Log-Analyse und Auswertung: Windows 7: Festplatte füllt sich von selbstWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
03.02.2014, 16:30 | #16 |
/// the machine /// TB-Ausbilder | Windows 7: Festplatte füllt sich von selbst Dann poste mal das Log wenn fertig
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
03.02.2014, 20:25 | #17 |
| Windows 7: Festplatte füllt sich von selbst Kurzes Updated.
__________________Also Avast geht schon viel schneller und hat schon 58 % geladen ich werde vielleicht erst morgen abend oder so fertig geladen haben Ok mach ich mit FRST oder? |
04.02.2014, 13:48 | #18 |
/// the machine /// TB-Ausbilder | Windows 7: Festplatte füllt sich von selbst ja
__________________ |
04.02.2014, 16:04 | #19 |
| Windows 7: Festplatte füllt sich von selbst Also hat doch nicht solange gedauert. Ich hab nicht so richtig gewusst ob ich die infizierten Dateien löschen sollte oder in den Container, ich hab im Internet geschaut und die haben gesagt es wäre besser wenn ich sie in den Container tuhe :P Sag mir wenn ich sie lieber löschen soll dann mach ich es auch ^^ Ich hab ein Screenshot von den Bedrohungen gemacht, du kannst es dir unten anschauen Hier ein frisches log FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 03 Ran by Artur (administrator) on ARTUR-PC on 04-02-2014 16:00:29 Running from C:\Users\Artur\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Google Inc.) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler64.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (NETGEAR) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE () C:\Program Files (x86)\RocketDock\RocketDock.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Valve Corporation) D:\games\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\taskmgr.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Nvtmru] - "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1179576 2014-01-21] (NVIDIA Corporation) HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation) HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4767304 2013-03-07] (AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813200 2014-01-23] (LogMeIn Inc.) HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-04-04] (Microsoft Corporation) HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\Run: [NETGEARGenie] - C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [1041736 2012-10-16] () HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\Run: [RocketDock] - C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] () HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\Run: [Steam] - D:\games\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation) HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\MountPoints2: {196d3057-941e-11e2-b340-f84a0fc85bec} - K:\PsychoLauncher.exe HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\MountPoints2: {7013adca-9418-11e2-bf95-806e6f6e6963} - E:\Autorun.exe Startup: C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\zzlib.lnk ShortcutTarget: zzlib.lnk -> C:\Program Files (x86)\Valve\platform\zzlib.exe () ==================== Internet (Whitelisted) ==================== SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\\BingExt.dll No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll No File BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll" No File Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\\BingExt.dll No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Chrome: ======= CHR HomePage: hxxp://feed.snap.do/?publisher=SMTM&dpid=SMTM&co=DE&userid=0b2dc656-ab00-42d3-9e2b-81f42689830f&searchtype=hp CHR Extension: (Google Drive) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-23] CHR Extension: (YouTube) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-23] CHR Extension: (Adblock Plus) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-11-23] CHR Extension: (Google-Suche) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-23] CHR Extension: (Grey With Dark Blue Highlight Chrome Theme) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gllabpbebalomehiffcgeaimmeecikec [2013-11-23] CHR Extension: (avast! WebRep) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2013-11-24] CHR Extension: (Google Wallet) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-23] CHR Extension: (Google Mail) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-23] CHR HKLM-x32\...\Chrome\Extension: [fhmbbigfkgcficoehkhadjbokhhaijea] - C:\Program Files (x86)\LyricsPlug\Chrome.crx [2013-11-23] CHR HKLM-x32\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-03-24] ==================== Services (Whitelisted) ================= S2 Adobe Licensing Console; C:\Windows\SysWOW64\lnsecsl.exe [905070 2013-03-24] ( ) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [45248 2013-03-07] (AVAST Software) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-12-13] (LogMeIn, Inc.) R2 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [231752 2012-09-25] (NETGEAR) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4694056 2013-03-14] (INCA Internet Co., Ltd.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-08] () R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation) S2 TuneUp.UtilitiesSvc; "C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe" [x] ==================== Drivers (Whitelisted) ==================== R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-03-07] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-03-07] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [70992 2013-03-07] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-03-07] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1025808 2013-03-07] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [377920 2013-03-07] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [68920 2013-03-07] (AVAST Software) S3 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178624 2013-03-07] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-11] (Disc Soft Ltd) R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () R3 NIWinCDEmu; C:\Windows\System32\DRIVERS\NIWinCDEmu.sys [111696 2013-06-08] () R2 NPF; C:\Windows\system32\drivers\npf.sys [35344 2013-04-26] (CACE Technologies, Inc.) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-11] (Duplex Secure Ltd.) S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-10-16] (Anchorfree Inc.) U3 a2uowq9x; C:\Windows\System32\Drivers\a2uowq9x.sys [0 ] (Microsoft Corporation) S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x] U0 Partizan; system32\drivers\Partizan.sys [x] S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [x] U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [x] S3 xhunter1; \??\C:\Windows\xhunter1.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-04 16:00 - 2014-02-04 16:00 - 00012944 _____ () C:\Users\Artur\Desktop\FRST.txt 2014-02-03 21:33 - 2014-02-03 21:33 - 00391774 _____ () C:\Users\Artur\Downloads\DSfix22.zip 2014-02-03 20:27 - 2014-02-03 20:27 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-02-03 20:27 - 2014-02-03 20:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-02-03 20:21 - 2014-02-03 20:23 - 13079688 _____ (Microsoft Corporation) C:\Users\Artur\Downloads\Silverlight_x64.exe 2014-02-02 22:57 - 2014-02-02 22:59 - 00107129 _____ () C:\Windows\SysWOW64\key.dat 2014-02-02 17:26 - 2014-02-02 17:28 - 90578216 _____ (AVAST Software) C:\Users\Artur\Downloads\avast_free_antivirus_setup.exe 2014-02-01 20:23 - 2014-02-01 20:23 - 00000000 ____D () C:\Users\Artur\AppData\Local\EdgeOfReality 2014-02-01 18:03 - 2014-02-01 18:03 - 00987425 _____ () C:\Users\Artur\Desktop\SecurityCheck.exe 2014-02-01 18:00 - 2014-02-01 18:00 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-02-01 14:00 - 2014-02-01 14:00 - 01037068 _____ (Thisisu) C:\Users\Artur\Desktop\JRT.exe 2014-02-01 13:45 - 2014-02-01 13:46 - 01166132 _____ () C:\Users\Artur\Desktop\adwcleaner (1).exe 2014-01-31 16:21 - 2014-01-31 16:21 - 00000000 ____D () C:\Qoobox 2014-01-31 16:18 - 2014-01-31 16:18 - 00001146 _____ () C:\Users\Artur\Desktop\ComboFix.exe - Verknüpfung.lnk 2014-01-31 15:36 - 2014-01-31 15:36 - 00015220 ____H () C:\Users\Artur\Desktop\watwatwat.mp3.zpa 2014-01-31 15:32 - 2014-01-31 15:33 - 05105783 _____ () C:\Users\Artur\Downloads\wrapper_2.4.18.zip 2014-01-31 15:26 - 2014-01-31 15:26 - 00188416 _____ () C:\Users\Artur\Desktop\JKuchRemixRetrograde - recovered.flp 2014-01-30 17:37 - 2014-01-30 17:37 - 00003086 _____ () C:\Windows\System32\Tasks\{8C509B95-4AED-4364-AE28-EC7D28D746E8} 2014-01-30 17:21 - 2014-01-31 17:11 - 00000000 ___SD () C:\32788R22FWJFW 2014-01-30 17:21 - 2014-01-30 17:38 - 00000000 ____D () C:\Windows\erdnt 2014-01-30 06:39 - 