79%Liverpool | 23.02.2014 10:49 | FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-02-2014 01
Ran by Stefan (administrator) on STEFAN-PC on 23-02-2014 10:47:44
Running from C:\Users\Stefan\Downloads
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Micro-Star International Co., Ltd.) C:\Program Files\System Control Manager\MSIService.exe
() C:\Windows\system32\PnkBstrA.exe
(Secunia) C:\Program Files\Secunia\PSI\PSIA.exe
(StarWind Software) C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
() C:\Program Files\Hardcopy\hcdll2_ex_Win32.exe
(Micro-Star International Co., Ltd.) C:\Program Files\System Control Manager\MGSysCtrl.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareAgent.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Ralink Technology, Corp.) C:\Program Files\Ralink\Common\RaUI.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winamp.exe
() C:\PROGRAM FILES\STREAMRIPPER\wstreamripper.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13797992 2009-09-01] (NVIDIA Corporation)
HKLM\...\Run: [MGSysCtrl] - C:\Program Files\System Control Manager\MGSysCtrl.exe [2080768 2009-10-09] (Micro-Star International Co., Ltd.)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM\...\Run: [AllShareAgent] - C:\Program Files\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-06] (Apple Inc.)
HKU\S-1-5-21-12256142-694252783-3233082665-1001\...\Run: [ApplePhotoStreams] - C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-12256142-694252783-3233082665-1001\...\Run: [iCloudServices] - C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-12256142-694252783-3233082665-1001\...\MountPoints2: {2962872d-bdc7-11e2-9828-002185e0b02f} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-12256142-694252783-3233082665-1001\...\MountPoints2: {65ca9f40-109b-11e3-9659-806e6f6e6963} - G:\autorun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x95204006CC65CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\rgsu57rm.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101721.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Unblock YouTube - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\rgsu57rm.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7} [2013-12-21]
FF HKCU\...\Firefox\Extensions: [{72273571-743d-427e-a1c1-0538fbc2ddd3}] - C:\Program Files\LyricsSeeker\133.xpi
========================== Services (Whitelisted) =================
S2 AxAutoMntSrv; C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1435984 2013-05-15] (LogMeIn Inc.)
R2 Micro Star SCM; C:\Program Files\System Control Manager\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75064 2013-11-01] ()
S2 RalinkRegistryWriter; C:\Program Files\Ralink\Common\RaRegistry.exe [372736 2011-11-14] (Ralink Technology, Corp.)
S2 RaMediaServer; C:\Program Files\Ralink\Common\RaMediaServer.exe [625728 2011-08-18] ()
R2 SamsungAllShareV2.0; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [25504 2012-03-02] (Samsung Electronics Co., Ltd.)
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia)
S3 SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [27584 2012-03-02] (Samsung Electronics Co., Ltd.)
R2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software)
==================== Drivers (Whitelisted) ====================
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [63464 2013-01-22] (FTDI Ltd.)
R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKslacd28ae0; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{77B4A04D-0DCB-4E6E-B2BF-869E5DFE20A1}\MpKslacd28ae0.sys [39464 2014-02-23] (Microsoft Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-07-03] (Secunia)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2013-08-29] (Duplex Secure Ltd.)
