| |
| |||||||
Log-Analyse und Auswertung: Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekilltWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
18.01.2014, 19:03
| #1 |
| |  Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt Hallo User von Trojaner-Board Leider bekomme ich mit HijackThis nicht die schädlichen Prozesse gekillt ich habe schon alles Probiert im Admin Profil versucht mit HijackThis diese zu killen und auch da Funktioniert es nicht er hat Zwar ein Backup von den Prozessen erstellt doch mein neu machen des Log`s sind sie immer noch da und die Seite von HijackThis Log Auswertung zeig an das Sie Schädlich Sind und daher Hätte ich Sie gerne gekillt doch Es Funktioniert einfach nicht hier einmal das Log .: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:34:04, on 18.01.2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.9600.16384) Boot mode: Normal Running processes: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\AVG 2014\avgui.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Ronny\Downloads\HiJackThis204.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.Google.de R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG 2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [GamingMouse] C:\Program Files (x86)\Drakonia Black\hid.exe O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [HP Officejet 6600 (NET)] "C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe" -deviceID "CN2BJ5QHWN05RN:NW" -scfn "HP Officejet 6600 (NET)" -AutoStart 1 O4 - Startup: Logitech . Produktregistrierung.lnk = C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe O4 - Startup: Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk = ? O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG 2014\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG 2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG 2014\avgwdsvc.exe O23 - Service: @oem10.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9864 bytes Ich hoffe ihr Könnt mir helfen Dieses Problem aus der Welt zu schaffen Mfg PsyclonNine |
|
18.01.2014, 19:58
| #2 |
| /// TB-Ausbilder   | Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt Hallo,
__________________um welche Prozesse soll es denn hier gehen? Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
18.01.2014, 20:05
| #3 |
| | Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt es gut um
__________________O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) diese werden als schädlich angezeigt |
|
18.01.2014, 21:51
| #4 |
| /// TB-Ausbilder | Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt Du solltest wirklich die Finger davon lassen, wenn du nicht weisst, was du tust!! HJT ist veraltetet und speziell auf 64-bit Systemen total unbrauchbar. Diese Einträge sind Systemdienste und absolut in Ordnung! Nur weil irgendeine miserable automatische Logauswertung da was anzeigt, kannst du doch nicht blind dein System schrotten wollen. Wenn ich mir den Rechner mal anschauen soll, dann mach bitte den FRST-Scan wie oben angegeben.
__________________ cheers, Leo |
|
19.01.2014, 10:22
| #5 |
| | Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt Hallo danke für die schnellen antworten und okay wenn ihr sagt es ist doch alles okay dann ist es doch super und ich brauch mir keine Gedanken machen das mir da einer hinterher spioniert o. der gleichen nur unter Windows 7 32bit. Hatte hijack halt immer recht was so ne Sachen anging und da habe i mir halt Gedanken gemacht so aber um ganz auf nummer sicher zu gehen hier noch einmal das um was ihr mich gebeden habt von dem FRST Scan FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-01-2014 03
Ran by Ronny (administrator) on SONY-VAIO on 19-01-2014 10:18:13
Running from C:\Users\Ronny\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums
==================== Processes (Whitelisted) =================
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgcsrva.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgwdsvc.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgemca.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgcsrva.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG 2014\avgui.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicatorCom.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2013-11-05] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint\Apoint.exe [212480 2010-06-03] (Alps Electric Co., Ltd.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG 2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GamingMouse] - C:\Program Files (x86)\Drakonia Black\hid.exe [247296 2013-06-26] ()
HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111928 2013-05-03] (Intel Corporation)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKCU\...\Run: [HP Officejet 6600 (NET)] - C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\Administrator\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\Administrator\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
Startup: C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk
ShortcutTarget: Logitech . Produktregistrierung.lnk -> C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe (Leader Technologies/Logitech)
Startup: C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk -> C:\Program Files\HP\HP Officejet 6600\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = GIGA - Leidenschaft für Technik und Games
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR Extension: (Google Drive) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-18]
CHR Extension: (WOT) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2013-12-18]
CHR Extension: (YouTube) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-18]
CHR Extension: (Webmail Ad Blocker) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbhfdchmklhpcngcgjmpdbjakdggkkjp [2013-12-18]
CHR Extension: (Adblock Plus) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-12-18]
CHR Extension: (Google-Suche) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-18]
CHR Extension: (bloomind ct deepdark) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\djolekdiiojehgfggcjckachfgkkdmjd [2013-12-18]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2013-12-18]
CHR Extension: (AVG Do Not Track) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\epojjbofkhffmihobdncmbhdocjljhpi [2013-12-18]
CHR Extension: (AdBlock) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-12-18]
CHR Extension: (Freemake Video Converter) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2014-01-13]
CHR Extension: (Google Wallet) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-18]
CHR Extension: (Click&Clean App) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2013-12-18]
CHR Extension: (Google Mail) - C:\Users\Ronny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-18]
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2014-01-12]
==================== Services (Whitelisted) =================
U2 avgfws; C:\Program Files (x86)\AVG 2014\avgfws.exe [1358944 2013-09-24] (AVG Technologies CZ, s.r.o.)
U2 AVGIDSAgent; C:\Program Files (x86)\AVG 2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
U2 avgwd; C:\Program Files (x86)\AVG 2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
U2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
U2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
U2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
U3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [4600264 2013-11-05] (INCA Internet Co., Ltd.)
U2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2103096 2013-12-18] (TuneUp Software)
U3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2013-12-18] (Microsoft Corporation)
U2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2013-12-18] (Microsoft Corporation)
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
U0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
U3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
U0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
U1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
U1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
U1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
U0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
U1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
U0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
U0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
U0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
U1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [252728 2013-10-21] (AVG Technologies CZ, s.r.o.)
