| |
| |||||||
Log-Analyse und Auswertung: Windows 8.1: Updates werden nicht installiertWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
23.01.2014, 17:05
| #1 |
 |  Windows 8.1: Updates werden nicht installiert Hallo liebe Helfer, unter Windows 8.1 wie auch vorher unter Windows 8.0 werden Windows Updates nicht installiert. Einmal gestartet blockiert der Updateprozess im Hintergrund weitere Updates. Nach Herunterfahren des Rechners erscheint die gewohnte Meldung "Schalten Sie den PC nicht aus, installiert wird Update 1 von xy", wobei "xy" 12, 15, 21 oder 40" sein kann. Danach passiert nichts mehr, der PC kann nur über den Ein/Aus Schalter "heruntergefahren" werden. Ich freue mich auf eure Hilfe! Hier die Logfiles: 1. Defogger Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 15:58 on 23/01/2014 (Robert)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-01-2014
Ran by Robert (administrator) on VAIOROBERT on 23-01-2014 16:00:38
Running from C:\Users\Robert\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
() C:\Windows\System32\PnkBstrA.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
() C:\Users\Robert\Downloads\Defogger.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] - C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [765056 2012-10-09] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-10-09] (Atheros Communications)
HKLM\...\Run: [ProfilerU] - C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2930488 2012-09-27] (Synaptics Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [152896 2012-06-25] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [RoccatKoneXTD] - C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2013-10-25] (ROCCAT GmbH)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3551576 2013-11-23] (Electronic Arts)
HKCU\...\Run: [Raptr] - C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-01-08] (Raptr, Inc)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
SearchScopes: HKCU - DefaultScope {4B92F0B3-9AD5-4021-B7B7-ADF96DF219A8} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
SearchScopes: HKCU - {46B483F0-BCC1-452B-81BC-A2A4570796BB} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q312&_nkw={searchTerms}
SearchScopes: HKCU - {4B92F0B3-9AD5-4021-B7B7-ADF96DF219A8} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Movie2kDownloader - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\profiles\extensions\movie2kdownloader@movie2kdownloader.com.xpi [2012-12-13]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2013-11-01]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
Chrome:
=======
CHR HomePage:
CHR Extension: (Google Docs) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-29]
CHR Extension: (Google Drive) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-12-26]
CHR Extension: (YouTube) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-12-26]
CHR Extension: (Google Search) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-12-26]
CHR Extension: (AdBlock) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-10-29]
CHR Extension: (Norton Identity Protection) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2012-12-26]
CHR Extension: (Google Wallet) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR Extension: (Gmail) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-12-26]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\Exts\Chrome.crx [2013-12-10]
==================== Services (Whitelisted) =================
U2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [219776 2012-10-09] (Qualcomm Atheros Commnucations)
U2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [243728 2012-06-29] (CyberLink)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
U2 N360; C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
U3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [623784 2012-08-18] (Sony Corporation)
U2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation)
U2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2014-01-19] ()
U2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2013-12-25] ()
U2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
U3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-08-08] (Sony Corporation)
U3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
U2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-10-09] (Atheros)
==================== Drivers (Whitelisted) ====================
U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
U3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-08-20] (Advanced Micro Devices)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
U1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140121.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
U1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
U1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
U1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-21] (Symantec Corporation)
U3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-21] (Symantec Corporation)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
U1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140122.001\IDSvia64.sys [521944 2014-01-21] (Symantec Corporation)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-18] (Microsoft Corporation)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140122.009\ENG64.SYS [126040 2013-12-24] (Symantec Corporation)
U3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140122.009\EX64.SYS [2099288 2013-12-24] (Symantec Corporation)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U3 SaiK1713; C:\Windows\system32\DRIVERS\SaiK1713.sys [180544 2012-09-20] (Saitek)
U3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
U3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
U3 SaiU1713; C:\Windows\System32\drivers\SaiU1713.sys [47168 2012-09-20] (Saitek)
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-18] (Microsoft Corporation)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44344 2012-09-27] (Synaptics Incorporated)
U3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U1 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
U1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-09-10] (Symantec Corporation)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
U0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-09-10] (Symantec Corporation)
U0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
U0 SymELAM; C:\Windows\System32\drivers\N360x64\1501000.012\SymELAM.sys [23568 2013-09-10] (Symantec Corporation)
U3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-11-01] (Symantec Corporation)
U1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-09-27] (Symantec Corporation)
U1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
U3 TVICHW32; C:\Windows\system32\DRIVERS\TVICHW32.SYS [21200 2013-01-29] (EnTech Taiwan)
U3 TVICHW32; C:\Windows\SysWOW64\DRIVERS\TVICHW32.SYS [29536 2013-01-29] (EnTech Taiwan)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-23 16:00 - 2014-01-23 16:01 - 00020497 _____ C:\Users\Robert\Downloads\FRST.txt
2014-01-23 16:00 - 2014-01-23 16:00 - 02077184 _____ (Farbar) C:\Users\Robert\Downloads\FRST64.exe
2014-01-23 16:00 - 2014-01-23 16:00 - 00000000 ____D C:\FRST
2014-01-23 15:58 - 2014-01-23 15:58 - 00000474 _____ C:\Users\Robert\Downloads\defogger_disable.log
2014-01-23 15:58 - 2014-01-23 15:58 - 00000000 _____ C:\Users\Robert\defogger_reenable
2014-01-23 15:57 - 2014-01-23 15:57 - 00050477 _____ C:\Users\Robert\Downloads\Defogger.exe
