| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Angela Merkel BKA TrojanerWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
29.01.2014, 19:38
| #1 |
| |  Angela Merkel BKA Trojaner Hallo Leute Mich hats soeben auch erwischt Bild ist nicht von mir hxxp://blog.botfrei.de/wp-content/uploads/2013/07/gvutrojaner-hauptbild-8e4362a16beaa2df.jpeg So sah mein Chrome Browser aus, ich konnte das Fenster nicht schliessen, habe es also mit Task Manager geschlossen. Danach ging alles wieder, kein Windowsblock oder sonst etwas. Ist das also nur nen Fake oder doch ein richtiger Trojaner? Habe versucht mit Hitman Pro Kickstart auf meinen USB Stick zu laden, jedoch bekomme ich es nicht unter windows 8.1 gebootet, keine Ahnung warum. Was soll ich tun? LG |
|
29.01.2014, 19:58
| #2 |
| /// the machine /// TB-Ausbilder    | Angela Merkel BKA Trojaner Hi,
__________________das ist die Browser-Variante davon. Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
29.01.2014, 20:26
| #3 |
| | Angela Merkel BKA Trojaner Danke für die schnelle Antwort
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by Hennesch13091987 (administrator) on HENNESCH on 29-01-2014 20:18:45
Running from C:\Users\Hennesch13091987\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\IntelliMemory\IntelliMem.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Overwolf) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Google Inc.) C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\chrome.exe
(Google Inc.) C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\chrome.exe
(Google Inc.) C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\chrome.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Overwolf) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Overwolf) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper64.exe
(Desura Pty Ltd) C:\Program Files (x86)\Desura\desura.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\chrome.exe
(APN LLC.) C:\Users\Hennesch13091987\AppData\Local\VNT\vntldr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Users\Hennesch13091987\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\FileManager\PhotosApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13263072 2012-12-12] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1260256 2013-01-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_SRSSA] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1260256 2013-01-04] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2894152 2013-11-04] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM\...\Run: [Bitcasa] - C:\Program Files\Bitcasa\Bitcasa.exe [4365824 2012-12-27] (Bitcasa, Inc)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4123 2012-05-30] ()
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7818040 2013-09-19] (Motorola Solutions, Inc.)
HKLM\...\Run: [InstallerLauncher] - "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\Installer.exe"
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [97392 2012-08-15] (CyberLink Corp.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2013-12-20] (APN)
HKLM-x32\...\Run: [VNT] - C:\Program Files (x86)\VNT\vntldr.exe [202192 2013-12-20] (APN LLC.)
HKLM-x32\...\Run: [ControlCenter4] - C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Quick Starter] - C:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exe [2338352 2013-09-25] (Samsung Electronics CO., LTD.)
HKCU\...\Run: [Desura] - C:\Program Files (x86)\Desura\desura.exe [2529096 2014-01-24] (Desura Pty Ltd)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3598680 2014-01-29] (Electronic Arts)
HKCU\...\Run: [Overwolf] - C:\Program Files (x86)\Overwolf\Overwolf.exe [35768 2013-12-09] (Overwolf)
HKCU\...\Run: [Google Update] - C:\Users\Hennesch13091987\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-01-27] (Google Inc.)
HKCU\...\Run: [GoogleChromeAutoLaunch_9BA1C03949190C7AFC2AF661FE790AB9] - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\chrome.exe [843032 2014-01-28] (Google Inc.)
HKCU\...\Policies\Explorer: [DisallowRun] 1
Startup: C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Hennesch13091987\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Überwachungstool für die Intel® Turbo-Boost-Technik 2.6.lnk
ShortcutTarget: Überwachungstool für die Intel® Turbo-Boost-Technik 2.6.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\SysWow64\CbFsMntNtf3.dll (EldoS Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung13.msn.com
SearchScopes: HKLM - DefaultScope {84BC6975-725C-4D6F-AE2B-842198F7FCBE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM - {84BC6975-725C-4D6F-AE2B-842198F7FCBE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM-x32 - DefaultScope {84BC6975-725C-4D6F-AE2B-842198F7FCBE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKLM-x32 - {84BC6975-725C-4D6F-AE2B-842198F7FCBE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
SearchScopes: HKCU - DefaultScope {84BC6975-725C-4D6F-AE2B-842198F7FCBE} URL =
SearchScopes: HKCU - {84BC6975-725C-4D6F-AE2B-842198F7FCBE} URL =
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7B90A9AC-62DC-4863-8A7E-0ADB3D18301C}: [NameServer]69.197.169.9,192.95.16.109
FireFox:
========
FF ProfilePath: C:\Users\Hennesch13091987\AppData\Roaming\Mozilla\Firefox\Profiles\nfpi2dff.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hennesch13091987\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Hennesch13091987\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
Chrome:
=======
CHR HomePage: hxxp://www.hiergehtslos.de/
CHR Extension: (Google Docs) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-09]
CHR Extension: (Google Drive) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-09]
CHR Extension: (YouTube Options) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdokagampppgbnjfdlkfpphniapiiifn [2014-01-24]
CHR Extension: (James White) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2014-01-27]
CHR Extension: (YouTube) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-09]
CHR Extension: (Adblock Plus) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-01-24]
CHR Extension: (Hotot) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnfkkfleeiooolklkgkmigodkmcopnji [2014-01-27]
CHR Extension: (Google-Suche) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-09]
CHR Extension: (Pixlr-o-matic) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj [2014-01-27]
CHR Extension: (Gmail offline) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2014-01-27]
CHR Extension: (TweetDeck by Twitter) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2014-01-27]
CHR Extension: (Google Keep) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2014-01-27]
CHR Extension: (Facebook for Chrome™ Plus) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\jafknefnkiolhmhbdpojkpdempbdmfap [2014-01-27]
CHR Extension: (Google Wallet) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-09]
CHR Extension: (AutoZoom) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdkpkoaonnchdakgkmmcmnihhhgbjch [2014-01-27]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2014-01-27]
CHR Extension: (Benachrichtigung Sounds for Facebook) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\oppjbaijagamhfnfaegamdfkjgaccbkk [2014-01-27]
CHR Extension: (Tab Hibernation) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbdpajcdgknpendpmecafmopknefafha [2014-01-29]
CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcoohmdcpejoeggdnihdfhohjgdbllgm [2013-12-28]
CHR Extension: (Google Mail) - C:\Users\Hennesch13091987\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-09]
CHR HKLM-x32\...\Chrome\Extension: [pcoohmdcpejoeggdnihdfhohjgdbllgm] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7C\CRX\ToolbarCR.crx [2013-12-20]
==================== Services (Whitelisted) =================
R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171664 2012-11-05] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1594416 2013-01-14] (Samsung Electronics CO., LTD.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100104 2013-09-05] (ELAN Microelectronics Corp.)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-11-10] (Nero AG)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 IntelliMemory; C:\Program Files\Condusiv Technologies\IntelliMemory\IntelliMem.exe [55720 2012-12-21] (Condusiv Technologies)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [96184 2013-12-09] (Overwolf)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] ()
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-09-05] (Motorola Solutions, Inc.)
R1 cbfs3; C:\windows\system32\drivers\cbfs3.sys [352456 2012-08-06] (EldoS Corporation)
R3 ETDSMBus; C:\Windows\system32\DRIVERS\ETDSMBus.sys [22832 2013-07-24] (ELAN Microelectronic Corp.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
R1 intmfs; C:\Windows\System32\DRIVERS\intmfs.sys [29096 2012-12-21] (Condusiv Technologies)
R0 intmsd; C:\Windows\System32\DRIVERS\intmsd.sys [104872 2012-12-21] (Condusiv Technologies)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [3345376 2013-10-08] (Intel Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-09] (Corel Corporation)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 SensorsAlsDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-29 20:18 - 2014-01-29 20:19 - 00026740 _____ C:\Users\Hennesch13091987\Downloads\FRST.txt
2014-01-29 20:18 - 2014-01-29 20:18 - 02079744 _____ (Farbar) C:\Users\Hennesch13091987\Downloads\FRST64.exe
2014-01-29 20:18 - 2014-01-29 20:18 - 00000000 ____D C:\FRST
2014-01-29 19:50 - 2014-01-29 20:13 - 00000000 ___RD C:\Users\Hennesch13091987\Dropbox
2014-01-29 19:50 - 2014-01-29 19:50 - 00001100 _____ C:\Users\Hennesch13091987\Desktop\Dropbox.lnk
2014-01-29 19:50 - 2014-01-29 19:50 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\DropboxMaster
2014-01-29 19:49 - 2014-01-29 20:21 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Dropbox
2014-01-29 19:49 - 2014-01-29 19:49 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-01-29 19:39 - 2014-01-29 19:39 - 37660568 _____ (Dropbox, Inc.) C:\Users\Hennesch13091987\Downloads\Dropbox 2.6.2.exe
2014-01-29 19:23 - 2014-01-29 19:23 - 00550371 _____ C:\Users\Hennesch13091987\Downloads\Autoruns.zip
2014-01-29 18:32 - 2014-01-29 18:32 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2014-01-29 18:29 - 2014-01-29 18:29 - 00001913 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2014-01-29 18:29 - 2014-01-29 18:29 - 00000000 ____D C:\Program Files\HitmanPro
2014-01-29 18:28 - 2014-01-29 18:32 - 00000000 ____D C:\ProgramData\HitmanPro