U3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
U1 HBtnKey; C:\Windows\system32\DRIVERS\wstbtndb.sys [9856 2007-09-14] (Lenovo)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-10-25] (Synaptics Incorporated)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
U3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-12-16] (TuneUp Software)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U3 ykinw8; C:\Windows\system32\DRIVERS\ykinx64.sys [288768 2013-06-18] (Marvell)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-19 10:18 - 2014-01-19 10:18 - 00016407 ____C C:\Users\Ronny\Downloads\FRST.txt
2014-01-19 10:18 - 2014-01-19 10:18 - 00000000 ___DC C:\FRST
2014-01-19 10:17 - 2014-01-19 10:17 - 02076160 ____C (Farbar) C:\Users\Ronny\Downloads\FRST64.exe
2014-01-18 16:40 - 2014-01-18 18:34 - 00009865 ____C C:\Users\Ronny\Downloads\hijackthis.log
2014-01-18 13:33 - 2014-01-18 14:05 - 00000160 ____C C:\WINDOWS\wininit.ini
2014-01-18 12:49 - 2014-01-18 12:49 - 00000000 ___DC C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-18 12:48 - 2014-01-19 10:07 - 00000000 ___DC C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-18 12:48 - 2014-01-18 14:05 - 00000000 ___DC C:\ProgramData\Spybot - Search & Destroy
2014-01-18 12:30 - 2013-07-31 13:08 - 00661184 _____ (Sysinternals - Windows Sysinternals: Documentation, downloads and additional resources) C:\Users\Administrator\Downloads\autoruns.exe
2014-01-18 12:30 - 2013-07-31 13:08 - 00579264 _____ (Sysinternals - Windows Sysinternals: Documentation, downloads and additional resources) C:\Users\Administrator\Downloads\autorunsc.exe
2014-01-18 12:30 - 2013-03-17 16:52 - 00049518 _____ C:\Users\Administrator\Downloads\autoruns.chm
2014-01-18 12:30 - 2006-07-28 09:32 - 00007005 _____ C:\Users\Administrator\Downloads\Eula.txt
2014-01-18 12:29 - 2014-01-18 12:29 - 00550371 _____ C:\Users\Administrator\Downloads\Autoruns_11.70.zip
2014-01-18 12:29 - 2014-01-18 12:29 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\WinRAR
2014-01-18 12:17 - 2014-01-18 12:17 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2014-01-18 12:15 - 2014-01-18 12:08 - 00388608 _____ (Trend Micro Inc.) C:\Users\Administrator\Desktop\HiJackThis204.exe
2014-01-18 12:14 - 2014-01-18 12:14 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Logitech
2014-01-18 12:08 - 2014-01-18 12:08 - 00388608 ____C (Trend Micro Inc.) C:\Users\Ronny\Downloads\HiJackThis204.exe
2014-01-18 07:58 - 2014-01-18 07:58 - 00419296 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-17 01:49 - 2014-01-17 01:49 - 00002770 ____C C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-01-17 00:53 - 2013-10-30 16:48 - 00005584 ____C C:\WINDOWS\SysWOW64\nppt9x.vxd
2014-01-17 00:18 - 2014-01-17 00:18 - 00018960 ____C (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2014-01-17 00:18 - 2014-01-17 00:18 - 00000548 ____C C:\WINDOWS\LkmdfCoInst.log
2014-01-17 00:18 - 2014-01-17 00:18 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Leadertech
2014-01-17 00:18 - 2014-01-17 00:18 - 00000000 ___DC C:\Users\Public\Documents\Logishrd
2014-01-17 00:17 - 2014-01-17 00:18 - 00006778 ____C C:\WINDOWS\LDPINST.LOG
2014-01-17 00:17 - 2014-01-17 00:18 - 00000000 ___DC C:\ProgramData\Logishrd
2014-01-17 00:17 - 2014-01-17 00:17 - 00000000 ___DC C:\Program Files\Logitech
2014-01-17 00:13 - 2014-01-17 00:18 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Logitech
2014-01-17 00:13 - 2014-01-17 00:18 - 00000000 ___DC C:\Program Files\Common Files\LogiShrd
2014-01-17 00:13 - 2014-01-17 00:13 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Logishrd
2014-01-16 23:32 - 2014-01-19 10:07 - 00012158 ____C C:\WINDOWS\PFRO.log
2014-01-16 21:37 - 2014-01-17 00:49 - 00000000 ___DC C:\Program Files (x86)\CABAL Online
2014-01-16 20:39 - 2013-12-18 10:01 - 00040760 ____C (TuneUp Software) C:\WINDOWS\system32\TURegOpt.exe
2014-01-16 20:39 - 2013-12-18 10:01 - 00029496 ____C (TuneUp Software) C:\WINDOWS\system32\authuitu.dll
2014-01-16 20:39 - 2013-12-18 10:01 - 00025400 ____C (TuneUp Software) C:\WINDOWS\SysWOW64\authuitu.dll
2014-01-16 20:38 - 2014-01-16 20:38 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\TuneUp Software
2014-01-16 20:38 - 2014-01-16 20:38 - 00000000 ___DC C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-16 20:35 - 2014-01-16 20:40 - 00000000 ___DC C:\ProgramData\TuneUp Software
2014-01-16 09:59 - 2014-01-16 09:59 - 00000000 ___DC C:\Program Files (x86)\Malwarebytes Anti-Rootkit
2014-01-15 09:47 - 2013-11-27 16:36 - 03395920 ____C (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 09:47 - 2013-11-27 12:41 - 00084480 ____C (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 09:47 - 2013-11-27 11:34 - 00138240 ____C C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 09:47 - 2013-11-27 10:54 - 00103936 ____C C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 09:47 - 2013-11-27 09:48 - 00249856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 09:47 - 2013-11-27 09:45 - 00206336 ____C (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 09:47 - 2013-11-27 09:40 - 00189952 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 09:47 - 2013-11-27 09:38 - 00174592 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 09:47 - 2013-11-27 09:17 - 00695808 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 09:47 - 2013-11-27 09:12 - 00848384 ____C (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-15 09:46 - 2013-12-09 01:15 - 00787968 ____C (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-14 05:04 - 2014-01-14 05:09 - 00000000 ___DC C:\Users\Ronny\SecurityScans
2014-01-13 22:44 - 2014-01-19 10:17 - 01014677 ____C C:\WINDOWS\WindowsUpdate.log
2014-01-12 22:55 - 2014-01-12 22:56 - 00000000 ___DC C:\Users\Ronny\Documents\Freemake
2014-01-12 22:55 - 2014-01-12 22:56 - 00000000 ___DC C:\ProgramData\Freemake
2014-01-12 22:55 - 2014-01-12 22:55 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-01-12 22:55 - 2014-01-12 22:55 - 00000000 ___DC C:\Program Files (x86)\Freemake
2014-01-12 19:48 - 2014-01-12 19:49 - 00000000 ___DC C:\Program Files\KMSpico
2014-01-12 19:48 - 2014-01-12 19:48 - 00003704 ____C C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
2014-01-12 19:48 - 2014-01-12 19:48 - 00000000 ___DC C:\Program Files\TAP-Windows
2014-01-10 06:31 - 2014-01-10 07:06 - 1033702959 ____C C:\Users\Ronny\Downloads\Die Pute von Panem.mkv
2014-01-09 14:30 - 2014-01-09 14:30 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\TeamViewer
2014-01-09 14:17 - 2014-01-09 14:17 - 00000000 ___DC C:\Program Files (x86)\TeamViewer
2014-01-09 06:25 - 2014-01-09 06:25 - 00000000 ___DC C:\Users\Ronny\Documents\Benutzerdefinierte Office-Vorlagen
2014-01-08 19:39 - 2014-01-18 12:24 - 00117464 ____C (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-01-07 13:23 - 2014-01-17 01:30 - 00002121 ____C C:\Users\Ronny\Desktop\Neues Textdokument (2).txt
2014-01-06 23:30 - 2014-01-06 23:30 - 00000000 ___DC C:\Users\Ronny\AppData\Local\DDMSettings
2014-01-06 23:29 - 2014-01-06 23:29 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\DivX
2014-01-06 23:29 - 2014-01-06 23:29 - 00000000 ___DC C:\Program Files\DivX
2014-01-06 23:26 - 2014-01-06 23:29 - 00000000 ___DC C:\Program Files (x86)\DivX
2014-01-06 23:26 - 2014-01-06 23:26 - 00000000 ____C C:\END