2014-01-19 13:53 - 2014-01-19 13:53 - 00000000 ____D C:\ProgramData\ROCCAT
2014-01-19 04:23 - 2014-01-19 04:23 - 25305708 _____ C:\Users\Robert\Desktop\ROCCAT_KoneXTD_DRV1.17_FW1.17.zip
2014-01-19 04:23 - 2014-01-19 04:23 - 00000000 ____D C:\Users\Robert\Desktop\ROCCAT_KoneXTD_DRV1.17_FW1.17
2014-01-19 04:23 - 2014-01-19 04:23 - 00000000 ____D C:\Program Files (x86)\ROCCAT
2014-01-19 04:22 - 2014-01-19 04:23 - 25305708 _____ C:\Users\Robert\Downloads\ROCCAT_KoneXTD_DRV1.17_FW1.17.zip
2014-01-19 02:00 - 2014-01-19 02:00 - 00076888 _____ C:\WINDOWS\system32\PnkBstrA.exe
2014-01-19 01:45 - 2014-01-19 01:45 - 00714207 _____ C:\Users\Robert\Downloads\pbsetup.zip
2014-01-19 01:36 - 2014-01-22 23:55 - 00003942 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ED67FEEB-FA94-454D-816E-9333E988D269}
2014-01-19 01:27 - 2014-01-19 01:27 - 00003124 _____ C:\WINDOWS\System32\Tasks\{5FC17AC1-7BA0-4138-879B-36CF1CE061E7}
2014-01-18 22:00 - 2014-01-18 22:00 - 00012445 _____ C:\Users\Robert\Desktop\pbgame.htm
2014-01-18 21:58 - 2014-01-18 21:58 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-01-18 21:56 - 2014-01-19 01:39 - 02211840 _____ C:\Users\Robert\Downloads\pb35setup.exe
2014-01-18 01:29 - 2014-01-18 01:29 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-18 01:12 - 2014-01-18 01:12 - 00001795 _____ C:\Users\Public\Desktop\iTunes.lnk
2014-01-18 01:11 - 2014-01-18 01:12 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-18 01:11 - 2014-01-18 01:12 - 00000000 ____D C:\Program Files\iTunes
2014-01-18 01:11 - 2014-01-18 01:12 - 00000000 ____D C:\Program Files (x86)\iTunes
2014-01-18 01:11 - 2014-01-18 01:11 - 00000000 ____D C:\Program Files\iPod
2014-01-18 01:06 - 2014-01-23 15:33 - 00000000 ___RD C:\Users\Robert\SkyDrive
2014-01-18 01:03 - 2014-01-18 01:03 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360
2014-01-18 00:58 - 2014-01-18 00:58 - 00001454 _____ C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-18 00:57 - 2014-01-18 00:57 - 00000020 ___SH C:\Users\Robert\ntuser.ini
2014-01-18 00:44 - 2014-01-23 15:51 - 01696024 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-18 00:43 - 2014-01-18 00:43 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-18 00:27 - 2014-01-18 00:27 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2014-01-18 00:27 - 2014-01-18 00:27 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2014-01-18 00:23 - 2014-01-18 00:23 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-18 00:21 - 2014-01-23 15:58 - 00000000 ____D C:\Users\Robert
2014-01-18 00:21 - 2014-01-18 00:43 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2014-01-18 00:21 - 2014-01-18 00:43 - 00024768 _____ C:\WINDOWS\diagerr.xml
2014-01-18 00:21 - 2014-01-18 00:23 - 00000000 ___RD C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Vorlagen
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Startmenü
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Netzwerkumgebung
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Lokale Einstellungen
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Eigene Dateien
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Druckumgebung
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Documents\Eigene Musik
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Documents\Eigene Bilder
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\AppData\Local\Verlauf
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\AppData\Local\Anwendungsdaten
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Anwendungsdaten
2014-01-18 00:21 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-18 00:21 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-18 00:21 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-18 00:15 - 2014-01-18 00:15 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-01-18 00:15 - 2014-01-18 00:15 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-01-18 00:15 - 2014-01-18 00:15 - 00000000 ____D C:\Program Files\AMD
2014-01-18 00:15 - 2014-01-18 00:15 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2014-01-18 00:14 - 2014-01-18 00:14 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-01-18 00:14 - 2014-01-18 00:14 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-18 00:14 - 2014-01-18 00:14 - 00000000 ____D C:\Program Files\Synaptics
2014-01-18 00:14 - 2014-01-18 00:14 - 00000000 ____D C:\Program Files\Realtek
2014-01-18 00:12 - 2014-01-18 00:12 - 00000000 __SHD C:\Recovery
2014-01-18 00:11 - 2014-01-18 11:57 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-18 00:10 - 2014-01-19 04:10 - 00000000 ____D C:\Windows.old
2014-01-18 00:10 - 2014-01-18 00:10 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-18 00:10 - 2014-01-18 00:10 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-01-18 00:09 - 2014-01-18 00:09 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-01-18 00:09 - 2014-01-18 00:09 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-01-18 00:09 - 2014-01-18 00:09 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-01-18 00:09 - 2014-01-18 00:09 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-18 00:08 - 2014-01-18 00:08 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-18 00:08 - 2014-01-18 00:08 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-18 00:08 - 2014-01-18 00:08 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-18 00:06 - 2014-01-18 00:06 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\Program Files\MSBuild
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-18 00:03 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-01-18 00:03 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-18 00:03 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-01-18 00:03 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-01-18 00:03 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-18 00:03 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-01-17 23:41 - 2014-01-18 00:43 - 00006629 _____ C:\WINDOWS\comsetup.log
2014-01-17 22:57 - 2014-01-17 22:57 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 22:57 - 2014-01-17 22:56 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-01-17 22:56 - 2014-01-17 22:56 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-01-17 22:56 - 2014-01-17 22:56 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-01-17 22:56 - 2014-01-17 22:56 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 22:56 - 2014-01-17 22:56 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 21:25 - 2014-01-17 21:26 - 00001430 _____ C:\DelFix.txt
2014-01-17 21:04 - 2014-01-17 21:04 - 00000396 _____ C:\Users\Robert\Desktop\eset.txt
2014-01-17 17:41 - 2014-01-17 21:25 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-16 18:56 - 2014-01-17 22:58 - 00000000 ____D C:\Users\Robert\AppData\Local\NPE
2014-01-15 19:48 - 2014-01-17 00:06 - 00000000 ____D C:\Users\Robert\Documents\Praktikum
2014-01-10 17:06 - 2014-01-10 17:06 - 00028569 _____ C:\Users\Robert\Desktop\Microsoft PowerPoint-Präsentation (neu).pptx
2014-01-07 20:20 - 2014-01-07 22:33 - 01086680 _____ C:\Users\Robert\Documents\Ultimate Frisbee.pptx
2013-12-27 17:33 - 2013-12-27 17:33 - 00000000 ____D C:\Users\Robert\AppData\Local\SmartTechnology
2013-12-27 16:24 - 2013-12-27 16:24 - 00011824 _____ C:\Users\Robert\Desktop\bf4 tastenbelegung.pr0
2013-12-26 12:19 - 2013-12-26 12:19 - 00218496 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2013-12-26 12:19 - 2013-12-26 12:19 - 00000000 ____D C:\Users\Robert\Documents\EA Games
2013-12-26 12:18 - 2013-12-06 18:03 - 02601752 _____ C:\WINDOWS\SysWOW64\pbsvc_moh.exe
