| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Infizierte externe Festplatte bereinigen?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
14.09.2013, 13:42
| #1 |
| |  Infizierte externe Festplatte bereinigen? Guten Tag, ich habe mir vor zwei Tagen ein neues Notebook gekauft (Toshiba Satellite L850-1KG) da mein alter Laptop, vermutlich durch Hardwareschäden, den Geist aufgegeben hat. Bevor mein alter Laptop aufgehört hat zu funktionieren (startet schlicht und einfach nicht mehr - schwarzer Bildschirm) konnte ich meine wichtigsten Daten auf eine externe Festplatte übertragen. Ich vermute jedoch, dass mein altes Notebook von Viren befallen war und dass ich diese ungewollt auch auf meine externe Festplatte übertragen habe. Als ich nämlich die Festplatte an mein neues Notebook (Windows 8) anschließen wollte habe ich sie mit einer vorinstallierten Version von McAfee scannen wollen stürzte mein Computer ab und McAfee war von da an lahmgelegt ("unerwarteter Fehler" bei versuchtem Neuscan). Auf die schnelle habe ich mir einen gratis Virenschutz geladen (Avast) und wollte mit dem meine Festplatte scannen, nach der Hälfte des Scans stürzte mein Computer jedoch immer ab. Ich habe den Laptop in den Auslieferungszustand zurückversetzt und die Externe Festplatte seit dem nicht angeschlossen. Ich bitte um Hilfe bei der Bereinigung meiner externen Festplatte ohne jedoch sämtliche Daten zu verlieren. Vielen Dank im Voraus! PS: ich bin nicht der versierteste PC Nutzer also wäre ich für eine verständliche Schritt-für-Schritt Anleitung sehr dankbar insofern es eine gibt. |
|
14.09.2013, 18:49
| #2 |
| /// the machine /// TB-Ausbilder    | Infizierte externe Festplatte bereinigen? Hi,
__________________Platte muss angeklemmt werden und dran bleiben. Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
14.09.2013, 19:12
| #3 |
| | Infizierte externe Festplatte bereinigen? FRST:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-09-2013 04
Ran by Marco (administrator) on MARCO on 14-09-2013 20:06:08
Running from C:\Users\Marco\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\windows\system32\atiesrxx.exe
(AMD) C:\windows\system32\atieclxx.exe
() C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Windows\system32\mfevtps.exe
(TOSHIBA Corporation) C:\Windows\system32\TODDSrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(Microsoft Corporation) C:\windows\system32\dashost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
(Microsoft Corporation) C:\windows\system32\wwahost.exe
(Microsoft Corporation) C:\windows\system32\wwahost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\TiWorker.exe
(Microsoft Corporation) C:\windows\system32\msiexec.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [] - [x]
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor)
HKLM\...\Run: [TCrdMain] - C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2608040 2012-08-14] (TOSHIBA Corporation)
HKLM\...\Run: [TSleepSrv] - C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe [1548952 2012-08-05] (TOSHIBA Corporation)
HKLM\...\Run: [TODDMain] - C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [213136 2012-08-05] ()
HKLM\...\Run: [TecoResident] - C:\Program Files\TOSHIBA\Teco\TecoResident.exe [169896 2012-08-14] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA Corporation)
HKLM\...\Run: [SRS Premium Sound HD] - C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip [223245 2012-07-27] ()
HKLM\...\Run: [Toshiba TEMPRO] - C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-08-02] (Intel Corporation)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [1532992 2013-03-13] (McAfee, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [TPUReg(x86)] - "C:\Program Files\TOSHIBA\Password Utility\TosPU.exe" /Retimes [x]
HKLM-x32\...\Run: [TPUReg] - C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe [6884352 2012-08-23] (Pegatron Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com
SearchScopes: HKLM - DefaultScope {13685F4E-59E1-42BB-B3FF-CAE11FB9B239} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKLM - {13685F4E-59E1-42BB-B3FF-CAE11FB9B239} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKLM-x32 - DefaultScope {13685F4E-59E1-42BB-B3FF-CAE11FB9B239} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKLM-x32 - {13685F4E-59E1-42BB-B3FF-CAE11FB9B239} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKCU - DefaultScope {13685F4E-59E1-42BB-B3FF-CAE11FB9B239} URL =
SearchScopes: HKCU - {13685F4E-59E1-42BB-B3FF-CAE11FB9B239} URL =
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Chrome:
=======
CHR HomePage: hxxp://www.ask.com/?l=dis&o=102874cr&gct=hp
CHR RestoreOnStartup: "hxxp://start.search.us.com/v/2/?guid={79CE75CA-C1E2-4734-A8FC-9F2B375283B6}&serpv=5"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\progra~2\mcafee\msc\npmcsn~1.dll ()
CHR Extension: (ChromeAccess) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeoigbhkilbllfomkmmilbfochhlgdmh\1.6_0
CHR Extension: (Google Docs) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.5_0
CHR Extension: (Hide My Ass! Web Proxy) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgnmcnlncejehjlnhaglpnoolgbflbd\1.2.5_0
CHR Extension: (Google Search) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Speed Dial) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi\2.5.3_0
CHR Extension: (Facebook for Chrome) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp\6.3.1_0
CHR Extension: (AdBlock) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.7_0
CHR Extension: (avast! Online Security) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Chrome to Phone) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco\2.3.2_0
CHR Extension: (Gmail) - C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
S2 0130411379156627mcinstcleanup; C:\windows\TEMP\013041~1.EXE [834664 2013-07-30] (McAfee, Inc.)
R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [156672 2011-10-13] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 McAWFwk; c:\PROGRA~1\mcafee\msc\mcawfwk.exe [332080 2012-01-26] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [384048 2013-02-25] (McAfee, Inc.)
