| |
| |||||||
Log-Analyse und Auswertung: Windows 8.1 64 Bit; unerwünschte Popups im Chrome BrowserWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
24.05.2014, 19:14
| #1 |
 |  Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Hallo zusammen, seit gestern habe ich diverse Popup Fenster im Chrome Browser auftauchen. Sowohl auf den geöffneten Seiten als auch mit neu auftauchenden Registerkarten. Ebenso sind diverse Wörter auf den Seiten unterstrichen. Es war Sweetpage installiert, welches ich mittlerweile wieder deinstalliert habe. Ich habe auch Adwcleaner, Malwarebytes, Antivir, Kaspersky drüber laufen lassen. Es wurden auch einige Sachen entfernt. Jedoch hat sich an der Problematik nichts geändert. Mittlerweile habe ich Antivir und Kaspersky wieder deinstalliert. Deshalb hab ich auch keine Logdateien mehr davon. Anbei die Logdateien von defogger, GMER und FRST. defogger Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 19:35 on 24/05/2014 (Sebastian)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
|
|
24.05.2014, 19:56
| #2 |
| /// the machine /// TB-Ausbilder    | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
24.05.2014, 20:50
| #3 |
| | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Ok, weil ich gelesen hatte, man solle keine Posts unter dem ersten schreiben.
__________________Addition.txt Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-05-2014 1
Ran by Sebastian at 2014-05-24 19:37:18
Running from C:\Users\Sebastian\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Kaspersky Internet Security (Disabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Disabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Disabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
==================== Installed Programs ======================
AMD Catalyst Install Manager (HKLM\...\{B1F48088-2632-92BF-799C-16A5141B74EC}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD OverDrive (HKLM-x32\...\{34D5220A-58D0-473C-90E4-15136C3FB0E3}) (Version: 4.3.1.0690 - Advanced Micro Devices, Inc.)
ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version: - ASRock Inc.)
ASRock eXtreme Tuner v0.1.298 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version: - )
ASRock XFast RAM v2.0.24 (HKLM\...\ASRock XFast RAM_is1) (Version: - ASRock Inc.)
CPUID CPU-Z 1.69.2 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Etron USB3.0 Host Controller (x32 Version: 0.115 - Etron Technology) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.5.0 - Mozilla)
Mozilla Thunderbird 24.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.5.0 (x86 de)) (Version: 24.5.0 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Stardock Start8 (HKLM-x32\...\Stardock Start8) (Version: 1.41 - Stardock Software, Inc.)
System Update kb70007 (x32 Version: 1.0.0 - MSR) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
XFast LAN v6.61 (HKLM\...\XFast LAN) (Version: 6.61 - cFos Software GmbH, Bonn)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.31 - ASRock Inc.)
==================== Restore Points =========================
21-05-2014 18:15:03 Windows Update
21-05-2014 22:51:11 DirectX wurde installiert
23-05-2014 12:12:03 DirectX wurde installiert
==================== Hosts content: ==========================
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {10734A6C-5C33-45F7-B26A-E0AD7DC90860} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {3500446C-2149-46ED-AA7B-E1EE9811E426} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {56B535C8-2139-472C-A3E9-715FCF6ADF6A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-24] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6E081072-013E-4A4D-A865-EBDF714ECE37} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-03-18] (Microsoft Corporation)
Task: {72218E29-BB43-4A10-BC7F-52B54DD209EF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-05-04] (Microsoft Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FA01CE4-BE0C-4592-9E17-B17AC74A7D6A} - System32\Tasks\fsupdate => C:\PROGRA~2\Flowsurf\fsupd.exe
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A4D96264-D3E5-4E3D-99A9-C06FFA1E47CC} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {C9C09ACD-52A9-4F55-A12A-E8D18EA1AF96} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-24] (Google Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EC172359-3C4C-4D3A-B46D-B964C2D3E16A} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-05-22 00:45 - 2014-03-04 15:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-24 11:45 - 2014-05-08 11:45 - 00018944 _____ () C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe
2014-05-24 11:45 - 2014-05-08 11:45 - 00061952 _____ () C:\Windows\Microsoft\SystemUpdatekb70007\InstallerLibrary.dll
2014-05-24 11:45 - 2014-05-08 11:45 - 00016896 _____ () C:\Windows\Microsoft\SystemUpdatekb70007\Installer.dll
2014-05-24 14:35 - 2014-05-24 14:35 - 00086528 _____ () C:\Program Files (x86)\MSR\Privoxy\mgwz.dll
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2014-03-12 18:46 - 2013-10-01 18:12 - 00453120 _____ () F:\NBA2K14\rld.dll
2014-05-24 14:26 - 2014-05-14 01:40 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libglesv2.dll
2014-05-24 14:26 - 2014-05-14 01:40 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libegl.dll
2014-05-24 14:26 - 2014-05-14 01:40 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll
2014-05-24 14:26 - 2014-05-14 01:40 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
2014-05-24 14:26 - 2014-05-14 01:40 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll
2014-05-24 14:26 - 2014-05-14 01:40 - 13695816 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Sebastian\OneDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: Etron USB 3.0 Extensible Host Controller
Description: Etron USB 3.0 Extensible Host Controller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Etron Technology Inc.
Service: EtronXHCI
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8168
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/24/2014 07:35:40 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Error: (05/24/2014 06:05:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Error: (05/24/2014 06:05:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Error: (05/24/2014 03:05:08 PM) (Source: MsiInstaller) (EventID: 1013) (User: SEBASTIAN)
Description: Programm: Kaspersky Internet Security Technical Preview -- Dieses Programm kann nicht installiert werden. Die Version des Betriebssystems wird nicht unterstützt.
Error: (05/24/2014 03:03:52 PM) (Source: MsiInstaller) (EventID: 1013) (User: SEBASTIAN)
Description: Programm: Kaspersky Internet Security Technical Preview -- Dieses Programm kann nicht installiert werden. Die Version des Betriebssystems wird nicht unterstützt.
System errors:
=============
Error: (05/24/2014 07:37:10 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 07:36:40 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 07:36:10 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 07:35:40 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 07:35:10 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 06:17:42 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 03:34:09 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 03:33:39 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 03:33:09 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (05/24/2014 03:20:09 PM) (Source: DCOM) (EventID: 10010) (User: SEBASTIAN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Microsoft Office Sessions:
=========================
Error: (05/24/2014 07:35:40 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Sebastian\Downloads\esetsmartinstaller_deu.exe
Error: (05/24/2014 06:05:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Sebastian\Downloads\esetsmartinstaller_deu.exe
Error: (05/24/2014 06:05:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Sebastian\Downloads\esetsmartinstaller_deu.exe
Error: (05/24/2014 03:05:08 PM) (Source: MsiInstaller) (EventID: 1013) (User: SEBASTIAN)
Description: Programm: Kaspersky Internet Security Technical Preview -- Dieses Programm kann nicht installiert werden. Die Version des Betriebssystems wird nicht unterstützt.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (05/24/2014 03:03:52 PM) (Source: MsiInstaller) (EventID: 1013) (User: SEBASTIAN)
Description: Programm: Kaspersky Internet Security Technical Preview -- Dieses Programm kann nicht installiert werden. Die Version des Betriebssystems wird nicht unterstützt.(NULL)(NULL)(NULL)(NULL)(NULL)
==================== Memory info ===========================
Percentage of memory in use: 40%
Total physical RAM: 8148.75 MB
Available physical RAM: 4887.44 MB
Total Pagefile: 16148.75 MB
Available Pagefile: 12101.88 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:117.04 GB) (Free:66.4 GB) NTFS
Drive d: (Filme) (Fixed) (Total:150 GB) (Free:111.3 GB) NTFS
Drive e: (Musik) (Fixed) (Total:50 GB) (Free:18.29 GB) NTFS
Drive f: (Spiele) (Fixed) (Total:200 GB) (Free:19.51 GB) NTFS
Drive g: (Spiele 2) (Fixed) (Total:65.76 GB) (Free:25.18 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 117 GB) (Disk ID: ABB15CA1)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=117 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: 197618ED)
Partition 1: (Not Active) - (Size=150 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=66 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
24.05.2014, 20:51
| #4 |
| | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser FRST.txt FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-05-2014 1 Ran by Sebastian (administrator) on SEBASTIAN on 24-05-2014 19:36:54 Running from C:\Users\Sebastian\Downloads Platform: Windows 8.1 Enterprise (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe (The Privoxy team - www.privoxy.org) C:\Program Files (x86)\MSR\Privoxy\privoxy.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe (FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe (2K Sports) F:\NBA2K14\nba2k14.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] (cFos Software GmbH) HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2014-05-22] (FNet Co., Ltd.) HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware (cleanup)] - "C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe" "C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware " [54072 2014-05-12] (Malwarebytes Corporation) HKU\S-1-5-21-1790611383-523093245-3542951716-1001\...\Run: [ASRockXTU] => [X] ==================== Internet (Whitelisted) ==================== ProxyEnable: Internet Explorer proxy is enabled. ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2014-05-24] FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-05-24] FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2014-05-24] FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2014-05-24] FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2014-05-24] Chrome: ======= CHR HomePage: hxxp://de.msn.com/?ocid=EIE9HP&PC=UP50 CHR StartupUrls: "hxxp://ws-countdown.herokuapp.com/", "hxxp://www.sweet-page.com/?type=hppp&ts=1400528616&from=cor&uid=ST3500630AS_9QG20C03XXXX9QG20C03", "hxxp://www.sweet-page.com/?type=hp&ts=1400860828&from=cor&uid=SanDiskXSDSSDP128G_141416401411", "hxxp://www.sweet-page.com/?type=hppp&ts=1400860919&from=cor&uid=SanDiskXSDSSDP128G_141416401411" CHR Extension: (Google Docs) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-24] CHR Extension: (Google Drive) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-24] CHR Extension: (YouTube) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-24] CHR Extension: (Google-Suche) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-24] CHR Extension: (Kaspersky URL Advisor) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-05-24] CHR Extension: (Safe Money) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-05-24] CHR Extension: (Dangerous Websites Blocker) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-05-24] CHR Extension: (Virtual Keyboard) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-05-24] CHR Extension: (Google Wallet) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-24] CHR Extension: (Google Mail) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-24] CHR Extension: (Anti-Banner) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-05-24] CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-11-16] CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-11-16] CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-11-16] CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-11-16] CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-11-16] ==================== Services (Whitelisted) ================= S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-01-08] () R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-11-16] (Kaspersky Lab ZAO) R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation) R2 SystemUpdatekb70007; C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe [18944 2014-05-08] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [59624 2014-01-08] (Advanced Micro Devices) R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-05-22] (FNet Co., Ltd.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation) S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2014-03-18] (Microsoft Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-16] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2013-11-16] (Kaspersky Lab) U5 klflt; C:\Windows\System32\Drivers\klflt.sys [112224 2013-06-08] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [626272 2013-11-16] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-11-16] (Kaspersky Lab ZAO) S3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2013-11-16] (Kaspersky Lab ZAO) S3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-11-16] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-11-16] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178784 2013-06-06] (Kaspersky Lab ZAO) S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) U0 osypf; C:\Windows\System32\drivers\vdbxht.sys [79064 2014-05-24] (Malwarebytes Corporation) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-03-18] (Microsoft Corporation) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-04-19] (Microsoft Corporation) R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation) R4 avkmgr; \SystemRoot\system32\DRIVERS\avkmgr.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-05-24 19:36 - 2014-05-24 19:36 - 00015500 _____ () C:\Users\Sebastian\Downloads\FRST.txt 2014-05-24 19:36 - 2014-05-24 19:36 - 00000000 ____D () C:\FRST 2014-05-24 19:35 - 2014-05-24 19:35 - 00000480 _____ () C:\Users\Sebastian\Downloads\defogger_disable.log 2014-05-24 19:35 - 2014-05-24 19:35 - 00000000 _____ () C:\Users\Sebastian\defogger_reenable 2014-05-24 18:13 - 2014-05-24 18:13 - 00380416 _____ () C:\Users\Sebastian\Downloads\Gmer-19357.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 02066432 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST64.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 00050477 _____ () C:\Users\Sebastian\Downloads\Defogger.exe 2014-05-24 18:06 - 2014-05-24 18:06 - 00854367 _____ () C:\Users\Sebastian\Downloads\SecurityCheck.exe 2014-05-24 18:06 - 2014-05-24 18:06 - 00854367 _____ () C:\Users\Sebastian\Downloads\SecurityCheck (1).exe 2014-05-24 18:05 - 2014-05-24 18:05 - 02347384 _____ (ESET) C:\Users\Sebastian\Downloads\esetsmartinstaller_deu.exe 2014-05-24 18:05 - 2014-05-24 18:05 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-05-24 15:08 - 2014-05-24 15:08 - 00002346 _____ () C:\Users\Sebastian\Desktop\Safe Money.lnk 2014-05-24 15:08 - 2014-05-24 15:08 - 00001341 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security.lnk 2014-05-24 15:07 - 2014-05-24 19:35 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-05-24 15:07 - 2014-05-24 15:07 - 00001140 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2014-05-24 15:07 - 2014-05-24 15:07 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab 2014-05-24 15:07 - 2013-11-16 22:11 - 00626272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys 2014-05-24 15:07 - 2013-06-08 20:18 - 00112224 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys 2014-05-24 15:07 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2014-05-24 15:04 - 2014-05-24 18:56 - 00000000 ____D () C:\Users\Sebastian\Downloads\kis14.0.0.4651 2014-05-24 15:04 - 2014-01-19 09:38 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-05-24 15:02 - 2014-05-24 18:56 - 00000000 ____D () C:\Users\Sebastian\Downloads\kaspersky 2014-05-24 15:02 - 2014-04-15 16:42 - 00000113 _____ () C:\Users\Sebastian\Downloads\Uploaded Premium.url 2014-05-24 15:02 - 2014-04-15 15:03 - 00000167 _____ () C:\Users\Sebastian\Downloads\Share-Online Premium.url 2014-05-24 15:02 - 2014-04-15 14:55 - 00000120 _____ () C:\Users\Sebastian\Downloads\Oboom Premium.url 2014-05-24 14:57 - 2014-05-24 14:59 - 106000000 _____ () C:\Users\Sebastian\Downloads\4592-avler-b7484.part1.rar 2014-05-24 14:57 - 2014-05-24 14:57 - 72441397 _____ () C:\Users\Sebastian\Downloads\4592-avler-b7484.part2.rar 2014-05-24 14:53 - 2014-05-24 14:53 - 00000000 _____ () C:\ProgramData\rebootpending.txt 2014-05-24 14:51 - 2014-05-24 14:51 - 00227096 _____ () C:\Users\Sebastian\Downloads\avira_registry_cleaner_de.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 01016261 _____ (Thisisu) C:\Users\Sebastian\Downloads\JRT.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 00000000 ____D () C:\Windows\ERUNT 2014-05-24 14:45 - 2014-05-24 14:45 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\vdbxht.sys 2014-05-24 14:35 - 2014-05-24 14:35 - 00000000 ____D () C:\Program Files (x86)\MSR 2014-05-24 14:30 - 2014-05-24 14:34 - 00000000 ____D () C:\AdwCleaner 2014-05-24 14:30 - 2014-05-24 14:30 - 01326389 _____ () C:\Users\Sebastian\Downloads\adwcleaner_3.210.exe 2014-05-24 14:30 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-05-24 14:26 - 2014-05-24 14:37 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-05-24 14:26 - 2014-05-24 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-05-24 14:02 - 2014-05-24 14:02 - 00008124 _____ () C:\Users\Sebastian\Downloads\SMDC_r6.zip 2014-05-24 14:01 - 2014-05-24 14:01 - 00017267 _____ () C:\Users\Sebastian\Downloads\CandyBars-0.6.1.zip 2014-05-24 12:21 - 2014-05-24 12:21 - 00015554 _____ () C:\Users\Sebastian\Downloads\ClassicQuestDialog_2.1.3.zip 2014-05-24 11:47 - 2014-05-24 11:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Macromedia 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieUserList 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieSiteList 2014-05-24 11:45 - 2014-05-24 11:45 - 00003092 _____ () C:\Windows\System32\Tasks\fsupdate 2014-05-24 11:38 - 2014-05-24 11:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW 2014-05-24 11:37 - 2014-05-24 11:37 - 13847653 _____ () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW.rar 2014-05-23 18:22 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E13.Der.neue.Vizepraesident.German.BDRip.XviD-GZCrew 2014-05-23 18:21 - 2014-05-23 18:21 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E11.Erloesung.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E12.Der.Wunschkandidat.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E10.Im.freien.Fall.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:17 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E08.Die.gute.alte.Zeit.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E09.Gewissensentscheidung.German.BDRip.XviD-GZCrew 2014-05-23 18:15 - 2014-05-23 18:15 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E07.Neustart.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E05.Die.Spendengala.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E04.Die.Intrige.German.BDRip.XviD-GZCrew 2014-05-23 18:11 - 2014-05-23 18:11 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E06.Der.Streik.German.BDRip.XviD-GZCrew 2014-05-23 18:08 - 2014-05-23 18:08 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E01.Das.Spiel.beginnt.