defogger_disable.log Code:
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 13:45 on 11/12/2013 (Niko)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
HKCU:DAEMON Tools Lite -> Removed
Checking for services/drivers...
-=E.O.F=-
FRST.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-12-2013 01
Ran by Niko (administrator) on QUESTMASTER3000 on 11-12-2013 13:53:16
Running from C:\Users\Niko\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
(Infowatch) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LULU Software Limited) C:\Program Files (x86)\Soda PDF 5\HelperService.exe
(LULU Software Limited) C:\Program Files (x86)\Soda PDF 5\ConversionService.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Logitech Inc.) C:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
() C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\klwtblfs.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Launch LGDCore] - C:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe [1783296 2006-07-23] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13374568 2011-12-13] (Realtek Semiconductor)
HKCU\...\Run: [] - [x]
MountPoints2: G - G:\pushinst.exe
MountPoints2: {1f2ae42a-6c2a-11e1-b0a8-6c626d05b0fe} - H:\Startme.exe
MountPoints2: {379e72df-efc9-11df-8b4a-bc0543012beb} - G:\autorun.exe
MountPoints2: {5a9cca7b-9dd3-11e0-84c8-6c626d05b0fe} - G:\AUTORUN.EXE
MountPoints2: {5cad3377-32e1-11e0-b4ea-bc0543012beb} - G:\Setup.exe
MountPoints2: {6aab9b84-3ad2-11e1-9c2a-6c626d05b0fe} - J:\AUTORUN.EXE
MountPoints2: {9a03c870-d632-11df-9e2c-806e6f6e6963} - F:\aoesetup.exe /autorun
MountPoints2: {a4e48009-2754-11e1-acab-6c626d05b0fe} - G:\AUTORUN.EXE
MountPoints2: {d76988f4-d636-11df-8edb-6c626d05b0fe} - H:\pushinst.exe
MountPoints2: {f77b1307-55ad-11e3-b52c-6c626d05b0fe} - G:\AUTORUN.EXE
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-12-04] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
Startup: C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - DefaultScope {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3320188&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPBC99A23D-B5CB-433E-9B0D-AC299B4025F0&q={searchTerms}&SSPV=
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Kaspersky Passsword Manager Toolbar - {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\spIEBho.dll (Kaspersky Lab)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files (x86)\Soda PDF 5\PDFIEHelper.dll (LULU Software Limited)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} - No File
Toolbar: HKLM-x32 - No Name - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No File
Toolbar: HKLM-x32 - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files (x86)\Soda PDF 5\PDFIEPlugin.dll (LULU Software Limited)
Toolbar: HKLM-x32 - Kaspersky Passsword Manager Toolbar - {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\spIEBho.dll (Kaspersky Lab)
Toolbar: HKCU - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-1216835461-190305365-3235199106-1000\FireFox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\foxsearch.src
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: QuickStores-Toolbar - C:\Program Files (x86)\Mozilla Firefox\extensions\quickstores@quickstores.de
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM-x32\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] - C:\Program Files (x86)\Soda PDF 5\FFSoda5Ext
FF Extension: Soda PDF 5 Converter For Firefox - C:\Program Files (x86)\Soda PDF 5\FFSoda5Ext
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com
FF HKLM-x32\...\Thunderbird\Extensions: [te_9.0@nokia.com] - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0
FF Extension: Thunderbird Address Book Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR HomePage: hxxp://start.icq.com/
CHR DefaultSearchKeyword: google.de
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.4.6_0\npcoplgn.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Shockwave for Director) - C:\Program Files (x86)\Mozilla Firefox\plugins\np32dsw.dll (Macromedia, Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Gutscheinmieze-Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmieze.dll No File
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Google Update) - C:\Users\Niko\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0
CHR Extension: (Safe Money) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_0
CHR Extension: (Content Blocker) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0
CHR Extension: (Virtual Keyboard) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_0
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.1_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Anti-Banner) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\urladvisor.crx
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\online_banking_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\content_blocker_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\virtkbd.crx
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\ab.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-12-04] (Kaspersky Lab ZAO)
R2 CSObjectsSrv; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [819040 2012-12-21] (Infowatch)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75064 2011-01-08] ()
R2 Soda PDF 5 Helper Service; C:\Program Files (x86)\Soda PDF 5\HelperService.exe [1097544 2013-06-12] (LULU Software Limited)
R2 Soda PDF 5 Service; C:\Program Files (x86)\Soda PDF 5\ConversionService.exe [794440 2013-06-12] (LULU Software Limited)
==================== Drivers (Whitelisted) ====================
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [84536 2011-06-02] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [66616 2011-06-02] (Infowatch)
R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-25] (Disc Soft Ltd)
