| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: E-Mail Konto wurde anscheinend gehacktWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
02.03.2014, 15:09
| #1 |
 |  E-Mail Konto wurde anscheinend gehackt FRST: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-03-2014 01
Ran by Tobias (administrator) on TOBIAS-PC on 02-03-2014 14:57:06
Running from C:\Users\Tobias\Desktop
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
() C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(VMware, Inc.) C:\WINDOWS\SysWOW64\vmnat.exe
(VMware, Inc.) C:\WINDOWS\SysWOW64\vmnetdhcp.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
() C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
() C:\Program Files (x86)\PHotkey\PHotkey.exe
() C:\Program Files (x86)\PHotkey\ATouch64.exe
() C:\Program Files (x86)\PHotkey\POSD.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe
() C:\Program Files (x86)\PHotkey\GPMTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\WINDOWS\system32\wwahost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(TODO: <Company name>) C:\Program Files (x86)\PHotkey\HCSynApi.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9600.16422_x64__8wekyb3d8bbwe\glcnd.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Adobe Systems, Inc.) C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
(Adobe Systems, Inc.) C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13571656 2013-06-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1311304 2013-06-05] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7830328 2013-05-21] (Motorola Solutions, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2994928 2013-06-04] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110144 2013-03-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [492248 2012-12-26] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-11] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Service] - C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [263128 2013-03-05] (CyberLink Corp.)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4962320 2014-01-22] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [vmware-tray.exe] - C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [111696 2013-10-18] (VMware, Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDFPrint] - C:\Program Files (x86)\PDF24\pdf24.exe [189480 2014-02-06] (Geek Software GmbH)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-02-14] (Samsung Electronics Co., Ltd.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-931761489-1796348092-2382460023-1001\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-931761489-1796348092-2382460023-1002\...\Run: [Akamai NetSession Interface] - "C:\Users\Tobias\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-931761489-1796348092-2382460023-1002\...\Run: [Spotify Web Helper] - C:\Users\Tobias\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-16] (Spotify Ltd)
HKU\S-1-5-21-931761489-1796348092-2382460023-1002\...\Run: [AVG-Secure-Search-Update_1213b] - C:\Users\Tobias\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=f8378a614fb747d39d24ddc2bbce9bc3-97b08f28a2098072b9b3a4d0bef860b7e8d4e98e /CMPID=1213b
HKU\S-1-5-21-931761489-1796348092-2382460023-1002\...\Run: [AdobeBridge] - [X]
HKU\S-1-5-21-931761489-1796348092-2382460023-1002\...\Run: [HP Officejet Pro 8500 A910 (NET)] - C:\Program Files\HP\HP Officejet Pro 8500 A910\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-931761489-1796348092-2382460023-1002\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564992 2014-02-14] (Samsung)
HKU\S-1-5-21-931761489-1796348092-2382460023-1002\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
Startup: C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Tobias\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
SearchScopes: HKCU - {B85A229F-EF4B-45CA-97E1-E3AE9DCA3A73} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\fderxzgu.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Unblock YouTube - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\fderxzgu.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7} [2014-01-10]
FF Extension: WOT - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\fderxzgu.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-01-02]
FF Extension: YouTube Center - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\fderxzgu.default\Extensions\jid1-cwbvBTE216jjpg@jetpack.xpi [2014-01-10]
FF Extension: New Tab Tools - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\fderxzgu.default\Extensions\newtabtools@darktrojan.net.xpi [2014-01-01]
FF Extension: NoScript - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\fderxzgu.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-01-01]
FF Extension: Adblock Edge - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\fderxzgu.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2014-01-01]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (webSaave) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\egnholjglgannkbcnhadgkgbfjaogdao [2014-01-31]
CHR Extension: (grreaaTSaver) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihhkmealpkdipdiogohdgeklafcpmikc [2013-12-27]
==================== Services (Whitelisted) =================
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3788816 2014-01-22] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-01-01] (Microsoft Corporation)
R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [74712 2013-03-11] (CyberLink)
S2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [316376 2013-03-11] (CyberLink)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation)
R2 GFNEXSrv; C:\Program Files (x86)\PHotkey\GFNEXSrv.exe [160256 2013-01-19] ()
R2 HPSLPSVC; C:\Users\Tobias\AppData\Local\Temp\7zS0F24\hpslpsvc64.dll [1039360 2013-07-19] (Hewlett-Packard Co.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [156616 2013-06-26] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [14760 2013-01-11] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.)