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-24 14:38 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-05-23 18:07 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E03.Der.Wasserturm.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E02.Der.Gesetzesentwurf.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:06 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-05-23 18:06 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-05-23 18:06 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-05-23 18:01 - 2014-05-23 18:01 - 00002215 _____ () C:\Users\Sebastian\Desktop\JDownloader 2.lnk 2014-05-23 18:01 - 2014-05-23 18:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2014-05-23 18:00 - 2014-05-24 15:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\JDownloader v2.0 2014-05-23 14:11 - 2014-05-23 14:11 - 00000000 ____D () C:\Windows\LastGood 2014-05-23 14:11 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2014-05-23 14:11 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2014-05-22 23:55 - 2014-05-22 23:56 - 00000000 ____D () C:\Users\Sebastian\Documents\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Steam 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Bohemia Interactive 2014-05-22 20:59 - 2014-05-22 20:59 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\WinRAR 2014-05-22 20:46 - 2014-05-22 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD 2014-05-22 20:43 - 2014-05-22 20:43 - 00000000 ____D () C:\Users\Public\Symantec 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Cyberlink 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\ProgramData\CyberLink 2014-05-22 20:40 - 2014-05-22 20:40 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\FNET 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files\ASRock 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files (x86)\XFastUSB 2014-05-22 20:39 - 2011-05-10 16:28 - 00017192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\AsrAppCharger.sys 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Windows\LastGood.Tmp 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Program Files (x86)\Etron Technology 2014-05-22 20:38 - 2011-09-11 08:41 - 00088832 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronXHCI.sys 2014-05-22 20:37 - 2014-05-22 20:45 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files\Realtek 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-05-22 20:37 - 2012-08-07 12:51 - 04102928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2014-05-22 20:37 - 2012-08-07 09:11 - 00329737 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-05-22 20:37 - 2012-08-06 09:44 - 01561744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2014-05-22 20:37 - 2012-08-06 05:49 - 02743440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2014-05-22 20:37 - 2012-08-03 12:18 - 01706640 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2014-05-22 20:37 - 2012-08-01 12:29 - 00109200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2014-05-22 20:37 - 2012-07-30 18:04 - 00690832 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys 2014-05-22 20:37 - 2012-07-30 18:04 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2014-05-22 20:37 - 2012-07-23 16:02 - 00626304 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll 2014-05-22 20:37 - 2012-07-23 16:02 - 00561792 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll 2014-05-22 20:37 - 2012-07-20 08:41 - 00880784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2014-05-22 20:37 - 2012-07-19 10:52 - 02028920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2014-05-22 20:37 - 2012-07-19 10:51 - 02080120 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2014-05-22 20:37 - 2012-07-19 10:51 - 00834936 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2014-05-22 20:37 - 2012-07-16 08:16 - 03643024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2014-05-22 20:37 - 2012-07-02 09:39 - 01264272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2014-05-22 20:37 - 2012-06-20 11:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-05-22 20:37 - 2012-06-08 10:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2014-05-22 20:37 - 2012-06-08 10:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll 2014-05-22 20:37 - 2012-06-08 10:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll 2014-05-22 20:37 - 2012-04-10 08:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2014-05-22 20:37 - 2012-03-08 05:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2014-05-22 20:37 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2014-05-22 20:37 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2014-05-22 20:37 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2014-05-22 20:37 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2014-05-22 20:37 - 2010-10-15 13:20 - 02261764 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-05-22 20:37 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2014-05-22 20:37 - 2009-11-18 01:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys 2014-05-22 20:32 - 2014-05-22 20:32 - 00000000 ____D () C:\Program Files\ATI 2014-05-22 20:32 - 2012-06-19 00:07 - 00057000 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys 2014-05-22 20:31 - 2014-05-22 20:46 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Downloaded Installations 2014-05-22 20:31 - 2014-05-22 20:40 - 00001246 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk 2014-05-22 20:31 - 2014-05-22 20:40 - 00000003 _____ () C:\Users\Sebastian\AppData\Local\user_data.ini 2014-05-22 20:31 - 2014-05-22 20:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:39 - 00000000 ____D () C:\Program Files\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\cFos 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-05-22 20:31 - 2012-08-09 17:03 - 00034640 _____ (ASRock Inc.) C:\Windows\system32\Drivers\AsrRamDisk.sys 2014-05-22 20:31 - 2011-07-04 15:19 - 01632128 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys 2014-05-22 20:30 - 2014-05-22 20:30 - 00000000 ____D () C:\ProgramData\cFos 2014-05-22 18:02 - 2014-05-22 21:47 - 00000000 ____D () C:\Program Files (x86)\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00001019 _____ () C:\Users\Sebastian\Desktop\SpeedFan.lnk 2014-05-22 18:02 - 2014-05-22 18:02 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 01:35 - 2014-05-22 00:40 - 00000000 ____D () C:\Windows\Panther 2014-05-22 00:52 - 2014-05-24 15:28 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\TS3Client 2014-05-22 00:52 - 2014-05-23 14:12 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA Corporation 2014-05-22 00:51 - 2014-05-23 14:10 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA 2014-05-22 00:51 - 2014-04-30 20:29 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-05-22 00:51 - 2014-04-30 20:29 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2014-05-22 00:50 - 2014-05-22 00:50 - 00000885 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-05-22 00:50 - 2014-05-21 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-05-22 00:50 - 2014-03-04 13:32 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2014-05-22 00:49 - 2014-05-22 00:49 - 00000979 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-05-22 00:48 - 2014-05-22 00:48 - 00002110 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\ProgramData\Mozilla 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-05-22 00:48 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2014-05-22 00:48 - 2013-11-28 15:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2014-05-22 00:48 - 2013-11-28 15:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2014-05-22 00:48 - 2013-11-22 10:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2014-05-22 00:47 - 2014-05-24 14:52 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-05-22 00:47 - 2014-05-22 00:47 - 00000000 ____D () C:\NVIDIA 2014-05-22 00:46 - 2014-05-24 14:56 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1790611383-523093245-3542951716-1001 2014-05-22 00:46 - 2014-05-24 14:34 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-05-22 00:45 - 2014-05-23 14:11 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-05-22 00:45 - 2014-05-23 14:11 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-05-22 00:45 - 2014-05-22 00:51 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-05-22 00:45 - 2014-03-20 23:03 - 00062408 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2014-05-22 00:45 - 2014-03-20 23:03 - 00054216 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2014-05-22 00:45 - 2014-03-04 15:06 - 06714312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2014-05-22 00:45 - 2014-03-04 15:06 - 03497816 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 03649185 _____ () C:\Windows\system32\nvcoproc.bin 2014-05-22 00:45 - 2014-03-04 15:05 - 02558808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 00922968 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2014-05-22 00:45 - 2014-03-04 15:05 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2014-05-22 00:44 - 2014-05-24 19:31 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-05-22 00:44 - 2014-05-24 14:35 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-05-22 00:44 - 2014-05-24 14:26 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-22 00:44 - 2014-05-24 14:26 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Google 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Deployment 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Program Files (x86)\Google 2014-05-22 00:44 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Apps\2.0 2014-05-22 00:41 - 2014-05-24 14:35 - 00000000 __RDO () C:\Users\Sebastian\OneDrive 2014-05-22 00:41 - 2014-04-19 10:01 - 00002143 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk 2014-05-22 00:40 - 2014-05-22 00:41 - 00003560 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-05-22 00:40 - 2014-05-22 00:40 - 00002583 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log 2014-05-22 00:40 - 2014-05-22 00:40 - 00001450 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Adobe 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\VirtualStore 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\PackageStaging 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Packages 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Program Files\WinRAR 2014-05-22 00:40 - 2014-05-21 20:32 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-22 00:40 - 2014-05-21 20:32 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-05-22 00:39 - 2014-05-24 19:35 - 00000000 ____D () C:\Users\Sebastian 2014-05-22 00:39 - 2014-05-22 00:39 - 00000020 ___SH () C:\Users\Sebastian\ntuser.ini 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Vorlagen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Startmenü 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Netzwerkumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Lokale Einstellungen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Eigene Dateien 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Druckumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Musik 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Bilder 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Verlauf 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Anwendungsdaten 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Anwendungsdaten 2014-05-22 00:39 - 2014-04-19 10:01 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-22 00:39 - 2014-03-18 12:31 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-05-22 00:39 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk 2014-05-22 00:39 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk 2014-05-22 00:39 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-05-22 00:39 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-05-22 00:38 - 2014-05-24 15:22 - 01995986 _____ () C:\Windows\WindowsUpdate.log 2014-05-22 00:38 - 2014-05-22 00:38 - 00000000 ____D () C:\Windows\CSC 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-05-22 00:36 - 2014-05-22 00:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2014-05-21 20:47 - 2014-05-21 20:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\2K Sports 2014-05-21 20:42 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NVIDIA 2014-05-21 20:34 - 2014-05-21 20:34 - 00010123 _____ () C:\Windows\DirectX.log 2014-05-21 20:34 - 2014-05-21 20:34 - 00000000 ____D () C:\DirectX 2014-05-21 20:34 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2014-05-21 20:34 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2014-05-21 20:34 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2014-05-21 20:34 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2014-05-21 20:34 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2014-05-21 20:34 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2014-05-21 20:34 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2014-05-21 20:34 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2014-05-21 20:34 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2014-05-21 20:34 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2014-05-21 20:34 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2014-05-21 20:34 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2014-05-21 20:34 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2014-05-21 20:34 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2014-05-21 20:34 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2014-05-21 20:34 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2014-05-21 20:34 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2014-05-21 20:34 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2014-05-21 20:34 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2014-05-21 20:34 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2014-05-21 20:34 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2014-05-21 20:34 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2014-05-21 20:34 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2014-05-21 20:34 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2014-05-21 20:34 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2014-05-21 20:34 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2014-05-21 20:34 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2014-05-21 20:34 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2014-05-21 20:34 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2014-05-21 20:34 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2014-05-21 20:34 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2014-05-21 20:34 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2014-05-21 20:34 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2014-05-21 20:34 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2014-05-21 20:34 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2014-05-21 20:34 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2014-05-21 20:34 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2014-05-21 20:34 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2014-05-21 20:34 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2014-05-21 20:34 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2014-05-21 20:34 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2014-05-21 20:34 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2014-05-21 20:34 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2014-05-21 20:34 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2014-05-21 20:34 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2014-05-21 20:34 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2014-05-21 20:34 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2014-05-21 20:34 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2014-05-21 20:34 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2014-05-21 20:34 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2014-05-21 20:34 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2014-05-21 20:34 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2014-05-21 20:34 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2014-05-21 20:34 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2014-05-21 20:34 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2014-05-21 20:34 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2014-05-21 20:34 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2014-05-21 20:34 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2014-05-21 20:34 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2014-05-21 20:21 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\vlc 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-05-21 20:18 - 2014-05-21 20:18 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-21 20:18 - 2014-05-04 17:12 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-21 20:17 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\Desktop\Spiele 2014-05-21 20:14 - 2014-04-18 16:57 - 00032600 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll 2014-05-21 20:14 - 2014-04-18 16:44 - 01466856 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll 2014-05-21 20:14 - 2014-04-18 15:29 - 01200288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll 2014-05-21 20:14 - 2014-04-18 11:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll 2014-05-21 20:14 - 2014-04-18 11:32 - 13287936 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-05-21 20:14 - 2014-04-18 10:58 - 11792384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2014-05-21 20:14 - 2014-04-18 10:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2014-05-21 20:14 - 2014-04-18 10:21 - 01126912 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll 2014-05-21 20:14 - 2014-04-18 10:09 - 08652800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll 2014-05-21 20:14 - 2014-04-18 09:51 - 00836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll 2014-05-21 20:14 - 2014-04-18 09:49 - 05833216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll 2014-05-21 20:14 - 2014-04-14 11:20 - 00324888 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2014-05-21 20:14 - 2014-04-14 10:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2014-05-21 20:14 - 2014-04-11 06:51 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2014-05-21 20:14 - 2014-04-11 06:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll 2014-05-21 20:14 - 2014-04-11 05:30 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll 2014-05-21 20:14 - 2014-04-09 13:53 - 00337240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2014-05-21 20:14 - 2014-04-09 08:39 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2014-05-21 20:14 - 2014-04-09 07:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2014-05-21 20:14 - 2014-04-09 06:35 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-05-21 20:14 - 2014-04-09 05:33 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2014-05-21 20:14 - 2014-04-08 04:01 - 00589656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2014-05-21 20:14 - 2014-04-06 18:34 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-05-21 20:14 - 2014-04-06 18:34 - 00275800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2014-05-21 20:14 - 2014-04-06 18:32 - 00125496 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2014-05-21 20:14 - 2014-04-06 18:31 - 21268952 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-05-21 20:14 - 2014-04-06 18:30 - 00201920 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll 2014-05-21 20:14 - 2014-04-06 18:24 - 00360792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2014-05-21 20:14 - 2014-04-06 18:20 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 01403856 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 01379064 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00881616 