R2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [241456 2013-02-19] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218760 2013-02-19] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-02-19] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [114656 2012-08-14] (Toshiba Europe GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-07-17] (Advanced Micro Devices)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-02-19] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179280 2013-02-19] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [309840 2013-02-19] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69168 2013-02-19] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [515968 2013-02-19] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [771536 2013-02-19] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106552 2013-02-19] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [340216 2013-02-19] (McAfee, Inc.)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwNe64.sys [11400192 2012-06-02] (Intel Corporation)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-14] (Synaptics Incorporated)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [28632 2012-07-31] (Windows (R) Win 7 DDK provider)
U3 mfeavfk01; No ImagePath
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-14 21:56 - 2013-09-14 21:56 - 00000117 _____ C:\windows\system32\netcfg-28244203.txt
2013-09-14 21:56 - 2013-09-14 21:56 - 00000117 _____ C:\windows\system32\netcfg-28236437.txt
2013-09-14 21:56 - 2013-09-14 12:56 - 00000117 _____ C:\windows\system32\netcfg-28245328.txt
2013-09-14 20:03 - 2013-09-14 20:03 - 00000000 ____D C:\FRST
2013-09-14 20:02 - 2013-09-14 20:03 - 01950312 _____ (Farbar) C:\Users\Marco\Downloads\FRST64.exe
2013-09-14 19:48 - 2013-09-14 19:48 - 00000117 _____ C:\windows\system32\netcfg-98171.txt
2013-09-14 19:46 - 2013-09-14 19:46 - 00000117 _____ C:\windows\system32\netcfg-24273265.txt
2013-09-14 19:37 - 2013-09-14 19:37 - 00000000 ____H C:\windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2013-09-14 19:35 - 2013-09-14 19:35 - 00001072 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Links.lnk
2013-09-14 19:35 - 2013-09-14 19:35 - 00000923 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Marco Moldovan.lnk
2013-09-14 19:35 - 2013-09-14 19:35 - 00000826 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibliotheken.lnk
2013-09-14 19:27 - 2013-09-14 19:27 - 00000863 _____ C:\Users\Marco\Desktop\Links.lnk
2013-09-14 19:27 - 2013-09-14 19:27 - 00000698 _____ C:\Users\Marco\Desktop\Marco Moldovan.lnk
2013-09-14 19:27 - 2013-09-14 19:27 - 00000697 _____ C:\Users\Marco\Desktop\Bibliotheken.lnk
2013-09-14 19:26 - 2013-09-14 19:26 - 00000367 _____ C:\Users\Marco\Desktop\Systemsteuerung.lnk
2013-09-14 19:26 - 2013-09-14 19:26 - 00000355 _____ C:\Users\Marco\Desktop\Computer.lnk
2013-09-14 19:26 - 2013-09-14 19:26 - 00000307 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Systemsteuerung.lnk
2013-09-14 19:26 - 2013-09-14 19:26 - 00000291 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Computer.lnk
2013-09-14 15:05 - 2013-09-14 15:05 - 00000000 _____ C:\Recovery.txt
2013-09-14 14:45 - 2013-09-14 14:45 - 00000000 ____D C:\Users\Marco\AppData\Roaming\2K Sports
2013-09-14 14:21 - 2013-09-14 14:21 - 01068336 _____ (Solid State Networks) C:\Users\Marco\Downloads\install_reader11_de_mssd_aaa_aih.exe
2013-09-14 14:19 - 2013-09-14 14:19 - 00010009 _____ C:\windows\DirectX.log
2013-09-14 14:19 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2013-09-14 14:19 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_4.dll
2013-09-14 14:19 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_4.dll
2013-09-14 14:19 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2013-09-14 14:19 - 2009-03-16 14:18 - 00073544 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_3.dll
2013-09-14 14:19 - 2009-03-16 14:18 - 00069448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_3.dll
2013-09-14 14:19 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2013-09-14 14:19 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_6.dll
2013-09-14 14:19 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2013-09-14 14:19 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_41.dll
2013-09-14 14:19 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_41.dll
2013-09-14 14:19 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_41.dll
2013-09-14 14:19 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_41.dll
2013-09-14 14:19 - 2008-10-15 07:03 - 00518480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_3.dll
2013-09-14 14:19 - 2008-10-15 07:03 - 00514384 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_3.dll
2013-09-14 14:19 - 2008-10-15 07:03 - 00235856 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_3.dll
2013-09-14 14:19 - 2008-10-15 07:03 - 00175440 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_3.dll
2013-09-14 14:19 - 2008-10-15 07:03 - 00074576 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_2.dll
2013-09-14 14:19 - 2008-10-15 07:03 - 00070992 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_2.dll
2013-09-14 14:19 - 2008-10-15 07:03 - 00025936 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_5.dll
2013-09-14 14:19 - 2008-10-15 07:03 - 00023376 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_5.dll
2013-09-14 14:19 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2013-09-14 14:19 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_40.dll
2013-09-14 14:19 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2013-09-14 14:19 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_40.dll
2013-09-14 14:19 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2013-09-14 14:19 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_40.dll
2013-09-14 14:19 - 2008-07-30 06:20 - 00513544 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_2.dll
2013-09-14 14:19 - 2008-07-30 06:20 - 00509448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_2.dll
2013-09-14 14:19 - 2008-07-30 06:20 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_2.dll
2013-09-14 14:19 - 2008-07-30 06:20 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_2.dll
2013-09-14 14:19 - 2008-07-30 06:20 - 00072200 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_1.dll
2013-09-14 14:19 - 2008-07-30 06:20 - 00068616 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_1.dll
2013-09-14 14:19 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_39.dll
2013-09-14 14:19 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2013-09-14 14:19 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_39.dll
2013-09-14 14:19 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2013-09-14 14:19 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_39.dll
2013-09-14 14:19 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2013-09-14 14:19 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2013-09-14 14:19 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_1.dll
2013-09-14 14:19 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_1.dll
2013-09-14 14:19 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2013-09-14 14:19 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2013-09-14 14:19 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_0.dll
2013-09-14 14:19 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_4.dll
2013-09-14 14:19 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2013-09-14 14:19 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2013-09-14 14:19 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_38.dll