S3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [552704 2009-03-20] (AVM GmbH)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [7717984 2013-12-04] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [626272 2013-12-04] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [28504 2012-08-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-12-04] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-12-04] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-12-04] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-12-04] (Kaspersky Lab ZAO)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [115240 2008-05-16] (MCCI Corporation)
S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2013-04-24] (Windows (R) Win 7 DDK provider)
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 VMC31D; C:\Windows\System32\Drivers\VMC31D.sys [179968 2008-04-09] (Vimicro Corporation)
S3 AODDriver; \??\C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver.sys [x]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [90208 2013-12-04] (Kaspersky Lab ZAO)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-11 13:53 - 2013-12-11 13:53 - 00024414 _____ C:\Users\Niko\Downloads\FRST.txt
2013-12-11 13:53 - 2013-12-11 13:53 - 00000000 ____D C:\FRST
2013-12-11 13:52 - 2013-12-11 13:52 - 01928212 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00050477 _____ C:\Users\Niko\Downloads\Defogger.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00000540 _____ C:\Users\Niko\Downloads\defogger_disable.log
2013-12-11 13:45 - 2013-12-11 13:45 - 00000168 _____ C:\Users\Niko\defogger_reenable
2013-12-11 13:02 - 2013-12-11 13:02 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-05 21:49 - 2013-12-05 21:49 - 00000000 ____D C:\ProgramData\Websteroids
2013-12-05 20:25 - 2013-12-05 20:25 - 00000000 ____D C:\Users\Niko\Desktop\avz4
2013-12-05 19:04 - 2013-12-05 19:04 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-05 19:04 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-05 19:03 - 2013-12-05 19:03 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Niko\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-05 17:38 - 2013-04-24 09:45 - 00810496 _____ C:\Windows\SysWOW64\xvidcore.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00183808 _____ C:\Windows\SysWOW64\xvidvfw.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00080896 _____ C:\Windows\SysWOW64\ff_vfw.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00000590 _____ C:\Windows\SysWOW64\ff_vfw.dll.manifest
2013-12-05 17:36 - 2013-12-05 23:41 - 00000000 ____D C:\ProgramData\Updater
2013-12-05 17:36 - 2013-12-05 23:41 - 00000000 ____D C:\ProgramData\RHelpers
2013-12-05 17:36 - 2013-12-05 17:37 - 74022496 _____ (SplitCam Co.) C:\Users\Niko\Downloads\SplitCamSetup1.exe
2013-12-05 17:19 - 2013-12-09 16:57 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-12-05 17:19 - 2013-12-05 17:20 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Tlapia
2013-12-05 17:18 - 2013-12-05 17:19 - 04754256 _____ (Tlapia) C:\Users\Niko\Downloads\samsung-syncmaster-2263uw-.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02241694 _____ (Megaify Software ) C:\Users\Niko\Downloads\driver_setup.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02035048 _____ (Easeware ) C:\Users\Niko\Downloads\DriversDownloader_for_2063W_2263_Driver_Jan2009.exe
2013-12-04 14:43 - 2012-10-11 04:08 - 00044928 _____ (ManyCam LLC) C:\Windows\system32\Drivers\mcvidrv_x64.sys
2013-12-04 14:38 - 2013-12-04 14:38 - 10799192 _____ (ManyCam LLC) C:\Users\Niko\Downloads\ManyCamSetup.exe
2013-12-04 12:00 - 2013-12-04 12:00 - 00002216 _____ C:\Users\Niko\Desktop\Sicherer Zahlungsverkehr.lnk
2013-12-04 12:00 - 2013-12-04 11:59 - 00001078 _____ C:\Users\Public\Desktop\Kaspersky PURE 3.0.lnk
2013-12-04 11:59 - 2013-12-11 12:40 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-04 11:59 - 2013-12-04 12:22 - 00626272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-12-04 11:59 - 2013-12-04 12:22 - 00090208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2013-12-04 11:59 - 2013-12-04 12:22 - 00000000 ____D C:\Windows\ELAMBKUP
2013-12-04 11:59 - 2013-12-04 11:59 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-12-04 11:59 - 2012-07-11 17:09 - 00064856 _____ (Kaspersky Lab) C:\Windows\system32\klfphc.dll
2013-12-04 11:59 - 2011-06-02 14:39 - 00084536 _____ (Infowatch) C:\Windows\system32\Drivers\CSCrySec.sys
2013-12-04 11:59 - 2011-06-02 14:39 - 00066616 _____ (Infowatch) C:\Windows\system32\Drivers\CSVirtualDiskDrv.sys
2013-12-03 19:42 - 2013-12-03 19:44 - 00299284 _____ C:\Users\Niko\Downloads\kavremvr 2013-12-03 19-42-28 (pid 4816).log
2013-12-03 19:42 - 2013-12-03 19:42 - 05876192 _____ (Kaspersky Lab ZAO) C:\Users\Niko\Downloads\kavremover.exe
2013-12-02 21:39 - 2013-12-02 21:39 - 00000569 _____ C:\Users\Public\Desktop\Age of Empires II.lnk
2013-12-02 18:24 - 2013-12-02 19:55 - 188740896 _____ (Kaspersky Lab) C:\Users\Niko\Downloads\pure13.0.2.558DE_4340.exe
2013-12-02 15:30 - 2013-12-02 15:30 - 00002934 _____ C:\Windows\System32\Tasks\{B56D80DE-2BF5-4431-AE7D-EF6AC461BA36}
2013-11-29 20:13 - 2013-11-29 20:13 - 00002938 _____ C:\Windows\System32\Tasks\{8B0B2FA5-AECC-4577-BBE1-F36F579EC056}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{9D45BAF4-090B-416A-BEAE-58E186B7AF81}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{6E25A4CC-0165-4D47-BC2D-737AE62E5A05}
2013-11-26 22:08 - 2013-11-26 22:08 - 00002956 _____ C:\Windows\System32\Tasks\{39C61096-0393-49FE-9103-79A8C49767C3}
2013-11-25 23:55 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-25 23:52 - 2013-11-25 23:52 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-25 23:52 - 2013-11-25 23:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-25 23:52 - 2013-11-25 23:52 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-25 23:52 - 2013-11-25 23:52 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-25 23:52 - 2013-11-25 23:52 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-25 23:50 - 2013-11-25 23:55 - 00009768 _____ C:\Windows\IE11_main.log