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00765408 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00609448 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00491744 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00467496 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00463256 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00244880 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-05-21 20:14 - 2014-04-06 18:20 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00028408 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2014-05-21 20:14 - 2014-04-06 17:23 - 00098584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll 2014-05-21 20:14 - 2014-04-06 17:22 - 18755672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-05-21 20:14 - 2014-04-06 17:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00707048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00406504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-05-21 20:14 - 2014-04-06 16:10 - 04190720 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-05-21 20:14 - 2014-04-06 14:58 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-05-21 20:14 - 2014-04-06 14:51 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-05-21 20:14 - 2014-04-06 14:33 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe 2014-05-21 20:14 - 2014-04-06 14:24 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-05-21 20:14 - 2014-04-06 14:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2014-05-21 20:14 - 2014-04-06 13:55 - 16872448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-05-21 20:14 - 2014-04-06 13:54 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-05-21 20:14 - 2014-04-06 13:26 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll 2014-05-21 20:14 - 2014-04-06 13:20 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2014-05-21 20:14 - 2014-04-06 13:01 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-05-21 20:14 - 2014-04-06 12:52 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2014-05-21 20:14 - 2014-04-06 12:51 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2014-05-21 20:14 - 2014-04-06 12:37 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2014-05-21 20:14 - 2014-04-06 12:36 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2014-05-21 20:14 - 2014-04-06 12:05 - 01222656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll 2014-05-21 20:14 - 2014-04-06 11:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 02124840 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 00307304 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 00130144 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2014-05-21 20:14 - 2014-04-03 06:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-05-21 20:14 - 2014-04-03 06:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll 2014-05-21 20:14 - 2014-04-03 05:53 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2014-05-21 20:14 - 2014-04-03 04:53 - 04269056 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-05-21 20:14 - 2014-04-03 04:53 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2014-05-21 20:14 - 2014-04-03 04:51 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2014-05-21 20:14 - 2014-04-03 04:23 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-05-21 20:14 - 2014-04-03 04:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-05-21 20:14 - 2014-04-03 04:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll 2014-05-21 20:14 - 2014-04-03 04:22 - 03359744 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-05-21 20:14 - 2014-04-03 04:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll 2014-05-21 20:14 - 2014-04-01 08:23 - 00384856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2014-05-21 20:14 - 2014-03-31 07:42 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-05-21 20:14 - 2014-03-31 07:35 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-05-21 20:14 - 2014-03-31 07:35 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-05-21 20:14 - 2014-03-31 02:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2014-05-21 20:14 - 2014-03-31 02:01 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll 2014-05-21 20:14 - 2014-03-31 01:43 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll 2014-05-21 20:14 - 2014-03-31 00:54 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2014-05-21 20:14 - 2014-03-31 00:49 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2014-05-21 20:14 - 2014-03-31 00:35 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll 2014-05-21 20:14 - 2014-03-31 00:11 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-05-21 20:14 - 2014-03-30 23:47 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-05-21 20:14 - 2014-03-28 17:58 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2014-05-21 20:14 - 2014-03-27 08:16 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2014-05-21 20:14 - 2014-03-27 07:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll 2014-05-21 20:14 - 2014-03-27 06:59 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll 2014-05-21 20:14 - 2014-03-27 06:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll 2014-05-21 20:14 - 2014-03-27 06:19 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll 2014-05-21 20:14 - 2014-03-27 05:46 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2014-05-21 20:14 - 2014-03-27 05:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll 2014-05-21 20:14 - 2014-03-27 05:10 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2014-05-21 20:14 - 2014-03-25 00:58 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-05-21 20:14 - 2014-03-22 11:09 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe 2014-05-21 20:14 - 2014-03-22 10:50 - 00329216 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe 2014-05-21 20:14 - 2014-03-21 06:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll 2014-05-21 20:14 - 2014-03-20 05:48 - 00263424 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2014-05-21 20:14 - 2014-03-20 02:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2014-05-21 20:14 - 2014-03-20 02:44 - 06645248 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-05-21 20:14 - 2014-03-20 01:38 - 00590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll 2014-05-21 20:14 - 2014-03-20 01:33 - 05774848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-05-21 20:14 - 2014-03-19 10:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll 2014-05-21 20:14 - 2014-03-19 10:07 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys 2014-05-21 20:14 - 2014-03-19 09:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-05-21 20:14 - 2014-03-19 09:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll 2014-05-21 20:14 - 2014-03-19 08:36 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2014-05-21 20:14 - 2014-03-19 07:56 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2014-05-21 20:14 - 2014-03-19 07:45 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll 2014-05-21 20:14 - 2014-03-19 07:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2014-05-21 20:14 - 2014-03-19 07:07 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2014-05-21 20:14 - 2014-03-19 07:02 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2014-05-21 20:14 - 2014-03-19 07:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll 2014-05-21 20:14 - 2014-03-19 06:51 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll 2014-05-21 20:14 - 2014-03-19 06:31 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll 2014-05-21 20:14 - 2014-03-19 06:18 - 02688000 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll 2014-05-21 20:14 - 2014-03-18 10:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2014-05-21 20:14 - 2014-03-18 10:18 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb22.sys 2014-05-21 20:14 - 2014-03-18 07:00 - 07173120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2014-05-21 20:14 - 2014-03-18 06:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2014-05-21 20:14 - 2014-03-17 07:09 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-05-21 20:14 - 2014-03-17 06:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2014-05-21 20:14 - 2014-03-17 05:01 - 00486912 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2014-05-21 20:14 - 2014-03-17 04:47 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-05-21 20:14 - 2014-03-17 04:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2014-05-21 20:14 - 2014-03-14 08:26 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll 2014-05-21 20:14 - 2014-03-14 08:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll 2014-05-21 20:14 - 2014-03-06 14:42 - 00310616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2014-05-21 20:14 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2014-05-21 20:13 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-21 20:13 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-21 20:13 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-21 20:13 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-21 20:13 - 2014-04-11 12:03 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2014-05-21 20:13 - 2014-04-11 12:03 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-05-21 20:13 - 2014-04-11 10:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll 2014-05-21 20:13 - 2014-04-11 08:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-05-21 20:13 - 2014-04-11 07:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe 2014-05-21 20:13 - 2014-04-11 07:22 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2014-05-21 20:13 - 2014-04-11 05:54 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2014-05-21 20:13 - 2014-04-11 05:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2014-05-21 20:13 - 2014-04-11 05:05 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-05-21 20:13 - 2014-04-11 05:05 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2014-05-21 20:13 - 2014-04-11 05:02 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-05-21 20:13 - 2014-04-11 05:02 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-05-21 20:13 - 2014-04-11 05:01 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-05-21 20:13 - 2014-04-11 05:00 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2014-05-21 20:13 - 2014-04-11 04:59 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2014-05-21 20:13 - 2014-04-11 04:57 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2014-05-21 20:13 - 2014-04-11 04:56 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2014-05-21 20:13 - 2014-04-11 04:55 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-05-21 20:13 - 2014-04-11 04:53 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-05-21 20:13 - 2014-04-11 04:52 - 03464192 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-05-21 20:13 - 2014-04-11 04:46 - 01705472 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-05-21 20:13 - 2014-04-11 04:36 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll 2014-05-21 20:13 - 2014-04-11 04:34 - 00754688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2014-05-21 20:13 - 2014-04-11 04:29 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2014-05-21 20:13 - 2014-04-11 04:25 - 00921088 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-05-21 20:13 - 2014-04-09 00:46 - 00086688 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll 2014-05-21 20:13 - 2014-04-09 00:46 - 00028320 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll 2014-05-21 20:13 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt_map.dll 2014-05-21 20:13 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt100.dll 2014-05-21 20:13 - 2014-03-24 04:30 - 00257880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2014-05-21 20:13 - 2014-03-24 04:30 - 00123224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2014-05-21 20:13 - 2014-03-24 04:27 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2014-05-21 20:13 - 2014-03-13 09:42 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe 2014-05-21 20:13 - 2014-03-13 08:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe 2014-05-21 20:13 - 2014-02-06 13:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-05-21 20:13 - 2014-02-06 12:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-05-21 20:11 - 2014-05-21 20:11 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Funcom 2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Thunderbird 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Mozilla 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Thunderbird 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2014-05-07 22:35 - 2014-05-07 22:35 - 00590715 _____ () C:\Users\Sebastian\Downloads\Praxis_Check_2011_Ergebnisliste.xlsx 2014-04-30 16:46 - 2014-05-21 20:25 - 00000000 ____D () C:\Users\Sebastian\Documents\The Secret Wotld ==================== One Month Modified Files and Folders ======= 2014-05-24 19:36 - 2014-05-24 19:36 - 00015500 _____ () C:\Users\Sebastian\Downloads\FRST.txt 2014-05-24 19:36 - 2014-05-24 19:36 - 00000000 ____D () C:\FRST 2014-05-24 19:35 - 2014-05-24 19:35 - 00000480 _____ () C:\Users\Sebastian\Downloads\defogger_disable.log 2014-05-24 19:35 - 2014-05-24 19:35 - 00000000 _____ () C:\Users\Sebastian\defogger_reenable 2014-05-24 19:35 - 2014-05-24 15:07 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-05-24 19:35 - 2014-05-22 00:39 - 00000000 ____D () C:\Users\Sebastian 2014-05-24 19:31 - 2014-05-22 00:44 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-05-24 18:56 - 2014-05-24 15:04 - 00000000 ____D () C:\Users\Sebastian\Downloads\kis14.0.0.4651 2014-05-24 18:56 - 2014-05-24 15:02 - 00000000 ____D () C:\Users\Sebastian\Downloads\kaspersky 2014-05-24 18:13 - 2014-05-24 18:13 - 00380416 _____ () C:\Users\Sebastian\Downloads\Gmer-19357.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 02066432 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST64.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 00050477 _____ () C:\Users\Sebastian\Downloads\Defogger.exe 2014-05-24 18:06 - 2014-05-24 18:06 - 00854367 _____ () C:\Users\Sebastian\Downloads\SecurityCheck.exe 2014-05-24 18:06 - 2014-05-24 18:06 - 00854367 _____ () C:\Users\Sebastian\Downloads\SecurityCheck (1).exe 2014-05-24 18:05 - 2014-05-24 18:05 - 02347384 _____ (ESET) C:\Users\Sebastian\Downloads\esetsmartinstaller_deu.exe 2014-05-24 18:05 - 2014-05-24 18:05 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-05-24 18:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-05-24 15:28 - 2014-05-22 00:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\TS3Client 2014-05-24 15:22 - 2014-05-22 00:38 - 01995986 _____ () C:\Windows\WindowsUpdate.log 2014-05-24 15:08 - 2014-05-24 15:08 - 00002346 _____ () C:\Users\Sebastian\Desktop\Safe Money.lnk 2014-05-24 15:08 - 2014-05-24 15:08 - 00001341 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security.lnk 2014-05-24 15:07 - 2014-05-24 15:07 - 00001140 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2014-05-24 15:07 - 2014-05-24 15:07 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab 2014-05-24 15:07 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP 2014-05-24 15:07 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-05-24 15:02 - 2014-05-23 18:00 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\JDownloader v2.0 2014-05-24 14:59 - 2014-05-24 14:57 - 106000000 _____ () C:\Users\Sebastian\Downloads\4592-avler-b7484.part1.rar 2014-05-24 14:57 - 2014-05-24 14:57 - 72441397 _____ () C:\Users\Sebastian\Downloads\4592-avler-b7484.part2.rar 2014-05-24 14:56 - 2014-05-22 00:46 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1790611383-523093245-3542951716-1001 2014-05-24 14:53 - 2014-05-24 14:53 - 00000000 _____ () C:\ProgramData\rebootpending.txt 2014-05-24 14:52 - 2014-05-22 00:47 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-05-24 14:51 - 2014-05-24 14:51 - 00227096 _____ () C:\Users\Sebastian\Downloads\avira_registry_cleaner_de.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 01016261 _____ (Thisisu) C:\Users\Sebastian\Downloads\JRT.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 00000000 ____D () C:\Windows\ERUNT 2014-05-24 14:45 - 2014-05-24 14:45 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\vdbxht.sys 2014-05-24 14:41 - 2014-03-18 12:02 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-05-24 14:41 - 2014-03-18 11:24 - 00764340 _____ () C:\Windows\system32\perfh007.dat 2014-05-24 14:41 - 2014-03-18 11:24 - 00159160 _____ () C:\Windows\system32\perfc007.dat 2014-05-24 14:38 - 2014-05-23 18:07 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-05-24 14:37 - 2014-05-24 14:26 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-05-24 14:35 - 2014-05-24 14:35 - 00000000 ____D () C:\Program Files (x86)\MSR 2014-05-24 14:35 - 2014-05-22 00:44 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-05-24 14:35 - 2014-05-22 00:41 - 00000000 __RDO () C:\Users\Sebastian\OneDrive 2014-05-24 14:34 - 2014-05-24 14:30 - 00000000 ____D () C:\AdwCleaner 2014-05-24 14:34 - 2014-05-22 00:46 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-05-24 14:34 - 2014-03-18 03:49 - 00111370 _____ () C:\Windows\PFRO.log 2014-05-24 14:34 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-05-24 14:32 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\SchCache 2014-05-24 14:30 - 2014-05-24 14:30 - 01326389 _____ () C:\Users\Sebastian\Downloads\adwcleaner_3.210.exe 2014-05-24 14:26 - 2014-05-24 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-05-24 14:26 - 2014-05-22 00:44 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-24 14:26 - 2014-05-22 00:44 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Google 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Deployment 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Program Files (x86)\Google 2014-05-24 14:05 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-05-24 14:02 - 2014-05-24 14:02 - 00008124 _____ () C:\Users\Sebastian\Downloads\SMDC_r6.zip 2014-05-24 14:01 - 2014-05-24 14:01 - 00017267 _____ () C:\Users\Sebastian\Downloads\CandyBars-0.6.1.zip 2014-05-24 12:21 - 2014-05-24 12:21 - 00015554 _____ () C:\Users\Sebastian\Downloads\ClassicQuestDialog_2.1.3.zip 2014-05-24 11:47 - 2014-05-24 11:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Macromedia 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieUserList 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieSiteList 2014-05-24 11:45 - 2014-05-24 11:45 - 00003092 _____ () C:\Windows\System32\Tasks\fsupdate 2014-05-24 11:38 - 2014-05-24 11:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW 2014-05-24 11:37 - 2014-05-24 11:37 - 13847653 _____ () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW.rar 2014-05-24 04:21 - 2013-08-22 15:25 - 00000194 _____ () C:\Windows\win.ini 2014-05-24 02:43 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache 2014-05-23 18:22 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E13.Der.neue.Vizepraesident.German.BDRip.XviD-GZCrew 2014-05-23 18:22 - 2014-05-21 20:21 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\vlc 2014-05-23 18:21 - 2014-05-23 18:21 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E11.Erloesung.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E12.Der.Wunschkandidat.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E10.Im.freien.Fall.German.BDRip.XviD-GZCrew 2014-05-23 18:17 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E08.Die.gute.alte.Zeit.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E09.Gewissensentscheidung.German.BDRip.XviD-GZCrew 2014-05-23 18:15 - 2014-05-23 18:15 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E07.Neustart.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E05.Die.Spendengala.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E04.Die.Intrige.German.BDRip.XviD-GZCrew 2014-05-23 18:11 - 2014-05-23 18:11 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E06.Der.Streik.German.BDRip.XviD-GZCrew 2014-05-23 18:08 - 2014-05-23 18:08 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E01.Das.Spiel.beginnt.