|
Log-Analyse und Auswertung: LAN Verbindung fällt aus oder ist extrem langsamWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
07.09.2013, 11:45 | #1 |
| LAN Verbindung fällt aus oder ist extrem langsam Hallo zusammen Auf meinem Laptop fällt die LAN Verbindung in der Schule in unregelmäßigen Abständen immer wieder raus oder ist extrem langsam. Komisch ist, dass es nur mir passiert und den anderen nicht. Könnte es sein, dass ich mir einen Trojaner eingefangen habe. Der Virenscanner meldet keinen Fund, doch auf die sollte man sich sowieso nicht 100% drauf verlassen Auch das Programm System Explorer hat keinen "bösen" Task gefunden. Hier mal den OTL-Logfile Ich hoffe ihr könnt mir helfen lukbu |
07.09.2013, 12:26 | #2 |
/// the machine /// TB-Ausbilder | LAN Verbindung fällt aus oder ist extrem langsam hi,
__________________So funktioniert es: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
07.09.2013, 12:29 | #3 |
| LAN Verbindung fällt aus oder ist extrem langsam Hallo schrauber
__________________Die Logdatei ist zu gross für den Code Tag. Habe es schon probiert. |
07.09.2013, 12:30 | #4 |
/// the machine /// TB-Ausbilder | LAN Verbindung fällt aus oder ist extrem langsam Logs zur Not in Häppchen teilen, kannst auch mehrere Posts verwenden.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
07.09.2013, 12:32 | #5 |
| LAN Verbindung fällt aus oder ist extrem langsam Okei Code:
ATTFilter OTL logfile created on: 07.09.2013 10:40:53 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lukas\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16660) Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy 7.89 Gb Total Physical Memory | 5.94 Gb Available Physical Memory | 75.25% Memory free 9.08 Gb Paging File | 6.97 Gb Available in Paging File | 76.77% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 909.58 Gb Total Space | 830.12 Gb Free Space | 91.26% Space Free | Partition Type: NTFS Drive D: | 21.16 Gb Total Space | 2.58 Gb Free Space | 12.21% Space Free | Partition Type: NTFS Computer Name: LUKAS-PC | User Name: Lukas | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013.09.07 10:40:07 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Lukas\Downloads\OTL.exe PRC - [2013.09.04 09:29:31 | 000,078,352 | ---- | M] (cyberlink) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe PRC - [2013.09.02 22:35:59 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe PRC - [2013.08.12 19:05:21 | 001,104,384 | ---- | M] (Spotify Ltd) -- C:\Users\Lukas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe PRC - [2013.08.07 13:59:08 | 000,384,840 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe PRC - [2013.08.07 11:42:30 | 004,308,320 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe PRC - [2013.05.21 06:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe PRC - [2013.03.26 11:50:24 | 001,619,704 | ---- | M] (IVT Corporation) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe PRC - [2013.02.27 14:22:42 | 001,260,320 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2013.02.07 09:20:20 | 001,641,768 | ---- | M] (HP) -- C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe PRC - [2013.02.07 09:20:08 | 003,695,912 | ---- | M] (AuthenTec Inc.) -- C:\Program Files (x86)\HP SimplePass\TouchControl.exe PRC - [2013.02.07 09:19:54 | 004,073,768 | ---- | M] () -- C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe PRC - [2013.01.10 13:23:30 | 000,379,904 | ---- | M] (IVT Corporation) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe PRC - [2012.11.05 16:14:34 | 001,343,904 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe PRC - [2012.10.12 14:16:50 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe PRC - [2012.10.12 08:25:38 | 000,024,064 | ---- | M] () -- C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe PRC - [2012.09.28 05:42:26 | 000,014,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2012.09.07 18:33:08 | 000,581,024 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe PRC - [2012.09.07 18:33:08 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe PRC - [2012.07.20 12:09:42 | 000,193,576 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\irstrtsv.exe PRC - [2012.07.18 03:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2012.07.18 03:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2012.07.18 03:10:24 | 000,128,896 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe PRC - [2012.07.18 03:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe PRC - [2012.07.13 16:27:00 | 000,769,432 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe PRC - [2012.03.28 18:34:30 | 000,091,432 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe ========== Modules (No Company Name) ========== MOD - [2013.09.02 22:35:56 | 000,410,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll MOD - [2013.09.02 22:35:54 | 004,053,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll MOD - [2013.09.02 22:35:04 | 000,709,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\libglesv2.dll MOD - [2013.09.02 22:35:03 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\libegl.dll MOD - [2013.09.02 22:35:01 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll MOD - [2013.09.01 00:16:37 | 007,668,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bf79dc748f187431fce4dcb3eb716ad5\System.Xml.ni.dll MOD - [2013.09.01 00:16:32 | 012,893,184 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\1239bc9fb73b60a657dc7eb7e1c97f62\System.Windows.Forms.ni.dll MOD - [2013.09.01 00:16:04 | 001,645,056 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\01a7d653fb0a6b7739c66f7134414522\System.Drawing.ni.dll MOD - [2013.09.01 00:15:35 | 006,980,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\46be6f0a1ad909920b65f2576fd9da1f\System.Core.ni.dll MOD - [2013.09.01 00:15:31 | 010,067,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\0e18c76d5aba344757fc440f5475911f\System.ni.dll MOD - [2013.09.01 00:15:25 | 016,927,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\f1e2e31220d2cf2be4b52998c55b319a\mscorlib.ni.dll MOD - [2013.09.01 00:15:25 | 000,198,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CustomMarshalers\5498c5e6ed5900e763535f2ca204282b\CustomMarshalers.ni.dll MOD - [2013.07.22 19:49:12 | 000,065,264 | ---- | M] () -- C:\Programme\TortoiseSVN\bin\TortoiseStub32.dll MOD - [2013.07.22 19:49:00 | 000,070,896 | ---- | M] () -- C:\Programme\TortoiseSVN\bin\libsasl32.dll MOD - [2013.02.07 09:19:54 | 004,073,768 | ---- | M] () -- C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe MOD - [2013.01.31 17:04:00 | 000,070,904 | ---- | M] () -- C:\Windows\SysWOW64\BsProfileFunc.dll MOD - [2013.01.10 12:59:24 | 000,019,456 | ---- | M] () -- C:\Windows\SysWOW64\BsTrace.dll MOD - [2013.01.10 11:25:58 | 000,353,280 | ---- | M] () -- C:\Windows\SysWOW64\BsExtendFunc.dll MOD - [2013.01.10 11:25:56 | 000,011,264 | ---- | M] () -- C:\Windows\SysWOW64\SCChangeMonitor.dll MOD - [2012.05.30 08:51:08 | 000,699,280 | R--- | M] () -- C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\wincfi39.dll ========== Services (SafeList) ========== SRV:64bit: - [2013.06.25 00:54:45 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2013.06.01 11:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2013.05.04 08:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2013.05.04 08:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2013.04.21 05:39:25 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2013.04.09 06:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2013.03.02 04:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:64bit: - [2013.03.02 04:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2013.01.10 01:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2013.01.10 01:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2012.11.07 03:38:51 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2012.11.07 03:38:31 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService) SRV:64bit: - [2012.09.24 13:40:56 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv) SRV:64bit: - [2012.09.06 01:47:02 | 000,028,160 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\valWBFPolicyService.exe -- (valWBFPolicyService) SRV:64bit: - [2012.07.26 05:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2012.07.26 05:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2012.07.26 05:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2012.07.26 05:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2012.07.26 05:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2012.07.26 05:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2012.07.26 05:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2012.07.26 05:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2012.07.26 05:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2012.07.26 05:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent) SRV:64bit: - [2012.07.26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:64bit: - [2012.07.26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2012.07.26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2012.07.26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:64bit: - [2012.07.26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2012.07.26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV - [2013.09.03 19:13:46 | 000,323,072 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Programme\IDT\WDM\stacsv64.exe -- (STacSV) SRV - [2013.08.14 19:55:29 | 000,117,656 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013.08.07 13:59:08 | 000,384,840 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe -- (BstHdLogRotatorSvc) SRV - [2013.08.07 13:58:48 | 000,393,032 | ---- | M] (BlueStack Systems, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\BlueStacks\HD-Service.exe -- (BstHdAndroidSvc) SRV - [2013.08.07 11:42:30 | 004,308,320 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8) SRV - [2013.06.16 19:20:18 | 000,087,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe -- (VsEtwService120) SRV - [2013.05.21 06:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe -- (NIS) SRV - [2013.04.21 05:39:25 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2013.04.12 02:28:00 | 000,423,424 | ---- | M] () [Auto | Running] -- C:\Programme\Synergy\synergyd.exe -- (Synergy) SRV - [2013.03.26 11:50:24 | 001,619,704 | ---- | M] (IVT Corporation) [Auto | Running] -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe -- (BlueSoleilCS) SRV - [2013.02.27 14:22:42 | 001,260,320 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2013.02.07 09:20:20 | 001,641,768 | ---- | M] (HP) [Auto | Running] -- C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe -- (FPLService) SRV - [2013.01.10 13:35:28 | 000,138,752 | ---- | M] (IVT Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe -- (BsHelpCS) SRV - [2013.01.07 23:31:42 | 000,401,856 | ---- | M] (AuthenTec, Inc.) [On_Demand | Stopped] -- C:\Programme\Common Files\AuthenTec\TrueService.exe -- (TrueService) SRV - [2012.11.25 06:13:12 | 000,821,720 | ---- | M] (Mister Group) [On_Demand | Stopped] -- C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe -- (SystemExplorerHelpService) SRV - [2012.10.20 00:19:30 | 000,130,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter) SRV - [2012.10.12 18:22:08 | 000,035,744 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe -- (HPConnectedRemote) SRV - [2012.10.12 08:25:38 | 000,024,064 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe -- (OpenVPNAccessClient) SRV - [2012.09.28 05:42:26 | 000,014,904 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV - [2012.09.27 12:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe -- (HP Support Assistant Service) SRV - [2012.09.25 13:35:10 | 000,276,288 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs) SRV - [2012.09.07 18:33:08 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC) SRV - [2012.07.26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc) SRV - [2012.07.26 05:18:41 | 000,408,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS) SRV - [2012.07.26 05:17:52 | 000,060,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc) SRV - [2012.07.25 04:00:08 | 002,457,232 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R) SRV - [2012.07.20 12:09:42 | 000,193,576 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysWOW64\irstrtsv.exe -- (irstrtsv) SRV - [2012.07.18 03:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2012.07.18 03:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2012.07.18 03:10:24 | 000,128,896 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R) SRV - [2012.07.18 03:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service) SRV - [2012.07.16 16:54:08 | 000,244,752 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe -- (CLKMSVC10_38F51D56) SRV - [2012.07.13 16:27:00 | 000,769,432 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2012.04.20 14:16:12 | 000,635,104 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Programme\Intel\iCLS Client\HeciServer.exe -- (Intel(R) Code:
ATTFilter ========== Driver Services (SafeList) ========== DRV:64bit: - [2013.09.03 19:13:46 | 000,542,208 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\stwrt64.sys -- (STHDA) DRV:64bit: - [2013.08.28 11:43:26 | 000,231,376 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\truecrypt.sys -- (truecrypt) DRV:64bit: - [2013.08.07 11:57:01 | 000,177,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS -- (SymEvent) DRV:64bit: - [2013.07.09 10:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101) DRV:64bit: - [2013.07.04 15:57:00 | 000,131,856 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\VBoxNetAdp.sys -- (VBoxNetAdp) DRV:64bit: - [2013.07.02 02:44:14 | 000,036,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot) DRV:64bit: - [2013.07.02 00:08:49 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter) DRV:64bit: - [2013.06.29 08:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2013.06.10 23:17:46 | 000,096,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS) DRV:64bit: - [2013.06.01 13:29:35 | 000,337,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI) DRV:64bit: - [2013.06.01 13:29:35 | 000,213,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000) DRV:64bit: - [2013.06.01 05:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Unknown (0) | Disabled | Unknown] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV:64bit: - [2013.05.23 07:25:28 | 001,139,800 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symefa64.sys -- (SymEFA) DRV:64bit: - [2013.05.21 07:02:00 | 000,493,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symds64.sys -- (SymDS) DRV:64bit: - [2013.05.16 07:02:14 | 000,796,760 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\srtsp64.sys -- (SRTSP) DRV:64bit: - [2013.05.04 09:34:17 | 000,446,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3) DRV:64bit: - [2013.05.04 09:34:15 | 000,284,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport) DRV:64bit: - [2013.04.25 02:43:56 | 000,433,752 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symnets.sys -- (SymNetS) DRV:64bit: - [2013.04.21 05:39:25 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM) DRV:64bit: - [2013.04.21 05:35:18 | 000,058,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam) DRV:64bit: - [2013.04.21 05:35:18 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor) DRV:64bit: - [2013.04.21 05:25:55 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2013.04.16 04:41:14 | 000,169,048 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\ccsetx64.sys -- (ccSet_NIS) DRV:64bit: - [2013.04.15 07:02:04 | 002,482,960 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\netr28x.sys -- (netr28x) DRV:64bit: - [2013.03.25 14:41:46 | 000,076,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\dc3d.sys -- (dc3d) DRV:64bit: - [2013.03.25 11:03:44 | 000,049,584 | ---- | M] (Ralink Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IvtUrbBtFlt.sys -- (btUrbFilterDrv) DRV:64bit: - [2013.03.09 06:53:10 | 001,149,232 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rtbth.sys -- (rtbth) DRV:64bit: - [2013.03.05 03:40:08 | 000,224,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\ironx64.sys -- (SymIRON) DRV:64bit: - [2013.03.05 03:21:35 | 000,036,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\srtspx64.sys -- (SRTSPX) DRV:64bit: - [2013.03.02 12:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci) DRV:64bit: - [2013.03.02 12:45:20 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM) DRV:64bit: - [2013.03.02 12:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc) DRV:64bit: - [2013.02.27 14:22:40 | 000,030,496 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\nvpciflt.sys -- (nvpciflt) DRV:64bit: - [2013.01.11 19:02:34 | 000,064,624 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64) DRV:64bit: - [2013.01.10 03:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32) DRV:64bit: - [2012.12.13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64) DRV:64bit: - [2012.11.27 05:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Unknown (0) | Disabled | Unknown] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid) DRV:64bit: - [2012.11.20 06:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c) DRV:64bit: - [2012.11.07 03:38:28 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2012.11.07 03:38:28 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2012.09.28 20:37:04 | 000,650,808 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA) DRV:64bit: - [2012.09.25 00:13:30 | 005,338,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx) DRV:64bit: - [2012.09.24 13:40:56 | 000,043,840 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Accelerometer.sys -- (Accelerometer) DRV:64bit: - [2012.09.24 13:40:56 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\hpdskflt.sys -- (hpdskflt) DRV:64bit: - [2012.08.31 09:40:24 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver) DRV:64bit: - [2012.08.28 20:33:50 | 000,448,312 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SynTP.sys -- (SynTP) DRV:64bit: - [2012.08.09 05:17:50 | 000,273,040 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RtsP2Stor.sys -- (RSP2STOR) DRV:64bit: - [2012.07.26 07:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012.07.26 07:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv) DRV:64bit: - [2012.07.26 07:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID) DRV:64bit: - [2012.07.26 07:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt) DRV:64bit: - [2012.07.26 07:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor) DRV:64bit: - [2012.07.26 07:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex) DRV:64bit: - [2012.07.26 07:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis) DRV:64bit: - [2012.07.26 07:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2012.07.26 07:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2012.07.26 07:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS) DRV:64bit: - [2012.07.26 07:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2012.07.26 07:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV:64bit: - [2012.07.26 07:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass) DRV:64bit: - [2012.07.26 07:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2012.07.26 07:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware) DRV:64bit: - [2012.07.26 07:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2012.07.26 07:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2012.07.26 06:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS) DRV:64bit: - [2012.07.26 06:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci) DRV:64bit: - [2012.07.26 05:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt) DRV:64bit: - [2012.07.26 04:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf) DRV:64bit: - [2012.07.26 04:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay) DRV:64bit: - [2012.07.26 04:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo) DRV:64bit: - [2012.07.26 04:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender) DRV:64bit: - [2012.07.26 04:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter) DRV:64bit: - [2012.07.26 04:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic) DRV:64bit: - [2012.07.26 04:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime) DRV:64bit: - [2012.07.26 04:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig) DRV:64bit: - [2012.07.26 04:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV:64bit: - [2012.07.26 04:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr) DRV:64bit: - [2012.07.26 04:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd) DRV:64bit: - [2012.07.26 04:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx) DRV:64bit: - [2012.07.26 04:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx) DRV:64bit: - [2012.07.26 04:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2012.07.26 04:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Unknown (0) | Disabled | Unknown] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum) DRV:64bit: - [2012.07.26 04:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2012.07.26 04:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2012.07.26 04:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr) DRV:64bit: - [2012.07.26 04:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum) DRV:64bit: - [2012.07.26 04:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV:64bit: - [2012.07.26 04:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp) DRV:64bit: - [2012.07.26 04:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu) DRV:64bit: - [2012.07.21 03:09:40 | 000,043,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\irstrtdv.sys -- (irstrtdv) DRV:64bit: - [2012.07.19 17:47:40 | 000,056,904 | ---- | M] (Ralink Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BtL2caScoIf.sys -- (BthL2caScoIfSrv) DRV:64bit: - [2012.07.15 11:48:16 | 000,030,720 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tapoas.sys -- (tapoas) DRV:64bit: - [2012.06.20 23:27:30 | 000,023,448 | R--- | M] (Symantec Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symelam.sys -- (SymELAM) DRV:64bit: - [2012.06.20 08:40:52 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud) DRV:64bit: - [2012.06.15 11:22:02 | 000,023,136 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BtAudioBus.sys -- (BtAudioBusSrv) DRV:64bit: - [2012.06.13 07:41:22 | 000,683,664 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168) DRV - [2013.08.29 08:30:55 | 002,099,288 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130905.033\ex64.sys -- (NAVEX15) DRV - [2013.08.29 08:30:55 | 000,126,040 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130905.033\eng64.sys -- (NAVENG) DRV - [2013.08.27 08:33:00 | 000,484,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl) DRV - [2013.08.27 08:33:00 | 000,140,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) DRV - [2013.08.21 08:31:25 | 000,520,280 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130905.001\IDSviA64.sys -- (IDSVia64) DRV - [2013.08.07 13:59:00 | 000,070,984 | ---- | M] (BlueStack Systems) [Kernel | Auto | Running] -- C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys -- (BstHdDrv) DRV - [2013.07.15 22:58:54 | 001,393,240 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130715.001\BHDrvx64.sys -- (BHDrvx64) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/12 IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS IE:64bit: - HKLM\..\SearchScopes\{349A6732-EC44-4324-8111-A4D08FD243E8}: "URL" = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} IE:64bit: - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/12 IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS IE - HKLM\..\SearchScopes\{349A6732-EC44-4324-8111-A4D08FD243E8}: "URL" = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON13/12 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPCON13/12 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/12 IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS IE - HKCU\..