2013-11-25 18:30 - 2013-11-25 18:30 - 00002924 _____ C:\Windows\System32\Tasks\{7D743872-4514-4F70-8963-CD993D7B3DA9}
2013-11-25 18:17 - 2013-11-25 18:26 - 00000000 ____D C:\Emergency
2013-11-25 14:12 - 2013-11-25 18:14 - 538612890 _____ C:\Users\Niko\Downloads\em1.7z
2013-11-25 13:43 - 2013-11-25 14:12 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.001
2013-11-25 13:12 - 2013-11-25 13:42 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.002
2013-11-25 12:58 - 2013-11-25 13:11 - 119182490 _____ C:\Users\Niko\Downloads\em1.7z.003
2013-11-25 10:36 - 2013-11-25 10:36 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-25 10:36 - 2013-11-25 10:36 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-25 10:36 - 2013-11-25 10:36 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-25 10:31 - 2013-11-25 10:31 - 00002924 _____ C:\Windows\System32\Tasks\{5ACEA32C-AE59-480F-ABC6-FBDB0BCA4D14}
2013-11-23 20:14 - 2013-11-23 20:17 - 160691006 _____ (soldnersecretwars.de ) C:\Users\Niko\Downloads\SSWLangPack_German_v11.exe
2013-11-23 20:13 - 2013-11-23 20:20 - 545943206 _____ (soldnersecretwars.de ) C:\Users\Niko\Downloads\SSW_CE_33960_Installer.exe
2013-11-20 13:39 - 2013-11-20 13:41 - 00000000 ____D C:\populous
2013-11-19 21:57 - 2013-11-19 21:57 - 00173578 _____ C:\Users\Niko\Downloads\populous.zip
2013-11-17 11:36 - 2013-11-17 11:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-14 18:26 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 18:26 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-14 18:26 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-14 18:25 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 18:25 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 18:25 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 18:25 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-14 18:25 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-14 18:25 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-14 18:25 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-14 18:25 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-14 18:25 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-14 18:25 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-14 18:25 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-14 18:25 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 18:25 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-14 18:25 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 18:25 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 18:25 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 18:25 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 18:25 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 18:25 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 18:25 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 18:25 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 18:25 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-14 18:25 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-14 18:25 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-14 18:25 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-14 18:25 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 18:25 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 18:26 - 2013-11-13 18:26 - 00000963 _____ C:\Users\Public\Desktop\Soda PDF 5.lnk
2013-11-13 18:25 - 2013-11-13 18:25 - 00000000 ____D C:\Users\Niko\Documents\Soda PDF 5 Files
2013-11-13 18:25 - 2013-11-13 18:25 - 00000000 ____D C:\Program Files (x86)\Soda PDF 5
2013-11-13 18:24 - 2013-11-13 18:27 - 00000000 ____D C:\Users\Niko\AppData\Roaming\PDF Software
2013-11-13 18:23 - 2013-11-13 18:23 - 07104648 _____ (LULU Software) C:\Users\Niko\Downloads\Soda_PDF_5_Installer.exe
2013-11-13 18:06 - 2013-11-13 18:21 - 00000000 ____D C:\Users\Niko\AppData\Roaming\WordToPDF
2013-11-13 18:06 - 2013-11-13 18:06 - 01594813 _____ (Mario Noack ) C:\Users\Niko\Downloads\SetupWordToPDF_237_v2.9.exe
2013-11-13 18:06 - 2013-11-13 18:06 - 00001019 _____ C:\Users\Niko\Desktop\WordToPDF.lnk
2013-11-13 18:06 - 2013-11-13 18:06 - 00000000 ____D C:\Program Files (x86)\WordToPDF
==================== One Month Modified Files and Folders =======
2013-12-11 13:53 - 2013-12-11 13:53 - 00024414 _____ C:\Users\Niko\Downloads\FRST.txt
2013-12-11 13:53 - 2013-12-11 13:53 - 00000000 ____D C:\FRST
2013-12-11 13:52 - 2013-12-11 13:52 - 01928212 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2013-12-11 13:51 - 2012-04-01 18:41 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 13:51 - 2012-04-01 18:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 13:51 - 2012-04-01 18:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-11 13:51 - 2011-06-01 09:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 13:45 - 2013-12-11 13:45 - 00050477 _____ C:\Users\Niko\Downloads\Defogger.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00000540 _____ C:\Users\Niko\Downloads\defogger_disable.log
2013-12-11 13:45 - 2013-12-11 13:45 - 00000168 _____ C:\Users\Niko\defogger_reenable
2013-12-11 13:45 - 2010-10-12 20:05 - 00000000 ____D C:\Users\Niko
2013-12-11 13:38 - 2010-10-13 19:31 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Skype
2013-12-11 13:04 - 2010-10-12 20:50 - 00000000 ____D C:\Users\Niko\AppData\Local\Adobe
2013-12-11 13:02 - 2013-12-11 13:02 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-11 13:02 - 2010-10-12 20:17 - 00000000 ____D C:\ProgramData\Adobe