2014-01-29 18:28 - 2014-01-29 18:28 - 10264904 _____ (SurfRight B.V.) C:\Users\Hennesch13091987\Downloads\HitmanPro_x64.exe
2014-01-29 18:28 - 2014-01-29 18:28 - 09452704 _____ (SurfRight B.V.) C:\Users\Hennesch13091987\Downloads\HitmanPro3.7.8.208.exe
2014-01-29 18:22 - 2014-01-29 18:26 - 00000000 ____D C:\Users\Hennesch13091987\Downloads\Kaspersky Rescue2Usb
2014-01-29 18:21 - 2014-01-29 18:22 - 00387584 _____ C:\Users\Hennesch13091987\Downloads\rescue2usb1007.exe
2014-01-29 18:12 - 2014-01-29 18:12 - 00006026 _____ C:\WINDOWS\PFRO.log
2014-01-29 17:58 - 2014-01-29 18:05 - 340465664 _____ C:\Users\Hennesch13091987\Downloads\kav_rescue_10-0513.iso
2014-01-29 17:54 - 2014-01-29 17:54 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Hennesch13091987\Downloads\SpyHunter-Installer.exe
2014-01-29 16:46 - 2014-01-29 18:34 - 00001439 _____ C:\WINDOWS\setupact.log
2014-01-29 16:46 - 2014-01-29 16:46 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-28 20:04 - 2014-01-29 20:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-28 20:04 - 2014-01-28 20:04 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-01-28 20:02 - 2014-01-28 20:02 - 00001155 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Mozilla
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Mozilla
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\ProgramData\Mozilla
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-28 20:00 - 2014-01-28 20:00 - 23867560 _____ (Mozilla) C:\Users\Hennesch13091987\Downloads\Firefox_Setup_26.0.exe
2014-01-28 19:54 - 2014-01-28 19:54 - 00001012 _____ C:\Users\Public\Desktop\SRWare Iron.lnk
2014-01-28 19:54 - 2014-01-28 19:54 - 00000000 ____D C:\Program Files (x86)\SRWare Iron
2014-01-28 19:53 - 2014-01-28 19:53 - 35188732 _____ (SRWare ) C:\Users\Hennesch13091987\Downloads\srware_iron.exe
2014-01-28 19:51 - 2014-01-29 19:16 - 00095062 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-28 19:39 - 2014-01-28 19:39 - 00002794 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-28 19:39 - 2014-01-28 19:39 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2014-01-28 19:39 - 2014-01-28 19:39 - 00000000 ____D C:\Program Files\CCleaner
2014-01-28 19:38 - 2014-01-28 19:38 - 04721920 _____ (Piriform Ltd) C:\Users\Hennesch13091987\Downloads\ccsetup410.exe
2014-01-28 01:00 - 2014-01-28 01:00 - 00000000 ___RD C:\Users\Hennesch13091987\AppData\Roaming\Brother
2014-01-27 22:13 - 2014-01-27 22:13 - 00002840 _____ C:\Users\Hennesch13091987\Desktop\Google Keep.lnk
2014-01-27 22:13 - 2014-01-27 22:13 - 00002772 _____ C:\Users\Hennesch13091987\Desktop\Google Mail.lnk
2014-01-27 22:13 - 2014-01-27 22:13 - 00002746 _____ C:\Users\Hennesch13091987\Desktop\YouTube.lnk
2014-01-27 22:05 - 2014-01-29 20:17 - 00001182 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001UA.job
2014-01-27 22:05 - 2014-01-29 19:02 - 00002511 _____ C:\Users\Hennesch13091987\Desktop\Google Chrome Canary.lnk
2014-01-27 22:05 - 2014-01-28 22:17 - 00001130 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001Core.job
2014-01-27 22:05 - 2014-01-27 22:12 - 00004150 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001UA
2014-01-27 22:05 - 2014-01-27 22:12 - 00003770 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001Core
2014-01-27 22:05 - 2014-01-27 22:05 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary
2014-01-27 22:04 - 2014-01-27 22:04 - 00819136 _____ (Google Inc.) C:\Users\Hennesch13091987\Downloads\ChromeSetup (2).exe
2014-01-27 22:04 - 2014-01-27 22:04 - 00819136 _____ (Google Inc.) C:\Users\Hennesch13091987\Downloads\ChromeSetup (1).exe
2014-01-27 21:59 - 2014-01-27 21:59 - 00002315 _____ C:\Users\Hennesch13091987\Desktop\Chrome App Launcher.lnk
2014-01-27 21:59 - 2014-01-27 21:59 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-01-27 21:56 - 2014-01-19 08:38 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-27 21:45 - 2014-01-27 21:45 - 00253691 _____ C:\ProgramData\1390855425.bdinstall.bin
2014-01-27 21:40 - 2014-01-27 21:40 - 00609392 _____ C:\ProgramData\1390854824.bdinstall.bin
2014-01-27 21:39 - 2014-01-27 21:39 - 00000385 _____ C:\WINDOWS\system32\user_gensett.xml
2014-01-27 21:39 - 2014-01-27 21:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-01-27 21:38 - 2014-01-27 21:38 - 00000000 ____D C:\ProgramData\BDLogging
2014-01-27 21:38 - 2013-11-04 15:47 - 00074512 _____ (BitDefender SRL) C:\WINDOWS\SysWOW64\bdsandboxuiskin32.dll
2014-01-27 21:38 - 2007-04-11 10:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2014-01-27 21:34 - 2014-01-29 18:12 - 00000000 ____D C:\Program Files\Bitdefender
2014-01-27 21:34 - 2014-01-27 21:34 - 00000000 _____ C:\WINDOWS\system32\BDSandBoxUISkin32.dll
2014-01-27 21:34 - 2013-11-04 15:47 - 00084848 _____ (BitDefender SRL) C:\WINDOWS\system32\BDSandBoxUISkin.dll
2014-01-27 21:34 - 2013-11-04 15:46 - 00034384 _____ (BitDefender SRL) C:\WINDOWS\system32\BDSandBoxUH.dll
2014-01-27 21:33 - 2014-01-27 21:45 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2014-01-27 21:33 - 2014-01-27 21:33 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\QuickScan
2014-01-27 21:32 - 2014-01-27 21:32 - 05701712 _____ C:\Users\Hennesch13091987\Downloads\bitdefender_14isecurity.exe
2014-01-27 20:27 - 2014-01-27 20:28 - 163606685 _____ C:\Users\Hennesch13091987\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de (3).exe
2014-01-27 20:19 - 2014-01-27 20:20 - 163583672 _____ C:\Users\Hennesch13091987\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de (2).exe
2014-01-27 18:13 - 2014-01-29 18:51 - 00003974 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E2D1E3CD-F1D3-47D3-9A75-41AC22192AC6}
2014-01-27 01:08 - 2014-01-27 01:09 - 00001220 _____ C:\Users\Hennesch13091987\AppData\Roaming\BreakingPoint_Options.ini
2014-01-27 00:27 - 2014-01-27 01:09 - 00000239 _____ C:\Users\Hennesch13091987\AppData\Roaming\BreakingPoint_Login.ini
2014-01-27 00:21 - 2014-01-27 01:09 - 00000000 ____D C:\Breaking Point
2014-01-27 00:21 - 2014-01-27 00:21 - 02103808 _____ (Alderon Games) C:\Users\Hennesch13091987\Downloads\BP_Installer.exe
2014-01-27 00:21 - 2014-01-27 00:21 - 00000711 _____ C:\Users\Hennesch13091987\Desktop\Breaking Point.lnk
2014-01-25 16:11 - 2014-01-27 00:24 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Arma 3
2014-01-25 16:11 - 2014-01-25 16:11 - 00000000 ____D C:\Users\Hennesch13091987\Documents\Arma 3
2014-01-25 16:11 - 2014-01-25 16:11 - 00000000 ____D C:\ProgramData\Bohemia Interactive
2014-01-25 15:26 - 2014-01-25 15:26 - 00000222 _____ C:\Users\Hennesch13091987\Desktop\Arma 3.url
2014-01-25 15:15 - 2014-01-25 15:15 - 08161880 _____ (hxxp://www.goforfiles.com/) C:\Users\Hennesch13091987\Downloads\Arma-3-Demochip_downloader.exe
2014-01-25 15:13 - 2014-01-25 15:13 - 01059584 _____ C:\Users\Hennesch13091987\Downloads\Arma-3-Demo-Setup (1).exe
2014-01-25 15:13 - 2014-01-25 15:13 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Temp674d0da358a1a9802b2c032319229d91__
2014-01-25 15:12 - 2014-01-25 15:12 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Temp674d0da358a1a9802b2c032319229d91_
2014-01-25 15:11 - 2014-01-25 15:11 - 01059584 _____ C:\Users\Hennesch13091987\Downloads\Arma-3-Demo-Setup.exe
2014-01-24 01:27 - 2014-01-24 01:27 - 00000000 ____D C:\ProgramData\ATI
2014-01-24 01:12 - 2014-01-24 01:12 - 00000000 ____D C:\Program Files\DIFX
2014-01-24 01:10 - 2014-01-24 01:10 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2014-01-24 01:09 - 2014-01-24 01:09 - 00061191 _____ C:\WINDOWS\SysWOW64\CCCInstall_201401240109548838.log
2014-01-24 01:08 - 2014-01-24 01:08 - 00000724 _____ C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk
2014-01-24 01:08 - 2013-08-30 20:14 - 00156712 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00142792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00141256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00125824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00114488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00097984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2014-01-24 01:08 - 2013-08-30 20:14 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2014-01-24 01:08 - 2013-08-30 20:13 - 09464840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2014-01-24 01:08 - 2013-08-30 20:13 - 08215992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2014-01-24 01:08 - 2013-08-30 20:13 - 07256496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2014-01-24 01:08 - 2013-08-30 20:13 - 06767240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2014-01-24 01:08 - 2013-08-30 20:13 - 06189416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2014-01-24 01:08 - 2013-08-30 20:13 - 06176008 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2014-01-24 01:08 - 2013-08-30 20:13 - 01233080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2014-01-24 01:08 - 2013-08-30 20:13 - 01027544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2014-01-24 01:08 - 2013-08-30 20:11 - 12528640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2014-01-24 01:08 - 2013-08-30 20:05 - 00781312 _____ C:\WINDOWS\system32\amdmiracast.dll
2014-01-24 01:08 - 2013-08-30 19:48 - 00229376 _____ C:\WINDOWS\system32\clinfo.exe
2014-01-24 01:08 - 2013-08-30 19:48 - 00127488 _____ (AMD) C:\WINDOWS\system32\coinst_13.152.dll
2014-01-24 01:08 - 2013-08-30 19:47 - 28192256 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2014-01-24 01:08 - 2013-08-30 19:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\OpenVideo64.dll
2014-01-24 01:08 - 2013-08-30 19:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\OVDecode64.dll
2014-01-24 01:08 - 2013-08-30 19:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\OpenVideo.dll
2014-01-24 01:08 - 2013-08-30 19:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\OVDecode.dll
2014-01-24 01:08 - 2013-08-30 19:45 - 23760896 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2014-01-24 01:08 - 2013-08-30 19:43 - 00063488 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2014-01-24 01:08 - 2013-08-30 19:43 - 00057344 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2014-01-24 01:08 - 2013-08-30 19:35 - 25387520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2014-01-24 01:08 - 2013-08-30 19:18 - 00530824 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2014-01-24 01:08 - 2013-08-30 19:18 - 00530824 _____ C:\WINDOWS\system32\atiapfxx.blb