2014-02-04 15:50 - 00002744 _____ () C:\Windows\setupact.log 2014-01-30 06:39 - 2014-02-02 19:47 - 00101968 _____ () C:\Windows\PFRO.log 2014-01-30 06:39 - 2014-01-30 06:39 - 00000000 _____ () C:\Windows\setuperr.log 2014-01-30 00:21 - 2014-01-30 17:49 - 00000870 _____ () C:\Users\Artur\Desktop\SequoiaView.lnk 2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D () C:\Program Files\SequoiaView 2014-01-27 17:48 - 2014-01-30 19:13 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Bioshock 2014-01-27 17:48 - 2014-01-27 17:55 - 00000000 ____D () C:\Users\Artur\Documents\Bioshock 2014-01-27 15:26 - 2013-12-27 19:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2014-01-27 15:26 - 2013-12-27 19:42 - 00033056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2014-01-27 13:21 - 2014-01-27 13:21 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-01-26 01:51 - 2014-01-26 01:51 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help 2014-01-26 01:51 - 2014-01-26 01:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help 2014-01-25 22:19 - 2014-01-25 22:45 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Blueberry 2014-01-25 22:19 - 2014-01-25 22:19 - 00000000 ____D () C:\Users\Artur\Documents\BB FlashBack Movies 2014-01-25 22:18 - 2014-01-25 22:19 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\LogSys 2014-01-25 22:18 - 2014-01-25 22:18 - 00037376 _____ (Blueberry Consultants Ltd.) C:\Windows\system32\bbcap.dll 2014-01-25 22:18 - 2014-01-25 22:18 - 00005632 _____ (Blueberry Consultants Ltd.) C:\Windows\system32\bbchlp.dll 2014-01-25 22:18 - 2014-01-25 22:18 - 00004608 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\bbcap.sys 2014-01-25 22:18 - 2014-01-25 22:18 - 00000000 ____D () C:\ProgramData\LogSys 2014-01-25 20:56 - 2014-01-25 21:27 - 00000000 ____D () C:\Users\Artur\Documents\Ableton 2014-01-25 20:53 - 2014-01-25 20:57 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Ableton 2014-01-25 20:53 - 2014-01-25 20:53 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software 2014-01-24 21:17 - 2014-01-24 21:17 - 00002937 _____ () C:\Users\Artur\Desktop\Microsoft PowerPoint 2010.lnk 2014-01-24 21:17 - 2014-01-24 21:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-01-24 21:15 - 2014-01-24 21:15 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-01-24 21:15 - 2014-01-24 21:15 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-01-24 21:14 - 2014-01-30 07:16 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-01-24 21:14 - 2014-01-24 21:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-01-24 21:14 - 2014-01-24 21:14 - 00000000 ____D () C:\Users\Artur\AppData\Local\Microsoft Help 2014-01-19 00:15 - 2014-01-19 00:15 - 00001085 _____ () C:\Users\Artur\Desktop\Cheat Engine.lnk 2014-01-19 00:15 - 2014-01-19 00:15 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3 2014-01-18 21:37 - 2014-01-18 21:37 - 00000851 _____ () C:\Users\Artur\Desktop\µTorrent.lnk 2014-01-18 21:37 - 2014-01-18 21:37 - 00000831 _____ () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2014-01-18 12:40 - 2014-01-18 12:40 - 00002773 _____ () C:\Users\Artur\.recently-used.xbel 2014-01-17 06:49 - 2014-01-17 06:49 - 00000000 ____D () C:\ProgramData\Oracle 2014-01-17 06:49 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-01-17 06:49 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-01-17 06:49 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-01-17 06:49 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-01-17 06:48 - 2014-01-17 06:49 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-15 12:30 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 12:29 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 12:29 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-11 17:14 - 2014-01-15 21:42 - 00000000 ____D () C:\Users\Artur\Desktop\Neuer Ordner 2014-01-09 21:03 - 2014-01-09 21:03 - 00000000 ____D () C:\Users\Artur\Documents\MGR 2014-01-09 19:25 - 2014-01-09 19:25 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-01-09 19:24 - 2014-01-09 19:24 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-01-09 19:24 - 2014-01-09 19:24 - 00000000 ____D () C:\Program Files\Realtek 2014-01-09 19:22 - 2000-01-01 01:00 - 05681192 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-01-09 19:22 - 2000-01-01 01:00 - 03707864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2014-01-09 19:22 - 2000-01-01 01:00 - 02810072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 02587864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2014-01-09 19:22 - 2000-01-01 01:00 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 01014016 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00897792 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00722688 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00244480 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 38385664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2014-01-09 19:21 - 2000-01-01 01:00 - 27644160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 05751576 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 03714304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 01286400 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 01286360 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 01021656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00929080 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00907008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00681905 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-01-09 19:21 - 2000-01-01 01:00 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00153304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2014-01-09 19:20 - 2014-01-09 19:20 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-01-09 19:20 - 2000-01-01 01:00 - 14152960 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 06217904 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 02036992 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01938608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01921792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01345280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01084160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01012992 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00790272 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00605496 _____ () C:\Windows\system32\audioLibVc.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00313520 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00260272 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2014-01-09 18:56 - 2014-01-09 18:59 - 00000000 ____D () C:\Users\Artur\AppData\Local\NVIDIA Corporation 2014-01-09 18:42 - 2014-01-09 18:59 - 00000000 ____D () C:\Users\Artur\AppData\Local\NVIDIA 2014-01-09 18:40 - 2014-01-21 03:53 - 01179576 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-01-09 18:40 - 2014-01-21 03:53 - 01048152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2014-01-09 18:40 - 2014-01-09 18:40 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk 2014-01-09 18:36 - 2014-01-09 18:36 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-01-09 18:24 - 2013-12-27 19:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2014-01-09 18:24 - 2000-01-01 01:00 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00357152 _____ () C:\Windows\system32\NvIFROpenGL.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00314656 _____ () C:\Windows\SysWOW64\NvIFROpenGL.