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E03.Der.Wasserturm.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-23 18:06 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E02.Der.Gesetzesentwurf.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:06 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-05-23 18:01 - 2014-05-23 18:01 - 00002215 _____ () C:\Users\Sebastian\Desktop\JDownloader 2.lnk 2014-05-23 18:01 - 2014-05-23 18:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2014-05-23 17:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-05-23 14:12 - 2014-05-22 00:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA Corporation 2014-05-23 14:11 - 2014-05-23 14:11 - 00000000 ____D () C:\Windows\LastGood 2014-05-23 14:11 - 2014-05-22 00:45 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-05-23 14:11 - 2014-05-22 00:45 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-05-23 14:11 - 2013-08-22 16:46 - 00013737 _____ () C:\Windows\setupact.log 2014-05-23 14:10 - 2014-05-22 00:51 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA 2014-05-22 23:56 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\Documents\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Steam 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Bohemia Interactive 2014-05-22 21:47 - 2014-05-22 18:02 - 00000000 ____D () C:\Program Files (x86)\SpeedFan 2014-05-22 20:59 - 2014-05-22 20:59 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\WinRAR 2014-05-22 20:46 - 2014-05-22 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD 2014-05-22 20:46 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Downloaded Installations 2014-05-22 20:45 - 2014-05-22 20:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-05-22 20:43 - 2014-05-22 20:43 - 00000000 ____D () C:\Users\Public\Symantec 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Cyberlink 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\ProgramData\CyberLink 2014-05-22 20:40 - 2014-05-22 20:40 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\FNET 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files\ASRock 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files (x86)\XFastUSB 2014-05-22 20:40 - 2014-05-22 20:31 - 00001246 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk 2014-05-22 20:40 - 2014-05-22 20:31 - 00000003 _____ () C:\Users\Sebastian\AppData\Local\user_data.ini 2014-05-22 20:39 - 2014-05-22 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility 2014-05-22 20:39 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files\ASRock Utility 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Windows\LastGood.Tmp 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Program Files (x86)\Etron Technology 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files\Realtek 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-05-22 20:33 - 2013-08-22 16:44 - 00336024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-05-22 20:32 - 2014-05-22 20:32 - 00000000 ____D () C:\Program Files\ATI 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\cFos 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-05-22 20:30 - 2014-05-22 20:30 - 00000000 ____D () C:\ProgramData\cFos 2014-05-22 18:02 - 2014-05-22 18:02 - 00001019 _____ () C:\Users\Sebastian\Desktop\SpeedFan.lnk 2014-05-22 18:02 - 2014-05-22 18:02 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 01:35 - 2013-08-22 17:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template 2014-05-22 00:51 - 2014-05-22 00:45 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-05-22 00:51 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore 2014-05-22 00:50 - 2014-05-22 00:50 - 00000885 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-05-22 00:49 - 2014-05-22 00:49 - 00000979 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-05-22 00:48 - 2014-05-22 00:48 - 00002110 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\ProgramData\Mozilla 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-05-22 00:47 - 2014-05-22 00:47 - 00000000 ____D () C:\NVIDIA 2014-05-22 00:45 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help 2014-05-22 00:44 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Apps\2.0 2014-05-22 00:41 - 2014-05-22 00:40 - 00003560 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-05-22 00:40 - 2014-05-22 01:35 - 00000000 ____D () C:\Windows\Panther 2014-05-22 00:40 - 2014-05-22 00:40 - 00002583 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log 2014-05-22 00:40 - 2014-05-22 00:40 - 00001450 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Adobe 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\VirtualStore 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\PackageStaging 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Packages 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Program Files\WinRAR 2014-05-22 00:40 - 2014-04-19 10:01 - 00000000 ___RD () C:\Windows\BrowserChoice 2014-05-22 00:39 - 2014-05-22 00:39 - 00000020 ___SH () C:\Users\Sebastian\ntuser.ini 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Vorlagen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Startmenü 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Netzwerkumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Lokale Einstellungen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Eigene Dateien 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Druckumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Musik 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Bilder 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Verlauf 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Anwendungsdaten 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Anwendungsdaten 2014-05-22 00:38 - 2014-05-22 00:38 - 00000000 ____D () C:\Windows\CSC 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-05-22 00:37 - 2013-08-22 17:37 - 00002664 _____ () C:\Windows\DtcInstall.log 2014-05-22 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\Recovery 2014-05-22 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT 2014-05-22 00:37 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default 2014-05-22 00:36 - 2014-05-22 00:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2014-05-21 20:47 - 2014-05-21 20:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\2K Sports 2014-05-21 20:46 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-05-21 20:42 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NVIDIA 2014-05-21 20:42 - 2014-05-21 20:17 - 00000000 ____D () C:\Users\Sebastian\Desktop\Spiele 2014-05-21 20:36 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-05-21 20:34 - 2014-05-21 20:34 - 00010123 _____ () C:\Windows\DirectX.log 2014-05-21 20:34 - 2014-05-21 20:34 - 00000000 ____D () C:\DirectX 2014-05-21 20:32 - 2014-05-22 00:40 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-21 20:32 - 2014-05-22 00:40 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\WinStore 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-05-21 20:31 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\oobe 2014-05-21 20:25 - 2014-04-30 16:46 - 00000000 ____D () C:\Users\Sebastian\Documents\The Secret Wotld 2014-05-21 20:24 - 2013-08-20 20:27 - 00000000 ____D () C:\Users\Sebastian\Documents\Steuer-Sparbuch 2014-05-21 20:24 - 2013-05-12 21:02 - 00000000 ____D () C:\Users\Sebastian\Documents\Studium 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-05-21 20:18 - 2014-05-21 20:18 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-21 20:11 - 2014-05-21 20:11 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Funcom 2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Thunderbird 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Mozilla 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Thunderbird 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2014-05-21 19:55 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-05-12 07:26 - 2014-05-23 18:06 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-05-12 07:26 - 2014-05-23 18:06 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-05-12 07:25 - 2014-05-23 18:06 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-05-07 22:35 - 2014-05-07 22:35 - 00590715 _____ () C:\Users\Sebastian\Downloads\Praxis_Check_2011_Ergebnisliste.xlsx 2014-05-06 06:40 - 2014-05-21 20:13 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-06 05:25 - 2014-05-21 20:13 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-06 05:00 - 2014-05-21 20:13 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-06 04:10 - 2014-05-21 20:13 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-04 17:12 - 2014-05-21 20:18 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-01 22:30 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-05-01 22:30 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-04-30 20:29 - 2014-05-22 00:51 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-04-30 20:29 - 2014-05-22 00:51 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll Some content of TEMP: ==================== C:\Users\Sebastian\AppData\Local\Temp\avgnt.exe C:\Users\Sebastian\AppData\Local\Temp\nvStInst.exe C:\Users\Sebastian\AppData\Local\Temp\proxy_vole8917170099058833814.dll C:\Users\Sebastian\AppData\Local\Temp\Quarantine.exe C:\Users\Sebastian\AppData\Local\Temp\sfamcc00001.dll C:\Users\Sebastian\AppData\Local\Temp\sfextra.dll ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe [2014-05-21 20:14] - [2014-03-28 17:58] - 0407016 ____A (Microsoft Corporation) 067CB90C277DB4A737D5DEABA3055972 C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-05-21 20:14] - [2014-03-06 14:42] - 0310616 ____A (Microsoft Corporation) 4BB9BC49DEE1A319EC58274A7BBED663 LastRegBack: 2014-05-22 00:36 ==================== End Of Log ============================ |
|
24.05.2014, 20:52
| #5 |
| | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser GMER.txt Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-05-24 19:53:15
Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SanDisk_SDSSDP128G rev.3.1.0 117,38GB
Running: 60458zfe.exe; Driver: C:\Users\SEBAST~1\AppData\Local\Temp\kgldapow.sys
---- Kernel code sections - GMER 2.1 ----
.text C:\Windows\System32\win32k.sys!W32pServiceTable + 1 fffff96000212201 7 bytes [20, 0A, 02, 00, F0, 70, 01]
.text C:\Windows\System32\win32k.sys!W32pServiceTable + 9 fffff96000212209 6 bytes [88, B0, FF, 01, 23, DC]
---- User code sections - GMER 2.1 ----
.text C:\Windows\system32\dwm.exe[976] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7965169a 4 bytes [65, 79, FD, 7F]
.text C:\Windows\system32\dwm.exe[976] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd796516a2 4 bytes [65, 79, FD, 7F]
.text C:\Windows\system32\dwm.exe[976] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7965181a 4 bytes [65, 79, FD, 7F]
.text C:\Windows\system32\dwm.exe[976] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd79651832 4 bytes [65, 79, FD, 7F]
.text C:\Windows\system32\nvvsvc.exe[376] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7965169a 4 bytes [65, 79, FD, 7F]
.text C:\Windows\system32\nvvsvc.exe[376] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd796516a2 4 bytes [65, 79, FD, 7F]
.text C:\Windows\system32\nvvsvc.exe[376] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7965181a 4 bytes [65, 79, FD, 7F]
.text C:\Windows\system32\nvvsvc.exe[376] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd79651832 4 bytes [65, 79, FD, 7F]
.text C:\Windows\explorer.exe[5072] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7965169a 4 bytes [65, 79, FD, 7F]
.text C:\Windows\explorer.exe[5072] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd796516a2 4 bytes [65, 79, FD, 7F]
.text C:\Windows\explorer.exe[5072] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7965181a 4 bytes [65, 79, FD, 7F]
.text C:\Windows\explorer.exe[5072] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd79651832 4 bytes [65, 79, FD, 7F]
.text C:\Program Files\Windows Defender\MsMpEng.exe[2272] C:\Windows\system32\psapi.dll!GetModuleBaseNameA + 506 00007ffd7965169a 4 bytes [65, 79, FD, 7F]
.text C:\Program Files\Windows Defender\MsMpEng.exe[2272] C:\Windows\system32\psapi.dll!GetModuleBaseNameA + 514 00007ffd796516a2 4 bytes [65, 79, FD, 7F]
.text C:\Program Files\Windows Defender\MsMpEng.exe[2272] C:\Windows\system32\psapi.dll!QueryWorkingSet + 118 00007ffd7965181a 4 bytes [65, 79, FD, 7F]
.text C:\Program Files\Windows Defender\MsMpEng.exe[2272] C:\Windows\system32\psapi.dll!QueryWorkingSet + 142 00007ffd79651832 4 bytes [65, 79, FD, 7F]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlDefaultNpAcl + 772 00007ffd79e7293c 8 bytes {JMP 0xffffffffffffff8c}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmAddToAverageDWORD + 21 00007ffd79e72959 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmSetIfMaxDWORD + 95 00007ffd79e729c7 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!EtwEventWriteEndScenario + 220 00007ffd79e72aac 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmEndSession + 272 00007ffd79e72bc4 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmStartSession + 8 00007ffd79e73018 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmStartSession + 940 00007ffd79e733bc 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!EtwEventWriteFull + 64 00007ffd79e73404 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!EtwEventWriteFull + 503 00007ffd79e735bb 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmIsSessionDisabled + 792 00007ffd79e73fe0 8 bytes {JMP 0xffffffffffffffa9}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlVerifyVersionInfo + 835 00007ffd79e74933 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!SbSelectProcedure + 336 00007ffd79e74bac 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!SbSelectProcedure + 472 00007ffd79e74c34 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text ... * 2
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlGetNtProductType + 567 00007ffd79e7543f 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmAddToStream + 592 00007ffd79e756b4 8 bytes {JMP 0xffffffffffffffa9}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmAddToStreamEx + 875 00007ffd79e75a27 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmEventEnabled + 139 00007ffd79e75f8b 8 bytes {JMP 0xffffffffffffffd1}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmEventEnabled + 224 00007ffd79e75fe0 16 bytes {JMP 0xffffffffffffffcf}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!WinSqmEventWrite + 119 00007ffd79e760df 8 bytes {JMP 0xffffffffffffffac}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!EtwEventWrite + 43 00007ffd79e76113 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!EtwEventWrite + 628 00007ffd79e7635c 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text ... * 3
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlCreateBoundaryDescriptor + 584 00007ffd79e76658 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlAddSIDToBoundaryDescriptor + 8 00007ffd79e76668 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlAddSIDToBoundaryDescriptor + 519 00007ffd79e76867 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlDeleteBoundaryDescriptor + 23 00007ffd79e76887 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!A_SHAFinal + 300 00007ffd79e76bf0 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!A_SHAInit + 44 00007ffd79e76c24 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlCreateServiceSid + 292 00007ffd79e79188 8 bytes {JMP 0xffffffffffffffdc}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlLengthRequiredSid + 20 00007ffd79e791a4 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlLengthRequiredSid + 352 00007ffd79e792f0 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlInitializeSid + 35 00007ffd79e7931b 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlAddAce + 339 00007ffd79e7950b 8 bytes {JMP 0xffffffffffffffdc}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlNewSecurityObjectEx + 99 00007ffd79e79577 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlIsValidProcessTrustLabelSid + 103 00007ffd79e795e7 8 bytes {JMP 0xffffffffffffffe6}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlIsValidProcessTrustLabelSid + 751 00007ffd79e7986f 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlSidDominatesForTrust + 135 00007ffd79e79a67 8 bytes {JMP 0xffffffffffffffaa}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlCreateSecurityDescriptor + 43 00007ffd79e7a7bf 8 bytes {JMP 0xfffffffffffffff5}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlSetDaclSecurityDescriptor + 104 00007ffd79e7a8e8 8 bytes {JMP 0xffffffffffffffe5}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlAddMandatoryAce + 356 00007ffd79e7aa78 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlMapGenericMask + 64 00007ffd79e7d270 8 bytes {JMP 0xffffffffffffffd0}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlOpenCurrentUser + 208 00007ffd79e7d39c 8 bytes {JMP 0xffffffffffffffa3}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlCheckTokenCapability + 952 00007ffd79e7d75c 8 bytes [F0, 69, F8, 7F, 00, 00, 00, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlAppendUnicodeToString + 167 00007ffd79e7e56b 8 bytes [D0, 69, F8, 7F, 00, 00, 00, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlLengthSidAsUnicodeString + 84 00007ffd79e7e5c8 8 bytes {JMP 0xffffffffffffffdc}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlValidSecurityDescriptor + 243 00007ffd79e7e6c3 8 bytes [B0, 69, F8, 7F, 00, 00, 00, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!RtlAddAccessAllowedAce + 379 00007ffd79e7e847 8 bytes [A0, 69, F8, 7F, 00, 00, 00, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!NtSetInformationThread 00007ffd79efac50 8 bytes {JMP QWORD [RIP-0x7c8ac]}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!NtQueryInformationThread 00007ffd79efadd0 8 bytes {JMP QWORD [RIP-0x7c86b]}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!NtMapViewOfSection 00007ffd79efae00 8 bytes {JMP QWORD [RIP-0x7db96]}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffd79efaf20 8 bytes {JMP QWORD [RIP-0x7d7ca]}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThread 00007ffd79efafd0 8 bytes {JMP QWORD [RIP-0x7dc3a]}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 00007ffd79efb690 8 bytes {JMP QWORD [RIP-0x7ce4f]}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 00007ffd79efb990 8 bytes {JMP QWORD [RIP-0x7d2d3]}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 00007ffd79efc210 8 bytes {JMP QWORD [RIP-0x7dc4e]}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuSetContext + 381 000000007734137d 16 bytes {JMP 0xffffffffffffffd3}
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuGetContext + 386 0000000077341512 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuSetInstructionPointer + 49 0000000077341551 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuSetStackPointer + 23 0000000077341577 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuResetToConsistentState + 516 0000000077341784 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuThreadInit + 50 00000000773417c2 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuGetStackPointer + 23 00000000773417e7 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuProcessInit + 68 0000000077341834 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuNotifyAffinityChange + 1 0000000077341841 24 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuNotifyAffinityChange + 513 0000000077341a41 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text ... * 2
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuFlushInstructionCache + 16 0000000077342ae0 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuInitializeStartupContext + 308 0000000077342c1c 8 bytes [0D, F0, AD, BA, DE, C0, AD, ...]