R1 HWiNFO32; \??\D:\Anderes\.exe Installationen\HW - Info\HWiNFO32.SYS [X]
U4 MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-23 10:47 - 2014-02-23 10:47 - 00010957 _____ () C:\Users\Stefan\Downloads\FRST.txt
2014-02-23 10:45 - 2014-02-23 10:45 - 01142784 _____ (Farbar) C:\Users\Stefan\Downloads\FRST.exe
2014-02-23 10:41 - 2014-02-23 10:41 - 00602112 _____ (OldTimer Tools) C:\Users\Stefan\Downloads\OTL.exe
2014-02-16 19:41 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-16 19:41 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-16 19:41 - 2014-02-06 11:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-16 19:41 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-16 19:41 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-16 19:41 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-16 19:41 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-16 19:41 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-16 19:41 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-16 19:41 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-16 19:41 - 2014-02-06 10:47 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-16 19:41 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-16 19:41 - 2014-02-06 10:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-16 19:41 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-16 19:41 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-16 19:41 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-16 19:41 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-16 19:41 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-16 19:41 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-16 19:41 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-16 19:41 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-16 19:31 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-16 12:59 - 2014-02-16 13:00 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-16 12:16 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-16 12:16 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-16 12:16 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-16 12:15 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-16 12:15 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-16 12:15 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-16 12:15 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-16 12:15 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-16 12:15 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-16 12:15 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-16 12:15 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-16 12:15 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-16 12:15 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-16 12:15 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-09 12:47 - 2014-02-09 12:47 - 00001713 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-09 12:46 - 2014-02-09 12:47 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-02-09 12:46 - 2014-02-09 12:47 - 00000000 ____D () C:\Program Files\iTunes
2014-02-09 12:46 - 2014-02-09 12:46 - 00000000 ____D () C:\Program Files\iPod
==================== One Month Modified Files and Folders =======
2014-02-23 10:47 - 2014-02-23 10:47 - 00010957 _____ () C:\Users\Stefan\Downloads\FRST.txt
2014-02-23 10:47 - 2013-08-29 10:31 - 00000000 ____D () C:\FRST
2014-02-23 10:47 - 2013-04-29 20:45 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\NetSpeedMonitor
2014-02-23 10:45 - 2014-02-23 10:45 - 01142784 _____ (Farbar) C:\Users\Stefan\Downloads\FRST.exe
2014-02-23 10:41 - 2014-02-23 10:41 - 00602112 _____ (OldTimer Tools) C:\Users\Stefan\Downloads\OTL.exe
2014-02-23 10:39 - 2012-07-19 20:37 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-23 10:21 - 2012-07-19 17:21 - 01550591 _____ () C:\Windows\WindowsUpdate.log
2014-02-21 19:39 - 2012-07-19 20:37 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-21 19:39 - 2012-07-19 20:37 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-21 18:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-02-21 18:01 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-21 17:46 - 2009-07-14 05:34 - 00021088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-21 17:46 - 2009-07-14 05:34 - 00021088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-21 17:44 - 2013-11-22 19:13 - 00005165 _____ () C:\Windows\setupact.log
2014-02-21 17:43 - 2012-07-19 20:31 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-21 17:40 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-16 19:43 - 2012-07-19 22:22 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-16 19:40 - 2010-11-20 22:01 - 01519874 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-16 19:38 - 2013-08-07 00:32 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-16 19:36 - 2012-07-23 07:55 - 85946576 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-16 19:31 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-16 13:00 - 2014-02-16 12:59 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-16 12:06 - 2013-08-26 11:03 - 00000000 ____D () C:\Users\Stefan\AppData\Local\LogMeIn Hamachi
2014-02-09 12:47 - 2014-02-09 12:47 - 00001713 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-09 12:47 - 2014-02-09 12:46 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-02-09 12:47 - 2014-02-09 12:46 - 00000000 ____D () C:\Program Files\iTunes
2014-02-09 12:46 - 2014-02-09 12:46 - 00000000 ____D () C:\Program Files\iPod