2013-12-26 01:23 - 2013-12-26 01:23 - 00000000 ____D C:\Users\Robert\AppData\Roaming\MotioninJoy
2013-12-26 01:22 - 2013-12-26 01:22 - 00000923 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-12-26 01:22 - 2013-12-26 01:22 - 00000000 ____D C:\Program Files\MotioninJoy
2013-12-26 01:22 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\WINDOWS\system32\MijFrc.dll
2013-12-25 21:02 - 2013-12-25 20:59 - 181992655 _____ C:\Users\Robert\Desktop\HSB4b-full.exe
2013-12-25 17:21 - 2013-12-25 17:30 - 00015376 _____ C:\Users\Robert\Desktop\bf4.pr0
2013-12-25 17:13 - 2013-12-25 17:13 - 00000000 ____D C:\ProgramData\SmartTechnology
2013-12-25 17:13 - 2013-12-25 17:13 - 00000000 ____D C:\Program Files\SmartTechnology
2013-12-25 16:40 - 2014-01-19 14:43 - 00214392 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-12-25 16:40 - 2014-01-19 14:43 - 00214392 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-12-25 16:40 - 2013-12-25 16:40 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2013-12-25 16:40 - 2013-11-25 12:10 - 03894632 _____ C:\WINDOWS\SysWOW64\pbsvc.exe
2013-12-25 16:28 - 2013-12-25 16:32 - 00000000 ____D C:\Users\Robert\Documents\Battlefield 4
2013-12-25 16:27 - 2013-12-26 12:19 - 00000000 ____D C:\Users\Robert\AppData\Local\PunkBuster
2013-12-25 16:24 - 2013-12-25 16:24 - 00000000 ____D C:\Users\Robert\AppData\Local\ESN
2013-12-25 16:15 - 2014-01-17 00:38 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-12-25 16:15 - 2013-12-25 16:15 - 00001158 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-12-25 16:15 - 2013-12-25 16:15 - 00001134 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-12-25 15:34 - 2014-01-18 00:30 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2013-12-25 15:34 - 2013-12-25 15:34 - 00000000 ____D C:\Users\Robert\AppData\Roaming\library_dir
2013-12-25 15:33 - 2014-01-23 15:35 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Raptr
2013-12-25 15:33 - 2014-01-20 09:22 - 00000000 ____D C:\Program Files (x86)\Raptr
2013-12-25 15:28 - 2013-12-25 15:28 - 00000000 ____D C:\Program Files\ATI Technologies
2013-12-25 15:27 - 2014-01-18 00:15 - 00000000 ____D C:\AMD
2013-12-25 15:23 - 2013-12-25 15:27 - 251842824 _____ (AMD Inc.) C:\Users\Robert\Desktop\amd_catalyst_13.11_mobility_betav9.5.exe
2013-12-24 19:48 - 2013-12-25 16:15 - 00000000 ____D C:\ProgramData\Package Cache
2013-12-24 18:48 - 2013-12-24 18:48 - 00003188 _____ C:\WINDOWS\System32\Tasks\{7EC0C088-9EBF-467D-A4E7-1DCB20509A21}
2013-12-24 18:48 - 2013-12-24 18:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiK1713_01009.Wdf
==================== One Month Modified Files and Folders =======
2014-01-23 16:01 - 2014-01-23 16:00 - 00020497 _____ C:\Users\Robert\Downloads\FRST.txt
2014-01-23 16:00 - 2014-01-23 16:00 - 02077184 _____ (Farbar) C:\Users\Robert\Downloads\FRST64.exe
2014-01-23 16:00 - 2014-01-23 16:00 - 00000000 ____D C:\FRST
2014-01-23 16:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-23 15:58 - 2014-01-23 15:58 - 00000474 _____ C:\Users\Robert\Downloads\defogger_disable.log
2014-01-23 15:58 - 2014-01-23 15:58 - 00000000 _____ C:\Users\Robert\defogger_reenable
2014-01-23 15:58 - 2014-01-18 00:21 - 00000000 ____D C:\Users\Robert
2014-01-23 15:57 - 2014-01-23 15:57 - 00050477 _____ C:\Users\Robert\Downloads\Defogger.exe
2014-01-23 15:52 - 2012-12-24 19:47 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4249284511-1414036579-3410288460-1001
2014-01-23 15:51 - 2014-01-18 00:44 - 01696024 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-23 15:35 - 2013-12-25 15:33 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Raptr
2014-01-23 15:34 - 2012-12-26 15:39 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-23 15:33 - 2014-01-18 01:06 - 00000000 ___RD C:\Users\Robert\SkyDrive
2014-01-22 23:55 - 2014-01-19 01:36 - 00003942 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ED67FEEB-FA94-454D-816E-9333E988D269}
2014-01-22 23:26 - 2012-12-26 15:39 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-21 19:10 - 2013-11-16 17:24 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-21 19:05 - 2013-11-14 08:27 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-21 19:05 - 2013-11-14 08:11 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-21 19:05 - 2013-11-14 08:11 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-21 18:12 - 2013-08-22 15:46 - 00288921 _____ C:\WINDOWS\setupact.log
2014-01-20 09:22 - 2013-12-25 15:33 - 00000000 ____D C:\Program Files (x86)\Raptr
2014-01-19 14:54 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-19 14:43 - 2013-12-25 16:40 - 00214392 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-01-19 14:43 - 2013-12-25 16:40 - 00214392 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2014-01-19 14:35 - 2013-09-30 19:08 - 00000000 ____D C:\Program Files (x86)\Origin
2014-01-19 13:53 - 2014-01-19 13:53 - 00000000 ____D C:\ProgramData\ROCCAT
2014-01-19 04:23 - 2014-01-19 04:23 - 25305708 _____ C:\Users\Robert\Desktop\ROCCAT_KoneXTD_DRV1.17_FW1.17.zip
2014-01-19 04:23 - 2014-01-19 04:23 - 00000000 ____D C:\Users\Robert\Desktop\ROCCAT_KoneXTD_DRV1.17_FW1.17
2014-01-19 04:23 - 2014-01-19 04:23 - 00000000 ____D C:\Program Files (x86)\ROCCAT
2014-01-19 04:23 - 2014-01-19 04:22 - 25305708 _____ C:\Users\Robert\Downloads\ROCCAT_KoneXTD_DRV1.17_FW1.17.zip
2014-01-19 04:23 - 2012-09-17 20:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-19 04:10 - 2014-01-18 00:10 - 00000000 ____D C:\Windows.old
2014-01-19 02:00 - 2014-01-19 02:00 - 00076888 _____ C:\WINDOWS\system32\PnkBstrA.exe
2014-01-19 01:45 - 2014-01-19 01:45 - 00714207 _____ C:\Users\Robert\Downloads\pbsetup.zip
2014-01-19 01:39 - 2014-01-18 21:56 - 02211840 _____ C:\Users\Robert\Downloads\pb35setup.exe
2014-01-19 01:27 - 2014-01-19 01:27 - 00003124 _____ C:\WINDOWS\System32\Tasks\{5FC17AC1-7BA0-4138-879B-36CF1CE061E7}
2014-01-18 22:00 - 2014-01-18 22:00 - 00012445 _____ C:\Users\Robert\Desktop\pbgame.htm
2014-01-18 21:58 - 2014-01-18 21:58 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-01-18 20:38 - 2013-11-13 23:18 - 00016652 _____ C:\WINDOWS\PFRO.log
2014-01-18 11:57 - 2014-01-18 00:11 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-18 11:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-18 11:53 - 2012-12-24 19:39 - 00000000 ____D C:\Users\Robert\AppData\Local\Packages
2014-01-18 05:00 - 2013-01-29 00:36 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2014-01-18 02:15 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-18 01:56 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2014-01-18 01:29 - 2014-01-18 01:29 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-18 01:28 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2014-01-18 01:15 - 2013-09-16 18:04 - 00000000 ____D C:\Users\Robert\AppData\Roaming\vlc
2014-01-18 01:12 - 2014-01-18 01:12 - 00001795 _____ C:\Users\Public\Desktop\iTunes.lnk
2014-01-18 01:12 - 2014-01-18 01:11 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-18 01:12 - 2014-01-18 01:11 - 00000000 ____D C:\Program Files\iTunes
2014-01-18 01:12 - 2014-01-18 01:11 - 00000000 ____D C:\Program Files (x86)\iTunes
2014-01-18 01:11 - 2014-01-18 01:11 - 00000000 ____D C:\Program Files\iPod
2014-01-18 01:06 - 2012-12-25 00:06 - 00087040 ___SH C:\Users\Robert\Desktop\Thumbs.db
2014-01-18 01:03 - 2014-01-18 01:03 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360