2014-01-06 23:25 - 2014-01-06 23:29 - 00000000 ___DC C:\ProgramData\DivX
2014-01-05 14:25 - 2014-01-05 14:25 - 00000020 __SHC C:\Users\DefaultAppPool\ntuser.ini
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Vorlagen
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Startmenü
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Netzwerkumgebung
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Lokale Einstellungen
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Eigene Dateien
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Druckumgebung
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Documents\Eigene Musik
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Anwendungsdaten
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 ____D C:\Users\DefaultAppPool
2014-01-05 14:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\DefaultAppPool\AppData\Roaming\ATI
2014-01-05 14:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\DefaultAppPool\AppData\Local\ATI
2014-01-05 14:25 - 2013-12-18 02:35 - 00000000 ___DC C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2014-01-05 14:25 - 2013-08-22 16:36 - 00000000 __RDC C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-05 14:25 - 2013-08-22 16:36 - 00000000 __RDC C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-05 14:25 - 2013-08-22 16:36 - 00000000 __RDC C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-05 14:25 - 2013-08-22 16:36 - 00000000 ___DC C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-04 19:26 - 2014-01-04 19:26 - 00000965 ____C C:\Users\Ronny\Desktop\Neues Textdokument.txt
2014-01-02 03:56 - 2014-01-02 03:56 - 00000000 ___HC C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-01-02 01:36 - 2014-01-17 02:39 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Skype
2014-01-02 01:36 - 2014-01-02 01:36 - 00000000 __RDC C:\Program Files (x86)\Skype
2014-01-02 01:36 - 2014-01-02 01:36 - 00000000 ___DC C:\ProgramData\Skype
2014-01-01 23:46 - 2014-01-15 21:50 - 00000059 ____C C:\Users\Ronny\Desktop\Neu im Kino.txt
2013-12-31 14:33 - 2013-12-31 14:33 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-31 14:33 - 2013-12-31 14:33 - 00000000 ___DC C:\Program Files\WinRAR
2013-12-31 14:32 - 2013-12-31 14:32 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-12-31 14:32 - 2013-12-31 14:32 - 00000000 ___DC C:\Program Files\Unlocker
2013-12-27 16:59 - 2007-09-14 23:12 - 01459712 ____C C:\WINDOWS\system32\wstbtnrb.dll
2013-12-27 16:59 - 2007-09-14 23:12 - 00009856 ____C (Lenovo) C:\WINDOWS\system32\Drivers\wstbtndb.sys
2013-12-27 16:58 - 2013-05-21 16:38 - 00036096 ____C (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2013-12-27 16:56 - 2013-12-27 16:56 - 00000000 ___HC C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2013-12-27 16:56 - 2013-12-27 16:56 - 00000000 ___DC C:\Program Files\Synaptics
2013-12-27 16:55 - 2013-10-25 18:36 - 00034544 ____C (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2013-12-27 16:55 - 2013-04-16 17:33 - 01795952 ____C (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2013-12-27 16:44 - 2013-12-27 16:44 - 00000000 ___DC C:\WINDOWS\SysWOW64\sda
2013-12-27 16:44 - 2013-12-27 16:44 - 00000000 ___DC C:\Program Files (x86)\Ricoh
2013-12-27 16:44 - 2012-07-20 22:33 - 00073728 ____C (REDC) C:\WINDOWS\system32\Drivers\rimspe64.sys
2013-12-27 16:44 - 2006-10-20 14:33 - 00623616 ____C (Sony Corporation) C:\WINDOWS\system32\snymsico.dll
2013-12-27 16:43 - 2013-12-27 16:44 - 00000000 ___DC C:\Program Files (x86)\Atheros
2013-12-27 16:43 - 2013-12-27 16:43 - 00000000 ___HC C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2013-12-27 16:43 - 2013-12-27 16:43 - 00000000 ___DC C:\WINDOWS\Options
2013-12-27 16:43 - 2013-12-27 16:43 - 00000000 ___DC C:\ProgramData\Qualcomm Atheros
2013-12-27 16:43 - 2013-12-27 16:43 - 00000000 ___DC C:\Program Files\Apoint
2013-12-27 16:43 - 2013-08-15 20:13 - 03859968 ____C (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athwbx.sys
2013-12-27 16:42 - 2013-12-27 16:42 - 00000057 ____C C:\ProgramData\Ament.ini
2013-12-27 16:42 - 2013-12-27 16:42 - 00000000 ___DC C:\Users\Ronny\Intel
2013-12-27 16:42 - 2013-12-27 16:42 - 00000000 ___DC C:\ProgramData\HP
2013-12-27 16:42 - 2013-12-27 16:42 - 00000000 ___DC C:\Program Files\HP
2013-12-27 16:42 - 2013-12-27 16:42 - 00000000 ___DC C:\Program Files (x86)\HP
2013-12-27 16:42 - 2012-10-17 04:31 - 00741480 ____C (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPM5D12.dll
2013-12-27 16:41 - 2013-12-27 16:41 - 00000000 ___HC C:\ProgramData\DP45977C.lfl
2013-12-27 16:41 - 2013-12-27 16:41 - 00000000 ___DC C:\WINDOWS\SysWOW64\RTCOM
2013-12-27 16:41 - 2013-12-27 16:41 - 00000000 ___DC C:\Users\Ronny\AppData\Local\HP
2013-12-27 16:41 - 2013-12-27 16:41 - 00000000 ___DC C:\Program Files\Realtek
2013-12-27 16:40 - 2013-12-27 16:40 - 00000000 ___DC C:\Program Files (x86)\Realtek
2013-12-27 16:40 - 2013-11-05 19:47 - 03707864 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2013-12-27 16:40 - 2013-11-05 18:54 - 38385664 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2013-12-27 16:40 - 2013-11-05 15:48 - 00681905 ____C C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2013-12-27 16:40 - 2013-11-04 19:26 - 00153304 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2013-12-27 16:40 - 2013-11-04 11:11 - 02587864 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2013-12-27 16:40 - 2013-10-30 16:31 - 00929080 ____C (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOSettingsIPC.dll
2013-12-27 16:40 - 2013-10-28 17:29 - 01021656 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2013-12-27 16:40 - 2013-10-25 10:49 - 05751576 ____C (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2013-12-27 16:40 - 2013-10-18 16:41 - 01286360 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2013-12-27 16:40 - 2013-10-16 03:43 - 00209096 ____C (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2013-12-27 16:40 - 2013-10-11 12:47 - 00113576 ____C (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2013-12-27 16:40 - 2013-10-11 11:31 - 00947760 ____C (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2013-12-27 16:40 - 2013-10-09 20:13 - 01921792 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2013-12-27 16:40 - 2013-10-09 20:13 - 01345280 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2013-12-27 16:40 - 2013-10-09 20:13 - 01286400 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2013-12-27 16:40 - 2013-10-09 20:12 - 27644160 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioVnA64.dll
2013-12-27 16:40 - 2013-10-09 20:12 - 14152960 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2013-12-27 16:40 - 2013-10-09 20:12 - 03714304 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioVnN64.dll