2013-12-11 13:02 - 2010-10-12 20:17 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-11 12:40 - 2013-12-04 11:59 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-11 12:32 - 2009-07-14 05:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-11 12:32 - 2009-07-14 05:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-11 12:29 - 2010-10-12 20:00 - 01159390 _____ C:\Windows\WindowsUpdate.log
2013-12-11 12:23 - 2012-05-23 17:39 - 00091876 _____ C:\Windows\setupact.log
2013-12-11 12:23 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-09 16:57 - 2013-12-05 17:19 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-12-08 15:43 - 2012-04-15 19:12 - 00000000 ____D C:\Users\Niko\Desktop\Fakultät 10
2013-12-07 11:48 - 2009-07-14 18:58 - 00699416 _____ C:\Windows\system32\perfh007.dat
2013-12-07 11:48 - 2009-07-14 18:58 - 00149556 _____ C:\Windows\system32\perfc007.dat
2013-12-07 11:48 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-05 23:56 - 2012-05-23 17:39 - 00844894 _____ C:\Windows\PFRO.log
2013-12-05 23:41 - 2013-12-05 17:36 - 00000000 ____D C:\ProgramData\Updater
2013-12-05 23:41 - 2013-12-05 17:36 - 00000000 ____D C:\ProgramData\RHelpers
2013-12-05 21:49 - 2013-12-05 21:49 - 00000000 ____D C:\ProgramData\Websteroids
2013-12-05 20:57 - 2011-11-03 15:21 - 00000000 ____D C:\Users\Niko\Desktop\Bewerbungszeug
2013-12-05 20:25 - 2013-12-05 20:25 - 00000000 ____D C:\Users\Niko\Desktop\avz4
2013-12-05 19:04 - 2013-12-05 19:04 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-05 19:03 - 2013-12-05 19:03 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Niko\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-05 17:37 - 2013-12-05 17:36 - 74022496 _____ (SplitCam Co.) C:\Users\Niko\Downloads\SplitCamSetup1.exe
2013-12-05 17:37 - 2010-10-12 20:42 - 00000000 ____D C:\Users\Niko\AppData\Local\CrashDumps
2013-12-05 17:20 - 2013-12-05 17:19 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Tlapia
2013-12-05 17:19 - 2013-12-05 17:18 - 04754256 _____ (Tlapia) C:\Users\Niko\Downloads\samsung-syncmaster-2263uw-.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02241694 _____ (Megaify Software ) C:\Users\Niko\Downloads\driver_setup.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02035048 _____ (Easeware ) C:\Users\Niko\Downloads\DriversDownloader_for_2063W_2263_Driver_Jan2009.exe
2013-12-04 14:38 - 2013-12-04 14:38 - 10799192 _____ (ManyCam LLC) C:\Users\Niko\Downloads\ManyCamSetup.exe
2013-12-04 12:22 - 2013-12-04 11:59 - 00626272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-12-04 12:22 - 2013-12-04 11:59 - 00090208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2013-12-04 12:22 - 2013-12-04 11:59 - 00000000 ____D C:\Windows\ELAMBKUP
2013-12-04 12:22 - 2012-10-18 14:50 - 00054368 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kltdi.sys
2013-12-04 12:22 - 2012-09-03 18:23 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klmouflt.sys
2013-12-04 12:22 - 2012-09-03 17:57 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2013-12-04 12:22 - 2012-08-13 16:49 - 00178448 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2013-12-04 12:22 - 2012-06-19 17:28 - 07717984 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2013-12-04 12:00 - 2013-12-04 12:00 - 00002216 _____ C:\Users\Niko\Desktop\Sicherer Zahlungsverkehr.lnk
2013-12-04 11:59 - 2013-12-04 12:00 - 00001078 _____ C:\Users\Public\Desktop\Kaspersky PURE 3.0.lnk
2013-12-04 11:59 - 2013-12-04 11:59 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-12-04 11:20 - 2010-10-13 19:29 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-04 11:20 - 2010-10-13 19:29 - 00000000 ____D C:\ProgramData\Skype
2013-12-03 20:19 - 2010-10-12 20:05 - 00000000 ____D C:\Users\Niko\AppData\Local\VirtualStore
2013-12-03 19:44 - 2013-12-03 19:42 - 00299284 _____ C:\Users\Niko\Downloads\kavremvr 2013-12-03 19-42-28 (pid 4816).log
2013-12-03 19:42 - 2013-12-03 19:42 - 05876192 _____ (Kaspersky Lab ZAO) C:\Users\Niko\Downloads\kavremover.exe
2013-12-03 18:29 - 2010-10-12 20:21 - 00098864 _____ C:\Users\Niko\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-03 18:29 - 2009-07-14 05:45 - 00382984 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-02 21:39 - 2013-12-02 21:39 - 00000569 _____ C:\Users\Public\Desktop\Age of Empires II.lnk
2013-12-02 19:55 - 2013-12-02 18:24 - 188740896 _____ (Kaspersky Lab) C:\Users\Niko\Downloads\pure13.0.2.558DE_4340.exe
2013-12-02 18:52 - 2010-10-14 17:51 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-12-02 15:30 - 2013-12-02 15:30 - 00002934 _____ C:\Windows\System32\Tasks\{B56D80DE-2BF5-4431-AE7D-EF6AC461BA36}
2013-11-30 10:59 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-29 20:13 - 2013-11-29 20:13 - 00002938 _____ C:\Windows\System32\Tasks\{8B0B2FA5-AECC-4577-BBE1-F36F579EC056}
2013-11-27 14:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{9D45BAF4-090B-416A-BEAE-58E186B7AF81}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{6E25A4CC-0165-4D47-BC2D-737AE62E5A05}
2013-11-26 22:08 - 2013-11-26 22:08 - 00002956 _____ C:\Windows\System32\Tasks\{39C61096-0393-49FE-9103-79A8C49767C3}
2013-11-26 17:49 - 2010-10-12 20:06 - 00001421 _____ C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-26 17:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-25 23:55 - 2013-11-25 23:50 - 00009768 _____ C:\Windows\IE11_main.log
2013-11-25 23:52 - 2013-11-25 23:52 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-25 23:52 - 2013-11-25 23:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-25 23:52 - 2013-11-25 23:52 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-25 23:52 - 2013-11-25 23:52 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-25 23:52 - 2013-11-25 23:52 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-25 23:50 - 2012-04-29 12:34 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-25 18:30 - 2013-11-25 18:30 - 00002924 _____ C:\Windows\System32\Tasks\{7D743872-4514-4F70-8963-CD993D7B3DA9}
2013-11-25 18:26 - 2013-11-25 18:17 - 00000000 ____D C:\Emergency