.text C:\Users\Sebastian\Downloads\60458zfe.exe[2472] C:\Windows\system32\wow64cpu.dll!CpuProcessDebugEvent + 3 0000000077342c43 8 bytes [7C, 68, F8, 7F, 00, 00, 00, ...]
---- Threads - GMER 2.1 ----
Thread C:\Windows\system32\csrss.exe [668:3828] fffff96000827b90
Thread C:\Windows\explorer.exe [5072:4240] 00007ffd6aa8d6bc
---- Processes - GMER 2.1 ----
Library C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\shellex.dll (*** suspicious ***) @ C:\Windows\explorer.exe [5072] 00007ffd6bb00000
Library C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\MSVCP100.dll (*** suspicious ***) @ C:\Windows\explorer.exe [5072] 000000005d290000
Library C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\MSVCR100.dll (*** suspicious ***) @ C:\Windows\explorer.exe [5072] 000000005d1b0000
Library C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\prremote.dll (*** suspicious ***) @ C:\Windows\explorer.exe [5072] 000000005d140000
Library C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\prloader.dll (*** suspicious ***) @ C:\Windows\explorer.exe [5072] 00007ffd69b40000
---- Services - GMER 2.1 ----
Service C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe (*** hidden *** ) [AUTO] AVP <-- ROOTKIT !!!
Service system32\DRIVERS\kl1.sys (*** hidden *** ) [BOOT] kl1 <-- ROOTKIT !!!
Service system32\DRIVERS\klelam.sys (*** hidden *** ) [BOOT] klelam <-- ROOTKIT !!!
Service (*** hidden *** ) klflt <-- ROOTKIT !!!
Service system32\DRIVERS\klif.sys (*** hidden *** ) [SYSTEM] KLIF <-- ROOTKIT !!!
Service system32\DRIVERS\klim6.sys (*** hidden *** ) [SYSTEM] KLIM6 <-- ROOTKIT !!!
Service system32\DRIVERS\klkbdflt.sys (*** hidden *** ) [MANUAL] klkbdflt <-- ROOTKIT !!!
Service system32\DRIVERS\klmouflt.sys (*** hidden *** ) [MANUAL] klmouflt <-- ROOTKIT !!!
Service system32\DRIVERS\klpd.sys (*** hidden *** ) [SYSTEM] klpd <-- ROOTKIT !!!
Service system32\DRIVERS\klwfp.sys (*** hidden *** ) [SYSTEM] klwfp <-- ROOTKIT !!!
Service system32\DRIVERS\kneps.sys (*** hidden *** ) [SYSTEM] kneps <-- ROOTKIT !!!
Service C:\Program Files (x86)\Windows Defender\MsMpEng.exe (*** hidden *** ) [MANUAL] WinDefend <-- ROOTKIT !!!
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\CurrentControlSet\Control\MUI\StringCacheSettings@StringCacheGeneration 22
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}@Characteristics 262144
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}@ComponentId kl_klim6
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}@InfPath oem12.inf
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}@InfSection Install
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}@LocDescription @oem12.inf,%klim6_desc%;Kaspersky Anti-Virus NDIS 6 Filter
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}@Description Kaspersky Anti-Virus NDIS 6 Filter
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}@InstallTimeStamp 0xDE 0x07 0x05 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi@Service KLIM6
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi@CoServices KLIM6?
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi@HelpText Kaspersky Anti-Virus Network Filter
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi@FilterClass compression
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi@FilterType 2
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi@FilterRunType 2
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi@TimeStamp 0xDE 0x07 0x05 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi\Interfaces
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi\Interfaces@UpperRange noupper
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi\Interfaces@LowerRange nolower
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi\Interfaces@FilterMediaTypes ethernet, wan, atm
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}\Ndi\Interfaces@LowerExclude ndisatm, ndiscowan, ndiswan, ndiswanasync, ndiswanipx, ndiswannbf
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@PendingFileRenameOperations \??\C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage??\??\C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal??\??\C:\Users\SEBAST~1\AppData\Local\Temp\DEL78FA.tmp??\??\C:\Users\SEBAST~1\AppData\Local\Temp\DEL7DCD.tmp??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\avrestart.exe??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\ccwkrlib.dll??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\firewall.dll??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\mfc120u.dll??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\msvcp120.dll??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\msvcr120.dll??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\rcimage.dll??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\rctext.dll??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\restartrc.dll??\??\C:\Program Files (x86)\Avira\AntiVir Desktop\scewxmlw.dll??\??\C:\Program Files (x86)\Avira\An
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed -613814331
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP@Type 16
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP@Start 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP@ErrorControl 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP@ImagePath "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP@DisplayName Kaspersky Anti-Virus Service
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP@Description Provides computer protection against viruses, dangerous software, network attacks, internet fraud and spam.
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP\Security@Security 0x01 0x00 0x14 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\AVP
Reg HKLM\SYSTEM\CurrentControlSet\Services\kl1@Start 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\kl1@HookIp 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\kl1@HookRawIp 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\kl1@AutoBoot 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\kl1@RegLoad 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\kl1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam@Type 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam@Start 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam@ErrorControl 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam@Tag 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam@ImagePath system32\DRIVERS\klelam.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam@DisplayName klelam
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam@Group Early-Launch
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam@Description Kaspersky Lab Real Time Protection Component
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam\Parameters\Journal
Reg HKLM\SYSTEM\CurrentControlSet\Services\klelam
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters\ClientData
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters\ClientData@
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters\ClientData@38D 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters\ClientData@3EC 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters\ClientData@4B0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters\ClientData@3EB 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters\CollectionData
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt\Parameters\CollectionData@
Reg HKLM\SYSTEM\CurrentControlSet\Services\klflt
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIF@Start 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIF\Parameters@ProcHash 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIF\Parameters@LastProcessedRevision 1002844
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIF
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@Type 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@Start 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@ErrorControl 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@Tag 27
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@ImagePath \SystemRoot\system32\DRIVERS\klim6.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@DisplayName @oem12.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@Group NDIS
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@Description @oem12.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@NdisMajorVersion 6
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@NdisMinorVersion 30
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@DriverMajorVersion 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6@DriverMinorVersion 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters@DefaultFilterSettings 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters\Adapters
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters\Adapters\{8718928D-CBEB-45EA-A621-800A9249001D}
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters\Adapters\{8718928D-CBEB-45EA-A621-800A9249001D}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}-0000
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters\Adapters\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters\Adapters\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}\{C477F579-9F31-474D-86CC-E1567F0BFD1D}-0000
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters\NdisAdapters
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters\NdisAdapters\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6\Parameters\NdisAdapters\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}@InterfaceGuid 0x75 0x1C 0xCA 0xCD ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\KLIM6
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt@Type 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt@ErrorControl 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt@Tag 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt@ImagePath \SystemRoot\system32\DRIVERS\klkbdflt.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt@DisplayName Kaspersky Lab KLKBDFLT
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt@Group Pnp Device Filter
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt@Description Kaspersky Lab Keyboard Class Filter
Reg HKLM\SYSTEM\CurrentControlSet\Services\klkbdflt
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt@Type 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt@ErrorControl 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt@Tag 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt@ImagePath \SystemRoot\system32\DRIVERS\klmouflt.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt@DisplayName Kaspersky Lab KLMOUFLT
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt@Group Pnp Device Filter
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt@Description Kaspersky Lab Mouse Class Filter
Reg HKLM\SYSTEM\CurrentControlSet\Services\klmouflt
Reg HKLM\SYSTEM\CurrentControlSet\Services\klpd@Start 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klpd
Reg HKLM\SYSTEM\CurrentControlSet\Services\klwfp@Start 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\klwfp
Reg HKLM\SYSTEM\CurrentControlSet\Services\kneps@Start 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\kneps
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch 1177
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch 80
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}@LeaseObtainedTime 1400934903
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}@T1 1401366903
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}@T2 1401690903
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}@LeaseTerminatesTime 1401798903
Reg HKLM\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters\Interfaces\{B7F6194A-CE4B-40B0-B750-1E66D3B07DB7}@Dhcpv6InformationObtainedTime 1400934903
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdBoot@Group _Early-Launch
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdBoot@ImagePath \SystemRoot\system32\drivers\WdBoot.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdBoot@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdBoot
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdFilter@ImagePath \SystemRoot\system32\drivers\WdFilter.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdFilter@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdFilter
Reg HKLM\SYSTEM\CurrentControlSet\Services\WinDefend@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WinDefend
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@PolicyDocumentLastRefresh 0x4C 0x29 0xCD 0x3C ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@WindowsBandwidthBucketCounter 39918
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastWindowsBandwidthBucketDrainTime 0x4C 0x7D 0x05 0x3E ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastWindowsRequestBucketDrainTime 0x86 0x1E 0xD1 0x58 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastWindowsLargeRequestBucketDrainTime 0x86 0x1E 0xD1 0x58 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastOtherRequestBucketDrainTime 0x86 0x1E 0xD1 0x58 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@GlobalBandwidthBucketCounter 34553
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastGlobalRequestBucketDrainTime 0x86 0x1E 0xD1 0x58 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@RoamingSyncToken LM%3d63536534607107%3bID%3dE3E98211B9A65F93!106%3bLR%3d63536531707810%3bEP%3d4%3bTD%3dTrue%3bSO%3d0
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastUploadTime 0xB0 0xAA 0x40 0x61 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\RegistrarData@LastRenewCollectionsInterest 0x32 0x87 0x5D 0x14 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\SyncData@PendingOperations 5
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\SkyDrive@MoSkyFileSync WLS_SubscriptionId_576c7c7d-6ee7-4955-a9fb-c5c248cf932a
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\SkyDrive@MoSkyQuotaStateChange WLS_SubscriptionId_c0167fc8-9fb7-4d16-999b-805594da2d0a
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\StartupNotify@EnableStartupAppNotification 1
Reg HKCU\Software\Microsoft\Windows\Windows Error Reporting@LastRateLimitedDumpGenerationTime 0x31 0x45 0x59 0xBA ...