2013-12-27 16:40 - 2013-10-09 20:12 - 02103040 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2013-12-27 16:40 - 2013-10-09 20:12 - 02036992 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2013-12-27 16:40 - 2013-10-09 20:12 - 01012992 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2013-12-27 16:40 - 2013-10-07 11:05 - 02810072 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2013-12-27 16:40 - 2013-10-07 00:26 - 00501184 ____C (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2013-12-27 16:40 - 2013-10-07 00:26 - 00487360 ____C (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2013-12-27 16:40 - 2013-10-07 00:26 - 00415680 ____C (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2013-12-27 16:40 - 2013-10-02 17:10 - 00617176 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2013-12-27 16:40 - 2013-09-13 18:44 - 02080472 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2013-12-27 16:40 - 2013-09-10 04:02 - 06217904 ____C (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2013-12-27 16:40 - 2013-09-10 04:02 - 00313520 ____C (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2013-12-27 16:40 - 2013-09-10 04:01 - 01938608 ____C (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2013-12-27 16:40 - 2013-09-10 04:01 - 00260272 ____C (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2013-12-27 16:40 - 2013-09-09 15:32 - 05681192 ____C C:\WINDOWS\system32\Drivers\rtvienna.dat
2013-12-27 16:40 - 2013-08-24 03:14 - 01014016 ____C (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2013-12-27 16:40 - 2013-08-24 03:14 - 00897792 ____C (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2013-12-27 16:40 - 2013-08-24 03:14 - 00722688 ____C (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2013-12-27 16:40 - 2013-08-24 03:14 - 00244480 ____C (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2013-12-27 16:40 - 2013-08-20 17:37 - 00605496 ____C C:\WINDOWS\system32\audioLibVc.dll
2013-12-27 16:40 - 2013-08-14 16:36 - 00662784 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2013-12-27 16:40 - 2013-08-14 16:35 - 01084160 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2013-12-27 16:40 - 2013-08-14 16:35 - 00907008 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2013-12-27 16:40 - 2013-08-14 16:35 - 00663296 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2013-12-27 16:40 - 2013-08-05 18:11 - 02743328 ____C (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2013-12-27 16:40 - 2013-07-23 15:39 - 00790272 ____C (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\MaxxAudioAPOShell.dll
2013-12-27 16:40 - 2013-06-25 12:47 - 00871856 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2013-12-27 16:40 - 2013-06-25 12:47 - 00162224 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2013-12-27 16:40 - 2013-06-25 12:46 - 00582056 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2013-12-27 16:40 - 2013-06-21 11:01 - 00109848 ____C C:\WINDOWS\system32\AcpiServiceVnA64.dll
2013-12-27 16:40 - 2013-04-24 17:16 - 01662024 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2013-12-27 16:40 - 2013-04-03 14:13 - 00906800 ____C (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2013-12-27 16:40 - 2012-08-31 19:18 - 07164176 ____C (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2013-12-27 16:40 - 2012-08-31 19:17 - 00434960 ____C (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2013-12-27 16:40 - 2012-08-31 19:17 - 00141584 ____C (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2013-12-27 16:40 - 2012-08-31 19:17 - 00124176 ____C (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2013-12-27 16:40 - 2012-08-31 19:17 - 00075024 ____C (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2013-12-27 16:40 - 2012-03-08 11:47 - 00108640 ____C (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2013-12-27 16:40 - 2012-01-30 11:43 - 00836544 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2013-12-27 16:40 - 2012-01-10 10:20 - 00065944 ____C (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2013-12-27 16:40 - 2011-12-20 15:32 - 00331880 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2013-12-27 16:40 - 2011-11-22 16:28 - 00014952 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2013-12-27 16:40 - 2011-09-02 14:21 - 00221024 ____C (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2013-12-27 16:40 - 2011-09-02 14:21 - 00081248 ____C (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2013-12-27 16:40 - 2011-09-02 14:21 - 00078688 ____C (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2013-12-27 16:40 - 2011-08-23 17:00 - 00603984 ____C (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 01756264 ____C (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 01568360 ____C (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 01486952 ____C (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00728680 ____C (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00712296 ____C (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00693352 ____C (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00491112 ____C (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00432744 ____C (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00428648 ____C (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00242792 ____C (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00242792 ____C (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2013-12-27 16:40 - 2011-05-31 09:42 - 00241768 ____C (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2013-12-27 16:40 - 2011-03-17 12:17 - 01361336 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2013-12-27 16:40 - 2011-03-07 17:11 - 00148416 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2013-12-27 16:40 - 2010-11-08 07:31 - 00375128 ____C (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2013-12-27 16:40 - 2010-11-08 07:31 - 00310104 ____C (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2013-12-27 16:40 - 2010-11-08 07:31 - 00310104 ____C (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2013-12-27 16:40 - 2010-11-08 07:31 - 00204120 ____C (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2013-12-27 16:40 - 2010-11-08 07:31 - 00101208 ____C (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2013-12-27 16:40 - 2010-11-08 07:31 - 00078680 ____C (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2013-12-27 16:40 - 2010-11-03 18:30 - 00149608 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2013-12-27 16:40 - 2010-09-27 09:34 - 00318808 ____C (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2013-12-27 16:40 - 2010-07-22 16:48 - 00074064 ____C (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2013-12-27 16:40 - 2009-11-24 09:55 - 00518896 ____C (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2013-12-27 16:40 - 2009-11-24 09:55 - 00211184 ____C (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2013-12-27 16:40 - 2009-11-24 09:55 - 00198896 ____C (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2013-12-27 16:40 - 2009-11-24 09:55 - 00155888 ____C (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2013-12-27 15:59 - 2014-01-08 14:47 - 00000310 ____C C:\WINDOWS\Tasks\AdvancedDriverUpdater_UPDATES.job
2013-12-27 15:59 - 2014-01-07 12:34 - 00003036 ____C C:\WINDOWS\System32\Tasks\AdvancedDriverUpdater_UPDATES
2013-12-27 15:59 - 2013-12-27 15:59 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Systweak
2013-12-27 15:59 - 2013-12-27 15:59 - 00000000 ___DC C:\Program Files (x86)\Advanced Driver Updater
2013-12-24 01:15 - 2013-12-24 01:15 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Apple Computer
2013-12-24 01:14 - 2014-01-18 12:19 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-121052188-3297656252-2807084129-500
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\MingGuan
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\AVG2014