2013-09-14 14:19 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2013-09-14 14:19 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_38.dll
2013-09-14 14:19 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2013-09-14 14:19 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_38.dll
2013-09-14 14:19 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2013-09-14 14:19 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_0.dll
2013-09-14 14:19 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_0.dll
2013-09-14 14:19 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2013-09-14 14:19 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2013-09-14 14:19 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_3.dll
2013-09-14 14:19 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2013-09-14 14:19 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_37.dll
2013-09-14 14:19 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2013-09-14 14:19 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_37.dll
2013-09-14 14:19 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2013-09-14 14:19 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_37.dll
2013-09-14 14:19 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2013-09-14 14:19 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_10.dll
2013-09-14 14:19 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2013-09-14 14:19 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_2.dll
2013-09-14 14:19 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2013-09-14 14:19 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_36.dll
2013-09-14 14:19 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2013-09-14 14:19 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_36.dll
2013-09-14 14:19 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2013-09-14 14:19 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_36.dll
2013-09-14 14:19 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2013-09-14 14:19 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_9.dll
2013-09-14 14:19 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_35.dll
2013-09-14 14:19 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_35.dll
2013-09-14 14:19 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2013-09-14 14:19 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_35.dll
2013-09-14 14:19 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2013-09-14 14:19 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_35.dll
2013-09-14 14:19 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2013-09-14 14:19 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_8.dll
2013-09-14 14:19 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2013-09-14 14:19 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_34.dll
2013-09-14 14:19 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2013-09-14 14:19 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_34.dll
2013-09-14 14:19 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2013-09-14 14:19 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_34.dll
2013-09-14 14:19 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2013-09-14 14:19 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_7.dll
2013-09-14 14:19 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\windows\system32\xinput1_3.dll
2013-09-14 14:19 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_3.dll
2013-09-14 14:19 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2013-09-14 14:19 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_33.dll
2013-09-14 14:19 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2013-09-14 14:19 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_33.dll
2013-09-14 14:19 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2013-09-14 14:19 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_33.dll
2013-09-14 14:19 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2013-09-14 14:19 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_1.dll
2013-09-14 14:19 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2013-09-14 14:19 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_6.dll
2013-09-14 14:19 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_5.dll
2013-09-14 14:19 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2013-09-14 14:19 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_32.dll
2013-09-14 14:19 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_32.dll
2013-09-14 14:19 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2013-09-14 14:19 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10.dll
2013-09-14 14:19 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_31.dll
2013-09-14 14:19 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_31.dll
2013-09-14 14:19 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_4.dll
2013-09-14 14:19 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2013-09-14 14:19 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2013-09-14 14:19 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2013-09-14 14:19 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_3.dll
2013-09-14 14:19 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_2.dll
2013-09-14 14:19 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_2.dll
2013-09-14 14:19 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2013-09-14 14:19 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_30.dll
2013-09-14 14:19 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_30.dll
2013-09-14 14:19 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_1.dll
2013-09-14 14:19 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_1.dll
2013-09-14 14:19 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\windows\system32\xinput1_1.dll
2013-09-14 14:19 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_1.dll
2013-09-14 14:19 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_29.dll
2013-09-14 14:19 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_29.dll
2013-09-14 14:19 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_0.dll
2013-09-14 14:19 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_0.dll
2013-09-14 14:19 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_0.dll
2013-09-14 14:19 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_0.dll
2013-09-14 14:19 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_28.dll
2013-09-14 14:19 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_28.dll
2013-09-14 14:19 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_27.dll
2013-09-14 14:19 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_27.dll
2013-09-14 14:19 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_26.dll
2013-09-14 14:19 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_26.dll
2013-09-14 14:19 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_25.dll
2013-09-14 14:19 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_25.dll
2013-09-14 14:19 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_24.dll
2013-09-14 14:19 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_24.dll
2013-09-14 14:18 - 2013-09-14 14:22 - 215056384 _____ C:\Users\Marco\Downloads\LibreOffice_4.1.1_Win_x86.msi
2013-09-14 14:17 - 2013-09-14 14:21 - 162401424 _____ C:\Users\Marco\Downloads\Apache_OpenOffice_4.0.0_Win_x86_install_de.exe
2013-09-14 14:16 - 2013-09-14 14:16 - 00001122 _____ C:\Users\Marco\Desktop\NBA 2K13.lnk
2013-09-14 14:16 - 2013-09-14 14:16 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2K Sports