2014-02-09 12:46 - 2012-08-12 13:46 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-09 12:43 - 2012-08-12 13:46 - 00000000 ____D () C:\ProgramData\Apple
2014-02-06 11:38 - 2014-02-16 19:41 - 17103872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 11:20 - 2014-02-16 19:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 11:19 - 2014-02-16 19:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 11:01 - 2014-02-16 19:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 11:00 - 2014-02-16 19:41 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-16 19:41 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 10:52 - 2014-02-16 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 10:52 - 2014-02-16 19:41 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 10:49 - 2014-02-16 19:41 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 10:47 - 2014-02-16 19:41 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 10:47 - 2014-02-16 19:41 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 10:46 - 2014-02-16 19:41 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 10:34 - 2014-02-16 19:41 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 10:25 - 2014-02-16 19:41 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 10:25 - 2014-02-16 19:41 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 10:13 - 2014-02-16 19:41 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:09 - 2014-02-16 19:41 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:03 - 2014-02-16 19:41 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 09:41 - 2014-02-16 19:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 09:36 - 2014-02-16 19:41 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:34 - 2014-02-16 19:41 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-21 18:20
==================== End Of Log ============================ --- --- ---
--- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-02-2014 01
Ran by Stefan at 2014-02-23 10:54:22
Running from C:\Users\Stefan\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader X (10.1.8) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.8 - Adobe Systems Incorporated)
Age of Empires 2 & The Conquerors v1.1 Userpatch AiO version 0.2 (HKLM\...\{0CEC2F82-AEB2-4C4B-B450-62C6CEF159FE}_is1) (Version: 0.2 - line0)
Age of Empires II: HD Edition (HKLM\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
Amazon MP3-Downloader 1.0.17 (HKLM\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM\...\{21FC2093-6E43-460B-B9B0-5F5AA35BBB0F}) (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{10E3A6DD-84D8-4D8A-BB11-5E5314BCA7FD}) (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0.4 (HKLM\...\Audacity_is1) (Version: 2.0.4 - Audacity Team)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Camera Recorder (HKLM\...\{3BDDA587-7CDE-430C-90A4-E2C4E48D3AE9}) (Version: 1.0.909.0801 - Camera Recorder)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
ClipGrab 3.2.1.0 (HKLM\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - Philipp Schmieder Medien)
Counter-Strike: Source (HKLM\...\Steam App 240) (Version: - Valve)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{81FB7C60-565A-4869-9D90-3BE1D270E8B7}) (Version: - Microsoft)
Deinstallieren VCDS DRV 11.11.5 (HKLM\...\VCDS-DRV 11.11.5) (Version: DRV 11.11.5 - Ross-Tech)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
Hardcopy (HKLM\...\Hardcopy) (Version: 2012.08.01 - www.hardcopy.de)
HLSW v1.4.0.2 (HKLM\...\HLSW_is1) (Version: - Stripf Software)
iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.)
InfraRecorder (HKLM\...\InfraRecorder) (Version: - Christian Kindahl)
iTunes (HKLM\...\{C4780F70-8F21-4F0C-95FE-32FF3E2F9247}) (Version: 11.1.4.62 - Apple Inc.)
Java 7 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.450 - Oracle)
JDownloader 0.9 (HKLM\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - )
LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.1.0.362 - LogMeIn, Inc.)
LogMeIn Hamachi (Version: 2.1.0.362 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Age of Empires II (HKLM\...\Age of Empires 2.0) (Version: - )
Microsoft Age of Empires II: The Conquerors Expansion (HKLM\...\Age of Empires II: The Conquerors Expansion 1.0) (Version: - )
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft VC9 runtime libraries (Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (HKLM\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
Mozilla Thunderbird 17.0.8 (x86 de) (HKLM\...\Mozilla Thunderbird 17.0.8 (x86 de)) (Version: 17.0.8 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NetSpeedMonitor 2.5.4.0 x86 (HKLM\...\{86501894-E722-4385-A792-B7C2F28FAE7B}) (Version: 2.5.4.0 - Florian Gilles)
Notepad++ (HKLM\...\Notepad++) (Version: 6.1.6 - )
Nur Entfernen der CopyTrans Suite möglich (HKCU\...\CopyTrans Suite) (Version: 2.37 - WindSolutions)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation)
Opera 11.00 (HKLM\...\Opera 11.00.1156) (Version: 11.00.1156 - Opera Software ASA)
PDF Split And Merge Basic (HKLM\...\{C91B24F6-1629-11E2-B696-21676188709B}) (Version: 2.2.2 - Andrea Vacondio)
PS3 Media Server (HKLM\...\PS3 Media Server) (Version: 1.72.0 - PS3 Media Server)
Ralink RT2860 Wireless LAN Card (HKLM\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.16.0 - Ralink)
Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.11.1127.2009 - Realtek)
Samsung AllShare (HKLM\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.)