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ____D C:\Users\Administrator\AppData\Local\Avg2014
2013-12-24 01:08 - 2013-12-24 01:11 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2013-12-24 01:08 - 2013-12-24 01:09 - 00000000 ____D C:\Users\Administrator
2013-12-24 01:08 - 2013-12-24 01:08 - 00000020 ___SH C:\Users\Administrator\ntuser.ini
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2013-12-24 01:08 - 2013-12-22 07:25 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\ATI
2013-12-24 01:08 - 2013-12-22 07:25 - 00000000 ____D C:\Users\Administrator\AppData\Local\ATI
2013-12-24 01:08 - 2013-12-18 02:35 - 00000000 ____D C:\Users\Administrator\AppData\Local\Microsoft Help
2013-12-24 01:08 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-24 01:08 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-24 01:08 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-24 01:08 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-23 22:55 - 2013-12-23 22:55 - 00000000 ___DC C:\Users\Ronny\SystemRequirementsLab
2013-12-23 22:55 - 2013-12-23 22:55 - 00000000 ___DC C:\Program Files (x86)\SystemRequirementsLab
2013-12-23 19:29 - 2013-12-23 19:29 - 01192545 ____C C:\WINDOWS\unins000.exe
2013-12-23 19:29 - 2013-12-23 19:29 - 00017320 ____C C:\WINDOWS\unins000.dat
2013-12-23 19:29 - 2013-12-23 19:29 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\MingGuan
2013-12-23 19:29 - 2013-12-23 19:29 - 00000000 ___DC C:\Program Files (x86)\Drakonia Black
2013-12-23 18:48 - 2014-01-17 01:32 - 00005078 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for SONY-VAIO-Ronny Sony-Vaio
2013-12-22 21:23 - 2013-12-22 21:23 - 00000000 ___DC C:\Program Files (x86)\Mozilla Firefox
2013-12-22 20:55 - 2013-12-22 20:55 - 00000000 ___DC C:\Users\Ronny\AppData\Local\@ByELDI
2013-12-22 20:38 - 2013-12-22 20:38 - 00000000 ___DC C:\Program Files\Common Files\DESIGNER
2013-12-22 20:37 - 2013-12-22 20:37 - 00000000 ___DC C:\Program Files (x86)\Microsoft SQL Server
2013-12-22 20:36 - 2013-12-22 20:37 - 00000000 ___DC C:\Program Files\Microsoft SQL Server
2013-12-22 20:36 - 2013-12-22 20:36 - 00000000 ___DC C:\WINDOWS\PCHEALTH
2013-12-22 20:34 - 2013-12-22 20:36 - 00000000 ___DC C:\Program Files\Microsoft Office
2013-12-22 20:34 - 2013-12-22 20:34 - 00000000 ___DC C:\Program Files\Microsoft Analysis Services
2013-12-22 20:34 - 2013-12-22 20:34 - 00000000 ___DC C:\Program Files (x86)\Microsoft Analysis Services
2013-12-22 18:46 - 2013-12-22 18:46 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\WinRAR
2013-12-22 18:32 - 2013-12-22 18:32 - 00000000 ___DC C:\ProgramData\ATI
2013-12-22 07:27 - 2013-12-22 07:27 - 00049669 ____C C:\WINDOWS\SysWOW64\CCCInstall_201312220727326803.log
2013-12-22 07:27 - 2013-12-22 07:27 - 00000000 ___DC C:\Program Files (x86)\Advanced Micro Devices, Inc
2013-12-22 07:26 - 2013-12-27 16:44 - 00000000 __HDC C:\Program Files (x86)\InstallShield Installation Information
2013-12-22 07:26 - 2013-12-22 07:26 - 00060544 ____C C:\WINDOWS\SysWOW64\CCCInstall_201312220726115465.log
2013-12-22 07:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\Default\AppData\Roaming\ATI
2013-12-22 07:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\Default\AppData\Local\ATI
2013-12-22 07:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\Default User\AppData\Roaming\ATI
2013-12-22 07:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\Default User\AppData\Local\ATI
2013-12-21 12:10 - 2013-12-21 12:10 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Macromedia
2013-12-20 18:40 - 2013-12-20 19:08 - 00000000 ___DC C:\Users\Ronny\AppData\Local\Darksiders2
2013-12-20 18:40 - 2013-12-20 18:40 - 00000000 __HDC C:\WINDOWS\msdownld.tmp
2013-12-20 18:40 - 2013-12-20 18:40 - 00000000 ___DC C:\WINDOWS\SysWOW64\directx
2013-12-20 18:40 - 2013-12-20 18:40 - 00000000 ___DC C:\Users\Ronny\Documents\My Games
2013-12-20 17:35 - 2014-01-18 12:35 - 00000000 ___DC C:\ProgramData\Malwarebytes' Anti-Malware (portable)
==================== One Month Modified Files and Folders =======
2014-01-19 10:18 - 2014-01-19 10:18 - 00016407 ____C C:\Users\Ronny\Downloads\FRST.txt
2014-01-19 10:18 - 2014-01-19 10:18 - 00000000 ___DC C:\FRST
2014-01-19 10:17 - 2014-01-19 10:17 - 02076160 ____C (Farbar) C:\Users\Ronny\Downloads\FRST64.exe
2014-01-19 10:17 - 2014-01-13 22:44 - 01014677 ____C C:\WINDOWS\WindowsUpdate.log
2014-01-19 10:13 - 2013-12-18 01:21 - 00000000 ___DC C:\ProgramData\MFAData
2014-01-19 10:13 - 2013-12-17 23:57 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-121052188-3297656252-2807084129-1001
2014-01-19 10:08 - 2013-12-17 15:16 - 00000000 _RDOC C:\Users\Ronny\SkyDrive
2014-01-19 10:07 - 2014-01-18 12:48 - 00000000 ___DC C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-19 10:07 - 2014-01-16 23:32 - 00012158 ____C C:\WINDOWS\PFRO.log
2014-01-19 10:07 - 2013-08-22 15:45 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2014-01-18 20:18 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-18 20:00 - 2013-08-22 16:36 - 00000000 ___DC C:\WINDOWS\system32\sru
2014-01-18 18:34 - 2014-01-18 16:40 - 00009865 ____C C:\Users\Ronny\Downloads\hijackthis.log
2014-01-18 14:05 - 2014-01-18 13:33 - 00000160 ____C C:\WINDOWS\wininit.ini
2014-01-18 14:05 - 2014-01-18 12:48 - 00000000 ___DC C:\ProgramData\Spybot - Search & Destroy
2014-01-18 12:49 - 2014-01-18 12:49 - 00000000 ___DC C:\WINDOWS\System32\Tasks\Safer-Networking
2014-01-18 12:35 - 2013-12-20 17:35 - 00000000 ___DC C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-18 12:33 - 2013-08-22 16:36 - 00000000 ___DC C:\WINDOWS\AppReadiness
2014-01-18 12:29 - 2014-01-18 12:29 - 00550371 _____ C:\Users\Administrator\Downloads\Autoruns_11.70.zip
2014-01-18 12:29 - 2014-01-18 12:29 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\WinRAR
2014-01-18 12:24 - 2014-01-08 19:39 - 00117464 ____C (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-01-18 12:23 - 2013-12-18 01:39 - 00089304 ____C (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-01-18 12:19 - 2013-12-24 01:14 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-121052188-3297656252-2807084129-500
2014-01-18 12:17 - 2014-01-18 12:17 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2014-01-18 12:14 - 2014-01-18 12:14 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Logitech
2014-01-18 12:08 - 2014-01-18 12:15 - 00388608 _____ (Trend Micro Inc.) C:\Users\Administrator\Desktop\HiJackThis204.exe
2014-01-18 12:08 - 2014-01-18 12:08 - 00388608 ____C (Trend Micro Inc.) C:\Users\Ronny\Downloads\HiJackThis204.exe
2014-01-18 08:35 - 2013-12-18 01:25 - 00000000 ___DC C:\Program Files (x86)\AVG 2014
2014-01-18 07:58 - 2014-01-18 07:58 - 00419296 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-17 02:39 - 2014-01-02 01:36 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Skype
2014-01-17 01:49 - 2014-01-17 01:49 - 00002770 ____C C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-01-17 01:32 - 2013-12-23 18:48 - 00005078 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for SONY-VAIO-Ronny Sony-Vaio
2014-01-17 01:30 - 2014-01-07 13:23 - 00002121 ____C C:\Users\Ronny\Desktop\Neues Textdokument (2).txt
2014-01-17 00:49 - 2014-01-16 21:37 - 00000000 ___DC C:\Program Files (x86)\CABAL Online
2014-01-17 00:27 - 2013-12-19 00:17 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Dropbox