S4 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-07-26] (Nitro PDF Software)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2010-08-19] ()
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation)
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [14405200 2013-10-18] ()
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [243480 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [196376 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [252728 2013-10-21] (AVG Technologies CZ, s.r.o.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1385272 2013-04-23] (Motorola Solutions, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-02-26] (LogMeIn Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [115656 2013-06-03] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3589600 2013-09-25] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [3597792 2013-05-14] (Intel Corporation)
R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
R3 PegaRadioSwitch; C:\Windows\System32\drivers\PegaRadioSwitch.sys [23552 2013-03-06] (Windows (R) Win 7 DDK provider)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-06-04] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-06-04] (Synaptics Incorporated)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-29] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2030-11-12 02:49 - 2030-11-12 02:49 - 00003306 _____ () C:\WINDOWS\System32\Tasks\Dolby Selector
2030-11-12 02:49 - 2030-11-12 02:49 - 00000000 ____D () C:\Program Files (x86)\Dolby Home Theater v4
2030-11-12 02:41 - 2013-11-29 15:31 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2030-11-12 02:34 - 2030-11-12 02:34 - 00002324 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3922482432-2313349242-445825814-500
2014-03-02 14:57 - 2014-03-02 14:57 - 00022992 _____ () C:\Users\Tobias\Desktop\FRST.txt
2014-03-02 14:56 - 2014-03-02 14:57 - 00000000 ____D () C:\FRST
2014-03-02 14:52 - 2014-03-02 14:52 - 02156544 _____ (Farbar) C:\Users\Tobias\Desktop\FRST64.exe
2014-03-02 13:45 - 2014-03-02 14:09 - 00000000 ____D () C:\Users\Tobias\Downloads\MS Office 2010 Pro Plus Schule
2014-03-01 15:01 - 2014-03-01 15:01 - 00000000 ____D () C:\WINDOWS\LastGood
2014-03-01 14:59 - 2014-03-01 14:59 - 00000000 ____D () C:\Users\Tobias\Documents\samsung
2014-03-01 14:59 - 2014-03-01 14:59 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Samsung
2014-03-01 14:59 - 2014-03-01 14:59 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Samsung
2014-03-01 14:59 - 2014-03-01 14:59 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
2014-03-01 14:57 - 2014-03-01 14:57 - 00000000 ____D () C:\Program Files (x86)\MyFree Codec
2014-03-01 14:55 - 2014-01-23 18:23 - 04659712 _____ (Dmitry Streblechenko) C:\WINDOWS\SysWOW64\Redemption.dll
2014-03-01 14:55 - 2014-01-23 18:23 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\WINDOWS\SysWOW64\secman.dll
2014-03-01 14:54 - 2014-03-01 14:57 - 00000000 ____D () C:\ProgramData\Samsung
2014-03-01 14:54 - 2014-03-01 14:57 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-03-01 14:51 - 2014-03-01 14:51 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Downloaded Installations
2014-03-01 11:52 - 2014-03-01 11:52 - 00000000 ____D () C:\WINDOWS\SysWOW64\Adobe
2014-03-01 11:48 - 2014-03-01 11:48 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-28 11:03 - 2014-02-28 11:11 - 00000000 ____D () C:\Users\Tobias\Desktop\.minecraft
2014-02-27 21:46 - 2014-02-27 21:47 - 00001760 _____ () C:\Users\Tobias\Desktop\c# codesnippet.txt
2014-02-27 18:23 - 2014-02-27 17:36 - 00000000 ____D () C:\Users\Tobias\Desktop\MinecraftServer 1.7.2
2014-02-27 17:40 - 2014-02-27 17:43 - 21512302 _____ () C:\Users\Tobias\Desktop\MinecraftServer 1.7.2.rar
2014-02-27 08:09 - 2014-02-27 08:09 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Skype
2014-02-26 22:31 - 2014-02-26 22:31 - 00000495 _____ () C:\Users\Tobias\Documents\eine txtdatei.txt
2014-02-26 22:15 - 2014-02-26 22:15 - 209715200 _____ () C:\Users\Tobias\Documents\laufwerk.xyz
2014-02-26 19:57 - 2014-02-26 19:57 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-02-25 18:32 - 2013-02-25 20:10 - 00000000 ____D () C:\Users\Tobias\Desktop\Pieces by Lukey (AE Template Intro)
2014-02-24 09:47 - 1998-03-25 18:27 - 00366592 _____ () C:\Users\Tobias\Desktop\STGR32.EXE
2014-02-24 09:42 - 2014-02-24 09:42 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-02-23 21:39 - 2014-02-23 21:39 - 05360979 _____ () C:\Users\Tobias\Desktop\FREE Outro Template Socials Icons AE, Sony Vegas Download.mp4
2014-02-23 21:37 - 2014-02-23 21:37 - 03535219 _____ () C:\Users\Tobias\Desktop\FREE Outro Template - spoken typographie.mp4
2014-02-23 21:35 - 2014-02-23 21:35 - 48528265 _____ () C:\Users\Tobias\Desktop\Outro Template.rar
2014-02-23 21:01 - 2014-02-23 21:03 - 83352754 _____ () C:\Users\Tobias\Desktop\Outro Youtube.rar
2014-02-23 20:48 - 2014-02-23 20:48 - 04002357 _____ () C:\Users\Tobias\Desktop\FREE Minecraft 3D Block Intro Template (After Effects CS5.5-CS6).mp4
2014-02-23 20:44 - 2014-02-23 20:44 - 23921504 _____ () C:\Users\Tobias\Desktop\3D Minecraft Intro Template (CS5-5 & CS6) by Uniblue Media.zip
2014-02-23 20:32 - 2014-02-23 20:32 - 01434624 _____ () C:\Users\Tobias\Desktop\_COMPLETELY FREE DOWNLOAD!_ - Adobe After Effects Template - Static Flux @@@.mp4
2014-02-23 20:32 - 2014-02-23 20:31 - 01654009 _____ () C:\Users\Tobias\Desktop\Flux Static Template Quantum Editing.zip
2014-02-23 20:25 - 2014-02-23 20:45 - 242415666 _____ () C:\Users\Tobias\Desktop\Pieces by Lukey (AE Template Intro).rar
2014-02-23 20:23 - 2014-02-23 20:25 - 08954847 _____ () C:\Users\Tobias\Desktop\Free Template The Heavens Quantum Editing.zip