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2014-01-09 18:24 - 2000-01-01 01:00 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00023754 _____ () C:\Windows\system32\nvinfo.pb 2014-01-09 17:50 - 2014-02-02 19:51 - 00000410 _____ () C:\Windows\Tasks\SlimDrivers Startup.job 2014-01-09 17:50 - 2014-02-02 19:50 - 00002836 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup 2014-01-09 17:50 - 2014-01-09 17:50 - 00000000 ____D () C:\Users\Artur\AppData\Local\SlimWare Utilities Inc 2014-01-09 17:49 - 2014-01-09 17:49 - 00002467 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk 2014-01-09 17:49 - 2014-01-09 17:49 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers 2014-01-09 17:43 - 2014-01-09 17:43 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-01-09 17:05 - 2014-02-01 17:14 - 02080256 _____ (Farbar) C:\Users\Artur\Desktop\FRST64.exe 2014-01-09 15:43 - 2014-01-09 15:43 - 00001115 _____ () C:\Users\Artur\Desktop\Free Disk Analyzer.lnk 2014-01-09 15:29 - 2014-01-09 15:29 - 00000000 ____D () C:\Users\Artur\AppData\Local\DiskAnalyzer 2014-01-09 15:29 - 2014-01-09 15:29 - 00000000 ____D () C:\Program Files (x86)\Free Disk Analyzer 2014-01-09 15:28 - 2014-01-09 15:28 - 00000000 ____D () C:\ProgramData\DiskAnalyzer 2014-01-09 06:59 - 2014-02-04 16:00 - 00000000 ____D () C:\FRST 2014-01-07 22:59 - 2014-01-07 22:59 - 01233962 _____ () C:\Users\Artur\Downloads\adwcleaner.exe 2014-01-07 22:51 - 2014-01-07 22:51 - 00000002 RSHOT () C:\Windows\winstart.bat 2014-01-07 22:51 - 2014-01-07 22:51 - 00000002 RSHOT () C:\Windows\SysWOW64\AUTOEXEC.NT 2014-01-07 22:51 - 2014-01-07 22:51 - 00000000 ____D () C:\Users\Artur\Documents\RegRun2 2014-01-07 22:50 - 2014-01-07 22:53 - 00000000 ____D () C:\Program Files (x86)\UnHackMe 2014-01-07 21:41 - 2014-01-07 21:41 - 00528888 _____ () C:\Users\Artur\Documents\disktec.zip ==================== One Month Modified Files and Folders ======= 2014-02-04 16:00 - 2014-02-04 16:00 - 00012944 _____ () C:\Users\Artur\Desktop\FRST.txt 2014-02-04 16:00 - 2014-01-09 06:59 - 00000000 ____D () C:\FRST 2014-02-04 15:59 - 2013-11-23 09:31 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-04 15:50 - 2014-01-30 06:39 - 00002744 _____ () C:\Windows\setupact.log 2014-02-04 15:14 - 2013-03-23 23:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-04 13:51 - 2013-12-18 19:51 - 00001954 _____ () C:\Windows\Tasks\FTdownloader V6.0-chromeinstaller.job 2014-02-04 13:51 - 2013-12-18 19:51 - 00001332 _____ () C:\Windows\Tasks\FTdownloader V6.0-updater.job 2014-02-04 03:58 - 2013-11-23 09:33 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-02-03 21:33 - 2014-02-03 21:33 - 00391774 _____ () C:\Users\Artur\Downloads\DSfix22.zip 2014-02-03 20:27 - 2014-02-03 20:27 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-02-03 20:27 - 2014-02-03 20:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-02-03 20:23 - 2014-02-03 20:21 - 13079688 _____ (Microsoft Corporation) C:\Users\Artur\Downloads\Silverlight_x64.exe 2014-02-03 19:56 - 2013-03-24 01:22 - 01891105 _____ () C:\Windows\WindowsUpdate.log 2014-02-03 18:59 - 2013-11-23 09:31 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-02 22:59 - 2014-02-02 22:57 - 00107129 _____ () C:\Windows\SysWOW64\key.dat 2014-02-02 20:01 - 2009-07-14 05:45 - 00030864 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-02 20:01 - 2009-07-14 05:45 - 00030864 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-02 19:52 - 2014-01-03 18:57 - 00000000 ____D () C:\Users\Artur\AppData\Local\LogMeIn Hamachi 2014-02-02 19:51 - 2014-01-09 17:50 - 00000410 _____ () C:\Windows\Tasks\SlimDrivers Startup.job 2014-02-02 19:50 - 2014-01-09 17:50 - 00002836 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup 2014-02-02 19:47 - 2014-01-30 06:39 - 00101968 _____ () C:\Windows\PFRO.log 2014-02-02 19:47 - 2013-03-24 01:50 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-02-02 19:47 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-02 17:30 - 2013-03-23 22:12 - 00000000 ____D () C:\ProgramData\AVAST Software 2014-02-02 17:28 - 2014-02-02 17:26 - 90578216 _____ (AVAST Software) C:\Users\Artur\Downloads\avast_free_antivirus_setup.exe 2014-02-02 11:47 - 2013-04-19 20:23 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\TS3Client 2014-02-02 10:23 - 2013-04-06 11:05 - 00000000 ____D () C:\Program Files (x86)\Adobe Flash CS3 Professional 2014-02-01 21:18 - 2013-06-22 00:17 - 01768246 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-02-01 21:18 - 2009-07-14 18:58 - 00767670 _____ () C:\Windows\system32\perfh007.dat 2014-02-01 21:18 - 2009-07-14 18:58 - 00173144 _____ () C:\Windows\system32\perfc007.dat 2014-02-01 21:18 - 2009-07-14 06:13 - 01768246 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-02-01 20:52 - 2013-03-26 20:05 - 00000000 ____D () C:\ProgramData\Package Cache 2014-02-01 20:23 - 2014-02-01 20:23 - 00000000 ____D () C:\Users\Artur\AppData\Local\EdgeOfReality 2014-02-01 18:03 - 2014-02-01 18:03 - 00987425 _____ () C:\Users\Artur\Desktop\SecurityCheck.exe 2014-02-01 18:00 - 2014-02-01 18:00 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-02-01 17:48 - 2013-12-19 12:39 - 00000000 ____D () C:\AdwCleaner 2014-02-01 17:14 - 2014-01-09 17:05 - 02080256 _____ (Farbar) C:\Users\Artur\Desktop\FRST64.exe 2014-02-01 14:00 - 2014-02-01 14:00 - 01037068 _____ (Thisisu) C:\Users\Artur\Desktop\JRT.exe 2014-02-01 13:46 - 2014-02-01 13:45 - 01166132 _____ () C:\Users\Artur\Desktop\adwcleaner (1).exe 2014-02-01 02:32 - 2013-03-24 11:01 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Skype 2014-01-31 17:11 - 2014-01-30 17:21 - 00000000 ___SD () C:\32788R22FWJFW 2014-01-31 16:21 - 2014-01-31 16:21 - 00000000 ____D () C:\Qoobox 2014-01-31 16:18 - 2014-01-31 16:18 - 00001146 _____ () C:\Users\Artur\Desktop\ComboFix.exe - Verknüpfung.lnk 2014-01-31 15:36 - 2014-01-31 15:36 - 00015220 ____H () C:\Users\Artur\Desktop\watwatwat.mp3.zpa 2014-01-31 15:33 - 2014-01-31 15:32 - 05105783 _____ () C:\Users\Artur\Downloads\wrapper_2.4.18.zip 2014-01-31 15:26 - 2014-01-31 15:26 - 00188416 _____ () C:\Users\Artur\Desktop\JKuchRemixRetrograde - recovered.flp 2014-01-30 19:13 - 2014-01-27 17:48 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Bioshock 2014-01-30 17:49 - 2014-01-30 00:21 - 00000870 _____ () C:\Users\Artur\Desktop\SequoiaView.lnk 2014-01-30 17:38 - 2014-01-30 17:21 - 00000000 ____D () C:\Windows\erdnt 2014-01-30 17:37 - 2014-01-30 17:37 - 00003086 _____ () C:\Windows\System32\Tasks\{8C509B95-4AED-4364-AE28-EC7D28D746E8} 2014-01-30 17:34 - 2013-03-24 01:46 - 00000000 ____D () C:\Users\Artur\AppData\Local\VirtualStore 2014-01-30 09:19 - 2013-09-26 21:54 - 00000000 ____D () C:\Users\DefaultAppPool 2014-01-30 07:16 - 2014-01-24 21:14 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-01-30 07:03 - 2013-03-24 10:32 - 00000000 ____D () C:\Program Files (x86)\VstPlugins 2014-01-30 06:39 - 2014-01-30 06:39 - 00000000 _____ () C:\Windows\setuperr.log 2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D () C:\Program Files\SequoiaView 2014-01-29 22:16 - 2013-03-24 11:07 - 00000000 ____D () C:\Program Files\Native Instruments 2014-01-29 22:16 - 2013-03-24 11:07 - 00000000 ____D () C:\Program Files\Common Files\Native Instruments 2014-01-29 22:15 - 2012-04-22 10:26 - 00000000 ____D () C:\Program Files (x86)\Sugar Bytes 2014-01-29 22:14 - 2013-08-11 15:51 - 00000000 ____D () C:\ProgramData\NexonUS 2014-01-29 22:09 - 2013-03-26 07:04 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\uTorrent 2014-01-29 22:09 - 2013-03-24 16:55 - 00000000 ____D () C:\Windows\Minidump 2014-01-29 22:09 - 2013-03-24 02:05 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\DAEMON Tools Lite 2014-01-29 22:09 - 2013-03-24 01:18 - 00000000 ____D () C:\Windows\Panther 2014-01-29 22:09 - 2013-03-23 23:16 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\BitTorrent 2014-01-29 14:00 - 2013-03-24 01:46 - 00000000 ____D () C:\Users\Artur 2014-01-27 17:55 - 2014-01-27 17:48 - 00000000 ____D () C:\Users\Artur\Documents\Bioshock 2014-01-27 15:27 - 2013-03-24 01:50 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-01-27 14:50 - 2013-11-18 20:25 - 00000000 ____D () C:\Users\Artur\AppData\Local\Warframe 2014-01-27 13:21 - 2014-01-27 13:21 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-01-26 01:51 - 2014-01-26 01:51 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help 2014-01-26 01:51 - 2014-01-26 01:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help 2014-01-25 22:45 - 2014-01-25 22:19 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Blueberry 2014-01-25 22:19 - 2014-01-25 22:19 - 00000000 ____D () C:\Users\Artur\Documents\BB FlashBack Movies 2014-01-25 22:19 - 2014-01-25 22:18 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\LogSys 2014-01-25 22:18 - 2014-01-25 22:18 - 00037376 _____ (Blueberry Consultants Ltd.) C:\Windows\system32\bbcap.dll 2014-01-25 22:18 - 2014-01-25 22:18 - 00005632 _____ (Blueberry Consultants Ltd.) C:\Windows\system32\bbchlp.dll 2014-01-25 22:18 - 2014-01-25 22:18 - 00004608 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\bbcap.sys 2014-01-25 22:18 - 2014-01-25 22:18 - 00000000 ____D () C:\ProgramData\LogSys 2014-01-25 22:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help 2014-01-25 21:27 - 2014-01-25 20:56 - 00000000 ____D () C:\Users\Artur\Documents\Ableton 2014-01-25 20:57 - 2014-01-25 20:53 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Ableton 2014-01-25 20:53 - 2014-01-25 20:53 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software 2014-01-25 08:14 - 2009-07-14 05:45 - 00317176 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-24 22:03 - 2013-03-24 02:01 - 00069848 _____ () C:\Users\Artur\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-24 21:17 - 2014-01-24 21:17 - 00002937 _____ () C:\Users\Artur\Desktop\Microsoft PowerPoint 2010.lnk 2014-01-24 21:17 - 2014-01-24 21:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-01-24 21:17 - 2014-01-24 21:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-01-24 21:17 - 2013-08-03 21:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-01-24 21:15 - 2014-01-24 21:15 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-01-24 21:15 - 2014-01-24 21:15 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-01-24 21:15 - 2009-07-14 19:18 - 00000000 ____D () C:\Windows\ShellNew 2014-01-24 21:15 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-01-24 21:14 - 2014-01-24 21:14 - 00000000 ____D () C:\Users\Artur\AppData\Local\Microsoft Help 2014-01-23 20:58 - 2013-04-13 22:11 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-01-21 03:53 - 2014-01-09 18:40 - 01179576 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-01-21 03:53 - 2014-01-09 18:40 - 01048152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2014-01-19 02:28 - 2013-04-26 15:51 - 00000000 ____D () C:\Users\Artur\AppData\Local\NETGEARGenie 2014-01-19 02:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-01-19 00:35 - 2013-04-03 13:50 - 00000000 ____D () C:\Users\Artur\Documents\My Cheat Tables 2014-01-19 00:15 - 2014-01-19 00:15 - 00001085 _____ () C:\Users\Artur\Desktop\Cheat Engine.lnk 2014-01-19 00:15 - 2014-01-19 00:15 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3 2014-01-18 21:58 - 2013-03-30 23:29 - 00000000 ____D () C:\Users\Artur\AppData\Local\Adobe 2014-01-18 21:57 - 2013-03-23 23:32 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-01-18 21:57 - 2013-03-23 23:32 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-01-18 21:57 - 2013-03-23 23:32 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-01-18 21:37 - 2014-01-18 21:37 - 00000851 _____ () C:\Users\Artur\Desktop\µTorrent.lnk 2014-01-18 21:37 - 2014-01-18 21:37 - 00000831 _____ () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2014-01-18 12:43 - 2013-11-27 14:24 - 00000000 ____D () C:\Users\Artur\.gimp-2.6 2014-01-18 12:40 - 2014-01-18 12:40 - 00002773 _____ () C:\Users\Artur\.recently-used.xbel 2014-01-18 12:40 - 2013-12-31 11:35 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\gtk-2.0 2014-01-17 06:49 - 2014-01-17 06:49 - 00000000 ____D () C:\ProgramData\Oracle 2014-01-17 06:49 - 2014-01-17 06:48 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-17 06:49 - 2013-06-29 10:06 - 00000000 ____D () C:\Program Files (x86)\Java 2014-01-15 22:47 - 2013-08-08 08:14 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-15 22:45 - 2013-03-23 22:10 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-15 21:42 - 2014-01-11 17:14 - 00000000 ____D () C:\Users\Artur\Desktop\Neuer Ordner 2014-01-10 12:30 - 2013-09-26 20:55 - 00000000 ____D () C:\Users\Artur\Documents\My Games 2014-01-09 21:03 - 2014-01-09 21:03 - 00000000 ____D () C:\Users\Artur\Documents\MGR 2014-01-09 19:25 - 2014-01-09 19:25 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-01-09 19:24 - 2014-01-09 19:24 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-01-09 19:24 - 2014-01-09 19:24 - 00000000 ____D () C:\Program Files\Realtek 2014-01-09 19:20 - 2014-01-09 19:20 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-01-09 19:20 - 2013-04-04 07:03 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-01-09 18:59 - 2014-01-09 18:56 - 00000000 ____D () C:\Users\Artur\AppData\Local\NVIDIA Corporation 2014-01-09 18:59 - 2014-01-09 18:42 - 00000000 ____D () C:\Users\Artur\AppData\Local\NVIDIA 2014-01-09 18:58 - 2013-03-24 01:50 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-01-09 18:53 - 2013-03-24 01:48 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-01-09 18:40 - 2014-01-09 18:40 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk 2014-01-09 18:36 - 2014-01-09 18:36 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-01-09 17:50 - 2014-01-09 17:50 - 00000000 ____D () C:\Users\Artur\AppData\Local\SlimWare Utilities Inc 2014-01-09 17:49 - 2014-01-09 17:49 - 00002467 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk 2014-01-09 17:49 - 2014-01-09 17:49 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers 2014-01-09 17:43 - 2014-01-09 17:43 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-01-09 17:42 - 2013-07-14 20:32 - 00000000 ____D () C:\Program Files\CCleaner 2014-01-09 17:26 - 2013-10-30 12:25 - 00000000 ____D () C:\Program Files\FreeFixer 2014-01-09 16:04 - 2013-12-22 22:12 - 00000000 ____D () C:\Program Files\UVI Workstation x64 2014-01-09 16:04 - 2013-03-24 22:35 - 00000000 ____D () C:\Program Files\VstPlugins 2014-01-09 15:43 - 2014-01-09 15:43 - 00001115 _____ () C:\Users\Artur\Desktop\Free Disk Analyzer.lnk 2014-01-09 15:29 - 2014-01-09 15:29 - 00000000 ____D () C:\Users\Artur\AppData\Local\DiskAnalyzer 2014-01-09 15:29 - 2014-01-09 15:29 - 00000000 ____D () C:\Program Files (x86)\Free Disk Analyzer 2014-01-09 15:28 - 2014-01-09 15:28 - 00000000 ____D () C:\ProgramData\DiskAnalyzer 2014-01-07 22:59 - 2014-01-07 22:59 - 01233962 _____ () C:\Users\Artur\Downloads\adwcleaner.exe 2014-01-07 22:53 - 2014-01-07 22:50 - 00000000 ____D () C:\Program Files (x86)\UnHackMe 2014-01-07 22:51 - 2014-01-07 22:51 - 00000002 RSHOT () C:\Windows\winstart.bat 2014-01-07 22:51 - 2014-01-07 22:51 - 00000002 RSHOT () C:\Windows\SysWOW64\AUTOEXEC.NT 2014-01-07 22:51 - 2014-01-07 22:51 - 00000000 ____D () C:\Users\Artur\Documents\RegRun2 2014-01-07 21:41 - 2014-01-07 21:41 - 00528888 _____ () C:\Users\Artur\Documents\disktec.zip 2014-01-07 15:00 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT Some content of TEMP: ==================== C:\Users\Artur\AppData\Local\Temp\avgnt.exe C:\Users\Artur\AppData\Local\Temp\NGM.exe C:\Users\Artur\AppData\Local\Temp\NGMDll.dll C:\Users\Artur\AppData\Local\Temp\NGMResource.dll C:\Users\Artur\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-24 17:17 ==================== End Of Log ============================ --- --- --- Geändert von Ichnixcheck (04.02.2014 um 16:17 Uhr) |
05.02.2014, 13:29 | #20 |
| Windows 7: Festplatte füllt sich von selbst mein Pc muss wieder sehr lange laden wegen Avast und ich kann ihn solange nicht nutzen aber nach dem laden mache ich einen neuen Log da. FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 03 Ran by Artur (administrator) on ARTUR-PC on 05-02-2014 13:26:35 Running from C:\Users\Artur\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe ( ) C:\Windows\Temp\mrt2663.tmp\stdrt.exe (SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe (Google Inc.) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\\GoogleCrashHandler64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe (NETGEAR) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe () C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe () C:\Program Files (x86)\RocketDock\RocketDock.exe (Valve Corporation) D:\games\Steam\Steam.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe (Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Nvtmru] - "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1179576 2014-01-21] (NVIDIA Corporation) HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation) HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4767304 2013-03-07] (AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813200 2014-01-23] (LogMeIn Inc.) HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-04-04] (Microsoft Corporation) HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\Run: [NETGEARGenie] - C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [1041736 2012-10-16] () HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\Run: [RocketDock] - C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] () HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\Run: [Steam] - D:\games\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation) HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\MountPoints2: {196d3057-941e-11e2-b340-f84a0fc85bec} - K:\PsychoLauncher.exe HKU\S-1-5-21-998081658-780423141-2410253492-1000\...