2014-01-17 00:27 - 2013-12-17 20:14 - 00000000 __RDC C:\Users\Ronny\Dropbox
2014-01-17 00:18 - 2014-01-17 00:18 - 00018960 ____C (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2014-01-17 00:18 - 2014-01-17 00:18 - 00000548 ____C C:\WINDOWS\LkmdfCoInst.log
2014-01-17 00:18 - 2014-01-17 00:18 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Leadertech
2014-01-17 00:18 - 2014-01-17 00:18 - 00000000 ___DC C:\Users\Public\Documents\Logishrd
2014-01-17 00:18 - 2014-01-17 00:17 - 00006778 ____C C:\WINDOWS\LDPINST.LOG
2014-01-17 00:18 - 2014-01-17 00:17 - 00000000 ___DC C:\ProgramData\Logishrd
2014-01-17 00:18 - 2014-01-17 00:13 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Logitech
2014-01-17 00:18 - 2014-01-17 00:13 - 00000000 ___DC C:\Program Files\Common Files\LogiShrd
2014-01-17 00:18 - 2013-12-17 23:52 - 00000000 __RDC C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-17 00:17 - 2014-01-17 00:17 - 00000000 ___DC C:\Program Files\Logitech
2014-01-17 00:13 - 2014-01-17 00:13 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Logishrd
2014-01-16 21:46 - 2013-12-17 15:21 - 00000000 __RDC C:\Users\Ronny\Desktop\Games
2014-01-16 20:51 - 2013-12-18 00:46 - 00000000 _SHDC C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-16 20:40 - 2014-01-16 20:35 - 00000000 ___DC C:\ProgramData\TuneUp Software
2014-01-16 20:38 - 2014-01-16 20:38 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\TuneUp Software
2014-01-16 20:38 - 2014-01-16 20:38 - 00000000 ___DC C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-16 09:59 - 2014-01-16 09:59 - 00000000 ___DC C:\Program Files (x86)\Malwarebytes Anti-Rootkit
2014-01-16 08:15 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-15 21:50 - 2014-01-01 23:46 - 00000059 ____C C:\Users\Ronny\Desktop\Neu im Kino.txt
2014-01-15 21:35 - 2013-08-22 16:36 - 00000000 ___DC C:\WINDOWS\WinStore
2014-01-15 21:34 - 2013-12-18 03:03 - 00000000 ___DC C:\WINDOWS\system32\MRT
2014-01-15 21:34 - 2013-12-18 01:02 - 00000000 ___DC C:\ProgramData\Microsoft Help
2014-01-15 21:32 - 2013-12-18 03:03 - 86054176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-14 06:17 - 2013-12-17 15:14 - 00000000 ___DC C:\Users\Ronny\AppData\Local\Packages
2014-01-14 06:13 - 2013-12-17 23:51 - 00000000 ___DC C:\Users\Ronny\AppData\Local\VirtualStore
2014-01-14 05:09 - 2014-01-14 05:04 - 00000000 ___DC C:\Users\Ronny\SecurityScans
2014-01-14 05:04 - 2013-12-17 23:48 - 00000000 ____D C:\Users\Ronny
2014-01-12 22:56 - 2014-01-12 22:55 - 00000000 ___DC C:\Users\Ronny\Documents\Freemake
2014-01-12 22:56 - 2014-01-12 22:55 - 00000000 ___DC C:\ProgramData\Freemake
2014-01-12 22:55 - 2014-01-12 22:55 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-01-12 22:55 - 2014-01-12 22:55 - 00000000 ___DC C:\Program Files (x86)\Freemake
2014-01-12 19:49 - 2014-01-12 19:48 - 00000000 ___DC C:\Program Files\KMSpico
2014-01-12 19:48 - 2014-01-12 19:48 - 00003704 ____C C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
2014-01-12 19:48 - 2014-01-12 19:48 - 00000000 ___DC C:\Program Files\TAP-Windows
2014-01-12 19:43 - 2013-12-17 23:55 - 02061176 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-12 19:43 - 2013-08-23 00:24 - 00877168 ____C C:\WINDOWS\system32\perfh007.dat
2014-01-12 19:43 - 2013-08-23 00:24 - 00200782 ____C C:\WINDOWS\system32\perfc007.dat
2014-01-10 07:06 - 2014-01-10 06:31 - 1033702959 ____C C:\Users\Ronny\Downloads\Die Pute von Panem.mkv
2014-01-09 14:30 - 2014-01-09 14:30 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\TeamViewer
2014-01-09 14:17 - 2014-01-09 14:17 - 00000000 ___DC C:\Program Files (x86)\TeamViewer
2014-01-09 13:05 - 2013-12-19 00:03 - 00000000 ___DC C:\Program Files\Rappelz
2014-01-09 06:25 - 2014-01-09 06:25 - 00000000 ___DC C:\Users\Ronny\Documents\Benutzerdefinierte Office-Vorlagen
2014-01-08 14:47 - 2013-12-27 15:59 - 00000310 ____C C:\WINDOWS\Tasks\AdvancedDriverUpdater_UPDATES.job
2014-01-07 19:31 - 2013-12-18 00:44 - 00002774 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-07 12:34 - 2013-12-27 15:59 - 00003036 ____C C:\WINDOWS\System32\Tasks\AdvancedDriverUpdater_UPDATES
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 ____C (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 ____C (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 23:30 - 2014-01-06 23:30 - 00000000 ___DC C:\Users\Ronny\AppData\Local\DDMSettings
2014-01-06 23:29 - 2014-01-06 23:29 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\DivX
2014-01-06 23:29 - 2014-01-06 23:29 - 00000000 ___DC C:\Program Files\DivX
2014-01-06 23:29 - 2014-01-06 23:26 - 00000000 ___DC C:\Program Files (x86)\DivX
2014-01-06 23:29 - 2014-01-06 23:25 - 00000000 ___DC C:\ProgramData\DivX
2014-01-06 23:26 - 2014-01-06 23:26 - 00000000 ____C C:\END
2014-01-05 14:25 - 2014-01-05 14:25 - 00000020 __SHC C:\Users\DefaultAppPool\ntuser.ini
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Vorlagen
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Startmenü
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Netzwerkumgebung
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Lokale Einstellungen
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Eigene Dateien
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Druckumgebung
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Documents\Eigene Musik
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 SHDCL C:\Users\DefaultAppPool\Anwendungsdaten
2014-01-05 14:25 - 2014-01-05 14:25 - 00000000 ____D C:\Users\DefaultAppPool
2014-01-04 19:26 - 2014-01-04 19:26 - 00000965 ____C C:\Users\Ronny\Desktop\Neues Textdokument.txt
2014-01-02 04:00 - 2013-12-19 23:35 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Apple Computer
2014-01-02 03:56 - 2014-01-02 03:56 - 00000000 ___HC C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-01-02 01:36 - 2014-01-02 01:36 - 00000000 __RDC C:\Program Files (x86)\Skype
2014-01-02 01:36 - 2014-01-02 01:36 - 00000000 ___DC C:\ProgramData\Skype
2013-12-31 14:33 - 2013-12-31 14:33 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-31 14:33 - 2013-12-31 14:33 - 00000000 ___DC C:\Program Files\WinRAR
2013-12-31 14:32 - 2013-12-31 14:32 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-12-31 14:32 - 2013-12-31 14:32 - 00000000 ___DC C:\Program Files\Unlocker
2013-12-31 14:15 - 2013-08-22 14:25 - 66846720 _____ C:\WINDOWS\system32\config\SOFTWARE_tureg_old
2013-12-31 14:15 - 2013-08-22 14:25 - 11010048 _____ C:\WINDOWS\system32\config\SYSTEM_tureg_old
2013-12-31 14:15 - 2013-08-22 14:25 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY_tureg_old
2013-12-31 14:13 - 2013-08-22 14:25 - 00262144 _____ C:\WINDOWS\system32\config\DEFAULT_tureg_old
2013-12-31 14:13 - 2013-08-22 14:25 - 00061440 _____ C:\WINDOWS\system32\config\SAM_tureg_old
2013-12-31 13:51 - 2013-12-18 00:44 - 00000000 ___DC C:\Program Files\CCleaner
2013-12-27 16:58 - 2013-12-18 00:56 - 00000000 ___DC C:\Program Files (x86)\Intel
2013-12-27 16:56 - 2013-12-27 16:56 - 00000000 ___HC C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2013-12-27 16:56 - 2013-12-27 16:56 - 00000000 ___DC C:\Program Files\Synaptics
2013-12-27 16:44 - 2013-12-27 16:44 - 00000000 ___DC C:\WINDOWS\SysWOW64\sda
2013-12-27 16:44 - 2013-12-27 16:44 - 00000000 ___DC C:\Program Files (x86)\Ricoh