\SearchScopes\{349A6732-EC44-4324-8111-A4D08FD243E8}: "URL" = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} IE - HKCU\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Startpage HTTPS - Deutsch" FF - prefs.js..browser.search.selectedEngine: "Startpage HTTPS - Deutsch" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "https://startpage.com/" FF - prefs.js..extensions.enabledAddons: omnibar%40ajitk.com:0.7.19.20130418 FF - prefs.js..extensions.enabledAddons: openwith%40darktrojan.net:5.3.1 FF - prefs.js..extensions.enabledAddons: %7B20068ab2-1901-4140-9f3c-81207d4dacc4%7D:4.4 FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.7.1 FF - prefs.js..extensions.enabledAddons: %7Bd40f5e7b-d2cf-4856-b441-cc613eeffbe3%7D:1.68 FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:1.11 FF - prefs.js..extensions.enabledAddons: %7B3d2ee42e-a6d9-4888-bd17-2148dc7928d7%7D:4.8.9 FF - prefs.js..network.proxy.type: 1 FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\@authentec.com/ffwloplugin: C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll ( HP) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\pokki.com/PokkiDownloadHelper: C:\Users\Lukas\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn\ [2013.08.05 09:05:11 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn\ [2013.09.07 10:40:35 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.08.17 11:19:08 | 000,000,000 | ---D | M] [2013.08.05 12:31:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\Extensions [2013.09.05 22:14:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\Firefox\Profiles\q0xyzj26.default\extensions [2013.08.09 10:51:55 | 000,000,000 | ---D | M] (Reader) -- C:\Users\Lukas\AppData\Roaming\mozilla\Firefox\Profiles\q0xyzj26.default\extensions\{20068ab2-1901-4140-9f3c-81207d4dacc4} [2013.09.05 22:14:23 | 000,000,000 | ---D | M] (BittorrentBar_DE) -- C:\Users\Lukas\AppData\Roaming\mozilla\Firefox\Profiles\q0xyzj26.default\extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4} [2013.08.20 08:18:52 | 000,000,000 | ---D | M] (BlackFox V2-Blue) -- C:\Users\Lukas\AppData\Roaming\mozilla\Firefox\Profiles\q0xyzj26.default\extensions\zigboom.designs@gmail.com [2013.08.18 21:49:33 | 000,048,128 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\extensions\firegloves@fingerprint.pet-portal.eu.xpi [2013.08.09 10:51:55 | 000,069,103 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\extensions\omnibar@ajitk.com.xpi [2013.08.09 10:51:55 | 000,091,162 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\extensions\openwith@darktrojan.net.xpi [2013.08.20 08:18:47 | 003,591,418 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\extensions\{3d2ee42e-a6d9-4888-bd17-2148dc7928d7}.xpi [2013.08.15 14:07:26 | 000,534,203 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013.08.09 10:51:52 | 000,138,614 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2013.08.09 10:51:52 | 000,275,449 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013.08.17 21:58:32 | 000,699,775 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2013.09.05 16:57:12 | 000,005,725 | ---- | M] () -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\q0xyzj26.default\searchplugins\startpage-https---deutsch.xml [2013.09.01 01:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions [2013.09.01 01:02:31 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.06.13 20:45:26 | 000,034,048 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}, CHR - homepage: hxxp://google.ch/ CHR - plugin: Shockwave Flash (Disabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll CHR - plugin: Microsoft Office 2013 (Enabled) = C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL CHR - plugin: Foxit Reader Plugin for Mozilla (Disabled) = C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - plugin: Simple Pass (Disabled) = C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll CHR - plugin: Microsoft Office 2013 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll CHR - plugin: Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: Pokki Download Helper (Disabled) = C:\Users\Lukas\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll CHR - Extension: QR-Code Sch\u00F6pfer = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaephdgbinagkeepamlbkhkfbiaedabm\1.5_0\ CHR - Extension: BIODIGITAL HUMAN = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak\0.9.5_0\ CHR - Extension: Beat the Boot (von Google) = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aidgmjkfmbhldhnhkopojimkhhhcpenl\1.0.0.1_0\ CHR - Extension: Angry Birds = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\ CHR - Extension: Google Docs = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\ CHR - Extension: Google Docs = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google Drive = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\ CHR - Extension: Google Drive = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: YouTube = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Facebook = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm\1.0.3_0\ CHR - Extension: Adblock Plus = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.4_0\ CHR - Extension: Adblock Plus = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.5_0\ CHR - Extension: Spotify - Music for every moment = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh\0.2.3_0\ CHR - Extension: Google-Suche = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Google-Suche = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: Tampermonkey = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.3.3487_0\ CHR - Extension: Tampermonkey = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.4.3568.10_0\ CHR - Extension: Tampermonkey = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.4.3568_0\ CHR - Extension: Greybird = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\djhdibfheaidnhfnhhnmdngcmjpicpkn\1.1_0\ CHR - Extension: Pixlr-o-matic = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj\1.2_0\ CHR - Extension: Gmail offline = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk\1.20_0\ CHR - Extension: Facebook Disconnect = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpepffjfmamnambagiibghpglaidiec\1.3.0_0\ CHR - Extension: CHIP Online = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd\1.5_0\ CHR - Extension: Wunderlist = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc\2.2.0_0\ CHR - Extension: HTTPS Everywhere = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp\2013.8.17_0\ CHR - Extension: The QR Code Generator = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb\0.2.4_0\ CHR - Extension: Clock = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoihofapbdnldlhecnhefifbcddgdkhm\1.2_0\ CHR - Extension: Knok | Home exchange = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\iehdddmijbgofffjjmhkodckmnombhmf\3.1_0\ CHR - Extension: Disconnect = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo\5.7.1_0\ CHR - Extension: QR Code Generator = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipkebailemnkpembllbmkeobjhgmikl\1.1_0\ CHR - Extension: Gmail Blue = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\keiffooocjpcgkpojchelkgnjmmjlbgc\0.4_0\ CHR - Extension: Google Play = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0\ CHR - Extension: Google Maps = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0\ CHR - Extension: Google Dictionary (by Google) = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja\3.0.19_0\ CHR - Extension: Google Mail-Checker = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\ CHR - Extension: Norton Identity Protection = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.0.10_0\ CHR - Extension: ruul. Screen ruler = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlbnpnlmfngmlcmkhjpbfokdphfehhjj\5.6.7_0\ CHR - Extension: ruul. Screen ruler = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlbnpnlmfngmlcmkhjpbfokdphfehhjj\6.0.1_0\ CHR - Extension: ruul. Screen ruler = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlbnpnlmfngmlcmkhjpbfokdphfehhjj\6.0.2_0\ CHR - Extension: ruul. Screen ruler = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlbnpnlmfngmlcmkhjpbfokdphfehhjj\6.0.3_0\ CHR - Extension: Sumon = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nddpmdmpdcbnnkjfplckngdkhhmmbjaf\1.0.0.3_0\ CHR - Extension: feedly = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndhinffkekpekljifjkkkkkhopnjodja\18.1_0\ CHR - Extension: Facebook Notifications = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.27_0\ CHR - Extension: Chrome In-App Payments service = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\ CHR - Extension: NotScripts = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\odjhifogjcknibkahlpidmdajjpkkcfn\0.9.6_0\ CHR - Extension: Google Mail = C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012.07.26 07:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts O2:64bit: - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Programme\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation) O2:64bit: - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Programme\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation) O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard) O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation) O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Programme\IDT\WDM\sttray64.exe (IDT, Inc.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe (cyberlink) O4 - HKLM..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe (BlueStack Systems, Inc.) O4 - HKLM..\Run: [BtTray] C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe (IVT Corporation) O4 - HKLM..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (Hewlett-Packard Development Company, L.P.) O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.) O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.) O4 - HKLM..\Run: [SystemExplorerAutoStart] C:\Program Files (x86)\System Explorer\SystemExplorer.exe (Mister Group) O4 - HKCU..\Run: [BitTorrent] C:\Users\Lukas\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.) O4 - HKCU..\Run: [GoogleChromeAutoLaunch_B6C7B4C7C18B76F63DA55B9EF3CCA3DA] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) O4 - HKCU..\Run: [Spotify] C:\Users\Lukas\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd) O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Lukas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd) O4 - HKCU..\Run: [StartMenuX] C:\Programme\Start Menu X\StartMenuX.exe (OrdinarySoft) O4 - Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk = C:\Programme\Rainmeter\Rainmeter.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105 File not found O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000 File not found O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105 File not found O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000 File not found O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra Button: Lync: Anruf per Mausklick - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Programme\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Lync: Anruf per Mausklick - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Programme\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard) O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4E1F46EF-827F-47F5-9718-742D3E9FB69E}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BE78FD00-381F-4412-86F5-17D39E9A2859}: DhcpNameServer = 192.168.2.10 192.168.2.11 O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\osf - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\skype4com.dll (Skype Technologies) O18:64bit: - Protocol\Filter\text/xml {807583E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation) O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.09.06 19:38:21 | 000,000,000 | ---D | C] -- C:\Program Files\Synergy [2013.09.05 22:14:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Optimizer Pro [2013.09.05 22:13:34 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\BitTorrent [2013.09.05 21:54:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Canneverbe Limited [2013.09.05 21:54:27 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Canneverbe Limited [2013.09.05 21:54:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CDBurnerXP [2013.09.05 21:45:02 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Nero_AG [2013.09.05 21:44:35 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Nero [2013.09.05 21:43:50 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Nero [2013.09.05 21:38:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero [2013.09.05 21:38:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero [2013.09.05 21:38:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero [2013.09.05 21:38:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero [2013.09.05 10:45:28 | 000,000,000 | ---D | C] -- C:\Users\Lukas\.MCReferenceSdk [2013.09.05 10:44:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightworks [2013.09.05 10:44:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Geevs [2013.09.05 10:44:00 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Lightworks [2013.09.05 10:42:56 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll [2013.09.05 10:42:56 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll [2013.09.05 10:42:54 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll [2013.09.05 10:42:54 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll [2013.09.05 10:42:53 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll [2013.09.05 10:42:53 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll [2013.09.05 10:42:52 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll [2013.09.05 10:42:52 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll [2013.09.05 10:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\Lightworks [2013.09.05 10:35:01 | 000,262,144 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll [2013.09.05 10:35:01 | 000,086,016 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll [2013.09.05 08:41:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN [2013.09.04 09:10:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PapDesigner [2013.09.04 09:10:36 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\PapDesigner [2013.09.04 09:10:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PapDesigner [2013.09.03 22:20:18 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\bluesoleil [2013.09.03 19:14:14 | 000,542,208 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\drivers\stwrt64.sys [2013.09.03 19:14:13 | 002,188,800 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapo64.dll [2013.09.03 19:14:13 | 000,671,744 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stapi64.dll [2013.09.03 19:14:13 | 000,499,200 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\stcplx64.dll [2013.09.03 19:14:13 | 000,255,488 | ---- | C] (IDT, Inc.) -- C:\Windows\SysNative\st646425.dll [2013.09.03 19:14:10 | 000,000,000 | ---D | C] -- C:\Program Files\IDT [2013.09.03 19:10:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Ralink Bluetooth Stack [2013.09.03 19:10:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ralink Corporation [2013.09.02 20:14:05 | 000,000,000 | ---D | C] -- C:\ProgramData\SystemExplorer [2013.09.02 20:14:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer [2013.09.02 20:14:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\System Explorer [2013.09.01 12:03:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2013.09.01 12:03:03 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2013.09.01 01:02:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service [2013.08.31 23:56:41 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\NuGet [2013.08.31 23:41:01 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\TeamViewer [2013.08.31 23:40:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer [2013.08.31 23:31:13 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Documents\Visual Studio 2013 [2013.08.31 23:30:31 | 000,000,000 | ---D | C] -- C:\ProgramData\NuGet [2013.08.31 23:30:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NuGet [2013.08.31 23:01:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Merge Modules [2013.08.31 22:56:04 | 000,000,000 | ---D | C] -- C:\Windows\symbols [2013.08.31 22:42:10 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\enchant [2013.08.31 22:42:09 | 000,000,000 | ---D | C] -- C:\Users\Lukas\.bluefish [2013.08.31 22:32:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits [2013.08.31 22:32:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Kits [2013.08.31 22:32:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Microsoft [2013.08.31 22:15:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2013 [2013.08.31 22:15:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2013 Express [2013.08.31 22:13:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Help Viewer [2013.08.31 22:13:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs [2013.08.31 22:05:41 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\1033 [2013.08.31 22:05:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\1033 [2013.08.31 22:05:41 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\1031 [2013.08.31 22:05:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\1031 [2013.08.31 21:59:50 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server [2013.08.31 21:55:26 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition [2013.08.31 21:54:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 12.0 [2013.08.31 21:52:49 | 000,028,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aspnet_counters.dll [2013.08.31 21:52:39 | 000,030,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aspnet_counters.dll [2013.08.31 21:38:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluefish [2013.08.31 21:38:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bluefish [2013.08.31 10:52:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu X [2013.08.31 10:52:32 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\StartMenuX [2013.08.31 10:52:32 | 000,000,000 | ---D | C] -- C:\ProgramData\StartMenuX [2013.08.31 10:52:32 | 000,000,000 | ---D | C] -- C:\Program Files\Start Menu X [2013.08.30 23:59:25 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\ClassicShell [2013.08.29 22:44:06 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\KDE [2013.08.29 22:43:17 | 000,000,000 | ---D | C] -- C:\ProgramData\KDE [2013.08.29 11:46:24 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Deployment [2013.08.29 11:46:24 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Apps [2013.08.28 11:44:03 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\TrueCrypt [2013.08.28 11:43:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt [2013.08.28 11:43:26 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt [2013.08.28 11:38:19 | 000,231,376 | ---- | C] (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys [2013.08.28 11:29:02 | 000,000,000 | --SD | C] -- C:\Users\Lukas\Documents\Meine Datenquellen [2013.08.28 09:34:15 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Greenshot [2013.08.28 09:34:15 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Greenshot [2013.08.28 09:34:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Greenshot [2013.08.28 09:34:01 | 000,000,000 | ---D | C] -- C:\Program Files\Greenshot [2013.08.28 09:33:09 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Programs [2013.08.27 19:23:35 | 014,208,000 | ---- | C] (Mobatek) -- C:\Users\Lukas\Desktop\MobaXterm_Personal_6.1.exe [2013.08.27 18:10:51 | 000,000,000 | ---D | C] -- C:\Users\Lukas\VirtualBox VMs [2013.08.26 21:20:56 | 000,000,000 | R--D | C] -- C:\Users\Lukas\Documents\Scanned Documents [2013.08.26 21:20:55 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Documents\Fax [2013.08.24 23:50:48 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Pokki [2013.08.24 11:12:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2013.08.24 11:10:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2013.08.24 11:10:47 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Google [2013.08.23 18:26:24 | 000,000,000 | ---D | C] -- C:\tmp [2013.08.23 16:11:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tina Pro for Windows - Demo [2013.08.23 16:11:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DesignSoft [2013.08.23 16:10:17 | 000,328,704 | ---- | C] (InstallShield Software Corporation ) -- C:\Windows\IsUn0407.exe [2013.08.23 09:54:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GIMP 2 [2013.08.23 09:48:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webocton - Scriptly [2013.08.23 09:48:25 | 000,000,000 | ---D | C] -- C:\Users\Lukas\.thumbnails [2013.08.23 09:48:22 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Webocton - Scriptly [2013.08.23 09:48:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Webocton - Scriptly [2013.08.23 09:48:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blender Foundation [2013.08.23 09:47:36 | 000,000,000 | ---D | C] -- C:\Program Files\Blender Foundation [2013.08.21 21:26:40 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Documents\Rainmeter [2013.08.21 21:26:40 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Rainmeter [2013.08.21 21:26:18 | 000,000,000 | ---D | C] -- C:\Program Files\Rainmeter [2013.08.21 21:26:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2013.08.21 21:23:46 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\WinRAR [2013.08.21 21:23:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2013.08.21 21:23:44 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2013.08.21 21:23:40 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.08.21 19:12:28 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Diagnostics [2013.08.21 19:11:52 | 000,044,032 | ---- | C] (NirSoft) -- C:\Windows\nircmd.exe [2013.08.21 13:17:44 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Documents\Youcam [2013.08.21 11:05:22 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Neuer Ordner [2013.08.20 14:55:09 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Documents\Benutzerdefinierte Office-Vorlagen [2013.08.19 19:31:54 | 002,839,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll [2013.08.19 19:31:54 | 002,273,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll [2013.08.19 19:31:54 | 001,025,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll [2013.08.19 19:31:54 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll [2013.08.19 19:31:53 | 001,300,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll [2013.08.19 19:31:53 | 000,543,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanmm.dll [2013.08.19 19:31:53 | 000,439,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFault.exe [2013.08.19 19:31:53 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanconn.dll [2013.08.19 19:31:53 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.BackgroundTransfer.dll [2013.08.19 19:31:53 | 000,385,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFault.exe [2013.08.19 19:31:53 | 000,381,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FWPUCLNT.DLL [2013.08.19 19:31:53 | 000,370,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wwanadvui.dll [2013.08.19 19:31:53 | 000,327,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys [2013.08.19 19:31:53 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.BackgroundTransfer.dll [2013.08.19 19:31:53 | 000,263,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wcmsvc.dll [2013.08.19 19:31:53 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL [2013.08.19 19:31:53 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSCard.dll [2013.08.19 19:31:53 | 000,195,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys [2013.08.19 19:31:53 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmmbase.dll [2013.08.19 19:31:53 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmmbase.dll [2013.08.19 19:31:53 | 000,125,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys [2013.08.19 19:31:53 | 000,120,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpioclx.sys [2013.08.19 19:31:53 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmm.dll [2013.08.19 19:31:53 | 000,096,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wfplwfs.sys [2013.08.19 19:31:53 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\openfiles.exe [2013.08.19 19:31:53 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wcmcsp.dll [2013.08.19 19:31:52 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshwfp.dll [2013.08.19 19:31:52 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll [2013.08.19 19:31:52 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LocationApi.dll [2013.08.19 19:31:52 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LocationApi.dll [2013.08.19 19:31:52 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\openfiles.exe [2013.08.19 10:42:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxima-5.28.0-2 [2013.08.19 10:42:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Maxima-5.28.0-2 [2013.08.19 10:38:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 4.2 [2013.08.19 10:38:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GeoGebra 4.2 [2013.08.18 21:52:24 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Adobe [2013.08.17 22:43:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip [2013.08.17 22:43:02 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.08.17 11:19:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2013.08.16 22:24:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP270 series [2013.08.16 22:24:09 | 000,000,000 | -H-D | C] -- C:\Windows\SysNative\CanonIJ Uninstaller Information [2013.08.16 22:23:59 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ [2013.08.16 22:23:52 | 000,336,896 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNMLM9X.DLL [2013.08.16 22:23:46 | 001,321,984 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNC270C.dll [2013.08.16 22:23:46 | 000,328,192 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNC270L.dll [2013.08.16 22:23:46 | 000,303,104 | ---- | C] (CANON INC.) -- C:\Windows\SysWow64\CNC270L.dll [2013.08.16 22:23:46 | 000,106,496 | ---- | C] (CANON INC.) -- C:\Windows\SysWow64\CNC270U.dll [2013.08.16 22:23:46 | 000,092,672 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNC270I.dll [2013.08.16 22:23:46 | 000,017,920 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNHMCA6.dll [2013.08.16 22:23:46 | 000,015,872 | ---- | C] (CANON INC.) -- C:\Windows\SysWow64\CNHMCA.dll [2013.08.16 09:00:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader [2013.08.16 09:00:37 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Foxit Software [2013.08.16 09:00:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Foxit Software [2013.08.15 14:37:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\phase5 [2013.08.15 14:37:10 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Phase 5 HTML-Editor [2013.08.15 14:36:40 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Systemberatung Schommer [2013.08.15 10:59:04 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\TSVNCache [2013.08.15 10:57:51 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\TortoiseSVN [2013.08.15 10:50:06 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Subversion [2013.08.15 10:49:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TortoiseSVN [2013.08.15 10:49:37 | 000,000,000 | ---D | C] -- C:\Program Files\TortoiseSVN [2013.08.15 10:49:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\TortoiseOverlays [2013.08.15 10:49:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\TortoiseOverlays [2013.08.14 13:43:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2013.08.14 13:43:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight [2013.08.14 13:43:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2013.08.14 13:17:09 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll [2013.08.14 13:16:51 | 000,247,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdFilter.sys [2013.08.14 13:16:51 | 000,036,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdBoot.sys [2013.08.14 13:16:47 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll [2013.08.14 13:16:47 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013.08.14 13:16:47 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll [2013.08.14 13:16:47 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll [2013.08.14 13:16:47 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013.08.14 13:16:46 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013.08.14 13:16:46 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013.08.14 13:16:46 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013.08.14 13:16:46 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013.08.14 13:16:46 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013.08.14 13:16:45 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013.08.14 13:16:43 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013.08.14 13:16:36 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013.08.14 13:16:36 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013.08.14 13:16:03 | 001,889,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll [2013.08.14 13:16:02 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll [2013.08.14 13:16:02 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apprepapi.dll [2013.08.14 13:16:02 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apprepsync.dll [2013.08.14 13:16:02 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apprepapi.dll [2013.08.14 13:16:02 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apprepsync.dll [2013.08.14 10:54:53 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Identities [2013.08.13 12:01:29 | 000,000,000 | ---D | C] -- C:\sources [2013.08.12 21:51:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT [2013.08.12 21:46:05 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\IDT [2013.08.12 19:15:03 | 000,000,000 | ---D | C] -- C:\Users\Lukas\.VirtualBox [2013.08.12 19:14:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox [2013.08.12 19:14:01 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle [2013.08.12 19:05:25 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Spotify [2013.08.12 19:02:38 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Spotify [2013.08.12 16:21:29 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Desktop\BBB [2013.08.12 15:07:49 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\PrivateTunnel [2013.08.12 15:07:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenVPN Technologies [2013.08.12 14:15:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks [2013.08.12 14:15:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BlueStacks [2013.08.12 14:15:26 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\NVIDIA [2013.08.12 14:15:20 | 000,000,000 | ---D | C] -- C:\ProgramData\BlueStacksSetup [2013.08.12 14:15:20 | 000,000,000 | ---D | C] -- C:\ProgramData\BlueStacks [2013.08.10 13:56:03 | 002,219,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll [2013.08.10 13:56:00 | 006,987,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013.08.10 13:56:00 | 002,391,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2013.08.10 13:56:00 | 002,106,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe [2013.08.10 13:56:00 | 