\MountPoints2: {7013adca-9418-11e2-bf95-806e6f6e6963} - E:\Autorun.exe HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun Startup: C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\zzlib.lnk ShortcutTarget: zzlib.lnk -> C:\Program Files (x86)\Valve\platform\zzlib.exe () ==================== Internet (Whitelisted) ==================== SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\\BingExt.dll No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll No File BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll" No File Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\\BingExt.dll No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] Chrome: ======= CHR HomePage: hxxp://feed.snap.do/?publisher=SMTM&dpid=SMTM&co=DE&userid=0b2dc656-ab00-42d3-9e2b-81f42689830f&searchtype=hp CHR Extension: (Google Drive) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-23] CHR Extension: (YouTube) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-23] CHR Extension: (Adblock Plus) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-11-23] CHR Extension: (Google-Suche) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-23] CHR Extension: (Grey With Dark Blue Highlight Chrome Theme) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gllabpbebalomehiffcgeaimmeecikec [2013-11-23] CHR Extension: (avast! WebRep) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2013-11-24] CHR Extension: (Google Wallet) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-23] CHR Extension: (Google Mail) - C:\Users\Artur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-23] CHR HKLM-x32\...\Chrome\Extension: [fhmbbigfkgcficoehkhadjbokhhaijea] - C:\Program Files (x86)\LyricsPlug\Chrome.crx [2013-11-23] CHR HKLM-x32\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-03-24] ==================== Services (Whitelisted) ================= S2 Adobe Licensing Console; C:\Windows\SysWOW64\lnsecsl.exe [905070 2013-03-24] ( ) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [45248 2013-03-07] (AVAST Software) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-12-13] (LogMeIn, Inc.) R2 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [231752 2012-09-25] (NETGEAR) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4694056 2013-03-14] (INCA Internet Co., Ltd.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-08] () R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation) S2 TuneUp.UtilitiesSvc; "C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe" [x] ==================== Drivers (Whitelisted) ==================== R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-03-07] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-03-07] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [70992 2013-03-07] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-03-07] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1025808 2013-03-07] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [377920 2013-03-07] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [68920 2013-03-07] (AVAST Software) S3 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178624 2013-03-07] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-11] (Disc Soft Ltd) R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () R3 NIWinCDEmu; C:\Windows\System32\DRIVERS\NIWinCDEmu.sys [111696 2013-06-08] () R2 NPF; C:\Windows\system32\drivers\npf.sys [35344 2013-04-26] (CACE Technologies, Inc.) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-11] (Duplex Secure Ltd.) S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-02-05] () S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-10-16] (Anchorfree Inc.) U3 ab1nsfzs; C:\Windows\System32\Drivers\ab1nsfzs.sys [0 ] (Advanced Micro Devices) S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x] U0 Partizan; system32\drivers\Partizan.sys [x] S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [x] U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [x] S3 xhunter1; \??\C:\Windows\xhunter1.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-05 13:26 - 2014-02-05 13:27 - 00013315 _____ () C:\Users\Artur\Desktop\FRST.txt 2014-02-03 21:33 - 2014-02-03 21:33 - 00391774 _____ () C:\Users\Artur\Downloads\DSfix22.zip 2014-02-03 20:27 - 2014-02-03 20:27 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-02-03 20:27 - 2014-02-03 20:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-02-03 20:21 - 2014-02-03 20:23 - 13079688 _____ (Microsoft Corporation) C:\Users\Artur\Downloads\Silverlight_x64.exe 2014-02-02 22:57 - 2014-02-02 22:59 - 00107129 _____ () C:\Windows\SysWOW64\key.dat 2014-02-02 17:26 - 2014-02-02 17:28 - 90578216 _____ (AVAST Software) C:\Users\Artur\Downloads\avast_free_antivirus_setup.exe 2014-02-01 20:23 - 2014-02-01 20:23 - 00000000 ____D () C:\Users\Artur\AppData\Local\EdgeOfReality 2014-02-01 18:03 - 2014-02-01 18:03 - 00987425 _____ () C:\Users\Artur\Desktop\SecurityCheck.exe 2014-02-01 18:00 - 2014-02-01 18:00 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-02-01 14:00 - 2014-02-01 14:00 - 01037068 _____ (Thisisu) C:\Users\Artur\Desktop\JRT.exe 2014-02-01 13:45 - 2014-02-01 13:46 - 01166132 _____ () C:\Users\Artur\Desktop\adwcleaner (1).exe 2014-01-31 16:21 - 2014-01-31 16:21 - 00000000 ____D () C:\Qoobox 2014-01-31 16:18 - 2014-01-31 16:18 - 00001146 _____ () C:\Users\Artur\Desktop\ComboFix.exe - Verknüpfung.lnk 2014-01-31 15:36 - 2014-01-31 15:36 - 00015220 ____H () C:\Users\Artur\Desktop\watwatwat.mp3.zpa 2014-01-31 15:32 - 2014-01-31 15:33 - 05105783 _____ () C:\Users\Artur\Downloads\wrapper_2.4.18.zip 2014-01-31 15:26 - 2014-01-31 15:26 - 00188416 _____ () C:\Users\Artur\Desktop\JKuchRemixRetrograde - recovered.flp 2014-01-30 17:37 - 2014-01-30 17:37 - 00003086 _____ () C:\Windows\System32\Tasks\{8C509B95-4AED-4364-AE28-EC7D28D746E8} 2014-01-30 17:21 - 2014-01-31 17:11 - 00000000 ___SD () C:\32788R22FWJFW 2014-01-30 17:21 - 2014-01-30 17:38 - 00000000 ____D () C:\Windows\erdnt 2014-01-30 06:39 - 2014-02-05 13:22 - 00002912 _____ () C:\Windows\setupact.log 2014-01-30 06:39 - 2014-02-05 13:21 - 00102262 _____ () C:\Windows\PFRO.log 2014-01-30 06:39 - 2014-01-30 06:39 - 00000000 _____ () C:\Windows\setuperr.log 2014-01-30 00:21 - 2014-01-30 17:49 - 00000870 _____ () C:\Users\Artur\Desktop\SequoiaView.lnk 2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D () C:\Program Files\SequoiaView 2014-01-27 17:48 - 2014-01-30 19:13 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Bioshock 2014-01-27 17:48 - 2014-01-27 17:55 - 00000000 ____D () C:\Users\Artur\Documents\Bioshock 2014-01-27 15:26 - 2013-12-27 19:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2014-01-27 15:26 - 2013-12-27 19:42 - 00033056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2014-01-27 13:21 - 2014-01-27 13:21 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-01-26 01:51 - 2014-01-26 01:51 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help 2014-01-26 01:51 - 2014-01-26 01:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help 2014-01-25 22:19 - 2014-01-25 22:45 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Blueberry 2014-01-25 22:19 - 2014-01-25 22:19 - 00000000 ____D () C:\Users\Artur\Documents\BB FlashBack Movies 2014-01-25 22:18 - 2014-01-25 22:19 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\LogSys 2014-01-25 22:18 - 2014-01-25 22:18 - 00037376 _____ (Blueberry Consultants Ltd.) C:\Windows\system32\bbcap.dll 2014-01-25 22:18 - 2014-01-25 22:18 - 00005632 _____ (Blueberry Consultants Ltd.) C:\Windows\system32\bbchlp.dll 2014-01-25 22:18 - 2014-01-25 22:18 - 00004608 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\bbcap.sys 2014-01-25 22:18 - 2014-01-25 22:18 - 00000000 ____D () C:\ProgramData\LogSys 2014-01-25 20:56 - 2014-01-25 21:27 - 00000000 ____D () C:\Users\Artur\Documents\Ableton 2014-01-25 20:53 - 2014-01-25 20:57 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Ableton 2014-01-25 20:53 - 2014-01-25 20:53 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software 2014-01-24 21:17 - 2014-01-24 21:17 - 00002937 _____ () C:\Users\Artur\Desktop\Microsoft PowerPoint 2010.lnk 2014-01-24 21:17 - 2014-01-24 21:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-01-24 21:15 - 2014-01-24 21:15 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-01-24 21:15 - 2014-01-24 21:15 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-01-24 21:14 - 2014-01-30 07:16 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-01-24 21:14 - 2014-01-24 21:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-01-24 21:14 - 2014-01-24 21:14 - 00000000 ____D () C:\Users\Artur\AppData\Local\Microsoft Help 2014-01-19 00:15 - 2014-01-19 00:15 - 00001085 _____ () C:\Users\Artur\Desktop\Cheat Engine.lnk 2014-01-19 00:15 - 2014-01-19 00:15 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3 2014-01-18 21:37 - 2014-01-18 21:37 - 00000851 _____ () C:\Users\Artur\Desktop\µTorrent.lnk 2014-01-18 21:37 - 2014-01-18 21:37 - 00000831 _____ () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2014-01-18 12:40 - 2014-01-18 12:40 - 00002773 _____ () C:\Users\Artur\.recently-used.xbel 2014-01-17 06:49 - 2014-01-17 06:49 - 00000000 ____D () C:\ProgramData\Oracle 2014-01-17 06:49 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-01-17 06:49 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-01-17 06:49 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-01-17 06:49 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-01-17 