2014-01-18 00:59 - 2012-12-24 19:41 - 00000000 ___RD C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-18 00:59 - 2012-12-24 19:41 - 00000000 ___RD C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-18 00:58 - 2014-01-18 00:58 - 00001454 _____ C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-18 00:58 - 2012-12-25 00:21 - 00003206 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2014-01-18 00:57 - 2014-01-18 00:57 - 00000020 ___SH C:\Users\Robert\ntuser.ini
2014-01-18 00:46 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-18 00:44 - 2014-01-18 00:44 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-18 00:44 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2014-01-18 00:44 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2014-01-18 00:43 - 2014-01-18 00:43 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-18 00:43 - 2014-01-18 00:21 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2014-01-18 00:43 - 2014-01-18 00:21 - 00024768 _____ C:\WINDOWS\diagerr.xml
2014-01-18 00:43 - 2014-01-17 23:41 - 00006629 _____ C:\WINDOWS\comsetup.log
2014-01-18 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2014-01-18 00:37 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2014-01-18 00:37 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2014-01-18 00:33 - 2013-08-22 15:44 - 00411328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-18 00:30 - 2013-12-25 15:34 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-01-18 00:30 - 2013-12-05 17:05 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-18 00:30 - 2013-11-14 08:13 - 00000000 ____D C:\WINDOWS\ShellNew
2014-01-18 00:30 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-18 00:30 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-18 00:30 - 2013-06-02 17:11 - 00000000 ____D C:\WINDOWS\de
2014-01-18 00:30 - 2012-12-25 00:06 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2014-01-18 00:30 - 2012-12-24 19:40 - 00000000 ____D C:\WINDOWS\SysWOW64\VAIO Startup Setting Tool
2014-01-18 00:27 - 2014-01-18 00:27 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2014-01-18 00:27 - 2014-01-18 00:27 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2014-01-18 00:27 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-18 00:27 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-18 00:27 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-18 00:27 - 2013-08-22 16:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2014-01-18 00:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-18 00:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-18 00:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2014-01-18 00:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2014-01-18 00:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2014-01-18 00:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-18 00:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2014-01-18 00:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2014-01-18 00:27 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2014-01-18 00:27 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-18 00:27 - 2012-09-17 21:01 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2014-01-18 00:27 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2014-01-18 00:26 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2014-01-18 00:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Resources
2014-01-18 00:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2014-01-18 00:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2014-01-18 00:26 - 2012-09-17 22:41 - 00000000 ____D C:\WINDOWS\system32\%AppData%
2014-01-18 00:26 - 2012-08-03 03:25 - 00000000 ____D C:\ProgramData\PRICache
2014-01-18 00:25 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2014-01-18 00:25 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2014-01-18 00:25 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-18 00:23 - 2014-01-18 00:23 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-18 00:23 - 2014-01-18 00:21 - 00000000 ___RD C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-18 00:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Vorlagen
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Startmenü
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Netzwerkumgebung
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Lokale Einstellungen
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Eigene Dateien
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Druckumgebung
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Documents\Eigene Musik
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Documents\Eigene Bilder
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\AppData\Local\Verlauf
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\AppData\Local\Anwendungsdaten
2014-01-18 00:21 - 2014-01-18 00:21 - 00000000 _SHDL C:\Users\Robert\Anwendungsdaten
2014-01-18 00:15 - 2014-01-18 00:15 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-01-18 00:15 - 2014-01-18 00:15 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-01-18 00:15 - 2014-01-18 00:15 - 00000000 ____D C:\Program Files\AMD
2014-01-18 00:15 - 2014-01-18 00:15 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2014-01-18 00:15 - 2013-12-25 15:27 - 00000000 ____D C:\AMD
2014-01-18 00:15 - 2013-08-22 15:46 - 00000084 _____ C:\WINDOWS\setuperr.log
2014-01-18 00:14 - 2014-01-18 00:14 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-01-18 00:14 - 2014-01-18 00:14 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-18 00:14 - 2014-01-18 00:14 - 00000000 ____D C:\Program Files\Synaptics
2014-01-18 00:14 - 2014-01-18 00:14 - 00000000 ____D C:\Program Files\Realtek
2014-01-18 00:12 - 2014-01-18 00:12 - 00000000 __SHD C:\Recovery
2014-01-18 00:10 - 2014-01-18 00:10 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-18 00:10 - 2014-01-18 00:10 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-18 00:10 - 2014-01-18 00:10 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-18 00:10 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2014-01-18 00:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-18 00:09 - 2014-01-18 00:09 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-01-18 00:09 - 2014-01-18 00:09 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-01-18 00:09 - 2014-01-18 00:09 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-01-18 00:09 - 2014-01-18 00:09 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-01-18 00:09 - 2014-01-18 00:09 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-18 00:09 - 2014-01-18 00:09 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-18 00:08 - 2014-01-18 00:08 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-18 00:08 - 2014-01-18 00:08 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-18 00:08 - 2014-01-18 00:08 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-18 00:08 - 2014-01-18 00:08 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-18 00:08 - 2014-01-18 00:08 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-18 00:08 - 2014-01-18 00:08 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-18 00:08 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2014-01-18 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2014-01-18 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2014-01-18 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2014-01-18 00:06 - 2014-01-18 00:06 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\Program Files\MSBuild