001,842,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll [2013.08.10 13:55:58 | 001,527,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll [2013.08.10 13:55:58 | 001,453,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll [2013.08.10 13:55:58 | 001,403,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi [2013.08.10 13:55:58 | 001,271,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe [2013.08.10 13:55:58 | 001,217,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi [2013.08.10 13:55:58 | 001,093,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe [2013.08.10 13:55:58 | 001,048,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfasfsrcsnk.dll [2013.08.10 13:55:58 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll [2013.08.10 13:55:58 | 000,583,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll [2013.08.10 13:55:58 | 000,523,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2013.08.10 13:55:58 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2013.08.10 13:55:58 | 000,213,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UCX01000.SYS [2013.08.10 13:55:58 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samlib.dll [2013.08.10 13:55:57 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfasfsrcsnk.dll [2013.08.10 13:55:57 | 000,337,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS [2013.08.10 13:55:57 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceSetupManager.dll [2013.08.10 13:55:57 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll [2013.08.10 13:55:57 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MbaeParserTask.exe [2013.08.10 13:55:57 | 000,037,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys [2013.08.10 13:55:04 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll [2013.08.10 13:54:40 | 003,245,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll [2013.08.10 13:54:40 | 001,536,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storagewmi.dll [2013.08.10 13:54:40 | 001,122,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Taskmgr.exe [2013.08.10 13:54:40 | 001,027,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Taskmgr.exe [2013.08.10 13:54:39 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WebcamUi.dll [2013.08.10 13:54:39 | 000,798,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WebcamUi.dll [2013.08.10 13:54:39 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserLanguagesCpl.dll [2013.08.10 13:54:39 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnapps.dll [2013.08.10 13:54:38 | 001,217,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\storagewmi.dll [2013.08.10 13:54:38 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe [2013.08.10 13:54:38 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe [2013.08.10 13:54:38 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserLanguagesCpl.dll [2013.08.10 13:54:38 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpnapps.dll [2013.08.10 13:54:38 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vds_ps.dll [2013.08.10 13:54:05 | 001,184,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll [2013.08.10 13:54:05 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll [2013.08.10 13:54:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDKURD.DLL [2013.08.10 13:54:05 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDKURD.DLL [2013.08.10 13:53:37 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSShared.dll [2013.08.10 13:53:36 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSShared.dll [2013.08.10 13:53:36 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll [2013.08.10 13:53:36 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2013.08.10 13:53:36 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll [2013.08.10 13:53:36 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2013.08.09 13:57:43 | 000,000,000 | R--D | C] -- C:\Windows\BrowserChoice [2013.08.09 10:33:15 | 014,267,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2013.08.09 10:33:15 | 003,552,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll [2013.08.09 10:33:14 | 011,878,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2013.08.09 10:33:13 | 002,107,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll [2013.08.09 10:33:12 | 002,767,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll [2013.08.09 10:33:10 | 001,829,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2013.08.09 10:33:10 | 001,593,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll [2013.08.09 10:33:08 | 001,444,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAudDecMFT.dll [2013.08.09 10:33:08 | 001,113,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAudDecMFT.dll [2013.08.09 10:33:08 | 000,446,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll [2013.08.09 10:33:08 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll [2013.08.09 10:33:08 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe [2013.08.09 10:33:08 | 000,306,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd_02_10ec.dll [2013.08.09 10:33:08 | 000,298,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rsaenh.dll [2013.08.09 10:33:07 | 000,804,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RecoveryDrive.exe [2013.08.09 10:33:07 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll [2013.08.09 10:33:07 | 000,489,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll [2013.08.09 10:33:07 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll [2013.08.09 10:33:07 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll [2013.08.09 10:33:07 | 000,435,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll [2013.08.09 10:33:07 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe [2013.08.09 10:33:07 | 000,253,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe [2013.08.09 10:33:07 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll [2013.08.09 10:32:57 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll [2013.08.09 10:32:57 | 000,659,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll [2013.08.09 10:32:57 | 000,503,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll [2013.08.09 10:32:57 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll [2013.08.09 10:32:57 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll [2013.08.09 10:32:57 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhengine.dll [2013.08.09 10:32:57 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll [2013.08.09 10:32:57 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmvdsitf.dll [2013.08.09 10:32:56 | 000,745,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll [2013.08.09 10:32:56 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GenuineCenter.dll [2013.08.09 10:32:56 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll [2013.08.09 10:32:56 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll [2013.08.09 10:32:56 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iuilp.dll [2013.08.09 10:32:56 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe [2013.08.09 10:32:56 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll [2013.08.09 10:32:56 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmvdsitf.dll [2013.08.09 10:32:56 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll [2013.08.09 10:32:56 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Robocopy.exe [2013.08.09 10:32:56 | 000,123,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll [2013.08.09 10:32:56 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Robocopy.exe [2013.08.09 10:32:56 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll [2013.08.09 10:32:56 | 000,086,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdnet.dll [2013.08.09 10:32:56 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys [2013.08.09 10:32:56 | 000,077,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdvm.dll [2013.08.09 10:32:56 | 000,069,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys [2013.08.09 10:32:56 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll [2013.08.09 10:32:56 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fmifs.dll [2013.08.09 10:32:56 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fmifs.dll [2013.08.09 10:32:56 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidi2c.sys [2013.08.09 10:32:56 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msshooks.dll [2013.08.09 10:32:56 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msshooks.dll [2013.08.09 10:29:41 | 013,644,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll [2013.08.09 10:29:41 | 010,116,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll [2013.08.09 10:29:39 | 010,788,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll [2013.08.09 10:29:39 | 008,857,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll [2013.08.09 10:29:38 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll [2013.08.09 10:29:37 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BCP47Langs.dll [2013.08.09 10:29:37 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll [2013.08.09 10:29:36 | 002,305,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll [2013.08.09 10:29:36 | 002,035,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll [2013.08.09 10:29:36 | 000,760,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll [2013.08.09 10:29:36 | 000,470,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netprofmsvc.dll [2013.08.09 10:29:36 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BCP47Langs.dll [2013.08.09 10:29:36 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll [2013.08.09 10:29:35 | 000,708,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll [2013.08.09 10:29:35 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll [2013.08.09 10:29:35 | 000,446,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS [2013.08.09 10:29:35 | 000,330,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll [2013.08.09 10:29:35 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll [2013.08.09 10:29:35 | 000,014,848 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\rars.rs [2013.08.09 10:29:35 | 000,014,848 | ---- | C] (Microsoft) -- C:\Windows\SysNative\rars.rs [2013.08.09 10:29:34 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Magnify.exe [2013.08.09 10:29:34 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll [2013.08.09 10:29:34 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll [2013.08.09 10:29:32 | 000,501,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairing.dll [2013.08.09 10:29:32 | 000,284,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spaceport.sys [2013.08.09 10:29:32 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll [2013.08.09 10:29:32 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe [2013.08.09 10:29:32 | 000,058,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe [2013.08.09 10:29:32 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll [2013.08.09 10:29:31 | 001,619,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll [2013.08.09 10:29:31 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Magnify.exe [2013.08.09 10:29:31 | 000,449,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairing.dll [2013.08.09 10:29:31 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl [2013.08.09 10:29:31 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl [2013.08.09 10:29:31 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUSettingsProvider.dll [2013.08.09 10:29:31 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll [2013.08.09 10:29:31 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll [2013.08.09 10:29:31 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biwinrt.dll [2013.08.09 10:29:31 | 000,120,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthHost.exe [2013.08.09 10:29:31 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\biwinrt.dll [2013.08.09 10:29:31 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhostex.exe [2013.08.09 10:29:30 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll [2013.08.09 10:29:30 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll [2013.08.09 10:29:30 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll [2013.08.09 10:29:30 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll [2013.08.09 10:29:30 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll [2013.08.09 10:29:30 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe [2013.08.09 10:29:30 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe [2013.08.09 10:29:30 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll [2013.08.09 10:29:30 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlmproxy.dll [2013.08.09 10:29:30 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll [2013.08.09 10:29:23 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlmsprep.dll [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] |
07.09.2013, 12:33 | #6 |
| LAN Verbindung fällt aus oder ist extrem langsamCode:
ATTFilter ========== Files - Modified Within 30 Days ========== [2013.09.07 10:44:20 | 003,007,708 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.09.07 10:44:20 | 000,864,930 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat [2013.09.07 10:44:20 | 000,831,158 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.09.07 10:44:20 | 000,775,758 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.09.07 10:44:20 | 000,188,760 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.09.07 10:44:20 | 000,188,118 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat [2013.09.07 10:44:20 | 000,158,770 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.09.07 10:41:31 | 000,000,983 | ---- | M] () -- C:\Windows\SysWow64\bscs.ini [2013.09.07 10:40:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.09.07 10:39:18 | 000,003,620 | ---- | M] () -- C:\Windows\SysWow64\LOCALSERVICE.INI [2013.09.07 10:39:00 | 000,001,122 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.09.07 10:38:29 | 000,000,043 | ---- | M] () -- C:\Windows\SysWow64\LOCALDEVICE.INI [2013.09.07 10:38:25 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2013.09.07 10:38:21 | 2484,092,927 | -HS- | M] () -- C:\hiberfil.sys [2013.09.06 16:15:00 | 000,001,126 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.09.05 22:14:02 | 000,000,835 | ---- | M] () -- C:\Users\Lukas\Desktop\BitTorrent.lnk [2013.09.05 21:54:27 | 000,001,955 | ---- | M] () -- C:\Users\Public\Desktop\CDBurnerXP.lnk [2013.09.05 21:42:27 | 000,002,781 | ---- | M] () -- C:\Users\Public\Desktop\Nero 12.lnk [2013.09.05 10:44:18 | 000,001,796 | ---- | M] () -- C:\Users\Public\Desktop\Lightworks (11.1).lnk [2013.09.05 10:36:45 | 000,262,144 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll [2013.09.05 10:36:45 | 000,086,016 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll [2013.09.04 19:29:30 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForLukas.job [2013.09.04 09:30:49 | 000,029,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3a.dll [2013.09.04 09:11:57 | 000,001,067 | ---- | M] () -- C:\Users\Lukas\Desktop\PapDesigner.lnk [2013.09.03 19:53:42 | 000,000,582 | ---- | M] () -- C:\Users\Lukas\Desktop\MobaXterm.ini [2013.09.03 19:13:46 | 006,085,632 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\stlang64.dll [2013.09.03 19:13:46 | 002,188,800 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\stapo64.dll [2013.09.03 19:13:46 | 001,664,000 | ---- | M] (IDT, Inc.) -- C:\Windows\sttray64.exe [2013.09.03 19:13:46 | 000,671,744 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\stapi64.dll [2013.09.03 19:13:46 | 000,542,208 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\drivers\stwrt64.sys [2013.09.03 19:13:46 | 000,499,200 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\stcplx64.dll [2013.09.03 19:13:46 | 000,255,488 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\st646425.dll [2013.09.03 19:13:45 | 007,986,176 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\IDTNGUI.exe [2013.09.03 19:13:45 | 007,712,768 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\IDTNHP.dll [2013.09.03 19:13:45 | 002,213,376 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\IDTNX.dll [2013.09.03 19:13:45 | 001,821,184 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\IDTNC64.cpl [2013.09.03 19:13:45 | 000,464,384 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\slapoi64.dll [2013.09.03 19:13:45 | 000,253,952 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\IDTNJ.exe [2013.09.03 19:13:45 | 000,224,256 | ---- | M] (IDT, Inc.) -- C:\Windows\SysNative\HPToneCtrls64.dll [2013.09.03 19:13:45 | 000,042,482 | ---- | M] () -- C:\Windows\SysNative\Goya&Kroyer_dv6.xml [2013.09.03 19:11:20 | 000,000,032 | ---- | M] () -- C:\Windows\0 [2013.09.03 13:00:37 | 000,000,284 | ---- | M] () -- C:\Users\Lukas\Desktop\Start.bat [2013.09.02 20:14:05 | 000,001,092 | ---- | M] () -- C:\Users\Public\Desktop\System Explorer.lnk [2013.09.01 17:52:38 | 000,001,184 | ---- | M] () -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2013.09.01 12:37:22 | 000,000,218 | ---- | M] () -- C:\Users\Lukas\AppData\Local\recently-used.xbel [2013.09.01 12:13:09 | 000,002,017 | ---- | M] () -- C:\Users\Lukas\Desktop\myApps.lnk [2013.09.01 01:02:39 | 000,001,153 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013.09.01 00:44:31 | 000,439,896 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.08.31 22:56:11 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf [2013.08.31 22:15:15 | 000,001,570 | ---- | M] () -- C:\Users\Lukas\Desktop\Express Preview for Desktop.lnk [2013.08.31 21:39:46 | 000,001,013 | ---- | M] () -- C:\Users\Public\Desktop\Bluefish.lnk [2013.08.31 21:30:14 | 000,002,093 | ---- | M] () -- C:\Users\Lukas\Desktop\Die Entscheidung.bat [2013.08.31 12:39:42 | 000,002,196 | ---- | M] () -- C:\Users\Lukas\Desktop\neptune.lnk [2013.08.31 12:32:00 | 000,002,190 | ---- | M] () -- C:\Users\Lukas\Desktop\Debian.lnk [2013.08.28 12:16:15 | 000,002,220 | ---- | M] () -- C:\Users\Lukas\Desktop\Google Chrome.lnk [2013.08.28 11:43:26 | 000,231,376 | ---- | M] (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys [2013.08.28 11:43:26 | 000,000,895 | ---- | M] () -- C:\Users\Lukas\Desktop\TrueCrypt.lnk [2013.08.23 16:11:04 | 000,002,089 | ---- | M] () -- C:\Users\Lukas\Desktop\Tina Demo.lnk [2013.08.23 09:48:11 | 000,001,923 | ---- | M] () -- C:\Users\Lukas\Desktop\Blender.lnk [2013.08.21 21:29:32 | 000,001,732 | ---- | M] () -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2013.08.21 21:23:45 | 000,001,021 | ---- | M] () -- C:\Users\Lukas\Desktop\WinRAR.lnk [2013.08.21 10:47:18 | 000,000,083 | ---- | M] () -- C:\Users\Lukas\Documents\virus.bat [2013.08.19 11:50:46 | 000,000,616 | ---- | M] () -- C:\Users\Lukas\.xmaximarc [2013.08.19 10:42:50 | 000,002,125 | ---- | M] () -- C:\Users\Lukas\Desktop\XMaxima.lnk [2013.08.19 10:38:45 | 000,001,875 | ---- | M] () -- C:\Users\Lukas\Desktop\GeoGebra.lnk [2013.08.17 22:44:00 | 000,833,535 | ---- | M] () -- C:\Users\Lukas\Oxygen_Cursors_by_LAvalon.7z [2013.08.13 15:50:41 | 000,000,017 | ---- | M] () -- C:\Users\Lukas\AppData\Local\resmon.resmoncfg [2013.08.12 19:14:11 | 000,001,096 | ---- | M] () -- C:\Users\Lukas\Desktop\Oracle VM VirtualBox.lnk [2013.08.12 19:05:24 | 000,001,755 | ---- | M] () -- C:\Users\Lukas\Desktop\Spotify.lnk [2013.08.12 15:07:41 | 000,002,290 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PrivateTunnel.lnk [2013.08.11 15:41:18 | 000,044,032 | ---- | M] (NirSoft) -- C:\Windows\nircmd.exe [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.09.06 19:38:30 | 000,000,810 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synergy.lnk [2013.09.05 22:14:02 | 000,000,835 | ---- | C] () -- C:\Users\Lukas\Desktop\BitTorrent.lnk [2013.09.05 21:54:26 | 000,001,955 | ---- | C] () -- C:\Users\Public\Desktop\CDBurnerXP.lnk [2013.09.05 21:54:26 | 000,001,905 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk [2013.09.05 21:42:26 | 000,002,781 | ---- | C] () -- C:\Users\Public\Desktop\Nero 12.lnk [2013.09.05 10:44:18 | 000,001,796 | ---- | C] () -- C:\Users\Public\Desktop\Lightworks (11.1).lnk [2013.09.04 13:27:18 | 000,000,350 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForLukas.job [2013.09.04 09:11:57 | 000,001,067 | ---- | C] () -- C:\Users\Lukas\Desktop\PapDesigner.lnk [2013.09.03 19:11:20 | 000,003,620 | ---- | C] () -- C:\Windows\SysWow64\LOCALSERVICE.INI [2013.09.03 19:11:20 | 000,000,043 | ---- | C] () -- C:\Windows\SysWow64\LOCALDEVICE.INI [2013.09.02 20:14:04 | 000,001,092 | ---- | C] () -- C:\Users\Public\Desktop\System Explorer.lnk [2013.09.01 12:37:22 | 000,000,218 | ---- | C] () -- C:\Users\Lukas\AppData\Local\recently-used.xbel [2013.09.01 12:12:25 | 000,002,017 | ---- | C] () -- C:\Users\Lukas\Desktop\myApps.lnk [2013.09.01 01:02:39 | 000,001,153 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013.09.01 01:02:34 | 000,001,165 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2013.08.31 23:40:06 | 000,001,180 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 8.lnk [2013.08.31 22:56:11 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf [2013.08.31 22:15:11 | 000,001,570 | ---- | C] () -- C:\Users\Lukas\Desktop\Express Preview for Desktop.lnk [2013.08.31 21:39:46 | 000,001,013 | ---- | C] () -- C:\Users\Public\Desktop\Bluefish.lnk [2013.08.31 20:17:54 | 000,000,284 | ---- | C] () -- C:\Users\Lukas\Desktop\Start.bat [2013.08.31 12:24:05 | 000,002,196 | ---- | C] () -- C:\Users\Lukas\Desktop\neptune.lnk [2013.08.31 12:24:03 | 000,002,190 | ---- | C] () -- C:\Users\Lukas\Desktop\Debian.lnk [2013.08.28 15:37:16 | 000,000,582 | ---- | C] () -- C:\Users\Lukas\Desktop\MobaXterm.ini [2013.08.28 11:43:26 | 000,000,895 | ---- | C] () -- C:\Users\Lukas\Desktop\TrueCrypt.lnk [2013.08.24 11:12:39 | 000,002,220 | ---- | C] () -- C:\Users\Lukas\Desktop\Google Chrome.lnk [2013.08.24 11:10:51 | 000,001,126 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.08.24 11:10:50 | 000,001,122 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.08.23 16:11:04 | 000,002,089 | ---- | C] () -- C:\Users\Lukas\Desktop\Tina Demo.lnk [2013.08.23 09:48:11 | 000,001,923 | ---- | C] () -- C:\Users\Lukas\Desktop\Blender.lnk [2013.08.21 21:26:19 | 000,001,732 | ---- | C] () -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2013.08.21 21:26:19 | 000,001,708 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk [2013.08.21 21:23:45 | 000,001,021 | ---- | C] () -- C:\Users\Lukas\Desktop\WinRAR.lnk [2013.08.21 19:51:34 | 000,002,093 | ---- | C] () -- C:\Users\Lukas\Desktop\Die Entscheidung.bat [2013.08.21 10:47:18 | 000,000,083 | ---- | C] () -- C:\Users\Lukas\Documents\virus.bat [2013.08.20 08:07:43 | 000,439,896 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.08.19 19:31:52 | 000,387,583 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml [2013.08.19 11:50:46 | 000,000,616 | ---- | C] () -- C:\Users\Lukas\.xmaximarc [2013.08.19 10:42:49 | 000,002,125 | ---- | C] () -- C:\Users\Lukas\Desktop\XMaxima.lnk [2013.08.19 10:38:44 | 000,001,875 | ---- | C] () -- C:\Users\Lukas\Desktop\GeoGebra.lnk [2013.08.17 22:44:00 | 000,833,535 | ---- | C] () -- C:\Users\Lukas\Oxygen_Cursors_by_LAvalon.7z [2013.08.16 22:23:46 | 000,012,544 | ---- | C] () -- C:\Windows\SysWow64\CNC173BD.TBL [2013.08.16 09:00:43 | 000,216,064 | ---- | C] () -- C:\Windows\SysWow64\gcapi_dll.dll [2013.08.13 15:50:41 | 000,000,017 | ---- | C] () -- C:\Users\Lukas\AppData\Local\resmon.resmoncfg [2013.08.12 19:14:10 | 000,001,096 | ---- | C] () -- C:\Users\Lukas\Desktop\Oracle VM VirtualBox.lnk [2013.08.12 19:05:24 | 000,001,755 | ---- | C] () -- C:\Users\Lukas\Desktop\Spotify.lnk [2013.08.12 15:07:41 | 000,002,290 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PrivateTunnel.lnk [2013.08.12 15:07:41 | 000,001,367 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivateTunnel.lnk [2013.08.05 09:06:09 | 000,000,141 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc [2013.05.28 18:03:14 | 000,041,008 | ---- | C] () -- C:\Windows\SysWow64\RGBAcodec.dll [2013.04.20 20:49:42 | 000,598,780 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin [2013.04.20 20:49:38 | 000,755,048 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin [2013.04.20 20:49:38 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll [2013.03.22 10:00:08 | 000,000,983 | ---- | C] () -- C:\Windows\SysWow64\bscs.ini [2013.01.31 17:04:00 | 000,070,904 | ---- | C] () -- C:\Windows\SysWow64\BsProfileFunc.dll [2013.01.10 12:59:24 | 000,019,456 | ---- | C] () -- C:\Windows\SysWow64\BsTrace.dll [2013.01.10 11:25:58 | 000,353,280 | ---- | C] () -- C:\Windows\SysWow64\BsExtendFunc.dll [2013.01.10 11:25:58 | 000,049,248 | ---- | C] () -- C:\Windows\SysWow64\BSSkypeAgent.dll [2013.01.10 11:25:56 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\BsVistaCommon.dll [2013.01.10 11:25:56 | 000,073,820 | ---- | C] () -- C:\Windows\SysWow64\BSVoIPComm.dll [2013.01.10 11:25:56 | 000,049,664 | ---- | C] () -- C:\Windows\SysWow64\BSWMPPlugin.dll [2013.01.10 11:25:56 | 000,011,264 | ---- | C] () -- C:\Windows\SysWow64\SCChangeMonitor.dll [2012.11.07 03:38:31 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll [2012.08.04 00:40:09 | 004,090,164 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.07.26 10:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2012.07.26 10:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2012.07.26 09:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2012.07.26 03:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2012.07.25 22:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2012.07.25 22:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2012.07.25 22:22:54 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin [2012.07.25 22:22:54 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin [2012.07.25 22:22:54 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin [2012.06.13 08:45:02 | 000,008,704 | ---- | C] () -- C:\Windows\SysWow64\SROF.dll [2012.06.04 21:31:00 | 000,000,417 | ---- | C] () -- C:\Windows\SysWow64\RaoBLE.ini [2012.06.02 16:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2012.04.20 13:59:44 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll ========== ZeroAccess Check ========== [2012.11.06 19:09:56 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013.03.06 08:31:28 | 019,758,592 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013.03.06 07:03:37 | 017,561,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012.07.26 05:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012.07.26 05:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012.07.26 05:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] < End of report > |
07.09.2013, 21:04 | #7 |
/// the machine /// TB-Ausbilder | LAN Verbindung fällt aus oder ist extrem langsam Ich hab oben noch ne Anleitung zu FRST gepostet
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
07.09.2013, 21:16 | #8 |
| LAN Verbindung fällt aus oder ist extrem langsam Okei. Diese Anleitung hab ich übersehn. Sollte besser lesen. Code:
ATTFilter Hier mal die Logdatei von FRST.txt Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-09-2013 03 Ran by Lukas (administrator) on LUKAS-PC on 07-09-2013 22:10:41 Running from C:\Users\Lukas\Downloads Windows 8 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe (IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe () C:\Program Files\Synergy\synergyd.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe () C:\Windows\system32\valWBFPolicyService.exe (IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe (OrdinarySoft) C:\Program Files\Start Menu X\StartMenuX.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe (AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe (OrdinarySoft) C:\Program Files\Start Menu X\StartMenuX.exe () C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\ovpntray.exe () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\ovpntray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Spotify Ltd) C:\Users\Lukas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files\Rainmeter\Rainmeter.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe (CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe () C:\Program Files\Synergy\synergys.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] () HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-28] (Synaptics Incorporated) HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-09-03] (IDT, Inc.) HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1 HKLM\...\Policies\Explorer: [NoActiveDesktop] 1 HKCU\...\Run: [Spotify] - C:\Users\Lukas\AppData\Roaming\Spotify\Spotify.exe [4640768 2013-08-12] (Spotify Ltd) HKCU\...\Run: [Spotify Web Helper] - C:\Users\Lukas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-08-12] (Spotify Ltd) HKCU\...\Run: [Lync] - C:\Program Files (x86)\Microsoft Office\Office15\lync.exe [18621600 2013-07-10] (Microsoft Corporation) HKCU\...\Run: [GoogleChromeAutoLaunch_B6C7B4C7C18B76F63DA55B9EF3CCA3DA] - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [829392 2013-09-02] (Google Inc.) HKCU\...\Run: [StartMenuX] - C:\Program Files\Start Menu X\StartMenuX.exe [7652672 2013-08-19] (OrdinarySoft) HKCU\...\Run: [BitTorrent] - C:\Users\Lukas\AppData\Roaming\BitTorrent\BitTorrent.exe [884576 2013-09-05] (BitTorrent Inc.) HKLM-x32\...\Run: [] - [x] HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [601928 2013-08-07] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [SystemExplorerAutoStart] - C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2851784 2013-05-16] (Mister Group) HKLM-x32\...\Run: [BtTray] - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [379904 2013-01-10] (IVT Corporation) HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.) HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [78352 2013-09-04] (cyberlink) AppInit_DLLs: C:\Windows\system32\nvinitx.dll [245872 2013-02-27] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [201576 2013-02-27] (NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PrivateTunnel.lnk ShortcutTarget: PrivateTunnel.lnk -> C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\ovpntray.exe () Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation) Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/12 HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON13/12 HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPCON13/12 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/12 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/12 SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS SearchScopes: HKLM - {349A6732-EC44-4324-8111-A4D08FD243E8} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS SearchScopes: HKLM-x32 - {349A6732-EC44-4324-8111-A4D08FD243E8} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS SearchScopes: HKCU - {349A6732-EC44-4324-8111-A4D08FD243E8} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation) BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation) Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWow64\skype4com.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default FF DefaultSearchEngine: Startpage HTTPS - Deutsch FF SelectedSearchEngine: Startpage HTTPS - Deutsch FF Homepage: https://startpage.com/ FF NetworkProxy: "type", 1 FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @authentec.com/ffwloplugin - C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll ( HP) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: pokki.com/PokkiDownloadHelper - C:\Users\Lukas\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki) FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\searchplugins\startpage-https---deutsch.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: BlackFox V2-Blue - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\zigboom.designs@gmail.com FF Extension: Reader - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\{20068ab2-1901-4140-9f3c-81207d4dacc4} FF Extension: BittorrentBar_DE - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4} FF Extension: firegloves - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\firegloves@fingerprint.pet-portal.eu.xpi FF Extension: omnibar - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\omnibar@ajitk.com.xpi FF Extension: openwith - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\openwith@darktrojan.net.xpi FF Extension: No Name - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\{3d2ee42e-a6d9-4888-bd17-2148dc7928d7}.xpi FF Extension: No Name - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi FF Extension: No Name - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi FF Extension: No Name - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi FF Extension: No Name - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\q0xyzj26.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn\ FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn\ FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn\ FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn\ Chrome: ======= CHR HomePage: hxxp://google.ch/ CHR RestoreOnStartup: "chrome://newtab/", "hxxp://search.softonic.com/INF00040/tb_v1?SearchSource=48&cc=", "hxxp://www.linuxmint.com/start/lisa", "hxxp://www.zevenos.com/" CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll () CHR Plugin: (Microsoft Office 2013) - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) CHR Plugin: (Simple Pass) - C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll ( HP) CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (Microsoft Office 2013) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Pokki Download Helper) - C:\Users\Lukas\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki) CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) CHR Extension: (QR Creator) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaephdgbinagkeepamlbkhkfbiaedabm\1.5_0 CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak\0.9.5_0 CHR Extension: (Beat the Boot (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aidgmjkfmbhldhnhkopojimkhhhcpenl\1.0.0.1_0 CHR Extension: (Angry Birds) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0 CHR Extension: (Docs) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0 CHR Extension: (Google Drive) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0 CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0 CHR Extension: (Facebook) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm\1.0.3_0 CHR Extension: (Adblock Plus) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.4_0 CHR Extension: (Spotify - Music for every moment) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh\0.2.3_0 CHR Extension: (Google Search) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0 CHR Extension: (Tampermonkey) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.3.3487_0 CHR Extension: (Greybird) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\djhdibfheaidnhfnhhnmdngcmjpicpkn\1.1_0 CHR Extension: (Pixlr-o-matic) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj\1.2_0 CHR Extension: (Gmail Offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk\1.20_0 CHR Extension: (Facebook Disconnect) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpepffjfmamnambagiibghpglaidiec\1.3.0_0 CHR Extension: (CHIP Online) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhjmdobefakhdbfdpnnopoaldabldbgd\1.5_0 CHR Extension: (Wunderlist - To-do & Task List) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc\2.2.0_0 CHR Extension: (HTTPS Everywhere) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp\2013.8.17_0 CHR Extension: (The QR Code Generator) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb\0.2.4_0 CHR Extension: (Clock) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoihofapbdnldlhecnhefifbcddgdkhm\1.2_0 CHR Extension: (Knok | Home exchange) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\iehdddmijbgofffjjmhkodckmnombhmf\3.1_0 CHR Extension: (Disconnect) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo\5.7.1_0 CHR Extension: (QR Code Generator) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipkebailemnkpembllbmkeobjhgmikl\1.1_0 CHR Extension: (Gmail Blue) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\keiffooocjpcgkpojchelkgnjmmjlbgc\0.4_0 CHR Extension: (Google Play) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0 CHR Extension: (Google Maps) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0 CHR Extension: (Google Dictionary (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja\3.0.19_0 CHR Extension: (Google Mail Checker) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0 CHR Extension: (Norton Identity Protection) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.0.10_0 CHR Extension: (ruul. Screen ruler) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlbnpnlmfngmlcmkhjpbfokdphfehhjj\5.6.7_0 CHR Extension: (Sumon) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nddpmdmpdcbnnkjfplckngdkhhmmbjaf\1.0.0.3_0 CHR Extension: ( "name": "feedly") - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndhinffkekpekljifjkkkkkhopnjodja\18.1_0 CHR Extension: (Facebook Notifications) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.27_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0 CHR Extension: (NotScripts) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\odjhifogjcknibkahlpidmdajjpkkcfn\0.9.6_0 CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 CHR HKLM-x32\...\Chrome\Extension: [fegekclkdhbnfdcmomlpegkkndgnmfmo] - C:\Program Files (x86)\HP SimplePass\tschrome.crx CHR HKLM-x32\...\Chrome\Extension: [hmbkhknacohfhbmmpnmbkgdffdbildof] - C:\Program Files (x86)\HP SimplePass\tschrome.crx CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\Exts\Chrome.crx ==================== Services (Whitelisted) ================= R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1619704 2013-03-26] (IVT Corporation) R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2013-01-10] (IVT Corporation) S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-08-07] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-08-07] (BlueStack Systems, Inc.) S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [244752 2012-07-16] (CyberLink) R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641768 2013-02-07] (HP) R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation) R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193576 2012-07-20] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation) R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation) R2 OpenVPNAccessClient; C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe [24064 2012-10-12] () R2 Synergy; C:\Program Files\Synergy\synergyd.exe [423424 2013-05-03] () S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [821720 2012-11-25] (Mister Group) S3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401856 2013-01-07] (AuthenTec, Inc.) R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [28160 2012-09-06] () S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87648 2013-06-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130715.001\BHDrvx64.sys [1393240 2013-07-15] (Symantec Corporation) R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130715.001\BHDrvx64.sys [1393240 2013-07-15] (Symantec Corporation) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-08-07] (BlueStack Systems) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-08-07] (BlueStack Systems) R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation) U4 BthAvrcpTg; U4 BthHFEnum; U4 bthhfhid; R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation) R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation) R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [49584 2013-03-25] (Ralink Corporation) R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation) R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-08-27] (Symantec Corporation) R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-08-27] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [140376 2013-08-27] (Symantec Corporation) R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130905.001\IDSvia64.sys [520280 2013-08-21] (Symantec Corporation) R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130905.001\IDSvia64.sys [520280 2013-08-21] (Symantec Corporation) R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-07-21] (Intel Corporation) R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130906.017\ENG64.SYS [126040 2013-08-29] (Symantec Corporation) R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130906.017\ENG64.SYS [126040 2013-08-29] (Symantec Corporation) R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130906.017\EX64.SYS [2099288 2013-08-29] (Symantec Corporation) R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130906.017\EX64.SYS [2099288 2013-08-29] (Symantec Corporation) R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [273040 2012-08-09] (Realtek Semiconductor Corp.) R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1149232 2013-03-09] (Ralink Technology, Corp.) R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation) R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation) R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation) R3 SymDS; C:\Windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation) R3 SymEFA; C:\Windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation) S0 SymELAM; C:\Windows\System32\drivers\NISx64\1404000.028\SymELAM.sys [23448 2012-06-20] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-08-07] (Symantec Corporation) R3 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation) R3 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation) R3 tapoas; C:\Windows\system32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project) R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.) U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation) U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation) S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [x] S3 SmbDrvI; \SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-09-07 22:09 - 2013-09-07 22:09 - 01948628 _____ (Farbar) C:\Users\Lukas\Downloads\FRST64.exe 2013-09-07 16:51 - 2013-09-07 16:51 - 12790680 _____ C:\Users\Lukas\Downloads\synergy-1.4.12-Windows-x64.exe 2013-09-07 13:39 - 2013-09-07 13:39 - 00602112 _____ (OldTimer Tools) C:\Users\Lukas\Downloads\OTL.exe 2013-09-07 12:45 - 2013-09-07 12:45 - 00027658 _____ C:\Users\Lukas\Desktop\OTL.zip 2013-09-07 11:30 - 2013-09-07 11:30 - 00001153 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-09-07 11:30 - 2013-09-07 11:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-09-07 11:29 - 2013-09-07 11:29 - 00282008 _____ (Mozilla) C:\Users\Lukas\Downloads\Firefox Setup Stub 23.0.1 (1).exe 2013-09-07 11:20 - 2013-09-07 11:20 - 00246500 _____ C:\Users\Lukas\Desktop\OTL.txt 2013-09-07 11:01 - 2013-09-07 11:02 - 00069264 _____ C:\Users\Lukas\Downloads\OTL (1).Txt 2013-09-06 19:38 - 2013-09-07 16:54 - 00000000 ____D C:\Program Files\Synergy 2013-09-06 19:34 - 2013-09-06 19:34 - 24258203 _____ C:\Users\Lukas\Downloads\synergy_1.4.11.zip 2013-09-06 19:26 - 2013-09-06 19:26 - 00000000 ____D C:\Windows\LastGood.Tmp 2013-09-05 22:14 - 2013-09-06 06:30 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro 2013-09-05 22:14 - 2013-09-05 22:35 - 808452096 ____R C:\Users\Lukas\Downloads\crunchbang-11-20130506-i486.iso 2013-09-05 22:14 - 2013-09-05 22:30 - 00000000 ____D C:\Users\Lukas\Downloads\BitTorrent-MickeyHartBand-Free 2013-09-05 22:14 - 2013-09-05 22:14 - 00000835 _____ C:\Users\Lukas\Desktop\BitTorrent.lnk 2013-09-05 22:14 - 2013-09-05 22:14 - 00000815 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk 2013-09-05 22:13 - 2013-09-06 06:44 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\BitTorrent 2013-09-05 22:13 - 2013-09-05 22:13 - 01126488 _____ (BitTorrent Inc.) C:\Users\Lukas\Downloads\BitTorrent_7.8.1b30004.exe 2013-09-05 22:13 - 2013-09-05 22:13 - 01126488 _____ (BitTorrent Inc.) C:\Users\Lukas\Downloads\BitTorrent_7.8.1b30004 (1).exe 2013-09-05 22:12 - 2013-09-05 22:12 - 00031107 _____ C:\Users\Lukas\Downloads\crunchbang-11-20130506-i486.iso.torrent 2013-09-05 21:54 - 2013-09-05 21:54 - 00001955 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk 2013-09-05 21:54 - 2013-09-05 21:54 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Canneverbe Limited 2013-09-05 21:54 - 2013-09-05 21:54 - 00000000 ____D C:\ProgramData\Canneverbe Limited 2013-09-05 21:54 - 2013-09-05 21:54 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP 2013-09-05 21:53 - 2013-09-05 21:53 - 05357456 _____ (Canneverbe Limited ) C:\Users\Lukas\Downloads\cdbxp_setup_4.5.2.4255.exe 2013-09-05 21:45 - 2013-09-05 21:45 - 00000000 ____D C:\Users\Lukas\AppData\Local\Nero_AG 2013-09-05 21:44 - 2013-09-05 21:45 - 00000000 ____D C:\Users\Lukas\AppData\Local\Nero 2013-09-05 21:43 - 2013-09-05 21:44 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Nero 2013-09-05 21:42 - 2013-09-05 21:42 - 00002781 _____ C:\Users\Public\Desktop\Nero 12.lnk 2013-09-05 21:38 - 2013-09-05 21:42 - 00000000 ____D C:\ProgramData\Nero 2013-09-05 21:38 - 2013-09-05 21:42 - 00000000 ____D C:\Program Files (x86)\Nero 2013-09-05 21:22 - 2013-09-05 21:30 - 326112440 _____ (Nero AG) C:\Users\Lukas\Downloads\Nero-12.5.01900_trial.exe 2013-09-05 21:19 - 2013-09-05 21:37 - 741343232 _____ C:\Users\Lukas\Downloads\ubuntu-12.04.3-desktop-i386.iso 2013-09-05 16:53 - 2013-09-05 16:55 - 00630079 _____ C:\Users\Lukas\Downloads\TortoiseSVN-1.8.2.24708-x64-svn-1.8.3.msi.part 2013-09-05 13:38 - 2013-09-05 13:38 - 00073545 _____ C:\Users\Lukas\Downloads\11S01BlackTuesday.zip 2013-09-05 10:45 - 2013-09-05 10:45 - 00000000 ____D C:\Users\Lukas\.MCReferenceSdk 2013-09-05 10:44 - 2013-09-05 19:49 - 00000000 ____D C:\Users\Public\Documents\Lightworks 2013-09-05 10:44 - 2013-09-05 10:44 - 00001796 _____ C:\Users\Public\Desktop\Lightworks (11.1).lnk 2013-09-05 10:44 - 2013-09-05 10:44 - 00000000 ____D C:\ProgramData\Geevs 2013-09-05 10:42 - 2013-09-05 10:44 - 00000000 ____D C:\Program Files\Lightworks 2013-09-05 10:42 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2013-09-05 10:42 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2013-09-05 10:42 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2013-09-05 10:42 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2013-09-05 10:42 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2013-09-05 10:42 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2013-09-05 10:42 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2013-09-05 10:42 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2013-09-05 10:40 - 2013-09-05 10:41 - 76074768 _____ (Lightworks) C:\Users\Lukas\Downloads\setup_11.1_full_64bit.exe 2013-09-05 10:35 - 2013-09-05 10:36 - 00262144 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2013-09-05 10:35 - 2013-09-05 10:36 - 00086016 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll 2013-09-05 10:34 - 2013-09-05 10:34 - 15710297 _____ C:\Users\Lukas\Downloads\jahshaka-2.0-installer.exe 2013-09-04 22:58 - 2013-09-04 23:01 - 19263515 _____ C:\Users\Lukas\Downloads\Android_KITKAT_4.4_--_The_future_of_confectionery.mp4 2013-09-04 22:54 - 2013-09-04 22:58 - 34640643 _____ C:\Users\Lukas\Downloads\Unveiling_of_the_Android_KitKat_statue_-new_Nexus_.mp4 2013-09-04 15:48 - 2013-09-04 17:00 - 00044760 _____ C:\Users\Lukas\Downloads\Tankstelle(1).xlsx 2013-09-04 15:48 - 2013-09-04 15:48 - 00043447 _____ C:\Users\Lukas\Downloads\Tankstelle.xlsx 2013-09-04 13:27 - 2013-09-04 19:29 - 00000350 _____ C:\Windows\Tasks\HPCeeScheduleForLukas.job 2013-09-04 13:27 - 2013-09-04 13:27 - 00003160 _____ C:\Windows\System32\Tasks\HPCeeScheduleForLukas 2013-09-04 09:11 - 2013-09-04 09:11 - 00001067 _____ C:\Users\Lukas\Desktop\PapDesigner.lnk 2013-09-04 09:10 - 2013-09-04 14:14 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\PapDesigner 2013-09-04 09:10 - 2013-09-04 09:10 - 00477643 _____ (friedrich folkmann) C:\Users\Lukas\Downloads\PapDesigner-Setup.exe 2013-09-04 09:10 - 2013-09-04 09:10 - 00000000 ____D C:\Program Files (x86)\PapDesigner 2013-09-04 08:54 - 2013-09-04 08:54 - 00009409 _____ C:\Users\Lukas\Downloads\Adressen.xlsx 2013-09-03 22:26 - 2013-09-03 22:26 - 05192704 _____ (Geza Kovacs) C:\Users\Lukas\Downloads\unetbootin-windows-585.exe 2013-09-03 22:20 - 2013-09-03 22:20 - 00000000 ____D C:\Users\Lukas\AppData\Local\bluesoleil 2013-09-03 19:14 - 2013-09-03 19:15 - 00000000 ____D C:\Program Files\IDT 2013-09-03 19:14 - 2013-09-03 19:13 - 02188800 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll 2013-09-03 19:14 - 2013-09-03 19:13 - 00671744 ____N (IDT, Inc.) C:\Windows\system32\stapi64.dll 2013-09-03 19:14 - 2013-09-03 19:13 - 00542208 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys 2013-09-03 19:14 - 2013-09-03 19:13 - 00499200 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll 2013-09-03 19:14 - 2013-09-03 19:13 - 00255488 _____ (IDT, Inc.) C:\Windows\system32\st646425.dll 2013-09-03 19:11 - 2013-09-07 22:08 - 00003620 _____ C:\Windows\SysWOW64\LOCALSERVICE.INI 2013-09-03 19:11 - 2013-09-07 22:08 - 00000043 _____ C:\Windows\SysWOW64\LOCALDEVICE.INI 2013-09-03 19:10 - 2013-09-03 19:10 - 00000000 ____D C:\ProgramData\Ralink Bluetooth Stack 2013-09-03 19:10 - 2013-09-03 19:10 - 00000000 ____D C:\Program Files (x86)\Ralink Corporation 2013-09-03 19:09 - 2013-09-03 19:15 - 00000660 _____ C:\Windows\setupact.log 2013-09-03 19:09 - 2013-09-03 19:09 - 00000000 _____ C:\Windows\setuperr.log 2013-09-03 13:49 - 2013-07-12 14:19 - 00000000 ____D C:\Users\Lukas\Downloads\Ergebnisdateien 2013-09-03 13:49 - 2013-07-12 10:17 - 00000000 ____D C:\Users\Lukas\Downloads\Übungsdateien 2013-09-03 13:49 - 2013-07-12 10:17 - 00000000 ____D C:\Users\Lukas\Downloads\Beispieldateien 2013-09-03 13:48 - 2013-09-03 13:48 - 05730339 _____ C:\Users\Lukas\Downloads\ww2013cc_bu.zip 2013-09-03 13:05 - 2013-09-03 13:05 - 00010353 _____ C:\Users\Lukas\Downloads\Personalblatt (1).xlsx 2013-09-03 13:04 - 2013-09-03 13:04 - 00010353 _____ C:\Users\Lukas\Downloads\Personalblatt.xlsx 2013-09-03 11:58 - 2013-09-03 11:58 - 01581600 _____ C:\Users\Lukas\Downloads\ex2013cc_bu.zip 2013-09-02 20:14 - 2013-09-02 20:17 - 00000000 ____D C:\ProgramData\SystemExplorer 2013-09-02 20:14 - 2013-09-02 20:14 - 00001092 _____ C:\Users\Public\Desktop\System Explorer.lnk 2013-09-02 20:14 - 2013-09-02 20:14 - 00000000 ____D C:\Program Files (x86)\System Explorer 2013-09-02 20:12 - 2013-09-02 20:13 - 02061008 _____ (Mister Group ) C:\Users\Lukas\Downloads\SystemExplorerSetup_422.exe 2013-09-01 21:57 - 2013-09-01 21:57 - 00930855 _____ C:\Users\Lukas\Downloads\Fotos_heruntergeladen_mit_AirDroid.zip 2013-09-01 17:46 - 2013-09-07 13:03 - 00001562 _____ C:\Windows\PFRO.log 2013-09-01 12:37 - 2013-09-01 12:37 - 00000218 _____ C:\Users\Lukas\AppData\Local\recently-used.xbel 2013-09-01 12:12 - 2013-09-01 12:13 - 00002017 _____ C:\Users\Lukas\Desktop\myApps.lnk 2013-09-01 12:03 - 2013-09-01 12:03 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2013-09-01 12:03 - 2013-09-01 12:03 - 00000000 ____D C:\Program Files\CCleaner 2013-09-01 12:02 - 2013-09-01 12:02 - 04454952 _____ (Piriform Ltd) C:\Users\Lukas\Downloads\ccsetup405.exe 2013-09-01 10:56 - 2013-09-01 10:56 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Lukas\Downloads\Shockwave_Installer_Slim (1).exe 2013-09-01 01:01 - 2013-09-01 01:01 - 00282008 _____ (Mozilla) C:\Users\Lukas\Downloads\Firefox Setup Stub 23.0.1.exe 2013-09-01 00:57 - 2013-09-01 00:57 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Lukas\Downloads\Shockwave_Installer_Slim(1).exe 2013-09-01 00:55 - 2013-09-01 00:55 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Lukas\Downloads\Shockwave_Installer_Slim.exe 2013-08-31 23:56 - 2013-08-31 23:56 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\NuGet 2013-08-31 23:41 - 2013-09-01 10:34 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TeamViewer 2013-08-31 23:40 - 2013-08-31 23:40 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2013-08-31 23:36 - 2013-08-31 23:39 - 05536272 _____ (TeamViewer GmbH) C:\Users\Lukas\Downloads\TeamViewer_Setup_de.exe 2013-08-31 23:31 - 2013-09-01 21:24 - 00000000 ____D C:\Users\Lukas\Documents\Visual Studio 2013 2013-08-31 23:30 - 2013-08-31 23:30 - 00000000 ____D C:\ProgramData\NuGet 2013-08-31 23:30 - 2013-08-31 23:30 - 00000000 ____D C:\Program Files (x86)\NuGet 2013-08-31 23:20 - 2013-08-31 23:20 - 00000055 _____ C:\Users\Lukas\Documents\Proxy.txt 2013-08-31 22:56 - 2013-08-31 22:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf 2013-08-31 22:56 - 2013-08-31 22:56 - 00000000 ____D C:\Windows\symbols 2013-08-31 22:42 - 2013-09-01 12:37 - 00000000 ____D C:\Users\Lukas\.bluefish 2013-08-31 22:42 - 2013-08-31 22:42 - 00000000 ____D C:\Users\Lukas\AppData\Local\enchant 2013-08-31 22:32 - 2013-08-31 22:42 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2013-08-31 22:15 - 2013-08-31 22:15 - 00001570 _____ C:\Users\Lukas\Desktop\Express Preview for Desktop.lnk 2013-08-31 22:13 - 2013-08-31 23:11 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2013-08-31 22:13 - 2013-08-31 22:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2013-08-31 22:05 - 2013-08-31 22:05 - 00000000 ____D C:\Windows\SysWOW64\1033 2013-08-31 22:05 - 2013-08-31 22:05 - 00000000 ____D C:\Windows\SysWOW64\1031 2013-08-31 22:05 - 2013-08-31 22:05 - 00000000 ____D C:\Windows\system32\1033 2013-08-31 22:05 - 2013-08-31 22:05 - 00000000 ____D C:\Windows\system32\1031 2013-08-31 21:59 - 2013-08-31 23:27 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2013-08-31 21:56 - 2013-08-31 21:56 - 00016533 _____ C:\Users\Lukas\Downloads\ubuntu_title.zip 2013-08-31 21:56 - 2007-06-19 08:29 - 00022268 _____ C:\Users\Lukas\Downloads\ubuntu-title-fr-1.1.ttf 2013-08-31 21:56 - 2007-06-19 08:28 - 00015108 _____ C:\Users\Lukas\Downloads\Ubuntu-Title.ttf 2013-08-31 21:55 - 2013-08-31 21:55 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-08-31 21:55 - 2009-10-21 13:50 - 00063448 _____ C:\Users\Lukas\Downloads\METRO-DF.TTF 2013-08-31 21:55 - 2003-02-02 16:24 - 00000155 ____N C:\Users\Lukas\Downloads\METRO-DF.TXT 2013-08-31 21:54 - 2013-08-31 22:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0 2013-08-31 21:52 - 2013-08-31 21:52 - 00036190 _____ C:\Users\Lukas\Downloads\metro_df.zip 2013-08-31 21:52 - 2013-05-22 23:36 - 00030312 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll 2013-08-31 21:52 - 2013-05-22 23:36 - 00028776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll 2013-08-31 21:43 - 2013-08-31 21:43 - 00975264 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\wdexpress_full.exe 2013-08-31 21:39 - 2013-08-31 21:39 - 00001013 _____ C:\Users\Public\Desktop\Bluefish.lnk 2013-08-31 21:38 - 2013-08-31 21:39 - 00000000 ____D C:\Program Files (x86)\Bluefish 2013-08-31 21:32 - 2013-08-31 21:34 - 04428377 _____ C:\Users\Lukas\Downloads\Bluefish-2.2.4-setup.exe 2013-08-31 21:32 - 2013-08-31 21:34 - 02798541 _____ C:\Users\Lukas\Downloads\pidgin-2.10.7.exe 2013-08-31 20:17 - 2013-09-03 13:00 - 00000284 ____C C:\Users\Lukas\Desktop\Start.bat 2013-08-31 12:24 - 2013-08-31 12:39 - 00002196 _____ C:\Users\Lukas\Desktop\neptune.lnk 2013-08-31 12:24 - 2013-08-31 12:32 - 00002190 _____ C:\Users\Lukas\Desktop\Debian.lnk 2013-08-31 12:23 - 2013-08-31 13:02 - 12353536 _____ C:\Users\Lukas\Downloads\debian-7.1.0-amd64-CD-1.iso 2013-08-31 10:52 - 2013-08-31 10:52 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\StartMenuX 2013-08-31 10:52 - 2013-08-31 10:52 - 00000000 ____D C:\ProgramData\StartMenuX 2013-08-31 10:52 - 2013-08-31 10:52 - 00000000 ____D C:\Program Files\Start Menu X 2013-08-31 10:51 - 2013-08-31 