2014-01-24 01:08 - 2013-08-30 19:18 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2014-01-24 01:08 - 2013-08-30 19:18 - 00062464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2014-01-24 01:08 - 2013-08-30 19:18 - 00055808 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2014-01-24 01:08 - 2013-08-30 19:18 - 00052224 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2014-01-24 01:08 - 2013-08-30 19:18 - 00049152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2014-01-24 01:08 - 2013-08-30 19:17 - 15716352 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2014-01-24 01:08 - 2013-08-30 19:14 - 21400064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2014-01-24 01:08 - 2013-08-30 19:14 - 14302208 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2014-01-24 01:08 - 2013-08-30 19:04 - 03388672 _____ C:\WINDOWS\system32\atiumd6a.cap
2014-01-24 01:08 - 2013-08-30 18:59 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2014-01-24 01:08 - 2013-08-30 18:58 - 00571904 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2014-01-24 01:08 - 2013-08-30 18:58 - 00026112 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2014-01-24 01:08 - 2013-08-30 18:57 - 00239616 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2014-01-24 01:08 - 2013-08-30 18:56 - 00190976 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2014-01-24 01:08 - 2013-08-30 18:50 - 03422720 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2014-01-24 01:08 - 2013-08-30 18:37 - 00096256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2014-01-24 01:08 - 2013-08-30 18:37 - 00090624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2014-01-24 01:08 - 2013-08-30 18:37 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2014-01-24 01:08 - 2013-08-30 18:37 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2014-01-24 01:08 - 2013-08-30 18:35 - 00134656 _____ C:\WINDOWS\system32\amdhdl64.dll
2014-01-24 01:08 - 2013-08-30 18:34 - 00123392 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2014-01-24 01:08 - 2013-08-30 18:33 - 00784384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2014-01-24 01:08 - 2013-08-30 18:33 - 00594944 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2014-01-24 01:08 - 2013-08-30 18:33 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2014-01-24 01:08 - 2013-08-30 18:33 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2014-01-24 01:08 - 2013-08-30 18:32 - 00618496 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2014-01-24 01:08 - 2013-08-30 18:32 - 00100352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2014-01-24 01:08 - 2013-08-30 18:32 - 00096768 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2014-01-24 01:08 - 2013-08-30 18:32 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2014-01-24 01:08 - 2013-08-30 18:32 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2014-01-24 01:08 - 2013-08-27 15:06 - 00233652 _____ C:\WINDOWS\system32\ativvaxy_cik.dat
2014-01-24 01:08 - 2013-08-27 13:27 - 00082336 _____ C:\WINDOWS\system32\ativce02.dat
2014-01-24 01:08 - 2013-08-07 11:12 - 00231984 _____ C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2014-01-24 01:07 - 2014-01-24 01:07 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-24 01:06 - 2014-01-24 01:06 - 00054723 _____ C:\WINDOWS\SysWOW64\CCCInstall_201401240106379845.log
2014-01-24 01:04 - 2013-11-11 03:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-24 01:04 - 2013-11-09 12:55 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-24 01:04 - 2013-11-09 07:37 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-24 01:04 - 2013-11-09 06:56 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-24 01:04 - 2013-11-08 11:26 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-24 01:04 - 2013-11-08 05:43 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-24 01:04 - 2013-11-08 05:28 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-24 01:04 - 2013-11-08 05:26 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-24 01:04 - 2013-11-08 05:16 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-24 01:04 - 2013-11-08 05:15 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-24 01:04 - 2013-11-08 05:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-24 01:04 - 2013-11-08 04:41 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-24 01:04 - 2013-11-08 04:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-24 01:04 - 2013-11-05 15:19 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-24 01:04 - 2013-11-05 15:03 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-24 01:04 - 2013-11-05 14:57 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-24 01:04 - 2013-11-05 14:33 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-24 01:04 - 2013-11-05 14:32 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-24 01:04 - 2013-11-04 18:13 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-24 01:04 - 2013-11-04 18:13 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-24 01:04 - 2013-11-04 14:07 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-24 01:04 - 2013-11-04 12:50 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-24 01:04 - 2013-11-04 11:32 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-24 01:04 - 2013-11-04 03:28 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-24 01:04 - 2013-11-04 02:30 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-24 01:04 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-24 01:04 - 2013-11-01 07:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-24 01:04 - 2013-11-01 06:57 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-24 01:04 - 2013-10-31 01:58 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-24 01:04 - 2013-10-31 01:42 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-24 01:04 - 2013-10-31 01:33 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-24 01:04 - 2013-10-31 01:33 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-24 01:04 - 2013-10-31 01:33 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-24 01:04 - 2013-10-31 01:33 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-24 01:04 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-24 01:04 - 2013-10-24 10:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-24 01:04 - 2013-10-24 10:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-24 01:04 - 2013-10-17 12:21 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-24 01:04 - 2013-10-17 11:36 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-24 01:04 - 2013-10-05 15:21 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-24 01:04 - 2013-10-05 15:21 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-24 01:04 - 2013-10-05 13:05 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-24 01:04 - 2013-10-05 13:05 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-24 01:03 - 2014-01-24 01:03 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Intel_Corporation
2014-01-24 01:01 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-24 01:01 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-24 01:01 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-24 01:01 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-24 01:01 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-24 01:01 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-24 01:01 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-24 01:01 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-24 01:01 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-24 01:01 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-24 01:01 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-24 01:01 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-01-24 01:01 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-01-24 01:01 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-01-24 01:01 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-01-24 01:01 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-01-24 01:01 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-01-24 01:01 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-01-24 01:01 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-01-24 01:01 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-01-24 01:01 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-01-24 01:01 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-01-24 01:01 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-01-24 01:01 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-01-24 01:01 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-01-24 01:01 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-01-24 01:01 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-01-24 01:01 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-01-24 01:01 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-01-24 01:01 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-01-24 01:01 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-24 01:01 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-24 01:01 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-01-24 01:01 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-01-24 01:01 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-01-24 01:01 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-24 01:01 - 2013-10-19 09:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-24 01:01 - 2013-10-19 08:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-24 01:01 - 2013-10-15 09:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-24 01:01 - 2013-10-15 09:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-24 01:00 - 2014-01-24 01:01 - 22015858 _____ C:\Users\Hennesch13091987\Downloads\SWUpdate_2.1.15.1.ZIP
2014-01-24 01:00 - 2013-07-26 15:07 - 00827096 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2014-01-24 01:00 - 2013-07-26 15:07 - 00074456 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2014-01-24 00:59 - 2013-07-24 14:57 - 00022832 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\Drivers\ETDSMBus.sys
2014-01-24 00:58 - 2014-01-24 00:58 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-01-24 00:57 - 2014-01-24 00:57 - 01806364 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-01-24 00:57 - 2014-01-24 00:57 - 00000000 ____D C:\WINDOWS\RSTLog
2014-01-24 00:57 - 2014-01-24 00:57 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Intel Corporation
2014-01-24 00:55 - 2014-01-24 00:55 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-24 00:54 - 2014-01-24 00:54 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2014-01-24 00:54 - 2013-04-25 18:12 - 09889352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtsUVStoricon.dll
2014-01-24 00:53 - 2014-01-29 19:50 - 00000000 __RDO C:\Users\Hennesch13091987\SkyDrive