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-18 00:04 - 2014-01-18 00:04 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-17 23:48 - 2012-09-17 21:03 - 01737961 _____ C:\WINDOWS\WindowsUpdate (1).log
2014-01-17 23:12 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2014-01-17 22:58 - 2014-01-16 18:56 - 00000000 ____D C:\Users\Robert\AppData\Local\NPE
2014-01-17 22:57 - 2014-01-17 22:57 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 22:56 - 2014-01-17 22:57 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-01-17 22:56 - 2014-01-17 22:56 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-01-17 22:56 - 2014-01-17 22:56 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-01-17 22:56 - 2014-01-17 22:56 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 22:56 - 2014-01-17 22:56 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 21:26 - 2014-01-17 21:25 - 00001430 _____ C:\DelFix.txt
2014-01-17 21:25 - 2014-01-17 17:41 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-17 21:04 - 2014-01-17 21:04 - 00000396 _____ C:\Users\Robert\Desktop\eset.txt
2014-01-17 16:06 - 2012-12-24 22:54 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-17 00:38 - 2013-12-25 16:15 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2014-01-17 00:12 - 2012-12-24 19:45 - 00000000 ____D C:\Users\Robert\AppData\Local\CrashDumps
2014-01-17 00:06 - 2014-01-15 19:48 - 00000000 ____D C:\Users\Robert\Documents\Praktikum
2014-01-16 19:41 - 2013-08-17 02:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-16 19:40 - 2012-12-25 17:33 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-16 18:56 - 2012-12-25 00:06 - 00000000 ____D C:\ProgramData\Norton
2014-01-10 21:23 - 2013-12-05 19:33 - 00000000 ____D C:\Users\Robert\AppData\Roaming\TS3Client
2014-01-10 17:06 - 2014-01-10 17:06 - 00028569 _____ C:\Users\Robert\Desktop\Microsoft PowerPoint-Präsentation (neu).pptx
2014-01-09 03:05 - 2012-09-17 21:19 - 00407488 _____ C:\WINDOWS\DirectX.log
2014-01-07 22:33 - 2014-01-07 20:20 - 01086680 _____ C:\Users\Robert\Documents\Ultimate Frisbee.pptx
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-27 17:33 - 2013-12-27 17:33 - 00000000 ____D C:\Users\Robert\AppData\Local\SmartTechnology
2013-12-27 16:24 - 2013-12-27 16:24 - 00011824 _____ C:\Users\Robert\Desktop\bf4 tastenbelegung.pr0
2013-12-26 12:19 - 2013-12-26 12:19 - 00218496 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2013-12-26 12:19 - 2013-12-26 12:19 - 00000000 ____D C:\Users\Robert\Documents\EA Games
2013-12-26 12:19 - 2013-12-25 16:27 - 00000000 ____D C:\Users\Robert\AppData\Local\PunkBuster
2013-12-26 01:23 - 2013-12-26 01:23 - 00000000 ____D C:\Users\Robert\AppData\Roaming\MotioninJoy
2013-12-26 01:22 - 2013-12-26 01:22 - 00000923 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-12-26 01:22 - 2013-12-26 01:22 - 00000000 ____D C:\Program Files\MotioninJoy
2013-12-25 20:59 - 2013-12-25 21:02 - 181992655 _____ C:\Users\Robert\Desktop\HSB4b-full.exe
2013-12-25 17:30 - 2013-12-25 17:21 - 00015376 _____ C:\Users\Robert\Desktop\bf4.pr0
2013-12-25 17:13 - 2013-12-25 17:13 - 00000000 ____D C:\ProgramData\SmartTechnology
2013-12-25 17:13 - 2013-12-25 17:13 - 00000000 ____D C:\Program Files\SmartTechnology
2013-12-25 16:40 - 2013-12-25 16:40 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2013-12-25 16:32 - 2013-12-25 16:28 - 00000000 ____D C:\Users\Robert\Documents\Battlefield 4
2013-12-25 16:24 - 2013-12-25 16:24 - 00000000 ____D C:\Users\Robert\AppData\Local\ESN
2013-12-25 16:15 - 2013-12-25 16:15 - 00001158 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-12-25 16:15 - 2013-12-25 16:15 - 00001134 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-12-25 16:15 - 2013-12-24 19:48 - 00000000 ____D C:\ProgramData\Package Cache
2013-12-25 15:34 - 2013-12-25 15:34 - 00000000 ____D C:\Users\Robert\AppData\Roaming\library_dir
2013-12-25 15:28 - 2013-12-25 15:28 - 00000000 ____D C:\Program Files\ATI Technologies
2013-12-25 15:27 - 2013-12-25 15:23 - 251842824 _____ (AMD Inc.) C:\Users\Robert\Desktop\amd_catalyst_13.11_mobility_betav9.5.exe
2013-12-24 21:20 - 2013-09-30 19:10 - 00000000 ____D C:\Users\Robert\AppData\Local\Origin
2013-12-24 21:00 - 2013-09-30 19:10 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-12-24 18:54 - 2013-09-30 19:10 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Origin
2013-12-24 18:53 - 2013-09-30 19:08 - 00000000 ____D C:\ProgramData\Origin
2013-12-24 18:48 - 2013-12-24 18:48 - 00003188 _____ C:\WINDOWS\System32\Tasks\{7EC0C088-9EBF-467D-A4E7-1DCB20509A21}
2013-12-24 18:48 - 2013-12-24 18:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiK1713_01009.Wdf
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-18 00:12
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-01-2014
Ran by Robert at 2014-01-23 16:01:30
Running from C:\Users\Robert\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton 360 (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton 360 (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
==================== Installed Programs ======================
Adobe Reader X (10.1.8) MUI (x32 Version: 10.1.8 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Battlefield 1942™ (x32 Version: 1.6.20.0 - Electronic Arts)
Battlefield 4™ (x32 Version: 1.0.0.1 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.3.2 - EA Digital Illusions CE AB)
BIT.TRIP Presents... Runner2: Future Legend of Rhythm Alien (x32 Version: - Gaijin Games)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2012.0806.1156.19437 - Ihr Firmenname) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2012.0806.1155.19437 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2012.0806.1156.19437 - Advanced Micro Devices, Inc.) Hidden
Counter-Strike: Source (x32 Version: - Valve)
CyberLink Power2Go 8 (x32 Version: 8.0.0.1923 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.1923 - CyberLink Corp.) Hidden
CyberLink PowerDVD (x32 Version: 9.0.5601.52 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 9.0.5601.52 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32 Version: - Microsoft)
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Garry's Mod (x32 Version: - Garry)
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Heroes of Might & Magic V: Hammers of Fate (x32 Version: - )
Heroes of Might and Magic V - Tribes of the East (x32 Version: - )
Heroes of Might and Magic V (x32 Version: - )
Intel AppUp(SM) center (x32 Version: 03.05.11 - Intel)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.3.1004 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 10 (64-bit) (Version: 7.0.100 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Joe Danger 2: The Movie (x32 Version: - Hello Games)
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Left 4 Dead 2 (x32 Version: - Valve)
Magicka (x32 Version: - Arrowhead Game Studios)
Medal of Honor(TM) Multiplayer (x32 Version: - Electronic Arts)
Microsoft Age of Empires (x32 Version: - )
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 Service Pack 1 (SP1) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
MotioninJoy Gamepad tool 0.7.1001 (Version: 0.7.1001 - www.motioninjoy.com)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (x32 Version: 17.0.2 - Mozilla)
Mozilla Thunderbird 17.0.2 (x86 de) (x32 Version: 17.0.2 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Natural Selection 2 (x32 Version: - Unknown Worlds Entertainment)
Norton 360 (x32 Version: 21.1.0.18 - Symantec Corporation)
Orcs Must Die! 2 (x32 Version: - Robot Entertainment)
Origin (x32 Version: 9.3.6.4643 - Electronic Arts, Inc.)