2013-12-27 16:44 - 2013-12-27 16:43 - 00000000 ___DC C:\Program Files (x86)\Atheros
2013-12-27 16:44 - 2013-12-22 07:26 - 00000000 __HDC C:\Program Files (x86)\InstallShield Installation Information
2013-12-27 16:43 - 2013-12-27 16:43 - 00000000 ___HC C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2013-12-27 16:43 - 2013-12-27 16:43 - 00000000 ___DC C:\WINDOWS\Options
2013-12-27 16:43 - 2013-12-27 16:43 - 00000000 ___DC C:\ProgramData\Qualcomm Atheros
2013-12-27 16:43 - 2013-12-27 16:43 - 00000000 ___DC C:\Program Files\Apoint
2013-12-27 16:42 - 2013-12-27 16:42 - 00000057 ____C C:\ProgramData\Ament.ini
2013-12-27 16:42 - 2013-12-27 16:42 - 00000000 ___DC C:\Users\Ronny\Intel
2013-12-27 16:42 - 2013-12-27 16:42 - 00000000 ___DC C:\ProgramData\HP
2013-12-27 16:42 - 2013-12-27 16:42 - 00000000 ___DC C:\Program Files\HP
2013-12-27 16:42 - 2013-12-27 16:42 - 00000000 ___DC C:\Program Files (x86)\HP
2013-12-27 16:41 - 2013-12-27 16:41 - 00000000 ___HC C:\ProgramData\DP45977C.lfl
2013-12-27 16:41 - 2013-12-27 16:41 - 00000000 ___DC C:\WINDOWS\SysWOW64\RTCOM
2013-12-27 16:41 - 2013-12-27 16:41 - 00000000 ___DC C:\Users\Ronny\AppData\Local\HP
2013-12-27 16:41 - 2013-12-27 16:41 - 00000000 ___DC C:\Program Files\Realtek
2013-12-27 16:40 - 2013-12-27 16:40 - 00000000 ___DC C:\Program Files (x86)\Realtek
2013-12-27 16:08 - 2013-12-18 00:42 - 00000000 ___DC C:\ProgramData\Adobe
2013-12-27 16:06 - 2013-12-18 00:36 - 00000000 ___DC C:\Users\Ronny\AppData\Local\Adobe
2013-12-27 16:06 - 2013-12-17 23:51 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Adobe
2013-12-27 15:59 - 2013-12-27 15:59 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Systweak
2013-12-27 15:59 - 2013-12-27 15:59 - 00000000 ___DC C:\Program Files (x86)\Advanced Driver Updater
2013-12-24 01:15 - 2013-12-24 01:15 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Apple Computer
2013-12-24 01:11 - 2013-12-24 01:08 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\MingGuan
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\AVG2014
2013-12-24 01:09 - 2013-12-24 01:09 - 00000000 ____D C:\Users\Administrator\AppData\Local\Avg2014
2013-12-24 01:09 - 2013-12-24 01:08 - 00000000 ____D C:\Users\Administrator
2013-12-24 01:09 - 2013-12-17 23:52 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-24 01:08 - 2013-12-24 01:08 - 00000020 ___SH C:\Users\Administrator\ntuser.ini
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2013-12-24 01:08 - 2013-12-24 01:08 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2013-12-23 22:55 - 2013-12-23 22:55 - 00000000 ___DC C:\Users\Ronny\SystemRequirementsLab
2013-12-23 22:55 - 2013-12-23 22:55 - 00000000 ___DC C:\Program Files (x86)\SystemRequirementsLab
2013-12-23 19:29 - 2013-12-23 19:29 - 01192545 ____C C:\WINDOWS\unins000.exe
2013-12-23 19:29 - 2013-12-23 19:29 - 00017320 ____C C:\WINDOWS\unins000.dat
2013-12-23 19:29 - 2013-12-23 19:29 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\MingGuan
2013-12-23 19:29 - 2013-12-23 19:29 - 00000000 ___DC C:\Program Files (x86)\Drakonia Black
2013-12-22 21:23 - 2013-12-22 21:23 - 00000000 ___DC C:\Program Files (x86)\Mozilla Firefox
2013-12-22 20:55 - 2013-12-22 20:55 - 00000000 ___DC C:\Users\Ronny\AppData\Local\@ByELDI
2013-12-22 20:38 - 2013-12-22 20:38 - 00000000 ___DC C:\Program Files\Common Files\DESIGNER
2013-12-22 20:38 - 2013-08-22 16:36 - 00000000 ___DC C:\Program Files\Common Files\microsoft shared
2013-12-22 20:37 - 2013-12-22 20:37 - 00000000 ___DC C:\Program Files (x86)\Microsoft SQL Server
2013-12-22 20:37 - 2013-12-22 20:36 - 00000000 ___DC C:\Program Files\Microsoft SQL Server
2013-12-22 20:36 - 2013-12-22 20:36 - 00000000 ___DC C:\WINDOWS\PCHEALTH
2013-12-22 20:36 - 2013-12-22 20:34 - 00000000 ___DC C:\Program Files\Microsoft Office
2013-12-22 20:34 - 2013-12-22 20:34 - 00000000 ___DC C:\Program Files\Microsoft Analysis Services
2013-12-22 20:34 - 2013-12-22 20:34 - 00000000 ___DC C:\Program Files (x86)\Microsoft Analysis Services
2013-12-22 20:34 - 2013-12-18 01:02 - 00000000 ___DC C:\Program Files (x86)\Microsoft Office
2013-12-22 20:34 - 2013-08-23 00:26 - 00000000 ___DC C:\WINDOWS\ShellNew
2013-12-22 18:46 - 2013-12-22 18:46 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\WinRAR
2013-12-22 18:32 - 2013-12-22 18:32 - 00000000 ___DC C:\ProgramData\ATI
2013-12-22 07:27 - 2013-12-22 07:27 - 00049669 ____C C:\WINDOWS\SysWOW64\CCCInstall_201312220727326803.log
2013-12-22 07:27 - 2013-12-22 07:27 - 00000000 ___DC C:\Program Files (x86)\Advanced Micro Devices, Inc
2013-12-22 07:26 - 2013-12-22 07:26 - 00060544 ____C C:\WINDOWS\SysWOW64\CCCInstall_201312220726115465.log
2013-12-22 07:26 - 2013-12-18 00:18 - 00000000 ___DC C:\Program Files (x86)\ATI Technologies
2013-12-22 07:26 - 2013-12-18 00:17 - 00000000 ___DC C:\Program Files\ATI Technologies
2013-12-22 07:25 - 2014-01-05 14:25 - 00000000 ___DC C:\Users\DefaultAppPool\AppData\Roaming\ATI
2013-12-22 07:25 - 2014-01-05 14:25 - 00000000 ___DC C:\Users\DefaultAppPool\AppData\Local\ATI
2013-12-22 07:25 - 2013-12-24 01:08 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\ATI
2013-12-22 07:25 - 2013-12-24 01:08 - 00000000 ____D C:\Users\Administrator\AppData\Local\ATI
2013-12-22 07:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\Default\AppData\Roaming\ATI
2013-12-22 07:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\Default\AppData\Local\ATI
2013-12-22 07:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\Default User\AppData\Roaming\ATI
2013-12-22 07:25 - 2013-12-22 07:25 - 00000000 ___DC C:\Users\Default User\AppData\Local\ATI
2013-12-22 07:25 - 2013-12-18 00:18 - 00000000 ___DC C:\ProgramData\Package Cache
2013-12-22 07:24 - 2013-12-17 23:57 - 00000000 ___DC C:\Program Files\AMD
2013-12-21 12:10 - 2013-12-21 12:10 - 00000000 ___DC C:\Users\Ronny\AppData\Roaming\Macromedia
2013-12-20 19:15 - 2013-12-18 21:56 - 00000000 ___DC C:\Program Files (x86)\Steam
2013-12-20 19:08 - 2013-12-20 18:40 - 00000000 ___DC C:\Users\Ronny\AppData\Local\Darksiders2
2013-12-20 18:40 - 2013-12-20 18:40 - 00000000 __HDC C:\WINDOWS\msdownld.tmp
2013-12-20 18:40 - 2013-12-20 18:40 - 00000000 ___DC C:\WINDOWS\SysWOW64\directx
2013-12-20 18:40 - 2013-12-20 18:40 - 00000000 ___DC C:\Users\Ronny\Documents\My Games
2013-12-20 10:30 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-20 09:19 - 2013-12-19 23:37 - 00000000 ___DC C:\Users\Ronny\AppData\Local\Apple Computer
Some content of TEMP:
====================
C:\Users\Ronny\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Ronny\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Ronny\AppData\Local\Temp\LMkRstPt.exe
C:\Users\Ronny\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Ronny\AppData\Local\Temp\SDShelEx-x64.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-17 02:30
==================== End Of Log ============================
--- --- --- FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-01-2014 03
Ran by Ronny at 2014-01-19 10:19:02
Running from C:\Users\Ronny\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: AVG Internet Security 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2014 (Enabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
==================== Installed Programs ======================
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.6.147 - Adobe Systems, Inc.)