2013-11-25 18:14 - 2013-11-25 14:12 - 538612890 _____ C:\Users\Niko\Downloads\em1.7z
2013-11-25 14:12 - 2013-11-25 13:43 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.001
2013-11-25 13:42 - 2013-11-25 13:12 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.002
2013-11-25 13:11 - 2013-11-25 12:58 - 119182490 _____ C:\Users\Niko\Downloads\em1.7z.003
2013-11-25 10:46 - 2011-01-08 17:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-11-25 10:37 - 2011-01-08 17:16 - 00000000 ____D C:\Users\Niko\AppData\Roaming\DAEMON Tools Lite
2013-11-25 10:36 - 2013-11-25 10:36 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-25 10:36 - 2013-11-25 10:36 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-25 10:36 - 2013-11-25 10:36 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-25 10:31 - 2013-11-25 10:31 - 00002924 _____ C:\Windows\System32\Tasks\{5ACEA32C-AE59-480F-ABC6-FBDB0BCA4D14}
2013-11-23 20:34 - 2011-11-21 23:19 - 00000000 ____D C:\Program Files (x86)\SoldnerSecretWars
2013-11-23 20:26 - 2012-01-25 22:45 - 00000000 ___RD C:\Users\Niko\Desktop\Spiele
2013-11-23 20:20 - 2013-11-23 20:13 - 545943206 _____ (soldnersecretwars.de ) C:\Users\Niko\Downloads\SSW_CE_33960_Installer.exe
2013-11-23 20:17 - 2013-11-23 20:14 - 160691006 _____ (soldnersecretwars.de ) C:\Users\Niko\Downloads\SSWLangPack_German_v11.exe
2013-11-23 00:28 - 2010-10-12 20:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-20 18:30 - 2012-05-10 15:12 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2013-11-20 13:41 - 2013-11-20 13:39 - 00000000 ____D C:\populous
2013-11-20 10:34 - 2011-02-05 15:59 - 00000000 ____D C:\PopulousTB
2013-11-19 21:57 - 2013-11-19 21:57 - 00173578 _____ C:\Users\Niko\Downloads\populous.zip
2013-11-17 16:52 - 2012-05-04 11:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-17 11:36 - 2013-11-17 11:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 17:41 - 2011-04-10 14:41 - 00000000 ____D C:\Users\Niko\AppData\Roaming\vlc
2013-11-14 19:08 - 2013-08-15 10:15 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 19:04 - 2010-10-13 22:11 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 19:10 - 2010-11-22 16:12 - 00000000 ____D C:\Users\Niko\Documents\Eigene Scans
2013-11-13 18:27 - 2013-11-13 18:24 - 00000000 ____D C:\Users\Niko\AppData\Roaming\PDF Software
2013-11-13 18:26 - 2013-11-13 18:26 - 00000963 _____ C:\Users\Public\Desktop\Soda PDF 5.lnk
2013-11-13 18:25 - 2013-11-13 18:25 - 00000000 ____D C:\Users\Niko\Documents\Soda PDF 5 Files
2013-11-13 18:25 - 2013-11-13 18:25 - 00000000 ____D C:\Program Files (x86)\Soda PDF 5
2013-11-13 18:23 - 2013-11-13 18:23 - 07104648 _____ (LULU Software) C:\Users\Niko\Downloads\Soda_PDF_5_Installer.exe
2013-11-13 18:21 - 2013-11-13 18:06 - 00000000 ____D C:\Users\Niko\AppData\Roaming\WordToPDF
2013-11-13 18:06 - 2013-11-13 18:06 - 01594813 _____ (Mario Noack ) C:\Users\Niko\Downloads\SetupWordToPDF_237_v2.9.exe
2013-11-13 18:06 - 2013-11-13 18:06 - 00001019 _____ C:\Users\Niko\Desktop\WordToPDF.lnk
2013-11-13 18:06 - 2013-11-13 18:06 - 00000000 ____D C:\Program Files (x86)\WordToPDF
2013-11-13 15:27 - 2011-08-02 17:43 - 00000000 ____D C:\Users\Niko\Documents\Anno 1404
2013-11-13 15:27 - 2011-08-02 17:33 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Ubisoft
Some content of TEMP:
====================
C:\Users\Niko\AppData\Local\Temp\pid16.dll
C:\Users\Niko\AppData\Local\Temp\pid32.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-10 09:30
==================== End Of Log ============================
--- --- ---
--- --- ---
Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-12-2013 01
Ran by Niko at 2013-12-11 13:53:53
Running from C:\Users\Niko\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Kaspersky PURE 3.0 (Enabled - Up to date) {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AS: Kaspersky PURE 3.0 (Enabled - Up to date) {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky PURE 3.0 (Enabled) {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
==================== Installed Programs ======================
64 Bit HP CIO Components Installer (Version: 7.2.8)
Acrobat.com (x32 Version: 2.3.0)
Acrobat.com (x32 Version: 2.3.0.0)
Adobe AIR (x32 Version: 1.5.3.9130)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170)
Adobe Reader XI (11.0.04) - Deutsch (x32 Version: 11.0.04)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD USB Filter Driver (x32 Version: 1.0.15.94)
Apple Mobile Device Support (Version: 4.0.0.97)
applicationupdater (HKCU)
ATI AVIVO64 Codecs (Version: 11.6.0.50527)
ATI Catalyst Install Manager (Version: 3.0.778.0)
BufferChm (x32 Version: 130.0.331.000)
C6300 (x32 Version: 130.0.365.000)
Canon Utilities Digital Photo Professional 3.11 (x32 Version: 3.11.30.3)
Canon Utilities EOS Sample Music (x32 Version: 1.0.1.1)
Canon Utilities EOS Utility (x32 Version: 2.11.3.0)
Canon Utilities ImageBrowser EX (x32 Version: 1.2.1.13)
Canon Utilities PhotoStitch (x32 Version: 3.1.23.47)
Canon Utilities Picture Style Editor (x32 Version: 1.10.2.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0527.1242.20909)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0527.1242.20909)
Catalyst Control Center InstallProxy (x32 Version: 2010.0527.1242.20909)
Catalyst Control Center Localization All (x32 Version: 2010.0527.1242.20909)
CCC Help Chinese Standard (x32 Version: 2010.0527.1241.20909)
CCC Help Chinese Traditional (x32 Version: 2010.0527.1241.20909)
CCC Help Czech (x32 Version: 2010.0527.1241.20909)
CCC Help Danish (x32 Version: 2010.0527.1241.20909)
CCC Help Dutch (x32 Version: 2010.0527.1241.20909)
CCC Help English (x32 Version: 2010.0527.1241.20909)
CCC Help Finnish (x32 Version: 2010.0527.1241.20909)
CCC Help French (x32 Version: 2010.0527.1241.20909)
CCC Help German (x32 Version: 2010.0527.1241.20909)