Papo & Yo (x32 Version: - Minority Media Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
PlayMemories Home (x32 Version: 6.3.02.07270 - Sony Corporation)
PunkBuster Services (x32 Version: 0.989 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.212 - Qualcomm Atheros Communications)
Raptr (x32 Version: - )
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (x32 Version: 6.1.8400.28121 - Realtek Semiconductor Corp.)
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Reus (x32 Version: - Abbey Games)
ROCCAT Kone XTD Mouse Driver (x32 Version: - Roccat GmbH)
Sanctum 2 (x32 Version: - Coffee Stain Studios)
SCS Shortcut (x32 Version: 1.0 - Sony Creative Software Inc.) Hidden
Serious Sam 3: BFE (x32 Version: - Croteam)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Smart Technology Programming Software 7.0.27.13 (Version: 7.0.27.13 - Mad Catz)
Source SDK Base 2006 (x32 Version: - Valve)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Steam (x32 Version: - Valve Corporation)
Surgeon Simulator 2013 (x32 Version: - Bossa Studios)
Synaptics Pointing Device Driver (Version: 16.2.16.2 - Synaptics Incorporated)
TeamSpeak 3 Client (x32 Version: 3.0.13 - TeamSpeak Systems GmbH)
To the Moon (x32 Version: - Freebird Games)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760758) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (x32 Version: - Microsoft)
VAIO - Xperia Link (x32 Version: 1.0.1.10180 - Sony Corporation)
VAIO Care (Version: 8.0.0.08150 - Sony Corporation)
VAIO Control Center (x32 Version: 6.0.0.08200 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.10.0.07270 - Sony Corporation)
VAIO Easy Connect (x32 Version: 1.2.0.08150 - Sony Corporation) Hidden
VAIO Gate (x32 Version: 3.0.0.08140 - Sony Corporation)
VAIO Gate Default (x32 Version: 3.0.0.08060 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.0.0.08240 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.0.0.08240 - Sony Corporation) Hidden
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation) Hidden
VAIO Improvement (x32 Version: 2.0.0.08090 - Sony Corporation)
VAIO Media Server Settings (Version: 1.0.0.08240 - Sony Corporation)
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170 - Sony Corporation)
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170 - Sony Corporation) Hidden
VAIO Update (x32 Version: 6.3.0.08010 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (x32 Version: 1.1.0.09200 - Sony Corporation)
VAIO-Handbuch (x32 Version: 3.0.0.08100 - Sony Corporation)
VAIO-Support für Übertragungen (x32 Version: 1.8.0.08212 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VLC media player 2.0.5 (x32 Version: 2.0.5 - VideoLAN)
VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VUx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
War of the Roses (x32 Version: - Fatshark)
War of the Roses Balance Beta (x32 Version: - )
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
==================== Restore Points =========================
18-01-2014 00:28:09 Windows Update
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {04294F43-320D-44E3-989B-852EA99EFDE4} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {09C114C0-8BEF-4648-9CEF-51E2FD9BEB4A} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2012-10-19] (Sony Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {174D97CC-464C-4384-AF11-D443CBC3AA48} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {17A6508E-BD26-42B2-86FD-54F974E2FDAB} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-08-01] (Sony Corporation)
Task: {1A0530B4-5A1E-4408-8ED7-389A2E485C6F} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2351DB15-00DE-440D-AC8D-882A69D60C27} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2013-08-01] (Sony Corporation)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {309BB67D-1080-4052-AFD2-E6257BBD62F4} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {3208442A-8B9E-4963-A583-38DD9C386162} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {32445A80-2539-402E-91B7-C0016FC14CC1} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-04-03] (Sony Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {40727DB4-CAA7-4D09-A1B8-7E32C277C668} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {4353A7E4-F34E-42A8-9FAF-7AC8C58B08D6} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {4719682A-2AE1-4FE2-8F90-527670F97D33} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\WSCStub.exe [2013-10-08] (Symantec Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {51C9D4DA-F423-4325-BEB0-D0EA7F4B864C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-26] (Google Inc.)
Task: {51DFCDAC-0AB0-41F6-AD2F-42DBCDAC4FB2} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-08-01] (Sony Corporation)
Task: {676DFEF5-86C2-4D87-8469-190EF062D98D} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-04-03] (Sony Corporation)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6FADC792-511C-41BF-8E07-A49AB737A724} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {8472E934-D5A4-4106-BF39-D354821E9B41} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-26] (Google Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {89115129-C923-452F-B8E9-0A34CB06DF39} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-06-08] (CyberLink)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {95727E93-2BBC-45A0-BA2B-19BFF5F2A184} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {9EDE7C20-888A-4273-B631-6E7434D7B90D} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2012-08-09] (Sony Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {AF26EE13-F016-44D5-A270-A2C80CE42023} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {B37B02E3-63B9-4D22-85E8-F422D95DC7CC} - \UpdaterEX No Task File
Task: {BEF36DE8-87B5-4F7C-B8DA-C32D283C98FA} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2012-08-04] (Sony Corporation)
Task: {C2168DE5-0674-4D00-A37D-F8915BC8F42B} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-08-15] (Sony Corporation)
Task: {C44A7DE8-64E2-4A40-B44E-68AA4BCDE73F} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DC91C90C-2D6C-4B23-861D-40CA2A656F26} - System32\Tasks\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-07-31] (Sony Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {ECE39778-18AD-4AED-864E-68AB0E94A94B} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {FCC3FD44-58AD-4010-A0FA-5CAC6D4CD401} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-08-14] (Sony Corporation)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Loaded Modules (whitelisted) =============
2012-10-09 13:02 - 2012-10-09 13:02 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-10-09 12:57 - 2012-10-09 12:57 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2012-10-09 12:59 - 2012-10-09 12:59 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-09-17 21:00 - 2012-06-25 09:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00891392 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtNetwork4.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 02281984 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtCore4.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00015872 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00322048 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00339456 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtXml4.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00400384 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00195584 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00062464 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00443904 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00019456 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
2012-09-17 21:37 - 2012-06-25 14:47 - 00060928 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2012-06-22 22:53 - 2012-06-22 22:53 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2012-06-22 22:24 - 2012-06-22 22:24 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2012-06-22 22:39 - 2012-06-22 22:39 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2012-06-22 22:55 - 2012-06-22 22:55 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00124928 _____ () C:\Program Files (x86)\Raptr\_elementtree.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2012-02-06 21:28 - 2012-02-06 21:28 - 00031744 _____ () C:\Program Files (x86)\Raptr\Crypto.Cipher.AES.pyd
2012-02-06 21:28 - 2012-02-06 21:28 - 00010752 _____ () C:\Program Files (x86)\Raptr\Crypto.Random.OSRNG.winrandom.pyd
2012-02-06 21:28 - 2012-02-06 21:28 - 00011264 _____ () C:\Program Files (x86)\Raptr\Crypto.Util._counter.pyd
2011-05-10 20:01 - 2011-05-10 20:01 - 00030208 _____ () C:\Program Files (x86)\Raptr\simplejson._speedups.pyd
2012-06-22 22:59 - 2012-06-22 22:59 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00016384 _____ () C:\Program Files (x86)\Raptr\win32trace.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2013-11-21 01:05 - 2013-11-21 01:05 - 00256000 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2014-01-19 04:23 - 2012-06-17 11:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2012-10-27 08:53 - 2012-10-27 08:53 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 00:06 - 2010-11-23 00:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2012-09-17 21:46 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 10:34 - 2012-06-08 10:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-01-17 00:29 - 2014-01-11 11:28 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libglesv2.dll
2014-01-17 00:29 - 2014-01-11 11:28 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libegl.dll
2014-01-17 00:29 - 2014-01-11 11:29 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll
2014-01-17 00:29 - 2014-01-11 11:29 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
2014-01-17 00:29 - 2014-01-11 11:28 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Robert\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Could not start eventlog service, could not read events.