Advanced Driver Updater (x32 Version: 2.1.1086.15131 - Systweak Inc)
Alps Pointing-device for VAIO (Version: - ALPS ELECTRIC CO., LTD.)
AMD Accelerated Video Transcoding (Version: 13.15.100.30830 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio 2013 v.11.0.6 (x32 Version: 11.0.6 - Ashampoo GmbH & Co. KG)
Atheros Driver Installation Program (x32 Version: 10.0 - Atheros)
AVG 2014 (Version: 14.0.3681 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4259 - AVG Technologies) Hidden
AVG 2014 (Version: 2014.0.4259 - AVG Technologies)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
CABAL Online Europe (Europe) (x32 Version: - )
CABAL Online Patch 652 (x32 Version: - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 4.09 - Piriform)
Darksiders II (x32 Version: - Vigil Games)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (Version: - Microsoft)
DivX-Setup (x32 Version: 2.6.1.90 - DivX, LLC)
DmC Devil May Cry (x32 Version: - Ninja Theory)
Drakonia Black (x32 Version: - )
Dropbox (HKCU Version: 2.4.10 - Dropbox, Inc.)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Freemake Video Converter Version 4.1.2 (x32 Version: 4.1.2 - Ellora Assets Corporation)
Google Chrome (x32 Version: 33.0.1750.29 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
HP Officejet 6600 - Grundlegende Software für das Gerät (Version: 28.0.1315.0 - Hewlett-Packard Co.)
iCloud (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Control Center (x32 Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 6.2.50.1050 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (x32 Version: 01.02.00.1002 - Intel Corporation)
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
KMSpico v9.1.0.20131125 (Beta) (Version: 9.1.0.20131125 - )
Logitech SetPoint 6.61 (Version: 6.61.15 - Logitech)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Access MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Groove MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Word MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Rappelz (x32 Version: Rappelz - WEBZEN Dublin Ltd.)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
RICOH Media Driver v2.25.17.01 (x32 Version: 2.25.17.01 - RICOH)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Steam (x32 Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab for Intel (x32 Version: 4.5.15.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (Version: 9.9.2 - )
TeamViewer 9 (x32 Version: 9.0.24951 - TeamViewer)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
Unlocker 1.9.2 (Version: 1.9.2 - Cedrick Collomb)
Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Access 2013 (KB2827233) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft InfoPath 2013 (KB2837648) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2826004) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827239) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837626) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837637) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837638) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2850066) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2850061) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2767850) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Project 2013 (KB2727085) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Publisher 2013 (KB2837635) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft SkyDrive Pro (KB2817495) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft SkyDrive Pro (KB2837652) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Visio 2013 (KB2817306) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.1 (Version: 2.1.1 - VideoLAN)
WinRAR 5.01 (64-Bit) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
17-01-2014 22:24:56 Windows 8.1
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ___AC C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {02B0E311-500F-40E9-9902-7AA5F455B732} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-15] (Microsoft Corporation)
Task: {0390A2C7-1EAB-46E1-A4FF-0CABBAAB06EC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {44A0AF91-08AC-4F06-9ED7-7044E04D84C0} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77147FD9-2897-4E03-AA7C-DF080C36F5F9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-18] (Google Inc.)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7FB15DBE-C880-4DF3-A2D9-D17DC9CB9527} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-18] (Google Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8C8C4EA5-01AC-47A3-BB92-29C7670C5BAB} - System32\Tasks\AdvancedDriverUpdater_UPDATES => C:\Program Files (x86)\Advanced Driver Updater\adu.exe [2013-03-08] (Systweak Inc)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9DC5D1E4-45CB-4FDA-A50D-770F0BD4B813} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {AE5854DF-C03D-4005-ACEA-2B77338AFC54} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {B989EFE1-58C8-401F-A10F-0BE9305E3BD6} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2013-12-18] (TuneUp Software)
Task: {CEE9FFB0-250D-4B9C-8F3C-3403B6883DC9} - System32\Tasks\Microsoft Office 15 Sync Maintenance for SONY-VAIO-Ronny Sony-Vaio => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2013-09-10] (Microsoft Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D278A0DD-AA0F-4FBD-8E6E-106262F5539D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DD8FC44F-0D80-4D5F-A855-EF4BC3714E69} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FEC80BBE-BEE2-48E6-9865-D45434822A76} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-18] (Adobe Systems Incorporated)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AdvancedDriverUpdater_UPDATES.job => C:\Program Files (x86)\Advanced Driver Updater\adu.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Ronny\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Could not start eventlog service, could not read events.
Der angeforderte Dienst wurde bereits gestartet.
Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.
==================== Memory info ===========================
Percentage of memory in use: 41%
Total physical RAM: 3950.09 MB
Available physical RAM: 2321.51 MB
Total Pagefile: 4654.09 MB
Available Pagefile: 2875.75 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: (Windows 8.1) (Fixed) (Total:465.42 GB) (Free:414.57 GB) NTFS
Drive d: (READYBOOST) (Removable) (Total:14.83 GB) (Free:10.83 GB) FAT32
Drive f: (READYBOOST) (Removable) (Total:15.43 GB) (Free:11.43 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 4E0AB827)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 15 GB) (Disk ID: 0DFF7265)
No partition Table on disk 1.
========================================================
Disk: 2 (Size: 15 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=15 GB) - (Type=0C)
==================== End Of Log ============================
ich hoffe da ist auch nix schlimmes dabei ^-^ |
|
19.01.2014, 14:16
| #6 |
| /// TB-Ausbilder | Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt Nein, nix Schlimmes dabei.
__________________ --> Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt |
|
19.01.2014, 18:30
| #7 |
| | Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt Sehr schön danke dir/euch ^.^ |
|
| Themen zu Hallo User von Trojaner-Board Leider bekomme ich mit Hijackthis nicht die schädlichen Prozesse gekillt |
| adobe, adobe flash player, avg, avg 2014, bho, browser, defender, explorer, firewall, flash player, google, helper, hijack, hijackthis, internet, internet explorer, log, microsoft, netzwerk, neu, officejet, problem, prozesse, security, software, windows, wmp |
Linear-Darstellung