06:48 - 2014-01-17 06:49 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-15 12:30 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 12:30 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 12:29 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 12:29 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-11 17:14 - 2014-01-15 21:42 - 00000000 ____D () C:\Users\Artur\Desktop\Neuer Ordner 2014-01-09 21:03 - 2014-01-09 21:03 - 00000000 ____D () C:\Users\Artur\Documents\MGR 2014-01-09 19:25 - 2014-01-09 19:25 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-01-09 19:24 - 2014-01-09 19:24 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-01-09 19:24 - 2014-01-09 19:24 - 00000000 ____D () C:\Program Files\Realtek 2014-01-09 19:22 - 2000-01-01 01:00 - 05681192 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-01-09 19:22 - 2000-01-01 01:00 - 03707864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2014-01-09 19:22 - 2000-01-01 01:00 - 02810072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 02587864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2014-01-09 19:22 - 2000-01-01 01:00 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 01014016 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00897792 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00722688 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00244480 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2014-01-09 19:22 - 2000-01-01 01:00 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 38385664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2014-01-09 19:21 - 2000-01-01 01:00 - 27644160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 05751576 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 03714304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 01286400 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 01286360 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 01021656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00929080 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00907008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00681905 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-01-09 19:21 - 2000-01-01 01:00 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00153304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2014-01-09 19:21 - 2000-01-01 01:00 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2014-01-09 19:20 - 2014-01-09 19:20 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-01-09 19:20 - 2000-01-01 01:00 - 14152960 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 06217904 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 02036992 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01938608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01921792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01345280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01084160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 01012992 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00790272 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00605496 _____ () C:\Windows\system32\audioLibVc.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00313520 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00260272 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll 2014-01-09 19:20 - 2000-01-01 01:00 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2014-01-09 18:56 - 2014-01-09 18:59 - 00000000 ____D () C:\Users\Artur\AppData\Local\NVIDIA Corporation 2014-01-09 18:42 - 2014-01-09 18:59 - 00000000 ____D () C:\Users\Artur\AppData\Local\NVIDIA 2014-01-09 18:40 - 2014-01-21 03:53 - 01179576 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-01-09 18:40 - 2014-01-21 03:53 - 01048152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2014-01-09 18:40 - 2014-01-09 18:40 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk 2014-01-09 18:36 - 2014-01-09 18:36 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-01-09 18:24 - 2013-12-27 19:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2014-01-09 18:24 - 2000-01-01 01:00 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00357152 _____ () C:\Windows\system32\NvIFROpenGL.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00314656 _____ () C:\Windows\SysWOW64\NvIFROpenGL.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2014-01-09 18:24 - 2000-01-01 01:00 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2014-01-09 18:24 - 2000-01-01 01:00 - 00023754 _____ () C:\Windows\system32\nvinfo.pb 2014-01-09 17:50 - 2014-02-05 13:26 - 00002836 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup 2014-01-09 17:50 - 2014-02-05 13:26 - 00000410 _____ () C:\Windows\Tasks\SlimDrivers Startup.job 2014-01-09 17:50 - 2014-02-05 13:23 - 00016152 _____ () C:\Windows\system32\Drivers\SWDUMon.sys 2014-01-09 17:50 - 2014-01-09 17:50 - 00000000 ____D () C:\Users\Artur\AppData\Local\SlimWare Utilities Inc 2014-01-09 17:49 - 2014-01-09 17:49 - 00002467 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk 2014-01-09 17:49 - 2014-01-09 17:49 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers 2014-01-09 17:43 - 2014-01-09 17:43 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-01-09 17:05 - 2014-02-01 17:14 - 02080256 _____ (Farbar) C:\Users\Artur\Desktop\FRST64.exe 2014-01-09 15:43 - 2014-01-09 15:43 - 00001115 _____ () C:\Users\Artur\Desktop\Free Disk Analyzer.lnk 2014-01-09 15:29 - 2014-01-09 15:29 - 00000000 ____D () C:\Users\Artur\AppData\Local\DiskAnalyzer 2014-01-09 15:29 - 2014-01-09 15:29 - 00000000 ____D () C:\Program Files (x86)\Free Disk Analyzer 2014-01-09 15:28 - 2014-01-09 15:28 - 00000000 ____D () C:\ProgramData\DiskAnalyzer 2014-01-09 06:59 - 2014-02-05 13:26 - 00000000 ____D () C:\FRST 2014-01-07 22:59 - 2014-01-07 22:59 - 01233962 _____ () C:\Users\Artur\Downloads\adwcleaner.exe 2014-01-07 22:51 - 2014-01-07 22:51 - 00000002 RSHOT () C:\Windows\winstart.bat 2014-01-07 22:51 - 2014-01-07 22:51 - 00000002 RSHOT () C:\Windows\SysWOW64\AUTOEXEC.NT 2014-01-07 22:51 - 2014-01-07 22:51 - 00000000 ____D () C:\Users\Artur\Documents\RegRun2 2014-01-07 22:50 - 2014-01-07 22:53 - 00000000 ____D () C:\Program Files (x86)\UnHackMe 2014-01-07 21:41 - 2014-01-07 21:41 - 00528888 _____ () C:\Users\Artur\Documents\disktec.zip ==================== One Month Modified Files and Folders ======= 2014-02-05 13:27 - 2014-02-05 13:26 - 00013315 _____ () C:\Users\Artur\Desktop\FRST.txt 2014-02-05 13:26 - 2014-01-09 17:50 - 00002836 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup 2014-02-05 13:26 - 2014-01-09 17:50 - 00000410 _____ () C:\Windows\Tasks\SlimDrivers Startup.job 2014-02-05 13:26 - 2014-01-09 06:59 - 00000000 ____D () C:\FRST 2014-02-05 13:24 - 2014-01-03 18:57 - 00000000 ____D () C:\Users\Artur\AppData\Local\LogMeIn Hamachi 2014-02-05 13:23 - 2014-01-09 17:50 - 00016152 _____ () C:\Windows\system32\Drivers\SWDUMon.sys 2014-02-05 13:22 - 2014-01-30 06:39 - 00002912 _____ () C:\Windows\setupact.log 2014-02-05 13:22 - 2013-12-18 19:51 - 00001954 _____ () C:\Windows\Tasks\FTdownloader V6.0-chromeinstaller.job 2014-02-05 13:22 - 2013-12-18 19:51 - 00001332 _____ () C:\Windows\Tasks\FTdownloader V6.0-updater.job 2014-02-05 13:22 - 2013-11-23 09:31 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-05 13:21 - 2014-01-30 06:39 - 00102262 _____ () C:\Windows\PFRO.log 2014-02-05 13:21 - 2013-03-24 01:50 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-02-05 13:21 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-04 23:26 - 2013-03-24 01:22 - 01925755 _____ () C:\Windows\WindowsUpdate.log 2014-02-04 23:14 - 2013-03-23 23:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-04 22:59 - 2013-11-23 09:31 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-04 03:58 - 2013-11-23 09:33 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-02-03 21:33 - 2014-02-03 21:33 - 00391774 _____ () C:\Users\Artur\Downloads\DSfix22.zip 2014-02-03 20:27 - 2014-02-03 20:27 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-02-03 20:27 - 2014-02-03 20:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-02-03 20:23 - 2014-02-03 20:21 - 13079688 _____ (Microsoft Corporation) C:\Users\Artur\Downloads\Silverlight_x64.exe 2014-02-02 22:59 - 2014-02-02 22:57 - 00107129 _____ () C:\Windows\SysWOW64\key.dat 2014-02-02 20:01 - 2009-07-14 05:45 - 00030864 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-02 20:01 - 2009-07-14 05:45 - 00030864 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-02 17:30 - 2013-03-23 22:12 - 00000000 ____D () C:\ProgramData\AVAST Software 2014-02-02 17:28 - 2014-02-02 17:26 - 90578216 _____ (AVAST