2014-02-23 20:23 - 2014-02-23 20:24 - 12763406 _____ () C:\Users\Tobias\Desktop\_FREE DOWNLOAD!_ After Effects Intro Template - Pieces (Shatter Style Intro) @@@.mp4
2014-02-23 20:23 - 2014-02-23 20:23 - 14116626 _____ () C:\Users\Tobias\Desktop\_COMPLETELY FREE DOWNLOAD!_ - Adobe After Effects Template - 'The Heavens' @@@.mp4
2014-02-23 11:19 - 2014-02-23 12:21 - 00000000 ____D () C:\Users\Tobias\Documents\SimCity 4
2014-02-23 11:09 - 2014-02-23 11:09 - 00000533 _____ () C:\WINDOWS\eReg.dat
2014-02-23 11:09 - 2014-02-23 11:09 - 00000000 ____D () C:\Program Files (x86)\Maxis
2014-02-22 18:51 - 2014-02-24 09:46 - 00000279 _____ () C:\Users\Tobias\Desktop\tmpcleaner.bat
2014-02-21 21:28 - 2014-02-21 21:28 - 03058790 _____ () C:\Users\Tobias\Desktop\FREE TEMPLATE AE CS6 # 102.mp4
2014-02-21 21:23 - 2014-02-21 21:25 - 969947252 _____ () C:\Users\Tobias\Desktop\intr0-fail.avi
2014-02-20 21:28 - 2014-02-21 19:25 - 00000000 ____D () C:\Users\Tobias\AppData\Local\RealVNC
2014-02-20 21:10 - 2014-02-20 21:10 - 00000000 ____D () C:\Users\Tobias\AppData\Local\PDF24
2014-02-20 21:10 - 2014-02-20 21:10 - 00000000 ____D () C:\Program Files (x86)\PDF24
2014-02-20 20:00 - 2014-02-20 20:00 - 00001213 _____ () C:\Users\Public\Desktop\Shop für Zubehör - HP Officejet Pro 8500 A910.lnk
2014-02-20 20:00 - 2014-02-20 20:00 - 00000000 ____D () C:\Program Files\HP
2014-02-20 20:00 - 2012-10-17 04:31 - 00741480 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPM5312.dll
2014-02-20 14:12 - 2014-02-20 15:57 - 322528587 _____ () C:\Users\Tobias\Downloads\PhotoshopPortableCC14.zip
2014-02-20 09:24 - 2014-02-18 19:25 - 94162062 _____ () C:\Users\Tobias\Desktop\minecraft_backup_18-02-2014-14-02-43.tar.gz
2014-02-20 06:31 - 2014-02-20 21:59 - 00000000 ____D () C:\AeroGlass
2014-02-18 20:49 - 2014-02-18 20:49 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UltraUXThemePatcher
2014-02-18 20:49 - 2014-02-18 20:49 - 00000000 ____D () C:\Program Files (x86)\UltraUXThemePatcher
2014-02-18 20:49 - 2013-08-22 12:47 - 01165824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll.backup
2014-02-18 20:49 - 2013-08-22 12:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxinit.dll.backup
2014-02-18 20:49 - 2013-08-22 11:46 - 02862080 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll.backup
2014-02-18 20:10 - 2014-02-18 20:11 - 00000000 ____D () C:\Users\Tobias\Documents\JAVA
2014-02-18 20:10 - 2014-02-18 20:10 - 00000000 ____D () C:\Users\Tobias\Documents\photoshop-facebook
2014-02-17 06:25 - 2014-02-17 06:25 - 00000928 _____ () C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CROCCLIP.lnk
2014-02-17 06:24 - 2003-01-09 18:36 - 02586112 ____R (Crocodile Clips Ltd.) C:\Users\Tobias\Documents\CROCCLIP.EXE
2014-02-13 17:02 - 2014-02-13 17:01 - 00001091 _____ () C:\Users\Tobias\Desktop\Notepad++.lnk
2014-02-12 22:30 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-12 22:30 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-12 22:30 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-12 22:30 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-12 22:30 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-12 22:30 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-12 22:30 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-12 22:30 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-12 22:30 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-12 22:30 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-12 22:30 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-12 22:30 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-12 22:30 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-12 22:30 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-12 22:30 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-12 22:30 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-12 22:30 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-12 22:30 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-12 22:30 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-12 22:30 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-12 22:30 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-12 22:30 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-12 22:30 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-12 22:30 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-12 22:30 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-12 22:30 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-12 22:30 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-12 22:30 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-12 22:30 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-12 22:30 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-12 22:30 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-12 22:30 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-12 22:30 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-12 22:30 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-12 22:30 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-12 22:30 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-12 22:30 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-12 22:30 - 2014-01-07 06:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-12 22:30 - 2014-01-07 05:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-12 22:30 - 2014-01-03 00:54 - 00063488 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2014-02-12 22:30 - 2013-12-09 01:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-12 22:30 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-12 22:30 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-12 22:30 - 