2013-09-14 14:14 - 2013-09-14 14:15 - 82752304 _____ (DVDVideoSoft Ltd. ) C:\Users\Marco\Downloads\FreeStudio-6.1.11.0827.exe
2013-09-14 14:14 - 2013-09-14 14:14 - 23715672 _____ C:\Users\Marco\Downloads\vlc-win64-2.0.7.exe
2013-09-14 14:14 - 2013-09-14 14:14 - 01104216 _____ (Conduit) C:\Users\Marco\Downloads\bsplayer266.1075.exe
2013-09-14 14:14 - 2013-09-14 14:14 - 00092776 _____ (Spotify Ltd) C:\Users\Marco\Downloads\SpotifySetup161.exe
2013-09-14 14:13 - 2013-09-14 14:13 - 03415256 _____ (Piriform Ltd) C:\Users\Marco\Downloads\ccsetup405_slim_4.05.exe
2013-09-14 14:13 - 2013-09-14 14:13 - 02074056 _____ C:\Users\Marco\Downloads\winrar-x64-500d.exe
2013-09-14 14:13 - 2013-09-14 14:13 - 01376768 _____ C:\Users\Marco\Downloads\7z920-x64.msi
2013-09-14 14:12 - 2013-09-14 14:12 - 00993600 _____ (DivX, LLC) C:\Users\Marco\Downloads\DivXInstaller_10.exe
2013-09-14 14:12 - 2013-09-14 14:12 - 00583584 _____ C:\Users\Marco\Downloads\hotspotshield-setup_918653.exe
2013-09-14 14:11 - 2013-09-14 14:11 - 02105040 _____ (PeerBlock, LLC ) C:\Users\Marco\Downloads\PeerBlock-Setup_v1.1_r518.exe
2013-09-14 14:11 - 2013-09-14 14:11 - 01040720 _____ (BitTorrent Inc.) C:\Users\Marco\Downloads\uTorrent331_30017.exe
2013-09-14 14:00 - 2013-09-14 14:00 - 00000000 ____D C:\Program Files (x86)\2K Sports
2013-09-14 13:36 - 2012-04-20 16:40 - 00196440 _____ (McAfee, Inc.) C:\windows\system32\Drivers\HipShieldK.sys
2013-09-14 13:30 - 2013-09-14 13:30 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Macromedia
2013-09-14 13:29 - 2013-09-14 13:29 - 00002219 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-14 13:28 - 2013-09-14 19:48 - 00001116 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-14 13:28 - 2013-09-14 19:33 - 00001120 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-14 13:28 - 2013-09-14 13:29 - 00000000 ____D C:\Users\Marco\AppData\Local\Google
2013-09-14 13:28 - 2013-09-14 13:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-09-14 13:28 - 2013-09-14 13:28 - 00004092 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-09-14 13:28 - 2013-09-14 13:28 - 00003856 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-09-14 13:28 - 2013-09-14 13:28 - 00000000 ____D C:\Users\Marco\AppData\Local\Deployment
2013-09-14 13:28 - 2013-09-14 13:28 - 00000000 ____D C:\Users\Marco\AppData\Local\Apps\2.0
2013-09-14 13:26 - 2013-09-14 13:26 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-09-14 13:25 - 2013-09-14 13:25 - 00000117 _____ C:\windows\system32\netcfg-1401406.txt
2013-09-14 13:25 - 2013-09-14 13:25 - 00000117 _____ C:\windows\system32\netcfg-1399390.txt
2013-09-14 13:12 - 2013-09-14 20:06 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2106837296-2529078013-830683628-1001
2013-09-14 13:10 - 2013-09-14 13:10 - 00000000 ____D C:\Users\Marco\AppData\Roaming\ATI
2013-09-14 13:10 - 2013-09-14 13:10 - 00000000 ____D C:\Users\Marco\AppData\Local\ATI
2013-09-14 13:09 - 2013-09-14 13:09 - 00000000 ____D C:\ProgramData\ToshibaEurope
2013-09-14 13:05 - 2013-09-14 19:25 - 00000000 ____D C:\Users\Marco\AppData\Local\TOSHIBA
2013-09-14 13:05 - 2013-09-14 13:05 - 00000000 ____D C:\windows\System32\Tasks\WPD
2013-09-14 13:05 - 2013-09-14 13:05 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Toshiba
2013-09-14 13:05 - 2013-09-14 13:05 - 00000000 ____D C:\Users\Marco\AppData\Local\SRS Labs
2013-09-14 13:04 - 2013-09-14 13:04 - 00001442 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-14 13:04 - 2013-09-14 13:04 - 00000000 ___RD C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-14 13:04 - 2013-09-14 13:04 - 00000000 ___RD C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-14 13:04 - 2013-09-14 13:04 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Adobe
2013-09-14 13:03 - 2013-09-14 19:38 - 00000000 ____D C:\Users\Marco\AppData\Local\Packages
2013-09-14 13:03 - 2013-09-14 13:03 - 00000117 _____ C:\windows\system32\netcfg-60875.txt
2013-09-14 13:03 - 2013-09-14 13:03 - 00000000 ____D C:\Users\Marco\AppData\Local\VirtualStore
2013-09-14 13:01 - 2013-09-14 20:05 - 00256113 _____ C:\windows\WindowsUpdate.log
2013-09-14 13:01 - 2013-09-14 13:04 - 00000000 ____D C:\Users\Marco
2013-09-14 13:01 - 2013-09-14 13:01 - 00000117 _____ C:\windows\system32\netcfg-28571281.txt
2013-09-14 13:01 - 2013-09-14 13:01 - 00000020 ___SH C:\Users\Marco\ntuser.ini
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Vorlagen
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Startmenü
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Netzwerkumgebung
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Lokale Einstellungen
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Eigene Dateien
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Druckumgebung
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Documents\Eigene Musik
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Documents\Eigene Bilder
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\AppData\Local\Verlauf
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\AppData\Local\Anwendungsdaten
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Anwendungsdaten
2013-09-14 13:01 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-09-14 13:01 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-09-14 13:01 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-09-14 13:01 - 2012-07-26 10:13 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-09-14 12:56 - 2013-09-14 12:56 - 00000117 _____ C:\windows\system32\netcfg-28247609.txt
2013-09-14 12:56 - 2013-09-14 12:56 - 00000117 _____ C:\windows\system32\netcfg-28247437.txt
==================== One Month Modified Files and Folders =======
2013-09-14 21:56 - 2013-09-14 21:56 - 00000117 _____ C:\windows\system32\netcfg-28244203.txt
2013-09-14 21:56 - 2013-09-14 21:56 - 00000117 _____ C:\windows\system32\netcfg-28236437.txt
2013-09-14 20:06 - 2013-09-14 13:12 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2106837296-2529078013-830683628-1001
2013-09-14 20:05 - 2013-09-14 13:01 - 00256113 _____ C:\windows\WindowsUpdate.log
2013-09-14 20:05 - 2012-08-01 19:03 - 00785550 _____ C:\windows\system32\perfh013.dat
2013-09-14 20:05 - 2012-08-01 19:03 - 00158586 _____ C:\windows\system32\perfc013.dat
2013-09-14 20:05 - 2012-08-01 18:55 - 00780976 _____ C:\windows\system32\perfh010.dat
2013-09-14 20:05 - 2012-08-01 18:55 - 00152608 _____ C:\windows\system32\perfc010.dat
2013-09-14 20:05 - 2012-08-01 18:46 - 00790022 _____ C:\windows\system32\perfh00C.dat
2013-09-14 20:05 - 2012-08-01 18:46 - 00155084 _____ C:\windows\system32\perfc00C.dat
2013-09-14 20:05 - 2012-08-01 18:38 - 00753134 _____ C:\windows\system32\perfh007.dat
2013-09-14 20:05 - 2012-08-01 18:38 - 00155826 _____ C:\windows\system32\perfc007.dat
2013-09-14 20:05 - 2012-07-26 09:28 - 04568320 _____ C:\windows\system32\PerfStringBackup.INI
2013-09-14 20:04 - 2012-07-26 09:21 - 00022069 _____ C:\windows\setupact.log
2013-09-14 20:03 - 2013-09-14 20:03 - 00000000 ____D C:\FRST
2013-09-14 20:03 - 2013-09-14 20:02 - 01950312 _____ (Farbar) C:\Users\Marco\Downloads\FRST64.exe
2013-09-14 20:00 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\sru
2013-09-14 19:54 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\ELAM
2013-09-14 19:48 - 2013-09-14 19:48 - 00000117 _____ C:\windows\system32\netcfg-98171.txt
2013-09-14 19:48 - 2013-09-14 13:28 - 00001116 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-14 19:47 - 2012-09-11 07:42 - 00003462 _____ C:\windows\PFRO.log