Software) C:\Users\Artur\Downloads\avast_free_antivirus_setup.exe 2014-02-02 11:47 - 2013-04-19 20:23 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\TS3Client 2014-02-02 10:23 - 2013-04-06 11:05 - 00000000 ____D () C:\Program Files (x86)\Adobe Flash CS3 Professional 2014-02-01 21:18 - 2013-06-22 00:17 - 01768246 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-02-01 21:18 - 2009-07-14 18:58 - 00767670 _____ () C:\Windows\system32\perfh007.dat 2014-02-01 21:18 - 2009-07-14 18:58 - 00173144 _____ () C:\Windows\system32\perfc007.dat 2014-02-01 21:18 - 2009-07-14 06:13 - 01768246 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-02-01 20:52 - 2013-03-26 20:05 - 00000000 ____D () C:\ProgramData\Package Cache 2014-02-01 20:23 - 2014-02-01 20:23 - 00000000 ____D () C:\Users\Artur\AppData\Local\EdgeOfReality 2014-02-01 18:03 - 2014-02-01 18:03 - 00987425 _____ () C:\Users\Artur\Desktop\SecurityCheck.exe 2014-02-01 18:00 - 2014-02-01 18:00 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-02-01 17:48 - 2013-12-19 12:39 - 00000000 ____D () C:\AdwCleaner 2014-02-01 17:14 - 2014-01-09 17:05 - 02080256 _____ (Farbar) C:\Users\Artur\Desktop\FRST64.exe 2014-02-01 14:00 - 2014-02-01 14:00 - 01037068 _____ (Thisisu) C:\Users\Artur\Desktop\JRT.exe 2014-02-01 13:46 - 2014-02-01 13:45 - 01166132 _____ () C:\Users\Artur\Desktop\adwcleaner (1).exe 2014-02-01 02:32 - 2013-03-24 11:01 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Skype 2014-01-31 17:11 - 2014-01-30 17:21 - 00000000 ___SD () C:\32788R22FWJFW 2014-01-31 16:21 - 2014-01-31 16:21 - 00000000 ____D () C:\Qoobox 2014-01-31 16:18 - 2014-01-31 16:18 - 00001146 _____ () C:\Users\Artur\Desktop\ComboFix.exe - Verknüpfung.lnk 2014-01-31 15:36 - 2014-01-31 15:36 - 00015220 ____H () C:\Users\Artur\Desktop\watwatwat.mp3.zpa 2014-01-31 15:33 - 2014-01-31 15:32 - 05105783 _____ () C:\Users\Artur\Downloads\wrapper_2.4.18.zip 2014-01-31 15:26 - 2014-01-31 15:26 - 00188416 _____ () C:\Users\Artur\Desktop\JKuchRemixRetrograde - recovered.flp 2014-01-30 19:13 - 2014-01-27 17:48 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Bioshock 2014-01-30 17:49 - 2014-01-30 00:21 - 00000870 _____ () C:\Users\Artur\Desktop\SequoiaView.lnk 2014-01-30 17:38 - 2014-01-30 17:21 - 00000000 ____D () C:\Windows\erdnt 2014-01-30 17:37 - 2014-01-30 17:37 - 00003086 _____ () C:\Windows\System32\Tasks\{8C509B95-4AED-4364-AE28-EC7D28D746E8} 2014-01-30 17:34 - 2013-03-24 01:46 - 00000000 ____D () C:\Users\Artur\AppData\Local\VirtualStore 2014-01-30 09:19 - 2013-09-26 21:54 - 00000000 ____D () C:\Users\DefaultAppPool 2014-01-30 07:16 - 2014-01-24 21:14 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-01-30 07:03 - 2013-03-24 10:32 - 00000000 ____D () C:\Program Files (x86)\VstPlugins 2014-01-30 06:39 - 2014-01-30 06:39 - 00000000 _____ () C:\Windows\setuperr.log 2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-01-30 00:21 - 2014-01-30 00:21 - 00000000 ____D () C:\Program Files\SequoiaView 2014-01-29 22:16 - 2013-03-24 11:07 - 00000000 ____D () C:\Program Files\Native Instruments 2014-01-29 22:16 - 2013-03-24 11:07 - 00000000 ____D () C:\Program Files\Common Files\Native Instruments 2014-01-29 22:15 - 2012-04-22 10:26 - 00000000 ____D () C:\Program Files (x86)\Sugar Bytes 2014-01-29 22:14 - 2013-08-11 15:51 - 00000000 ____D () C:\ProgramData\NexonUS 2014-01-29 22:09 - 2013-03-26 07:04 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\uTorrent 2014-01-29 22:09 - 2013-03-24 16:55 - 00000000 ____D () C:\Windows\Minidump 2014-01-29 22:09 - 2013-03-24 02:05 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\DAEMON Tools Lite 2014-01-29 22:09 - 2013-03-24 01:18 - 00000000 ____D () C:\Windows\Panther 2014-01-29 22:09 - 2013-03-23 23:16 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\BitTorrent 2014-01-29 14:00 - 2013-03-24 01:46 - 00000000 ____D () C:\Users\Artur 2014-01-27 17:55 - 2014-01-27 17:48 - 00000000 ____D () C:\Users\Artur\Documents\Bioshock 2014-01-27 15:27 - 2013-03-24 01:50 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-01-27 14:50 - 2013-11-18 20:25 - 00000000 ____D () C:\Users\Artur\AppData\Local\Warframe 2014-01-27 13:21 - 2014-01-27 13:21 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-01-26 01:51 - 2014-01-26 01:51 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help 2014-01-26 01:51 - 2014-01-26 01:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help 2014-01-25 22:45 - 2014-01-25 22:19 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Blueberry 2014-01-25 22:19 - 2014-01-25 22:19 - 00000000 ____D () C:\Users\Artur\Documents\BB FlashBack Movies 2014-01-25 22:19 - 2014-01-25 22:18 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\LogSys 2014-01-25 22:18 - 2014-01-25 22:18 - 00037376 _____ (Blueberry Consultants Ltd.) C:\Windows\system32\bbcap.dll 2014-01-25 22:18 - 2014-01-25 22:18 - 00005632 _____ (Blueberry Consultants Ltd.) C:\Windows\system32\bbchlp.dll 2014-01-25 22:18 - 2014-01-25 22:18 - 00004608 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\bbcap.sys 2014-01-25 22:18 - 2014-01-25 22:18 - 00000000 ____D () C:\ProgramData\LogSys 2014-01-25 22:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help 2014-01-25 21:27 - 2014-01-25 20:56 - 00000000 ____D () C:\Users\Artur\Documents\Ableton 2014-01-25 20:57 - 2014-01-25 20:53 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Ableton 2014-01-25 20:53 - 2014-01-25 20:53 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software 2014-01-25 08:14 - 2009-07-14 05:45 - 00317176 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-24 22:03 - 2013-03-24 02:01 - 00069848 _____ () C:\Users\Artur\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-24 21:17 - 2014-01-24 21:17 - 00002937 _____ () C:\Users\Artur\Desktop\Microsoft PowerPoint 2010.lnk 2014-01-24 21:17 - 2014-01-24 21:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-01-24 21:17 - 2014-01-24 21:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-01-24 21:17 - 2013-08-03 21:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-01-24 21:15 - 2014-01-24 21:15 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-01-24 21:15 - 2014-01-24 21:15 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-01-24 21:15 - 2009-07-14 19:18 - 00000000 ____D () C:\Windows\ShellNew 2014-01-24 21:15 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-01-24 21:14 - 2014-01-24 21:14 - 00000000 ____D () C:\Users\Artur\AppData\Local\Microsoft Help 2014-01-23 20:58 - 2013-04-13 22:11 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2014-01-21 03:53 - 2014-01-09 18:40 - 01179576 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-01-21 03:53 - 2014-01-09 18:40 - 01048152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2014-01-19 02:28 - 2013-04-26 15:51 - 00000000 ____D () C:\Users\Artur\AppData\Local\NETGEARGenie 2014-01-19 02:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-01-19 00:35 - 2013-04-03 13:50 - 00000000 ____D () C:\Users\Artur\Documents\My Cheat Tables 2014-01-19 00:15 - 2014-01-19 00:15 - 00001085 _____ () C:\Users\Artur\Desktop\Cheat Engine.lnk 2014-01-19 00:15 - 2014-01-19 00:15 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3 2014-01-18 21:58 - 2013-03-30 23:29 - 00000000 ____D () C:\Users\Artur\AppData\Local\Adobe 2014-01-18 21:57 - 2013-03-23 23:32 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-01-18 21:57 - 2013-03-23 23:32 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-01-18 21:57 - 2013-03-23 23:32 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-01-18 21:37 - 2014-01-18 21:37 - 00000851 _____ () C:\Users\Artur\Desktop\µTorrent.lnk 2014-01-18 21:37 - 2014-01-18 21:37 - 00000831 _____ () C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2014-01-18 12:43 - 2013-11-27 14:24 - 00000000 ____D () C:\Users\Artur\.gimp-2.6 2014-01-18 12:40 - 2014-01-18 12:40 - 00002773 _____ () C:\Users\Artur\.recently-used.xbel 2014-01-18 12:40 - 2013-12-31 11:35 - 00000000 ____D () C:\Users\Artur\AppData\Roaming\gtk-2.0 2014-01-17 06:49 - 2014-01-17 06:49 - 00000000 ____D () C:\ProgramData\Oracle 2014-01-17 06:49 - 2014-01-17 06:48 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-17 06:49 - 2013-06-29 10:06 - 00000000 ____D () C:\Program Files (x86)\Java 2014-01-15 22:47 - 2013-08-08 08:14 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-15 22:45 - 2013-03-23 22:10 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-15 21:42 - 2014-01-11 17:14 - 00000000 ____D () C:\Users\Artur\Desktop\Neuer Ordner 2014-01-10 12:30 - 2013-09-26 20:55 - 00000000 ____D () C:\Users\Artur\Documents\My Games 2014-01-09 21:03 - 2014-01-09 21:03 - 00000000 ____D () C:\Users\Artur\Documents\MGR 2014-01-09 19:25 - 2014-01-09 19:25 