Reg HKCU\Software\Microsoft\Windows\Windows Error Reporting\Debug@StoreLocation C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppCrash_mbam.exe_122dd8266e6da32b2e886027b27deb705de64b96_6d63998c_10aa9092
Reg HKCU\Software\Microsoft\Windows\Windows Error Reporting\Debug\UIHandles@CheckingForSolutionDialog 0x3E 0x04 0x0A 0x00 ...
Reg HKCU\Software\Microsoft\Windows\Windows Error Reporting\Debug\UIHandles@CloseDialog 0x3E 0x04 0x0A 0x00 ...
---- EOF - GMER 2.1 ----
|
|
25.05.2014, 18:29
| #6 |
| /// the machine /// TB-Ausbilder | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser |
|
25.05.2014, 18:59
| #7 |
| | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Hier das frische FRST Logfile FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-05-2014 01 Ran by Sebastian (administrator) on SEBASTIAN on 25-05-2014 19:39:51 Running from C:\Users\Sebastian\Downloads Platform: Windows 8.1 Enterprise (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe (FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe (Valve Corporation) D:\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (The Privoxy team - www.privoxy.org) C:\Program Files (x86)\MSR\Privoxy\privoxy.exe (Blizzard Entertainment) F:\wotlk\World-of-Warcraft335\Wow.exe (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Microsoft Corporation) C:\Windows\System32\SndVol.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe () C:\Program Files (x86)\Opera\21.0.1432.67\opera_crashreporter.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] (cFos Software GmbH) HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2014-05-22] (FNet Co., Ltd.) HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware (cleanup)] - "C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe" "C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware " [54072 2014-05-12] (Malwarebytes Corporation) HKU\S-1-5-21-1790611383-523093245-3542951716-1001\...\Run: [ASRockXTU] => [X] ==================== Internet (Whitelisted) ==================== ProxyEnable: Internet Explorer proxy is enabled. ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) Chrome: ======= CHR Extension: (Google Docs) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-25] CHR Extension: (Google Drive) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-25] CHR Extension: (YouTube) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-25] CHR Extension: (Google-Suche) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-25] CHR Extension: (Google Wallet) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-25] CHR Extension: (Google Mail) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-25] ==================== Services (Whitelisted) ================= S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-01-08] () S2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation) R2 SystemUpdatekb70007; C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe [18944 2014-05-08] () R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [59624 2014-01-08] (Advanced Micro Devices) R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-05-22] (FNet Co., Ltd.) U0 hmhw; C:\Windows\System32\drivers\srpmkhyl.sys [79064 2014-05-25] (Malwarebytes Corporation) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation) S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2014-03-18] (Microsoft Corporation) S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) U0 osypf; C:\Windows\System32\drivers\vdbxht.sys [79064 2014-05-24] (Malwarebytes Corporation) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-03-18] (Microsoft Corporation) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-04-19] (Microsoft Corporation) R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation) R4 avkmgr; \SystemRoot\system32\DRIVERS\avkmgr.sys [X] R4 kl1; system32\DRIVERS\kl1.sys [X] R4 KLIF; system32\DRIVERS\klif.sys [X] R4 klpd; \SystemRoot\system32\DRIVERS\klpd.sys [X] R4 klwfp; \SystemRoot\system32\DRIVERS\klwfp.sys [X] R4 kneps; \SystemRoot\system32\DRIVERS\kneps.sys [X] U3 kgldapow; \??\C:\Users\SEBAST~1\AppData\Local\Temp\kgldapow.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-05-25 19:39 - 2014-05-25 19:39 - 00009940 _____ () C:\Users\Sebastian\Downloads\FRST.txt 2014-05-25 19:39 - 2014-05-25 19:39 - 00000000 ____D () C:\Users\Sebastian\Downloads\FRST-OlderVersion 2014-05-25 13:40 - 2014-05-25 13:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Chromium 2014-05-25 13:37 - 2014-05-25 13:37 - 00000000 ____D () C:\Users\Sebastian\Downloads\lnc 2014-05-25 12:18 - 2014-05-25 12:18 - 00000202 _____ () C:\Users\Sebastian\Desktop\Football Manager 2014.url 2014-05-25 12:16 - 2014-05-25 12:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\Microsoft.Windows.8.1.All-in-One.Integrated.Mai.2014.German-rahab 2014-05-25 12:14 - 2014-05-25 12:14 - 00000198 _____ () C:\Users\Sebastian\Desktop\Counter-Strike.url 2014-05-25 12:11 - 2014-05-25 12:11 - 00000525 _____ () C:\Users\Public\Desktop\Steam.lnk 2014-05-25 12:11 - 2014-05-25 12:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2014-05-25 12:09 - 2014-05-25 13:09 - 00000000 ____D () C:\Users\Sebastian\Documents\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\Users\Public\Desktop\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-05-25 11:56 - 2014-05-25 11:56 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\srpmkhyl.sys 2014-05-25 11:56 - 2014-05-25 11:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Google 2014-05-24 19:36 - 2014-05-25 19:39 - 00000000 ____D () C:\FRST 2014-05-24 19:35 - 2014-05-24 19:35 - 00000000 _____ () C:\Users\Sebastian\defogger_reenable 2014-05-24 18:13 - 2014-05-24 18:13 - 00380416 _____ () C:\Users\Sebastian\Downloads\Gmer-19357.exe 2014-05-24 18:12 - 2014-05-25 19:39 - 02066944 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST64.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 00050477 _____ () C:\Users\Sebastian\Downloads\Defogger.exe 2014-05-24 18:05 - 2014-05-24 18:05 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-05-24 15:04 - 2014-05-24 18:56 - 00000000 ____D () C:\Users\Sebastian\Downloads\kis14.0.0.4651 2014-05-24 15:04 - 2014-01-19 09:38 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-05-24 15:02 - 2014-05-24 18:56 - 00000000 ____D () C:\Users\Sebastian\Downloads\kaspersky 2014-05-24 14:53 - 2014-05-24 14:53 - 00000000 _____ () C:\ProgramData\rebootpending.txt 2014-05-24 14:49 - 2014-05-24 14:49 - 01016261 _____ (Thisisu) C:\Users\Sebastian\Downloads\JRT.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 00000000 ____D () C:\Windows\ERUNT 2014-05-24 14:45 - 2014-05-24 14:45 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\vdbxht.sys 2014-05-24 14:35 - 2014-05-24 14:35 - 00000000 ____D () C:\Program Files (x86)\MSR 2014-05-24 14:30 - 2014-05-24 14:34 - 00000000 ____D () C:\AdwCleaner 2014-05-24 14:30 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-05-24 14:26 - 2014-05-25 14:31 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-05-24 14:26 - 2014-05-24 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-05-24 11:47 - 2014-05-24 11:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Macromedia 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieUserList 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieSiteList 2014-05-24 11:45 - 2014-05-24 11:45 - 00003092 _____ () C:\Windows\System32\Tasks\fsupdate 2014-05-24 11:38 - 2014-05-24 11:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW 2014-05-23 18:22 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E13.Der.neue.Vizepraesident.German.BDRip.XviD-GZCrew 2014-05-23 18:21 - 2014-05-23 18:21 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E11.Erloesung.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E12.Der.Wunschkandidat.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E10.Im.freien.Fall.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:17 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E08.Die.gute.alte.Zeit.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E09.Gewissensentscheidung.German.BDRip.XviD-GZCrew 2014-05-23 18:15 - 2014-05-23 18:15 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E07.Neustart.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E05.Die.Spendengala.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E04.Die.Intrige.German.BDRip.XviD-GZCrew 2014-05-23 18:11 - 2014-05-23 18:11 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E06.Der.Streik.German.BDRip.XviD-GZCrew 2014-05-23 18:08 - 2014-05-23 18:08 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E01.Das.Spiel.beginnt.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-25 11:49 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-05-23 18:07 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E03.Der.Wasserturm.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E02.Der.Gesetzesentwurf.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:06 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-05-23 18:06 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-05-23 18:06 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-05-23 18:01 - 2014-05-23 18:01 - 00002215 _____ () C:\Users\Sebastian\Desktop\JDownloader 2.lnk 2014-05-23 18:01 - 2014-05-23 18:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2014-05-23 18:00 - 2014-05-25 12:53 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\JDownloader v2.0 2014-05-23 14:11 - 2014-05-23 14:11 - 00000000 ____D () C:\Windows\LastGood 2014-05-23 14:11 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2014-05-23 14:11 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2014-05-22 23:55 - 2014-05-22 23:56 - 00000000 ____D () C:\Users\Sebastian\Documents\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Steam 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Bohemia Interactive 2014-05-22 20:59 - 2014-05-22 20:59 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\WinRAR 2014-05-22 20:46 - 2014-05-22 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD 2014-05-22 20:43 - 2014-05-22 20:43 - 00000000 ____D () C:\Users\Public\Symantec 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Cyberlink 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\ProgramData\CyberLink 2014-05-22 20:40 - 2014-05-22 20:40 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\FNET 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files\ASRock 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files (x86)\XFastUSB 2014-05-22 20:39 - 2011-05-10 16:28 - 00017192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\AsrAppCharger.sys 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Windows\LastGood.Tmp 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Program Files (x86)\Etron Technology 2014-05-22 20:38 - 2011-09-11 08:41 - 00088832 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronXHCI.sys 2014-05-22 20:37 - 2014-05-22 20:45 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files\Realtek 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-05-22 20:37 - 2012-08-07 12:51 - 04102928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2014-05-22 20:37 - 2012-08-07 09:11 - 00329737 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-05-22 20:37 - 2012-08-06 09:44 - 01561744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2014-05-22 20:37 - 2012-08-06 05:49 - 02743440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2014-05-22 20:37 - 2012-08-03 12:18 - 01706640 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2014-05-22 20:37 - 2012-08-01 12:29 - 00109200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2014-05-22 20:37 - 2012-07-30 18:04 - 00690832 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys 2014-05-22 20:37 - 2012-07-30 18:04 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2014-05-22 20:37 - 2012-07-23 16:02 - 00626304 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll 2014-05-22 20:37 - 2012-07-23 16:02 - 00561792 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll 2014-05-22 20:37 - 2012-07-20 08:41 - 00880784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2014-05-22 20:37 - 2012-07-19 10:52 - 02028920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2014-05-22 20:37 - 2012-07-19 10:51 - 02080120 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2014-05-22 20:37 - 2012-07-19 10:51 - 00834936 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2014-05-22 20:37 - 2012-07-16 08:16 - 03643024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2014-05-22 20:37 - 2012-07-02 09:39 - 01264272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2014-05-22 20:37 - 2012-06-20 11:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-05-22 20:37 - 2012-06-08 10:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2014-05-22 20:37 - 2012-06-08 10:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll 2014-05-22 20:37 - 2012-06-08 10:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll 2014-05-22 20:37 - 2012-04-10 08:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2014-05-22 20:37 - 2012-03-08 05:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2014-05-22 20:37 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2014-05-22 20:37 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2014-05-22 20:37 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2014-05-22 20:37 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2014-05-22 20:37 - 2010-10-15 13:20 - 02261764 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-05-22 20:37 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2014-05-22 20:37 - 2009-11-18 01:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys 2014-05-22 20:32 - 2014-05-22 20:32 - 00000000 ____D () C:\Program Files\ATI 2014-05-22 20:32 - 2012-06-19 00:07 - 00057000 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys 2014-05-22 20:31 - 2014-05-22 20:46 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Downloaded Installations 2014-05-22 20:31 - 2014-05-22 20:40 - 00001246 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk 2014-05-22 20:31 - 2014-05-22 20:40 - 00000003 _____ () C:\Users\Sebastian\AppData\Local\user_data.ini 2014-05-22 20:31 - 2014-05-22 20:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:39 - 00000000 ____D () C:\Program Files\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\cFos 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-05-22 20:31 - 2012-08-09 17:03 - 00034640 _____ (ASRock Inc.) C:\Windows\system32\Drivers\AsrRamDisk.sys 2014-05-22 20:31 - 2011-07-04 15:19 - 01632128 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys 2014-05-22 20:30 - 2014-05-22 20:30 - 00000000 ____D () C:\ProgramData\cFos 2014-05-22 18:02 - 2014-05-22 21:47 - 00000000 ____D () C:\Program Files (x86)\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00001019 _____ () C:\Users\Sebastian\Desktop\SpeedFan.lnk 2014-05-22 18:02 - 2014-05-22 18:02 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 01:35 - 2014-05-22 00:40 - 00000000 ____D () C:\Windows\Panther 2014-05-22 00:52 - 2014-05-25 18:45 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\TS3Client 2014-05-22 00:52 - 2014-05-23 14:12 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA Corporation 2014-05-22 00:51 - 2014-05-23 14:10 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA 2014-05-22 00:51 - 2014-04-30 20:29 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-05-22 00:51 - 2014-04-30 20:29 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2014-05-22 00:50 - 2014-05-22 00:50 - 00000885 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-05-22 00:50 - 2014-05-21 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-05-22 00:50 - 2014-03-04 13:32 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2014-05-22 00:49 - 2014-05-22 00:49 - 00000979 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-05-22 00:48 - 2014-05-22 00:48 - 00002110 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\ProgramData\Mozilla 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-05-22 00:48 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2014-05-22 00:48 - 2013-11-28 15:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2014-05-22 00:48 - 2013-11-28 15:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2014-05-22 00:48 - 2013-11-22 10:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2014-05-22 00:47 - 2014-05-24 14:52 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-05-22 00:47 - 2014-05-22 00:47 - 00000000 ____D () C:\NVIDIA 2014-05-22 00:46 - 2014-05-25 15:09 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1790611383-523093245-3542951716-1001 2014-05-22 00:46 - 2014-05-24 14:34 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-05-22 00:45 - 2014-05-23 14:11 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-05-22 00:45 - 2014-05-23 14:11 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-05-22 00:45 - 2014-05-22 00:51 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-05-22 00:45 - 2014-03-20 23:03 - 00062408 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2014-05-22 00:45 - 2014-03-20 23:03 - 00054216 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2014-05-22 00:45 - 2014-03-04 15:06 - 06714312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2014-05-22 00:45 - 2014-03-04 15:06 - 03497816 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 03649185 _____ () C:\Windows\system32\nvcoproc.bin 2014-05-22 00:45 - 2014-03-04 15:05 - 02558808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 00922968 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2014-05-22 00:45 - 2014-03-04 15:05 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2014-05-22 00:44 - 2014-05-25 19:31 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-05-22 00:44 - 2014-05-25 14:31 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-05-22 00:44 - 2014-05-24 14:26 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-22 00:44 - 2014-05-24 14:26 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Deployment 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Program Files (x86)\Google 2014-05-22 00:44 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Apps\2.0 2014-05-22 00:41 - 2014-05-25 11:31 - 00000000 __RDO () C:\Users\Sebastian\OneDrive 2014-05-22 00:41 - 2014-04-19 10:01 - 00002143 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk 2014-05-22 00:40 - 2014-05-22 00:41 - 00003560 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-05-22 00:40 - 2014-05-22 00:40 - 00002583 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log 2014-05-22 00:40 - 2014-05-22 00:40 - 00001450 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Adobe 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\VirtualStore 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\PackageStaging 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Packages 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Program Files\WinRAR 2014-05-22 00:40 - 2014-05-21 20:32 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-22 00:40 - 2014-05-21 20:32 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-05-22 00:39 - 2014-05-24 19:35 - 00000000 ____D () C:\Users\Sebastian 2014-05-22 00:39 - 2014-05-22 00:39 - 00000020 ___SH () C:\Users\Sebastian\ntuser.ini 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Vorlagen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Startmenü 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Netzwerkumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Lokale