downloads\FRST-OlderVersion
2013-12-12 16:55 - 2013-12-08 16:27 - 00000000 ____D C:\FRST
2013-12-12 16:55 - 2013-12-08 16:26 - 01927106 _____ (Farbar) C:\Users\Lisa-Marie\Downloads\FRST64.exe
2013-12-12 16:02 - 2012-11-22 16:07 - 01497471 _____ C:\Windows\WindowsUpdate.log
2013-12-12 16:00 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\sru
2013-12-12 15:14 - 2013-12-12 14:49 - 38904134 _____ C:\Users\Lisa-Marie\Downloads\avira_free1402_antivirus_de.exe
2013-12-12 14:56 - 2012-11-22 15:43 - 00753134 _____ C:\Windows\system32\perfh007.dat
2013-12-12 14:56 - 2012-11-22 15:43 - 00155826 _____ C:\Windows\system32\perfc007.dat
2013-12-12 14:56 - 2012-07-26 08:28 - 01745416 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-12 14:50 - 2013-12-12 14:50 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-12 14:49 - 2013-12-12 14:48 - 00891200 _____ C:\Users\Lisa-Marie\Desktop\SecurityCheck.exe
2013-12-12 14:49 - 2013-12-12 14:47 - 02347384 _____ (ESET) C:\Users\Lisa-Marie\Desktop\esetsmartinstaller_enu.exe
2013-12-11 16:01 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\rescache
2013-12-11 11:04 - 2013-12-08 14:54 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1108325158-3463833279-2753141017-1001
2013-12-11 10:50 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-12-11 10:20 - 2013-12-11 10:20 - 00000000 ____D C:\Windows\ERUNT
2013-12-11 10:17 - 2013-12-11 10:16 - 00281248 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 10:17 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-11 10:16 - 2012-08-03 03:22 - 00102106 _____ C:\Windows\PFRO.log
2013-12-11 10:15 - 2013-12-11 10:13 - 00000000 ____D C:\AdwCleaner
2013-12-11 10:11 - 2013-12-11 10:10 - 01226802 _____ C:\Users\Lisa-Marie\Downloads\adwcleaner.exe
2013-12-11 10:03 - 2013-12-11 10:03 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Malwarebytes
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-11 10:03 - 2013-12-11 10:03 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-11 09:59 - 2013-12-11 09:55 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Lisa-Marie\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-11 09:56 - 2012-11-22 16:10 - 00000000 ____D C:\ProgramData\McAfee
2013-12-11 09:52 - 2013-12-09 17:11 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-11 09:52 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Packages
2013-12-11 09:52 - 2012-08-03 03:25 - 00000000 ____D C:\ProgramData\PRICache
2013-12-09 17:16 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-12-09 17:12 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-09 17:12 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-09 17:12 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Defender
2013-12-09 17:12 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-09 17:11 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\WinStore
2013-12-09 17:11 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-09 17:11 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-12-09 17:11 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2013-12-09 17:09 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\system32\oobe
2013-12-09 17:08 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-09 17:08 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-09 17:08 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-12-09 17:08 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-12-09 17:08 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-12-09 17:08 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\system32\Dism
2013-12-09 16:42 - 2013-12-09 16:42 - 00020118 _____ C:\ComboFix.txt
2013-12-09 16:42 - 2013-12-09 16:24 - 00000000 ____D C:\Qoobox
2013-12-09 16:42 - 2012-07-26 06:37 - 00000000 __RHD C:\Users\Default
2013-12-09 16:40 - 2013-12-09 16:24 - 00000000 ____D C:\Windows\erdnt
2013-12-09 16:40 - 2012-07-26 06:26 - 00000215 _____ C:\Windows\system.ini
2013-12-09 16:30 - 2012-11-22 16:10 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-12-09 16:29 - 2012-11-22 16:31 - 00000000 ____D C:\Program Files\McAfeeEx
2013-12-08 20:59 - 2013-12-08 14:48 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-08 20:59 - 2013-12-08 14:48 - 00000000 ___RD C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-08 18:05 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\servicing
2013-12-08 18:01 - 2012-07-26 09:12 - 00000000 ___RD C:\Windows\ToastData
2013-12-08 17:49 - 2013-12-08 17:47 - 00000000 ____D C:\Windows\system32\MRT
2013-12-08 16:37 - 2013-12-08 16:29 - 00015915 _____ C:\Users\Lisa-Marie\Downloads\Addition.txt
2013-12-08 16:24 - 2013-12-08 16:10 - 01069568 _____ (Solid State Networks) C:\Users\Lisa-Marie\Downloads\install_reader11_de_mssd_aaa_aih.exe
2013-12-08 16:13 - 2013-12-08 16:13 - 00003140 _____ C:\Windows\System32\Tasks\{87479441-9B24-4A8C-9AFA-05B545C022E1}
2013-12-08 16:06 - 2013-12-08 14:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\DAEMON Tools Lite
2013-12-08 16:05 - 2013-12-08 16:05 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-12-08 16:04 - 2013-12-08 16:04 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-12-08 15:56 - 2013-12-08 15:56 - 00000000 ____D C:\PS_CS2_Gr_NonRet
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\ProgramData\Avira
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-12-08 15:55 - 2013-12-08 15:55 - 00000000 ____D C:\Program Files (x86)\Avira
2013-12-08 15:52 - 2013-12-08 15:52 - 00001196 _____ C:\Users\Lisa-Marie\Desktop\IsoBuster.lnk
2013-12-08 15:52 - 2013-12-08 15:52 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2013-12-08 15:43 - 2013-12-08 15:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-08 15:39 - 2013-12-08 14:54 - 00000000 ____D C:\Update
2013-12-08 15:35 - 2013-12-08 15:35 - 00001011 _____ C:\Users\Public\Desktop\Audacity.lnk