CCC Help Greek (x32 Version: 2010.0527.1241.20909)
CCC Help Hungarian (x32 Version: 2010.0527.1241.20909)
CCC Help Italian (x32 Version: 2010.0527.1241.20909)
CCC Help Japanese (x32 Version: 2010.0527.1241.20909)
CCC Help Korean (x32 Version: 2010.0527.1241.20909)
CCC Help Norwegian (x32 Version: 2010.0527.1241.20909)
CCC Help Polish (x32 Version: 2010.0527.1241.20909)
CCC Help Portuguese (x32 Version: 2010.0527.1241.20909)
CCC Help Russian (x32 Version: 2010.0527.1241.20909)
CCC Help Spanish (x32 Version: 2010.0527.1241.20909)
CCC Help Swedish (x32 Version: 2010.0527.1241.20909)
CCC Help Thai (x32 Version: 2010.0527.1241.20909)
CCC Help Turkish (x32 Version: 2010.0527.1241.20909)
ccc-core-static (x32 Version: 2010.0527.1242.20909)
ccc-utility64 (Version: 2010.0527.1242.20909)
CCleaner (Version: 3.13)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.0.10057)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.0.10057)
Cisco Systems VPN Client 5.0.07.0290 (Version: 5.0.7)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.48.1.0347)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Destinations (x32 Version: 130.0.0.0)
DeviceDiscovery (x32 Version: 130.0.465.000)
DocProc (x32 Version: 13.0.0.0)
Dropbox (HKCU Version: 2.0.22)
EndNote X4 (x32 Version: 14.0.0.4845)
Express Scribe (x32)
Free 3GP Video Converter version 5.0.21.1212 (x32 Version: 5.0.21.1212)
Free Audio CD to MP3 Converter version 1.3.12.1228 (x32 Version: 1.3.12.1228)
Free Audio Converter version 5.0.23.320 (x32 Version: 5.0.23.320)
Free YouTube Download version 3.1.42.1212 (x32 Version: 3.1.42.1212)
Free YouTube to MP3 Converter version 3.11.37.1212 (x32 Version: 3.11.37.1212)
GameSpy Arcade (x32)
GPBaseService2 (x32 Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart C6300 All-In-One Driver Software 13.0 Rel. 4 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Update (x32 Version: 5.003.001.001)
HPDiagnosticAlert (x32 Version: 1.00.0000)
HPPhotoGadget (x32 Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000)
HPPhotosmartEssential (x32 Version: 2.04.0000)
HPProductAssistant (x32 Version: 130.0.371.000)
HPSSupply (x32 Version: 130.0.371.000)
HydraVision (x32 Version: 4.2.166.0)
IBM SPSS Statistics 19 (Version: 19.0.0)
IBM SPSS Statistics 21 (Version: 21.0.0.0)
iTunes (Version: 10.5.2.11)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Kaspersky PURE 3.0 (x32 Version: 13.0.2.558)
Logitech G11 Keyboard Software 1.03 (Version: 1.3.166.0)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MarketResearch (x32 Version: 130.0.374.000)
Mendeley Desktop 1.3.1 (x32 Version: 1.3.1)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Age of Empires II (x32)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319)
Microsoft Works (x32 Version: 08.04.0702)
Microsoft Works Suite-Add-Ins für Microsoft Word (x32 Version: 8.0.0.0000)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1)
Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 25.0.1)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (x32 Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (x32 Version: 1.0.1.2)
MSVCRT (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0)
Network64 (Version: 130.0.572.000)
Nokia Connectivity Cable Driver (x32 Version: 7.1.69.0)
Nokia Suite (x32 Version: 3.3.86.0)
Norton Online Backup (x32 Version: 2.0.0.36)
Notation Composer 2.6.3 Trial (x32 Version: 2.6.3)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Origin (x32 Version: 8.5.2.23)
PC Connectivity Solution (x32 Version: 11.5.29.0)
Populous: The Beginning (x32 Version: 1.03)
PS_AIO_04_C6300_Software_Min (x32 Version: 130.0.365.000)
Realtek Ethernet Controller Driver For Windows Vista and Later (x32 Version: 1.00.0011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6526)
ResearchSoft Direct Export Helper (x32)
Scan (x32 Version: 13.0.0.0)
ScummVM Git (x32)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Setup-Start von Microsoft Works 2005 (x32)
Shockwave (x32)
Shop for HP Supplies (Version: 13.0)
Skype Click to Call (x32 Version: 5.9.9216)
Skype™ 6.11 (x32 Version: 6.11.102)
SmartWebPrinting (x32 Version: 130.0.457.000)
Soda PDF 5 (x32 Version: 5.1.192.10803)
Söldner Secret Wars - Community Edition Version 33960 (x32 Version: 33960)
Söldner Secret Wars Language Pack German Version 1.1 (x32 Version: 1.1)
SolutionCenter (x32 Version: 130.0.373.000)
Sony Ericsson Update Engine (x32 Version: 2.12.12.41)
Sony PC Companion 2.10.108 (x32 Version: 2.10.108)
Spelling Dictionaries Support For Adobe Reader 9 (x32 Version: 9.0.0)
Status (x32 Version: 130.0.469.000)
Steam (x32 Version: 1.0.0.0)
Switch Audiodatei-Konverter (x32 Version: 4.48)
Tales of Monkey Island: Chapter 1 - Launch of the Screaming Narwhal (x32)
Tales of Monkey Island: Chapter 2 - The Siege of Spinner Cay (x32)
Tales of Monkey Island: Chapter 3 - Lair of the Leviathan (x32)
Tales of Monkey Island: Chapter 4 - The Trial and Execution of Guybrush Threepwood (x32)
Tales of Monkey Island: Chapter 5 - Rise of the Pirate God (x32)
Team Fortress 2 (x32)
TeamSpeak 3 Client (HKCU Version: 3.0.13)
TomTom HOME 2.8.2.2264 (x32 Version: 2.8.2.2264)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2)
Toolbox (x32 Version: 130.0.648.000)
TrayApp (x32 Version: 130.0.422.000)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
UnloadSupport (x32 Version: 11.0.0)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)
Updater (x32 Version: 2.6.49)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
VLC media player 1.1.8 (x32 Version: 1.1.8)
WebReg (x32 Version: 130.0.132.017)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
WinRAR
WordToPDF 2.9 (x32 Version: 2.9)
Works Update (x32 Version: 8.0.0.0000)
==================== Restore Points =========================
09-12-2013 15:58:56 DirectX wurde installiert
11-12-2013 11:59:11 Removed Adobe Reader XI (11.0.05).