Samsung AllShare (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.) Hidden
Secunia PSI (3.0.0.7011) (HKLM\...\Secunia PSI) (Version: 3.0.0.7011 - Secunia)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version: - Microsoft) Hidden
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SteelSeries Kinzu Optical Mouse (HKLM\...\{A03E4302-F387-47F3-8136-6D9D9286CD3B}) (Version: 1.0.10 - SteelSeries)
Streamripper (Remove only) (HKLM\...\Streamripper) (Version: - )
System Control Manager (HKLM\...\{ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8}) (Version: 2.209.1009.005.08 - Micro-Star International Co., Ltd.)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837583) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{E21274CE-CA0C-49FA-93F4-DC292A052264}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version: - Microsoft)
VLC media player 2.1.1 (HKLM\...\VLC media player) (Version: 2.1.1 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows-Treiberpaket - FTDI CDM Driver Package - Bus/D2XX Driver (01/18/2013 2.08.28) (HKLM\...\9E24492CE9279512BD465F61DB8523641BB7BBFC) (Version: 01/18/2013 2.08.28 - FTDI)
Windows-Treiberpaket - FTDI CDM Driver Package - VCP Driver (01/18/2013 2.08.28) (HKLM\...\E61B77ECE57113AE1CA028BC7A8AD6C137BD13DD) (Version: 01/18/2013 2.08.28 - FTDI)
==================== Restore Points =========================
08-02-2014 17:00:00 Windows Update
16-02-2014 11:12:51 Windows Update
16-02-2014 18:30:58 Windows Update
21-02-2014 16:50:57 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:04 - 2013-08-25 15:39 - 00000929 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 update.ross-tech.com
127.0.0.1 update.ross-tech.de
74.208.10.249 gs.apple.com
==================== Scheduled Tasks (whitelisted) =============
Task: {0C9E3903-A284-44E9-9440-B6A3E1183DC9} - System32\Tasks\hcdll2_ex_Win32 => C:\Program Files\Hardcopy\hcdll2_ex_Win32.exe [2012-07-05] ()
Task: {94951633-29FC-4C80-A614-EF4D4EAE3245} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-06 00:52 - 2014-02-06 00:52 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-01 19:52 - 2013-11-01 19:52 - 00075064 _____ () C:\Windows\system32\PnkBstrA.exe
2012-08-19 19:31 - 2012-07-05 14:56 - 00052800 _____ () C:\Program Files\Hardcopy\hardcopy_05.dll
2012-06-18 16:24 - 2012-06-18 16:24 - 00260096 _____ () C:\Program Files\Notepad++\NppShell_05.dll
2012-08-19 19:31 - 2012-07-05 14:56 - 00037440 _____ () C:\Program Files\Hardcopy\hcdll2_ex_Win32.exe
2013-09-14 01:51 - 2013-09-14 01:51 - 00087952 _____ () C:\Program Files\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 01:50 - 2013-09-14 01:50 - 01242952 _____ () C:\Program Files\Common Files\Apple\Internet Services\libxml2.dll
2012-07-19 20:54 - 2011-11-21 10:04 - 01079144 _____ () C:\Program Files\Ralink\Common\RaWLAPI.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 01135616 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00656896 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00105472 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00098816 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00077312 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00520234 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00450560 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 05717504 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00029184 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00147456 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 04671488 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00070656 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00686080 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00152064 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00027648 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00063488 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00366592 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\tag.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00289792 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00023040 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00133120 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00290304 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00399826 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00013824 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00031232 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00054784 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00044032 _____ () C:\Program Files\Samsung\AllShare\AllShareDMS\us.dll
2014-02-16 12:59 - 2014-02-16 12:59 - 03578992 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2014-02-16 13:39 - 2014-02-16 13:39 - 16287624 ____N () C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00417280 _____ () C:\Program Files\Winamp\nsutil.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00078848 _____ () C:\Program Files\Winamp\nde.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00064512 _____ () C:\Program Files\Winamp\zlib.dll
2014-02-22 13:42 - 2014-02-22 13:42 - 00010752 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\auth.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00069120 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\burnlib.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00013824 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\dsp_sps.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00006656 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\enc_fhgaac.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004096 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\enc_flac.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00005632 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\enc_lame.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004096 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\enc_vorbis.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004096 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\enc_wav.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00006144 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\enc_wma.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00023552 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_classicart.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00007168 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_crasher.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00023040 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_ff.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004096 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_find_on_disk.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00011776 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_hotkeys.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00041984 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_jumpex.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00041984 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_jumpex_original.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00021504 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_ml.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00009728 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_nopro.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00007168 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_orgler.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00014848 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_play_remove.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00011776 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_skinmanager.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00010240 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_timerestore.