Der angeforderte Dienst wurde bereits gestartet.
Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.
==================== Memory info ===========================
Percentage of memory in use: 28%
Total physical RAM: 8139.27 MB
Available physical RAM: 5791.49 MB
Total Pagefile: 10059.27 MB
Available Pagefile: 7180.5 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:895.07 GB) (Free:703.75 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 851F6E4C)
Partition: GPT Partition Type
==================== End Of Log ============================
Code:
ATTFilter GMER 2.1.19355 - hxxp://www.gmer.net
Rootkit scan 2014-01-23 16:10:15
Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\00000032 TOSHIBA_MQ01ABD100 rev.AX0A3H 931,51GB
Running: gmer.exe; Driver: C:\Users\Robert\AppData\Local\Temp\kxtcypog.sys
---- User code sections - GMER 2.1 ----
.text C:\WINDOWS\system32\atieclxx.exe[5960] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffc98e2169a 4 bytes [E2, 98, FC, 7F]
.text C:\WINDOWS\system32\atieclxx.exe[5960] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffc98e216a2 4 bytes [E2, 98, FC, 7F]
.text C:\WINDOWS\system32\atieclxx.exe[5960] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffc98e2181a 4 bytes [E2, 98, FC, 7F]
.text C:\WINDOWS\system32\atieclxx.exe[5960] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffc98e21832 4 bytes [E2, 98, FC, 7F]
.text C:\WINDOWS\Explorer.EXE[7088] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffc98e2169a 4 bytes [E2, 98, FC, 7F]
.text C:\WINDOWS\Explorer.EXE[7088] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffc98e216a2 4 bytes [E2, 98, FC, 7F]
.text C:\WINDOWS\Explorer.EXE[7088] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffc98e2181a 4 bytes [E2, 98, FC, 7F]
.text C:\WINDOWS\Explorer.EXE[7088] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffc98e21832 4 bytes [E2, 98, FC, 7F]
.text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3384] C:\WINDOWS\SYSTEM32\WSOCK32.dll!setsockopt + 194 00007ffc8f331f6a 4 bytes [33, 8F, FC, 7F]
.text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3384] C:\WINDOWS\SYSTEM32\WSOCK32.dll!setsockopt + 218 00007ffc8f331f82 4 bytes [33, 8F, FC, 7F]
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2300] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffc98e2169a 4 bytes [E2, 98, FC, 7F]
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2300] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffc98e216a2 4 bytes [E2, 98, FC, 7F]
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2300] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffc98e2181a 4 bytes [E2, 98, FC, 7F]
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2300] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffc98e21832 4 bytes [E2, 98, FC, 7F]
.text C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[8180] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffc98e2169a 4 bytes [E2, 98, FC, 7F]
.text C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[8180] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffc98e216a2 4 bytes [E2, 98, FC, 7F]
.text C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[8180] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffc98e2181a 4 bytes [E2, 98, FC, 7F]
.text C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[8180] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffc98e21832 4 bytes [E2, 98, FC, 7F]
---- Threads - GMER 2.1 ----
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:6072] 0000000001181c94
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:4928] 0000000071d1e767
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:7680] 0000000070293189
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:7468] 000000006f5d1892
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:9172] 0000000070340eb8
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:7404] 0000000070340eb8
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:1184] 0000000070340eb8
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:4768] 000000006a1b8d99
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [7152:5508] 000000006a134b0d
Thread C:\WINDOWS\system32\csrss.exe [5856:8104] fffff9600093e4d0
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [6588:5268] 0000000000402e7b
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [6588:4276] 000000006bc81ba0
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [6588:7084] 000000006bc7dfd0
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [6588:8252] 000000006bc7dcf0
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [6588:3856] 00000000747ea4c5
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [6588:6804] 000000007499406a
Thread C:\WINDOWS\SYSTEM32\ntdll.dll [5124:7572] 0000000000402e7b
---- Processes - GMER 2.1 ----
Library C:\WINDOWS\Installer\MSIC194.tmp (*** suspicious ***) @ C:\Windows\syswow64\MsiExec.exe [6852] 00000000704b0000
Process C:\Users\Robert\AppData\Local\Temp\Temp1_gmer_2.1.19355.zip\gmer.exe (*** suspicious ***) @ C:\Users\Robert\AppData\Local\Temp\Temp1_gmer_2.1.19355.zip\gmer.exe [3988](2014-01-21 20:56:24) 0000000000400000
---- Disk sectors - GMER 2.1 ----
Disk \Device\Harddisk0\DR0 unknown MBR code
---- EOF - GMER 2.1 ----
Robert |
|
23.01.2014, 18:47
| #2 |
| /// the machine /// TB-Ausbilder    | Windows 8.1: Updates werden nicht installiert hi,