Einstellungen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Eigene Dateien 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Druckumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Musik 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Bilder 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Verlauf 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Anwendungsdaten 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Anwendungsdaten 2014-05-22 00:39 - 2014-04-19 10:01 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-22 00:39 - 2014-03-18 12:31 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-05-22 00:39 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk 2014-05-22 00:39 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk 2014-05-22 00:39 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-05-22 00:39 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-05-22 00:38 - 2014-05-25 14:15 - 02078064 _____ () C:\Windows\WindowsUpdate.log 2014-05-22 00:38 - 2014-05-22 00:38 - 00000000 ____D () C:\Windows\CSC 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-05-22 00:36 - 2014-05-22 00:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2014-05-21 20:47 - 2014-05-21 20:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\2K Sports 2014-05-21 20:42 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NVIDIA 2014-05-21 20:34 - 2014-05-25 12:21 - 00027750 _____ () C:\Windows\DirectX.log 2014-05-21 20:34 - 2014-05-21 20:34 - 00000000 ____D () C:\DirectX 2014-05-21 20:34 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2014-05-21 20:34 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2014-05-21 20:34 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2014-05-21 20:34 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2014-05-21 20:34 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2014-05-21 20:34 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2014-05-21 20:34 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2014-05-21 20:34 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2014-05-21 20:34 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2014-05-21 20:34 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2014-05-21 20:34 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2014-05-21 20:34 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2014-05-21 20:34 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2014-05-21 20:34 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2014-05-21 20:34 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2014-05-21 20:34 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2014-05-21 20:34 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2014-05-21 20:34 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2014-05-21 20:34 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2014-05-21 20:34 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2014-05-21 20:34 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2014-05-21 20:34 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2014-05-21 20:34 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2014-05-21 20:34 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2014-05-21 20:34 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2014-05-21 20:34 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2014-05-21 20:34 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2014-05-21 20:34 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2014-05-21 20:34 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2014-05-21 20:34 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2014-05-21 20:34 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2014-05-21 20:34 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2014-05-21 20:34 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2014-05-21 20:34 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2014-05-21 20:34 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2014-05-21 20:34 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2014-05-21 20:34 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2014-05-21 20:34 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2014-05-21 20:34 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2014-05-21 20:34 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2014-05-21 20:34 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2014-05-21 20:34 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2014-05-21 20:34 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2014-05-21 20:34 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2014-05-21 20:34 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2014-05-21 20:34 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2014-05-21 20:34 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2014-05-21 20:34 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2014-05-21 20:34 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2014-05-21 20:34 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2014-05-21 20:34 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2014-05-21 20:34 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2014-05-21 20:34 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2014-05-21 20:34 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2014-05-21 20:34 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2014-05-21 20:34 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2014-05-21 20:34 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2014-05-21 20:34 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2014-05-21 20:34 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2014-05-21 20:21 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\vlc 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-05-21 20:18 - 2014-05-21 20:18 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-21 20:18 - 2014-05-04 17:12 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-21 20:17 - 2014-05-25 12:08 - 00000000 ____D () C:\Users\Sebastian\Desktop\Spiele 2014-05-21 20:14 - 2014-04-18 16:57 - 00032600 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll 2014-05-21 20:14 - 2014-04-18 16:44 - 01466856 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll 2014-05-21 20:14 - 2014-04-18 15:29 - 01200288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll 2014-05-21 20:14 - 2014-04-18 11:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll 2014-05-21 20:14 - 2014-04-18 11:32 - 13287936 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-05-21 20:14 - 2014-04-18 10:58 - 11792384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2014-05-21 20:14 - 2014-04-18 10:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2014-05-21 20:14 - 2014-04-18 10:21 - 01126912 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll 2014-05-21 20:14 - 2014-04-18 10:09 - 08652800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll 2014-05-21 20:14 - 2014-04-18 09:51 - 00836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll 2014-05-21 20:14 - 2014-04-18 09:49 - 05833216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll 2014-05-21 20:14 - 2014-04-14 11:20 - 00324888 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2014-05-21 20:14 - 2014-04-14 10:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2014-05-21 20:14 - 2014-04-11 06:51 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2014-05-21 20:14 - 2014-04-11 06:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll 2014-05-21 20:14 - 2014-04-11 05:30 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll 2014-05-21 20:14 - 2014-04-09 13:53 - 00337240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2014-05-21 20:14 - 2014-04-09 08:39 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2014-05-21 20:14 - 2014-04-09 07:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2014-05-21 20:14 - 2014-04-09 06:35 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-05-21 20:14 - 2014-04-09 05:33 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2014-05-21 20:14 - 2014-04-08 04:01 - 00589656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2014-05-21 20:14 - 2014-04-06 18:34 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-05-21 20:14 - 2014-04-06 18:34 - 00275800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2014-05-21 20:14 - 2014-04-06 18:32 - 00125496 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2014-05-21 20:14 - 2014-04-06 18:31 - 21268952 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-05-21 20:14 - 2014-04-06 18:30 - 00201920 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll 2014-05-21 20:14 - 2014-04-06 18:24 - 00360792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2014-05-21 20:14 - 2014-04-06 18:20 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 01403856 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 01379064 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00881616 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00765408 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00609448 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00491744 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00467496 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00463256 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00244880 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-05-21 20:14 - 2014-04-06 18:20 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00028408 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2014-05-21 20:14 - 2014-04-06 17:23 - 00098584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll 2014-05-21 20:14 - 2014-04-06 17:22 - 18755672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-05-21 20:14 - 2014-04-06 17:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00707048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00406504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-05-21 20:14 - 2014-04-06 16:10 - 04190720 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-05-21 20:14 - 2014-04-06 14:58 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-05-21 20:14 - 2014-04-06 14:51 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-05-21 20:14 - 2014-04-06 14:33 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe 2014-05-21 20:14 - 2014-04-06 14:24 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-05-21 20:14 - 2014-04-06 14:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2014-05-21 20:14 - 2014-04-06 13:55 - 16872448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-05-21 20:14 - 2014-04-06 13:54 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-05-21 20:14 - 2014-04-06 13:26 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll 2014-05-21 20:14 - 2014-04-06 13:20 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2014-05-21 20:14 - 2014-04-06 13:01 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-05-21 20:14 - 2014-04-06 12:52 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2014-05-21 20:14 - 2014-04-06 12:51 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2014-05-21 20:14 - 2014-04-06 12:37 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2014-05-21 20:14 - 2014-04-06 12:36 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2014-05-21 20:14 - 2014-04-06 12:05 - 01222656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll 2014-05-21 20:14 - 2014-04-06 11:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 02124840 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 00307304 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 00130144 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2014-05-21 20:14 - 2014-04-03 06:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-05-21 20:14 - 2014-04-03 06:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll 2014-05-21 20:14 - 2014-04-03 05:53 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2014-05-21 20:14 - 2014-04-03 04:53 - 04269056 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-05-21 20:14 - 2014-04-03 04:53 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2014-05-21 20:14 - 2014-04-03 04:51 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2014-05-21 20:14 - 2014-04-03 04:23 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-05-21 20:14 - 2014-04-03 04:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-05-21 20:14 - 2014-04-03 04:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll 2014-05-21 20:14 - 2014-04-03 04:22 - 03359744 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-05-21 20:14 - 2014-04-03 04:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll 2014-05-21 20:14 - 2014-04-01 08:23 - 00384856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2014-05-21 20:14 - 2014-03-31 07:42 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-05-21 20:14 - 2014-03-31 07:35 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-05-21 20:14 - 2014-03-31 07:35 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-05-21 20:14 - 2014-03-31 02:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2014-05-21 20:14 - 2014-03-31 02:01 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll 2014-05-21 20:14 - 2014-03-31 01:43 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll 2014-05-21 20:14 - 2014-03-31 00:54 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2014-05-21 20:14 - 2014-03-31 00:49 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2014-05-21 20:14 - 2014-03-31 00:35 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll 2014-05-21 20:14 - 2014-03-31 00:11 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-05-21 20:14 - 2014-03-30 23:47 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-05-21 20:14 - 2014-03-28 17:58 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2014-05-21 20:14 - 2014-03-27 08:16 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2014-05-21 20:14 - 2014-03-27 07:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll 2014-05-21 20:14 - 2014-03-27 06:59 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll 2014-05-21 20:14 - 2014-03-27 06:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll 2014-05-21 20:14 - 2014-03-27 06:19 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll 2014-05-21 20:14 - 2014-03-27 05:46 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2014-05-21 20:14 - 2014-03-27 05:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll 2014-05-21 20:14 - 2014-03-27 05:10 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2014-05-21 20:14 - 2014-03-25 00:58 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-05-21 20:14 - 2014-03-22 11:09 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe 2014-05-21 20:14 - 2014-03-22 10:50 - 00329216 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe 2014-05-21 20:14 - 2014-03-21 06:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll 2014-05-21 20:14 - 2014-03-20 05:48 - 00263424 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2014-05-21 20:14 - 2014-03-20 02:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2014-05-21 20:14 - 2014-03-20 02:44 - 06645248 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-05-21 20:14 - 2014-03-20 01:38 - 00590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll 2014-05-21 20:14 - 2014-03-20 01:33 - 05774848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-05-21 20:14 - 2014-03-19 10:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll 2014-05-21 20:14 - 2014-03-19 10:07 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys 2014-05-21 20:14 - 2014-03-19 09:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-05-21 20:14 - 2014-03-19 09:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll 2014-05-21 20:14 - 2014-03-19 08:36 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2014-05-21 20:14 - 2014-03-19 07:56 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2014-05-21 20:14 - 2014-03-19 07:45 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll 2014-05-21 20:14 - 2014-03-19 07:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2014-05-21 20:14 - 2014-03-19 07:07 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2014-05-21 20:14 - 2014-03-19 07:02 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2014-05-21 20:14 - 2014-03-19 07:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll 2014-05-21 20:14 - 2014-03-19 06:51 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll 2014-05-21 20:14 - 2014-03-19 06:31 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll 2014-05-21 20:14 - 2014-03-19 06:18 - 02688000 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll 2014-05-21 20:14 - 2014-03-18 10:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2014-05-21 20:14 - 2014-03-18 10:18 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb22.sys 2014-05-21 20:14 - 2014-03-18 07:00 - 07173120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2014-05-21 20:14 - 2014-03-18 06:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2014-05-21 20:14 - 2014-03-17 07:09 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-05-21 20:14 - 2014-03-17 06:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2014-05-21 20:14 - 2014-03-17 05:01 - 00486912 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2014-05-21 20:14 - 2014-03-17 04:47 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-05-21 20:14 - 2014-03-17 04:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2014-05-21 20:14 - 2014-03-14 08:26 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll 2014-05-21 20:14 - 2014-03-14 08:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll 2014-05-21 20:14 - 2014-03-06 14:42 - 00310616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2014-05-21 20:14 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2014-05-21 20:13 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-21 20:13 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-21 20:13 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-21 20:13 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-21 20:13 - 2014-04-11 12:03 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2014-05-21 20:13 - 2014-04-11 12:03 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-05-21 20:13 - 2014-04-11 10:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll 2014-05-21 20:13 - 2014-04-11 08:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-05-21 20:13 - 2014-04-11 07:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe 2014-05-21 20:13 - 2014-04-11 07:22 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2014-05-21 20:13 - 2014-04-11 05:54 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2014-05-21 20:13 - 2014-04-11 05:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2014-05-21 20:13 - 2014-04-11 05:05 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-05-21 20:13 - 2014-04-11 05:05 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2014-05-21 20:13 - 2014-04-11 05:02 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-05-21 20:13 - 2014-04-11 05:02 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-05-21 20:13 - 2014-04-11 05:01 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-05-21 20:13 - 2014-04-11 05:00 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2014-05-21 20:13 - 2014-04-11 04:59 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2014-05-21 20:13 - 2014-04-11 04:57 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2014-05-21 20:13 - 2014-04-11 04:56 