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00008192 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_tray.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00010752 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\gen_undo.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00005120 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_avi.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00014336 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_cdda.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00006656 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_dshow.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00005632 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_flac.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00003584 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_flv.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00003584 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_linein.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00020480 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_midi.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004608 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_mkv.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00018944 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_mod.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00023040 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_mp3.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00005120 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_mp4.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00011776 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_nsv.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00003584 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_swf.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00011264 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_vorbis.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00006656 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_wav.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00005632 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_wave.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00015360 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_wm.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004608 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\in_wv.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00003584 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_addons.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00006656 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_autotag.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00005120 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_bookmarks.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00008704 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_devices.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00047616 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_disc.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00009728 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_downloads.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004608 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_enqplay.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00008704 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_history.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00005120 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_impex.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00056320 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_local.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00003584 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_nowplaying.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00014336 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_online.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004096 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_orb.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00012800 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_playlists.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00034816 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_plg.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00047104 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_pmp.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00005120 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_rg.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00008192 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_transcode.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00014848 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ml_wire.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00036352 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\ombrowser.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00006144 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\out_disk.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00016384 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\out_ds.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00007680 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\out_wave.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00003072 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\playlist.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004608 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\pmp_activesync.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00020480 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\pmp_android.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00036864 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\pmp_ipod.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00003584 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\pmp_njb.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004096 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\pmp_p4s.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00011776 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\pmp_usb.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00039424 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\pmp_wifi.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00006144 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\tagz.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00088064 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\vis_avs.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00156160 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\vis_milk2.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00007680 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\vis_nsfs.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00206336 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\winamp.lng
2014-02-22 13:42 - 2014-02-22 13:42 - 00004096 _____ () C:\Users\Stefan\AppData\Local\Temp\WLZE517.tmp\winampa.lng