2013-12-09 00:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-12 22:30 - 2013-11-21 07:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-12 22:30 - 2013-11-21 06:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-12 22:29 - 2014-01-09 09:25 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-12 22:29 - 2014-01-09 08:59 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-12 22:29 - 2014-01-09 08:59 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-12 22:29 - 2014-01-09 08:49 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-12 22:29 - 2014-01-09 08:44 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-12 22:29 - 2014-01-09 08:43 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-12 22:29 - 2014-01-09 08:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-12 22:29 - 2014-01-09 08:28 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-12 22:29 - 2014-01-09 08:28 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-12 22:29 - 2014-01-09 08:18 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-12 22:29 - 2014-01-08 02:46 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-12 22:29 - 2014-01-08 02:41 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-12 22:29 - 2014-01-08 02:41 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-12 22:29 - 2014-01-04 21:50 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-12 22:29 - 2014-01-04 20:22 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-12 22:29 - 2014-01-04 16:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-12 22:29 - 2014-01-04 16:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-12 22:29 - 2014-01-04 15:30 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-12 22:29 - 2014-01-04 15:23 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-12 22:29 - 2014-01-04 15:08 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-12 22:29 - 2014-01-04 14:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-12 22:29 - 2014-01-04 14:42 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-12 22:29 - 2014-01-04 14:40 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-12 22:29 - 2014-01-04 14:36 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-12 22:29 - 2014-01-04 14:28 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-12 22:29 - 2014-01-03 00:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-12 22:29 - 2014-01-03 00:48 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-12 22:29 - 2014-01-03 00:40 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-12 22:29 - 2014-01-03 00:38 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-12 22:29 - 2014-01-01 02:55 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-12 22:29 - 2014-01-01 02:52 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-12 22:29 - 2014-01-01 01:56 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-12 22:29 - 2014-01-01 01:55 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-12 22:29 - 2014-01-01 00:59 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-12 22:29 - 2014-01-01 00:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-12 22:29 - 2014-01-01 00:56 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-12 22:29 - 2013-12-31 00:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-12 22:29 - 2013-12-31 00:33 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-12 22:29 - 2013-12-31 00:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-12 22:29 - 2013-12-31 00:31 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-12 22:29 - 2013-12-31 00:31 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-12 22:29 - 2013-12-27 16:09 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-12 22:29 - 2013-12-27 11:38 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-12 22:29 - 2013-12-27 09:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-12 22:29 - 2013-12-27 09:57 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-12 22:29 - 2013-12-27 09:23 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-12 22:29 - 2013-12-27 09:16 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-12 22:29 - 2013-12-27 08:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-12 22:29 - 2013-12-27 08:03 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-12 22:29 - 2013-12-27 07:37 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-12 22:29 - 2013-12-21 08:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-12 22:29 - 2013-12-21 03:10 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-12 22:29 - 2013-12-21 03:10 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-12 22:29 - 2013-12-17 08:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-12 22:29 - 2013-12-14 07:31 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-12 22:29 - 2013-12-14 07:19 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-12 22:29 - 2013-12-13 11:54 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-12 22:29 - 2013-12-13 07:36 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-12 22:29 - 2013-12-13 06:32 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-12 22:29 - 2013-12-09 09:05 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-12 22:29 - 2013-12-09 05:51 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-12 22:29 - 2013-12-09 04:25 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-12 22:28 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-12 22:28 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-12 22:28 - 2013-12-20 11:10 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-12 22:28 - 2013-12-20 07:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-12 22:28 - 2013-12-09 03:57 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-12 22:28 - 2013-12-09 02:51 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-07 19:40 - 2014-02-07 19:40 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\com.adobe.dmp.contentviewer