2014-01-24 00:51 - 2014-01-24 00:51 - 00001446 _____ C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-24 00:51 - 2014-01-24 00:51 - 00000020 ___SH C:\Users\Hennesch13091987\ntuser.ini
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Programme
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\ProgramData\Vorlagen
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\ProgramData\Startmenü
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\ProgramData\Dokumente
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Dokumente und Einstellungen
2014-01-24 00:45 - 2014-01-24 00:45 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-24 00:40 - 2014-01-29 19:50 - 00000000 ____D C:\Users\Hennesch13091987
2014-01-24 00:40 - 2014-01-24 00:46 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2014-01-24 00:40 - 2014-01-24 00:46 - 00020958 _____ C:\WINDOWS\diagerr.xml
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Vorlagen
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Startmenü
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Netzwerkumgebung
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Lokale Einstellungen
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Eigene Dateien
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Druckumgebung
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Documents\Eigene Musik
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Documents\Eigene Bilder
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\AppData\Local\Verlauf
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\AppData\Local\Anwendungsdaten
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Anwendungsdaten
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 ___RD C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-24 00:40 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-24 00:40 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-24 00:40 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-24 00:38 - 2014-01-24 00:38 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsAlsDriver_01_11_00.Wdf
2014-01-24 00:38 - 2014-01-24 00:38 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2014-01-24 00:37 - 2014-01-24 01:26 - 00000000 ____D C:\Program Files\Elantech
2014-01-24 00:37 - 2014-01-24 01:26 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\Program Files\Realtek
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\Program Files\AMD
2014-01-24 00:36 - 2014-01-28 19:42 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-24 00:36 - 2014-01-25 19:11 - 00000000 ____D C:\Windows.old
2014-01-24 00:36 - 2014-01-24 00:36 - 00000000 __SHD C:\Recovery
2014-01-24 00:35 - 2014-01-24 00:35 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\Program Files\MSBuild
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-24 00:33 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-01-24 00:33 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-24 00:33 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-01-24 00:33 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-01-24 00:33 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-24 00:33 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-01-23 01:35 - 2014-01-23 01:35 - 00055563 _____ C:\WINDOWS\SysWOW64\CCCInstall_201401230135591051.log
2014-01-23 01:30 - 2014-01-23 01:31 - 251171207 _____ C:\Users\Hennesch13091987\Downloads\amd_catalyst_13.11_mobility_betav8.zip
2014-01-23 01:24 - 2014-01-23 01:24 - 00460112 _____ (techPowerUp (www.techpowerup.com)) C:\Users\Hennesch13091987\Downloads\GPU-Z.0.3.8.exe
2014-01-23 01:23 - 2014-01-25 15:13 - 00000190 _____ C:\Users\Hennesch13091987\Desktop\Amazon.de.url
2014-01-23 01:23 - 2014-01-23 01:23 - 01059584 _____ C:\Users\Hennesch13091987\Downloads\GPU-Z-Setup.exe
2014-01-23 01:23 - 2014-01-23 01:23 - 00000000 ____D C:\Users\Hennesch13091987\Downloads\GPU-Z
2014-01-23 01:23 - 2014-01-23 01:23 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Temp674d0da358a1a9802b2c032319229d91
2014-01-23 01:21 - 2014-01-23 01:21 - 00000189 _____ C:\siw_debug.txt
2014-01-23 01:18 - 2014-01-27 15:17 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-23 01:18 - 2014-01-23 01:18 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-23 01:18 - 2014-01-23 01:18 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\TuneUp Software
2014-01-23 01:17 - 2014-01-23 01:17 - 04524952 _____ (Topala Software Solutions ) C:\Users\Hennesch13091987\Downloads\siw13-setup.exe
2014-01-23 01:17 - 2014-01-23 01:17 - 00001063 _____ C:\Users\Hennesch13091987\Desktop\SIW Home Edition.lnk
2014-01-23 01:17 - 2014-01-23 01:17 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\OpenCandy
2014-01-23 01:17 - 2014-01-23 01:17 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\CrashRpt
2014-01-23 01:17 - 2014-01-23 01:17 - 00000000 ____D C:\Program Files (x86)\SIW 2013 Home Edition
2014-01-23 01:12 - 2014-01-23 01:13 - 182017816 _____ (Lenovo Group Limited ) C:\Users\Hennesch13091987\Downloads\hrd505ww.exe
2014-01-23 01:07 - 2014-01-23 01:08 - 207485208 _____ (Advanced Micro Devices, Inc.) C:\Users\Hennesch13091987\Downloads\13-9_win7_win8_64_dd_ccc_whql.exe
2014-01-23 00:31 - 2014-01-23 00:31 - 00003232 _____ C:\WINDOWS\System32\Tasks\{04549CA4-8B83-4FA3-B8D8-8685E6D8B609}
2014-01-23 00:28 - 2014-01-23 00:29 - 32769799 _____ C:\Users\Hennesch13091987\Downloads\20551337_17ebbb9839e7d70256b5c6305c252c3ffb9911d7.cab
2014-01-23 00:10 - 2014-01-24 00:38 - 00000000 ____D C:\AMD
2014-01-23 00:10 - 2014-01-23 00:10 - 01189560 _____ (AMD Inc.) C:\Users\Hennesch13091987\Downloads\catalyst_mobility_64-bit_util.exe
2014-01-23 00:07 - 2014-01-23 00:07 - 00791552 _____ (AMD) C:\Users\Hennesch13091987\Downloads\amddriverdownloader.exe
2014-01-23 00:07 - 2014-01-23 00:07 - 00791552 _____ (AMD) C:\Users\Hennesch13091987\Downloads\amddriverdownloader (1).exe
2014-01-21 20:39 - 2014-01-21 20:39 - 01398093 _____ C:\Users\Hennesch13091987\Downloads\EqualizerAPO64-0.8.1 (2).exe
2014-01-21 20:39 - 2014-01-21 20:39 - 01398093 _____ C:\Users\Hennesch13091987\Downloads\EqualizerAPO64-0.8.1 (1).exe
2014-01-21 20:38 - 2014-01-24 00:42 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Equalizer APO 0.8.1
2014-01-21 20:38 - 2014-01-21 20:38 - 01398093 _____ C:\Users\Hennesch13091987\Downloads\EqualizerAPO64-0.8.1.exe
2014-01-21 20:38 - 2014-01-21 20:38 - 00000000 ____D C:\Program Files\EqualizerAPO
2014-01-16 00:00 - 2014-01-16 00:00 - 00000913 _____ C:\Users\Hennesch13091987\AppData\Local\recently-used.xbel
2014-01-16 00:00 - 2014-01-16 00:00 - 00000000 ____D C:\Users\Hennesch13091987\.thumbnails
2014-01-15 23:59 - 2014-01-16 00:01 - 00000000 ____D C:\Users\Hennesch13091987\.gimp-2.8
2014-01-15 23:59 - 2014-01-15 23:59 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\gegl-0.2
2014-01-15 23:58 - 2014-01-15 23:58 - 00000000 ____D C:\Program Files\GIMP 2
2014-01-15 23:57 - 2014-01-15 23:58 - 90396104 _____ (The GIMP Team ) C:\Users\Hennesch13091987\Downloads\gimp-2.8.10-setup.exe
2014-01-15 01:08 - 2014-01-15 01:10 - 00000000 ____D C:\Users\Hennesch13091987\Desktop\google
2014-01-15 01:08 - 2014-01-15 01:08 - 17969216 _____ C:\Users\Hennesch13091987\Downloads\Fastboot+ADB(20926).zip
2014-01-15 01:07 - 2014-01-15 01:09 - 392142958 _____ C:\Users\Hennesch13091987\Downloads\mantaray-kot49h-factory-174ba74f.tgz
2014-01-15 01:07 - 2014-01-15 01:07 - 09208320 _____ C:\Users\Hennesch13091987\Downloads\UniversalAdbDriverSetup6 (2).msi
2014-01-14 22:50 - 2014-01-14 22:50 - 00000000 ____D C:\Users\Hennesch13091987\Documents\Screenshots
2014-01-14 21:20 - 2014-01-29 18:14 - 00159744 ___SH C:\Users\Hennesch13091987\Desktop\Thumbs.db
2014-01-14 21:16 - 2014-01-14 21:19 - 00000000 ____D C:\Fraps
2014-01-14 21:16 - 2014-01-14 21:16 - 02326976 _____ (Beepa Pty Ltd) C:\Users\Hennesch13091987\Downloads\setup.exe
2014-01-14 21:16 - 2014-01-14 21:16 - 00000562 _____ C:\Users\Public\Desktop\Fraps.lnk
2014-01-12 15:50 - 2014-01-12 15:54 - 00000000 ____D C:\Users\Hennesch13091987\Documents\TmForever
2014-01-12 15:50 - 2014-01-12 15:54 - 00000000 ____D C:\ProgramData\TmForever
2014-01-12 15:50 - 2014-01-12 15:50 - 00001104 _____ C:\Users\Public\Desktop\TmNationsForever.lnk
2014-01-12 15:48 - 2014-01-12 15:50 - 00000000 ____D C:\Program Files (x86)\TmNationsForever
2014-01-12 15:42 - 2014-01-12 15:48 - 529246504 _____ C:\Users\Hennesch13091987\Downloads\tmnationsforever_setup.exe
2014-01-12 03:41 - 2014-01-29 19:20 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Paint.NET
2014-01-12 03:41 - 2014-01-12 03:41 - 03739157 _____ C:\Users\Hennesch13091987\Downloads\Paint.NET.3.5.11.Install.zip
2014-01-12 03:41 - 2014-01-12 03:41 - 00001288 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2014-01-12 03:41 - 2014-01-12 03:41 - 00000000 ____D C:\Program Files\Paint.NET
2014-01-12 03:40 - 2014-01-24 00:42 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2014-01-12 03:22 - 2014-01-12 03:22 - 31977536 _____ (Symantec Corporation) C:\Users\Hennesch13091987\Downloads\NortonIdentitySafe-v1-LB.exe
2014-01-11 21:47 - 2014-01-29 19:01 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Overwolf
2014-01-11 21:47 - 2014-01-28 19:42 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\TS3Client
2014-01-11 21:47 - 2014-01-24 00:42 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2014-01-11 21:47 - 2014-01-11 21:47 - 00001967 _____ C:\Users\Public\Desktop\Overwolf.lnk
2014-01-11 21:47 - 2014-01-11 21:47 - 00001158 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-11 21:47 - 2014-01-11 21:47 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2014-01-11 21:47 - 2014-01-11 21:47 - 00000000 ____D C:\Program Files (x86)\Overwolf
2014-01-11 21:44 - 2014-01-11 21:45 - 30095736 _____ (TeamSpeak Systems GmbH) C:\Users\Hennesch13091987\Downloads\TeamSpeak3-Client-win32-3.0.13.1.exe
2014-01-11 19:00 - 2014-01-27 01:10 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\DayZ
2014-01-11 19:00 - 2014-01-24 02:04 - 00000000 ____D C:\Users\Hennesch13091987\Documents\DayZ
2014-01-11 18:55 - 2014-01-11 18:55 - 00001045 _____ C:\Users\Public\Desktop\Überwachungstool für die Intel® Turbo-Boost-Technik 2.6.lnk
2014-01-11 18:53 - 2014-01-11 18:54 - 23871776 _____ (Macrovision Corporation) C:\Users\Hennesch13091987\Downloads\Intel_Turbo_boost_2.6.exe
2014-01-11 18:38 - 2014-01-11 18:38 - 00000222 _____ C:\Users\Hennesch13091987\Desktop\DayZ.url
2014-01-09 20:05 - 2014-01-09 20:05 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\OpenOffice
2014-01-06 23:53 - 2014-01-27 20:29 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2014-01-06 23:53 - 2014-01-06 23:53 - 00001116 _____ C:\Users\Public\Desktop\OpenOffice 4.0.1.lnk