2013-12-08 15:35 - 2013-12-08 15:34 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-12-08 15:34 - 2013-12-08 15:34 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Kindle
2013-12-08 15:31 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Sony Corporation
2013-12-08 15:27 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Mozilla
2013-12-08 15:21 - 2013-12-08 15:19 - 00000000 ____D C:\Users\Lisa-Marie\Desktop\Schule
2013-12-08 15:17 - 2013-12-08 15:17 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-08 15:17 - 2013-12-08 15:17 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-12-08 15:16 - 2013-12-08 15:16 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\vlc
2013-12-08 15:13 - 2013-12-08 15:13 - 00000117 _____ C:\Windows\system32\netcfg-30421.txt
2013-12-08 15:13 - 2012-11-22 16:10 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-12-08 15:12 - 2013-12-08 15:12 - 00000117 _____ C:\Windows\system32\netcfg-834109.txt
2013-12-08 15:12 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-12-08 15:11 - 2012-11-22 15:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-08 15:10 - 2013-12-08 15:10 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Adobe
2013-12-08 15:10 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Adobe
2013-12-08 15:09 - 2012-11-22 16:48 - 00000000 ____D C:\Program Files (x86)\WildGames
2013-12-08 15:06 - 2012-11-22 16:45 - 00000000 ____D C:\ProgramData\WildTangent
2013-12-08 15:02 - 2013-12-08 15:02 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Macromedia
2013-12-08 14:59 - 2013-12-08 14:59 - 00000117 _____ C:\Windows\system32\netcfg-71687.txt
2013-12-08 14:57 - 2013-12-08 14:57 - 00000117 _____ C:\Windows\system32\netcfg-4347031.txt
2013-12-08 14:56 - 2012-11-22 15:50 - 00000000 ____D C:\ProgramData\Sony Corporation
2013-12-08 14:53 - 2013-12-08 14:53 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Mozilla
2013-12-08 14:53 - 2013-12-08 14:53 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-12-08 14:52 - 2013-12-08 14:52 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Sony Corporation
2013-12-08 14:52 - 2012-07-26 08:21 - 00020708 _____ C:\Windows\setupact.log
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\Documents\Bluetooth Folder
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\ATI
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Roaming\Atheros
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\BMExplorer
2013-12-08 14:50 - 2013-12-08 14:50 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\ATI
2013-12-08 14:50 - 2012-11-22 17:34 - 00000000 ____D C:\ProgramData\Atheros
2013-12-08 14:49 - 2013-12-08 14:49 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-08 14:49 - 2012-11-22 16:12 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation
2013-12-08 14:48 - 2013-12-08 14:48 - 00001442 _____ C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\SysWOW64\VAIO Startup Setting Tool
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Windows\pss
2013-12-08 14:48 - 2013-12-08 14:48 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\Power2Go8
2013-12-08 14:48 - 2013-12-08 14:46 - 00000000 ____D C:\Users\Lisa-Marie
2013-12-08 14:48 - 2012-11-22 16:27 - 00000000 ____D C:\Windows\System32\Tasks\SONY
2013-12-08 14:48 - 2012-11-22 15:44 - 00000000 ____D C:\Program Files\Sony
2013-12-08 14:47 - 2013-12-08 14:47 - 00000020 ___SH C:\Users\Lisa-Marie\ntuser.ini
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Vorlagen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Startmenü
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Netzwerkumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Lokale Einstellungen
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Eigene Dateien
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Druckumgebung
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Musik
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Documents\Eigene Bilder
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Verlauf
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\AppData\Local\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 _SHDL C:\Users\Lisa-Marie\Anwendungsdaten
2013-12-08 14:47 - 2013-12-08 14:47 - 00000000 ____D C:\Users\Lisa-Marie\AppData\Local\VirtualStore
2013-12-08 14:47 - 2012-07-26 09:12 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600890.txt
2013-12-08 14:45 - 2013-12-08 14:45 - 00000117 _____ C:\Windows\system32\netcfg-3600500.txt
2013-12-08 14:44 - 2013-12-08 14:44 - 00000117 _____ C:\Windows\system32\netcfg-3584015.txt
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Programme
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-08 13:45 - 2013-12-08 13:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-08 13:45 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT
2013-12-08 13:44 - 2013-12-08 13:44 - 00000000 _____ C:\Recovery.txt
2013-12-08 13:44 - 2012-07-26 09:13 - 00262144 _____ C:\Windows\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\Lisa-Marie\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2012-08-03 03:22

==================== End Of Log ============================
--- --- ---

--- --- ---


Ich hab keine Probleme mehr. Dankeschön :)

schrauber 13.12.2013 16:51
Java updaten.


Fertig :)

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.



Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun :)

Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Ljojo 14.12.2013 12:36
Vielen Dank. Mein PC läuft wieder normal und ich habe auch keine Fragen mehr. Gruß Ljojo :)

schrauber 14.12.2013 16:47
Gern Geschehen :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 13:08 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131