2014-02-07 19:29 - 2014-02-07 19:29 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\AdobeMuse
2014-02-07 16:46 - 2014-02-07 16:46 - 00000000 ____D () C:\Users\Tobias\.android
2014-02-07 15:54 - 2014-02-07 15:54 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-02-07 15:54 - 2014-02-07 15:54 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-02-06 22:07 - 2014-03-02 14:53 - 00000000 ____D () C:\Users\Tobias\Documents\LINUX
2014-02-06 20:50 - 2014-02-06 20:50 - 00000000 ____D () C:\ProgramData\ALM
2014-02-06 19:38 - 2014-02-06 19:38 - 00003431 _____ () C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse.lnk
2014-02-05 20:06 - 2013-12-09 01:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-02-05 20:06 - 2013-12-09 01:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-02-05 20:06 - 2013-11-27 16:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-02-05 20:06 - 2013-11-27 16:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-02-05 20:06 - 2013-11-27 15:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-02-05 20:06 - 2013-11-27 14:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-02-05 20:06 - 2013-11-27 13:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-02-05 20:06 - 2013-11-27 11:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-02-05 20:06 - 2013-11-27 10:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-02-05 20:06 - 2013-11-27 10:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-02-05 20:06 - 2013-11-27 10:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-02-05 20:06 - 2013-11-27 10:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-02-05 20:06 - 2013-11-27 09:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-02-05 20:06 - 2013-11-27 09:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-02-05 20:06 - 2013-11-27 05:01 - 00385614 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-02-05 20:06 - 2013-11-26 14:22 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-02-05 20:06 - 2013-11-26 14:20 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-02-05 20:06 - 2013-11-26 14:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-02-05 20:06 - 2013-11-26 14:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-02-05 20:06 - 2013-11-26 12:50 - 01371312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-02-05 20:06 - 2013-11-26 12:44 - 02142936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-02-05 20:06 - 2013-11-26 12:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-02-05 20:06 - 2013-11-25 02:45 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-02-05 20:06 - 2013-11-25 02:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-02-05 20:06 - 2013-11-25 00:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-02-05 20:06 - 2013-11-25 00:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-02-05 20:06 - 2013-11-23 13:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-02-05 20:06 - 2013-11-23 08:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-02-05 20:06 - 2013-11-23 08:13 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-02-05 20:06 - 2013-11-23 08:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-02-05 20:06 - 2013-11-23 05:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-02-05 20:06 - 2013-11-23 04:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-02-05 20:06 - 2013-11-23 04:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-02-05 20:06 - 2013-11-21 07:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-02-05 20:06 - 2013-11-21 07:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-02-05 20:06 - 2013-11-16 06:11 - 00764856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-02-05 20:06 - 2013-11-15 19:19 - 00669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-02-05 20:06 - 2013-11-15 15:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-02-05 20:06 - 2013-11-15 15:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-02-05 20:06 - 2013-11-15 15:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-02-05 20:06 - 2013-11-15 14:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-02-05 20:06 - 2013-11-05 21:12 - 02551128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-02-05 20:06 - 2013-10-31 01:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-02-05 20:06 - 2013-10-31 00:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-02-02 19:31 - 2014-02-02 21:23 - 00000000 ____D () C:\Users\Tobias\Documents\USB Stick
2014-02-02 16:57 - 2014-02-02 16:59 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Nitro PDF
2014-01-31 17:52 - 2014-01-31 17:52 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Torch
2014-01-31 17:52 - 2014-01-31 17:52 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Torch
2014-01-31 17:52 - 2014-01-31 17:52 - 00000000 ____D () C:\ProgramData\SetApp
==================== One Month Modified Files and Folders =======
2030-11-12 02:49 - 2030-11-12 02:49 - 00003306 _____ () C:\WINDOWS\System32\Tasks\Dolby Selector
2030-11-12 02:49 - 2030-11-12 02:49 - 00000000 ____D () C:\Program Files (x86)\Dolby Home Theater v4
2030-11-12 02:34 - 2030-11-12 02:34 - 00002324 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3922482432-2313349242-445825814-500
2030-11-12 02:34 - 2013-08-08 12:27 - 00002990 _____ () C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2014-03-02 14:57 - 2014-03-02 14:57 - 00022992 _____ () C:\Users\Tobias\Desktop\FRST.txt
2014-03-02 14:57 - 2014-03-02 14:56 - 00000000 ____D () C:\FRST
2014-03-02 14:53 - 2014-02-06 22:07 - 00000000 ____D () C:\Users\Tobias\Documents\LINUX
2014-03-02 14:52 - 2014-03-02 14:52 - 02156544 _____ (Farbar) C:\Users\Tobias\Desktop\FRST64.exe
2014-03-02 14:45 - 2013-11-30 11:30 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Skype
2014-03-02 14:26 - 2014-01-05 11:27 - 01525190 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-02 14:10 - 2014-01-05 22:40 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-03-02 14:09 - 2014-03-02 13:45 - 00000000 ____D () C:\Users\Tobias\Downloads\MS Office 2010 Pro Plus Schule
2014-03-02 14:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-03-02 13:44 - 2013-12-05 18:15 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\VMware
2014-03-02 13:44 - 2013-12-05 18:15 - 00000000 ____D () C:\Users\Tobias\AppData\Local\VMware
2014-03-02 13:27 - 2013-12-05 18:05 - 00000000 ____D () C:\ProgramData\VMware
2014-03-02 13:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-03-02 10:13 - 2013-11-30 11:46 - 00000000 ____D () C:\ProgramData\MFAData
2014-03-02 10:11 - 2013-11-30 12:25 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Adobe
2014-03-02 10:09 - 2013-12-01 16:21 - 00000000 __RDO () C:\Users\Tobias\SkyDrive
2014-03-01 22:59 - 2014-01-06 10:22 - 00000000 ____D () C:\Users\Tobias\AppData\Local\CrashDumps
2014-03-01 19:12 - 2013-11-30 19:05 - 00000000 ___RD () C:\Users\Tobias\Desktop\Schule
2014-03-01 15:49 - 2013-11-29 15:38 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-931761489-1796348092-2382460023-1002
2014-03-01 15:01 - 2014-03-01 15:01 - 00000000 ____D () C:\WINDOWS\LastGood
2014-03-01 15:01 - 2014-01-17 13:02 - 00022847 _____ () C:\WINDOWS\setupact.log
2014-03-01 14:59 - 2014-03-01 14:59 - 00000000 ____D () C:\Users\Tobias\Documents\samsung
2014-03-01 14:59 - 2014-03-01 14:59 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Samsung
2014-03-01 14:59 - 2014-03-01 14:59 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Samsung
2014-03-01 14:59 - 2014-03-01 14:59 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
2014-03-01 14:57 - 2014-03-01 14:57 - 00000000 ____D () C:\Program Files (x86)\MyFree Codec
2014-03-01 14:57 - 2014-03-01 14:54 - 00000000 ____D () C:\ProgramData\Samsung
2014-03-01 14:57 - 2014-03-01 14:54 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-03-01 14:55 - 2013-03-25 11:31 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-01 14:51 - 2014-03-01 14:51 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Downloaded Installations
2014-03-01 14:46 - 2014-01-09 10:20 - 00003102 _____ () C:\WINDOWS\PFRO.log
2014-03-01 14:46 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-03-01 14:45 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-03-01 14:02 - 2013-12-23 15:00 - 00000000 ____D () C:\Users\Tobias\AppData\Local\LogMeIn Hamachi
2014-03-01 13:25 - 2013-12-01 19:20 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\FileZilla
2014-03-01 11:53 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Macromed
2014-03-01 11:52 - 2014-03-01 11:52 - 00000000 ____D () C:\WINDOWS\SysWOW64\Adobe
2014-03-01 11:48 - 2014-03-01 11:48 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-03-01 11:33 - 2013-11-30 18:56 - 00002288 ____H () C:\Users\Tobias\Documents\Default.rdp
2014-03-01 09:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-28 11:11 - 2014-02-28 11:03 - 00000000 ____D () C:\Users\Tobias\Desktop\.minecraft
2014-02-28 11:07 - 2013-12-05 09:09 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\.minecraft
2014-02-27 21:47 - 2014-02-27 21:46 - 00001760 _____ () C:\Users\Tobias\Desktop\c# codesnippet.txt
2014-02-27 17:43 - 2014-02-27 17:40 - 21512302 _____ () C:\Users\Tobias\Desktop\MinecraftServer 1.7.2.rar
2014-02-27 17:36 - 2014-02-27 18:23 - 00000000 ____D () C:\Users\Tobias\Desktop\MinecraftServer 1.7.2
2014-02-27 13:51 - 2014-01-02 18:04 - 00000000 ____D () C:\Users\Tobias\Documents\Camtasia Studio
2014-02-27 11:49 - 2013-12-01 19:20 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2014-02-27 08:09 - 2014-02-27 08:09 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Skype
2014-02-27 08:08 - 2013-11-30 11:30 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-27 08:08 - 2013-11-30 11:30 - 00000000 ____D () C:\ProgramData\Skype
2014-02-26 22:31 - 2014-02-26 22:31 - 00000495 _____ () C:\Users\Tobias\Documents\eine txtdatei.txt
2014-02-26 22:15 - 2014-02-26 22:15 - 209715200 _____ () C:\Users\Tobias\Documents\laufwerk.xyz
2014-02-26 19:57 - 2014-02-26 19:57 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-02-26 15:11 - 2013-08-22 15:44 - 05223936 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-26 14:31 - 2013-12-03 19:45 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-26 14:30 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-26 14:30 - 2013-08-22 14:25 - 00000167 _____ () C:\WINDOWS\win.ini
2014-02-26 14:25 - 2014-01-01 13:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-26 14:24 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-02-25 14:28 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-02-24 20:26 - 2013-12-09 18:42 - 00001456 _____ () C:\Users\Tobias\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-02-24 09:46 - 2014-02-22 18:51 - 00000279 _____ () C:\Users\Tobias\Desktop\tmpcleaner.bat
2014-02-24 09:42 - 2014-02-24 09:42 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-02-23 22:03 - 2013-12-09 16:33 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Paint.NET
2014-02-23 21:39 - 2014-02-23 21:39 - 05360979 _____ () C:\Users\Tobias\Desktop\FREE Outro Template Socials Icons AE, Sony Vegas Download.mp4
2014-02-23 21:37 - 2014-02-23 21:37 - 03535219 _____ () C:\Users\Tobias\Desktop\FREE Outro Template - spoken typographie.mp4
2014-02-23 21:35 - 2014-02-23 21:35 - 48528265 _____ () C:\Users\Tobias\Desktop\Outro Template.rar
2014-02-23 21:03 - 2014-02-23 21:01 - 83352754 _____ () C:\Users\Tobias\Desktop\Outro Youtube.rar
2014-02-23 20:48 - 2014-02-23 20:48 - 04002357 _____ () C:\Users\Tobias\Desktop\FREE Minecraft 3D Block Intro Template (After Effects CS5.5-CS6).mp4
2014-02-23 20:45 - 2014-02-23 20:25 - 242415666 _____ () C:\Users\Tobias\Desktop\Pieces by Lukey (AE Template Intro).rar
2014-02-23 20:44 - 2014-02-23 20:44 - 23921504 _____ () C:\Users\Tobias\Desktop\3D Minecraft Intro Template (CS5-5 & CS6) by Uniblue Media.zip
2014-02-23 20:32 - 2014-02-23 20:32 - 01434624 _____ () C:\Users\Tobias\Desktop\_COMPLETELY FREE DOWNLOAD!_ - Adobe After Effects Template - Static Flux @@@.mp4
2014-02-23 20:31 - 2014-02-23 20:32 - 01654009 _____ () C:\Users\Tobias\Desktop\Flux Static Template Quantum Editing.zip
2014-02-23 20:25 - 2014-02-23 20:23 - 08954847 _____ () C:\Users\Tobias\Desktop\Free Template The Heavens Quantum Editing.zip
2014-02-23 20:24 - 2014-02-23 20:23 - 12763406 _____ () C:\Users\Tobias\Desktop\_FREE DOWNLOAD!_ After Effects Intro Template - Pieces (Shatter Style Intro) @@@.mp4
2014-02-23 20:23 - 2014-02-23 20:23 - 14116626 _____ () C:\Users\Tobias\Desktop\_COMPLETELY FREE DOWNLOAD!_ - Adobe After Effects Template - 'The Heavens' @@@.mp4
2014-02-23 18:54 - 2013-12-06 22:20 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\TeamViewer
2014-02-23 12:34 - 2014-01-01 19:50 - 00000000 ____D () C:\Users\Tobias\Documents\Visual Studio 2013
2014-02-23 12:21 - 2014-02-23 11:19 - 00000000 ____D () C:\Users\Tobias\Documents\SimCity 4
2014-02-23 11:09 - 2014-02-23 11:09 - 00000533 _____ () C:\WINDOWS\eReg.dat
2014-02-23 11:09 - 2014-02-23 11:09 - 00000000 ____D () C:\Program Files (x86)\Maxis
2014-02-23 11:05 - 2013-11-29 23:52 - 00000000 ____D () C:\Users\Tobias
2014-02-21 21:28 - 2014-02-21 21:28 - 03058790 _____ () C:\Users\Tobias\Desktop\FREE TEMPLATE AE CS6 # 102.mp4
2014-02-21 21:25 - 2014-02-21 21:23 - 969947252 _____ () C:\Users\Tobias\Desktop\intr0-fail.avi
2014-02-21 20:59 - 2013-12-01 21:21 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-02-21 20:57 - 2013-12-01 21:16 - 00000000 ____D () C:\Program Files\Adobe
2014-02-21 20:57 - 2013-12-01 21:13 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-02-21 20:56 - 2013-12-01 20:45 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-02-21 20:56 - 2013-11-29 15:25 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Adobe
2014-02-21 19:25 - 2014-02-20 21:28 - 00000000 ____D () C:\Users\Tobias\AppData\Local\RealVNC
2014-02-21 13:03 - 2014-01-05 22:40 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-02-20 21:59 - 2014-02-20 06:31 - 00000000 ____D () C:\AeroGlass
2014-02-20 21:10 - 2014-02-20 21:10 - 00000000 ____D () C:\Users\Tobias\AppData\Local\PDF24
2014-02-20 21:10 - 2014-02-20 21:10 - 00000000 ____D () C:\Program Files (x86)\PDF24
2014-02-20 20:00 - 2014-02-20 20:00 - 00001213 _____ () C:\Users\Public\Desktop\Shop für Zubehör - HP Officejet Pro 8500 A910.lnk
2014-02-20 20:00 - 2014-02-20 20:00 - 00000000 ____D () C:\Program Files\HP
2014-02-20 20:00 - 2014-01-15 20:13 - 00000000 ____D () C:\ProgramData\HP
2014-02-20 20:00 - 2014-01-15 20:13 - 00000000 ____D () C:\Program Files (x86)\HP
2014-02-20 19:57 - 2013-11-29 15:26 - 00000000 ___RD () C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-20 15:57 - 2014-02-20 14:12 - 322528587 _____ () C:\Users\Tobias\Downloads\PhotoshopPortableCC14.zip
2014-02-20 14:16 - 2013-11-30 19:05 - 00007617 _____ () C:\Users\Tobias\Documents\Lieder.txt
2014-02-18 20:51 - 2014-01-01 13:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-18 20:49 - 2014-02-18 20:49 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UltraUXThemePatcher
2014-02-18 20:49 - 2014-02-18 20:49 - 00000000 ____D () C:\Program Files (x86)\UltraUXThemePatcher
2014-02-18 20:49 - 2013-08-22 12:47 - 01165824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2014-02-18 20:49 - 2013-08-22 12:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxinit.dll
2014-02-18 20:49 - 2013-08-22 11:46 - 02862080 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2014-02-18 20:11 - 2014-02-18 20:10 - 00000000 ____D () C:\Users\Tobias\Documents\JAVA
2014-02-18 20:10 - 2014-02-18 20:10 - 00000000 ____D () C:\Users\Tobias\Documents\photoshop-facebook
2014-02-18 19:25 - 2014-02-20 09:24 - 94162062 _____ () C:\Users\Tobias\Desktop\minecraft_backup_18-02-2014-14-02-43.tar.gz
2014-02-17 22:00 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-17 22:00 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-17 06:25 - 2014-02-17 06:25 - 00000928 _____ () C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CROCCLIP.lnk
2014-02-14 19:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-14 10:26 - 2013-09-30 05:14 - 01898424 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-14 10:26 - 2013-09-30 04:56 - 00810918 _____ () C:\WINDOWS\system32\perfh007.dat
2014-02-14 10:26 - 2013-09-30 04:56 - 00178418 _____ () C:\WINDOWS\system32\perfc007.dat
2014-02-14 10:15 - 2013-11-30 18:52 - 00000000 ____D () C:\Users\Tobias\Documents\eclipse
2014-02-13 17:01 - 2014-02-13 17:02 - 00001091 _____ () C:\Users\Tobias\Desktop\Notepad++.lnk
2014-02-13 17:01 - 2013-12-01 18:33 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Notepad++
2014-02-13 09:31 - 2013-12-23 14:46 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\.technic
2014-02-12 22:47 - 2013-11-29 15:26 - 00000000 ___RD () C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-12 22:41 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-02-12 22:41 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-02-12 22:41 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-02-12 22:41 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-02-12 22:35 - 2013-11-29 20:07 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-12 22:31 - 2013-03-22 18:03 - 88567024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-09 17:09 - 2013-12-23 14:45 - 02332590 _____ () C:\Users\Tobias\Documents\TechnicLauncher.exe
2014-02-08 18:56 - 2013-12-24 16:57 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\uTorrent
2014-02-08 12:39 - 2014-01-21 22:11 - 00008502 _____ () C:\Users\Tobias\Documents\Rückzahlung.xlsx
2014-02-07 20:50 - 2013-12-02 21:43 - 00000000 ____D () C:\Program Files (x86)\Mirillis
2014-02-07 19:40 - 2014-02-07 19:40 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\com.adobe.dmp.contentviewer
2014-02-07 19:29 - 2014-02-07 19:29 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\AdobeMuse
2014-02-07 19:19 - 2013-12-01 20:51 - 00000000 ____D () C:\ProgramData\Adobe
2014-02-07 16:46 - 2014-02-07 16:46 - 00000000 ____D () C:\Users\Tobias\.android
2014-02-07 15:54 - 2014-02-07 15:54 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-02-07 15:54 - 2014-02-07 15:54 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-02-06 20:50 - 2014-02-06 20:50 - 00000000 ____D () C:\ProgramData\ALM
2014-02-06 20:16 - 2013-11-29 15:24 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Packages
2014-02-06 19:38 - 2014-02-06 19:38 - 00003431 _____ () C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse.lnk
2014-02-06 13:16 - 2014-02-12 22:30 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-12 22:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-12 22:30 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-12 22:30 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-12 22:30 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-12 22:30 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-12 22:30 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-06 11:49 - 2014-02-12 22:30 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-12 22:30 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-12 22:30 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-12 22:30 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-12 22:30 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-12 22:30 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-06 11:11 - 2014-02-12 22:30 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-12 22:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-12 22:30 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-12 22:30 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-12 22:30 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-12 22:30 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-12 22:30 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-12 22:30 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-06 10:47 - 2014-02-12 22:30 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-12 22:30 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-12 22:30 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-12 22:30 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-12 22:30 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-06 10:22 - 2014-02-12 22:30 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-12 22:30 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-12 22:30 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-12 22:30 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-12 22:30 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-12 22:30 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-12 22:30 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-12 22:30 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-12 22:30 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-05 20:08 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-02-05 20:08 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-02-03 09:36 - 2014-01-27 06:32 - 00000000 ____D () C:\Program Files\Microsoft Mouse and Keyboard Center
2014-02-02 21:23 - 2014-02-02 19:31 - 00000000 ____D () C:\Users\Tobias\Documents\USB Stick
2014-02-02 16:59 - 2014-02-02 16:57 - 00000000 ____D () C:\Users\Tobias\AppData\Roaming\Nitro PDF
2014-01-31 17:52 - 2014-01-31 17:52 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Torch
2014-01-31 17:52 - 2014-01-31 17:52 - 00000000 ____D () C:\Users\Tobias\AppData\Local\Torch
2014-01-31 17:52 - 2014-01-31 17:52 - 00000000 ____D () C:\ProgramData\SetApp
2014-01-31 17:52 - 2013-12-27 16:56 - 00000000 ____D () C:\ProgramData\InstallMate
2014-01-31 17:52 - 2013-12-27 16:56 - 00000000 ____D () C:\ProgramData\8975d47662e73285
Files to move or delete:
====================
C:\Users\Public\usbsafeguard6.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-22 15:40
==================== End Of Log ============================
--- --- --- Malewarebytes Logfile vom 27.02, falls relevant: Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.02.27.07 Windows 8 x64 NTFS Internet Explorer 11.0.9600.16518 Tobias :: TOBIAS-PC [Administrator] 27.02.2014 19:17:12 mbam-log-2014-02-27 (19-17-12).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 253660 Laufzeit: 9 Minute(n), 23 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
|
| Themen zu E-Mail Konto wurde anscheinend gehackt |
| adresse, bedrohungen, e-mail, erstell, erstellt, gehackt, gmail, guten, heute, komische, konten, konten gehackt, konto, mbam, morgen, nicht mehr, postfach, registriert, scan, schei, stelle, system, tagen, vergessen, verwendet, websites |
Typh0n 
Hybrid-Darstellung