2014-01-06 23:52 - 2014-01-06 23:52 - 00000000 ____D C:\Users\Hennesch13091987\Desktop\OpenOffice 4.0.1 (de) Installation Files
2014-01-06 23:50 - 2014-01-06 23:51 - 38090813 _____ C:\Users\Hennesch13091987\Downloads\Minotaur.rar
2014-01-05 23:55 - 2014-01-05 23:59 - 163606685 _____ C:\Users\Hennesch13091987\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de (1).exe
2014-01-05 23:53 - 2014-01-05 23:53 - 163600018 _____ C:\Users\Hennesch13091987\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de.exe
2014-01-03 00:11 - 2014-01-03 00:11 - 03439706 _____ C:\Users\Hennesch13091987\Downloads\HowMosquitoBecameHuman.zip
2014-01-03 00:11 - 2014-01-03 00:11 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\WinRAR
2014-01-02 01:48 - 2014-01-02 01:48 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2014-01-02 01:48 - 2014-01-02 01:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-02 01:46 - 2014-01-02 01:46 - 13079688 _____ (Microsoft Corporation) C:\Users\Hennesch13091987\Downloads\Silverlight_x64.exe
2013-12-30 20:56 - 2013-12-30 20:56 - 00000000 ____D C:\Users\Hennesch13091987\Desktop\Max Payne 3
2013-12-30 03:49 - 2014-01-28 19:42 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\CrashDumps
2013-12-30 03:47 - 2013-12-30 03:47 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\AskPartnerNetwork
==================== One Month Modified Files and Folders =======
2014-01-29 20:21 - 2014-01-29 19:49 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Dropbox
2014-01-29 20:19 - 2014-01-29 20:18 - 00026740 _____ C:\Users\Hennesch13091987\Downloads\FRST.txt
2014-01-29 20:18 - 2014-01-29 20:18 - 02079744 _____ (Farbar) C:\Users\Hennesch13091987\Downloads\FRST64.exe
2014-01-29 20:18 - 2014-01-29 20:18 - 00000000 ____D C:\FRST
2014-01-29 20:17 - 2014-01-27 22:05 - 00001182 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001UA.job
2014-01-29 20:13 - 2014-01-29 19:50 - 00000000 ___RD C:\Users\Hennesch13091987\Dropbox
2014-01-29 20:00 - 2014-01-28 20:04 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-29 20:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-29 19:57 - 2013-12-09 09:33 - 00001148 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-29 19:55 - 2013-12-09 09:37 - 00003592 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1696205027-49635444-304707573-1001
2014-01-29 19:50 - 2014-01-29 19:50 - 00001100 _____ C:\Users\Hennesch13091987\Desktop\Dropbox.lnk
2014-01-29 19:50 - 2014-01-29 19:50 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\DropboxMaster
2014-01-29 19:50 - 2014-01-24 00:53 - 00000000 __RDO C:\Users\Hennesch13091987\SkyDrive
2014-01-29 19:50 - 2014-01-24 00:40 - 00000000 ____D C:\Users\Hennesch13091987
2014-01-29 19:50 - 2013-12-09 09:28 - 00000000 ___RD C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-29 19:49 - 2014-01-29 19:49 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-01-29 19:39 - 2014-01-29 19:39 - 37660568 _____ (Dropbox, Inc.) C:\Users\Hennesch13091987\Downloads\Dropbox 2.6.2.exe
2014-01-29 19:23 - 2014-01-29 19:23 - 00550371 _____ C:\Users\Hennesch13091987\Downloads\Autoruns.zip
2014-01-29 19:20 - 2014-01-12 03:41 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Paint.NET
2014-01-29 19:16 - 2014-01-28 19:51 - 00095062 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-29 19:05 - 2013-11-14 08:27 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-29 19:05 - 2013-11-14 08:11 - 00766620 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-29 19:05 - 2013-11-14 08:11 - 00159902 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-29 19:04 - 2013-01-21 08:51 - 00000000 ____D C:\ProgramData\WinClon
2014-01-29 19:03 - 2013-12-09 09:33 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-29 19:02 - 2014-01-27 22:05 - 00002511 _____ C:\Users\Hennesch13091987\Desktop\Google Chrome Canary.lnk
2014-01-29 19:01 - 2014-01-11 21:47 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Overwolf
2014-01-29 19:01 - 2013-12-25 01:57 - 00000000 ____D C:\Program Files (x86)\Origin
2014-01-29 19:01 - 2013-12-25 00:39 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\HTC MediaHub
2014-01-29 19:01 - 2013-12-09 09:33 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-29 19:01 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-29 18:51 - 2014-01-27 18:13 - 00003974 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E2D1E3CD-F1D3-47D3-9A75-41AC22192AC6}
2014-01-29 18:34 - 2014-01-29 16:46 - 00001439 _____ C:\WINDOWS\setupact.log
2014-01-29 18:32 - 2014-01-29 18:32 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2014-01-29 18:32 - 2014-01-29 18:28 - 00000000 ____D C:\ProgramData\HitmanPro
2014-01-29 18:29 - 2014-01-29 18:29 - 00001913 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2014-01-29 18:29 - 2014-01-29 18:29 - 00000000 ____D C:\Program Files\HitmanPro
2014-01-29 18:28 - 2014-01-29 18:28 - 10264904 _____ (SurfRight B.V.) C:\Users\Hennesch13091987\Downloads\HitmanPro_x64.exe
2014-01-29 18:28 - 2014-01-29 18:28 - 09452704 _____ (SurfRight B.V.) C:\Users\Hennesch13091987\Downloads\HitmanPro3.7.8.208.exe
2014-01-29 18:26 - 2014-01-29 18:22 - 00000000 ____D C:\Users\Hennesch13091987\Downloads\Kaspersky Rescue2Usb
2014-01-29 18:22 - 2014-01-29 18:21 - 00387584 _____ C:\Users\Hennesch13091987\Downloads\rescue2usb1007.exe
2014-01-29 18:14 - 2014-01-14 21:20 - 00159744 ___SH C:\Users\Hennesch13091987\Desktop\Thumbs.db
2014-01-29 18:12 - 2014-01-29 18:12 - 00006026 _____ C:\WINDOWS\PFRO.log
2014-01-29 18:12 - 2014-01-27 21:34 - 00000000 ____D C:\Program Files\Bitdefender
2014-01-29 18:12 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2014-01-29 18:05 - 2014-01-29 17:58 - 340465664 _____ C:\Users\Hennesch13091987\Downloads\kav_rescue_10-0513.iso
2014-01-29 17:54 - 2014-01-29 17:54 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Hennesch13091987\Downloads\SpyHunter-Installer.exe
2014-01-29 16:46 - 2014-01-29 16:46 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-29 00:48 - 2013-12-25 01:57 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-28 22:17 - 2014-01-27 22:05 - 00001130 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001Core.job
2014-01-28 20:04 - 2014-01-28 20:04 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-01-28 20:04 - 2013-12-09 09:29 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Adobe
2014-01-28 20:02 - 2014-01-28 20:02 - 00001155 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Mozilla
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Mozilla
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\ProgramData\Mozilla
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-28 20:02 - 2014-01-28 20:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-28 20:00 - 2014-01-28 20:00 - 23867560 _____ (Mozilla) C:\Users\Hennesch13091987\Downloads\Firefox_Setup_26.0.exe
2014-01-28 19:54 - 2014-01-28 19:54 - 00001012 _____ C:\Users\Public\Desktop\SRWare Iron.lnk
2014-01-28 19:54 - 2014-01-28 19:54 - 00000000 ____D C:\Program Files (x86)\SRWare Iron
2014-01-28 19:53 - 2014-01-28 19:53 - 35188732 _____ (SRWare ) C:\Users\Hennesch13091987\Downloads\srware_iron.exe
2014-01-28 19:42 - 2014-01-24 00:36 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-28 19:42 - 2014-01-11 21:47 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\TS3Client
2014-01-28 19:42 - 2013-12-30 03:49 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\CrashDumps
2014-01-28 19:39 - 2014-01-28 19:39 - 00002794 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-28 19:39 - 2014-01-28 19:39 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2014-01-28 19:39 - 2014-01-28 19:39 - 00000000 ____D C:\Program Files\CCleaner
2014-01-28 19:38 - 2014-01-28 19:38 - 04721920 _____ (Piriform Ltd) C:\Users\Hennesch13091987\Downloads\ccsetup410.exe
2014-01-28 01:00 - 2014-01-28 01:00 - 00000000 ___RD C:\Users\Hennesch13091987\AppData\Roaming\Brother
2014-01-28 00:56 - 2013-12-24 12:39 - 00000000 ____D C:\Program Files (x86)\Brother
2014-01-27 22:13 - 2014-01-27 22:13 - 00002840 _____ C:\Users\Hennesch13091987\Desktop\Google Keep.lnk
2014-01-27 22:13 - 2014-01-27 22:13 - 00002772 _____ C:\Users\Hennesch13091987\Desktop\Google Mail.lnk
2014-01-27 22:13 - 2014-01-27 22:13 - 00002746 _____ C:\Users\Hennesch13091987\Desktop\YouTube.lnk
2014-01-27 22:12 - 2014-01-27 22:05 - 00004150 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001UA
2014-01-27 22:12 - 2014-01-27 22:05 - 00003770 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001Core
2014-01-27 22:05 - 2014-01-27 22:05 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary
2014-01-27 22:05 - 2013-12-09 09:33 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Google
2014-01-27 22:04 - 2014-01-27 22:04 - 00819136 _____ (Google Inc.) C:\Users\Hennesch13091987\Downloads\ChromeSetup (2).exe
2014-01-27 22:04 - 2014-01-27 22:04 - 00819136 _____ (Google Inc.) C:\Users\Hennesch13091987\Downloads\ChromeSetup (1).exe
2014-01-27 21:59 - 2014-01-27 21:59 - 00002315 _____ C:\Users\Hennesch13091987\Desktop\Chrome App Launcher.lnk
2014-01-27 21:59 - 2014-01-27 21:59 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-01-27 21:45 - 2014-01-27 21:45 - 00253691 _____ C:\ProgramData\1390855425.bdinstall.bin
2014-01-27 21:45 - 2014-01-27 21:33 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2014-01-27 21:40 - 2014-01-27 21:40 - 00609392 _____ C:\ProgramData\1390854824.bdinstall.bin
2014-01-27 21:40 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-27 21:39 - 2014-01-27 21:39 - 00000385 _____ C:\WINDOWS\system32\user_gensett.xml
2014-01-27 21:39 - 2014-01-27 21:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-01-27 21:38 - 2014-01-27 21:38 - 00000000 ____D C:\ProgramData\BDLogging
2014-01-27 21:34 - 2014-01-27 21:34 - 00000000 _____ C:\WINDOWS\system32\BDSandBoxUISkin32.dll
2014-01-27 21:33 - 2014-01-27 21:33 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\QuickScan
2014-01-27 21:32 - 2014-01-27 21:32 - 05701712 _____ C:\Users\Hennesch13091987\Downloads\bitdefender_14isecurity.exe
2014-01-27 20:29 - 2014-01-06 23:53 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2014-01-27 20:28 - 2014-01-27 20:27 - 163606685 _____ C:\Users\Hennesch13091987\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de (3).exe
2014-01-27 20:20 - 2014-01-27 20:19 - 163583672 _____ C:\Users\Hennesch13091987\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de (2).exe
2014-01-27 15:17 - 2014-01-23 01:18 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-27 01:10 - 2014-01-11 19:00 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\DayZ