2013-09-14 19:47 - 2012-09-10 23:12 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-09-14 19:47 - 2012-07-26 09:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-09-14 19:47 - 2012-07-26 09:19 - 00281248 _____ C:\windows\system32\FNTCACHE.DAT
2013-09-14 19:47 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\BBI
2013-09-14 19:46 - 2013-09-14 19:46 - 00000117 _____ C:\windows\system32\netcfg-24273265.txt
2013-09-14 19:38 - 2013-09-14 13:03 - 00000000 ____D C:\Users\Marco\AppData\Local\Packages
2013-09-14 19:37 - 2013-09-14 19:37 - 00000000 ____H C:\windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2013-09-14 19:35 - 2013-09-14 19:35 - 00001072 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Links.lnk
2013-09-14 19:35 - 2013-09-14 19:35 - 00000923 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Marco Moldovan.lnk
2013-09-14 19:35 - 2013-09-14 19:35 - 00000826 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bibliotheken.lnk
2013-09-14 19:34 - 2012-09-10 22:53 - 00000000 ____D C:\Program Files\TOSHIBA
2013-09-14 19:33 - 2013-09-14 13:28 - 00001120 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-14 19:27 - 2013-09-14 19:27 - 00000863 _____ C:\Users\Marco\Desktop\Links.lnk
2013-09-14 19:27 - 2013-09-14 19:27 - 00000698 _____ C:\Users\Marco\Desktop\Marco Moldovan.lnk
2013-09-14 19:27 - 2013-09-14 19:27 - 00000697 _____ C:\Users\Marco\Desktop\Bibliotheken.lnk
2013-09-14 19:26 - 2013-09-14 19:26 - 00000367 _____ C:\Users\Marco\Desktop\Systemsteuerung.lnk
2013-09-14 19:26 - 2013-09-14 19:26 - 00000355 _____ C:\Users\Marco\Desktop\Computer.lnk
2013-09-14 19:26 - 2013-09-14 19:26 - 00000307 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Systemsteuerung.lnk
2013-09-14 19:26 - 2013-09-14 19:26 - 00000291 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Computer.lnk
2013-09-14 19:25 - 2013-09-14 13:05 - 00000000 ____D C:\Users\Marco\AppData\Local\TOSHIBA
2013-09-14 15:05 - 2013-09-14 15:05 - 00000000 _____ C:\Recovery.txt
2013-09-14 15:05 - 2012-07-26 10:13 - 00262144 _____ C:\windows\system32\config\BCD-Template
2013-09-14 14:45 - 2013-09-14 14:45 - 00000000 ____D C:\Users\Marco\AppData\Roaming\2K Sports
2013-09-14 14:22 - 2013-09-14 14:18 - 215056384 _____ C:\Users\Marco\Downloads\LibreOffice_4.1.1_Win_x86.msi
2013-09-14 14:21 - 2013-09-14 14:21 - 01068336 _____ (Solid State Networks) C:\Users\Marco\Downloads\install_reader11_de_mssd_aaa_aih.exe
2013-09-14 14:21 - 2013-09-14 14:17 - 162401424 _____ C:\Users\Marco\Downloads\Apache_OpenOffice_4.0.0_Win_x86_install_de.exe
2013-09-14 14:19 - 2013-09-14 14:19 - 00010009 _____ C:\windows\DirectX.log
2013-09-14 14:16 - 2013-09-14 14:16 - 00001122 _____ C:\Users\Marco\Desktop\NBA 2K13.lnk
2013-09-14 14:16 - 2013-09-14 14:16 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2K Sports
2013-09-14 14:15 - 2013-09-14 14:14 - 82752304 _____ (DVDVideoSoft Ltd. ) C:\Users\Marco\Downloads\FreeStudio-6.1.11.0827.exe
2013-09-14 14:14 - 2013-09-14 14:14 - 23715672 _____ C:\Users\Marco\Downloads\vlc-win64-2.0.7.exe
2013-09-14 14:14 - 2013-09-14 14:14 - 01104216 _____ (Conduit) C:\Users\Marco\Downloads\bsplayer266.1075.exe
2013-09-14 14:14 - 2013-09-14 14:14 - 00092776 _____ (Spotify Ltd) C:\Users\Marco\Downloads\SpotifySetup161.exe
2013-09-14 14:13 - 2013-09-14 14:13 - 03415256 _____ (Piriform Ltd) C:\Users\Marco\Downloads\ccsetup405_slim_4.05.exe
2013-09-14 14:13 - 2013-09-14 14:13 - 02074056 _____ C:\Users\Marco\Downloads\winrar-x64-500d.exe
2013-09-14 14:13 - 2013-09-14 14:13 - 01376768 _____ C:\Users\Marco\Downloads\7z920-x64.msi
2013-09-14 14:12 - 2013-09-14 14:12 - 00993600 _____ (DivX, LLC) C:\Users\Marco\Downloads\DivXInstaller_10.exe
2013-09-14 14:12 - 2013-09-14 14:12 - 00583584 _____ C:\Users\Marco\Downloads\hotspotshield-setup_918653.exe
2013-09-14 14:11 - 2013-09-14 14:11 - 02105040 _____ (PeerBlock, LLC ) C:\Users\Marco\Downloads\PeerBlock-Setup_v1.1_r518.exe
2013-09-14 14:11 - 2013-09-14 14:11 - 01040720 _____ (BitTorrent Inc.) C:\Users\Marco\Downloads\uTorrent331_30017.exe
2013-09-14 14:00 - 2013-09-14 14:00 - 00000000 ____D C:\Program Files (x86)\2K Sports
2013-09-14 14:00 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\restore
2013-09-14 13:36 - 2012-09-10 23:12 - 00000000 ____D C:\ProgramData\McAfee
2013-09-14 13:35 - 2012-07-26 10:12 - 00000000 ___HD C:\windows\ELAMBKUP
2013-09-14 13:30 - 2013-09-14 13:30 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Macromedia
2013-09-14 13:29 - 2013-09-14 13:29 - 00002219 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-14 13:29 - 2013-09-14 13:28 - 00000000 ____D C:\Users\Marco\AppData\Local\Google
2013-09-14 13:29 - 2013-09-14 13:28 - 00000000 ____D C:\Program Files (x86)\Google
2013-09-14 13:28 - 2013-09-14 13:28 - 00004092 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-09-14 13:28 - 2013-09-14 13:28 - 00003856 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-09-14 13:28 - 2013-09-14 13:28 - 00000000 ____D C:\Users\Marco\AppData\Local\Deployment
2013-09-14 13:28 - 2013-09-14 13:28 - 00000000 ____D C:\Users\Marco\AppData\Local\Apps\2.0
2013-09-14 13:27 - 2012-07-26 10:12 - 00000000 ____D C:\windows\AUInstallAgent
2013-09-14 13:26 - 2013-09-14 13:26 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-09-14 13:25 - 2013-09-14 13:25 - 00000117 _____ C:\windows\system32\netcfg-1401406.txt
2013-09-14 13:25 - 2013-09-14 13:25 - 00000117 _____ C:\windows\system32\netcfg-1399390.txt
2013-09-14 13:25 - 2012-10-26 08:25 - 00000000 ____D C:\Program Files (x86)\TOSHIBA Games
2013-09-14 13:10 - 2013-09-14 13:10 - 00000000 ____D C:\Users\Marco\AppData\Roaming\ATI
2013-09-14 13:10 - 2013-09-14 13:10 - 00000000 ____D C:\Users\Marco\AppData\Local\ATI
2013-09-14 13:09 - 2013-09-14 13:09 - 00000000 ____D C:\ProgramData\ToshibaEurope
2013-09-14 13:09 - 2012-10-26 08:24 - 00000000 ____D C:\ProgramData\WildTangent
2013-09-14 13:07 - 2012-09-10 23:08 - 00000000 ____D C:\windows\System32\Tasks\Toshiba
2013-09-14 13:06 - 2012-09-10 23:03 - 00000000 ____D C:\ProgramData\Toshiba
2013-09-14 13:05 - 2013-09-14 13:05 - 00000000 ____D C:\windows\System32\Tasks\WPD
2013-09-14 13:05 - 2013-09-14 13:05 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Toshiba
2013-09-14 13:05 - 2013-09-14 13:05 - 00000000 ____D C:\Users\Marco\AppData\Local\SRS Labs
2013-09-14 13:04 - 2013-09-14 13:04 - 00001442 _____ C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-14 13:04 - 2013-09-14 13:04 - 00000000 ___RD C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-14 13:04 - 2013-09-14 13:04 - 00000000 ___RD C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-14 13:04 - 2013-09-14 13:04 - 00000000 ____D C:\Users\Marco\AppData\Roaming\Adobe
2013-09-14 13:04 - 2013-09-14 13:01 - 00000000 ____D C:\Users\Marco
2013-09-14 13:04 - 2012-07-26 09:49 - 00000000 ____D C:\windows\SysWOW64\sysprep
2013-09-14 13:03 - 2013-09-14 13:03 - 00000117 _____ C:\windows\system32\netcfg-60875.txt
2013-09-14 13:03 - 2013-09-14 13:03 - 00000000 ____D C:\Users\Marco\AppData\Local\VirtualStore
2013-09-14 13:03 - 2012-09-10 23:12 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-09-14 13:03 - 2012-07-26 10:12 - 00000000 ___RD C:\windows\ImmersiveControlPanel
2013-09-14 13:03 - 2012-07-26 10:12 - 00000000 ____D C:\windows\WinStore
2013-09-14 13:01 - 2013-09-14 13:01 - 00000117 _____ C:\windows\system32\netcfg-28571281.txt
2013-09-14 13:01 - 2013-09-14 13:01 - 00000020 ___SH C:\Users\Marco\ntuser.ini
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Vorlagen
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Startmenü
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Netzwerkumgebung