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-01-09 19:24 - 2014-01-09 19:24 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-01-09 19:24 - 2014-01-09 19:24 - 00000000 ____D () C:\Program Files\Realtek 2014-01-09 19:20 - 2014-01-09 19:20 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-01-09 19:20 - 2013-04-04 07:03 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-01-09 18:59 - 2014-01-09 18:56 - 00000000 ____D () C:\Users\Artur\AppData\Local\NVIDIA Corporation 2014-01-09 18:59 - 2014-01-09 18:42 - 00000000 ____D () C:\Users\Artur\AppData\Local\NVIDIA 2014-01-09 18:58 - 2013-03-24 01:50 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-01-09 18:53 - 2013-03-24 01:48 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-01-09 18:40 - 2014-01-09 18:40 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk 2014-01-09 18:36 - 2014-01-09 18:36 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-01-09 17:50 - 2014-01-09 17:50 - 00000000 ____D () C:\Users\Artur\AppData\Local\SlimWare Utilities Inc 2014-01-09 17:49 - 2014-01-09 17:49 - 00002467 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk 2014-01-09 17:49 - 2014-01-09 17:49 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers 2014-01-09 17:43 - 2014-01-09 17:43 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-01-09 17:42 - 2013-07-14 20:32 - 00000000 ____D () C:\Program Files\CCleaner 2014-01-09 17:26 - 2013-10-30 12:25 - 00000000 ____D () C:\Program Files\FreeFixer 2014-01-09 16:04 - 2013-12-22 22:12 - 00000000 ____D () C:\Program Files\UVI Workstation x64 2014-01-09 16:04 - 2013-03-24 22:35 - 00000000 ____D () C:\Program Files\VstPlugins 2014-01-09 15:43 - 2014-01-09 15:43 - 00001115 _____ () C:\Users\Artur\Desktop\Free Disk Analyzer.lnk 2014-01-09 15:29 - 2014-01-09 15:29 - 00000000 ____D () C:\Users\Artur\AppData\Local\DiskAnalyzer 2014-01-09 15:29 - 2014-01-09 15:29 - 00000000 ____D () C:\Program Files (x86)\Free Disk Analyzer 2014-01-09 15:28 - 2014-01-09 15:28 - 00000000 ____D () C:\ProgramData\DiskAnalyzer 2014-01-07 22:59 - 2014-01-07 22:59 - 01233962 _____ () C:\Users\Artur\Downloads\adwcleaner.exe 2014-01-07 22:53 - 2014-01-07 22:50 - 00000000 ____D () C:\Program Files (x86)\UnHackMe 2014-01-07 22:51 - 2014-01-07 22:51 - 00000002 RSHOT () C:\Windows\winstart.bat 2014-01-07 22:51 - 2014-01-07 22:51 - 00000002 RSHOT () C:\Windows\SysWOW64\AUTOEXEC.NT 2014-01-07 22:51 - 2014-01-07 22:51 - 00000000 ____D () C:\Users\Artur\Documents\RegRun2 2014-01-07 21:41 - 2014-01-07 21:41 - 00528888 _____ () C:\Users\Artur\Documents\disktec.zip 2014-01-07 15:00 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT Some content of TEMP: ==================== C:\Users\Artur\AppData\Local\Temp\avgnt.exe C:\Users\Artur\AppData\Local\Temp\NGM.exe C:\Users\Artur\AppData\Local\Temp\NGMDll.dll C:\Users\Artur\AppData\Local\Temp\NGMResource.dll C:\Users\Artur\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-24 17:17 ==================== End Of Log ============================ --- --- --- |
06.02.2014, 06:21 | #21 |
/// the machine /// TB-Ausbilder | Windows 7: Festplatte füllt sich von selbst Gibt es davon ein logfile?
__________________ --> Windows 7: Festplatte füllt sich von selbst |
06.02.2014, 14:47 | #22 |
| Windows 7: Festplatte füllt sich von selbst Also es gibt ein Ordner der log heißt dort gibt es viele verschiedene logfiles. Soll ich jeden posten oder nur den neuesten? |
06.02.2014, 15:47 | #23 |
/// the machine /// TB-Ausbilder | Windows 7: Festplatte füllt sich von selbst Das neueste
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
06.02.2014, 17:57 | #24 |
| Windows 7: Festplatte füllt sich von selbst Das ist Filerep.log Code:
ATTFilter 29.01.2014 22:39:18 FileRep: hxxp://download.bleepingcomputer.com/dl/a92becfe3145d0c63effe54cb3ac9a31/52e974ed/windows/security/security-utilities/f/farbar-recovery-scan-tool/64/FRST64.exe [Downloaded by: C:\Users\Artur\Desktop\FRST64.exe] has a poor reputation. --> Result: Ignoring. 30.01.2014 00:21:36 FileRep: hxxp://w3.win.tue.nl/uploads/media/Sequoia1.3Install.exe [Downloaded by: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe] has a poor reputation. --> Result: Ignoring. 30.01.2014 09:19:11 FileRep: hxxp://files.avast.com/files/emupdate/20140121.exe [Downloaded by: C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe] has a poor reputation. --> Result: Not reporting (because the file is trusted). 30.01.2014 17:20:09 FileRep: hxxp://download.bleepingcomputer.com/sUBs/ComboFix.exe [Downloaded by: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe] has a poor reputation. --> Result: Ignoring. 31.01.2014 15:25:00 FileRep: hxxp://downloads.image-line.com/diagnostic/diagnostic.exe [Downloaded by: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe] has a poor reputation. --> Result: Ignoring. 31.01.2014 15:56:15 FileRep: hxxp://download.bleepingcomputer.com/sUBs/ComboFix.exe [Downloaded by: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe] has a poor reputation. --> Result: Ignoring. 01.02.2014 11:29:56 FileRep: hxxp://filepony.de/dl-bWJhbS1zZXR1cC0xLjc1LjAuMTMwMC5leGU=-malwarebytes_anti_malware-1365596929-9661464/mbam-setup- [Downloaded by: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe] has a poor reputation. --> Result: Not reporting (because the file is trusted). 02.02.2014 15:57:17 FileRep: hxxp://dlp.cloudsvr313.com/97OOLOLxo8GP1Uiet934292J1t1uKel4nkw6e1q_klNChzUx-jUCOMs5-rPakVfCgaoN6Lu-bddCNXgh_Agea9ixue6Umk8OZcZhxuvvDFOrvUQKbm24ng6TQYrOUSo3 [Downloaded by: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe] has a poor reputation. --> Result: Not reporting (because the file is trusted). 03.02.2014 20:21:55 FileRep: hxxp://silverlight.dlservice.microsoft.com/download/6/B/8/6B885B0B-73D4-4BCE-BFFF-154B4A402D22/20913.00/Silverlight_x64.exe [Downloaded by: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe] has a poor reputation. --> Result: Not reporting (because the file is trusted). 03.02.2014 20:26:26 FileRep: hxxp://download.gfe.nvidia.com/packages/DAO/production/17749621/0.dat [Downloaded by: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe] has a poor reputation. --> Result: Not reporting (because the file is trusted). 03.02.2014 20:33:50 FileRep: hxxp://download.gfe.nvidia.com/packages/StreamingAssets/production/left_4_dead_2/17729841/0.dat [Downloaded by: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe] has a poor reputation. --> Result: Not reporting (because the file is trusted). Geändert von Ichnixcheck (06.02.2014 um 18:39 Uhr) |
07.02.2014, 16:45 | #25 |
/// the machine /// TB-Ausbilder | Windows 7: Festplatte füllt sich von selbst Downloade Dir bitte TFC ( von Oldtimer ) und speichere die Datei auf dem Desktop. Schließe nun alle offenen Programme und trenne Dich von dem Internet. Doppelklick auf die TFC.exe und drücke auf Start. Sollte TFC nicht alle Dateien löschen können wird es einen Neustart verlangen. Dies bitte zulassen. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
07.02.2014, 22:13 | #26 |
| Windows 7: Festplatte füllt sich von selbst So wie jedes Programm stopt es und ich kriege keine Rückmeldung. Ich habe ein Bild angehängt da steht wo es stopt. Es löscht gar nichts, ich bin mir ziemlich sicher das der Virus/Trojaner was damit zu tun hat. |
08.02.2014, 16:55 | #27 | |
/// the machine /// TB-Ausbilder | Windows 7: Festplatte füllt sich von selbst Es löscht nix is mal voll gelogen Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
08.02.2014, 16:58 | #28 |
| Windows 7: Festplatte füllt sich von selbst Ok dann hat das was gelöscht aber hilft mir das jetzt was ? Meine Festplatte fühlt sich immer noch |
09.02.2014, 09:42 | #29 |
/// the machine /// TB-Ausbilder | Windows 7: Festplatte füllt sich von selbst meine Frage?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
09.02.2014, 11:03 | #30 |
| Windows 7: Festplatte füllt sich von selbst Oh das war eine Frage? Tut mir leid ich hab irgendwie gedacht das soll sarkastisch sein. Also zzlib.lnk und zzlib.exe kenne ich nicht aber ich bin mir sicher das es zu Steam gehört. Vielen Dank schrauber für deine Hilfe aber ich glaube ich werd jetzt einfach formartieren, irgendwie will einfach nichts funktionieren. Tut mir leid das ich deine Zeit verschwendet habe |
Themen zu Windows 7: Festplatte füllt sich von selbst |
adblock, ahnung, anderen, bingbar, board, ccsetup, download, falsch, festplatte, focus, frage, frst64.exe durchgeführt, hilfe bei trojaner, leute, log, log auswerten, lösung, min, msiinstaller, natürlich, neu, platte, problem, refresh, sache, sachen, scan, speicherplatz, trojaner, trojaner board, viren, virtualbox, wichtige, win64, windows, windows 7, windows 7 64 bit |