2014-01-27 01:09 - 2014-01-27 01:08 - 00001220 _____ C:\Users\Hennesch13091987\AppData\Roaming\BreakingPoint_Options.ini
2014-01-27 01:09 - 2014-01-27 00:27 - 00000239 _____ C:\Users\Hennesch13091987\AppData\Roaming\BreakingPoint_Login.ini
2014-01-27 01:09 - 2014-01-27 00:21 - 00000000 ____D C:\Breaking Point
2014-01-27 00:44 - 2013-12-25 23:41 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-27 00:24 - 2014-01-25 16:11 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Arma 3
2014-01-27 00:22 - 2013-12-09 09:35 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-27 00:21 - 2014-01-27 00:21 - 02103808 _____ (Alderon Games) C:\Users\Hennesch13091987\Downloads\BP_Installer.exe
2014-01-27 00:21 - 2014-01-27 00:21 - 00000711 _____ C:\Users\Hennesch13091987\Desktop\Breaking Point.lnk
2014-01-26 17:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-25 19:11 - 2014-01-24 00:36 - 00000000 ____D C:\Windows.old
2014-01-25 16:11 - 2014-01-25 16:11 - 00000000 ____D C:\Users\Hennesch13091987\Documents\Arma 3
2014-01-25 16:11 - 2014-01-25 16:11 - 00000000 ____D C:\ProgramData\Bohemia Interactive
2014-01-25 15:26 - 2014-01-25 15:26 - 00000222 _____ C:\Users\Hennesch13091987\Desktop\Arma 3.url
2014-01-25 15:15 - 2014-01-25 15:15 - 08161880 _____ (hxxp://www.goforfiles.com/) C:\Users\Hennesch13091987\Downloads\Arma-3-Demochip_downloader.exe
2014-01-25 15:13 - 2014-01-25 15:13 - 01059584 _____ C:\Users\Hennesch13091987\Downloads\Arma-3-Demo-Setup (1).exe
2014-01-25 15:13 - 2014-01-25 15:13 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Temp674d0da358a1a9802b2c032319229d91__
2014-01-25 15:13 - 2014-01-23 01:23 - 00000190 _____ C:\Users\Hennesch13091987\Desktop\Amazon.de.url
2014-01-25 15:12 - 2014-01-25 15:12 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Temp674d0da358a1a9802b2c032319229d91_
2014-01-25 15:11 - 2014-01-25 15:11 - 01059584 _____ C:\Users\Hennesch13091987\Downloads\Arma-3-Demo-Setup.exe
2014-01-25 02:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-24 21:43 - 2013-12-09 09:27 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Packages
2014-01-24 02:04 - 2014-01-11 19:00 - 00000000 ____D C:\Users\Hennesch13091987\Documents\DayZ
2014-01-24 01:29 - 2013-01-21 08:20 - 00001439 _____ C:\Setup.log
2014-01-24 01:27 - 2014-01-24 01:27 - 00000000 ____D C:\ProgramData\ATI
2014-01-24 01:27 - 2013-01-21 09:01 - 00016440 _____ C:\WINDOWS\system32\results.xml
2014-01-24 01:26 - 2014-01-24 00:37 - 00000000 ____D C:\Program Files\Elantech
2014-01-24 01:26 - 2014-01-24 00:37 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-24 01:26 - 2013-08-22 15:44 - 03365696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-24 01:25 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2014-01-24 01:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-24 01:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2014-01-24 01:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2014-01-24 01:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2014-01-24 01:25 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-24 01:12 - 2014-01-24 01:12 - 00000000 ____D C:\Program Files\DIFX
2014-01-24 01:10 - 2014-01-24 01:10 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2014-01-24 01:10 - 2013-01-21 08:49 - 00000000 ____D C:\ProgramData\AMD
2014-01-24 01:09 - 2014-01-24 01:09 - 00061191 _____ C:\WINDOWS\SysWOW64\CCCInstall_201401240109548838.log
2014-01-24 01:09 - 2013-01-21 08:48 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2014-01-24 01:08 - 2014-01-24 01:08 - 00000724 _____ C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk
2014-01-24 01:07 - 2014-01-24 01:07 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2014-01-24 01:06 - 2014-01-24 01:06 - 00054723 _____ C:\WINDOWS\SysWOW64\CCCInstall_201401240106379845.log
2014-01-24 01:03 - 2014-01-24 01:03 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Intel_Corporation
2014-01-24 01:01 - 2014-01-24 01:00 - 22015858 _____ C:\Users\Hennesch13091987\Downloads\SWUpdate_2.1.15.1.ZIP
2014-01-24 01:00 - 2013-01-21 08:20 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-24 00:59 - 2013-12-25 00:37 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Downloaded Installations
2014-01-24 00:58 - 2014-01-24 00:58 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-01-24 00:57 - 2014-01-24 00:57 - 01806364 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-01-24 00:57 - 2014-01-24 00:57 - 00000000 ____D C:\WINDOWS\RSTLog
2014-01-24 00:57 - 2014-01-24 00:57 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Intel Corporation
2014-01-24 00:57 - 2013-01-21 08:48 - 00003936 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2014-01-24 00:57 - 2013-01-21 08:48 - 00003690 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2014-01-24 00:57 - 2013-01-21 08:21 - 00000000 ____D C:\ProgramData\Intel
2014-01-24 00:57 - 2013-01-21 08:21 - 00000000 ____D C:\Program Files\Intel
2014-01-24 00:55 - 2014-01-24 00:55 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-24 00:54 - 2014-01-24 00:54 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2014-01-24 00:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2014-01-24 00:54 - 2013-01-21 08:20 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-24 00:53 - 2013-12-25 01:57 - 00000000 ____D C:\Program Files (x86)\Desura
2014-01-24 00:52 - 2013-12-09 09:56 - 00002054 _____ C:\Users\Public\Desktop\Support Center.lnk
2014-01-24 00:51 - 2014-01-24 00:51 - 00001446 _____ C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-24 00:51 - 2014-01-24 00:51 - 00000020 ___SH C:\Users\Hennesch13091987\ntuser.ini
2014-01-24 00:51 - 2013-12-09 09:28 - 00000000 ___RD C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Programme
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\ProgramData\Vorlagen
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\ProgramData\Startmenü
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\ProgramData\Dokumente
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2014-01-24 00:46 - 2014-01-24 00:46 - 00000000 _SHDL C:\Dokumente und Einstellungen
2014-01-24 00:46 - 2014-01-24 00:40 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2014-01-24 00:46 - 2014-01-24 00:40 - 00020958 _____ C:\WINDOWS\diagerr.xml
2014-01-24 00:46 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2014-01-24 00:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2014-01-24 00:46 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2014-01-24 00:45 - 2014-01-24 00:45 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-24 00:43 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2014-01-24 00:43 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2014-01-24 00:42 - 2014-01-21 20:38 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Equalizer APO 0.8.1
2014-01-24 00:42 - 2014-01-12 03:40 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2014-01-24 00:42 - 2014-01-11 21:47 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2014-01-24 00:42 - 2013-12-28 20:14 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-24 00:42 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-24 00:42 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-24 00:42 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-24 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-24 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2014-01-24 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2014-01-24 00:42 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2014-01-24 00:42 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-24 00:42 - 2013-01-22 02:00 - 00000000 ____D C:\WINDOWS\en-GB
2014-01-24 00:42 - 2013-01-21 08:56 - 00000000 ____D C:\WINDOWS\it
2014-01-24 00:42 - 2013-01-21 08:56 - 00000000 ____D C:\WINDOWS\fr
2014-01-24 00:42 - 2013-01-21 08:56 - 00000000 ____D C:\WINDOWS\de
2014-01-24 00:42 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2014-01-24 00:41 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-24 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-24 00:41 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-24 00:41 - 2012-08-05 22:11 - 00000000 ____D C:\ProgramData\PRICache
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Vorlagen
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Startmenü
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Netzwerkumgebung
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Lokale Einstellungen
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Eigene Dateien
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Druckumgebung
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Documents\Eigene Musik
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Documents\Eigene Bilder
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\AppData\Local\Verlauf
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\AppData\Local\Anwendungsdaten
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 _SHDL C:\Users\Hennesch13091987\Anwendungsdaten
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 ___RD C:\Users\Hennesch13091987\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-24 00:40 - 2014-01-24 00:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-24 00:40 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2014-01-24 00:38 - 2014-01-24 00:38 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsAlsDriver_01_11_00.Wdf
2014-01-24 00:38 - 2014-01-24 00:38 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2014-01-24 00:38 - 2014-01-23 00:10 - 00000000 ____D C:\AMD
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\Program Files\Realtek
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2014-01-24 00:37 - 2014-01-24 00:37 - 00000000 ____D C:\Program Files\AMD
2014-01-24 00:36 - 2014-01-24 00:36 - 00000000 __SHD C:\Recovery
2014-01-24 00:36 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2014-01-24 00:35 - 2014-01-24 00:35 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\Program Files\MSBuild
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-24 00:34 - 2014-01-24 00:34 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-24 00:34 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-23 23:58 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2014-01-23 19:45 - 2013-12-09 09:28 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\VirtualStore
2014-01-23 01:35 - 2014-01-23 01:35 - 00055563 _____ C:\WINDOWS\SysWOW64\CCCInstall_201401230135591051.log
2014-01-23 01:31 - 2014-01-23 01:30 - 251171207 _____ C:\Users\Hennesch13091987\Downloads\amd_catalyst_13.11_mobility_betav8.zip