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {07F14CBB-44D8-4976-8119-8C69192C48BE} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-09-05] (Adobe Systems Incorporated)
Task: {0897BBC7-D121-4F07-9838-F12C6DA30141} - System32\Tasks\{B24CB037-AB4D-4C95-B81B-9C8AF6B600E5} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
Task: {1DEADAE6-FC5C-4ACE-9D0A-A8C54D135654} - System32\Tasks\{BCCDA5D3-2212-4AB4-921C-831790D4D59D} => D:\Niko\LucasArts\Monkey Island 2 LeChucks Revenge Special Edition\Monkey2.exe
Task: {263007BF-6B17-4D8F-9A49-C962FE28CE4F} - System32\Tasks\{BE69D37A-D45C-41C5-97D7-ABBBE8F4B4E0} => F:\AUTORUN.EXE
Task: {2EB67EBE-7D0C-41A7-9EBA-71964B81DDC3} - System32\Tasks\{4D2E3DDC-0A55-4CDF-8193-B49A86F1F31E} => D:\Siedler\BLUEBYTE\SIEDLER2\SIEDLER2.EXE [2010-10-18] ()
Task: {2F2FD535-9B25-4027-8EBD-0B5D41894E69} - System32\Tasks\{42A8F30A-90D7-4932-A9A4-B8209AE63396} => D:\Siedler\BLUEBYTE\SIEDLER2\SIEDLER2.EXE [2010-10-18] ()
Task: {31250475-1FD8-4276-BF00-173EF208248E} - System32\Tasks\{E01AF9FC-3534-45FD-BB90-68DCF6FEBE07} => C:\Team17\Worms World Party\wwp.exe
Task: {3F2EC12C-BB24-4328-9E03-212A0E98C8AE} - System32\Tasks\{6E25A4CC-0165-4D47-BC2D-737AE62E5A05} => D:\worms_arma\Worms_2_Armageddon\wa.exe
Task: {42C7E264-7A69-4C6F-B0D9-F094D128A31D} - System32\Tasks\{B56D80DE-2BF5-4431-AE7D-EF6AC461BA36} => D:\110\commandos\betasux.exe
Task: {4DCBCB29-8F7E-4FE8-912B-619F7D1E7495} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {5A881D11-A8FE-42C7-9CBF-F78D4299B07C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {5CAEF151-92A5-464D-A104-F71852FA71ED} - System32\Tasks\DLL-files.com Fixer => C:\Program Files (x86)\Dll-Files.com
Task: {76894412-422E-4900-8D40-6790C3A00453} - System32\Tasks\{9D45BAF4-090B-416A-BEAE-58E186B7AF81} => D:\worms_arma\Worms_2_Armageddon\wa.exe
Task: {9A8A89BE-938A-4831-8769-494B98020A9B} - System32\Tasks\NCH Software\scribeShakeIcon => C:\Program Files (x86)\NCH Software\Scribe\scribe.exe [2012-09-28] (NCH Software)
Task: {A2304F2E-408C-4F08-B751-AF3D3391A72F} - System32\Tasks\{574609B5-BCD2-44A3-B1D5-4E616F5A71AC} => Firefox.exe hxxp://ui.skype.com/ui/0/5.1.0.112.259/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;alreadyoffered
Task: {A562E7FB-0709-4640-BC44-D8CFB206FDBE} - System32\Tasks\{573FC5F3-DC3E-4A8B-AA99-DF270D6A24BB} => G:\setup.exe [1998-04-23] (Promotion Software Tübingen)
Task: {B0F4B8B8-3F9B-47E1-9473-ECE741C7827C} - System32\Tasks\{7D743872-4514-4F70-8963-CD993D7B3DA9} => C:\Emergency\emergy.exe [1998-04-28] ()
Task: {B3DBC25B-6B8A-48DC-932E-F0BC48AA544C} - System32\Tasks\{39C61096-0393-49FE-9103-79A8C49767C3} => D:\worms_arma\Worms_2_Armageddon\wa.exe
Task: {B80AB8E9-E2F9-4398-8999-9E034F9B1FAC} - System32\Tasks\{4CBDF0BE-AB76-4389-9BAE-03E1C5DA06AB} => D:\Niko\LucasArts\Monkey2Launcher.exe [2010-07-29] ()
Task: {BB150135-744B-435F-A4AE-20E7CF156FEF} - System32\Tasks\{8B0B2FA5-AECC-4577-BBE1-F36F579EC056} => D:\Pizza Syndicate\Autorun.exe
Task: {CD9599FB-F604-4398-97A6-61B6CF25C24C} - System32\Tasks\{CE267232-BC30-4FDC-886D-92AB01325001} => C:\Team17\Worms World Party\wwp.exe
Task: {D76172FF-1B90-4522-A342-21585159C3BD} - System32\Tasks\{4B5AA4C3-6DB9-4CC9-8377-6D0F7AA73424} => D:\Emergency\emergy.exe
Task: {D9757778-8515-40E2-B097-7560A21885A3} - System32\Tasks\{94D78FD0-AA40-47FB-AF1F-DBE3E932BA82} => Firefox.exe hxxp://ui.skype.com/ui/0/6.1.73.129.457/de/abandoninstall?page=tsWLM
Task: {DADA45EF-CA2A-4370-9830-DEDBDDAE3B82} - System32\Tasks\{FF640566-487F-493B-976D-AF61DDA0251F} => D:\Emergency\emergy.exe
Task: {DB8B467B-773D-4B13-8609-3809862037B2} - System32\Tasks\{5ACEA32C-AE59-480F-ABC6-FBDB0BCA4D14} => D:\Emergency\emergy.exe
Task: {EED55FB9-B7AE-4B1C-9B93-2D0D99F61F4E} - System32\Tasks\{191935BD-D718-4812-86E7-D3C695199D12} => D:\Siedler\BLUEBYTE\SIEDLER2\SIEDLER2.EXE [2010-10-18] ()
Task: {F7EBD3BC-9E4B-41A0-9FE6-21A0E7A55BA1} - System32\Tasks\{3B40AD84-DD3D-4E71-9400-424EEECF6903} => D:\Niko\LucasArts\Monkey Island 2 LeChucks Revenge Special Edition\Monkey2.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2010-10-12 21:38 - 2010-03-15 10:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2012-12-20 18:19 - 2012-12-20 18:19 - 00479752 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\dblite.dll
2012-12-20 18:19 - 2012-12-20 18:19 - 01310728 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\kpcengine.2.2.dll
2010-03-23 13:26 - 2010-03-23 13:26 - 00201512 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll
2013-04-05 22:59 - 2013-01-29 18:45 - 00112128 _____ () C:\Program Files (x86)\Canon\ImageBrowser EX\MFMFileSystemWatcher.dll
2013-11-17 11:36 - 2013-11-17 11:36 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2012-09-23 20:43 - 2012-09-23 20:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll
2013-09-05 15:04 - 2013-09-05 15:04 - 14588632 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\NPSWF32.dll
2013-11-16 09:49 - 2013-11-16 09:49 - 16237448 ____N () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Photosmart C6300 series
Description: Photosmart C6300 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart C6300 series
Description: Photosmart C6300 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart C6300 series
Description: Photosmart C6300 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Cisco Systems VPN Adapter for 64-bit Windows
Description: Cisco Systems VPN Adapter for 64-bit Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: CVirtA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: HP Photosmart C6300
Description: HP Photosmart C6300
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart C6300 series
Description: Photosmart C6300 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/09/2013 04:28:52 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (12/09/2013 04:27:40 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "6.0.0.6u9b41" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (12/09/2013 04:26:38 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "6.0.0.6u9b41" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (12/07/2013 08:38:53 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (12/07/2013 08:37:28 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "6.0.0.6u9b41" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (12/07/2013 08:36:10 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "6.0.0.6u9b41" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (12/05/2013 05:38:45 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: SplitCamService.exe, Version: 1.0.0.1, Zeitstempel: 0x526782ae
Name des fehlerhaften Moduls: SplitCamService.exe, Version: 1.0.0.1, Zeitstempel: 0x526782ae
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000015e0
ID des fehlerhaften Prozesses: 0x2334
Startzeit der fehlerhaften Anwendung: 0xSplitCamService.exe0
Pfad der fehlerhaften Anwendung: SplitCamService.exe1
Pfad des fehlerhaften Moduls: SplitCamService.exe2
Berichtskennung: SplitCamService.exe3
Error: (12/05/2013 05:37:23 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ValueApps.exe, Version: 1.0.0.1, Zeitstempel: 0x5267f8d5
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0055005c
ID des fehlerhaften Prozesses: 0x20cc
Startzeit der fehlerhaften Anwendung: 0xValueApps.exe0
Pfad der fehlerhaften Anwendung: ValueApps.exe1
Pfad des fehlerhaften Moduls: ValueApps.exe2
Berichtskennung: ValueApps.exe3
Error: (12/05/2013 05:32:19 PM) (Source: MsiInstaller) (User: Questmaster3000)
Description: Product: Fwink -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.