10:52 - 05225176 _____ (OrdinarySoft ) C:\Users\Lukas\Downloads\StartMenuX_Setup_4_911_freeware.exe 2013-08-31 10:38 - 2013-08-31 10:38 - 00000527 _____ C:\Users\Lukas\Downloads\p.txt 2013-08-30 23:59 - 2013-08-31 11:01 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\ClassicShell 2013-08-30 23:58 - 2013-08-30 23:58 - 00000851 _____ C:\Users\Lukas\Downloads\bilder-verkleinern.net-20130830-235807.zip 2013-08-30 23:57 - 2013-08-30 23:57 - 00001420 _____ C:\Users\Lukas\Downloads\bilder-verkleinern.net-20130830-235653.zip 2013-08-30 23:56 - 2013-08-30 23:56 - 00000000 ____D C:\Users\Lukas\Downloads\bilder-verkleinern.net-20130830-235541 2013-08-30 23:55 - 2013-08-30 23:55 - 00030901 _____ C:\Users\Lukas\Downloads\bilder-verkleinern.net-20130830-235541.zip 2013-08-30 23:40 - 2013-08-30 23:40 - 05174240 _____ (IvoSoft) C:\Users\Lukas\Downloads\ClassicShellSetup_3_9_3.exe 2013-08-29 22:44 - 2013-08-29 22:44 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\KDE 2013-08-29 22:43 - 2013-08-29 22:44 - 02267648 _____ C:\Users\Lukas\Downloads\kdewin-installer-gui-1.0.0.exe.part.Hp7100 2013-08-29 22:43 - 2013-08-29 22:43 - 02267648 _____ C:\Users\Lukas\Downloads\kdewin-installer-gui-1.0.0.exe 2013-08-29 22:43 - 2013-08-29 22:43 - 00000000 ____D C:\ProgramData\KDE 2013-08-29 22:37 - 2013-08-29 22:37 - 00007540 _____ C:\Users\Lukas\Downloads\kdewin-installer-gui-1.0.0.exe.meta4 2013-08-29 14:30 - 2013-08-29 14:31 - 45036520 _____ C:\Users\Lukas\Downloads\2013-02-09-wheezy-raspbian.zip.part 2013-08-29 11:46 - 2013-08-29 11:47 - 00000000 ____D C:\Users\Lukas\AppData\Local\Deployment 2013-08-29 11:46 - 2013-08-29 11:46 - 00000000 ____D C:\Users\Lukas\Downloads\Installationsdateien 2013-08-29 11:46 - 2013-08-29 11:46 - 00000000 ____D C:\Users\Lukas\AppData\Local\Apps\2.0 2013-08-29 11:45 - 2013-08-29 11:46 - 01652448 _____ C:\Users\Lukas\Downloads\Spielesammlung_Setup.zip 2013-08-28 21:31 - 2013-08-28 21:33 - 16728064 _____ C:\Users\Lukas\Downloads\debian-7.1.0-amd64-CD-1.iso.part 2013-08-28 15:37 - 2013-09-03 19:53 - 00000582 _____ C:\Users\Lukas\Desktop\MobaXterm.ini 2013-08-28 11:44 - 2013-08-28 11:44 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TrueCrypt 2013-08-28 11:43 - 2013-08-28 11:43 - 00000895 _____ C:\Users\Lukas\Desktop\TrueCrypt.lnk 2013-08-28 11:43 - 2013-08-28 11:43 - 00000000 ____D C:\Program Files\TrueCrypt 2013-08-28 11:38 - 2013-08-28 11:43 - 00231376 _____ (TrueCrypt Foundation) C:\Windows\system32\Drivers\truecrypt.sys 2013-08-28 11:29 - 2013-08-28 11:29 - 00000000 ___SD C:\Users\Lukas\Documents\Meine Datenquellen 2013-08-28 09:34 - 2013-08-28 09:34 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Greenshot 2013-08-28 09:34 - 2013-08-28 09:34 - 00000000 ____D C:\Users\Lukas\AppData\Local\Greenshot 2013-08-28 09:34 - 2013-08-28 09:34 - 00000000 ____D C:\Program Files\Greenshot 2013-08-27 19:23 - 2013-01-04 20:54 - 14208000 _____ (Mobatek) C:\Users\Lukas\Desktop\MobaXterm_Personal_6.1.exe 2013-08-27 18:10 - 2013-08-29 18:34 - 00000000 ____D C:\Users\Lukas\VirtualBox VMs 2013-08-26 21:20 - 2013-08-26 21:20 - 00000000 ____D C:\Users\Lukas\Documents\Fax 2013-08-24 23:50 - 2013-08-25 12:30 - 00000000 ____D C:\Users\Lukas\AppData\Local\Pokki 2013-08-24 11:12 - 2013-08-28 12:16 - 00002220 _____ C:\Users\Lukas\Desktop\Google Chrome.lnk 2013-08-24 11:10 - 2013-09-07 22:08 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-08-24 11:10 - 2013-09-07 18:15 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-08-24 11:10 - 2013-08-24 11:12 - 00000000 ____D C:\Users\Lukas\AppData\Local\Google 2013-08-24 11:10 - 2013-08-24 11:12 - 00000000 ____D C:\Program Files (x86)\Google 2013-08-24 11:10 - 2013-08-24 11:10 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-08-24 11:10 - 2013-08-24 11:10 - 00003862 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-08-23 18:26 - 2013-08-23 21:56 - 00000000 ____D C:\tmp 2013-08-23 16:11 - 2013-08-23 16:11 - 00002089 _____ C:\Users\Lukas\Desktop\Tina Demo.lnk 2013-08-23 16:11 - 2013-08-23 16:11 - 00000000 ____D C:\Program Files (x86)\DesignSoft 2013-08-23 16:10 - 1998-10-21 19:43 - 00328704 _____ (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe 2013-08-23 09:54 - 2013-08-23 09:54 - 00000000 ____D C:\Program Files (x86)\GIMP 2 2013-08-23 09:48 - 2013-08-23 09:48 - 00001923 _____ C:\Users\Lukas\Desktop\Blender.lnk 2013-08-23 09:48 - 2013-08-23 09:48 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Webocton - Scriptly 2013-08-23 09:48 - 2013-08-23 09:48 - 00000000 ____D C:\Users\Lukas\.thumbnails 2013-08-23 09:48 - 2013-08-23 09:48 - 00000000 ____D C:\Program Files (x86)\Webocton - Scriptly 2013-08-23 09:47 - 2013-08-23 09:47 - 00000000 ____D C:\Program Files\Blender Foundation 2013-08-21 21:26 - 2013-08-31 23:31 - 00000000 ____D C:\ProgramData\Package Cache 2013-08-21 21:26 - 2013-08-21 21:29 - 00000000 ____D C:\Program Files\Rainmeter 2013-08-21 21:26 - 2013-08-21 21:26 - 00000000 ____D C:\Users\Lukas\Documents\Rainmeter 2013-08-21 21:26 - 2013-08-21 21:26 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Rainmeter 2013-08-21 21:23 - 2013-08-31 00:00 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-08-21 21:23 - 2013-08-21 21:23 - 00001021 _____ C:\Users\Lukas\Desktop\WinRAR.lnk 2013-08-21 21:23 - 2013-08-21 21:23 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\WinRAR 2013-08-21 21:23 - 2013-08-21 21:23 - 00000000 ____D C:\Program Files\WinRAR 2013-08-21 19:51 - 2013-08-31 21:30 - 00002093 _____ C:\Users\Lukas\Desktop\Die Entscheidung.bat 2013-08-21 13:17 - 2013-08-23 21:59 - 00000000 ____D C:\Users\Lukas\Documents\Youcam 2013-08-21 11:05 - 2013-08-21 11:07 - 00000000 ____D C:\Users\Lukas\Neuer Ordner 2013-08-21 10:47 - 2013-08-21 10:47 - 00000083 _____ C:\Users\Lukas\Documents\virus.bat 2013-08-20 14:55 - 2013-08-20 14:55 - 00000000 ____D C:\Users\Lukas\Documents\Benutzerdefinierte Office-Vorlagen 2013-08-20 08:07 - 2013-09-01 00:44 - 00439896 _____ C:\Windows\system32\FNTCACHE.DAT 2013-08-19 19:31 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys 2013-08-19 19:31 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe 2013-08-19 19:31 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe 2013-08-19 19:31 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll 2013-08-19 19:31 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll 2013-08-19 19:31 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll 2013-08-19 19:31 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll 2013-08-19 19:31 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll 2013-08-19 19:31 - 2013-07-06 02:16 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2013-08-19 19:31 - 2013-07-03 02:23 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2013-08-19 19:31 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll 2013-08-19 19:31 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2013-08-19 19:31 - 2013-07-03 02:22 - 01300480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2013-08-19 19:31 - 2013-07-03 02:11 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2013-08-19 19:31 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2013-08-19 19:31 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll 2013-08-19 19:31 - 2013-07-03 01:51 - 04039680 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-08-19 19:31 - 2013-07-02 00:08 - 00387583 _____ C:\Windows\system32\ApnDatabase.xml 2013-08-19 19:31 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe 2013-08-19 19:31 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe 2013-08-19 19:31 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2013-08-19 19:31 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2013-08-19 19:31 - 2013-06-29 07:43 - 00327512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2013-08-19 19:31 - 2013-06-29 03:12 - 01022464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2013-08-19 19:31 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2013-08-19 19:31 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys 2013-08-19 19:31 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2013-08-19 19:31 - 2013-06-25 00:54 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll 2013-08-19 19:31 - 2013-06-25 00:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll 2013-08-19 19:31 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll 2013-08-19 19:31 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll 2013-08-19 19:31 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll 2013-08-19 19:31 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll 2013-08-19 19:31 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll 2013-08-19 19:31 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll 2013-08-19 19:31 - 2013-06-10 23:17 - 00096512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys 2013-08-19 19:31 - 2013-06-10 21:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2013-08-19 19:31 - 2013-06-10 21:15 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2013-08-19 19:31 - 2013-06-10 21:15 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2013-08-19 19:31 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2013-08-19 19:31 - 2013-06-10 21:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2013-08-19 19:31 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2013-08-19 19:31 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2013-08-19 11:50 - 2013-08-19 11:50 - 00000616 _____ C:\Users\Lukas\.xmaximarc 2013-08-19 10:42 - 2013-08-19 10:42 - 00002125 _____ C:\Users\Lukas\Desktop\XMaxima.lnk 2013-08-19 10:42 - 2013-08-19 10:42 - 00000000 ____D C:\Program Files (x86)\Maxima-5.28.0-2 2013-08-19 10:38 - 2013-08-19 10:38 - 00001875 _____ C:\Users\Lukas\Desktop\GeoGebra.lnk 2013-08-19 10:38 - 2013-08-19 10:38 - 00000000 ____D C:\Program Files (x86)\GeoGebra 4.2 2013-08-18 21:52 - 2013-08-18 21:54 - 00000000 ____D C:\Users\Lukas\AppData\Local\Adobe 2013-08-17 22:44 - 2013-08-17 22:44 - 00833535 _____ C:\Users\Lukas\Oxygen_Cursors_by_LAvalon.7z 2013-08-17 22:43 - 2013-08-17 22:43 - 00000000 ____D C:\Program Files\7-Zip 2013-08-17 11:19 - 2013-09-07 13:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-08-16 22:24 - 2013-08-16 22:24 - 00000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information 2013-08-16 22:23 - 2013-08-16 22:23 - 00000000 ___HD C:\ProgramData\CanonBJ 2013-08-16 22:23 - 2010-04-24 05:00 - 00336896 _____ (CANON INC.) C:\Windows\system32\CNMLM9X.DLL 2013-08-16 22:23 - 2009-04-03 16:01 - 01321984 _____ (CANON INC.) C:\Windows\system32\CNC270C.dll 2013-08-16 22:23 - 2009-04-03 16:00 - 00092672 _____ (CANON INC.) C:\Windows\system32\CNC270I.dll 2013-08-16 22:23 - 2009-04-03 15:57 - 00106496 _____ (CANON INC.) C:\Windows\SysWOW64\CNC270U.dll 2013-08-16 22:23 - 2009-03-11 11:36 - 00328192 _____ (CANON INC.) C:\Windows\system32\CNC270L.dll 2013-08-16 22:23 - 2009-03-11 11:34 - 00303104 _____ (CANON INC.) C:\Windows\SysWOW64\CNC270L.dll 2013-08-16 22:23 - 2008-11-18 19:57 - 00012544 _____ C:\Windows\SysWOW64\CNC173BD.TBL 2013-08-16 22:23 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.dll 2013-08-16 22:23 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll 2013-08-16 09:00 - 2013-08-23 14:05 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Foxit Software 2013-08-16 09:00 - 2013-08-16 09:00 - 00000000 ____D C:\Program Files (x86)\Foxit Software 2013-08-16 09:00 - 2013-06-09 21:59 - 00216064 _____ C:\Windows\SysWOW64\gcapi_dll.dll 2013-08-15 14:37 - 2013-08-23 09:11 - 00000000 ____D C:\Program Files (x86)\phase5 2013-08-15 14:37 - 2013-08-15 14:37 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Phase 5 HTML-Editor 2013-08-15 14:36 - 2013-08-15 14:36 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Systemberatung Schommer 2013-08-15 10:59 - 2013-09-07 22:08 - 00000000 ____D C:\Users\Lukas\AppData\Local\TSVNCache 2013-08-15 10:57 - 2013-08-22 09:44 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TortoiseSVN 2013-08-15 10:50 - 2013-08-15 10:50 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Subversion 2013-08-15 10:49 - 2013-08-15 10:49 - 00000000 ____D C:\Program Files\TortoiseSVN 2013-08-15 10:49 - 2013-08-15 10:49 - 00000000 ____D C:\Program Files\Common Files\TortoiseOverlays 2013-08-14 13:43 - 2013-08-14 13:43 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-08-14 13:43 - 2013-08-14 13:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-08-14 13:17 - 2013-07-09 08:07 - 02233168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-08-14 13:17 - 2013-05-24 01:02 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2013-08-14 13:17 - 2013-05-24 00:25 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2013-08-14 13:16 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-08-14 13:16 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-08-14 13:16 - 2013-07-26 07:13 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2013-08-14 13:16 - 2013-07-26 07:13 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2013-08-14 13:16 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-08-14 13:16 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-08-14 13:16 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-08-14 13:16 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-08-14 13:16 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-08-14 13:16 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-08-14 13:16 - 2013-07-26 05:13 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll 2013-08-14 13:16 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-08-14 13:16 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-08-14 13:16 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-08-14 13:16 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-08-14 13:16 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-08-14 13:16 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-08-14 13:16 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-08-14 13:16 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-08-14 13:16 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-08-14 13:16 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-08-14 13:16 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-08-14 13:16 - 2013-07-26 02:54 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll 2013-08-14 13:16 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-08-14 13:16 - 2013-07-13 08:16 - 01889280 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-08-14 13:16 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-08-14 13:16 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll 2013-08-14 13:16 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll 2013-08-14 13:16 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2013-08-14 13:16 - 2013-07-13 06:23 - 01568256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-08-14 13:16 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll 2013-08-14 13:16 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll 2013-08-14 13:16 - 2013-07-02 02:44 - 00036288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2013-08-14 13:16 - 2013-07-02 00:08 - 00247216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2013-08-13 15:50 - 2013-08-13 15:50 - 00000017 _____ C:\Users\Lukas\AppData\Local\resmon.resmoncfg 2013-08-13 12:01 - 2013-08-13 12:01 - 00000000 ____D C:\sources 2013-08-12 21:51 - 2013-08-14 13:44 - 00000000 ____D C:\Windows\system32\MRT 2013-08-12 21:46 - 2013-08-12 21:46 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\IDT 2013-08-12 19:15 - 2013-09-03 19:31 - 00000000 ____D C:\Users\Lukas\.VirtualBox 2013-08-12 19:14 - 2013-08-12 19:14 - 00001096 _____ C:\Users\Lukas\Desktop\Oracle VM VirtualBox.lnk 2013-08-12 19:14 - 2013-08-12 19:14 - 00000000 ____D C:\Program Files\Oracle 2013-08-12 19:14 - 2013-07-04 15:58 - 00238352 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys 2013-08-12 19:14 - 2013-07-04 15:57 - 00120080 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys 2013-08-12 19:05 - 2013-09-04 20:54 - 00000000 ____D C:\Users\Lukas\AppData\Local\Spotify 2013-08-12 19:05 - 2013-08-12 19:05 - 00001755 _____ C:\Users\Lukas\Desktop\Spotify.lnk 2013-08-12 19:02 - 2013-09-05 16:20 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Spotify 2013-08-12 16:21 - 2013-09-03 16:58 - 00000000 ____D C:\Users\Lukas\Desktop\BBB 2013-08-12 15:07 - 2013-09-07 22:11 - 00007132 _____ C:\Users\Lukas\ovpntray.log 2013-08-12 15:07 - 2013-08-12 18:58 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\PrivateTunnel 2013-08-12 15:07 - 2013-08-12 15:07 - 00000000 ____D C:\Program Files (x86)\OpenVPN Technologies 2013-08-12 14:15 - 2013-08-12 14:16 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2013-08-12 14:15 - 2013-08-12 14:15 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\NVIDIA 2013-08-12 14:15 - 2013-08-12 14:15 - 00000000 ____D C:\ProgramData\BlueStacks 2013-08-12 14:15 - 2013-08-12 14:15 - 00000000 ____D C:\Program Files (x86)\BlueStacks 2013-08-10 13:56 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2013-08-10 13:56 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2013-08-10 13:56 - 2013-06-01 13:26 - 06987008 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-08-10 13:56 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2013-08-10 13:56 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2013-08-10 13:56 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2013-08-10 13:55 - 2013-06-01 13:29 - 00337152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2013-08-10 13:55 - 2013-06-01 13:29 - 00213248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS 2013-08-10 13:55 - 2013-06-01 13:26 - 00327936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2013-08-10 13:55 - 2013-06-01 11:25 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2013-08-10 13:55 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll 2013-08-10 13:55 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2013-08-10 13:55 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll 2013-08-10 13:55 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll 2013-08-10 13:55 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe 2013-08-10 13:55 - 2013-06-01 11:22 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2013-08-10 13:55 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll 2013-08-10 13:55 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe 2013-08-10 13:55 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2013-08-10 13:55 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll 2013-08-10 13:55 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2013-08-10 13:55 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll 2013-08-10 13:55 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll 2013-08-10 13:55 - 2013-06-01 11:19 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2013-08-10 13:55 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll 2013-08-10 13:55 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys 2013-08-10 13:55 - 2013-05-25 00:09 - 01403296 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2013-08-10 13:55 - 2013-05-25 00:09 - 01271584 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2013-08-10 13:55 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2013-08-10 13:55 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2013-08-10 13:55 - 2012-12-04 06:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2013-08-10 13:54 - 2012-11-27 08:39 - 01122768 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe 2013-08-10 13:54 - 2012-11-27 06:49 - 01027152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe 2013-08-10 13:54 - 2012-11-27 06:20 - 01217536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll 2013-08-10 13:54 - 2012-11-27 06:20 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2013-08-10 13:54 - 2012-11-27 06:20 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2013-08-10 13:54 - 2012-11-27 06:20 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll 2013-08-10 13:54 - 2012-11-27 06:20 - 00560128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll 2013-08-10 13:54 - 2012-11-27 06:20 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll 2013-08-10 13:54 - 2012-11-27 06:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll 2013-08-10 13:54 - 2012-11-27 06:19 - 03245568 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2013-08-10 13:54 - 2012-11-27 06:19 - 01536512 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll 2013-08-10 13:54 - 2012-11-27 06:19 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll 2013-08-10 13:54 - 2012-11-27 06:19 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll 2013-08-10 13:54 - 2012-11-27 06:19 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll 2013-08-10 13:54 - 2012-11-20 07:24 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll 2013-08-10 13:54 - 2012-11-20 07:17 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll 2013-08-10 13:54 - 2012-11-20 07:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL 2013-08-10 13:54 - 2012-11-20 06:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDKURD.DLL 2013-08-10 13:53 - 2012-11-08 06:25 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2013-08-10 13:53 - 2012-11-08 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll 2013-08-10 13:53 - 2012-11-08 06:25 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2013-08-10 13:53 - 2012-11-08 06:22 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2013-08-10 13:53 - 2012-11-08 06:22 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2013-08-10 13:53 - 2012-11-08 06:22 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2013-08-10 13:36 - 2013-08-10 13:43 - 00000180 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Webmail.url 2013-08-10 13:34 - 2013-08-10 13:45 - 00000180 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\BBB moodle.url 2013-08-09 13:57 - 2013-08-09 21:42 - 00000000 ___RD C:\Windows\BrowserChoice 2013-08-09 11:56 - 2013-08-14 13:44 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-08-09 10:33 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2013-08-09 10:33 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2013-08-09 10:33 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2013-08-09 10:33 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll 2013-08-09 10:33 - 2013-04-09 07:17 - 01829408 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-08-09 10:33 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2013-08-09 10:33 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe 2013-08-09 10:33 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2013-08-09 10:33 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2013-08-09 10:33 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2013-08-09 10:33 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll 2013-08-09 10:33 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll 2013-08-09 10:33 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2013-08-09 10:33 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2013-08-09 10:33 - 2013-04-09 06:50 - 01285632 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2013-08-09 10:33 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2013-08-09 10:33 - 2013-04-09 06:50 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-08-09 10:33 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll 2013-08-09 10:33 - 2013-04-09 06:49 - 00817152 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2013-08-09 10:33 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2013-08-09 10:33 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll 2013-08-09 10:33 - 2013-04-09 04:33 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2013-08-09 10:33 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2013-08-09 10:33 - 2013-04-09 04:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2013-08-09 10:33 - 2013-04-09 01:39 - 01408896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-08-09 10:33 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2013-08-09 10:33 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2013-08-09 10:33 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2013-08-09 10:33 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe 2013-08-09 10:33 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2013-08-09 10:33 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2013-08-09 10:33 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2013-08-09 10:33 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll 2013-08-09 10:33 - 2013-04-08 23:51 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2013-08-09 10:33 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll 2013-08-09 10:33 - 2013-04-08 23:51 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-08-09 10:33 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll 2013-08-09 10:33 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll 2013-08-09 10:33 - 2013-02-07 03:33 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2013-08-09 10:32 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll 2013-08-09 10:32 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll 2013-08-09 10:32 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe 2013-08-09 10:32 - 2013-04-09 06:52 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe 2013-08-09 10:32 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2013-08-09 10:32 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2013-08-09 10:32 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll 2013-08-09 10:32 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll 2013-08-09 10:32 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll 2013-08-09 10:32 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll 2013-08-09 10:32 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2013-08-09 10:32 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll 2013-08-09 10:32 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll 2013-08-09 10:32 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll 2013-08-09 10:32 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll 2013-08-09 10:32 - 2013-04-09 06:48 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2013-08-09 10:32 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys 2013-08-09 10:32 - 2013-04-09 04:34 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2013-08-09 10:32 - 2013-04-09 04:34 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys 2013-08-09 10:32 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys 2013-08-09 10:32 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys 2013-08-09 10:32 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll 2013-08-09 10:32 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe 2013-08-09 10:32 - 2013-04-08 23:52 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe 2013-08-09 10:32 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll 2013-08-09 10:32 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll 2013-08-09 10:32 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2013-08-09 10:32 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll 2013-08-09 10:32 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll 2013-08-09 10:32 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll 2013-08-09 10:32 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll 2013-08-09 10:32 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll 2013-08-09 10:32 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll 2013-08-09 10:32 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2013-08-09 10:32 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys 2013-08-09 10:32 - 2013-03-02 04:43 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2013-08-09 10:32 - 2013-02-02 10:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll 2013-08-09 10:32 - 2013-02-02 10:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll 2013-08-09 10:32 - 2012-12-13 06:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-08-09 10:32 - 2012-12-13 05:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2013-08-09 10:32 - 2012-11-20 06:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys 2013-08-09 10:29 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe 2013-08-09 10:29 - 2013-05-04 09:34 - 00446720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2013-08-09 10:29 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2013-08-09 10:29 - 2013-05-04 09:30 - 00058312 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-08-09 10:29 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2013-08-09 10:29 - 2013-05-04 08:59 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-08-09 10:29 - 2013-05-04 08:59 - 01619968 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-08-09 10:29 - 2013-05-04 08:59 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2013-08-09 10:29 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe 2013-08-09 10:29 - 2013-05-04 08:59 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-08-09 10:29 - 2013-05-04 08:59 - 00251904 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2013-08-09 10:29 - 2013-05-04 08:59 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-08-09 10:29 - 2013-05-04 08:59 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-08-09 10:29 - 2013-05-04 08:59 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-08-09 10:29 - 2013-05-04 08:58 - 10116096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2013-08-09 10:29 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2013-08-09 10:29 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll 2013-08-09 10:29 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll 2013-08-09 10:29 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2013-08-09 10:29 - 2013-05-04 08:58 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2013-08-09 10:29 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll 2013-08-09 10:29 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll 2013-08-09 10:29 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 02305024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll 2013-08-09 10:29 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll 2013-08-09 10:29 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl 2013-08-09 10:29 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe 2013-08-09 10:29 - 2013-05-04 06:58 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2013-08-09 10:29 - 2013-05-04 06:58 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2013-08-09 10:29 - 2013-05-04 06:58 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2013-08-09 10:29 - 2013-05-04 06:58 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2013-08-09 10:29 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2013-08-09 10:29 - 2013-05-04 06:57 - 08857088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2013-08-09 10:29 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll 2013-08-09 10:29 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll 2013-08-09 10:29 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll 2013-08-09 10:29 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll 2013-08-09 10:29 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll 2013-08-09 10:29 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll 2013-08-09 10:29 - 2013-05-04 06:56 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2013-08-09 10:29 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll 2013-08-09 10:29 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll 2013-08-09 10:29 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll 2013-08-09 10:29 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll 2013-08-09 10:29 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl 2013-08-09 10:29 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs 2013-08-09 10:29 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys 2013-08-09 10:29 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs 2013-08-09 10:29 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe 2013-08-09 10:29 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe 2013-08-09 10:29 - 2013-03-02 04:45 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-08-09 10:29 - 2013-02-02 10:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll 2013-08-09 10:29 - 2013-02-02 10:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll |
07.09.2013, 21:23 | #9 |
| LAN Verbindung fällt aus oder ist extrem langsam FRST die zweite: Code:
ATTFilter ==================== One Month Modified Files and Folders ======= 2013-09-07 22:10 - 2013-09-07 22:10 - 00000000 ____D C:\FRST 2013-09-07 22:10 - 2013-08-05 14:50 - 00005130 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for LUKAS-PC-Lukas Lukas-PC 2013-09-07 22:09 - 2013-09-07 22:09 - 01948628 _____ (Farbar) C:\Users\Lukas\Downloads\FRST64.exe 2013-09-07 22:09 - 2012-11-07 03:18 - 00831158 _____ C:\Windows\system32\perfh007.dat 2013-09-07 22:09 - 2012-11-07 03:18 - 00188760 _____ C:\Windows\system32\perfc007.dat 2013-09-07 22:09 - 2012-11-07 03:12 - 00864930 _____ C:\Windows\system32\perfh00C.dat 2013-09-07 22:09 - 2012-11-07 03:12 - 00188118 _____ C:\Windows\system32\perfc00C.dat 2013-09-07 22:09 - 2012-07-26 09:28 - 03007708 _____ C:\Windows\system32\PerfStringBackup.INI 2013-09-07 22:08 - 2013-09-03 19:11 - 00003620 _____ C:\Windows\SysWOW64\LOCALSERVICE.INI 2013-09-07 22:08 - 2013-09-03 19:11 - 00000043 _____ C:\Windows\SysWOW64\LOCALDEVICE.INI 2013-09-07 22:08 - 2013-08-24 11:10 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-09-07 22:08 - 2013-08-15 10:59 - 00000000 ____D C:\Users\Lukas\AppData\Local\TSVNCache 2013-09-07 22:08 - 2013-08-05 09:04 - 00000000 ____D C:\Users\Lukas 2013-09-07 22:08 - 2013-03-22 10:00 - 00000983 _____ C:\Windows\SysWOW64\bscs.ini 2013-09-07 22:08 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-09-07 18:22 - 2012-07-26 07:26 - 16252928 ___SH C:\Windows\system32\config\BBI 2013-09-07 18:21 - 2013-08-05 14:37 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\vlc 2013-09-07 18:15 - 2013-08-24 11:10 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-09-07 17:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru 2013-09-07 16:54 - 2013-09-06 19:38 - 00000000 ____D C:\Program Files\Synergy 2013-09-07 16:51 - 2013-09-07 16:51 - 12790680 _____ C:\Users\Lukas\Downloads\synergy-1.4.12-Windows-x64.exe 2013-09-07 13:39 - 2013-09-07 13:39 - 00602112 _____ (OldTimer Tools) C:\Users\Lukas\Downloads\OTL.exe 2013-09-07 13:04 - 2013-08-17 11:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-09-07 13:03 - 2013-09-01 17:46 - 00001562 _____ C:\Windows\PFRO.log 2013-09-07 12:45 - 2013-09-07 12:45 - 00027658 _____ C:\Users\Lukas\Desktop\OTL.zip 2013-09-07 11:30 - 2013-09-07 11:30 - 00001153 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-09-07 11:30 - 2013-09-07 11:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-09-07 11:29 - 2013-09-07 11:29 - 00282008 _____ (Mozilla) C:\Users\Lukas\Downloads\Firefox Setup Stub 23.0.1 (1).exe 2013-09-07 11:20 - 2013-09-07 11:20 - 00246500 _____ C:\Users\Lukas\Desktop\OTL.txt 2013-09-07 11:02 - 2013-09-07 11:01 - 00069264 _____ C:\Users\Lukas\Downloads\OTL (1).Txt 2013-09-07 10:51 - 2013-08-05 09:13 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2289530796-3253066164-2705177501-1002 2013-09-06 19:34 - 2013-09-06 19:34 - 24258203 _____ C:\Users\Lukas\Downloads\synergy_1.4.11.zip 2013-09-06 19:26 - 2013-09-06 19:26 - 00000000 ____D C:\Windows\LastGood.Tmp 2013-09-06 06:44 - 2013-09-05 22:13 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\BitTorrent 2013-09-06 06:30 - 2013-09-05 22:14 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro 2013-09-05 22:49 - 2013-08-05 09:04 - 01628294 _____ C:\Windows\WindowsUpdate.log 2013-09-05 22:35 - 2013-09-05 22:14 - 808452096 ____R C:\Users\Lukas\Downloads\crunchbang-11-20130506-i486.iso 2013-09-05 22:30 - 2013-09-05 22:14 - 00000000 ____D C:\Users\Lukas\Downloads\BitTorrent-MickeyHartBand-Free 2013-09-05 22:14 - 2013-09-05 22:14 - 00000835 _____ C:\Users\Lukas\Desktop\BitTorrent.lnk 2013-09-05 22:14 - 2013-09-05 22:14 - 00000815 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk 2013-09-05 22:13 - 2013-09-05 22:13 - 01126488 _____ (BitTorrent Inc.) C:\Users\Lukas\Downloads\BitTorrent_7.8.1b30004.exe 2013-09-05 22:13 - 2013-09-05 22:13 - 01126488 _____ (BitTorrent Inc.) C:\Users\Lukas\Downloads\BitTorrent_7.8.1b30004 (1).exe 2013-09-05 22:12 - 2013-09-05 22:12 - 00031107 _____ C:\Users\Lukas\Downloads\crunchbang-11-20130506-i486.iso.torrent 2013-09-05 21:54 - 2013-09-05 21:54 - 00001955 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk 2013-09-05 21:54 - 2013-09-05 21:54 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Canneverbe Limited 2013-09-05 21:54 - 2013-09-05 21:54 - 00000000 ____D C:\ProgramData\Canneverbe Limited 2013-09-05 21:54 - 2013-09-05 21:54 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP 2013-09-05 21:53 - 2013-09-05 21:53 - 05357456 _____ (Canneverbe Limited ) C:\Users\Lukas\Downloads\cdbxp_setup_4.5.2.4255.exe 2013-09-05 21:45 - 2013-09-05 21:45 - 00000000 ____D C:\Users\Lukas\AppData\Local\Nero_AG 2013-09-05 21:45 - 2013-09-05 21:44 - 00000000 ____D C:\Users\Lukas\AppData\Local\Nero 2013-09-05 21:44 - 2013-09-05 21:43 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Nero 2013-09-05 21:42 - 2013-09-05 21:42 - 00002781 _____ C:\Users\Public\Desktop\Nero 12.lnk 2013-09-05 21:42 - 2013-09-05 21:38 - 00000000 ____D C:\ProgramData\Nero 2013-09-05 21:42 - 2013-09-05 21:38 - 00000000 ____D C:\Program Files (x86)\Nero 2013-09-05 21:42 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\Cursors 2013-09-05 21:37 - 2013-09-05 21:19 - 741343232 _____ C:\Users\Lukas\Downloads\ubuntu-12.04.3-desktop-i386.iso 2013-09-05 21:30 - 2013-09-05 21:22 - 326112440 _____ (Nero AG) C:\Users\Lukas\Downloads\Nero-12.5.01900_trial.exe 2013-09-05 19:49 - 2013-09-05 10:44 - 00000000 ____D C:\Users\Public\Documents\Lightworks 2013-09-05 16:55 - 2013-09-05 16:53 - 00630079 _____ C:\Users\Lukas\Downloads\TortoiseSVN-1.8.2.24708-x64-svn-1.8.3.msi.part 2013-09-05 16:20 - 2013-08-12 19:02 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Spotify 2013-09-05 13:38 - 2013-09-05 13:38 - 00073545 _____ C:\Users\Lukas\Downloads\11S01BlackTuesday.zip 2013-09-05 13:21 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\NDF 2013-09-05 10:45 - 2013-09-05 10:45 - 00000000 ____D C:\Users\Lukas\.MCReferenceSdk 2013-09-05 10:44 - 2013-09-05 10:44 - 00001796 _____ C:\Users\Public\Desktop\Lightworks (11.1).lnk 2013-09-05 10:44 - 2013-09-05 10:44 - 00000000 ____D C:\ProgramData\Geevs 2013-09-05 10:44 - 2013-09-05 10:42 - 00000000 ____D C:\Program Files\Lightworks 2013-09-05 10:41 - 2013-09-05 10:40 - 76074768 _____ (Lightworks) C:\Users\Lukas\Downloads\setup_11.1_full_64bit.exe 2013-09-05 10:36 - 2013-09-05 10:35 - 00262144 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2013-09-05 10:36 - 2013-09-05 10:35 - 00086016 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll 2013-09-05 10:34 - 2013-09-05 10:34 - 15710297 _____ C:\Users\Lukas\Downloads\jahshaka-2.0-installer.exe 2013-09-04 23:38 - 2013-08-05 09:04 - 00000000 ____D C:\Users\Lukas\AppData\Local\Packages 2013-09-04 23:01 - 2013-09-04 22:58 - 19263515 _____ C:\Users\Lukas\Downloads\Android_KITKAT_4.4_--_The_future_of_confectionery.mp4 2013-09-04 22:58 - 2013-09-04 22:54 - 34640643 _____ C:\Users\Lukas\Downloads\Unveiling_of_the_Android_KitKat_statue_-new_Nexus_.mp4 2013-09-04 20:54 - 2013-08-12 19:05 - 00000000 ____D C:\Users\Lukas\AppData\Local\Spotify 2013-09-04 19:29 - 2013-09-04 13:27 - 00000350 _____ C:\Windows\Tasks\HPCeeScheduleForLukas.job 2013-09-04 17:00 - 2013-09-04 15:48 - 00044760 _____ C:\Users\Lukas\Downloads\Tankstelle(1).xlsx 2013-09-04 15:48 - 2013-09-04 15:48 - 00043447 _____ C:\Users\Lukas\Downloads\Tankstelle.xlsx 2013-09-04 14:14 - 2013-09-04 09:10 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\PapDesigner 2013-09-04 13:27 - 2013-09-04 13:27 - 00003160 _____ C:\Windows\System32\Tasks\HPCeeScheduleForLukas 2013-09-04 13:27 - 2013-08-05 09:07 - 00000000 ____D C:\Users\Lukas\AppData\Local\Hewlett-Packard 2013-09-04 09:32 - 2013-08-06 22:11 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log 2013-09-04 09:31 - 2013-04-20 21:10 - 00000000 ____D C:\ProgramData\CyberLink 2013-09-04 09:30 - 2013-04-20 21:09 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll 2013-09-04 09:30 - 2013-04-20 21:09 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll 2013-09-04 09:30 - 2013-04-20 21:09 - 00029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll 2013-09-04 09:30 - 2012-11-06 19:11 - 00000000 ____D C:\Program Files (x86)\CyberLink 2013-09-04 09:29 - 2012-08-04 02:02 - 00000000 ____D C:\SWSetup 2013-09-04 09:11 - 2013-09-04 09:11 - 00001067 _____ C:\Users\Lukas\Desktop\PapDesigner.lnk 2013-09-04 09:10 - 2013-09-04 09:10 - 00477643 _____ (friedrich folkmann) C:\Users\Lukas\Downloads\PapDesigner-Setup.exe 2013-09-04 09:10 - 2013-09-04 09:10 - 00000000 ____D C:\Program Files (x86)\PapDesigner 2013-09-04 08:54 - 2013-09-04 08:54 - 00009409 _____ C:\Users\Lukas\Downloads\Adressen.xlsx 2013-09-04 08:50 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache 2013-09-03 22:26 - 2013-09-03 22:26 - 05192704 _____ (Geza Kovacs) C:\Users\Lukas\Downloads\unetbootin-windows-585.exe 2013-09-03 22:20 - 2013-09-03 22:20 - 00000000 ____D C:\Users\Lukas\AppData\Local\bluesoleil 2013-09-03 19:53 - 2013-08-28 15:37 - 00000582 _____ C:\Users\Lukas\Desktop\MobaXterm.ini 2013-09-03 19:31 - 2013-08-12 19:15 - 00000000 ____D C:\Users\Lukas\.VirtualBox 2013-09-03 19:15 - 2013-09-03 19:14 - 00000000 ____D C:\Program Files\IDT 2013-09-03 19:15 - 2013-09-03 19:09 - 00000660 _____ C:\Windows\setupact.log 2013-09-03 19:13 - 2013-09-03 19:14 - 02188800 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll 2013-09-03 19:13 - 2013-09-03 19:14 - 00671744 ____N (IDT, Inc.) C:\Windows\system32\stapi64.dll 2013-09-03 19:13 - 2013-09-03 19:14 - 00542208 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys 2013-09-03 19:13 - 2013-09-03 19:14 - 00499200 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll 2013-09-03 19:13 - 2013-09-03 19:14 - 00255488 _____ (IDT, Inc.) C:\Windows\system32\st646425.dll 2013-09-03 19:13 - 2013-04-20 20:51 - 07986176 _____ (IDT, Inc.) C:\Windows\system32\IDTNGUI.exe 2013-09-03 19:13 - 2013-04-20 20:51 - 07712768 _____ (IDT, Inc.) C:\Windows\system32\IDTNHP.dll 2013-09-03 19:13 - 2013-04-20 20:51 - 06085632 _____ (IDT, Inc.) C:\Windows\system32\stlang64.dll 2013-09-03 19:13 - 2013-04-20 20:51 - 02213376 _____ (IDT, Inc.) C:\Windows\system32\IDTNX.dll 2013-09-03 19:13 - 2013-04-20 20:51 - 01821184 _____ (IDT, Inc.) C:\Windows\system32\IDTNC64.cpl 2013-09-03 19:13 - 2013-04-20 20:51 - 01664000 _____ (IDT, Inc.) C:\Windows\sttray64.exe 2013-09-03 19:13 - 2013-04-20 20:51 - 00464384 _____ (SRS Labs, Inc.) C:\Windows\system32\slapoi64.dll 2013-09-03 19:13 - 2013-04-20 20:51 - 00253952 _____ (IDT, Inc.) C:\Windows\system32\IDTNJ.exe 2013-09-03 19:13 - 2013-04-20 20:51 - 00224256 _____ (IDT, Inc.) C:\Windows\system32\HPToneCtrls64.dll 2013-09-03 19:13 - 2013-04-20 20:51 - 00042482 _____ C:\Windows\system32\Goya&Kroyer_dv6.xml 2013-09-03 19:11 - 2013-04-20 20:56 - 00000032 _____ C:\Windows\0 2013-09-03 19:10 - 2013-09-03 19:10 - 00000000 ____D C:\ProgramData\Ralink Bluetooth Stack 2013-09-03 19:10 - 2013-09-03 19:10 - 00000000 ____D C:\Program Files (x86)\Ralink Corporation 2013-09-03 19:09 - 2013-09-03 19:09 - 00000000 _____ C:\Windows\setuperr.log 2013-09-03 19:03 - 2013-04-20 20:58 - 00000000 ____D C:\Windows\Hewlett-Packard 2013-09-03 18:54 - 2013-08-06 22:11 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt 2013-09-03 16:58 - 2013-08-12 16:21 - 00000000 ____D C:\Users\Lukas\Desktop\BBB 2013-09-03 13:48 - 2013-09-03 13:48 - 05730339 _____ C:\Users\Lukas\Downloads\ww2013cc_bu.zip 2013-09-03 13:05 - 2013-09-03 13:05 - 00010353 _____ C:\Users\Lukas\Downloads\Personalblatt (1).xlsx 2013-09-03 13:04 - 2013-09-03 13:04 - 00010353 _____ C:\Users\Lukas\Downloads\Personalblatt.xlsx 2013-09-03 13:00 - 2013-08-31 20:17 - 00000284 ____C C:\Users\Lukas\Desktop\Start.bat 2013-09-03 11:58 - 2013-09-03 11:58 - 01581600 _____ C:\Users\Lukas\Downloads\ex2013cc_bu.zip 2013-09-02 20:17 - 2013-09-02 20:14 - 00000000 ____D C:\ProgramData\SystemExplorer 2013-09-02 20:14 - 2013-09-02 20:14 - 00001092 _____ C:\Users\Public\Desktop\System Explorer.lnk 2013-09-02 20:14 - 2013-09-02 20:14 - 00000000 ____D C:\Program Files (x86)\System Explorer 2013-09-02 20:13 - 2013-09-02 20:12 - 02061008 _____ (Mister Group ) C:\Users\Lukas\Downloads\SystemExplorerSetup_422.exe 2013-09-02 14:52 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM 2013-09-01 21:57 - 2013-09-01 21:57 - 00930855 _____ C:\Users\Lukas\Downloads\Fotos_heruntergeladen_mit_AirDroid.zip 2013-09-01 21:24 - 2013-08-31 23:31 - 00000000 ____D C:\Users\Lukas\Documents\Visual Studio 2013 2013-09-01 12:37 - 2013-09-01 12:37 - 00000218 _____ C:\Users\Lukas\AppData\Local\recently-used.xbel 2013-09-01 12:37 - 2013-08-31 22:42 - 00000000 ____D C:\Users\Lukas\.bluefish 2013-09-01 12:14 - 2013-08-05 12:52 - 00000000 ____D C:\Users\Lukas\Verknüpfungen 2013-09-01 12:13 - 2013-09-01 12:12 - 00002017 _____ C:\Users\Lukas\Desktop\myApps.lnk 2013-09-01 12:08 - 2012-08-04 01:21 - 00000000 ____D C:\Windows\Panther 2013-09-01 12:03 - 2013-09-01 12:03 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2013-09-01 12:03 - 2013-09-01 12:03 - 00000000 ____D C:\Program Files\CCleaner 2013-09-01 12:02 - 2013-09-01 12:02 - 04454952 _____ (Piriform Ltd) C:\Users\Lukas\Downloads\ccsetup405.exe 2013-09-01 10:56 - 2013-09-01 10:56 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Lukas\Downloads\Shockwave_Installer_Slim (1).exe 2013-09-01 10:34 - 2013-08-31 23:41 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TeamViewer 2013-09-01 01:01 - 2013-09-01 01:01 - 00282008 _____ (Mozilla) C:\Users\Lukas\Downloads\Firefox Setup Stub 23.0.1.exe 2013-09-01 00:57 - 2013-09-01 00:57 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Lukas\Downloads\Shockwave_Installer_Slim(1).exe 2013-09-01 00:55 - 2013-09-01 00:55 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Lukas\Downloads\Shockwave_Installer_Slim.exe 2013-09-01 00:44 - 2013-08-20 08:07 - 00439896 _____ C:\Windows\system32\FNTCACHE.DAT 2013-08-31 23:56 - 2013-08-31 23:56 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\NuGet 2013-08-31 23:40 - 2013-08-31 23:40 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2013-08-31 23:39 - 2013-08-31 23:36 - 05536272 _____ (TeamViewer GmbH) C:\Users\Lukas\Downloads\TeamViewer_Setup_de.exe 2013-08-31 23:31 - 2013-08-21 21:26 - 00000000 ____D C:\ProgramData\Package Cache 2013-08-31 23:30 - 2013-08-31 23:30 - 00000000 ____D C:\ProgramData\NuGet 2013-08-31 23:30 - 2013-08-31 23:30 - 00000000 ____D C:\Program Files (x86)\NuGet 2013-08-31 23:27 - 2013-08-31 21:59 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2013-08-31 23:27 - 2013-08-05 09:36 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2013-08-31 23:27 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2013-08-31 23:20 - 2013-08-31 23:20 - 00000055 _____ C:\Users\Lukas\Documents\Proxy.txt 2013-08-31 23:11 - 2013-08-31 22:13 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2013-08-31 22:56 - 2013-08-31 22:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf 2013-08-31 22:56 - 2013-08-31 22:56 - 00000000 ____D C:\Windows\symbols 2013-08-31 22:42 - 2013-08-31 22:42 - 00000000 ____D C:\Users\Lukas\AppData\Local\enchant 2013-08-31 22:42 - 2013-08-31 22:32 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2013-08-31 22:15 - 2013-08-31 22:15 - 00001570 _____ C:\Users\Lukas\Desktop\Express Preview for Desktop.lnk 2013-08-31 22:15 - 2013-08-31 21:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0 2013-08-31 22:13 - 2013-08-31 22:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2013-08-31 22:13 - 2012-08-04 00:37 - 00000000 ____D C:\Program Files (x86)\MSBuild 2013-08-31 22:05 - 2013-08-31 22:05 - 00000000 ____D C:\Windows\SysWOW64\1033 2013-08-31 22:05 - 2013-08-31 22:05 - 00000000 ____D C:\Windows\SysWOW64\1031 2013-08-31 22:05 - 2013-08-31 22:05 - 00000000 ____D C:\Windows\system32\1033 2013-08-31 22:05 - 2013-08-31 22:05 - 00000000 ____D C:\Windows\system32\1031 2013-08-31 21:56 - 2013-08-31 21:56 - 00016533 _____ C:\Users\Lukas\Downloads\ubuntu_title.zip 2013-08-31 21:55 - 2013-08-31 21:55 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-08-31 21:55 - 2012-11-06 19:20 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-08-31 21:52 - 2013-08-31 21:52 - 00036190 _____ C:\Users\Lukas\Downloads\metro_df.zip 2013-08-31 21:43 - 2013-08-31 21:43 - 00975264 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\wdexpress_full.exe 2013-08-31 21:39 - 2013-08-31 21:39 - 00001013 _____ C:\Users\Public\Desktop\Bluefish.lnk 2013-08-31 21:39 - 2013-08-31 21:38 - 00000000 ____D C:\Program Files (x86)\Bluefish 2013-08-31 21:34 - 2013-08-31 21:32 - 04428377 _____ C:\Users\Lukas\Downloads\Bluefish-2.2.4-setup.exe 2013-08-31 21:34 - 2013-08-31 21:32 - 02798541 _____ C:\Users\Lukas\Downloads\pidgin-2.10.7.exe 2013-08-31 21:30 - 2013-08-21 19:51 - 00002093 _____ C:\Users\Lukas\Desktop\Die Entscheidung.bat 2013-08-31 13:27 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent 2013-08-31 13:02 - 2013-08-31 12:23 - 12353536 _____ C:\Users\Lukas\Downloads\debian-7.1.0-amd64-CD-1.iso 2013-08-31 12:39 - 2013-08-31 12:24 - 00002196 _____ C:\Users\Lukas\Desktop\neptune.lnk 2013-08-31 12:32 - 2013-08-31 12:24 - 00002190 _____ C:\Users\Lukas\Desktop\Debian.lnk 2013-08-31 11:01 - 2013-08-30 23:59 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\ClassicShell 2013-08-31 10:52 - 2013-08-31 10:52 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\StartMenuX 2013-08-31 10:52 - 2013-08-31 10:52 - 00000000 ____D C:\ProgramData\StartMenuX 2013-08-31 10:52 - 2013-08-31 10:52 - 00000000 ____D C:\Program Files\Start Menu X 2013-08-31 10:52 - 2013-08-31 10:51 - 05225176 _____ (OrdinarySoft ) C:\Users\Lukas\Downloads\StartMenuX_Setup_4_911_freeware.exe 2013-08-31 10:38 - 2013-08-31 10:38 - 00000527 _____ C:\Users\Lukas\Downloads\p.txt 2013-08-31 00:01 - 2013-08-05 09:04 - 00000000 ___RD C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2013-08-31 00:00 - 2013-08-21 21:23 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-08-30 23:58 - 2013-08-30 23:58 - 00000851 _____ C:\Users\Lukas\Downloads\bilder-verkleinern.net-20130830-235807.zip 2013-08-30 23:57 - 2013-08-30 23:57 - 00001420 _____ C:\Users\Lukas\Downloads\bilder-verkleinern.net-20130830-235653.zip 2013-08-30 23:56 - 2013-08-30 23:56 - 00000000 ____D C:\Users\Lukas\Downloads\bilder-verkleinern.net-20130830-235541 2013-08-30 23:55 - 2013-08-30 23:55 - 00030901 _____ C:\Users\Lukas\Downloads\bilder-verkleinern.net-20130830-235541.zip 2013-08-30 23:40 - 2013-08-30 23:40 - 05174240 _____ (IvoSoft) C:\Users\Lukas\Downloads\ClassicShellSetup_3_9_3.exe 2013-08-29 22:44 - 2013-08-29 22:44 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\KDE 2013-08-29 22:44 - 2013-08-29 22:43 - 02267648 _____ C:\Users\Lukas\Downloads\kdewin-installer-gui-1.0.0.exe.part.Hp7100 2013-08-29 22:43 - 2013-08-29 22:43 - 02267648 _____ C:\Users\Lukas\Downloads\kdewin-installer-gui-1.0.0.exe 2013-08-29 22:43 - 2013-08-29 22:43 - 00000000 ____D C:\ProgramData\KDE 2013-08-29 22:37 - 2013-08-29 22:37 - 00007540 _____ C:\Users\Lukas\Downloads\kdewin-installer-gui-1.0.0.exe.meta4 2013-08-29 18:34 - 2013-08-27 18:10 - 00000000 ____D C:\Users\Lukas\VirtualBox VMs 2013-08-29 14:31 - 2013-08-29 14:30 - 45036520 _____ C:\Users\Lukas\Downloads\2013-02-09-wheezy-raspbian.zip.part 2013-08-29 11:47 - 2013-08-29 11:46 - 00000000 ____D C:\Users\Lukas\AppData\Local\Deployment 2013-08-29 11:46 - 2013-08-29 11:46 - 00000000 ____D C:\Users\Lukas\Downloads\Installationsdateien 2013-08-29 11:46 - 2013-08-29 11:46 - 00000000 ____D C:\Users\Lukas\AppData\Local\Apps\2.0 2013-08-29 11:46 - 2013-08-29 11:45 - 01652448 _____ C:\Users\Lukas\Downloads\Spielesammlung_Setup.zip 2013-08-28 21:33 - 2013-08-28 21:31 - 16728064 _____ C:\Users\Lukas\Downloads\debian-7.1.0-amd64-CD-1.iso.part 2013-08-28 12:16 - 2013-08-24 11:12 - 00002220 _____ C:\Users\Lukas\Desktop\Google Chrome.lnk 2013-08-28 11:44 - 2013-08-28 11:44 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TrueCrypt 2013-08-28 11:43 - 2013-08-28 11:43 - 00000895 _____ C:\Users\Lukas\Desktop\TrueCrypt.lnk 2013-08-28 11:43 - 2013-08-28 11:43 - 00000000 ____D C:\Program Files\TrueCrypt 2013-08-28 11:43 - 2013-08-28 11:38 - 00231376 _____ (TrueCrypt Foundation) C:\Windows\system32\Drivers\truecrypt.sys 2013-08-28 11:29 - 2013-08-28 11:29 - 00000000 ___SD C:\Users\Lukas\Documents\Meine Datenquellen 2013-08-28 09:34 - 2013-08-28 09:34 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Greenshot 2013-08-28 09:34 - 2013-08-28 09:34 - 00000000 ____D C:\Users\Lukas\AppData\Local\Greenshot 2013-08-28 09:34 - 2013-08-28 09:34 - 00000000 ____D C:\Program Files\Greenshot 2013-08-27 08:37 - 2013-08-05 09:32 - 00000000 ____D C:\Users\Lukas\AppData\Local\Microsoft Help 2013-08-26 21:20 - 2013-08-26 21:20 - 00000000 ____D C:\Users\Lukas\Documents\Fax 2013-08-25 12:30 - 2013-08-24 23:50 - 00000000 ____D C:\Users\Lukas\AppData\Local\Pokki 2013-08-24 11:12 - 2013-08-24 11:10 - 00000000 ____D C:\Users\Lukas\AppData\Local\Google 2013-08-24 11:12 - 2013-08-24 11:10 - 00000000 ____D C:\Program Files (x86)\Google 2013-08-24 11:10 - 2013-08-24 11:10 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-08-24 11:10 - 2013-08-24 11:10 - 00003862 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-08-23 21:59 - 2013-08-21 13:17 - 00000000 ____D C:\Users\Lukas\Documents\Youcam 2013-08-23 21:56 - 2013-08-23 18:26 - 00000000 ____D C:\tmp 2013-08-23 16:11 - 2013-08-23 16:11 - 00002089 _____ C:\Users\Lukas\Desktop\Tina Demo.lnk 2013-08-23 16:11 - 2013-08-23 16:11 - 00000000 ____D C:\Program Files (x86)\DesignSoft 2013-08-23 16:11 - 2013-08-05 09:05 - 00000000 ____D C:\Users\Lukas\AppData\Local\VirtualStore 2013-08-23 14:05 - 2013-08-16 09:00 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Foxit Software 2013-08-23 09:54 - 2013-08-23 09:54 - 00000000 ____D C:\Program Files (x86)\GIMP 2 2013-08-23 09:48 - 2013-08-23 09:48 - 00001923 _____ C:\Users\Lukas\Desktop\Blender.lnk 2013-08-23 09:48 - 2013-08-23 09:48 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Webocton - Scriptly 2013-08-23 09:48 - 2013-08-23 09:48 - 00000000 ____D C:\Users\Lukas\.thumbnails 2013-08-23 09:48 - 2013-08-23 09:48 - 00000000 ____D C:\Program Files (x86)\Webocton - Scriptly 2013-08-23 09:47 - 2013-08-23 09:47 - 00000000 ____D C:\Program Files\Blender Foundation 2013-08-23 09:11 - 2013-08-15 14:37 - 00000000 ____D C:\Program Files (x86)\phase5 2013-08-22 09:44 - 2013-08-15 10:57 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TortoiseSVN 2013-08-21 21:29 - 2013-08-21 21:26 - 00000000 ____D C:\Program Files\Rainmeter 2013-08-21 21:26 - 2013-08-21 21:26 - 00000000 ____D C:\Users\Lukas\Documents\Rainmeter 2013-08-21 21:26 - 2013-08-21 21:26 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Rainmeter 2013-08-21 21:26 - 2013-08-05 09:07 - 00000000 ___RD C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-08-21 21:23 - 2013-08-21 21:23 - 00001021 _____ C:\Users\Lukas\Desktop\WinRAR.lnk 2013-08-21 21:23 - 2013-08-21 21:23 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\WinRAR 2013-08-21 21:23 - 2013-08-21 21:23 - 00000000 ____D C:\Program Files\WinRAR 2013-08-21 11:07 - 2013-08-21 11:05 - 00000000 ____D C:\Users\Lukas\Neuer Ordner 2013-08-21 10:47 - 2013-08-21 10:47 - 00000083 _____ C:\Users\Lukas\Documents\virus.bat 2013-08-20 