2014-01-23 01:24 - 2014-01-23 01:24 - 00460112 _____ (techPowerUp (www.techpowerup.com)) C:\Users\Hennesch13091987\Downloads\GPU-Z.0.3.8.exe
2014-01-23 01:23 - 2014-01-23 01:23 - 01059584 _____ C:\Users\Hennesch13091987\Downloads\GPU-Z-Setup.exe
2014-01-23 01:23 - 2014-01-23 01:23 - 00000000 ____D C:\Users\Hennesch13091987\Downloads\GPU-Z
2014-01-23 01:23 - 2014-01-23 01:23 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\Temp674d0da358a1a9802b2c032319229d91
2014-01-23 01:21 - 2014-01-23 01:21 - 00000189 _____ C:\siw_debug.txt
2014-01-23 01:18 - 2014-01-23 01:18 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-23 01:18 - 2014-01-23 01:18 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\TuneUp Software
2014-01-23 01:17 - 2014-01-23 01:17 - 04524952 _____ (Topala Software Solutions ) C:\Users\Hennesch13091987\Downloads\siw13-setup.exe
2014-01-23 01:17 - 2014-01-23 01:17 - 00001063 _____ C:\Users\Hennesch13091987\Desktop\SIW Home Edition.lnk
2014-01-23 01:17 - 2014-01-23 01:17 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\OpenCandy
2014-01-23 01:17 - 2014-01-23 01:17 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\CrashRpt
2014-01-23 01:17 - 2014-01-23 01:17 - 00000000 ____D C:\Program Files (x86)\SIW 2013 Home Edition
2014-01-23 01:13 - 2014-01-23 01:12 - 182017816 _____ (Lenovo Group Limited ) C:\Users\Hennesch13091987\Downloads\hrd505ww.exe
2014-01-23 01:08 - 2014-01-23 01:07 - 207485208 _____ (Advanced Micro Devices, Inc.) C:\Users\Hennesch13091987\Downloads\13-9_win7_win8_64_dd_ccc_whql.exe
2014-01-23 00:31 - 2014-01-23 00:31 - 00003232 _____ C:\WINDOWS\System32\Tasks\{04549CA4-8B83-4FA3-B8D8-8685E6D8B609}
2014-01-23 00:29 - 2014-01-23 00:28 - 32769799 _____ C:\Users\Hennesch13091987\Downloads\20551337_17ebbb9839e7d70256b5c6305c252c3ffb9911d7.cab
2014-01-23 00:10 - 2014-01-23 00:10 - 01189560 _____ (AMD Inc.) C:\Users\Hennesch13091987\Downloads\catalyst_mobility_64-bit_util.exe
2014-01-23 00:07 - 2014-01-23 00:07 - 00791552 _____ (AMD) C:\Users\Hennesch13091987\Downloads\amddriverdownloader.exe
2014-01-23 00:07 - 2014-01-23 00:07 - 00791552 _____ (AMD) C:\Users\Hennesch13091987\Downloads\amddriverdownloader (1).exe
2014-01-21 20:39 - 2014-01-21 20:39 - 01398093 _____ C:\Users\Hennesch13091987\Downloads\EqualizerAPO64-0.8.1 (2).exe
2014-01-21 20:39 - 2014-01-21 20:39 - 01398093 _____ C:\Users\Hennesch13091987\Downloads\EqualizerAPO64-0.8.1 (1).exe
2014-01-21 20:38 - 2014-01-21 20:38 - 01398093 _____ C:\Users\Hennesch13091987\Downloads\EqualizerAPO64-0.8.1.exe
2014-01-21 20:38 - 2014-01-21 20:38 - 00000000 ____D C:\Program Files\EqualizerAPO
2014-01-19 15:06 - 2013-12-28 17:47 - 00000000 ____D C:\Users\Hennesch13091987\Documents\FIFA 14
2014-01-19 08:38 - 2014-01-27 21:56 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-16 00:01 - 2014-01-15 23:59 - 00000000 ____D C:\Users\Hennesch13091987\.gimp-2.8
2014-01-16 00:00 - 2014-01-16 00:00 - 00000913 _____ C:\Users\Hennesch13091987\AppData\Local\recently-used.xbel
2014-01-16 00:00 - 2014-01-16 00:00 - 00000000 ____D C:\Users\Hennesch13091987\.thumbnails
2014-01-15 23:59 - 2014-01-15 23:59 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\gegl-0.2
2014-01-15 23:58 - 2014-01-15 23:58 - 00000000 ____D C:\Program Files\GIMP 2
2014-01-15 23:58 - 2014-01-15 23:57 - 90396104 _____ (The GIMP Team ) C:\Users\Hennesch13091987\Downloads\gimp-2.8.10-setup.exe
2014-01-15 22:07 - 2013-12-10 22:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 22:06 - 2013-12-10 22:06 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 01:10 - 2014-01-15 01:08 - 00000000 ____D C:\Users\Hennesch13091987\Desktop\google
2014-01-15 01:09 - 2014-01-15 01:07 - 392142958 _____ C:\Users\Hennesch13091987\Downloads\mantaray-kot49h-factory-174ba74f.tgz
2014-01-15 01:08 - 2014-01-15 01:08 - 17969216 _____ C:\Users\Hennesch13091987\Downloads\Fastboot+ADB(20926).zip
2014-01-15 01:07 - 2014-01-15 01:07 - 09208320 _____ C:\Users\Hennesch13091987\Downloads\UniversalAdbDriverSetup6 (2).msi
2014-01-14 22:50 - 2014-01-14 22:50 - 00000000 ____D C:\Users\Hennesch13091987\Documents\Screenshots
2014-01-14 21:19 - 2014-01-14 21:16 - 00000000 ____D C:\Fraps
2014-01-14 21:16 - 2014-01-14 21:16 - 02326976 _____ (Beepa Pty Ltd) C:\Users\Hennesch13091987\Downloads\setup.exe
2014-01-14 21:16 - 2014-01-14 21:16 - 00000562 _____ C:\Users\Public\Desktop\Fraps.lnk
2014-01-12 15:54 - 2014-01-12 15:50 - 00000000 ____D C:\Users\Hennesch13091987\Documents\TmForever
2014-01-12 15:54 - 2014-01-12 15:50 - 00000000 ____D C:\ProgramData\TmForever
2014-01-12 15:50 - 2014-01-12 15:50 - 00001104 _____ C:\Users\Public\Desktop\TmNationsForever.lnk
2014-01-12 15:50 - 2014-01-12 15:48 - 00000000 ____D C:\Program Files (x86)\TmNationsForever
2014-01-12 15:48 - 2014-01-12 15:42 - 529246504 _____ C:\Users\Hennesch13091987\Downloads\tmnationsforever_setup.exe
2014-01-12 03:43 - 2013-12-24 12:29 - 00159232 ___SH C:\Users\Hennesch13091987\Downloads\Thumbs.db
2014-01-12 03:41 - 2014-01-12 03:41 - 03739157 _____ C:\Users\Hennesch13091987\Downloads\Paint.NET.3.5.11.Install.zip
2014-01-12 03:41 - 2014-01-12 03:41 - 00001288 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2014-01-12 03:41 - 2014-01-12 03:41 - 00000000 ____D C:\Program Files\Paint.NET
2014-01-12 03:40 - 2013-12-09 09:28 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\Adobe
2014-01-12 03:22 - 2014-01-12 03:22 - 31977536 _____ (Symantec Corporation) C:\Users\Hennesch13091987\Downloads\NortonIdentitySafe-v1-LB.exe
2014-01-11 21:47 - 2014-01-11 21:47 - 00001967 _____ C:\Users\Public\Desktop\Overwolf.lnk
2014-01-11 21:47 - 2014-01-11 21:47 - 00001158 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-11 21:47 - 2014-01-11 21:47 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2014-01-11 21:47 - 2014-01-11 21:47 - 00000000 ____D C:\Program Files (x86)\Overwolf
2014-01-11 21:45 - 2014-01-11 21:44 - 30095736 _____ (TeamSpeak Systems GmbH) C:\Users\Hennesch13091987\Downloads\TeamSpeak3-Client-win32-3.0.13.1.exe
2014-01-11 18:55 - 2014-01-11 18:55 - 00001045 _____ C:\Users\Public\Desktop\Überwachungstool für die Intel® Turbo-Boost-Technik 2.6.lnk
2014-01-11 18:54 - 2014-01-11 18:53 - 23871776 _____ (Macrovision Corporation) C:\Users\Hennesch13091987\Downloads\Intel_Turbo_boost_2.6.exe
2014-01-11 18:38 - 2014-01-11 18:38 - 00000222 _____ C:\Users\Hennesch13091987\Desktop\DayZ.url
2014-01-09 20:05 - 2014-01-09 20:05 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\OpenOffice
2014-01-06 23:53 - 2014-01-06 23:53 - 00001116 _____ C:\Users\Public\Desktop\OpenOffice 4.0.1.lnk
2014-01-06 23:52 - 2014-01-06 23:52 - 00000000 ____D C:\Users\Hennesch13091987\Desktop\OpenOffice 4.0.1 (de) Installation Files
2014-01-06 23:51 - 2014-01-06 23:50 - 38090813 _____ C:\Users\Hennesch13091987\Downloads\Minotaur.rar
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-05 23:59 - 2014-01-05 23:55 - 163606685 _____ C:\Users\Hennesch13091987\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de (1).exe
2014-01-05 23:53 - 2014-01-05 23:53 - 163600018 _____ C:\Users\Hennesch13091987\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de.exe
2014-01-03 00:11 - 2014-01-03 00:11 - 03439706 _____ C:\Users\Hennesch13091987\Downloads\HowMosquitoBecameHuman.zip
2014-01-03 00:11 - 2014-01-03 00:11 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Roaming\WinRAR
2014-01-02 01:48 - 2014-01-02 01:48 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2014-01-02 01:48 - 2014-01-02 01:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-02 01:46 - 2014-01-02 01:46 - 13079688 _____ (Microsoft Corporation) C:\Users\Hennesch13091987\Downloads\Silverlight_x64.exe
2013-12-30 22:14 - 2013-12-27 21:24 - 00000000 ____D C:\Users\Hennesch13091987\Documents\Rockstar Games
2013-12-30 20:56 - 2013-12-30 20:56 - 00000000 ____D C:\Users\Hennesch13091987\Desktop\Max Payne 3
2013-12-30 03:47 - 2013-12-30 03:47 - 00000000 ____D C:\Users\Hennesch13091987\AppData\Local\AskPartnerNetwork
Files to move or delete:
====================
C:\ProgramData\MakeMarkerFile.exe
C:\Users\EasySurvey\EasySurvey.exe
Some content of TEMP:
====================
C:\Users\Hennesch13091987\AppData\Local\Temp\avgnt.exe
C:\Users\Hennesch13091987\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpqmhbwe.dll
C:\Users\Hennesch13091987\AppData\Local\Temp\HitmanPro.exe
C:\Users\Hennesch13091987\AppData\Local\Temp\Kickstarter.exe
C:\Users\Hennesch13091987\AppData\Local\Temp\SHSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-24 00:37
==================== End Of Log ============================
|
|
29.01.2014, 20:26
| #4 |
| | Angela Merkel BKA TrojanerCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2014 01
Ran by Hennesch13091987 at 2014-01-29 20:21:11
Running from C:\Users\Hennesch13091987\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Absolute Reminder (x32 Version: 2.1.0.8 - Absolute Software)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (x32 Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader X (10.1.3) MUI (x32 Version: 10.1.3 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.15.100.30830 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.0830.1944.33589 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
Arma 3 (x32 Version: - Bohemia Interactive)
Avira SearchFree Toolbar (x32 Version: 12.10.0.2951 - APN, LLC)
Bitcasa version 0.9.20.4135 (Version: 0.9.20.4135 - Bitcasa Inc.)
Brother MFL-Pro Suite DCP-J140W (x32 Version: 1.1.5.0 - Brother Industries, Ltd.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 4.10 - Piriform)
CyberLink PowerDVD 10 (x32 Version: 10.0.4421.02 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.4421.02 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DayZ (x32 Version: - Bohemia Interactive)
Desura (x32 Version: 100.53 - Desura)
Dropbox (HKCU Version: 2.6.2 - Dropbox, Inc.)
Easy File Share (x32 Version: 1.3.6 - Samsung Electronics CO.,LTD.)
Elements 11 Organizer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
E-POP (x32 Version: 1.0.1 - Samsung Electronics CO., LTD.)
Equalizer APO (Version: 0.8.1 - )
ETDWare X64 11.7.19.9_WHQL (Version: 11.7.19.9 - ELAN Microelectronic Corp.)
FIFA 14 (x32 Version: 1.0.0.4 - Electronic Arts)
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Fraps (x32 Version: - )
Galerie de photos (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
GIMP 2.8.10 (Version: 2.8.10 - The GIMP Team)
Google Chrome (x32 Version: 34.0.1809.0 - Google Inc.)
Google Chrome Canary (HKCU Version: 34.0.1810.0 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Help Desk (Version: 1.0.96 - Samsung Electronics CO., LTD.)
HitmanPro 3.7 (Version: 3.7.8.208 - SurfRight B.V.)