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Lokale Einstellungen
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Eigene Dateien
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Druckumgebung
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Documents\Eigene Musik
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Documents\Eigene Bilder
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\AppData\Local\Verlauf
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\AppData\Local\Anwendungsdaten
2013-09-14 13:01 - 2013-09-14 13:01 - 00000000 _SHDL C:\Users\Marco\Anwendungsdaten
2013-09-14 12:56 - 2013-09-14 21:56 - 00000117 _____ C:\windows\system32\netcfg-28245328.txt
2013-09-14 12:56 - 2013-09-14 12:56 - 00000117 _____ C:\windows\system32\netcfg-28247609.txt
2013-09-14 12:56 - 2013-09-14 12:56 - 00000117 _____ C:\windows\system32\netcfg-28247437.txt
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2012-09-11 07:42
==================== End Of Log ============================
Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-09-2013 04
Ran by Marco at 2013-09-14 20:07:06
Running from C:\Users\Marco\Downloads
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
AMD Accelerated Video Transcoding (Version: 12.5.100.20808)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
Atheros Bluetooth Filter Driver Package (Version: 2.0.0.3)
Atheros Driver Installation Program (x32 Version: 10.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2012.0808.1024.16666)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0808.1024.16666)
Catalyst Control Center InstallProxy (x32 Version: 2012.0808.1024.16666)
Catalyst Control Center Localization All (x32 Version: 2012.0808.1024.16666)
CCC Help Chinese Standard (x32 Version: 2012.0808.1023.16666)
CCC Help Chinese Traditional (x32 Version: 2012.0808.1023.16666)
CCC Help Czech (x32 Version: 2012.0808.1023.16666)
CCC Help Danish (x32 Version: 2012.0808.1023.16666)
CCC Help Dutch (x32 Version: 2012.0808.1023.16666)
CCC Help English (x32 Version: 2012.0808.1023.16666)
CCC Help Finnish (x32 Version: 2012.0808.1023.16666)
CCC Help French (x32 Version: 2012.0808.1023.16666)
CCC Help German (x32 Version: 2012.0808.1023.16666)
CCC Help Greek (x32 Version: 2012.0808.1023.16666)
CCC Help Hungarian (x32 Version: 2012.0808.1023.16666)
CCC Help Italian (x32 Version: 2012.0808.1023.16666)
CCC Help Japanese (x32 Version: 2012.0808.1023.16666)
CCC Help Korean (x32 Version: 2012.0808.1023.16666)
CCC Help Norwegian (x32 Version: 2012.0808.1023.16666)
CCC Help Polish (x32 Version: 2012.0808.1023.16666)
CCC Help Portuguese (x32 Version: 2012.0808.1023.16666)
CCC Help Russian (x32 Version: 2012.0808.1023.16666)
CCC Help Spanish (x32 Version: 2012.0808.1023.16666)
CCC Help Swedish (x32 Version: 2012.0808.1023.16666)
CCC Help Thai (x32 Version: 2012.0808.1023.16666)
CCC Help Turkish (x32 Version: 2012.0808.1023.16666)
ccc-utility64 (Version: 2012.0808.1024.16666)
Google Chrome (x32 Version: 29.0.1547.66)
Google Update Helper (x32 Version: 1.3.21.153)
Intel AppUp(SM) center (x32 Version: 3.6.1.33268.15)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.2.1001)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
McAfee Internet Security (x32 Version: 11.6.511)
Microsoft Office (x32 Version: 14.0.6120.5004)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
NBA 2K13 (x32 Version: 1.0.0)
Nero 12 Essentials Toshiba (x32 Version: 12.0.00400)
Nero BackItUp (x32 Version: 12.0.1000)
Nero BackItUp Help (CHM) (x32 Version: 12.0.3000)
Nero Blu-ray Player (x32 Version: 12.0.12600)
Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.3000)
Nero BurnRights (x32 Version: 12.0.3000)
Nero BurnRights Help (CHM) (x32 Version: 12.0.3000)
Nero ControlCenter (x32 Version: 11.0.14800.0.48)
Nero ControlCenter Help (CHM) (x32 Version: 12.0.3000)
Nero Core Components (x32 Version: 11.0.17600.2.3)
Nero Express (x32 Version: 12.0.14001)
Nero Express Help (CHM) (x32 Version: 12.0.3000)
Nero Kwik Media (x32 Version: 1.18.16800)
Nero Kwik Media Help (CHM) (x32 Version: 12.0.4000)
Nero Kwik Themes Basic (x32 Version: 12.0.11500)
Nero Launcher (x32 Version: 12.2.1000)
Nero RescueAgent (x32 Version: 12.0.7002)
Nero RescueAgent Help (CHM) (x32 Version: 12.0.3000)
Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0)
Nero Update (x32 Version: 11.0.11800.31.0)
Premium Sound HD (Version: 1.12.4600)
Prerequisite installer (x32 Version: 12.0.0002)
Realtek Ethernet Controller Driver (x32 Version: 8.3.730.2012)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6687)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.8400.30136)
Shared C Run-time for x64 (Version: 10.0.0)
Synaptics Pointing Device Driver (Version: 16.2.10.3)
TOSHIBA Desktop Assist (Version: 1.00.0007.00002)
TOSHIBA eco Utility (Version: 2.0.0.6415)
TOSHIBA Function Key (Version: 1.00.6425)
TOSHIBA Manuals (x32 Version: 10.10)
Toshiba Password Utility (x32 Version: 2.00.910)
TOSHIBA PC Health Monitor (Version: 1.8.17.640104)
TOSHIBA Recovery Media Creator (x32 Version: 2.2.0.54043005)
TOSHIBA Resolution+ Plug-in for Windows Media Player (x32 Version: 1.2.2.00)
TOSHIBA Service Station (Version: 2.4.4)
TOSHIBA System Driver (x32 Version: 1.00.0012)
TOSHIBA System Settings (x32 Version: 1.00.0002.32002)
Toshiba TEMPRO (x32 Version: 4.2.1)
TOSHIBA VIDEO PLAYER (Version: 5.1.0.12-A)
Welcome App (Start-up experience) (x32 Version: 12.0.13000)
==================== Restore Points =========================
14-09-2013 12:00:10 Installed NBA 2K13
==================== Hosts content: ==========================
2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0311A131-29BA-491F-B55D-3B69AF7C8289} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2106837296-2529078013-830683628-1001
Task: {0CD45EEE-BA60-402C-83D0-7AE300826A81} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2012-08-14] (Toshiba Europe GmbH)
Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation)
Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical
Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\System32\sysmain.dll [2012-07-26] (Microsoft Corporation)
Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance
Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\WSClient.dll [2012-07-26] (Microsoft Corporation)
Task: {26C02F2C-5D20-44DD-B03F-E87F8FF3EA9B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect
Task: {2B28902F-A99D-4568-8C8B-FEE05F3984CC} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => Sc.exe start wuauserv
Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh
Task: {2D3BC8F0-9765-489A-A6D3-5B518B4AE498} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-14] (Synaptics Incorporated)
Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks
Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update
Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator
Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask
Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance
Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage
Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2012-07-26] (Microsoft Corporation)
Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon
Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance
Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required
Task: {6158BC98-040C-4528-89FF-E4A6B36B2940} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-14] (Google Inc.)
Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation)
Task: {62BA8A01-D675-4CEF-B912-7509287F29C3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-14] (Google Inc.)
Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-07-26] (Microsoft Corporation)
Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319
Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update
Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance
Task: {82C16E28-5264-4C6F-854F-B761A960B142} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2106837296-2529078013-830683628-500
Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance
Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode)
Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses
Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime
Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64
Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic
Task: {9E46106F-11DA-46CD-B768-696E5402ABBB} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2012-07-27] (TOSHIBA Corporation)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\WSClient.dll [2012-07-26] (Microsoft Corporation)
Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask
Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh
Task: {AB96B97B-39C2-46A2-876A-EEB6AE199033} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\Windows\System32\dism.exe [2012-07-26] (Microsoft Corporation)
Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask
Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask
Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan
Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific
Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan
Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\System32\Windows.Storage.ApplicationData.dll [2012-07-26] (Microsoft Corporation)
Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork
Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical
Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery
Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask
Task: {E5918CB5-CB06-4D74-80C7-8DD0399361C4} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall
Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-07-26] (Microsoft Corporation)
Task: {EAD237E7-D276-4257-9F16-51DF41548733} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\System32\Startupscan.dll [2012-07-26] (Microsoft Corporation)
Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-07-26 01:58 - 2012-07-26 05:08 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\taskhostex.exe
2012-08-14 18:39 - 2012-08-14 18:39 - 02916152 _____ (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
2012-08-14 18:39 - 2012-08-14 18:39 - 01046328 _____ (Synaptics Incorporated) C:\windows\system32\SynCOM.dll
2012-08-14 18:39 - 2012-08-14 18:39 - 00228664 _____ (Synaptics Incorporated) C:\windows\SYSTEM32\SynTPAPI.dll
2012-07-26 01:14 - 2012-07-26 06:49 - 02380440 _____ (Microsoft Corporation) C:\windows\Explorer.EXE
2012-07-26 03:22 - 2012-07-26 05:05 - 00060416 _____ (Microsoft Corporation) C:\windows\System32\IME\SHARED\IMEROAMING.DLL
2012-07-26 09:58 - 2012-07-26 09:53 - 00170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2012-07-26 01:59 - 2012-07-26 06:55 - 00033504 _____ (Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
2012-08-14 18:39 - 2012-08-14 18:39 - 00123704 _____ (Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
2012-10-26 08:08 - 2012-07-13 18:53 - 12936848 _____ (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
2012-10-26 08:08 - 2012-06-20 17:26 - 00110592 _____ (Real Sound Lab SIA) C:\windows\SYSTEM32\CONEQMSAPOGUILibrary.dll
2012-08-14 04:43 - 2012-08-14 04:43 - 02608040 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
2012-02-05 23:39 - 2012-02-05 23:39 - 00112512 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdEvnt.dll
2012-07-19 18:53 - 2012-07-19 18:53 - 00265728 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain.dll
2012-07-19 03:38 - 2012-07-19 03:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2012-07-19 03:38 - 2012-07-19 03:38 - 00349608 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\ButtonSupport\TBSMain.dll
2012-07-19 03:38 - 2012-07-19 03:38 - 00097192 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TWarnMsg\TWarnMsg.dll
2012-07-30 17:45 - 2012-07-30 17:45 - 00035240 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\Hotkey\Brightness_Win8.dll
2012-07-30 17:46 - 2012-07-30 17:46 - 00126888 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\Hotkey\Touchpad.dll
2012-08-04 01:16 - 2012-08-04 01:16 - 00130984 _____ (TOSHIBA Corporator) C:\Program Files\TOSHIBA\Hotkey\Hotkey\Wlan.dll
2012-07-19 03:38 - 2012-07-19 03:38 - 00049064 _____ () C:\Program Files\TOSHIBA\Hotkey\Hotkey\FnZ.dll
2012-03-17 03:40 - 2012-03-17 03:40 - 00081824 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\Hotkey\FnSpace.dll
2012-08-04 01:15 - 2012-08-04 01:15 - 00143272 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\Hotkey\ToastNotifier.dll
2012-08-05 00:02 - 2012-08-05 00:02 - 01548952 _____ (TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
2012-08-14 04:13 - 2012-08-14 04:13 - 00169896 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
2012-08-14 04:13 - 2012-08-14 04:13 - 00038824 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoToastMgr.dll
2012-08-14 04:13 - 2012-08-14 04:13 - 00124840 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TADOMgr.dll
2012-08-25 02:33 - 2012-08-25 02:33 - 00168872 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoPower.dll
2012-08-14 04:13 - 2012-08-14 04:13 - 00044456 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoHook.dll
2012-08-14 04:13 - 2012-08-14 04:13 - 00060328 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoHookDll.dll
2012-08-14 04:13 - 2012-08-14 04:13 - 00018344 _____ () C:\Program Files\TOSHIBA\Teco\TecoMUI.dll
2012-08-02 04:59 - 2012-08-02 04:59 - 00123816 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\ToastNotifier.dll
2012-07-27 20:40 - 2012-07-27 20:40 - 02170784 _____ (SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
2012-08-02 00:51 - 2012-08-02 00:51 - 00518056 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
2012-06-12 22:28 - 2012-06-12 22:28 - 00156072 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll
2012-06-12 22:28 - 2012-06-12 22:28 - 00265640 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TReport.dll
2012-07-28 18:20 - 2012-07-28 18:20 - 00111528 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHMui.dll
2012-07-28 18:20 - 2012-07-28 18:20 - 00101800 _____ (Toshiba Corporation) C:\Program Files\TOSHIBA\TPHM\ShockNotifier.dll
2012-07-27 23:35 - 2012-07-27 23:35 - 01295496 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe
2012-07-27 23:35 - 2012-07-27 23:35 - 00060552 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\PluginLib.dll
2012-07-27 05:22 - 2012-07-27 05:22 - 00775680 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\ToshibaServiceStation.resources.dll
2012-07-27 23:35 - 2012-07-27 23:35 - 00023176 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\libTMachInfo.dll
2012-07-27 05:22 - 2012-07-27 05:22 - 00068608 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\Plugins\Alerts.dll
2012-07-27 05:22 - 2012-07-27 05:22 - 00004608 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\PluginLib.resources.dll
2012-07-27 05:22 - 2012-07-27 05:22 - 00016896 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\Alerts.resources.dll
2012-07-27 05:22 - 2012-07-27 05:22 - 00087552 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\Plugins\PCHealthInfo.dll
2012-07-27 05:22 - 2012-07-27 05:22 - 00022016 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\PCHealthInfo.resources.dll
2012-07-27 05:22 - 2012-07-27 05:22 - 00097280 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\Plugins\SwUpdates.dll
2012-07-27 05:22 - 2012-07-27 05:22 - 00018944 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Toshiba Service Station\de\SwUpdates.resources.dll
2012-08-08 19:19 - 2012-08-08 19:19 - 00311296 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2012-08-08 19:19 - 2012-08-08 19:19 - 00196608 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2011-10-19 07:08 - 2011-10-19 07:08 - 00007168 _____ ( ) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2012-08-08 19:23 - 2012-08-08 19:23 - 00028672 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll
2012-08-08 19:22 - 2012-08-08 19:22 - 00369664 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2012-08-14 15:36 - 2012-08-14 15:36 - 00461272 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
2012-08-14 15:36 - 2012-08-14 15:36 - 00051672 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproCommon.dll
2012-08-14 15:36 - 2012-08-14 15:36 - 06414296 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproUI.dll
2012-08-14 15:36 - 2012-08-14 15:36 - 00038360 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\ToshibaCommon.dll
2012-08-14 15:36 - 2012-08-14 15:36 - 00040920 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\de\TemproUI.resources.dll
2012-07-26 01:08 - 2012-07-26 05:08 - 00420352 _____ (Microsoft Corporation) C:\windows\system32\wwahost.exe
2013-09-14 20:02 - 2013-09-14 20:03 - 01950312 _____ (Farbar) C:\Users\Marco\Downloads\FRST64.exe
2012-08-05 00:02 - 2012-08-05 00:02 - 00123040 _____ (Toshiba Corporation) C:\Program Files (x86)\TOSHIBA\System Setting\ToastNotifier.dll
2012-08-11 00:00 - 2012-08-11 00:00 - 00209552 _____ (TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\System Setting\TSSMUI.dll
2013-09-14 13:29 - 2013-09-02 22:35 - 00709584 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\libglesv2.dll
2013-09-14 13:29 - 2013-09-02 22:35 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\libegl.dll
2013-09-14 13:29 - 2013-09-02 22:35 - 04053456 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll
2013-09-14 13:29 - 2013-09-02 22:35 - 00410576 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
2013-09-14 13:29 - 2013-09-02 22:35 - 01604560 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) ==========
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/14/2013 07:23:01 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: wwahost.exe, Version: 6.2.9200.16384, Zeitstempel: 0x50107c6e
Name des fehlerhaften Moduls: atidxx64.dll, Version: 8.17.10.451, Zeitstempel: 0x50227732
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000747db
ID des fehlerhaften Prozesses: 0x1390
Startzeit der fehlerhaften Anwendung: 0xwwahost.exe0
Pfad der fehlerhaften Anwendung: wwahost.exe1
Pfad des fehlerhaften Moduls: wwahost.exe2
Berichtskennung: wwahost.exe3
Vollständiger Name des fehlerhaften Pakets: wwahost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: wwahost.exe5
Error: (09/14/2013 03:29:08 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: atieclxx.exe, Version: 6.14.11.1126, Zeitstempel: 0x50227bd4
Name des fehlerhaften Moduls: atieclxx.exe, Version: 6.14.11.1126, Zeitstempel: 0x50227bd4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001a6ad
ID des fehlerhaften Prozesses: 0x1090
Startzeit der fehlerhaften Anwendung: 0xatieclxx.exe0
Pfad der fehlerhaften Anwendung: atieclxx.exe1
Pfad des fehlerhaften Moduls: atieclxx.exe2
Berichtskennung: atieclxx.exe3
Vollständiger Name des fehlerhaften Pakets: atieclxx.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: atieclxx.exe5
Error: (09/14/2013 02:44:41 PM) (Source: Application Error) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm 2K Sports NBA 2K13 wurde wegen dieses Fehlers geschlossen.