2012-06-28 16:42 - 2012-07-19 21:18 - 00023552 _____ () C:\Program Files\Winamp\System\albumart.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00174080 _____ () C:\Program Files\Winamp\System\auth.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00019456 _____ () C:\Program Files\Winamp\System\bmp.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00044544 _____ () C:\Program Files\Winamp\System\devices.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00016896 _____ () C:\Program Files\Winamp\System\dlmgr.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00014336 _____ () C:\Program Files\Winamp\System\filereader.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00019456 _____ () C:\Program Files\Winamp\System\gif.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00016384 _____ () C:\Program Files\Winamp\System\gracenote.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00623616 _____ () C:\Program Files\Winamp\System\jnetlib.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00154624 _____ () C:\Program Files\Winamp\System\jpeg.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00084480 _____ () C:\Program Files\Winamp\System\playlist.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00087552 _____ () C:\Program Files\Winamp\System\png.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00013824 _____ () C:\Program Files\Winamp\System\primo.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00021504 _____ () C:\Program Files\Winamp\System\tagz.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00035328 _____ () C:\Program Files\Winamp\System\timer.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00091136 _____ () C:\Program Files\Winamp\System\xml.w5s
2012-06-28 16:42 - 2012-07-19 21:18 - 00068608 _____ () C:\Program Files\Winamp\Plugins\in_avi.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00102400 _____ () C:\Program Files\Winamp\Plugins\in_cdda.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00072192 _____ () C:\Program Files\Winamp\Plugins\in_dshow.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00061440 _____ () C:\Program Files\Winamp\Plugins\in_flac.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00043008 _____ () C:\Program Files\Winamp\Plugins\in_flv.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00007168 _____ () C:\Program Files\Winamp\Plugins\in_linein.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00109568 _____ () C:\Program Files\Winamp\Plugins\in_midi.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00049152 _____ () C:\Program Files\Winamp\Plugins\in_mkv.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00164864 _____ () C:\Program Files\Winamp\Plugins\in_mod.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00290816 _____ () C:\Program Files\Winamp\Plugins\in_mp3.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00052736 _____ () C:\Program Files\Winamp\Plugins\in_mp4.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00075264 _____ () C:\Program Files\Winamp\Plugins\in_nsv.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00023552 _____ () C:\Program Files\Winamp\Plugins\in_swf.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00253440 _____ () C:\Program Files\Winamp\Plugins\in_vorbis.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00016896 _____ () C:\Program Files\Winamp\Plugins\in_wave.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00253440 _____ () C:\Program Files\Winamp\libsndfile.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00313344 _____ () C:\Program Files\Winamp\Plugins\in_wm.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00022528 _____ () C:\Program Files\Winamp\Plugins\out_disk.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00052224 _____ () C:\Program Files\Winamp\Plugins\out_ds.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00018432 _____ () C:\Program Files\Winamp\Plugins\out_wave.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 01737728 _____ () C:\Program Files\Winamp\Plugins\gen_ff.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00083968 _____ () C:\Program Files\Winamp\tataki.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00028160 _____ () C:\Program Files\Winamp\Plugins\gen_hotkeys.dll
2011-11-10 23:10 - 2012-07-19 21:18 - 00185344 _____ () C:\Program Files\Winamp\Plugins\gen_jumpex.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00318976 _____ () C:\Program Files\Winamp\Plugins\gen_ml.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00294912 _____ () C:\Program Files\Winamp\Plugins\ml_local.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00084480 _____ () C:\Program Files\Winamp\Plugins\ml_playlists.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00124928 _____ () C:\Program Files\Winamp\Plugins\ml_online.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00249856 _____ () C:\Program Files\Winamp\Plugins\ml_devices.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00201728 _____ () C:\Program Files\Winamp\Plugins\ml_disc.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00240640 _____ () C:\Program Files\Winamp\Plugins\ml_pmp.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00060928 _____ () C:\Program Files\Winamp\Plugins\pmp_android.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00170496 _____ () C:\Program Files\Winamp\Plugins\pmp_ipod.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00020480 _____ () C:\Program Files\Winamp\Plugins\pmp_njb.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00118272 _____ () C:\Program Files\Winamp\Plugins\pmp_p4s.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00053760 _____ () C:\Program Files\Winamp\Plugins\pmp_usb.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00113664 _____ () C:\Program Files\Winamp\Plugins\pmp_wifi.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00028672 _____ () C:\Program Files\Winamp\Plugins\ml_bookmarks.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00052224 _____ () C:\Program Files\Winamp\Plugins\ml_history.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00028672 _____ () C:\Program Files\Winamp\Plugins\ml_autotag.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00057344 _____ () C:\Program Files\Winamp\Plugins\ml_impex.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00083456 _____ () C:\Program Files\Winamp\Plugins\ml_plg.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00033792 _____ () C:\Program Files\Winamp\Plugins\ml_rg.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00032256 _____ () C:\Program Files\Winamp\Plugins\ml_transcode.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00057344 _____ () C:\Program Files\Winamp\Plugins\gen_orgler.dll
2009-03-31 04:54 - 2009-03-31 04:54 - 00040960 _____ () C:\Program Files\Winamp\Plugins\gen_sripper.dll
2012-06-28 16:42 - 2012-07-19 21:18 - 00025600 _____ () C:\Program Files\Winamp\Plugins\gen_tray.dll
2009-03-31 05:11 - 2009-03-31 05:11 - 00069632 _____ () C:\PROGRAM FILES\STREAMRIPPER\wstreamripper.exe
2008-09-15 01:12 - 2008-09-15 01:12 - 01465925 _____ () C:\PROGRAM FILES\STREAMRIPPER\libiconv-2.dll
2008-09-15 01:12 - 2008-09-15 01:12 - 00490650 _____ () C:\PROGRAM FILES\STREAMRIPPER\libintl-8.dll
2009-03-31 05:10 - 2009-03-31 05:10 - 00200704 _____ () C:\PROGRAM FILES\STREAMRIPPER\streamripper.dll
2005-12-31 17:18 - 2005-12-31 17:18 - 00040960 _____ () C:\PROGRAM FILES\STREAMRIPPER\ogg.dll
2005-12-31 17:15 - 2005-12-31 17:15 - 01150976 _____ () C:\PROGRAM FILES\STREAMRIPPER\vorbis.dll
2008-11-26 22:28 - 2008-11-26 22:28 - 00059904 _____ () C:\PROGRAM FILES\STREAMRIPPER\zlib1.dll
2014-02-21 19:39 - 2014-02-21 19:39 - 16265096 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupfolder: C:^Users^Stefan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Ross-Tech VCDS DRV Updater.lnk => C:\Windows\pss\Ross-Tech VCDS DRV Updater.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/21/2014 06:23:17 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/21/2014 05:41:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/21/2014 05:40:21 PM) (Source: RalinkRegistryWriter) (User: )
Description: RalinkRegistryWriter error: 231Unable to create named pipe
Error: (02/16/2014 00:06:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/16/2014 00:06:18 PM) (Source: RalinkRegistryWriter) (User: )
Description: RalinkRegistryWriter error: 231Unable to create named pipe
Error: (02/09/2014 00:44:12 PM) (Source: Microsoft-Windows-RestartManager) (User: Stefan-PC)
Description: Die Anwendung oder der Dienst "distnoted" konnte nicht heruntergefahren werden.