Hotline Miami (x32 Version: - Dennaton Games)
HTC Driver Installer (x32 Version: 4.1.0.001 - HTC Corporation)
HTC Sync Manager (x32 Version: 2.4.11.0 - HTC)
Intel AppUp(SM) center (x32 Version: 3.6.1.33070.11 - Intel)
Intel(R) Manageability Engine Firmware Recovery Agent (x32 Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 9.5.15.1730 - Intel Corporation)
Intel(R) PRO/Wireless Driver (Version: 16.01.5000.0577 - Intel Corporation) Hidden
Intel(R) Processor Graphics (x32 Version: 10.18.10.3304 - Intel Corporation)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (Version: 16.1.1.0084 - Intel Corporation) Hidden
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (Version: 3.5.40.0 - Intel Corporation)
Intel® PROSet/Wireless Software (x32 Version: 16.1.5 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (Version: 16.01.5000.0269 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
IntelliMemory (Version: 1.0.32.0 - Condusiv Technologies)
IPTInstaller (x32 Version: 4.0.9 - HTC)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (x32 Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (x32 Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
OEM Application Profile (x32 Version: 1.00.0004 - Advanced Micro Devices, Inc.)
OpenAL (x32 Version: - )
OpenOffice 4.0.1 (x32 Version: 4.01.9714 - Apache Software Foundation)
Origin (x32 Version: 9.3.11.2762 - Electronic Arts, Inc.)
Overwolf (x32 Version: 0.47.284 - Overwolf)
Paint.NET v3.5.11 (Version: 3.61.0 - dotPDN LLC)
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Plants vs. Zombies (x32 Version: - PopCap Games)
PSE11 STI Installer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Quick Starter (Version: 1.0.2 - Samsung Electronics CO., LTD.)
Raccolta foto (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Realtek Card Reader (x32 Version: 6.2.9200.39048 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (x32 Version: 8.19.726.2013 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6818 - Realtek Semiconductor Corp.)
Recovery (x32 Version: 6.0.10.0 - Samsung Electronics CO., LTD.)
Rockstar Games Social Club (x32 Version: 1.1.0.6 - Rockstar Games)
S Agent (Version: 1.1.45 - Samsung Electronics CO., LTD.) Hidden
Settings (x32 Version: 2.0.1 - Samsung Electronics CO., LTD.)
SIW 2013 Home Edition (x32 Version: 2013.05.14 - Topala Software Solutions)
SRS Premium Sound (x32 Version: 1.00.4700 - DTS, Inc.)
SRWare Iron Version SRWare Iron 31.0.1700.0 (x32 Version: SRWare Iron 31.0.1700.0 - SRWare)
Steam (x32 Version: - Valve Corporation)
Support Center (Version: 2.1.1201 - Samsung Electronics CO., LTD.)
Support Center FAQ (x32 Version: 1.0.11 - Samsung Electronics CO., LTD.) Hidden
SW Update (x32 Version: 2.1.21 - Samsung Electronics CO., LTD.)
TeamSpeak 3 Client (x32 Version: 3.0.13 - TeamSpeak Systems GmbH)
TmNationsForever (x32 Version: - Nadeo)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.6 (Version: 2.6.2.0 - Intel)
Universal Adb Driver (x32 Version: 1.0.0 - ClockworkMod)
User Guide (x32 Version: 1.1.00 - Samsung Electronics CO., LTD.)
Windows Live (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows-Treiberpaket - Samsung Electronics Co. Ltd. (RadioHIDMini) HIDClass (08/23/2013 6.2.8400.4218) (Version: 08/23/2013 6.2.8400.4218 - Samsung Electronics Co. Ltd.)
WinRAR 5.01 (64-Bit) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
25-01-2014 15:10:38 DirectX wurde installiert
26-01-2014 23:21:56 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B3AADC5-2F83-4B29-B39D-BE2217BB201E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001Core => C:\Users\Hennesch13091987\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-27] (Google Inc.)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {17BAF481-4122-4490-BE64-D6271AFB7A91} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {17EBA150-08A3-4351-8B15-26EB8B5C2FE8} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-28] (Adobe Systems Incorporated)
Task: {1B1DB268-6B80-4FC9-8A9E-65A354B7CA2E} - System32\Tasks\advRecovery => C:\Program Files\Samsung\Recovery\WCScheduler.exe [2013-08-23] (SEC)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {394AD582-243B-463D-955D-C70BCDE2CA9C} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2013-10-16] (Samsung Electronics CO., LTD.)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {5AE56F8E-9A26-4350-B095-F50C3135697B} - System32\Tasks\Settings => C:\Program Files (x86)\Samsung\Settings\sSettings.exe [2013-01-14] (Samsung Electronics CO., LTD.)
Task: {5E77FCD1-245B-4067-8CAC-BAD0E1FF34F6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001UA => C:\Users\Hennesch13091987\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-27] (Google Inc.)
Task: {605CEA9D-915B-4615-9881-E27BA8AE95FD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-09] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7B3B034F-A459-47F3-AE6D-64E870014A60} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9AA19F3F-7BF9-4115-ADDB-6857B0572E0A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-09] (Google Inc.)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EE9FFE79-4674-4009-86DB-CCB04C9E0E85} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001Core.job => C:\Users\Hennesch13091987\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1696205027-49635444-304707573-1001UA.job => C:\Users\Hennesch13091987\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-12-09 12:08 - 2013-12-09 12:08 - 00045608 _____ () C:\Program Files (x86)\Overwolf\x64\OWExplorer-20125.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-05-30 13:15 - 2012-05-30 13:15 - 00404008 _____ () C:\Program Files\Intel\TurboBoost\de\SignalIslandUi.resources.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00039464 _____ () C:\Program Files (x86)\Overwolf\x64\OWLog.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00721960 _____ () C:\Program Files (x86)\Overwolf\x64\OWExplorerLauncher.dll
2013-10-16 19:15 - 2013-10-16 19:15 - 00088624 _____ () C:\Program Files\Samsung\S Agent\ToastX64.dll
2013-12-23 22:58 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-11-15 16:45 - 2013-11-15 16:45 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2013-11-15 16:46 - 2013-11-15 16:46 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2013-11-15 16:46 - 2013-11-15 16:46 - 00044392 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2013-11-15 16:46 - 2013-11-15 16:46 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2013-11-15 16:46 - 2013-11-15 16:46 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2013-11-15 16:47 - 2013-11-15 16:47 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2013-11-15 16:48 - 2013-11-15 16:48 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 00029232 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdWrapper.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 01081904 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmd.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 00111152 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsBase.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 00056440 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\HookDllPS2.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 00211064 _____ () C:\Program Files (x86)\Samsung\Settings\CmdServer\WinCRT.dll
2014-01-28 23:59 - 2014-01-28 10:55 - 00061720 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1809.0\chrome_elf.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00079400 _____ () C:\Program Files (x86)\Overwolf\OWExplorer-20125.dll
2014-01-28 23:59 - 2014-01-28 10:55 - 00667928 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1809.0\libglesv2.dll
2014-01-28 23:59 - 2014-01-28 10:55 - 00092952 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1809.0\libegl.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 00027184 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsAPI.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 00111152 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsBase.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 00060976 _____ () C:\Program Files (x86)\Samsung\Settings\EasyMovieEnhancer.dll
2013-01-14 04:13 - 2013-01-14 04:13 - 00103472 _____ () C:\Program Files (x86)\Samsung\Settings\EasySettingsCmdClient.dll
2014-01-28 23:59 - 2014-01-28 10:55 - 04078360 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1809.0\pdf.dll
2014-01-28 23:59 - 2014-01-28 10:55 - 00396056 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1809.0\ppGoogleNaClPluginChrome.dll
2014-01-28 23:59 - 2014-01-28 10:55 - 01647384 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1809.0\ffmpegsumo.dll
2014-01-28 23:59 - 2014-01-28 10:55 - 13615896 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1809.0\PepperFlash\pepflashplayer.dll
2014-01-29 18:14 - 2014-01-29 18:15 - 00962560 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2014-01-29 18:13 - 2014-01-29 18:15 - 00024064 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2014-01-29 18:13 - 2014-01-29 18:15 - 00025088 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2014-01-29 18:13 - 2014-01-29 18:15 - 00217088 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2014-01-29 18:13 - 2014-01-29 18:15 - 00261632 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2014-01-29 18:13 - 2014-01-29 18:15 - 00019968 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2014-01-29 18:13 - 2014-01-29 18:15 - 00302592 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2014-01-29 18:13 - 2014-01-29 18:15 - 00018944 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00015288 _____ () C:\Program Files (x86)\Overwolf\ODK.AddIns.V2.HostView.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00134696 _____ () C:\Program Files (x86)\Overwolf\OWService.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00970792 _____ () C:\Program Files (x86)\Overwolf\OWServer.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00038440 _____ () C:\Program Files (x86)\Overwolf\OWLog.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00839720 _____ () C:\Program Files (x86)\Overwolf\OWAgent.dll
2014-01-29 00:18 - 2014-01-28 22:44 - 00061720 _____ () C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\34.0.1810.0\chrome_elf.dll
2014-01-29 00:18 - 2014-01-28 22:45 - 00667928 _____ () C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\34.0.1810.0\libglesv2.dll
2014-01-29 00:18 - 2014-01-28 22:44 - 00092952 _____ () C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\34.0.1810.0\libegl.dll
2014-01-29 00:18 - 2014-01-28 22:45 - 04078360 _____ () C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\34.0.1810.0\pdf.dll
2014-01-29 00:18 - 2014-01-28 22:45 - 00396056 _____ () C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\34.0.1810.0\ppGoogleNaClPluginChrome.dll
2014-01-29 00:18 - 2014-01-28 22:44 - 01647384 _____ () C:\Users\Hennesch13091987\AppData\Local\Google\Chrome SxS\Application\34.0.1810.0\ffmpegsumo.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00029224 _____ () C:\Program Files (x86)\Overwolf\OWExplorerLauncher.dll
2013-12-24 12:39 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2014-01-24 00:55 - 2013-09-16 12:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-01-29 19:50 - 2014-01-29 19:50 - 00041984 _____ () C:\Users\Hennesch13091987\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpqmhbwe.dll
2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Hennesch13091987\AppData\Roaming\Dropbox\bin\libcef.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Hennesch13091987\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Could not start eventlog service, could not read events.
Der angeforderte Dienst wurde bereits gestartet.
Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.
==================== Memory info ===========================
Percentage of memory in use: 72%
Total physical RAM: 6028.52 MB
Available physical RAM: 1660.4 MB
Total Pagefile: 13085.77 MB
Available Pagefile: 6511.54 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:96.52 GB) (Free:17.69 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 119 GB) (Disk ID: 60513A2C)
Partition: GPT Partition Type
==================== End Of Log ============================
|
|
30.01.2014, 16:26
| #5 |
| /// the machine /// TB-Ausbilder | Angela Merkel BKA Trojaner Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Angela Merkel BKA Trojaner |
| ahnung, bka trojaner, browser, chrome, fake, fenster, hitman, keine ahnung, konnte, laden, manager, merkel, richtiger, schliessen, stick, task manager, troja, trojane, trojaner, usb, usb stick, versuch, versucht, windows 8.1 |
Linear-Darstellung