21:17 - 2013-08-05 19:16 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\hpqlog 2013-08-20 21:15 - 2013-04-20 21:08 - 00000000 ____D C:\Program Files (x86)\HP SimplePass 2013-08-20 21:14 - 2013-04-20 21:08 - 00000000 ____D C:\ProgramData\Downloaded Installations 2013-08-20 21:14 - 2013-04-20 21:08 - 00000000 ____D C:\Program Files\Common Files\AuthenTec 2013-08-20 20:30 - 2012-11-06 19:07 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard 2013-08-20 20:30 - 2012-09-19 04:56 - 00000000 ____D C:\Program Files\Hewlett-Packard 2013-08-20 14:55 - 2013-08-20 14:55 - 00000000 ____D C:\Users\Lukas\Documents\Benutzerdefinierte Office-Vorlagen 2013-08-19 19:32 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore 2013-08-19 19:32 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe 2013-08-19 11:50 - 2013-08-19 11:50 - 00000616 _____ C:\Users\Lukas\.xmaximarc 2013-08-19 10:42 - 2013-08-19 10:42 - 00002125 _____ C:\Users\Lukas\Desktop\XMaxima.lnk 2013-08-19 10:42 - 2013-08-19 10:42 - 00000000 ____D C:\Program Files (x86)\Maxima-5.28.0-2 2013-08-19 10:38 - 2013-08-19 10:38 - 00001875 _____ C:\Users\Lukas\Desktop\GeoGebra.lnk 2013-08-19 10:38 - 2013-08-19 10:38 - 00000000 ____D C:\Program Files (x86)\GeoGebra 4.2 2013-08-19 08:36 - 2013-08-05 09:32 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-08-18 21:54 - 2013-08-18 21:52 - 00000000 ____D C:\Users\Lukas\AppData\Local\Adobe 2013-08-17 22:44 - 2013-08-17 22:44 - 00833535 _____ C:\Users\Lukas\Oxygen_Cursors_by_LAvalon.7z 2013-08-17 22:43 - 2013-08-17 22:43 - 00000000 ____D C:\Program Files\7-Zip 2013-08-16 22:24 - 2013-08-16 22:24 - 00000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information 2013-08-16 22:23 - 2013-08-16 22:23 - 00000000 ___HD C:\ProgramData\CanonBJ 2013-08-16 22:23 - 2012-07-26 10:12 - 00000000 __RSD C:\Windows\Media 2013-08-16 09:00 - 2013-08-16 09:00 - 00000000 ____D C:\Program Files (x86)\Foxit Software 2013-08-15 14:37 - 2013-08-15 14:37 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Phase 5 HTML-Editor 2013-08-15 14:36 - 2013-08-15 14:36 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Systemberatung Schommer 2013-08-15 10:50 - 2013-08-15 10:50 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Subversion 2013-08-15 10:49 - 2013-08-15 10:49 - 00000000 ____D C:\Program Files\TortoiseSVN 2013-08-15 10:49 - 2013-08-15 10:49 - 00000000 ____D C:\Program Files\Common Files\TortoiseOverlays 2013-08-14 17:00 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Defender 2013-08-14 17:00 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2013-08-14 13:46 - 2012-07-26 07:26 - 00000167 _____ C:\Windows\win.ini 2013-08-14 13:44 - 2013-08-12 21:51 - 00000000 ____D C:\Windows\system32\MRT 2013-08-14 13:44 - 2013-08-09 11:56 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-08-14 13:43 - 2013-08-14 13:43 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-08-14 13:43 - 2013-08-14 13:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-08-13 15:50 - 2013-08-13 15:50 - 00000017 _____ C:\Users\Lukas\AppData\Local\resmon.resmoncfg 2013-08-13 12:09 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2013-08-13 12:08 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2013-08-13 12:08 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-08-13 12:08 - 2012-07-26 09:52 - 00000000 ____D C:\Program Files\Windows Journal 2013-08-13 12:08 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\SysWOW64\winrm 2013-08-13 12:08 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\oobe 2013-08-13 12:07 - 2012-11-07 03:12 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2013-08-13 12:07 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2013-08-13 12:07 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\MUI 2013-08-13 12:07 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\inetsrv 2013-08-13 12:07 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\Com 2013-08-13 12:07 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\migwiz 2013-08-13 12:07 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\SysWOW64\WCN 2013-08-13 12:07 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\SysWOW64\sysprep 2013-08-13 12:07 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2013-08-13 12:07 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2013-08-13 12:07 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\system32\winrm 2013-08-13 12:07 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism 2013-08-13 12:06 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\inetsrv 2013-08-13 12:06 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\system32\WCN 2013-08-13 12:06 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\system32\slmgr 2013-08-13 12:06 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Sysprep 2013-08-13 12:06 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Dism 2013-08-13 12:05 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2013-08-13 12:05 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\Com 2013-08-13 12:05 - 2012-07-26 09:51 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2013-08-13 12:04 - 2012-11-07 03:27 - 00000000 ____D C:\Windows\en-GB 2013-08-13 12:04 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\en-GB 2013-08-13 12:04 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Common Files\System 2013-08-13 12:03 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\en-GB 2013-08-13 12:03 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-08-13 12:02 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\MUI 2013-08-13 12:01 - 2013-08-13 12:01 - 00000000 ____D C:\sources 2013-08-12 21:53 - 2013-04-20 20:59 - 00000000 ____D C:\Windows\SysWOW64\NV 2013-08-12 21:53 - 2013-04-20 20:59 - 00000000 ____D C:\Windows\system32\NV 2013-08-12 21:50 - 2013-04-20 20:51 - 00000000 ____D C:\ProgramData\NVIDIA 2013-08-12 21:46 - 2013-08-12 21:46 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\IDT 2013-08-12 19:14 - 2013-08-12 19:14 - 00001096 _____ C:\Users\Lukas\Desktop\Oracle VM VirtualBox.lnk 2013-08-12 19:14 - 2013-08-12 19:14 - 00000000 ____D C:\Program Files\Oracle 2013-08-12 19:05 - 2013-08-12 19:05 - 00001755 _____ C:\Users\Lukas\Desktop\Spotify.lnk 2013-08-12 18:58 - 2013-08-12 15:07 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\PrivateTunnel 2013-08-12 15:07 - 2013-08-12 15:07 - 00000000 ____D C:\Program Files (x86)\OpenVPN Technologies 2013-08-12 14:16 - 2013-08-12 14:15 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2013-08-12 14:15 - 2013-08-12 14:15 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\NVIDIA 2013-08-12 14:15 - 2013-08-12 14:15 - 00000000 ____D C:\ProgramData\BlueStacks 2013-08-12 14:15 - 2013-08-12 14:15 - 00000000 ____D C:\Program Files (x86)\BlueStacks 2013-08-12 14:15 - 2012-07-26 10:12 - 00000000 __RHD C:\Users\Public\Libraries 2013-08-10 13:45 - 2013-08-10 13:34 - 00000180 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\BBB moodle.url 2013-08-10 13:43 - 2013-08-10 13:36 - 00000180 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Webmail.url 2013-08-09 21:42 - 2013-08-09 13:57 - 00000000 ___RD C:\Windows\BrowserChoice 2013-08-09 21:42 - 2013-08-05 09:07 - 00000000 ___RD C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-08-09 21:42 - 2012-08-04 00:29 - 00000000 ____D C:\ProgramData\PRICache 2013-08-09 21:41 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\servicing 2013-08-09 13:55 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ToastData 2013-08-09 10:37 - 2013-08-07 11:45 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 Files to move or delete: ==================== C:\Users\Lukas\AppData\Local\Temp\Extract.exe C:\Users\Lukas\AppData\Local\Temp\SP58764.exe C:\Users\Lukas\AppData\Local\Temp\SP59654.exe C:\Users\Lukas\AppData\Local\Temp\SP61795.exe C:\Users\Lukas\AppData\Local\Temp\SP62405.exe C:\Users\Lukas\AppData\Local\Temp\SP62991.exe C:\Users\Lukas\AppData\Local\Temp\vlc-2.0.8-win64.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-08-30 10:14 ==================== End Of Log ============================ Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-09-2013 03 Ran by Lukas at 2013-09-07 22:11:35 Running from C:\Users\Lukas\Downloads Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) AuthenTec TrueAPI 64-bit (Version: 1.6.0.87) BitTorrent (HKCU Version: 7.8.1.30016) Bluefish 2.2.4 (x32 Version: 2.2.4) BlueStacks App Player (x32 Version: 0.7.17.916) BlueStacks Notification Center (x32 Version: 0.7.17.916) Build Tools - amd64 (Version: 12.0.20617) Build Tools - x86 (x32 Version: 12.0.20617) Buildtools-Sprachressourcen - amd64 (Version: 12.0.20617) Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.20617) Canon MP270 series MP Drivers CCleaner (Version: 4.05) CDBurnerXP (x32 Version: 4.5.2.4255) Connected Music powered by Universal Music Group version 1.0 (x32 Version: 1.0) CyberLink PowerDVD (x32 Version: 10.0.6.4319) CyberLink YouCam (x32 Version: 3.5.5.5811) D3DX10 (x32 Version: 15.4.2368.0902) Definition Update for Microsoft Office 2013 (KB2760587) 32-Bit Edition (x32) Energy Star (x32 Version: 1.0.9) Entity Framework Tools for Visual Studio 2013 Preview (x32 Version: 12.0.20515.0) Erforderliche Komponenten für SSDT (x32 Version: 11.1.3000.0) Fotogalerie (x32 Version: 16.4.3503.0728) Foxit Reader (x32 Version: 6.0.4.719) Galerie de photos (x32 Version: 16.4.3503.0728) GeoGebra 4.2 (x32 Version: 4.2.55.0) Google Chrome (x32 Version: 29.0.1547.66) Google Update Helper (x32 Version: 1.3.21.153) Greenshot 1.1.5.2643 (Version: 1.1.5.2643) Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000) HP 3D DriveGuard (Version: 4.2.9.1) HP Connected Music (Meridian - installer) (x32 Version: v1.0) HP Connected Remote (x32 Version: 1.0.1218) HP CoolSense (x32 Version: 2.10.51) HP Customer Experience Enhancements (x32 Version: 6.0.1.7) HP Documentation (x32 Version: 1.2.0.0) HP Postscript Converter (Version: 3.1.3591) HP Quick Launch (x32 Version: 3.0.6) HP Recovery Manager (x32 Version: 8.00) HP Registration Service (Version: 1.1.6232.4245) HP SimplePass (x32 Version: 6.0.100.272) HP Support Assistant (x32 Version: 7.0.39.15) HP Utility Center (x32 Version: 1.0.8) HP Wireless Button Driver (x32 Version: 1.0.7.1) IDT Audio (x32 Version: 1.0.6425.0) Intel(R) Management Engine Components (x32 Version: 8.1.0.1252) Intel(R) Processor Graphics (x32 Version: 9.17.10.2857) Intel(R) Rapid Start Technology (x32 Version: 2.1.0.1002) Intel(R) Rapid Storage Technology (x32 Version: 11.5.9.1002) Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149) Intel® Trusted Connect Service Client (Version: 1.24.388.1) KShutdown (x32 Version: 3.0) Lightworks (x32 Version: 11.1.0.0) Maxima 5.28.0-2 (x32 Version: 5.28.0-2) Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319) Microsoft .NET Framework 4.5 Multi-Targeting Pack (x32 Version: 4.5.50710) Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (x32 Version: 4.5.50710) Microsoft .NET Framework 4.5 SDK (x32 Version: 4.5.50710) Microsoft .NET Framework 4.5.1 Preview Multi-Targeting Pack (x32 Version: 4.5.50741) Microsoft .NET Framework 4.5.1 Preview SDK (x32 Version: 4.5.50760) Microsoft .NET Framework 4.5.1 Preview-SDK (Deutsch) (x32 Version: 4.5.50760) Microsoft Access MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft C++ REST SDK for Visual Studio 2013 Preview (x32 Version: 1.0) Microsoft DCF MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Excel MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Groove MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Help Viewer 2.1 (x32 Version: 2.1.20617) Microsoft Help Viewer 2.1 Language Pack - DEU (x32 Version: 2.0.20617) Microsoft InfoPath MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Lync MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft NuGet - Visual Studio Express 2013 Preview for Windows Desktop (x32 Version: 2.6.40529.71) Microsoft Office 64-bit Components 2013 (Version: 15.0.4420.1017) Microsoft Office Korrekturhilfen 2013 - Deutsch (x32 Version: 15.0.4420.1017) Microsoft Office OSM MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Office OSM UX MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Office Professional Plus 2013 (x32 Version: 15.0.4420.1017) Microsoft Office Proofing (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Office Proofing Tools 2013 - English (x32 Version: 15.0.4420.1017) Microsoft Office Proofing Tools 2013 - Italiano (x32 Version: 15.0.4420.1017) Microsoft Office Shared 64-bit MUI (German) 2013 (Version: 15.0.4420.1017) Microsoft Office Shared MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft OneNote MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Outlook MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft PowerPoint MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Publisher MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft SQL Server 2012 Command Line Utilities (Version: 11.1.3000.0) Microsoft SQL Server 2012 Data-Tier App Framework (x32 Version: 11.1.2856.0) Microsoft SQL Server 2012 Data-Tier App Framework (x64) (Version: 11.1.2856.0) Microsoft SQL Server 2012 Express LocalDB (Version: 11.1.3000.0) Microsoft SQL Server 2012 Management Objects (x32 Version: 11.1.3000.0) Microsoft SQL Server 2012 Management Objects (x64) (Version: 11.1.3000.0) Microsoft SQL Server 2012 Native Client (Version: 11.1.3000.0) Microsoft SQL Server 2012 Transact-SQL Compiler Service (Version: 11.1.3000.0) Microsoft SQL Server 2012 Transact-SQL ScriptDom (Version: 11.1.3000.0) Microsoft SQL Server 2012 T-SQL-Sprachdienst (x32 Version: 11.1.3000.0) Microsoft SQL Server Compact 4.0 SP1 x64 DEU (Version: 4.0.8876.1) Microsoft SQL Server Data Tools - DEU (12.0.30529.0) (x32 Version: 12.0.30529.0) Microsoft SQL Server Data Tools Build Utilities - DEU (12.0.30529.0) (x32 Version: 12.0.30529.0) Microsoft Team Foundation Server 2013 Preview Object Model (x64) (Version: 12.0.20617) Microsoft Team Foundation Server 2013 Preview-Objektmodell Language Pack (x64) - DEU (Version: 12.0.20617) Microsoft Visual C++ x64 Libraries (x32 Version: 12.0.20617) Microsoft Visual C++ x86 Libraries (x32 Version: 12.0.20617) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106) Microsoft Visual C++ 2013 32bit Compilers - DEU Resources (x32 Version: 12.0.20617) Microsoft Visual C++ 2013 Core Libraries (x32 Version: 12.0.20617) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.20617 (Version: 12.0.20617) Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.20617 (Version: 12.0.20617) Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.20617 (Version: 12.0.20617) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.20617 (x32 Version: 12.0.20617) Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.20617 (x32 Version: 12.0.20617) Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.20617 (x32 Version: 12.0.20617) Microsoft Visual C++ 2013 x86-x64 Compilers (x32 Version: 12.0.20617) Microsoft Visual Studio 2013 Express Prerequisites x64 - DEU (Version: 12.0.20617) Microsoft Visual Studio 2013 Preview Shell-(Mindest)-Ressourcen (x32 Version: 12.0.20617) Microsoft Visual Studio 2013 Preview Team Explorer Language Pack - DEU (x32 Version: 12.0.20617) Microsoft Visual Studio 2013 Preview-Vorbereitung (x32 Version: 12.0.20617) Microsoft Visual Studio 2013 Shell (Minimum) (x32 Version: 12.0.20617) Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies (x32 Version: 12.0.20617) Microsoft Visual Studio Express 2013 Preview for Windows Desktop (x32 Version: 12.0.20617) Microsoft Visual Studio Express 2013 Preview für Windows Desktop - DEU (x32 Version: 12.0.20617) Microsoft Visual Studio Express 2013 Preview für Windows Desktop - DEU (x32 Version: 12.0.20617.1) Microsoft Visual Studio Ultimate 2013 Preview XAML UI Designer Core (x32 Version: 12.0.20617) Microsoft Visual Studio Ultimate 2013 Preview XAML UI Designer deu Resources (x32 Version: 12.0.20617) Microsoft Word MUI (German) 2013 (x32 Version: 15.0.4420.1017) Microsoft-System-CLR-Typen für SQL Server 2012 (x32 Version: 11.1.3000.0) Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (Version: 11.1.3000.0) Movie Maker (x32 Version: 16.4.3503.0728) Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1) Mozilla Maintenance Service (x32 Version: 23.0.1) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT110 (x32 Version: 16.4.1108.0727) MSVCRT110_amd64 (Version: 16.4.1108.0727) msxml4 (x32 Version: 1.0.0) nder (Version: 2.68a) Nero 12 (x32 Version: 12.5.01900) Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0) Nero BackItUp (x32 Version: 12.5.7000) Nero BackItUp Help (CHM) (x32 Version: 12.0.13000) Nero Blu-ray Player (x32 Version: 12.0.20030) Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.9000) Nero Burning ROM (x32 Version: 12.5.6000) Nero Burning ROM Help (CHM) (x32 Version: 12.0.3000) Nero ControlCenter (x32 Version: 11.0.15600) Nero ControlCenter Help (CHM) (x32 Version: 12.0.12000) Nero Core Components (x32 Version: 11.0.21800) Nero Disc Menus Basic (x32 Version: 12.0.11500) Nero Effects Basic (x32 Version: 12.0.11500) Nero Express (x32 Version: 12.5.7000) Nero Express Help (CHM) (x32 Version: 12.0.13000) Nero Kwik Media (x32 Version: 1.18.20100) Nero Kwik Media Help (CHM) (x32 Version: 12.0.12000) Nero Kwik Themes Basic (x32 Version: 12.0.11500) Nero Launcher (x32 Version: 12.2.7000) Nero PiP Effects Basic (x32 Version: 12.0.11500) Nero Recode (x32 Version: 12.5.6000) Nero Recode Help (CHM) (x32 Version: 12.0.12000) Nero RescueAgent (x32 Version: 12.0.11000) Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000) Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0) Nero Update (x32 Version: 11.0.11800.31.0) Nero Video (x32 Version: 12.5.4000) Nero Video Help (CHM) (x32 Version: 12.0.12000) neroxml (x32 Version: 1.0.0) Norton Internet Security (x32 Version: 20.4.0.40) NVIDIA Grafiktreiber 311.00 (Version: 311.00) NVIDIA Install Application (Version: 2.1002.108.688) NVIDIA Optimus 1.11.3 (Version: 1.11.3) NVIDIA Systemsteuerung 311.00 (Version: 311.00) NVIDIA Update 1.11.3 (Version: 1.11.3) NVIDIA Update Components (Version: 1.11.3) Oracle VM VirtualBox 4.2.16 (Version: 4.2.16) Outils de vérification linguistique 2013 de Microsoft Office*- Français (x32 Version: 15.0.4420.1017) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 Preview (Deutsch) (x32 Version: 4.5.50741) Phase 5 HTML-Editor (x32 Version: 5.6.2.3) Photo Common (x32 Version: 16.4.3503.0728) Photo Gallery (x32 Version: 16.4.3503.0728) Pokki Download Helper (HKCU Version: 1.3.1.282) Prerequisite installer (x32 Version: 12.0.0003) PrivateTunnel (x32 Version: 2.0.0.0) Raccolta foto (x32 Version: 16.4.3503.0728) Rainmeter (x32 Version: 3.0 beta r2081) Ralink Bluetooth Stack64 (Version: 11.0.737.5) Ralink RT3290 802.11bgn Wi-Fi Adapter (x32 Version: 5.0.5.0) Realtek Ethernet Controller Driver (x32 Version: 8.2.612.2012) Realtek PCIE Card Reader (x32 Version: 6.2.8400.29034) Spotify (HKCU Version: 0.9.1.57.ge7405149) Start Menu X Version 4.911 (Version: 4.911) swMSM (x32 Version: 12.0.0.1) Synaptics Pointing Device Driver (Version: 16.2.10.12) Synergy (x32 Version: 1.4.12) System Explorer 4.2.2 (x32) Team Explorer for Microsoft Visual Studio 2013 Preview (x32 Version: 12.0.20617) TeamViewer 8 (x32 Version: 8.0.20202) Tina Pro for Windows - Demo (x32) TortoiseSVN 1.8.1.24570 (64 bit) (Version: 1.8.24570) TrueCrypt (x32 Version: 7.1a) Update for (KB2504637) (x32 Version: 1) Update for Microsoft Access 2013 (KB2760350) 32-Bit Edition (x32) Update for Microsoft Excel 2013 (KB2760339) 32-Bit Edition (x32) Update for Microsoft Lync 2013 (KB2817621) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2726954) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2726996) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2727096) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2737954) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2752025) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2752094) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2752101) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2760224) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2760538) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2760553) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2760610) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2767845) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2767851) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2767860) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2768016) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2810010) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2817320) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2817482) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2817489) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2817491) 32-Bit Edition (x32) Update for Microsoft Office 2013 (KB2817492) 32-Bit Edition (x32) Update for Microsoft OneNote 2013 (KB2768011) 32-Bit Edition (x32) Update for Microsoft OneNote 2013 (KB2817467) 32-Bit Edition (x32) Update for Microsoft Outlook 2013 (KB2817629) 32-Bit Edition (x32) Update for Microsoft PowerPoint 2013 (KB2726947) 32-Bit Edition (x32) Update for Microsoft PowerPoint 2013 (KB2810006) 32-Bit Edition (x32) Update for Microsoft SkyDrive Pro (KB2817622) 32-Bit Edition (x32) Update for Microsoft Visio 2013 (KB2810008) 32-Bit Edition (x32) Update for Microsoft Visio Viewer 2013 (KB2768338) 32-Bit Edition (x32) Update for Microsoft Word 2013 (KB2767863) 32-Bit Edition (x32) Update for Microsoft Word 2013 (KB2810086) 32-Bit Edition (x32) Validity WBF DDK (Version: 4.4.234.0) VLC media player 2.0.8 (Version: 2.0.8) Webocton - Scriptly 0.8.95.6 (x32 Version: 0.8.95.6) Welcome App (Start-up experience) (x32 Version: 12.0.15000) Windows Live (x32 Version: 16.4.3503.0728) Windows Live Communications Platform (x32 Version: 16.4.3503.0728) Windows Live Essentials (x32 Version: 16.4.3503.0728) Windows Live Installer (x32 Version: 16.4.3503.0728) Windows Live Photo Common (x32 Version: 16.4.3503.0728) Windows Live PIMT Platform (x32 Version: 16.4.3503.0728) Windows Live SOXE (x32 Version: 16.4.3503.0728) Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728) Windows Live UX Platform (x32 Version: 16.4.3503.0728) Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728) Windows Software Development Kit (x32 Version: 8.100.9431) Windows Software Development Kit (x32 Version: 8.59.29914) Windows Software Development Kit DirectX x64 Remote (Version: 8.100.9431) Windows Software Development Kit DirectX x64 Remote (Version: 8.59.29914) Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.100.9431) Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.59.29914) Windows Software Development Kit for Windows Store Apps (x32 Version: 8.100.9431) Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.100.9431) Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.29914) Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.100.9431) Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.59.29914) Windows XP Targeting with C++ (x32 Version: 11.0.51106) WinRAR 4.20 (64-Bit) (Version: 4.20.0) ==================== Restore Points ========================= 30-08-2013 21:43:46 Installed Classic Shell 03-09-2013 17:01:35 HPSF Applying updates 03-09-2013 17:01:36 HPSF Applying updates 05-09-2013 08:42:38 DirectX wurde installiert ==================== Hosts content: ========================== 2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {081FE996-DABB-4511-AEAB-3E81839A3CBC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation) Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler Task: {197410D0-629F-4B47-BA42-6D7626145422} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd) Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\System32\sysmain.dll [2013-05-04] (Microsoft Corporation) Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents Task: {1F72D0D6-A726-444E-8E02-5FAFBE75F817} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {20970BC9-D36F-4107-BFCE-9191A2171469} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2289530796-3253066164-2705177501-1002 Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\WSClient.dll [2012-11-07] (Microsoft Corporation) Task: {23E19814-A67B-4BFE-9F1C-731F6B3B4553} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => Sc.exe start wuauserv Task: {27F53461-6978-4133-BF2B-250344D65D3F} - System32\Tasks\Microsoft Office 15 Sync Maintenance for LUKAS-PC-Lukas Lukas-PC => C:\Program Files (x86)\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation) Task: {28983049-B283-4408-8CA6-702ED8226A62} - System32\Tasks\WPD\SqmUpload_S-1-5-21-2289530796-3253066164-2705177501-1002 => C:\Windows\System32\portabledeviceapi.dll [2012-07-26] (Microsoft Corporation) Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks Task: {2F3B3AFE-6047-4481-84D4-0E78E2AAE08D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update Task: {32B4E672-44B0-484C-9832-BE20D57B8A6E} - System32\Tasks\HPCeeScheduleForLukas => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard) Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2013-06-01] (Microsoft Corporation) Task: {48C0C6AE-8BC3-4A5C-8F06-E8025A9E60EF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-09-05] (Hewlett-Packard Company) Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation) Task: {68E4695A-12E1-4B82-B2E5-BEE98BE89AE0} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect Task: {6E7FF823-B834-45CA-911E-99A2C31D75E7} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-11-07] (Microsoft Corporation) Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Task: {701A586B-01A9-42DB-BF64-1E392D2818AF} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update Task: {7474F312-A716-4B47-B788-BDC200EE8531} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) Task: {8CCD2DDB-0621-4898-A89A-FEA178754508} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Task: {960719E5-1286-4F16-8BBB-3D0493B084B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-24] (Google Inc.) Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic Task: {98DB2DC1-7F95-42CA-BE98-BEC3506258F7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-24] (Google Inc.) Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\WSClient.dll [2012-11-07] (Microsoft Corporation) Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask Task: {AE2E16FB-7B39-41D0-8E25-A70E3121A8A8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific Task: {BE17C531-2F5F-415C-8AD2-2D9E3093B15E} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe [2013-06-04] (Symantec Corporation) Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\System32\Windows.Storage.ApplicationData.dll [2012-07-26] (Microsoft Corporation) Task: {CB96C0EC-6C4B-43FE-BEAE-C14A6B39B94F} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2012-11-07] (Microsoft Corporation) Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork Task: {CE4339DB-4CEC-4A98-9BBF-1734AC55D88C} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe [2013-06-04] (Symantec Corporation) Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical Task: {DC3F4FA4-5C19-4609-93AD-EEE9DBCA8553} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery Task: {E3017B2A-C377-4A1E-9D3E-EF5D351141F7} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-10-12] (CyberLink) Task: {E440EDFC-6F1B-4D5E-A388-E34B24B80684} - System32\Tasks\Desktop-Autostart => C:\Windows\System32\explorer.exe Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-11-07] (Microsoft Corporation) Task: {EAD237E7-D276-4257-9F16-51DF41548733} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\System32\Startupscan.dll [2012-07-26] (Microsoft Corporation) Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM Task: {F554EED5-A9B5-4EDE-84A6-1F3BA18A0C7C} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe [2013-06-04] (Symantec Corporation) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\HPCeeScheduleForLukas.