Error: (12/05/2013 05:20:03 PM) (Source: MsiInstaller) (User: Questmaster3000)
Description: Product: Download your driver -- Error 1720. There is a problem with this Windows Installer package. A script required for this install to complete could not be run. Contact your support personnel or package vendor. Custom action GetTextConstants.vbs script error -2146827864, Laufzeitfehler in Microsoft VBScript: Objekt erforderlich: 'xmlDoc.GetElementsByTagName(...).item(...)' Line 7, Column 1,
System errors:
=============
Error: (12/11/2013 00:27:50 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Error: (12/11/2013 00:27:07 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Error: (12/11/2013 00:26:25 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Error: (12/11/2013 00:25:43 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Error: (12/11/2013 00:25:27 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Bilderfassung (WIA)" wurde nicht richtig gestartet.
Error: (12/11/2013 00:24:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Apple Mobile Device" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/11/2013 00:24:00 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Apple Mobile Device erreicht.
Error: (12/10/2013 11:08:41 AM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "GAST-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{B1BCECC2-475A-46EA-AF15-1D84FEA5E409}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (12/10/2013 09:04:56 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Error: (12/10/2013 09:04:14 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Microsoft Office Sessions:
=========================
Error: (12/09/2013 04:28:52 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (12/09/2013 04:27:40 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversion6.0.0.6u9b41C:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack.dllC:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack.dll19
Error: (12/09/2013 04:26:38 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversion6.0.0.6u9b41C:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack200.exeC:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack200.exe19
Error: (12/07/2013 08:38:53 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (12/07/2013 08:37:28 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversion6.0.0.6u9b41C:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack.dllC:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack.dll19
Error: (12/07/2013 08:36:10 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversion6.0.0.6u9b41C:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack200.exeC:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack200.exe19
Error: (12/05/2013 05:38:45 PM) (Source: Application Error)(User: )
Description: SplitCamService.exe1.0.0.1526782aeSplitCamService.exe1.0.0.1526782aec0000005000015e0233401cef1d876309767C:\Program Files (x86)\SplitCam\SplitCamService.exeC:\Program Files (x86)\SplitCam\SplitCamService.exeb4ac6bd9-5dcb-11e3-81aa-6c626d05b0fe
Error: (12/05/2013 05:37:23 PM) (Source: Application Error)(User: )
Description: ValueApps.exe1.0.0.15267f8d5unknown0.0.0.000000000c00000050055005c20cc01cef1d839d6561cC:\Users\Niko\AppData\Roaming\ValueApps\IE\ValueApps.exeunknown843f51c3-5dcb-11e3-81aa-6c626d05b0fe
Error: (12/05/2013 05:32:19 PM) (Source: MsiInstaller)(User: Questmaster3000)
Description: Product: Fwink -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (12/05/2013 05:20:03 PM) (Source: MsiInstaller)(User: Questmaster3000)
Description: Product: Download your driver -- Error 1720. There is a problem with this Windows Installer package. A script required for this install to complete could not be run. Contact your support personnel or package vendor. Custom action GetTextConstants.vbs script error -2146827864, Laufzeitfehler in Microsoft VBScript: Objekt erforderlich: 'xmlDoc.GetElementsByTagName(...).item(...)' Line 7, Column 1, (NULL)(NULL)(NULL)(NULL)(NULL)
CodeIntegrity Errors:
===================================
Date: 2013-12-05 19:40:10.409
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:40:10.408
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:40:10.406
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:30:43.821
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\p\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:30:43.819
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\p\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:30:43.817
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\p\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:30:43.741
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\b\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:30:43.739
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\b\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:30:43.738
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\b\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-05 19:22:48.425
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 33%
Total physical RAM: 8191.18 MB
Available physical RAM: 5417.41 MB
Total Pagefile: 16380.54 MB
Available Pagefile: 13372.1 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:152.34 GB) (Free:24.89 GB) NTFS
Drive d: () (Fixed) (Total:380.86 GB) (Free:175.03 GB) NTFS
Drive e: () (Fixed) (Total:398.21 GB) (Free:157.9 GB) NTFS
Drive f: (AOE2) (CDROM) (Total:0.32 GB) (Free:0 GB) CDFS
Drive g: () (CDROM) (Total:0.28 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: BAFBAE4D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=152 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=381 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=398 GB) - (Type=07 NTFS)
==================== End Of Log ============================
GMER.log Code:
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-12-11 15:28:33
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SAMSUNG_HD103SJ rev.1AJ10001 931,51GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Niko\AppData\Local\Temp\fwldiaoc.sys
---- User code sections - GMER 2.1 ----
.text C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe[1760] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075861465 2 bytes [86, 75]
.text C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe[1760] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758614bb 2 bytes [86, 75]
.text ... * 2
.text C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322 0000000072b21a22 2 bytes [B2, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496 0000000072b21ad0 2 bytes [B2, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552 0000000072b21b08 2 bytes [B2, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730 0000000072b21bba 2 bytes [B2, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762 0000000072b21bda 2 bytes [B2, 72]
.text C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe[1808] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075861465 2 bytes [86, 75]
.text C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe[1808] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758614bb 2 bytes [86, 75]
.text ... * 2
---- Registry - GMER 2.1 ----
Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@SIGN.MEDIA=26F42A7 TREIBER\Windows XP\Intel\xae Matrix Storage Manager\Setup.exe 1
---- EOF - GMER 2.1 ----
|
AdwCleaner auf deinen Desktop.
SecurityCheck und:
