|
Plagegeister aller Art und deren Bekämpfung: Firefox voller Werbung und Pop-ups die 2.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
03.03.2014, 13:36 | #1 |
| Firefox voller Werbung und Pop-ups die 2. Hallo, also neuerdings gehen bei mir ständig 4-5 Pop-Ups auf und auf Internetseiten wird einfach Werbung eingeblendet. Das nervt tierisch!!! Habe natülrich adwcleaner schon durchlaufen lassen. Aber selbst nach dem Neustart hört es nicht auf. Anbei die mal die Auswertungen von FRST. Ich hoffe ihr könnt helfen?! |
03.03.2014, 14:20 | #2 |
/// the machine /// TB-Ausbilder | Firefox voller Werbung und Pop-ups die 2. Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke. So funktioniert es: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
03.03.2014, 14:43 | #3 |
| Firefox voller Werbung und Pop-ups die 2. Oh OK.
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-03-2014 Ran by XXXX (administrator) on OLIVERDASKE-PC on 03-03-2014 12:18:23 Running from C:\Users\XXXX\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\system32\atiesrxx.exe (AMD) C:\Windows\system32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe () C:\Windows\SysWOW64\srvany.exe () C:\Windows\KMService.exe () C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe () C:\Program Files (x86)\Universal Updater\UpdaterService.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe (Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191824 2012-08-10] (Realtek Semiconductor) HKLM\...\Run: [NUSB3MON] - C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [PDFPrint] - C:\Program Files (x86)\PDF24\pdf24.exe [189480 2014-02-06] (Geek Software GmbH) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-01-31] (Advanced Micro Devices, Inc.) HKU\S-1-5-21-1421406607-320617336-1857601709-1000\...\Run: [Quick Starter] - C:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exe [2336048 2014-02-06] (Samsung Electronics CO., LTD.) HKU\S-1-5-21-1421406607-320617336-1857601709-1000\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation) HKU\S-1-5-21-1421406607-320617336-1857601709-1000\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD) HKU\S-1-5-21-1421406607-320617336-1857601709-1000\...\Run: [EPLTarget\P0000000000000000] - C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2012-02-29] (SEIKO EPSON CORPORATION) Startup: C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Quick Starter.lnk ShortcutTarget: Quick Starter.lnk -> C:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exe (Samsung Electronics CO., LTD.) ==================== Internet (Whitelisted) ==================== StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: HD Streamer - {E6062A33-016E-4BDA-A6F1-890D989F8656} - C:\Program Files (x86)\HD Streamer\ScriptHost64.dll (HD Streamer) BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: HD Streamer - {E6062A33-016E-4BDA-A6F1-890D989F8656} - C:\Program Files (x86)\HD Streamer\ScriptHost.dll (HD Streamer) Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default FF Homepage: google.de FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll () FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\searchplugins\englische-ergebnisse.xml FF SearchPlugin: C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\searchplugins\gmx-suche.xml FF SearchPlugin: C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\searchplugins\gutscheinsuche.xml FF SearchPlugin: C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\searchplugins\lastminute.xml FF SearchPlugin: C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\searchplugins\webde-suche.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: HD Streamer - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\Extensions\hd_streamer@iMedia [2014-02-28] FF Extension: Firebug - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\Extensions\firebug@software.joehewitt.com.xpi [2014-02-12] FF Extension: TrashMail.net - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\Extensions\spam@trashmail.net.xpi [2014-02-12] FF Extension: GMX MailCheck - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\Extensions\toolbar@gmx.net.xpi [2014-02-12] FF Extension: FireFTP - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\Extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}.xpi [2014-02-12] FF Extension: Greasemonkey - C:\Users\XXXX\AppData\Roaming\Mozilla\Firefox\Profiles\e3dtpc3r.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-02-12] ==================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-01-31] (Advanced Micro Devices, Inc.) R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () R2 SamsungDeviceConfigurationWinService; C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [31624 2012-02-13] () R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.) R2 UniversalUpdater; C:\Program Files (x86)\Universal Updater\UpdaterService.exe [402872 2014-01-29] () R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [327296 2012-05-30] (Atheros) ==================== Drivers (Whitelisted) ==================== R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [36608 2013-12-11] (Advanced Micro Devices, Inc.) R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-11-04] (Advanced Micro Devices) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-02-13] (Disc Soft Ltd) S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-03 12:18 - 2014-03-03 12:18 - 00010318 _____ () C:\Users\XXXX\Desktop\FRST.txt 2014-03-03 12:18 - 2014-03-03 12:18 - 00000000 ____D () C:\FRST 2014-03-03 12:16 - 2014-03-03 12:16 - 02156544 _____ (Farbar) C:\Users\XXXX\Desktop\FRST64.exe 2014-03-03 11:39 - 2014-03-03 12:07 - 00000000 ____D () C:\AdwCleaner 2014-03-03 11:38 - 2014-03-03 11:38 - 01244192 _____ () C:\Users\XXXX\Desktop\adwcleaner_3.0.2.0.exe 2014-03-03 11:30 - 2014-03-03 11:30 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Nvu 2014-03-03 11:30 - 2014-03-03 11:30 - 00000000 ____D () C:\Program Files (x86)\Nvu 2014-03-03 10:39 - 2014-03-03 10:40 - 00000000 ____D () C:\Users\XXXX\Desktop\SQL 2014-03-03 10:21 - 2014-03-03 10:21 - 00067787 _____ () C:\Users\XXXX\Desktop\Verfügbarkeitsliste0303.csv 2014-02-28 16:28 - 2014-02-28 16:28 - 00000000 ____D () C:\Users\XXXX\eTeks 2014-02-28 16:26 - 2014-02-28 16:26 - 00000000 ____D () C:\Program Files (x86)\Universal Updater 2014-02-28 16:26 - 2014-02-28 16:26 - 00000000 ____D () C:\Program Files (x86)\HD Streamer 2014-02-28 16:25 - 2014-02-28 16:26 - 00000000 ____D () C:\Program Files\Sweet Home 3D 2014-02-28 08:57 - 2014-02-28 09:31 - 00000000 ____D () C:\Users\XXXX\Desktop\Mp3 03.14 2014-02-27 22:09 - 2014-03-03 07:49 - 00000000 ____D () C:\Users\XXXX\Desktop\Wohnung MD 2014-02-27 12:25 - 2014-02-27 12:25 - 00003008 _____ () C:\Windows\System32\Tasks\{AC47EE5C-B53A-497C-A697-7555BDE864DB} 2014-02-27 08:00 - 2014-02-27 08:00 - 00000000 ____D () C:\Users\XXXX\AppData\Local\AMD 2014-02-27 07:59 - 2014-02-27 07:59 - 00000000 ____D () C:\ProgramData\ATI 2014-02-26 22:47 - 2014-03-03 11:44 - 00065536 _____ () C:\Windows\system32\spu_storage.bin 2014-02-26 13:45 - 2014-02-26 13:45 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201402261345123380.log 2014-02-26 13:45 - 2014-02-26 13:45 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-02-26 13:45 - 2014-02-26 13:45 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-02-26 13:44 - 2014-02-26 13:45 - 00000000 ____D () C:\ProgramData\AMD 2014-02-26 13:28 - 2012-08-28 13:27 - 00058536 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys 2014-02-26 13:14 - 2014-02-26 13:14 - 00363226 _____ () C:\Users\XXXX\Desktop\Eurotrail 2014 BROCHURE D 3S.csv 2014-02-26 13:14 - 2014-02-26 13:14 - 00008841 _____ () C:\Users\XXXX\Desktop\Lager TravelSafe 24-02-14.csv 2014-02-26 13:13 - 2014-02-26 13:13 - 00030378 _____ () C:\Users\XXXX\Desktop\Lager Eurotrail 25-02-2014.csv 2014-02-26 09:59 - 2014-02-26 09:59 - 01372672 _____ () C:\Users\XXXX\Desktop\Eurotrail 2014 BROCHURE D 3S.xls 2014-02-26 09:59 - 2014-02-26 09:59 - 00038847 _____ () C:\Users\XXXX\Desktop\Lager Eurotrail 25-02-2014.xlsx 2014-02-26 09:59 - 2014-02-26 09:59 - 00019255 _____ () C:\Users\XXXX\Desktop\Lager TravelSafe 24-02-14.xlsx 2014-02-25 14:48 - 2014-02-26 13:44 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-02-25 14:47 - 2014-02-26 13:32 - 00000000 ____D () C:\AMD 2014-02-25 07:53 - 2014-02-25 07:53 - 00301688 _____ (Thesycon GmbH) C:\Users\XXXX\Desktop\dpclat.exe 2014-02-21 11:06 - 2014-02-21 11:06 - 00000000 ____D () C:\Program Files\Common Files\EPSON 2014-02-21 11:05 - 2014-02-21 11:06 - 00000000 ____D () C:\ProgramData\EPSON 2014-02-21 11:05 - 2011-04-20 03:03 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMHAE.DLL 2014-02-21 11:05 - 2011-03-15 03:03 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ID4BHAE.DLL 2014-02-21 11:05 - 2007-04-10 01:06 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL 2014-02-20 15:37 - 2014-02-26 07:39 - 00000000 ____D () C:\Users\XXXX\Desktop\LYO FOOD 2014-02-20 09:44 - 2014-02-25 16:10 - 00000000 ____D () C:\Users\XXXX\Desktop\Recon 2014-02-20 09:35 - 2014-02-20 09:35 - 00000165 ____H () C:\Users\XXXX\Desktop\~$Kopie von Contour Preisliste 2014 Retail.xlsx 2014-02-19 16:03 - 2014-02-19 16:03 - 00000000 ____D () C:\Program Files (x86)\PDF24 2014-02-19 13:08 - 2014-02-21 11:19 - 00009428 _____ () C:\Users\XXXX\Desktop\Hauptmahlzieten und Suppen-Table 1.csv 2014-02-19 13:08 - 2014-02-19 13:08 - 01051216 _____ () C:\Users\XXXX\Desktop\Früchte und Früstücke-Table 1.csv 2014-02-19 07:58 - 2013-10-17 16:32 - 00035112 _____ (TeamViewer GmbH) C:\Windows\system32\Drivers\teamviewervpn.sys 2014-02-18 11:23 - 2014-02-18 11:23 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Realtime Soft 2014-02-18 11:23 - 2014-02-18 11:23 - 00000000 ____D () C:\ProgramData\Realtime Soft 2014-02-18 11:23 - 2014-02-18 11:23 - 00000000 ____D () C:\Program Files\UltraMon 2014-02-18 11:14 - 2014-02-18 11:14 - 03231337 _____ () C:\Users\XXXX\Desktop\UltraMon.v3.2.0.x64.German.Incl.Keymaker-BLiZZARD.rar 2014-02-18 10:55 - 2014-02-25 15:14 - 00000000 ____D () C:\Users\XXXX\Desktop\Hitcase 2014-02-18 10:20 - 2014-02-18 10:20 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Brice_Lambson 2014-02-18 10:19 - 2014-02-26 13:28 - 00000000 ____D () C:\ProgramData\Package Cache 2014-02-18 10:19 - 2014-02-18 10:19 - 00000000 ____D () C:\Program Files\Image Resizer for Windows 2014-02-18 10:19 - 2014-02-18 10:19 - 00000000 ____D () C:\Program Files (x86)\Image Resizer for Windows 2014-02-18 10:17 - 2014-02-18 10:17 - 00000000 ____D () C:\Windows\Downloaded Installations 2014-02-17 16:28 - 2014-02-25 14:48 - 00000000 ____D () C:\Users\XXXX\Desktop\Contour 2014-02-17 08:58 - 2014-02-17 08:58 - 00000000 ___RD () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2014-02-17 08:55 - 2014-02-17 08:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-02-17 07:59 - 2014-03-03 12:07 - 00000000 ____D () C:\Users\XXXX\AppData\Local\CrashDumps 2014-02-16 12:44 - 2014-02-16 12:44 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\TV-Browser 2014-02-16 12:43 - 2014-02-16 12:43 - 00000000 ____D () C:\ProgramData\Sun 2014-02-16 12:43 - 2014-02-16 12:43 - 00000000 ____D () C:\ProgramData\Oracle 2014-02-16 12:43 - 2014-02-16 12:42 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-02-16 12:43 - 2014-02-16 12:42 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-02-16 12:43 - 2014-02-16 12:42 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-02-16 12:43 - 2014-02-16 12:42 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-16 12:42 - 2014-02-16 12:42 - 00000000 ____D () C:\Program Files (x86)\Java 2014-02-16 12:40 - 2014-02-16 12:40 - 00001916 _____ () C:\Users\Public\Desktop\TV-Browser.lnk 2014-02-16 12:40 - 2014-02-16 12:40 - 00000000 ____D () C:\Program Files (x86)\TV-Browser 2014-02-14 09:49 - 2014-02-27 16:40 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\TeamViewer 2014-02-14 08:45 - 2014-02-28 15:54 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\vlc 2014-02-14 08:44 - 2014-02-14 08:44 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\WinRAR 2014-02-14 08:44 - 2014-02-14 08:44 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-02-14 08:44 - 2014-02-14 08:44 - 00000000 ____D () C:\Program Files\WinRAR 2014-02-14 08:43 - 2014-02-14 08:43 - 00000619 _____ () C:\Users\XXXX\Desktop\vuze - Verknüpfung.lnk 2014-02-13 16:18 - 2014-02-13 16:18 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-02-13 15:11 - 2014-02-13 15:11 - 00091800 _____ () C:\Users\XXXX\Documents\Amazon Spalte.lvl 2014-02-13 15:04 - 2014-02-13 15:04 - 00002036 _____ () C:\Users\XXXX\Desktop\SRV-WAWI.RDP 2014-02-13 13:52 - 2014-02-13 13:52 - 00000000 ____D () C:\Users\XXXX\.swt 2014-02-13 13:51 - 2014-03-03 11:41 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Azureus 2014-02-13 13:51 - 2014-02-13 13:51 - 00001794 _____ () C:\Users\Public\Desktop\Vuze.lnk 2014-02-13 13:51 - 2014-02-13 13:51 - 00000000 ____D () C:\Program Files\Vuze 2014-02-13 09:12 - 2013-01-02 08:41 - 00000208 _____ () C:\Users\XXXX\Desktop\live.m3u 2014-02-13 09:11 - 2010-04-10 09:03 - 00077824 _____ () C:\Windows\KMService.exe 2014-02-13 09:11 - 2003-04-18 19:06 - 00008192 _____ () C:\Windows\SysWOW64\srvany.exe 2014-02-13 09:05 - 2014-02-13 09:05 - 00000000 ____D () C:\Windows\PCHEALTH 2014-02-13 09:05 - 2014-02-13 09:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-02-13 09:05 - 2014-02-13 09:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-02-13 09:04 - 2014-02-13 09:04 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-02-13 09:04 - 2014-02-13 09:04 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-02-13 09:03 - 2014-02-13 09:06 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-02-13 09:03 - 2014-02-13 09:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-02-13 09:03 - 2014-02-13 09:03 - 00000000 __RHD () C:\MSOCache 2014-02-13 09:03 - 2014-02-13 09:03 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Microsoft Help 2014-02-13 09:03 - 2014-02-13 09:03 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services 2014-02-13 09:01 - 2014-02-13 09:01 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2014-02-13 09:00 - 2014-02-13 09:01 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite 2014-02-13 08:59 - 2014-02-13 09:02 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\DAEMON Tools Lite 2014-02-13 08:58 - 2014-02-13 09:02 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite 2014-02-13 08:30 - 2014-02-13 08:30 - 00000000 ____H () C:\Users\XXXX\Documents\Default.rdp 2014-02-13 08:27 - 2014-02-13 08:27 - 00000000 ____D () C:\LJP1100_P1560_P1600_Full_Solution 2014-02-13 08:24 - 2014-02-13 08:24 - 00000000 ____D () C:\Users\XXXX\AppData\Local\JTL-Software-GmbH 2014-02-13 08:23 - 2014-02-13 08:23 - 00001035 _____ () C:\Users\Public\Desktop\JTL-wawi.lnk 2014-02-13 08:23 - 2014-02-13 08:23 - 00000000 ____D () C:\Program Files (x86)\JTL-Software 2014-02-13 08:22 - 2014-02-17 15:18 - 00000105 _____ () C:\Windows\ODBC.INI 2014-02-13 08:20 - 2014-03-03 11:22 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\jtl-software 2014-02-13 08:17 - 2014-02-13 08:17 - 00000000 ____D () C:\ProgramData\Hewlett-Packard 2014-02-13 08:17 - 2014-02-13 08:17 - 00000000 _____ () C:\Windows\HPMProp.INI 2014-02-13 08:17 - 2013-12-04 00:14 - 00601376 _____ (HP) C:\Windows\SysWOW64\hpcdmc32.dll 2014-02-13 08:17 - 2013-12-04 00:14 - 00237344 _____ (Hewlett-Packard Company) C:\Windows\system32\hpmlm135.dll 2014-02-13 08:17 - 2013-12-04 00:13 - 00217376 _____ (Hewlett-Packard) C:\Windows\system32\hpmml160.dll 2014-02-13 08:17 - 2013-12-04 00:13 - 00189728 _____ (Hewlett-Packard) C:\Windows\system32\hpmpm081.dll 2014-02-13 08:17 - 2013-12-04 00:13 - 00162080 _____ (Hewlett-Packard) C:\Windows\system32\hpmtp160.dll 2014-02-13 08:17 - 2013-12-04 00:13 - 00074016 _____ (Hewlett-Packard) C:\Windows\system32\hpmpw081.dll 2014-02-13 08:17 - 2013-12-04 00:12 - 00199968 _____ (Hewlett-Packard) C:\Windows\system32\hpmja160.dll 2014-02-13 08:17 - 2013-12-04 00:11 - 00447264 _____ (Hewlett-Packard Corporation) C:\Windows\system32\hpcpn160.dll 2014-02-13 08:17 - 2013-12-04 00:11 - 00140064 _____ (Hewlett-Packard) C:\Windows\system32\hpcjpm.dll 2014-02-13 08:17 - 2013-12-04 00:07 - 00446240 _____ (Hewlett Packard Corporation) C:\Windows\SysWOW64\hpcc3160.dll 2014-02-13 08:17 - 2011-02-11 14:23 - 00193592 _____ (Hewlett-Packard) C:\Windows\system32\hppdcompio.dll 2014-02-13 08:17 - 2011-02-11 14:23 - 00167480 _____ (Hewlett-Packard) C:\Windows\SysWOW64\hppccompio.dll 2014-02-13 08:17 - 2009-02-25 16:32 - 00060440 _____ (Hewlett-Packard) C:\Windows\system32\FxCompChannel_x64.dll 2014-02-13 08:14 - 2014-02-26 13:40 - 01592784 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-02-13 08:11 - 2014-02-13 08:11 - 00000355 _____ () C:\Users\XXXX\Desktop\Computer - Verknüpfung.lnk 2014-02-13 08:10 - 2014-02-13 08:10 - 00000000 ____D () C:\ProgramData\JTL-Software 2014-02-12 17:15 - 2014-02-12 17:16 - 00000336 _____ () C:\Windows\LCDStretchMode.log 2014-02-12 15:23 - 2011-03-01 09:07 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe 2014-02-12 15:23 - 2011-03-01 09:05 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe 2014-02-12 15:22 - 2011-02-25 07:25 - 00296320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2014-02-12 15:21 - 2011-01-25 10:34 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys 2014-02-12 15:21 - 2011-01-25 10:34 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys 2014-02-12 15:20 - 2010-12-29 11:57 - 00951680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2014-02-12 15:20 - 2010-10-19 17:04 - 00407040 _____ (Samsung Electronics) C:\Windows\HotfixChecker.exe 2014-02-12 15:20 - 2009-09-17 11:00 - 00345600 _____ (Samsung Electronics Co., Ltd.) C:\Windows\SetLCDStretchMode.exe 2014-02-12 15:19 - 2012-06-06 07:06 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2014-02-12 15:19 - 2012-06-06 07:06 - 01881600 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-02-12 15:19 - 2012-06-06 06:05 - 01390080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2014-02-12 15:19 - 2012-06-06 06:05 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-02-12 15:19 - 2010-06-26 04:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-02-12 15:19 - 2010-06-26 04:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2014-02-12 15:18 - 2012-06-12 04:08 - 03148800 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-02-12 15:17 - 2012-06-06 07:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll 2014-02-12 15:17 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll 2014-02-12 15:16 - 2012-06-09 06:43 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-02-12 15:16 - 2012-06-09 05:41 - 12873728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-02-12 15:15 - 2012-06-02 06:50 - 00458704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2014-02-12 15:15 - 2012-06-02 06:48 - 00151920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2014-02-12 15:15 - 2012-06-02 06:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2014-02-12 15:15 - 2012-06-02 06:45 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-02-12 15:15 - 2012-06-02 06:44 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2014-02-12 15:15 - 2012-06-02 05:40 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2014-02-12 15:15 - 2012-06-02 05:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-02-12 15:15 - 2012-06-02 05:39 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2014-02-12 15:15 - 2012-06-02 05:34 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-02-12 15:15 - 2011-11-17 07:35 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-02-12 15:15 - 2011-11-17 07:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2014-02-12 15:15 - 2011-11-17 07:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2014-02-12 15:15 - 2011-11-17 07:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2014-02-12 15:15 - 2011-11-17 07:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2014-02-12 15:14 - 2012-05-04 12:06 - 05559664 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-02-12 15:14 - 2012-05-04 11:03 - 03968368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2014-02-12 15:14 - 2012-05-04 11:03 - 03913072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2014-02-12 15:14 - 2012-05-01 06:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2014-02-12 15:13 - 2012-04-28 04:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2014-02-12 15:13 - 2012-04-07 13:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-02-12 15:13 - 2012-04-07 12:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-02-12 15:12 - 2012-04-24 06:37 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-02-12 15:12 - 2012-04-24 06:37 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2014-02-12 15:12 - 2012-04-24 06:37 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2014-02-12 15:12 - 2012-04-24 05:36 - 01158656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-02-12 15:12 - 2012-04-24 05:36 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2014-02-12 15:12 - 2012-04-24 05:36 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2014-02-12 15:12 - 2012-03-03 07:35 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2014-02-12 15:12 - 2012-03-03 06:31 - 01077248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2014-02-12 15:10 - 2012-03-30 12:35 - 01918320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-02-12 15:09 - 2012-03-17 08:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys 2014-02-12 15:08 - 2012-03-01 07:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys 2014-02-12 15:08 - 2012-03-01 07:38 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-02-12 15:08 - 2012-03-01 07:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll 2014-02-12 15:08 - 2012-03-01 07:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll 2014-02-12 15:08 - 2012-03-01 06:37 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-02-12 15:08 - 2012-03-01 06:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll 2014-02-12 15:08 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll 2014-02-12 15:07 - 2012-04-26 06:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2014-02-12 15:07 - 2012-04-26 06:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll 2014-02-12 15:07 - 2012-04-26 06:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe 2014-02-12 15:07 - 2011-12-30 07:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl 2014-02-12 15:07 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl 2014-02-12 15:07 - 2011-12-16 09:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll 2014-02-12 15:07 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll 2014-02-12 15:06 - 2012-01-04 11:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll 2014-02-12 15:06 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll 2014-02-12 15:06 - 2011-12-28 04:59 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-02-12 15:05 - 2011-11-19 15:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-02-12 15:05 - 2011-11-19 15:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2014-02-12 15:05 - 2011-11-17 07:41 - 01731920 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2014-02-12 15:05 - 2011-11-17 06:38 - 01292080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2014-02-12 15:05 - 2011-10-26 06:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2014-02-12 15:05 - 2011-10-26 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-02-12 15:05 - 2011-10-26 05:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2014-02-12 15:05 - 2011-10-26 05:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2014-02-12 15:04 - 2011-11-05 06:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-02-12 15:04 - 2011-11-05 05:26 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2014-02-12 15:04 - 2011-10-26 06:21 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2014-02-12 15:04 - 2011-10-15 07:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll 2014-02-12 15:04 - 2011-10-15 06:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll 2014-02-12 15:03 - 2011-08-27 06:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2014-02-12 15:03 - 2011-08-27 06:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll 2014-02-12 15:03 - 2011-08-27 05:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2014-02-12 15:03 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll 2014-02-12 15:03 - 2011-08-17 06:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll 2014-02-12 15:03 - 2011-08-17 06:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax 2014-02-12 15:03 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll 2014-02-12 15:03 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax 2014-02-12 15:03 - 2011-07-16 06:41 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2014-02-12 15:03 - 2011-07-16 06:41 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2014-02-12 15:03 - 2011-07-16 06:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2014-02-12 15:03 - 2011-07-16 06:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2014-02-12 15:03 - 2011-07-16 06:37 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2014-02-12 15:03 - 2011-07-16 06:37 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:29 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2014-02-12 15:03 - 2011-07-16 05:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2014-02-12 15:03 - 2011-07-16 05:24 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2014-02-12 15:03 - 2011-07-16 05:24 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2014-02-12 15:03 - 2011-07-16 05:24 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 05:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 03:21 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2014-02-12 15:03 - 2011-07-16 03:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2014-02-12 15:03 - 2011-07-16 03:17 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 03:17 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 03:17 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2014-02-12 15:03 - 2011-07-16 03:17 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2014-02-12 15:03 - 2011-06-24 06:34 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2014-02-12 15:03 - 2011-06-24 06:25 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2014-02-12 15:02 - 2014-02-12 15:02 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-02-12 15:02 - 2011-07-09 03:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2014-02-12 15:02 - 2011-06-16 06:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll 2014-02-12 15:02 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll 2014-02-12 15:02 - 2011-06-15 11:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll 2014-02-12 15:02 - 2011-06-15 11:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll 2014-02-12 15:02 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll 2014-02-12 15:02 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll 2014-02-12 15:02 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll 2014-02-12 15:02 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll 2014-02-12 15:02 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll 2014-02-12 15:02 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll 2014-02-12 15:02 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll 2014-02-12 15:02 - 2011-05-24 12:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll 2014-02-12 15:02 - 2011-05-24 11:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll 2014-02-12 15:02 - 2011-05-24 11:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll 2014-02-12 15:02 - 2011-05-24 11:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll 2014-02-12 15:02 - 2011-05-24 11:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe 2014-02-12 15:02 - 2011-05-04 06:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2014-02-12 15:02 - 2011-05-04 06:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2014-02-12 15:02 - 2011-05-04 06:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2014-02-12 15:02 - 2011-05-04 06:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2014-02-12 15:02 - 2011-05-04 06:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2014-02-12 15:02 - 2011-05-04 06:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll 2014-02-12 15:02 - 2011-05-04 06:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2014-02-12 15:02 - 2011-05-04 06:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2014-02-12 15:02 - 2011-05-04 06:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe 2014-02-12 15:02 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2014-02-12 15:02 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2014-02-12 15:02 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll 2014-02-12 15:02 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll 2014-02-12 15:02 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll 2014-02-12 15:02 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll 2014-02-12 15:02 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe 2014-02-12 15:02 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2014-02-12 15:02 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe 2014-02-12 15:02 - 2011-04-27 03:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-02-12 15:02 - 2011-04-27 03:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-02-12 15:01 - 2011-05-03 06:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2014-02-12 15:01 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2014-02-12 15:01 - 2011-04-29 04:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2014-02-12 15:01 - 2011-04-29 04:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2014-02-12 15:01 - 2011-04-29 04:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2014-02-12 15:01 - 2011-04-28 04:55 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys 2014-02-12 15:01 - 2011-04-28 04:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS 2014-02-12 15:01 - 2011-04-22 23:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys 2014-02-12 14:57 - 2011-03-25 04:29 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-02-12 14:57 - 2011-03-25 04:29 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-02-12 14:57 - 2011-03-25 04:29 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-02-12 14:57 - 2011-03-25 04:29 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-02-12 14:57 - 2011-03-25 04:29 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-02-12 14:57 - 2011-03-25 04:29 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-02-12 14:57 - 2011-03-25 04:28 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-02-12 14:57 - 2011-03-11 07:41 - 01659776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2014-02-12 14:57 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys 2014-02-12 14:57 - 2011-03-11 07:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-02-12 14:57 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys 2014-02-12 14:57 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys 2014-02-12 14:57 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys 2014-02-12 14:57 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys 2014-02-12 14:57 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2014-02-12 14:57 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe 2014-02-12 14:57 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2014-02-12 14:57 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe 2014-02-12 14:57 - 2011-03-11 05:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2014-02-12 14:57 - 2011-02-25 07:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2014-02-12 14:57 - 2011-02-25 06:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2014-02-12 14:57 - 2011-02-24 07:15 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-02-12 14:57 - 2011-02-24 06:38 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2014-02-12 14:57 - 2011-02-18 11:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe 2014-02-12 14:57 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe 2014-02-12 14:56 - 2011-03-11 07:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll 2014-02-12 14:56 - 2011-03-11 07:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll 2014-02-12 14:56 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll 2014-02-12 14:56 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll 2014-02-12 14:56 - 2011-03-03 07:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2014-02-12 14:56 - 2011-03-03 07:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2014-02-12 14:56 - 2011-03-03 07:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe 2014-02-12 14:56 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2014-02-12 14:56 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe 2014-02-12 14:56 - 2011-02-19 13:05 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2014-02-12 14:56 - 2011-02-19 13:04 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2014-02-12 14:56 - 2011-02-19 13:03 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2014-02-12 14:56 - 2011-02-19 10:00 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2014-02-12 14:56 - 2011-02-19 07:30 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2014-02-12 14:56 - 2011-02-19 07:30 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2014-02-12 14:56 - 2011-02-19 05:34 - 00294912 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2014-02-12 14:56 - 2011-02-12 12:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe 2014-02-12 14:56 - 2011-02-05 18:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2014-02-12 14:56 - 2011-02-05 18:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll 2014-02-12 14:56 - 2011-02-05 18:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll 2014-02-12 14:56 - 2011-02-05 18:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll 2014-02-12 14:56 - 2011-02-05 18:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2014-02-12 14:56 - 2011-02-05 18:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2014-02-12 14:56 - 2011-02-05 18:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2014-02-12 14:56 - 2011-01-17 12:09 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2014-02-12 14:56 - 2011-01-17 06:47 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll 2014-02-12 14:56 - 2010-12-23 11:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll 2014-02-12 14:56 - 2010-12-23 11:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll 2014-02-12 14:56 - 2010-12-23 11:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax 2014-02-12 14:56 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll 2014-02-12 14:56 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll 2014-02-12 14:56 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax 2014-02-12 14:56 - 2010-09-30 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2014-02-12 14:56 - 2010-09-30 07:47 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2014-02-12 14:55 - 2014-02-12 15:20 - 00002030 _____ () C:\Windows\HotFixList.ini 2014-02-12 14:55 - 2011-01-07 13:17 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2014-02-12 14:55 - 2011-01-07 08:46 - 00870912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2014-02-12 14:55 - 2010-12-17 12:40 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-02-12 14:55 - 2010-12-17 08:07 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-02-12 14:49 - 2014-02-12 14:49 - 00003500 _____ () C:\Windows\System32\Tasks\EasySpeedUpManager 2014-02-12 14:49 - 2014-02-12 14:49 - 00003446 _____ () C:\Windows\System32\Tasks\SmartSetting 2014-02-12 14:49 - 2014-02-12 14:49 - 00003442 _____ () C:\Windows\System32\Tasks\WLANStartup 2014-02-12 14:49 - 2014-02-12 14:49 - 00003392 _____ () C:\Windows\System32\Tasks\MovieColorEnhancer 2014-02-12 14:49 - 2014-02-12 14:49 - 00003292 _____ () C:\Windows\System32\Tasks\EasyBatteryManager 2014-02-12 14:49 - 2014-02-12 14:49 - 00003210 _____ () C:\Windows\System32\Tasks\EasyDisplayMgr 2014-02-12 14:49 - 2014-02-12 14:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SABI_01009.Wdf 2014-02-12 14:48 - 2014-02-12 14:48 - 00000000 ____D () C:\Program Files (x86)\RocketDock 2014-02-12 14:48 - 2011-09-22 14:39 - 00013824 _____ (SAMSUNG ELECTRONICS) C:\Windows\system32\Drivers\SABI.sys 2014-02-12 14:41 - 2014-02-12 14:41 - 00000000 ____D () C:\Users\XXXX\AppData\Local\BMExplorer 2014-02-12 14:41 - 2014-02-12 14:41 - 00000000 ____D () C:\ProgramData\Synaptics 2014-02-12 14:40 - 2014-02-12 14:40 - 00000000 _____ () C:\Windows\ativpsrm.bin 2014-02-12 14:17 - 2014-02-12 14:17 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Macromedia 2014-02-12 14:17 - 2014-02-12 14:17 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Macromedia 2014-02-12 14:16 - 2014-02-12 14:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2014-02-12 14:15 - 2014-02-12 14:41 - 00000000 ____D () C:\Users\XXXX\Documents\Bluetooth Folder 2014-02-12 14:15 - 2014-02-12 14:15 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Atheros 2014-02-12 14:14 - 2014-03-03 11:47 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-12 14:14 - 2014-02-21 15:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-02-12 14:14 - 2014-02-21 15:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-02-12 14:14 - 2014-02-21 15:47 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-02-12 14:14 - 2014-02-12 14:15 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite 2014-02-12 14:14 - 2014-02-12 14:14 - 00000000 ____D () C:\Windows\SysWOW64\Macromed 2014-02-12 14:14 - 2014-02-12 14:14 - 00000000 ____D () C:\Windows\system32\Macromed 2014-02-12 14:11 - 2014-02-12 14:11 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf 2014-02-12 14:11 - 2014-02-12 14:11 - 00000000 ____D () C:\Program Files\Synaptics 2014-02-12 14:10 - 2014-02-12 14:11 - 00005806 _____ () C:\Windows\DPINST.LOG 2014-02-12 14:10 - 2014-02-12 14:11 - 00001486 _____ () C:\Windows\Synaptics.log 2014-02-12 14:10 - 2014-02-12 14:10 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Adobe 2014-02-12 14:09 - 2014-02-12 14:11 - 00000000 ____D () C:\ProgramData\Adobe 2014-02-12 14:09 - 2014-02-12 14:09 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-02-12 14:08 - 2014-02-12 14:08 - 00000000 ____D () C:\Windows\SysWOW64\sda 2014-02-12 14:07 - 2014-02-12 14:41 - 00000000 ____D () C:\ProgramData\Atheros 2014-02-12 14:07 - 2012-03-19 17:43 - 09888872 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUVStoricon.dll 2014-02-12 14:07 - 2012-03-19 17:43 - 00314472 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUVStor.sys 2014-02-12 14:06 - 2014-02-12 14:15 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Adobe 2014-02-12 14:06 - 2014-02-12 14:06 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-02-12 14:06 - 2014-02-12 14:06 - 00000000 ____D () C:\Windows\system32\SRSLabs 2014-02-12 14:06 - 2012-06-12 22:00 - 00726160 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2014-02-12 14:06 - 2012-06-12 22:00 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2014-02-12 14:06 - 2012-06-12 22:00 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2014-02-12 14:05 - 2014-02-12 14:05 - 00000000 ____D () C:\Program Files\Realtek 2014-02-12 14:05 - 2012-08-10 18:06 - 04102928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2014-02-12 14:05 - 2012-08-10 16:43 - 00330541 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-02-12 14:05 - 2012-08-10 11:58 - 05892608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2014-02-12 14:05 - 2012-08-06 15:44 - 01561744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2014-02-12 14:05 - 2012-08-06 11:49 - 02743440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2014-02-12 14:05 - 2012-08-03 18:18 - 01706640 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2014-02-12 14:05 - 2012-08-01 18:29 - 00109200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2014-02-12 14:05 - 2012-07-24 17:30 - 00606336 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2014-02-12 14:05 - 2012-07-20 14:41 - 00880784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2014-02-12 14:05 - 2012-07-19 16:52 - 07598456 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2014-02-12 14:05 - 2012-07-19 16:52 - 02028920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2014-02-12 14:05 - 2012-07-19 16:51 - 02080120 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2014-02-12 14:05 - 2012-07-19 16:51 - 00834936 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2014-02-12 14:05 - 2012-07-16 14:16 - 03643024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2014-02-12 14:05 - 2012-07-15 21:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-02-12 14:05 - 2012-07-15 21:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2014-02-12 14:05 - 2012-07-02 15:39 - 01264272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2014-02-12 14:05 - 2012-06-20 17:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-02-12 14:05 - 2012-06-15 11:20 - 07163784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2014-02-12 14:05 - 2012-06-15 11:20 - 00433544 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2014-02-12 14:05 - 2012-06-15 11:20 - 00141192 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2014-02-12 14:05 - 2012-06-15 11:20 - 00123784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2014-02-12 14:05 - 2012-06-15 11:20 - 00074632 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2014-02-12 14:05 - 2012-04-10 14:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2014-02-12 14:05 - 2012-03-08 11:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2014-02-12 14:05 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2014-02-12 14:05 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2014-02-12 14:05 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2014-02-12 14:05 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2014-02-12 14:05 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2014-02-12 14:05 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2014-02-12 14:05 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2014-02-12 14:05 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2014-02-12 14:05 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2014-02-12 14:05 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2014-02-12 14:05 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2014-02-12 14:05 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2014-02-12 14:05 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2014-02-12 14:05 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2014-02-12 14:05 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2014-02-12 14:05 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-02-12 14:05 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2014-02-12 14:05 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2014-02-12 14:05 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2014-02-12 14:05 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2014-02-12 14:05 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2014-02-12 14:01 - 2014-02-17 09:09 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Mozilla 2014-02-12 14:01 - 2014-02-12 14:01 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Mozilla 2014-02-12 14:01 - 2014-02-12 14:01 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\ATI 2014-02-12 14:01 - 2014-02-12 14:01 - 00000000 ____D () C:\Users\XXXX\AppData\Local\ATI 2014-02-12 14:01 - 2012-05-17 11:16 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll 2014-02-12 14:01 - 2012-05-17 11:13 - 00426496 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll 2014-02-12 14:01 - 2012-05-17 11:13 - 00360448 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\atipdlxx.dll 2014-02-12 14:01 - 2012-05-17 11:13 - 00278528 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\Oemdspif.dll 2014-02-12 14:01 - 2012-05-17 11:12 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll 2014-02-12 14:01 - 2012-05-17 11:12 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll 2014-02-12 14:01 - 2012-05-17 10:43 - 01828864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdmv.dll 2014-02-12 14:01 - 2012-05-17 10:43 - 01113088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6v.dll 2014-02-12 14:01 - 2012-05-17 10:22 - 00065536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\atisamu32.dll 2014-02-12 14:01 - 2012-05-17 10:18 - 00058880 _____ (AMD) C:\Windows\system32\coinst.dll 2014-02-12 14:01 - 2012-01-05 22:16 - 00037141 _____ () C:\Windows\atiogl.xml 2014-02-12 14:00 - 2014-02-18 07:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-12 14:00 - 2014-02-12 14:00 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-12 14:00 - 2014-02-12 14:00 - 00000000 ____D () C:\ProgramData\Mozilla 2014-02-12 13:55 - 2014-02-26 13:45 - 00000000 ____D () C:\Program Files\AMD 2014-02-12 13:55 - 2014-02-12 13:55 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies 2014-02-12 13:55 - 2014-02-12 13:55 - 00000000 ____D () C:\Program Files (x86)\AMD APP 2014-02-12 13:54 - 2014-02-26 13:45 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-02-12 13:54 - 2014-02-12 13:54 - 00000000 ____D () C:\Program Files\ATI 2014-02-12 13:45 - 2014-02-17 08:59 - 00000087 _____ () C:\setup.log 2014-02-12 13:45 - 2014-02-12 13:45 - 00000000 ____D () C:\Windows\Options 2014-02-12 13:45 - 2014-02-12 13:45 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros 2014-02-12 13:45 - 2014-02-12 13:45 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros 2014-02-12 13:45 - 2012-09-21 18:29 - 00077947 ____N () C:\Windows\system32\athrextx.cat 2014-02-12 13:45 - 2012-09-18 00:33 - 03752448 ____N (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\athrx.sys 2014-02-12 13:45 - 2012-09-18 00:33 - 03752448 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys 2014-02-12 13:44 - 2014-02-12 14:48 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-02-12 13:44 - 2014-02-12 14:07 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-02-12 13:13 - 2014-02-13 13:13 - 00108448 _____ () C:\Users\XXXX\AppData\Local\GDIPFONTCACHEV1.DAT 2014-02-12 13:13 - 2014-02-13 08:25 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Samsung 2014-02-12 13:12 - 2014-02-27 07:54 - 00000000 ____D () C:\ProgramData\Samsung 2014-02-12 13:12 - 2014-02-12 15:24 - 00000000 ____D () C:\Program Files (x86)\Samsung 2014-02-12 13:12 - 2014-02-12 13:13 - 00000000 ____D () C:\Program Files\Samsung 2014-02-12 13:12 - 2014-02-12 13:12 - 00003042 _____ () C:\Windows\System32\Tasks\SAgent 2014-02-12 13:12 - 2013-03-15 15:29 - 00000033 _____ () C:\Users\XXXX\Desktop\WLAN.txt 2014-02-12 13:11 - 2014-02-12 13:11 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2014-02-12 12:59 - 2014-02-28 16:28 - 00000000 ____D () C:\Users\XXXX 2014-02-12 12:59 - 2014-02-13 08:26 - 00000000 ___RD () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-02-12 12:59 - 2014-02-12 17:15 - 00000000 ___RD () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-02-12 12:59 - 2014-02-12 12:59 - 00001439 _____ () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-02-12 12:59 - 2014-02-12 12:59 - 00001405 _____ () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2014-02-12 12:59 - 2014-02-12 12:59 - 00000020 ___SH () C:\Users\XXXX\ntuser.ini 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Vorlagen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Startmenü 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Netzwerkumgebung 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Lokale Einstellungen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Eigene Dateien 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Druckumgebung 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Documents\Eigene Musik 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Documents\Eigene Bilder 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\AppData\Local\Verlauf 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\AppData\Local\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Programme 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Favoriten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 __SHD () C:\Recovery 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 ____D () C:\Users\XXXX\AppData\Local\VirtualStore 2014-02-12 12:59 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-02-12 12:59 - 2009-07-14 05:49 - 00000000 ___RD () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-02-12 12:56 - 2014-03-03 11:48 - 01024324 _____ () C:\Windows\WindowsUpdate.log 2014-02-12 12:55 - 2014-02-12 12:55 - 00001355 _____ () C:\Windows\TSSysprep.log 2014-02-12 12:52 - 2014-02-12 12:59 - 00000000 ____D () C:\Windows\Panther ==================== One Month Modified Files and Folders ======= 2014-03-03 12:18 - 2014-03-03 12:18 - 00010318 _____ () C:\Users\XXXX\Desktop\FRST.txt 2014-03-03 12:18 - 2014-03-03 12:18 - 00000000 ____D () C:\FRST 2014-03-03 12:16 - 2014-03-03 12:16 - 02156544 _____ (Farbar) C:\Users\XXXX\Desktop\FRST64.exe 2014-03-03 12:07 - 2014-03-03 11:39 - 00000000 ____D () C:\AdwCleaner 2014-03-03 12:07 - 2014-02-17 07:59 - 00000000 ____D () C:\Users\XXXX\AppData\Local\CrashDumps 2014-03-03 11:52 - 2009-07-14 05:45 - 00021280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-03-03 11:52 - 2009-07-14 05:45 - 00021280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-03-03 11:48 - 2014-02-12 12:56 - 01024324 _____ () C:\Windows\WindowsUpdate.log 2014-03-03 11:47 - 2014-02-12 14:14 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-03-03 11:45 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-03-03 11:45 - 2009-07-14 05:51 - 00030317 _____ () C:\Windows\setupact.log 2014-03-03 11:44 - 2014-02-26 22:47 - 00065536 _____ () C:\Windows\system32\spu_storage.bin 2014-03-03 11:41 - 2014-02-13 13:51 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Azureus 2014-03-03 11:38 - 2014-03-03 11:38 - 01244192 _____ () C:\Users\XXXX\Desktop\adwcleaner_3.0.2.0.exe 2014-03-03 11:30 - 2014-03-03 11:30 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Nvu 2014-03-03 11:30 - 2014-03-03 11:30 - 00000000 ____D () C:\Program Files (x86)\Nvu 2014-03-03 11:22 - 2014-02-13 08:20 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\jtl-software 2014-03-03 10:40 - 2014-03-03 10:39 - 00000000 ____D () C:\Users\XXXX\Desktop\SQL 2014-03-03 10:21 - 2014-03-03 10:21 - 00067787 _____ () C:\Users\XXXX\Desktop\Verfügbarkeitsliste0303.csv 2014-03-03 07:49 - 2014-02-27 22:09 - 00000000 ____D () C:\Users\XXXX\Desktop\Wohnung MD 2014-03-02 20:19 - 2011-04-12 08:43 - 00698926 _____ () C:\Windows\system32\perfh007.dat 2014-03-02 20:19 - 2011-04-12 08:43 - 00149034 _____ () C:\Windows\system32\perfc007.dat 2014-03-02 20:19 - 2009-07-14 06:13 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-02-28 16:28 - 2014-02-28 16:28 - 00000000 ____D () C:\Users\XXXX\eTeks 2014-02-28 16:28 - 2014-02-12 12:59 - 00000000 ____D () C:\Users\XXXX 2014-02-28 16:26 - 2014-02-28 16:26 - 00000000 ____D () C:\Program Files (x86)\Universal Updater 2014-02-28 16:26 - 2014-02-28 16:26 - 00000000 ____D () C:\Program Files (x86)\HD Streamer 2014-02-28 16:26 - 2014-02-28 16:25 - 00000000 ____D () C:\Program Files\Sweet Home 3D 2014-02-28 15:54 - 2014-02-14 08:45 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\vlc 2014-02-28 09:31 - 2014-02-28 08:57 - 00000000 ____D () C:\Users\XXXX\Desktop\Mp3 03.14 2014-02-27 16:40 - 2014-02-14 09:49 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\TeamViewer 2014-02-27 12:25 - 2014-02-27 12:25 - 00003008 _____ () C:\Windows\System32\Tasks\{AC47EE5C-B53A-497C-A697-7555BDE864DB} 2014-02-27 08:00 - 2014-02-27 08:00 - 00000000 ____D () C:\Users\XXXX\AppData\Local\AMD 2014-02-27 07:59 - 2014-02-27 07:59 - 00000000 ____D () C:\ProgramData\ATI 2014-02-27 07:54 - 2014-02-12 13:12 - 00000000 ____D () C:\ProgramData\Samsung 2014-02-26 13:45 - 2014-02-26 13:45 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201402261345123380.log 2014-02-26 13:45 - 2014-02-26 13:45 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-02-26 13:45 - 2014-02-26 13:45 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-02-26 13:45 - 2014-02-26 13:44 - 00000000 ____D () C:\ProgramData\AMD 2014-02-26 13:45 - 2014-02-12 13:55 - 00000000 ____D () C:\Program Files\AMD 2014-02-26 13:45 - 2014-02-12 13:54 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-02-26 13:44 - 2014-02-25 14:48 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-02-26 13:40 - 2014-02-13 08:14 - 01592784 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-02-26 13:32 - 2014-02-25 14:47 - 00000000 ____D () C:\AMD 2014-02-26 13:28 - 2014-02-18 10:19 - 00000000 ____D () C:\ProgramData\Package Cache 2014-02-26 13:14 - 2014-02-26 13:14 - 00363226 _____ () C:\Users\XXXX\Desktop\Eurotrail 2014 BROCHURE D 3S.csv 2014-02-26 13:14 - 2014-02-26 13:14 - 00008841 _____ () C:\Users\XXXX\Desktop\Lager TravelSafe 24-02-14.csv 2014-02-26 13:13 - 2014-02-26 13:13 - 00030378 _____ () C:\Users\XXXX\Desktop\Lager Eurotrail 25-02-2014.csv 2014-02-26 09:59 - 2014-02-26 09:59 - 01372672 _____ () C:\Users\XXXX\Desktop\Eurotrail 2014 BROCHURE D 3S.xls 2014-02-26 09:59 - 2014-02-26 09:59 - 00038847 _____ () C:\Users\XXXX\Desktop\Lager Eurotrail 25-02-2014.xlsx 2014-02-26 09:59 - 2014-02-26 09:59 - 00019255 _____ () C:\Users\XXXX\Desktop\Lager TravelSafe 24-02-14.xlsx 2014-02-26 07:39 - 2014-02-20 15:37 - 00000000 ____D () C:\Users\XXXX\Desktop\LYO FOOD 2014-02-25 16:10 - 2014-02-20 09:44 - 00000000 ____D () C:\Users\XXXX\Desktop\Recon 2014-02-25 15:14 - 2014-02-18 10:55 - 00000000 ____D () C:\Users\XXXX\Desktop\Hitcase 2014-02-25 14:48 - 2014-02-17 16:28 - 00000000 ____D () C:\Users\XXXX\Desktop\Contour 2014-02-25 07:53 - 2014-02-25 07:53 - 00301688 _____ (Thesycon GmbH) C:\Users\XXXX\Desktop\dpclat.exe 2014-02-21 15:47 - 2014-02-12 14:14 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-02-21 15:47 - 2014-02-12 14:14 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-02-21 15:47 - 2014-02-12 14:14 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-02-21 11:19 - 2014-02-19 13:08 - 00009428 _____ () C:\Users\XXXX\Desktop\Hauptmahlzieten und Suppen-Table 1.csv 2014-02-21 11:06 - 2014-02-21 11:06 - 00000000 ____D () C:\Program Files\Common Files\EPSON 2014-02-21 11:06 - 2014-02-21 11:05 - 00000000 ____D () C:\ProgramData\EPSON 2014-02-20 09:35 - 2014-02-20 09:35 - 00000165 ____H () C:\Users\XXXX\Desktop\~$Kopie von Contour Preisliste 2014 Retail.xlsx 2014-02-19 16:03 - 2014-02-19 16:03 - 00000000 ____D () C:\Program Files (x86)\PDF24 2014-02-19 13:08 - 2014-02-19 13:08 - 01051216 _____ () C:\Users\XXXX\Desktop\Früchte und Früstücke-Table 1.csv 2014-02-18 11:23 - 2014-02-18 11:23 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Realtime Soft 2014-02-18 11:23 - 2014-02-18 11:23 - 00000000 ____D () C:\ProgramData\Realtime Soft 2014-02-18 11:23 - 2014-02-18 11:23 - 00000000 ____D () C:\Program Files\UltraMon 2014-02-18 11:14 - 2014-02-18 11:14 - 03231337 _____ () C:\Users\XXXX\Desktop\UltraMon.v3.2.0.x64.German.Incl.Keymaker-BLiZZARD.rar 2014-02-18 10:20 - 2014-02-18 10:20 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Brice_Lambson 2014-02-18 10:19 - 2014-02-18 10:19 - 00000000 ____D () C:\Program Files\Image Resizer for Windows 2014-02-18 10:19 - 2014-02-18 10:19 - 00000000 ____D () C:\Program Files (x86)\Image Resizer for Windows 2014-02-18 10:17 - 2014-02-18 10:17 - 00000000 ____D () C:\Windows\Downloaded Installations 2014-02-18 07:48 - 2014-02-12 14:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-17 15:18 - 2014-02-13 08:22 - 00000105 _____ () C:\Windows\ODBC.INI 2014-02-17 09:09 - 2014-02-12 14:01 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Mozilla 2014-02-17 08:59 - 2014-02-12 13:45 - 00000087 _____ () C:\setup.log 2014-02-17 08:58 - 2014-02-17 08:58 - 00000000 ___RD () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2014-02-17 08:55 - 2014-02-17 08:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-02-16 12:44 - 2014-02-16 12:44 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\TV-Browser 2014-02-16 12:43 - 2014-02-16 12:43 - 00000000 ____D () C:\ProgramData\Sun 2014-02-16 12:43 - 2014-02-16 12:43 - 00000000 ____D () C:\ProgramData\Oracle 2014-02-16 12:42 - 2014-02-16 12:43 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-02-16 12:42 - 2014-02-16 12:43 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-02-16 12:42 - 2014-02-16 12:43 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-02-16 12:42 - 2014-02-16 12:43 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-16 12:42 - 2014-02-16 12:42 - 00000000 ____D () C:\Program Files (x86)\Java 2014-02-16 12:40 - 2014-02-16 12:40 - 00001916 _____ () C:\Users\Public\Desktop\TV-Browser.lnk 2014-02-16 12:40 - 2014-02-16 12:40 - 00000000 ____D () C:\Program Files (x86)\TV-Browser 2014-02-14 08:44 - 2014-02-14 08:44 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\WinRAR 2014-02-14 08:44 - 2014-02-14 08:44 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-02-14 08:44 - 2014-02-14 08:44 - 00000000 ____D () C:\Program Files\WinRAR 2014-02-14 08:43 - 2014-02-14 08:43 - 00000619 _____ () C:\Users\XXXX\Desktop\vuze - Verknüpfung.lnk 2014-02-14 06:30 - 2009-07-14 05:45 - 00414728 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-02-14 06:29 - 2010-11-21 04:47 - 00010894 _____ () C:\Windows\PFRO.log 2014-02-13 16:18 - 2014-02-13 16:18 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-02-13 15:11 - 2014-02-13 15:11 - 00091800 _____ () C:\Users\XXXX\Documents\Amazon Spalte.lvl 2014-02-13 15:04 - 2014-02-13 15:04 - 00002036 _____ () C:\Users\XXXX\Desktop\SRV-WAWI.RDP 2014-02-13 13:52 - 2014-02-13 13:52 - 00000000 ____D () C:\Users\XXXX\.swt 2014-02-13 13:51 - 2014-02-13 13:51 - 00001794 _____ () C:\Users\Public\Desktop\Vuze.lnk 2014-02-13 13:51 - 2014-02-13 13:51 - 00000000 ____D () C:\Program Files\Vuze 2014-02-13 13:13 - 2014-02-12 13:13 - 00108448 _____ () C:\Users\XXXX\AppData\Local\GDIPFONTCACHEV1.DAT 2014-02-13 09:06 - 2014-02-13 09:03 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-02-13 09:05 - 2014-02-13 09:05 - 00000000 ____D () C:\Windows\PCHEALTH 2014-02-13 09:05 - 2014-02-13 09:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-02-13 09:05 - 2014-02-13 09:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-02-13 09:05 - 2014-02-13 09:03 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-02-13 09:05 - 2011-04-12 08:55 - 00000000 ____D () C:\Windows\ShellNew 2014-02-13 09:04 - 2014-02-13 09:04 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2014-02-13 09:04 - 2014-02-13 09:04 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-02-13 09:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-02-13 09:03 - 2014-02-13 09:03 - 00000000 __RHD () C:\MSOCache 2014-02-13 09:03 - 2014-02-13 09:03 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Microsoft Help 2014-02-13 09:03 - 2014-02-13 09:03 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services 2014-02-13 09:02 - 2014-02-13 08:59 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\DAEMON Tools Lite 2014-02-13 09:02 - 2014-02-13 08:58 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite 2014-02-13 09:01 - 2014-02-13 09:01 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2014-02-13 09:01 - 2014-02-13 09:00 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite 2014-02-13 08:30 - 2014-02-13 08:30 - 00000000 ____H () C:\Users\XXXX\Documents\Default.rdp 2014-02-13 08:27 - 2014-02-13 08:27 - 00000000 ____D () C:\LJP1100_P1560_P1600_Full_Solution 2014-02-13 08:26 - 2014-02-12 12:59 - 00000000 ___RD () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-02-13 08:25 - 2014-02-12 13:13 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Samsung 2014-02-13 08:24 - 2014-02-13 08:24 - 00000000 ____D () C:\Users\XXXX\AppData\Local\JTL-Software-GmbH 2014-02-13 08:23 - 2014-02-13 08:23 - 00001035 _____ () C:\Users\Public\Desktop\JTL-wawi.lnk 2014-02-13 08:23 - 2014-02-13 08:23 - 00000000 ____D () C:\Program Files (x86)\JTL-Software 2014-02-13 08:17 - 2014-02-13 08:17 - 00000000 ____D () C:\ProgramData\Hewlett-Packard 2014-02-13 08:17 - 2014-02-13 08:17 - 00000000 _____ () C:\Windows\HPMProp.INI 2014-02-13 08:11 - 2014-02-13 08:11 - 00000355 _____ () C:\Users\XXXX\Desktop\Computer - Verknüpfung.lnk 2014-02-13 08:10 - 2014-02-13 08:10 - 00000000 ____D () C:\ProgramData\JTL-Software 2014-02-13 08:09 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries 2014-02-12 18:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-02-12 17:16 - 2014-02-12 17:15 - 00000336 _____ () C:\Windows\LCDStretchMode.log 2014-02-12 17:15 - 2014-02-12 12:59 - 00000000 ___RD () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-02-12 15:24 - 2014-02-12 13:12 - 00000000 ____D () C:\Program Files (x86)\Samsung 2014-02-12 15:20 - 2014-02-12 14:55 - 00002030 _____ () C:\Windows\HotFixList.ini 2014-02-12 15:02 - 2014-02-12 15:02 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-02-12 14:49 - 2014-02-12 14:49 - 00003500 _____ () C:\Windows\System32\Tasks\EasySpeedUpManager 2014-02-12 14:49 - 2014-02-12 14:49 - 00003446 _____ () C:\Windows\System32\Tasks\SmartSetting 2014-02-12 14:49 - 2014-02-12 14:49 - 00003442 _____ () C:\Windows\System32\Tasks\WLANStartup 2014-02-12 14:49 - 2014-02-12 14:49 - 00003392 _____ () C:\Windows\System32\Tasks\MovieColorEnhancer 2014-02-12 14:49 - 2014-02-12 14:49 - 00003292 _____ () C:\Windows\System32\Tasks\EasyBatteryManager 2014-02-12 14:49 - 2014-02-12 14:49 - 00003210 _____ () C:\Windows\System32\Tasks\EasyDisplayMgr 2014-02-12 14:49 - 2014-02-12 14:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SABI_01009.Wdf 2014-02-12 14:48 - 2014-02-12 14:48 - 00000000 ____D () C:\Program Files (x86)\RocketDock 2014-02-12 14:48 - 2014-02-12 13:44 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-02-12 14:41 - 2014-02-12 14:41 - 00000000 ____D () C:\Users\XXXX\AppData\Local\BMExplorer 2014-02-12 14:41 - 2014-02-12 14:41 - 00000000 ____D () C:\ProgramData\Synaptics 2014-02-12 14:41 - 2014-02-12 14:15 - 00000000 ____D () C:\Users\XXXX\Documents\Bluetooth Folder 2014-02-12 14:41 - 2014-02-12 14:07 - 00000000 ____D () C:\ProgramData\Atheros 2014-02-12 14:40 - 2014-02-12 14:40 - 00000000 _____ () C:\Windows\ativpsrm.bin 2014-02-12 14:17 - 2014-02-12 14:17 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Macromedia 2014-02-12 14:17 - 2014-02-12 14:17 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Macromedia 2014-02-12 14:16 - 2014-02-12 14:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2014-02-12 14:15 - 2014-02-12 14:15 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Atheros 2014-02-12 14:15 - 2014-02-12 14:14 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite 2014-02-12 14:15 - 2014-02-12 14:06 - 00000000 ____D () C:\Users\XXXX\AppData\Local\Adobe 2014-02-12 14:15 - 2012-05-30 14:44 - 00246804 _____ () C:\Windows\system32\Drivers\AtherosBt.bin 2014-02-12 14:15 - 2012-05-30 14:44 - 00004272 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_26.pst 2014-02-12 14:15 - 2012-05-30 14:44 - 00001926 _____ () C:\Windows\system32\Drivers\ramps_0x31010000_40.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001796 _____ () C:\Windows\system32\Drivers\ramps_0x11020000_40.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001442 _____ () C:\Windows\system32\Drivers\ramps_0x01020201_26.pst 2014-02-12 14:15 - 2012-05-30 14:44 - 00001440 _____ () C:\Windows\system32\Drivers\ramps_0x31010000_40_dc01.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001242 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x01.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001228 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x04.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001214 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x03.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001204 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x02.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001204 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001198 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_26.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00001192 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_26_0x01.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00000264 _____ () C:\Windows\system32\Drivers\ramps_0x01020201_40.dfu 2014-02-12 14:15 - 2012-05-30 14:44 - 00000264 _____ () C:\Windows\system32\Drivers\ramps_0x01020201_26.dfu 2014-02-12 14:14 - 2014-02-12 14:14 - 00000000 ____D () C:\Windows\SysWOW64\Macromed 2014-02-12 14:14 - 2014-02-12 14:14 - 00000000 ____D () C:\Windows\system32\Macromed 2014-02-12 14:11 - 2014-02-12 14:11 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf 2014-02-12 14:11 - 2014-02-12 14:11 - 00000000 ____D () C:\Program Files\Synaptics 2014-02-12 14:11 - 2014-02-12 14:10 - 00005806 _____ () C:\Windows\DPINST.LOG 2014-02-12 14:11 - 2014-02-12 14:10 - 00001486 _____ () C:\Windows\Synaptics.log 2014-02-12 14:11 - 2014-02-12 14:09 - 00000000 ____D () C:\ProgramData\Adobe 2014-02-12 14:10 - 2014-02-12 14:10 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Adobe 2014-02-12 14:09 - 2014-02-12 14:09 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-02-12 14:08 - 2014-02-12 14:08 - 00000000 ____D () C:\Windows\SysWOW64\sda 2014-02-12 14:07 - 2014-02-12 13:44 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-02-12 14:06 - 2014-02-12 14:06 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-02-12 14:06 - 2014-02-12 14:06 - 00000000 ____D () C:\Windows\system32\SRSLabs 2014-02-12 14:05 - 2014-02-12 14:05 - 00000000 ____D () C:\Program Files\Realtek 2014-02-12 14:01 - 2014-02-12 14:01 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\Mozilla 2014-02-12 14:01 - 2014-02-12 14:01 - 00000000 ____D () C:\Users\XXXX\AppData\Roaming\ATI 2014-02-12 14:01 - 2014-02-12 14:01 - 00000000 ____D () C:\Users\XXXX\AppData\Local\ATI 2014-02-12 14:00 - 2014-02-12 14:00 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-12 14:00 - 2014-02-12 14:00 - 00000000 ____D () C:\ProgramData\Mozilla 2014-02-12 13:55 - 2014-02-12 13:55 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies 2014-02-12 13:55 - 2014-02-12 13:55 - 00000000 ____D () C:\Program Files (x86)\AMD APP 2014-02-12 13:54 - 2014-02-12 13:54 - 00000000 ____D () C:\Program Files\ATI 2014-02-12 13:45 - 2014-02-12 13:45 - 00000000 ____D () C:\Windows\Options 2014-02-12 13:45 - 2014-02-12 13:45 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros 2014-02-12 13:45 - 2014-02-12 13:45 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros 2014-02-12 13:13 - 2014-02-12 13:12 - 00000000 ____D () C:\Program Files\Samsung 2014-02-12 13:12 - 2014-02-12 13:12 - 00003042 _____ () C:\Windows\System32\Tasks\SAgent 2014-02-12 13:12 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\restore 2014-02-12 13:11 - 2014-02-12 13:11 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2014-02-12 12:59 - 2014-02-12 12:59 - 00001439 _____ () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-02-12 12:59 - 2014-02-12 12:59 - 00001405 _____ () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2014-02-12 12:59 - 2014-02-12 12:59 - 00000020 ___SH () C:\Users\XXXX\ntuser.ini 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Vorlagen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Startmenü 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Netzwerkumgebung 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Lokale Einstellungen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Eigene Dateien 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Druckumgebung 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Documents\Eigene Musik 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Documents\Eigene Bilder 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\AppData\Local\Verlauf 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\AppData\Local\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\XXXX\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Programme 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Favoriten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 __SHD () C:\Recovery 2014-02-12 12:59 - 2014-02-12 12:59 - 00000000 ____D () C:\Users\XXXX\AppData\Local\VirtualStore 2014-02-12 12:59 - 2014-02-12 12:52 - 00000000 ____D () C:\Windows\Panther 2014-02-12 12:59 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default 2014-02-12 12:59 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Windows NT 2014-02-12 12:56 - 2009-07-14 05:46 - 00002790 _____ () C:\Windows\DtcInstall.log 2014-02-12 12:56 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep 2014-02-12 12:55 - 2014-02-12 12:55 - 00001355 _____ () C:\Windows\TSSysprep.log 2014-02-12 12:53 - 2011-04-12 08:55 - 00000000 ____D () C:\Windows\CSC 2014-02-12 12:52 - 2009-07-14 06:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG 2014-02-12 12:52 - 2009-07-14 06:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template Some content of TEMP: ==================== C:\Users\XXXX\AppData\Local\Temp\DTLite4481-0347.exe C:\Users\XXXX\AppData\Local\Temp\hd_streamer_install_new.exe C:\Users\XXXX\AppData\Local\Temp\i4jdel0.exe C:\Users\XXXX\AppData\Local\Temp\ose00000.exe C:\Users\XXXX\AppData\Local\Temp\Quarantine.exe C:\Users\XXXX\AppData\Local\Temp\Uni000.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-02-28 08:10 ==================== End Of Log ============================ |
04.03.2014, 11:10 | #4 |
| Firefox voller Werbung und Pop-ups die 2.Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-03-2014 Ran by Oliver Daske at 2014-03-03 12:19:14 Running from C:\Users\Oliver Daske\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== 64 Bit HP CIO Components Installer (Version: 16.2.1 - Hewlett-Packard) Hidden Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated) Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated) Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated) AMD Accelerated Video Transcoding (Version: 13.30.100.40131 - Advanced Micro Devices, Inc.) Hidden AMD APP SDK Runtime (Version: 10.0.873.1 - Advanced Micro Devices Inc.) Hidden AMD Catalyst Control Center (x32 Version: 2014.0131.1535.27922 - Ihr Firmenname) Hidden AMD Catalyst Install Manager (HKLM\...\{A34406B2-BE46-5099-F79D-018104E58218}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden AMD Fuel (Version: 2014.0131.1535.27922 - Ihr Firmenname) Hidden AMD Media Foundation Decoders (Version: 1.0.70405.0823 - Advanced Micro Devices, Inc.) Hidden AMD Steady Video Plug-In (Version: 2.07.0000 - AMD) Hidden AMD USB 3.0 Device Detector (Version: 2.1.29.0 - Advanced Micro Devices, Inc.) Hidden AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.140 - Atheros) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0131.1535.27922 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center InstallProxy (x32 Version: 2014.0131.1535.27922 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2014.0131.1535.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2014.0131.1534.27922 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2014.0131.1535.27922 - Advanced Micro Devices, Inc.) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd) Easy Settings (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.1 - Samsung Electronics CO., LTD.) EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation) HD Streamer (HKLM-x32\...\HD Streamer) (Version: 1.1.4.0 - HD Streamer) HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson) Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden JTL-Wawi (HKLM-x32\...\JTL-Wawi_is1) (Version: 0.99920 - ) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5 DEU Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50709 - Microsoft Corporation) Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709 - Microsoft Corporation) Hidden Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla) Nvu 1.0 (HKLM-x32\...\Nvu_is1) (Version: 1.0 - Thorsten Fritz) PDF24 Creator 6.3.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Quick Starter (HKLM-x32\...\{EC36E2BC-86F7-44C9-84B2-93930F0FBDBF}) (Version: 1.0.2 - Samsung Electronics CO., LTD.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6702 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.39025 - Realtek Semiconductor Corp.) RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software) S Agent (Version: 1.1.45 - Samsung Electronics CO., LTD.) Hidden SW Update (HKLM-x32\...\{DA06101F-FD76-4BF0-88BD-B26A197005E3}) (Version: 2.1.21 - Samsung Electronics CO., LTD.) Sweet Home 3D version 4.3 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.1.1 - Synaptics Incorporated) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.26297 - TeamViewer) TV-Browser 3.3.3 (HKLM-x32\...\tvbrowser) (Version: 3.3.3 - TV-Browser Team) UltraMon (HKLM\...\{A9D0CC6D-A00D-486E-ABF3-D9A30B5143E5}) (Version: 3.2.0 - Realtime Soft Ltd) VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN) Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.3.0.0 - Azureus Software, Inc.) WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) ==================== Restore Points ========================= 12-02-2014 12:12:21 Installed SW Update 12-02-2014 12:44:27 Installiert Realtek Ethernet Controller Driver 12-02-2014 13:06:24 Installiert Realtek Ethernet Controller Driver 12-02-2014 13:07:57 Installiert Realtek USB 2.0 Card Reader 12-02-2014 13:48:19 Installed Easy Settings 13-02-2014 07:59:07 Gerätetreiber-Paketinstallation: DT Soft Ltd Systemgeräte 13-02-2014 08:01:02 Gerätetreiber-Paketinstallation: DT Soft Ltd Systemgeräte 13-02-2014 08:02:57 Installed Microsoft Office Professional Plus 2010 16-02-2014 11:42:17 Installed Java 7 Update 51 18-02-2014 09:19:30 Image Resizer for Windows 18-02-2014 10:23:08 UltraMon wird installiert 21-02-2014 10:05:53 Gerätetreiber-Paketinstallation: EPSON Drucker 26-02-2014 12:27:24 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 26-02-2014 12:27:55 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 26-02-2014 12:37:40 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 26-02-2014 12:40:58 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 26-02-2014 12:42:00 Gerätetreiber-Paketinstallation: Advanced Micro Devices, Inc. Grafikkarte ==================== Hosts content: ========================== 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {0A493E3B-D9C8-48C8-B29F-F1CEA633CA68} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe [2012-01-31] (Samsung Electronics Co., Ltd.) Task: {0D826C68-DB94-4365-B183-71C3DA986906} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated) Task: {354CF11F-E860-4C01-9954-050D3C8DFFAF} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe [2012-03-27] (Samsung Electronics Co., Ltd.) Task: {5393AF27-156D-4BE9-9B0A-EE2E05E4E2AB} - System32\Tasks\{AC47EE5C-B53A-497C-A697-7555BDE864DB} => C:\Users\Oliver Daske\Desktop\einrichtungsplaner_22356.exe Task: {69CEB00B-CDB6-490F-BC53-83ABFC72413D} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe [2011-11-18] (SAMSUNG Electronics co., LTD.) Task: {8CF4E6A7-234B-4E6A-9A88-1A03D5F3F524} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe [2012-01-31] (Samsung Electronics) Task: {BAD522C0-DA8A-4C19-A123-0A0F535681BB} - System32\Tasks\SCCSpeedBoot => C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe [2012-03-27] (Samsung Electronics Co., Ltd.) Task: {BB44DAE6-3499-4E5C-B565-5299B4923D18} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2013-10-16] (Samsung Electronics CO., LTD.) Task: {BEB65F60-AE5A-4A9D-81A9-ECE5BBF641B3} - System32\Tasks\WLANStartup => C:\Program Files (x86)\Samsung\Easy Settings\WLANStartup.exe [2012-04-03] (Samsung Electronics) Task: {E08C16E1-5A30-4E4A-B50C-18C39479024E} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe [2012-04-17] (Samsung Electronics Co., Ltd.