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Loaded Modules (whitelisted) ============= 2013-08-31 10:52 - 2013-06-28 16:22 - 00101696 _____ (OrdinarySoft.) C:\Program Files\Start Menu X\StartMenuXHook.dll 2013-04-12 02:28 - 2013-04-12 02:28 - 00016896 _____ () C:\Program Files\Synergy\synrgyhk.DLL 2013-08-31 10:52 - 2013-08-06 15:48 - 00124224 _____ () C:\Program Files\Start Menu X\shellext-proxy-64.dll 2012-09-27 12:56 - 2012-09-27 12:56 - 00360864 _____ (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll 2013-04-20 20:50 - 2013-02-27 14:22 - 01107440 _____ (NVIDIA Corporation) C:\Windows\SYSTEM32\nvumdshimx.dll 2013-04-20 20:50 - 2013-02-27 14:22 - 00245872 _____ (NVIDIA Corporation) C:\Windows\SYSTEM32\nvinitx.dll 2012-07-26 03:22 - 2012-07-26 05:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\System32\IME\SHARED\IMEROAMING.DLL 2011-06-13 10:20 - 2011-06-13 10:20 - 00075544 _____ (hxxp://tortoisesvn.net) C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll 2013-07-22 20:41 - 2013-07-22 20:41 - 00075504 _____ () C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll 2013-07-22 20:41 - 2013-07-22 20:41 - 00493296 _____ (hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TortoiseSVN.dll 2013-07-22 20:41 - 2013-07-22 20:41 - 04609264 _____ (hxxp://subversion.apache.org/) C:\Program Files\TortoiseSVN\bin\libsvn_tsvn.dll 2013-07-22 20:41 - 2013-07-22 20:41 - 00173296 _____ (Apache Software Foundation) C:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll 2013-07-22 20:41 - 2013-07-22 20:41 - 00056048 _____ (Free Software Foundation) C:\Program Files\TortoiseSVN\bin\intl3_tsvn.dll 2013-07-22 20:41 - 2013-07-22 20:41 - 00271088 _____ (Apache Software Foundation) C:\Program Files\TortoiseSVN\bin\libaprutil_tsvn.dll 2013-07-22 20:41 - 2013-07-22 20:41 - 00088304 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll 2013-07-22 20:41 - 2013-07-22 20:41 - 02133744 _____ (Idol Software) C:\Program Files\TortoiseSVN\bin\crshhndl.dll 2013-04-20 20:49 - 2012-09-25 00:13 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc 2013-04-20 20:49 - 2012-09-25 00:13 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2012-08-28 20:33 - 2012-08-28 20:33 - 01046328 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll 2012-08-28 20:33 - 2012-08-28 20:33 - 00228664 _____ (Synaptics Incorporated) C:\Windows\SYSTEM32\SynTPAPI.dll 2012-08-28 20:33 - 2012-08-28 20:33 - 12327736 _____ (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPRes.dll 2013-09-03 19:14 - 2013-09-03 19:13 - 00671744 ____N (IDT, Inc.) C:\Windows\system32\stapi64.dll 2013-08-18 16:41 - 2013-08-18 16:41 - 00750264 _____ () C:\Program Files\Rainmeter\Rainmeter.dll 2013-08-18 16:38 - 2013-08-18 16:38 - 00011776 _____ () C:\Program Files\Rainmeter\Plugins\PowerPlugin.dll 2013-02-07 09:20 - 2013-02-07 09:20 - 00151336 _____ (HP) C:\Program Files (x86)\HP SimplePass\TSLog.dll 2013-01-10 13:30 - 2013-01-10 13:30 - 00022528 _____ () C:\Windows\SYSTEM32\BsTrace.dll 2012-07-26 02:55 - 2012-07-26 05:04 - 00422912 _____ (Microsoft Corporation) C:\Windows\SYSTEM32\irprops.cpl 2012-07-26 04:14 - 2012-07-26 05:04 - 00029184 _____ (Microsoft Corporation) C:\Windows\SYSTEM32\msgsm32.acm 2012-07-26 04:14 - 2012-07-26 05:04 - 00015360 _____ (Microsoft Corporation) C:\Windows\SYSTEM32\msg711.acm 2012-07-26 04:13 - 2012-07-26 05:04 - 00079872 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SYSTEM32\l3codeca.acm 2012-07-26 04:14 - 2012-07-26 05:04 - 00022528 _____ (Microsoft Corporation) C:\Windows\SYSTEM32\imaadp32.acm 2012-07-26 04:14 - 2012-07-26 05:04 - 00024064 _____ (Microsoft Corporation) C:\Windows\SYSTEM32\msadp32.acm 2013-03-22 10:06 - 2013-03-22 10:06 - 00387936 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll 2011-07-05 10:53 - 2011-07-05 10:53 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll 2013-01-10 13:35 - 2013-01-10 13:35 - 00009728 _____ () C:\Windows\SYSTEM32\BsHelpCSps.dll 2013-01-10 13:35 - 2013-01-10 13:35 - 00055296 _____ () C:\Windows\SYSTEM32\BlueSoleilCSps.dll 2013-08-15 08:27 - 2013-08-15 08:27 - 00026624 _____ (BlueStack Systems, Inc.) C:\Windows\assembly\NativeImages_v2.0.50727_32\HD-LogRotatorService\60dd923e85f494648441ec41981a083e\HD-LogRotatorService.ni.exe 2010-08-24 18:47 - 2010-08-24 18:47 - 02148864 _____ (Python Software Foundation) C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\PYTHON26.DLL 2012-02-07 11:11 - 2012-02-07 11:11 - 00027648 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\servicemanager.pyd 2012-02-07 11:09 - 2012-02-07 11:09 - 00110080 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\pywintypes26.dll 2012-02-07 11:11 - 2012-02-07 11:11 - 00042496 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32service.pyd 2012-02-07 11:11 - 2012-02-07 11:11 - 00098816 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32api.pyd 2010-08-24 18:48 - 2010-08-24 18:48 - 00153088 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\pyexpat.pyd 2010-08-24 18:47 - 2010-08-24 18:47 - 00040448 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\_socket.pyd 2010-08-24 18:48 - 2010-08-24 18:48 - 00720896 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\_ssl.pyd 2012-09-27 21:46 - 2012-09-27 21:46 - 00019968 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\zope.interface._zope_interface_coptimizations.pyd 2010-08-24 18:48 - 2010-08-24 18:48 - 00286208 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\_hashlib.pyd 2010-08-24 18:48 - 2010-08-24 18:48 - 00073728 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\_ctypes.pyd 2010-08-24 18:48 - 2010-08-24 18:48 - 00011776 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\select.pyd 2012-09-27 21:47 - 2012-09-27 21:47 - 00010240 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\OpenSSL.rand.pyd 2012-09-27 21:47 - 2012-09-27 21:47 - 00061440 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\OpenSSL.crypto.pyd 2012-09-27 21:47 - 2012-09-27 21:47 - 00039424 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\OpenSSL.SSL.pyd 2012-02-07 11:10 - 2012-02-07 11:10 - 00035840 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32process.pyd 2012-09-27 21:46 - 2012-09-27 21:46 - 00007680 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\twisted.protocols._c_urlarg.pyd 2012-09-27 21:47 - 2012-09-27 21:47 - 00006656 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\pyovpnc.pyd 2012-02-07 11:13 - 2012-02-07 11:13 - 00358912 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\pythoncom26.dll 2012-02-07 11:16 - 2012-02-07 11:16 - 00266240 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32com.shell.shell.pyd 2012-02-07 11:10 - 2012-02-07 11:10 - 00111616 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32file.pyd 2012-02-07 11:10 - 2012-02-07 11:10 - 00108544 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32security.pyd 2012-02-07 11:10 - 2012-02-07 11:10 - 00018432 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32event.pyd 2012-02-07 11:10 - 2012-02-07 11:10 - 00024064 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32pipe.pyd 2012-02-07 11:11 - 2012-02-07 11:11 - 00022528 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32ts.pyd 2013-02-07 09:19 - 2013-02-07 09:19 - 01892136 _____ (HP) C:\Program Files (x86)\HP SimplePass\biolayer.dll 2013-02-07 09:20 - 2013-02-07 09:20 - 04182824 _____ (HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteDlg.dll 2013-02-07 09:19 - 2013-02-07 09:19 - 01763112 _____ (HP) C:\Program Files (x86)\HP SimplePass\EnumWindowsUsers.dll 2013-02-07 09:19 - 2013-02-07 09:19 - 01872168 _____ (HP) C:\Program Files (x86)\HP SimplePass\AutoSoftwareUpdate.dll 2013-02-07 09:19 - 2013-02-07 09:19 - 00919848 _____ (HP) C:\Program Files (x86)\HP SimplePass\DataManager.dll 2013-01-07 23:31 - 2013-01-07 23:31 - 05901760 _____ (AuthenTec, Inc.) C:\Program Files (x86)\Common Files\AuthenTec\TrueAPI.dll 2013-02-07 09:20 - 2013-02-07 09:20 - 00378664 _____ (HP) C:\Program Files (x86)\HP SimplePass\TokenMachine.dll 2013-02-07 09:19 - 2013-02-07 09:19 - 00294184 _____ (HP) C:\Program Files (x86)\HP SimplePass\BioLayerAdapter.dll 2012-02-07 10:10 - 2012-02-07 10:10 - 00024064 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32pdh.pyd 2012-02-07 11:11 - 2012-02-07 11:11 - 00167424 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\win32gui.pyd 2012-07-15 11:48 - 2012-07-15 11:48 - 00005632 _____ () C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\ovpntray.dll 2013-09-05 08:16 - 2013-09-02 22:35 - 09962960 _____ (The ICU Project) C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\icudt.dll 2013-02-25 11:32 - 2013-02-25 11:32 - 00683256 _____ (IVT Corporation) C:\Windows\SYSTEM32\BsShellFTP.dll 2013-01-10 13:34 - 2013-01-10 13:34 - 00437760 _____ (IVT Corporation) C:\Windows\SYSTEM32\BsSDK.dll 2013-01-31 17:04 - 2013-01-31 17:04 - 00164600 _____ (IVT Corporation) C:\Windows\SYSTEM32\BsCommon.dll 2013-01-31 17:04 - 2013-01-31 17:04 - 18719992 _____ (IVT Corporation) C:\Windows\SYSTEM32\BsLangInDepRes.dll 2013-01-10 12:55 - 2013-01-10 12:55 - 00133120 _____ (IVT Corporation) C:\Windows\SYSTEM32\Bs2Res.dll 2013-07-22 19:49 - 2013-07-22 19:49 - 00065264 _____ () C:\Program Files\TortoiseSVN\bin\TortoiseStub32.dll 2013-07-22 19:49 - 2013-07-22 19:49 - 00444144 _____ (hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TortoiseSVN32.dll 2013-07-22 19:49 - 2013-07-22 19:49 - 03520752 _____ (hxxp://subversion.apache.org/) C:\Program Files\TortoiseSVN\bin\libsvn_tsvn32.dll 2013-07-22 19:48 - 2013-07-22 19:48 - 00142064 _____ (Apache Software Foundation) C:\Program Files\TortoiseSVN\bin\libapr_tsvn32.dll 2013-07-22 19:48 - 2013-07-22 19:48 - 00046320 _____ (Free Software Foundation) C:\Program Files\TortoiseSVN\bin\intl3_tsvn32.dll 2013-07-22 19:48 - 2013-07-22 19:48 - 00219888 _____ (Apache Software Foundation) C:\Program Files\TortoiseSVN\bin\libaprutil_tsvn32.dll 2013-07-22 19:49 - 2013-07-22 19:49 - 00070896 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll 2013-09-05 08:16 - 2013-09-02 22:35 - 00709584 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\libglesv2.dll 2013-09-05 08:16 - 2013-09-02 22:35 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\libegl.dll 2013-09-05 08:16 - 2013-09-02 22:35 - 04053456 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll 2013-09-05 08:16 - 2013-09-02 22:35 - 00410576 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll 2013-09-05 08:16 - 2013-09-02 22:35 - 01604560 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll 2012-09-07 18:33 - 2012-09-07 18:33 - 02431392 _____ (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hputils.dll 2013-01-10 13:50 - 2013-01-10 13:50 - 02675200 _____ (IVT Corporation) C:\Windows\SYSTEM32\Bscdlg.dll 2013-01-31 17:04 - 2013-01-31 17:04 - 00080120 _____ () C:\Windows\SYSTEM32\BsProfilefunc.dll 2013-01-10 11:25 - 2013-01-10 11:25 - 00364544 _____ () C:\Windows\SYSTEM32\BsExtendFunc.dll 2013-09-03 08:20 - 2013-09-03 08:20 - 00019456 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMgrSvc\68b047f1a684bdb1e5faefe396e32b97\IAStorDataMgrSvc.ni.exe 2013-09-03 08:20 - 2013-09-03 08:20 - 00370176 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\caffdd7e1156172d44ee5bd3a5e958dc\IAStorUtil.ni.dll 2013-09-03 08:20 - 2013-09-03 08:20 - 00078336 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMgr\589a5c2d117f189e9cdb112b581c7df0\IAStorDataMgr.ni.dll 2013-09-03 08:20 - 2013-09-03 08:20 - 03697152 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v4.0.30319_32\PSI\c934a6b8dda12fe1968d2e1a79a88d0e\PSI.ni.dll 2013-09-03 08:21 - 2013-09-03 08:21 - 01058816 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorViewModel\31c1494c98ba4921116f3a135d1770da\IAStorViewModel.ni.dll 2013-09-03 08:21 - 2013-09-03 08:21 - 00017920 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\4ff4aa109cd4f0068420d6b7b5fd3edc\PSIClient.ni.dll 2013-09-03 08:21 - 2013-09-03 08:21 - 00627200 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v4.0.30319_32\PsiData\09992b6062e5bffa4c535797af2c9ca6\PsiData.ni.dll 2013-09-03 08:21 - 2013-09-03 08:21 - 00026112 _____ (Intel Corp.) C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\80148e56cd6f0ec45865f67322c1024e\IAStorCommon.ni.dll 2012-07-13 16:27 - 2012-07-13 16:27 - 00048024 _____ (Nero AG) C:\Program Files (x86)\Nero\Update\NASvcPS.dll 2013-08-07 11:56 - 2013-05-21 06:44 - 00705928 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccL120U.dll 2013-08-07 11:56 - 2013-05-21 06:44 - 00089480 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccVrTrst.dll 2013-08-07 11:56 - 2013-05-23 07:25 - 00086408 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\EFACli.dll 2013-08-07 11:56 - 2013-05-21 06:44 - 00157576 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvc.dll 2013-08-07 11:56 - 2013-05-21 06:40 - 00410576 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\srtsp32.dll 2013-08-07 11:56 - 2013-05-21 06:44 - 00159624 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccIPC.dll 2013-08-07 11:56 - 2013-05-30 03:22 - 00556336 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\DIMASTER.DLL 2013-08-07 11:56 - 2013-05-21 06:44 - 00345480 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSet.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00205136 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\FWSETUP.DLL 2013-08-09 09:47 - 2013-07-22 09:17 - 00813904 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\COSVCPLG.DLL 2013-08-07 11:56 - 2013-05-21 06:44 - 00289160 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\CCGEVT.DLL 2013-08-07 11:56 - 2013-05-21 06:44 - 00207240 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccGLog.dll 2013-08-07 11:56 - 2013-05-21 06:44 - 00401288 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\CCJOBMGR.DLL 2013-08-07 11:56 - 2013-05-21 06:44 - 00324488 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\CCSUBENG.DLL 2013-08-07 11:56 - 2013-05-21 06:44 - 00207752 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\CCEMLPXY.DLL 2013-08-07 11:56 - 2013-05-08 02:53 - 00620920 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\IRON.DLL 2013-08-07 11:56 - 2013-04-25 02:43 - 00251824 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\SNDSVC.DLL 2013-08-07 11:56 - 2013-04-25 02:43 - 00040880 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\SYMRDRSV.DLL 2013-08-07 11:56 - 2013-06-04 06:42 - 00474960 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\HNCORE.DLL 2013-08-07 11:56 - 2013-05-24 04:09 - 00284552 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\APPMGR32.DLL 2013-08-08 21:02 - 2013-06-28 07:17 - 01849168 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\ISDATAPR.DLL 2013-08-07 11:56 - 2013-06-04 06:42 - 03857232 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\NCW.DLL 2013-08-07 11:56 - 2013-04-25 02:43 - 00240560 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymNeti.dll 2013-08-07 11:56 - 2013-04-25 02:43 - 00074672 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymRedir.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00719184 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\AVPSVC32.DLL 2013-08-07 11:56 - 2013-05-21 00:50 - 00932176 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\cltPE.dll 2013-08-07 11:56 - 2013-05-24 04:09 - 00502664 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\AVIfc.dll 2013-08-07 11:56 - 2013-05-30 04:13 - 01078576 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\DataStor.dll 2013-08-07 11:56 - 2013-05-24 04:09 - 00098696 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\AVMail.dll 2013-08-07 11:56 - 2013-06-04 03:23 - 01550672 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\SQSVC.DLL 2013-08-07 11:56 - 2013-06-04 06:42 - 04060496 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\asEngine.dll 2013-08-07 11:56 - 2013-06-04 06:43 - 00243024 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\QSPLUGIN.DLL 2013-08-07 11:56 - 2013-05-21 00:50 - 01035088 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\CLTLMS.DLL 2013-08-07 11:56 - 2013-05-24 04:09 - 01771400 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\avModule.dll 2013-08-07 11:56 - 2012-06-11 19:00 - 00147448 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\BHSVCPLG.DLL 2013-08-07 11:56 - 2013-05-30 04:13 - 00633648 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\SPOCCLNT.DLL 2013-08-07 11:56 - 2013-05-21 07:02 - 00655240 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\DSCli.dll 2013-08-07 11:56 - 2013-05-30 04:13 - 00348464 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SQLite.dll 2013-08-07 11:56 - 2013-05-30 04:13 - 00965936 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\COMM.DLL 2013-08-07 11:56 - 2013-05-30 04:13 - 00693040 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\EVENTSVC.DLL 2013-08-07 11:56 - 2013-05-21 00:50 - 00985424 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\CLTLMJ.DLL 2013-08-07 11:56 - 2013-05-30 04:13 - 00103216 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ProxyClt.dll 2013-08-07 11:56 - 2013-05-30 04:13 - 01337136 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\MCLNTASK.DLL 2013-08-08 21:02 - 2013-07-03 23:42 - 00821552 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\NAHELPER.DLL 2013-08-07 11:56 - 2013-04-09 03:27 - 00124896 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\IPSPLUG.DLL 2013-08-07 11:56 - 2013-06-04 06:42 - 01185104 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\ISDATASV.DLL 2013-08-07 11:56 - 2013-06-04 06:42 - 00475472 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\FWCORE.DLL 2013-08-07 11:56 - 2013-05-30 03:22 - 00320816 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\diStRptr.dll 2013-07-15 22:58 - 2013-07-15 22:58 - 01893816 _____ (Symantec Corporation) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130715.001\BHEngine.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00175440 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\FWGenPlg.dll 2013-09-06 08:59 - 2013-08-21 08:31 - 00799136 _____ (Symantec Corporation) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130905.001\IDSxpx86.dll 2013-08-07 11:56 - 2012-06-11 19:00 - 00198648 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\BHClient.dll 2013-08-07 11:56 - 2013-05-31 03:46 - 00999760 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coDataPr.dll 2013-08-07 11:56 - 2013-05-31 03:48 - 00551760 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coShdObj.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00145744 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\isPwd.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00183120 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\FWHelper.dll 2013-08-07 11:56 - 2013-05-21 06:44 - 02162568 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccScanw.dll 2013-08-07 11:56 - 2012-04-26 20:11 - 00058808 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ecmldr32.dll 2013-09-07 11:01 - 2013-08-29 08:30 - 00300952 _____ (Symantec Corporation) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130906.017\ecmsvr32.dll 2013-09-07 11:01 - 2013-08-29 08:30 - 01951568 _____ (Symantec Corporation) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130906.017\NAVEX32a.DLL 2013-09-07 11:01 - 2013-08-29 08:30 - 00190288 _____ (Symantec Corporation) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130906.017\NAVENG32.DLL 2013-08-07 11:56 - 2013-05-14 04:18 - 00041400 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ELAMCli.dll 2013-08-07 11:56 - 2013-05-24 04:09 - 00113544 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\QBackup.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00537424 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\AVPAPP32.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00548688 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\NPCTRAY.DLL 2013-08-07 11:56 - 2013-06-04 06:43 - 00962384 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\uiMain.dll 2013-08-07 11:56 - 2013-05-28 09:42 - 02430800 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SYMHTMDX.DLL 2013-08-07 11:56 - 2013-05-30 04:13 - 01337136 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\MClnTask.dll 2013-08-08 21:02 - 2013-06-28 07:17 - 01849168 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\isDataPr.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00548176 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\ASHELPER.DLL 2013-08-07 11:56 - 2013-06-04 06:42 - 00579408 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\ASOEHOOK.DLL 2013-08-07 11:56 - 2013-06-04 06:42 - 00537424 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\AVPAPP32.DLL 2013-08-07 11:56 - 2013-05-21 00:50 - 02651472 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\CLTALDIS.DLL 2013-08-07 11:56 - 2013-06-04 06:42 - 00528208 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\FWSESAL.DLL 2013-08-07 11:56 - 2013-06-10 19:10 - 00629072 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\MUI\20.4.0.40\07\01\cltRes.loc 2013-08-07 11:56 - 2013-05-21 00:50 - 01035088 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\cltLMS.dll 2013-08-07 11:56 - 2013-05-31 03:48 - 01397584 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\COACTMGR.DLL 2013-08-07 11:56 - 2012-05-30 08:51 - 00699280 ____R () C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\wincfi39.dll 2013-08-07 11:56 - 2013-05-21 06:44 - 00289160 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccGEvt.dll 2013-08-07 11:56 - 2013-06-04 06:42 - 00502608 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\NUEX.DLL 2013-08-07 11:56 - 2013-05-30 04:13 - 00965936 ____R (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\Comm.dll 2013-08-07 11:56 - 2012-05-15 03:27 - 00588216 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\SDKCMN.DLL 2013-08-07 11:56 - 2013-06-04 06:43 - 00916304 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\UIALERT.DLL 2013-08-07 11:56 - 2013-05-30 04:13 - 00028464 ____R (Symantec Corporation) C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\USERCTXT.DLL 2013-07-15 22:58 - 2013-07-15 22:58 - 00290232 _____ (Symantec Corporation) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130715.001\UMEngx86.dll 2013-04-20 20:48 - 2012-06-25 20:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll Code:
ATTFilter ==================== Alternate Data Streams (whitelisted) ========== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/07/2013 10:08:17 PM) (Source: BstHdAndroidSvc) (User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 05:02:12 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest. Error: (09/07/2013 05:01:56 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"1". Die abhängige Assemblierung "ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (09/07/2013 04:54:20 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: synergyd.exe, Version: 0.0.0.0, Zeitstempel: 0x518341d7 Name des fehlerhaften Moduls: synergyd.exe, Version: 0.0.0.0, Zeitstempel: 0x518341d7 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000000018de7 ID des fehlerhaften Prozesses: 0x18dc Startzeit der fehlerhaften Anwendung: 0xsynergyd.exe0 Pfad der fehlerhaften Anwendung: synergyd.exe1 Pfad des fehlerhaften Moduls: synergyd.exe2 Berichtskennung: synergyd.exe3 Vollständiger Name des fehlerhaften Pakets: synergyd.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: synergyd.exe5 Error: (09/07/2013 04:38:05 PM) (Source: BstHdAndroidSvc) (User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 01:23:51 PM) (Source: BstHdAndroidSvc) (User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 01:04:03 PM) (Source: BstHdAndroidSvc) (User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 11:21:34 AM) (Source: BstHdAndroidSvc) (User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 10:38:29 AM) (Source: BstHdAndroidSvc) (User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 00:02:27 AM) (Source: BstHdAndroidSvc) (User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) System errors: ============= Error: (09/07/2013 10:08:17 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: %%1064 Error: (09/07/2013 04:52:14 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Synergy" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren. Error: (09/07/2013 04:38:05 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: %%1064 Error: (09/07/2013 01:23:51 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: %%1064 Error: (09/07/2013 01:04:03 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: %%1064 Error: (09/07/2013 11:21:34 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: %%1064 Error: (09/07/2013 10:38:29 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: %%1064 Error: (09/07/2013 00:02:27 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: %%1064 Error: (09/06/2013 07:38:30 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Synergy" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren. Error: (09/06/2013 07:37:22 PM) (Source: Service Control Manager) (User: ) Description: Dienst "Synergy" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Microsoft Office Sessions: ========================= Error: (09/07/2013 10:08:17 PM) (Source: BstHdAndroidSvc)(User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 05:02:12 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestc:\program files (x86)\ralink corporation\ralink bluetooth stack\BsSMSEditor.exe Error: (09/07/2013 05:01:56 PM) (Source: SideBySide)(User: ) Description: ACME,processorArchitecture="x86",type="win32",version="12.0.0.0"c:\program files (x86)\Nero\Nero 12\nero recode\NeroBRServer.exe.Manifest Error: (09/07/2013 04:54:20 PM) (Source: Application Error)(User: ) Description: synergyd.exe0.0.0.0518341d7synergyd.exe0.0.0.0518341d7c00000050000000000018de718dc01ceabd9d74f87a1C:\Program Files\Synergy\synergyd.exeC:\Program Files\Synergy\synergyd.exe5fd307e1-17cd-11e3-bf1d-1c3e8429fc36 Error: (09/07/2013 04:38:05 PM) (Source: BstHdAndroidSvc)(User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 01:23:51 PM) (Source: BstHdAndroidSvc)(User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 01:04:03 PM) (Source: BstHdAndroidSvc)(User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 11:21:34 AM) (Source: BstHdAndroidSvc)(User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 10:38:29 AM) (Source: BstHdAndroidSvc)(User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (09/07/2013 00:02:27 AM) (Source: BstHdAndroidSvc)(User: ) Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) ==================== Memory info =========================== Percentage of memory in use: 29% Total physical RAM: 8081.27 MB Available physical RAM: 5666.46 MB Total Pagefile: 9297.27 MB |
09.09.2013, 05:08 | #10 | |
/// the machine /// TB-Ausbilder | LAN Verbindung fällt aus oder ist extrem langsamCombofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
12.09.2013, 19:48 | #11 |
| LAN Verbindung fällt aus oder ist extrem langsam Hallo Schrauber Danke hat sich erledigt. Lag an der Netzwerkkarte, welche nach einer gewissen Zeit in den Ruhezustand ging. Danke trotzdem viel mal Lukbu |
13.09.2013, 08:45 | #12 |
/// the machine /// TB-Ausbilder | LAN Verbindung fällt aus oder ist extrem langsam ok.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu LAN Verbindung fällt aus oder ist extrem langsam |
100%, andere, anderen, ausfallen, eingefangen, explorer, fund, hoffe, komisch, lan, lan verbindung, lan-verbindundung, langsam, laptop, melde, meldet, programm, scan, scanner, schule, system, trojaner, unregelmäßige, verbindung, verlasse, verlassen, virenscan, virenscanner |