Programm: 2K Sports NBA 2K13
Datei:
Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
- diese sich im Netzwerk befindet,
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt.
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.
Zusätzliche Daten
Fehlerwert: 00000000
Datenträgertyp: 0
Error: (09/14/2013 02:44:41 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: nba2k13.exe, Version: 1.0.1.1, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: nba2k13.exe, Version: 1.0.1.1, Zeitstempel: 0x00000000
Ausnahmecode: 0xc000001d
Fehleroffset: 0x01f5ddfd
ID des fehlerhaften Prozesses: 0x1df8
Startzeit der fehlerhaften Anwendung: 0xnba2k13.exe0
Pfad der fehlerhaften Anwendung: nba2k13.exe1
Pfad des fehlerhaften Moduls: nba2k13.exe2
Berichtskennung: nba2k13.exe3
Vollständiger Name des fehlerhaften Pakets: nba2k13.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: nba2k13.exe5
Error: (09/14/2013 01:27:56 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 10.0.9200.16384, Zeitstempel: 0x50107ebe
Name des fehlerhaften Moduls: atidxx64.dll, Version: 8.17.10.451, Zeitstempel: 0x50227732
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000747db
ID des fehlerhaften Prozesses: 0x105c
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Vollständiger Name des fehlerhaften Pakets: iexplore.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: iexplore.exe5
System errors:
=============
Error: (09/14/2013 07:46:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "TPCH Service" wurde mit folgendem Fehler beendet:
%%2147746288
Error: (09/14/2013 07:46:20 PM) (Source: DCOM) (User: MARCO)
Description: {03E64E17-B220-4052-9B9B-155F9CB8E016}
Error: (09/14/2013 07:40:43 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766}
Error: (09/14/2013 07:40:12 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766}
Error: (09/14/2013 07:39:41 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766}
Error: (09/14/2013 07:39:10 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766}
Error: (09/14/2013 07:38:39 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766}
Error: (09/14/2013 07:38:08 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766}
Error: (09/14/2013 07:37:37 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766}
Error: (09/14/2013 07:37:06 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {6DFC2D17-579D-4C1C-93B7-B05B7DCCD766}
Microsoft Office Sessions:
=========================
Error: (09/14/2013 07:23:01 PM) (Source: Application Error)(User: )
Description: wwahost.exe6.2.9200.1638450107c6eatidxx64.dll8.17.10.45150227732c000000500000000000747db139001ceb16f0bf2ca23C:\windows\system32\wwahost.exeC:\windows\system32\atidxx64.dll4df06da8-1d62-11e3-be74-20689de261a1Microsoft.BingFinance_1.2.0.135_x64__8wekyb3d8bbweAppexFinance
Error: (09/14/2013 03:29:08 PM) (Source: Application Error)(User: )
Description: atieclxx.exe6.14.11.112650227bd4atieclxx.exe6.14.11.112650227bd4c0000005000000000001a6ad109001ceb14e63afa886C:\windows\system32\atieclxx.exeC:\windows\system32\atieclxx.exea1c05858-1d41-11e3-be74-20689de261a1
Error: (09/14/2013 02:44:41 PM) (Source: Application Error)(User: )
Description: 2K Sports NBA 2K13000000000
Error: (09/14/2013 02:44:41 PM) (Source: Application Error)(User: )
Description: nba2k13.exe1.0.1.100000000nba2k13.exe1.0.1.100000000c000001d01f5ddfd1df801ceb1482c5cb9e7C:\Program Files (x86)\2K Sports\NBA 2K13\nba2k13.exeC:\Program Files (x86)\2K Sports\NBA 2K13\nba2k13.exe6c005b96-1d3b-11e3-be74-20689de261a1
Error: (09/14/2013 01:27:56 PM) (Source: Application Error)(User: )
Description: iexplore.exe10.0.9200.1638450107ebeatidxx64.dll8.17.10.45150227732c000000500000000000747db105c01ceb13d72dd4ea2C:\Program Files\Internet Explorer\iexplore.exeC:\windows\SYSTEM32\atidxx64.dllb339de05-1d30-11e3-be74-20689de261a1
==================== Memory info ===========================
Percentage of memory in use: 18%
Total physical RAM: 8143.22 MB
Available physical RAM: 6621.89 MB
Total Pagefile: 12751.22 MB
Available Pagefile: 10683.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB
==================== Drives ================================
Drive c: (Data) (Fixed) (Total:585.64 GB) (Free:549.19 GB) NTFS
Drive e: (MARCO I) (Fixed) (Total:931.28 GB) (Free:7.18 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 596 GB) (Disk ID: 00000000)
Partition: GPT Partition Type
========================================================
Disk: 1 (Size: 932 GB) (Disk ID: F171CE3F)
Partition 1: (Not Active) - (Size=932 GB) - (Type=0C)
==================== End Of Log ============================
|
|
15.09.2013, 10:08
| #4 | |
| /// the machine /// TB-Ausbilder | Infizierte externe Festplatte bereinigen?Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Infizierte externe Festplatte bereinigen? |
| alter laptop, anleitung, aufgegeben, avast, bildschirm, computer, externe festplatte, fehler, festplatte, gratis, infizierte, laptop, mcafee, neues, nicht mehr, notebook, scan, schließen, schutz, schwarzer bildschirm, startet, toshiba, ungewollt, version, viren, virenschutz, virus externe festplatte antivirenprogramm lahmgelegt, windows |
Linear-Darstellung