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Loaded Modules (whitelisted) ============= 2014-01-31 15:38 - 2014-01-31 15:38 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2014-02-13 09:11 - 2003-04-18 19:06 - 00008192 _____ () C:\Windows\SysWOW64\srvany.exe 2014-02-13 09:11 - 2010-04-10 09:03 - 00077824 _____ () C:\Windows\KMService.exe 2014-02-12 14:48 - 2012-02-13 15:02 - 00031624 _____ () C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe 2014-01-29 17:05 - 2014-01-29 17:05 - 00402872 _____ () C:\Program Files (x86)\Universal Updater\UpdaterService.exe 2014-02-17 08:55 - 2014-02-17 08:55 - 03578992 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2014-02-21 15:47 - 2014-02-21 15:47 - 16265096 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== Disabled items from MSCONFIG ============== MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\athbttray.exe" MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\btvstack.exe" MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (03/03/2014 00:07:56 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: adwcleaner_3.0.2.0.exe, Version: 3.0.2.0, Zeitstempel: 0x4f25baec Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc000041d Fehleroffset: 0x737b4f0d ID des fehlerhaften Prozesses: 0xb78 Startzeit der fehlerhaften Anwendung: 0xadwcleaner_3.0.2.0.exe0 Pfad der fehlerhaften Anwendung: adwcleaner_3.0.2.0.exe1 Pfad des fehlerhaften Moduls: adwcleaner_3.0.2.0.exe2 Berichtskennung: adwcleaner_3.0.2.0.exe3 Error: (03/03/2014 11:48:40 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Quick Starter.exe, Version: 1.0.2.16, Zeitstempel: 0x52f33947 Name des fehlerhaften Moduls: Quick Starter.exe, Version: 1.0.2.16, Zeitstempel: 0x52f33947 Ausnahmecode: 0xc000041d Fehleroffset: 0x000000000004b93a ID des fehlerhaften Prozesses: 0x968 Startzeit der fehlerhaften Anwendung: 0xQuick Starter.exe0 Pfad der fehlerhaften Anwendung: Quick Starter.exe1 Pfad des fehlerhaften Moduls: Quick Starter.exe2 Berichtskennung: Quick Starter.exe3 Error: (03/03/2014 11:47:10 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/03/2014 11:45:53 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Quick Starter.exe, Version: 1.0.2.16, Zeitstempel: 0x52f33947 Name des fehlerhaften Moduls: Quick Starter.exe, Version: 1.0.2.16, Zeitstempel: 0x52f33947 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000004b93a ID des fehlerhaften Prozesses: 0x968 Startzeit der fehlerhaften Anwendung: 0xQuick Starter.exe0 Pfad der fehlerhaften Anwendung: Quick Starter.exe1 Pfad des fehlerhaften Moduls: Quick Starter.exe2 Berichtskennung: Quick Starter.exe3 Error: (03/03/2014 11:43:45 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: adwcleaner_3.0.2.0.exe, Version: 3.0.2.0, Zeitstempel: 0x4f25baec Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc000041d Fehleroffset: 0x73814f0d ID des fehlerhaften Prozesses: 0x10b8 Startzeit der fehlerhaften Anwendung: 0xadwcleaner_3.0.2.0.exe0 Pfad der fehlerhaften Anwendung: adwcleaner_3.0.2.0.exe1 Pfad des fehlerhaften Moduls: adwcleaner_3.0.2.0.exe2 Berichtskennung: adwcleaner_3.0.2.0.exe3 Error: (03/03/2014 07:49:58 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/28/2014 07:06:28 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/27/2014 08:52:52 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Quick Starter.exe, Version: 1.0.2.16, Zeitstempel: 0x52f33947 Name des fehlerhaften Moduls: Quick Starter.exe, Version: 1.0.2.16, Zeitstempel: 0x52f33947 Ausnahmecode: 0xc000041d Fehleroffset: 0x000000000004b93a ID des fehlerhaften Prozesses: 0x970 Startzeit der fehlerhaften Anwendung: 0xQuick Starter.exe0 Pfad der fehlerhaften Anwendung: Quick Starter.exe1 Pfad des fehlerhaften Moduls: Quick Starter.exe2 Berichtskennung: Quick Starter.exe3 Error: (02/27/2014 08:52:35 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Quick Starter.exe, Version: 1.0.2.16, Zeitstempel: 0x52f33947 Name des fehlerhaften Moduls: Quick Starter.exe, Version: 1.0.2.16, Zeitstempel: 0x52f33947 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000004b93a ID des fehlerhaften Prozesses: 0x970 Startzeit der fehlerhaften Anwendung: 0xQuick Starter.exe0 Pfad der fehlerhaften Anwendung: Quick Starter.exe1 Pfad des fehlerhaften Moduls: Quick Starter.exe2 Berichtskennung: Quick Starter.exe3 Error: (02/27/2014 08:52:16 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (03/03/2014 11:46:39 AM) (Source: DCOM) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (03/03/2014 07:49:26 AM) (Source: DCOM) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (02/28/2014 03:14:56 PM) (Source: bowser) (User: ) Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "SRV-WAWI", der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{DD426BCC-BFA2-4B89-BCD3-4697D85B81FF}-Transport zu sein scheint. Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen. Error: (02/28/2014 10:51:27 AM) (Source: bowser) (User: ) Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "SRV-WAWI", der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{DD426BCC-BFA2-4B89-BCD3-4697D85B81FF}-Transport zu sein scheint. Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen. Error: (02/28/2014 10:51:27 AM) (Source: NetBT) (User: ) Description: Ein doppelter Name wurde im TCP-Netzwerk entdeckt. Die IP-Adresse des Computers, der die Meldung gesendet hat, steht in den Daten. Verwenden Sie NBTSTAT -n an der Eingabeaufforderung, um den doppelten Namen zu bestimmen. Error: (02/28/2014 10:51:27 AM) (Source: NetBT) (User: ) Description: Ein doppelter Name wurde im TCP-Netzwerk entdeckt. Die IP-Adresse des Computers, der die Meldung gesendet hat, steht in den Daten. Verwenden Sie NBTSTAT -n an der Eingabeaufforderung, um den doppelten Namen zu bestimmen. Error: (02/28/2014 10:51:27 AM) (Source: NetBT) (User: ) Description: Ein doppelter Name wurde im TCP-Netzwerk entdeckt. Die IP-Adresse des Computers, der die Meldung gesendet hat, steht in den Daten. Verwenden Sie NBTSTAT -n an der Eingabeaufforderung, um den doppelten Namen zu bestimmen. Error: (02/28/2014 10:51:27 AM) (Source: NetBT) (User: ) Description: Ein doppelter Name wurde im TCP-Netzwerk entdeckt. Die IP-Adresse des Computers, der die Meldung gesendet hat, steht in den Daten. Verwenden Sie NBTSTAT -n an der Eingabeaufforderung, um den doppelten Namen zu bestimmen. Error: (02/28/2014 07:06:05 AM) (Source: DCOM) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (02/27/2014 08:51:10 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Anwendungserfahrung" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Microsoft Office Sessions: ========================= Error: (03/03/2014 00:07:56 PM) (Source: Application Error)(User: ) Description: adwcleaner_3.0.2.0.exe3.0.2.04f25baecunknown0.0.0.000000000c000041d737b4f0db7801cf36d0adb86851C:\Users\Oliver Daske\Desktop\adwcleaner_3.0.2.0.exeunknown127a9709-a2c4-11e3-88bb-50b7c3533d2f Error: (03/03/2014 11:48:40 AM) (Source: Application Error)(User: ) Description: Quick Starter.exe1.0.2.1652f33947Quick Starter.exe1.0.2.1652f33947c000041d000000000004b93a96801cf36cdb86510eeC:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exeC:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exe61241fdc-a2c1-11e3-88bb-50b7c3533d2f Error: (03/03/2014 11:47:10 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/03/2014 11:45:53 AM) (Source: Application Error)(User: ) Description: Quick Starter.exe1.0.2.1652f33947Quick Starter.exe1.0.2.1652f33947c0000005000000000004b93a96801cf36cdb86510eeC:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exeC:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exefdf96c27-a2c0-11e3-88bb-50b7c3533d2f Error: (03/03/2014 11:43:45 AM) (Source: Application Error)(User: ) Description: adwcleaner_3.0.2.0.exe3.0.2.04f25baecunknown0.0.0.000000000c000041d73814f0d10b801cf36ccd3204d3cC:\Users\Oliver Daske\Desktop\adwcleaner_3.0.2.0.exeunknownb1251258-a2c0-11e3-a8f0-50b7c3533d2f Error: (03/03/2014 07:49:58 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/28/2014 07:06:28 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/27/2014 08:52:52 PM) (Source: Application Error)(User: ) Description: Quick Starter.exe1.0.2.1652f33947Quick Starter.exe1.0.2.1652f33947c000041d000000000004b93a97001cf33f4ad21b213C:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exeC:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exebd79e89b-9fe8-11e3-ad31-50b7c3533d2f Error: (02/27/2014 08:52:35 PM) (Source: Application Error)(User: ) Description: Quick Starter.exe1.0.2.1652f33947Quick Starter.exe1.0.2.1652f33947c0000005000000000004b93a97001cf33f4ad21b213C:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exeC:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exeb34b65d1-9fe8-11e3-ad31-50b7c3533d2f Error: (02/27/2014 08:52:16 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Memory info =========================== Percentage of memory in use: 28% Total physical RAM: 5593.55 MB Available physical RAM: 4015.64 MB Total Pagefile: 11185.29 MB Available Pagefile: 9505.82 MB Total Virtual: 8192 MB Available Virtual: 8191.79 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:488.18 GB) (Free:448.75 GB) NTFS Drive d: () (Fixed) (Total:443.23 GB) (Free:306.91 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 24691073) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=488 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=443 GB) - (Type=07 NTFS) ==================== End Of Log ============================ |
05.03.2014, 11:40 | #5 |
/// the machine /// TB-Ausbilder | Firefox voller Werbung und Pop-ups die 2. hi, Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu Firefox voller Werbung und Pop-ups die 2. |
adwcleaner, anbei, einfach, firefox, gen, hoffe, inter, interne, internetseite, internetseiten, nervt, neustart, pop-ups, seite, seiten, voller, werbung |