Error: (02/09/2014 00:44:12 PM) (Source: Microsoft-Windows-RestartManager) (User: Stefan-PC)
Description: Die Anwendung oder der Dienst "SyncServer" konnte nicht heruntergefahren werden.
Error: (02/09/2014 11:17:23 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/08/2014 07:47:46 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/08/2014 05:42:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (02/21/2014 05:40:52 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
Error: (02/21/2014 05:40:21 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "RalinkRegistryWriter" wurde mit folgendem Fehler beendet:
%%231
Error: (02/16/2014 00:06:48 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
Error: (02/16/2014 00:06:18 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "RalinkRegistryWriter" wurde mit folgendem Fehler beendet:
%%231
Error: (02/08/2014 05:47:48 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 109.61.0.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.4.0304.00
Quellpfad: 4.4.0304.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (02/08/2014 05:47:05 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.165.2064.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.4.0304.00
Quellpfad: 4.4.0304.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (02/08/2014 05:47:05 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.165.2064.0
Aktualisierungsquelle: %NT-AUTORITÄT51
Aktualisierungsphase: 4.4.0304.00
Quellpfad: 4.4.0304.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\NETZWERKDIENST
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (02/08/2014 05:46:33 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.165.2064.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.4.0304.00
Quellpfad: 4.4.0304.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (02/08/2014 05:42:06 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
Error: (02/08/2014 05:41:34 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "RalinkRegistryWriter" wurde mit folgendem Fehler beendet:
%%231
Microsoft Office Sessions:
=========================
Error: (02/21/2014 06:23:17 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\ross-tech\vcds-drv 11.11.5\Drivers\DPInst_x64.exe
Error: (02/21/2014 05:41:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/21/2014 05:40:21 PM) (Source: RalinkRegistryWriter)(User: )
Description: RalinkRegistryWriter error: 231Unable to create named pipe
Error: (02/16/2014 00:06:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/16/2014 00:06:18 PM) (Source: RalinkRegistryWriter)(User: )
Description: RalinkRegistryWriter error: 231Unable to create named pipe
Error: (02/09/2014 00:44:12 PM) (Source: Microsoft-Windows-RestartManager)(User: Stefan-PC)
Description: 1C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exedistnoted0511760280
Error: (02/09/2014 00:44:12 PM) (Source: Microsoft-Windows-RestartManager)(User: Stefan-PC)
Description: 1C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer.exeSyncServer0511748160
Error: (02/09/2014 11:17:23 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\ross-tech\vcds-drv 11.11.5\Drivers\DPInst_x64.exe
Error: (02/08/2014 07:47:46 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\ross-tech\vcds-drv 11.11.5\Drivers\DPInst_x64.exe
Error: (02/08/2014 05:42:07 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
==================== Memory info ===========================
Percentage of memory in use: 63%
Total physical RAM: 3071.16 MB
Available physical RAM: 1119.75 MB
Total Pagefile: 6140.6 MB
Available Pagefile: 3968.68 MB
Total Virtual: 2047.88 MB
Available Virtual: 1918.95 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:97.65 GB) (Free:53.42 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:7.8 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: C1F1C1F1)
Partition: GPT Partition Type.
==================== End Of Log ============================ Grüße |