__________________Lade dir bitte Emsisoft MBR Master herunter und speichere es auf den Desktop.
__________________ |
|
24.01.2014, 09:57
| #3 |
| | Windows 8.1: Updates werden nicht installiert Moin,
__________________emsi.zip ist angehängt, hier die MBRMastr Detected Windows version: 6.2 Build 9200 Installing direct disk access driver ... Driver connection handle: 0x00000190 1 valid drive(s) found. Details for Disk 0 - TOSHIBA MQ01ABD100 Rev AX0A3H: Device name : \\.\PhysicalDrive0 Geometry (C/H/S) : 121601/255/63 Boot loader reputation : Unknown Cross view comparison : Passed Partition table integrity: Passed Boot loader hashes SHA-1 : 639AC5CDF8A5CF3245975932C6A4215450A7B98F MD5 : 5FB38429D5D77768867C76DCBDB35194 VG, Robert |
|
25.01.2014, 11:17
| #4 |
| /// the machine /// TB-Ausbilder | Windows 8.1: Updates werden nicht installiert Hi, öffne bitte mal Windows Update > Updateverlauf anzeigen > steht dort neben den Updates ein Fehlercode?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
26.01.2014, 18:07
| #5 |
| | Windows 8.1: Updates werden nicht installiert Moin, nein, kein Fehlercode, die Meldung lautet, dass 3 Updates am 18.01.2014 erfolgreich intstalliert wurden. VG, Robert Hi, habe den PC ganz runtergefahren, Akku raus, Netzteil weg, dann nochmal versucht die Windows Updates herunterzuladen und zu installieren. Jetzt bekomme ich unter "Updateverlauf anzeigen" folgende Fehlercodes: 80070652 8024000B 80246007 Die darauf von Windows empfohlene "Automatische Update Problembehebung" meldet, dass der Fehler nicht behoben wurde ... Ich hoffe, die Info ist hilfreich. VG, Robert |
|
27.01.2014, 11:20
| #6 |
| /// the machine /// TB-Ausbilder | Windows 8.1: Updates werden nicht installiert Schritte hier schon gemacht? Windows update shows error code 80070652. Ran fix it program and issue - Microsoft Community ist das ein Dell PC?
__________________ --> Windows 8.1: Updates werden nicht installiert |
|
28.01.2014, 23:15
| #7 |
| | Windows 8.1: Updates werden nicht installiert Moin, das hat jetzt etwas gedauert, habe alles in dem Link genannte abgearbeitet. Die meisten Updates ließen sich jetzt (einzeln) installieren. Es bleiben 2 Updates bei denen sich der PC nach wie vor aufhängt: Microsoft OneNote 2010 32-Bit-Edition Fehler 80070652 Service Pack 2 für Microsoft Office 2010 32-Bit-Edition Fehler 8024000B Zu Fehler 8024000B schreibt der Microsoft Support, man solle im cmd Fenster "ren %systemroot%\System32\Spupdsvc.exe Spupdsvc.old" ausführen. Funktioniert aber nicht, da die angegebene Datei nicht gefunden werden kann. Die automatische Problembehandlung meldet immer noch, dass ein Fehler vorliegt, der nicht behoben wurde. Hm, und jetzt? Der PC ist übrigens ein Sony Vaio. VG, Robert |
|
29.01.2014, 16:58
| #8 |
| /// the machine /// TB-Ausbilder | Windows 8.1: Updates werden nicht installiert Mach mal bitte im CMD Fenster. "sfc /scannow" ohne die "".
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.02.2014, 13:07
| #9 |
| | Windows 8.1: Updates werden nicht installiert Hi, habe ich gemacht, Ergebnis: "Der Windows-Ressourcenschutz hat keine Integritätsverletzungen gefunden." VG, Robert |
|
02.02.2014, 06:44
| #10 | |
| /// the machine /// TB-Ausbilder | Windows 8.1: Updates werden nicht installiertZitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.02.2014, 18:15
| #11 |
| | Windows 8.1: Updates werden nicht installiert Hi, die Suchfunktion hat auf der Platte keine "Spupdsvc.exe" gefunden. Gruß, Robert |
|
03.02.2014, 16:22
| #12 |
| /// the machine /// TB-Ausbilder | Windows 8.1: Updates werden nicht installiert Wenn Du Windows Update aufrufst und unter Updateverlauf schaust, steht da ein Fehlercode dabei?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.02.2014, 17:42
| #13 |
| | Windows 8.1: Updates werden nicht installiert Ja, immer noch 80246007. VG, Robert |
|
04.02.2014, 12:00
| #14 |
| /// the machine /// TB-Ausbilder | Windows 8.1: Updates werden nicht installiert hi, Downloade dir bitte  Farbar Service Scanner
Poste bitte den Inhalt hier. Ebenso mal bitte das alles abarbeiten: error code 80246007 - Microsoft Community
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.02.2014, 17:59
| #15 |
| | Windows 8.1: Updates werden nicht installiert Hi, hie der FSS.txt Code:
ATTFilter Farbar Service Scanner Version: 02-02-2014
Ran by Robert (administrator) on 04-02-2014 at 17:25:30
Running from "C:\Users\Robert\AppData\Local\Microsoft\Windows\INetCache\IE\3D6BTBTC"
Microsoft Windows 8.1 (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Disabled Policy:
========================
Action Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""%ProgramFiles%\Windows Defender\MsMpEng.exe"".
Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll
[2013-08-22 14:25] - [2013-08-22 14:25] - 0029184 ____A (Microsoft Corporation) 6E2271ED0C3E95B8E29F3752B91B9E84
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2014-01-26 17:27] - [2013-11-05 21:12] - 2551128 ____A (Microsoft Corporation) 3D9A5AC880D7AA2305812D665D24ED23
C:\Windows\System32\dnsrslvr.dll
[2013-11-14 08:33] - [2013-11-14 08:33] - 0255488 ____A (Microsoft Corporation) 5BAF7714E68F93515A937A3FA8587EF9
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll
[2013-11-14 08:22] - [2013-11-14 08:22] - 0828416 ____A (Microsoft Corporation) 6468B696C65775D51A06615830E0E79D
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll
[2013-11-14 08:33] - [2013-11-14 08:33] - 3532288 ____A (Microsoft Corporation) 86D0BF4F792053A50D6EE43DFA5837A5
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll
[2013-11-14 08:33] - [2013-11-14 08:33] - 0433664 ____A (Microsoft Corporation) F4414F57DF2CECB8FC969AA43A6B0D50
C:\Windows\System32\iphlpsvc.dll
[2013-11-14 08:33] - [2013-11-14 08:33] - 0903168 ____A (Microsoft Corporation) DFC4050D58565ADBEE793A8D4AEBDAE6
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
**** End of log ****
VG, Robert |
|
| Themen zu Windows 8.1: Updates werden nicht installiert |
| adblock, adobe, blockiert, branding, defender, device driver, error, excel, google, home, homepage, installation, launch, mozilla, nicht installiert, ntdll.dll, realtek, registry, robot, rundll, scan, security, services.exe, shark, software, svchost.exe, symantec, system, updates, windows, windows updates, wlan, xperia |
Linear-Darstellung