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2014-05-21 20:13 - 2014-04-11 04:55 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-05-21 20:13 - 2014-04-11 04:53 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-05-21 20:13 - 2014-04-11 04:52 - 03464192 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-05-21 20:13 - 2014-04-11 04:46 - 01705472 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-05-21 20:13 - 2014-04-11 04:36 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll 2014-05-21 20:13 - 2014-04-11 04:34 - 00754688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2014-05-21 20:13 - 2014-04-11 04:29 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2014-05-21 20:13 - 2014-04-11 04:25 - 00921088 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-05-21 20:13 - 2014-04-09 00:46 - 00086688 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll 2014-05-21 20:13 - 2014-04-09 00:46 - 00028320 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll 2014-05-21 20:13 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt_map.dll 2014-05-21 20:13 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt100.dll 2014-05-21 20:13 - 2014-03-24 04:30 - 00257880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2014-05-21 20:13 - 2014-03-24 04:30 - 00123224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2014-05-21 20:13 - 2014-03-24 04:27 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2014-05-21 20:13 - 2014-03-13 09:42 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe 2014-05-21 20:13 - 2014-03-13 08:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe 2014-05-21 20:13 - 2014-02-06 13:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-05-21 20:13 - 2014-02-06 12:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-05-21 20:11 - 2014-05-21 20:11 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Funcom 2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Thunderbird 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Mozilla 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Thunderbird 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2014-05-07 22:35 - 2014-05-07 22:35 - 00590715 _____ () C:\Users\Sebastian\Downloads\Praxis_Check_2011_Ergebnisliste.xlsx 2014-04-30 16:46 - 2014-05-21 20:25 - 00000000 ____D () C:\Users\Sebastian\Documents\The Secret Wotld ==================== One Month Modified Files and Folders ======= 2014-05-25 19:39 - 2014-05-25 19:39 - 00009940 _____ () C:\Users\Sebastian\Downloads\FRST.txt 2014-05-25 19:39 - 2014-05-25 19:39 - 00000000 ____D () C:\Users\Sebastian\Downloads\FRST-OlderVersion 2014-05-25 19:39 - 2014-05-24 19:36 - 00000000 ____D () C:\FRST 2014-05-25 19:39 - 2014-05-24 18:12 - 02066944 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST64.exe 2014-05-25 19:31 - 2014-05-22 00:44 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-05-25 18:45 - 2014-05-22 00:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\TS3Client 2014-05-25 18:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-05-25 15:09 - 2014-05-22 00:46 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1790611383-523093245-3542951716-1001 2014-05-25 14:31 - 2014-05-24 14:26 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-05-25 14:31 - 2014-05-22 00:44 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-05-25 14:15 - 2014-05-22 00:38 - 02078064 _____ () C:\Windows\WindowsUpdate.log 2014-05-25 13:40 - 2014-05-25 13:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Chromium 2014-05-25 13:37 - 2014-05-25 13:37 - 00000000 ____D () C:\Users\Sebastian\Downloads\lnc 2014-05-25 13:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\Documents\Sports Interactive 2014-05-25 12:53 - 2014-05-23 18:00 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\JDownloader v2.0 2014-05-25 12:21 - 2014-05-21 20:34 - 00027750 _____ () C:\Windows\DirectX.log 2014-05-25 12:20 - 2014-05-25 12:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\Microsoft.Windows.8.1.All-in-One.Integrated.Mai.2014.German-rahab 2014-05-25 12:18 - 2014-05-25 12:18 - 00000202 _____ () C:\Users\Sebastian\Desktop\Football Manager 2014.url 2014-05-25 12:14 - 2014-05-25 12:14 - 00000198 _____ () C:\Users\Sebastian\Desktop\Counter-Strike.url 2014-05-25 12:11 - 2014-05-25 12:11 - 00000525 _____ () C:\Users\Public\Desktop\Steam.lnk 2014-05-25 12:11 - 2014-05-25 12:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive 2014-05-25 12:08 - 2014-05-21 20:17 - 00000000 ____D () C:\Users\Sebastian\Desktop\Spiele 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\Users\Public\Desktop\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-05-25 11:56 - 2014-05-25 11:56 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\srpmkhyl.sys 2014-05-25 11:56 - 2014-05-25 11:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Google 2014-05-25 11:49 - 2014-05-23 18:07 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-05-25 11:31 - 2014-05-22 00:41 - 00000000 __RDO () C:\Users\Sebastian\OneDrive 2014-05-24 19:49 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP 2014-05-24 19:48 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-05-24 19:35 - 2014-05-24 19:35 - 00000000 _____ () C:\Users\Sebastian\defogger_reenable 2014-05-24 19:35 - 2014-05-22 00:39 - 00000000 ____D () C:\Users\Sebastian 2014-05-24 18:56 - 2014-05-24 15:04 - 00000000 ____D () C:\Users\Sebastian\Downloads\kis14.0.0.4651 2014-05-24 18:56 - 2014-05-24 15:02 - 00000000 ____D () C:\Users\Sebastian\Downloads\kaspersky 2014-05-24 18:13 - 2014-05-24 18:13 - 00380416 _____ () C:\Users\Sebastian\Downloads\Gmer-19357.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 00050477 _____ () C:\Users\Sebastian\Downloads\Defogger.exe 2014-05-24 18:05 - 2014-05-24 18:05 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-05-24 14:53 - 2014-05-24 14:53 - 00000000 _____ () C:\ProgramData\rebootpending.txt 2014-05-24 14:52 - 2014-05-22 00:47 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-05-24 14:49 - 2014-05-24 14:49 - 01016261 _____ (Thisisu) C:\Users\Sebastian\Downloads\JRT.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 00000000 ____D () C:\Windows\ERUNT 2014-05-24 14:45 - 2014-05-24 14:45 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\vdbxht.sys 2014-05-24 14:41 - 2014-03-18 12:02 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-05-24 14:41 - 2014-03-18 11:24 - 00764340 _____ () C:\Windows\system32\perfh007.dat 2014-05-24 14:41 - 2014-03-18 11:24 - 00159160 _____ () C:\Windows\system32\perfc007.dat 2014-05-24 14:35 - 2014-05-24 14:35 - 00000000 ____D () C:\Program Files (x86)\MSR 2014-05-24 14:34 - 2014-05-24 14:30 - 00000000 ____D () C:\AdwCleaner 2014-05-24 14:34 - 2014-05-22 00:46 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-05-24 14:34 - 2014-03-18 03:49 - 00111370 _____ () C:\Windows\PFRO.log 2014-05-24 14:34 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-05-24 14:32 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\SchCache 2014-05-24 14:26 - 2014-05-24 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-05-24 14:26 - 2014-05-22 00:44 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-24 14:26 - 2014-05-22 00:44 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Deployment 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Program Files (x86)\Google 2014-05-24 14:05 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-05-24 11:47 - 2014-05-24 11:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Macromedia 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieUserList 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieSiteList 2014-05-24 11:45 - 2014-05-24 11:45 - 00003092 _____ () C:\Windows\System32\Tasks\fsupdate 2014-05-24 11:38 - 2014-05-24 11:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW 2014-05-24 04:21 - 2013-08-22 15:25 - 00000194 _____ () C:\Windows\win.ini 2014-05-24 02:43 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache 2014-05-23 18:22 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E13.Der.neue.Vizepraesident.German.BDRip.XviD-GZCrew 2014-05-23 18:22 - 2014-05-21 20:21 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\vlc 2014-05-23 18:21 - 2014-05-23 18:21 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E11.Erloesung.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E12.Der.Wunschkandidat.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E10.Im.freien.Fall.German.BDRip.XviD-GZCrew 2014-05-23 18:17 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E08.Die.gute.alte.Zeit.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E09.Gewissensentscheidung.German.BDRip.XviD-GZCrew 2014-05-23 18:15 - 2014-05-23 18:15 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E07.Neustart.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E05.Die.Spendengala.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E04.Die.Intrige.German.BDRip.XviD-GZCrew 2014-05-23 18:11 - 2014-05-23 18:11 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E06.Der.Streik.German.BDRip.XviD-GZCrew 2014-05-23 18:08 - 2014-05-23 18:08 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E01.Das.Spiel.beginnt.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E03.Der.Wasserturm.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-23 18:06 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E02.Der.Gesetzesentwurf.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:06 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-05-23 18:01 - 2014-05-23 18:01 - 00002215 _____ () C:\Users\Sebastian\Desktop\JDownloader 2.lnk 2014-05-23 18:01 - 2014-05-23 18:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2014-05-23 17:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-05-23 14:12 - 2014-05-22 00:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA Corporation 2014-05-23 14:11 - 2014-05-23 14:11 - 00000000 ____D () C:\Windows\LastGood 2014-05-23 14:11 - 2014-05-22 00:45 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-05-23 14:11 - 2014-05-22 00:45 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-05-23 14:11 - 2013-08-22 16:46 - 00013737 _____ () C:\Windows\setupact.log 2014-05-23 14:10 - 2014-05-22 00:51 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA 2014-05-22 23:56 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\Documents\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Steam 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Bohemia Interactive 2014-05-22 21:47 - 2014-05-22 18:02 - 00000000 ____D () C:\Program Files (x86)\SpeedFan 2014-05-22 20:59 - 2014-05-22 20:59 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\WinRAR 2014-05-22 20:46 - 2014-05-22 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD 2014-05-22 20:46 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Downloaded Installations 2014-05-22 20:45 - 2014-05-22 20:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-05-22 20:43 - 2014-05-22 20:43 - 00000000 ____D () C:\Users\Public\Symantec 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Cyberlink 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\ProgramData\CyberLink 2014-05-22 20:40 - 2014-05-22 20:40 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\FNET 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files\ASRock 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files (x86)\XFastUSB 2014-05-22 20:40 - 2014-05-22 20:31 - 00001246 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk 2014-05-22 20:40 - 2014-05-22 20:31 - 00000003 _____ () C:\Users\Sebastian\AppData\Local\user_data.ini 2014-05-22 20:39 - 2014-05-22 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility 2014-05-22 20:39 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files\ASRock Utility 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Windows\LastGood.Tmp 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Program Files (x86)\Etron Technology 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files\Realtek 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-05-22 20:33 - 2013-08-22 16:44 - 00336024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-05-22 20:32 - 2014-05-22 20:32 - 00000000 ____D () C:\Program Files\ATI 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\cFos 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-05-22 20:30 - 2014-05-22 20:30 - 00000000 ____D () C:\ProgramData\cFos 2014-05-22 18:02 - 2014-05-22 18:02 - 00001019 _____ () C:\Users\Sebastian\Desktop\SpeedFan.lnk 2014-05-22 18:02 - 2014-05-22 18:02 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 01:35 - 2013-08-22 17:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template 2014-05-22 00:51 - 2014-05-22 00:45 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-05-22 00:51 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore 2014-05-22 00:50 - 2014-05-22 00:50 - 00000885 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-05-22 00:49 - 2014-05-22 00:49 - 00000979 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-05-22 00:48 - 2014-05-22 00:48 - 00002110 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\ProgramData\Mozilla 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-05-22 00:47 - 2014-05-22 00:47 - 00000000 ____D () C:\NVIDIA 2014-05-22 00:45 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help 2014-05-22 00:44 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Apps\2.0 2014-05-22 00:41 - 2014-05-22 00:40 - 00003560 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-05-22 00:40 - 2014-05-22 01:35 - 00000000 ____D () C:\Windows\Panther 2014-05-22 00:40 - 2014-05-22 00:40 - 00002583 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log 2014-05-22 00:40 - 2014-05-22 00:40 - 00001450 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Adobe 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\VirtualStore 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\PackageStaging 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Packages 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Program Files\WinRAR 2014-05-22 00:40 - 2014-04-19 10:01 - 00000000 ___RD () C:\Windows\BrowserChoice 2014-05-22 00:39 - 2014-05-22 00:39 - 00000020 ___SH () C:\Users\Sebastian\ntuser.ini 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Vorlagen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Startmenü 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Netzwerkumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Lokale Einstellungen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Eigene Dateien 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Druckumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Musik 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Bilder 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Verlauf 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Anwendungsdaten 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Anwendungsdaten 2014-05-22 00:38 - 2014-05-22 00:38 - 00000000 ____D () C:\Windows\CSC 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-05-22 00:37 - 2013-08-22 17:37 - 00002664 _____ () C:\Windows\DtcInstall.log 2014-05-22 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\Recovery 2014-05-22 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT 2014-05-22 00:37 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default 2014-05-22 00:36 - 2014-05-22 00:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2014-05-21 20:47 - 2014-05-21 20:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\2K Sports 2014-05-21 20:46 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-05-21 20:42 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NVIDIA 2014-05-21 20:36 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-05-21 20:34 - 2014-05-21 20:34 - 00000000 ____D () C:\DirectX 2014-05-21 20:32 - 2014-05-22 00:40 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-21 20:32 - 2014-05-22 00:40 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\WinStore 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-05-21 20:31 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\oobe 2014-05-21 20:25 - 2014-04-30 16:46 - 00000000 ____D () C:\Users\Sebastian\Documents\The Secret Wotld 2014-05-21 20:24 - 2013-08-20 20:27 - 00000000 ____D () C:\Users\Sebastian\Documents\Steuer-Sparbuch 2014-05-21 20:24 - 2013-05-12 21:02 - 00000000 ____D () C:\Users\Sebastian\Documents\Studium 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-05-21 20:18 - 2014-05-21 20:18 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-21 20:11 - 2014-05-21 20:11 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Funcom 2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Thunderbird 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Mozilla 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Thunderbird 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2014-05-21 19:55 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-05-12 07:26 - 2014-05-23 18:06 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-05-12 07:26 - 2014-05-23 18:06 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-05-12 07:25 - 2014-05-23 18:06 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-05-07 22:35 - 2014-05-07 22:35 - 00590715 _____ () C:\Users\Sebastian\Downloads\Praxis_Check_2011_Ergebnisliste.xlsx 2014-05-06 06:40 - 2014-05-21 20:13 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-06 05:25 - 2014-05-21 20:13 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-06 05:00 - 2014-05-21 20:13 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-06 04:10 - 2014-05-21 20:13 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-04 17:12 - 2014-05-21 20:18 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-01 22:30 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-05-01 22:30 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-04-30 20:29 - 2014-05-22 00:51 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-04-30 20:29 - 2014-05-22 00:51 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll Some content of TEMP: ==================== C:\Users\Sebastian\AppData\Local\Temp\proxy_vole3918920829721361988.dll ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe [2014-05-21 20:14] - [2014-03-28 17:58] - 0407016 ____A (Microsoft Corporation) 067CB90C277DB4A737D5DEABA3055972 C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-05-21 20:14] - [2014-03-06 14:42] - 0310616 ____A (Microsoft Corporation) 4BB9BC49DEE1A319EC58274A7BBED663 LastRegBack: 2014-05-22 00:36 ==================== End Of Log ============================ --- --- --- Ok, hier nun die mbam.txt Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 25.05.2014 Suchlauf-Zeit: 19:42:23 Logdatei: MBAM.txt Administrator: Ja Version: 2.00.2.1012 Malware Datenbank: v2014.05.25.04 Rootkit Datenbank: v2014.05.21.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Self-protection: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: Sebastian Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 250266 Verstrichene Zeit: 6 Min, 25 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristics: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 0 (No malicious items detected) Registrierungswerte: 0 (No malicious items detected) Registrierungsdaten: 0 (No malicious items detected) Ordner: 0 (No malicious items detected) Dateien: 3 PUP.Optional.Outbrowse, C:\$Recycle.Bin\S-1-5-21-1790611383-523093245-3542951716-1001\$R0BR8HL.exe, In Quarantäne, [21770b4a3b4052e485abcab4f908a35d], PUP.Optional.Superfish.A, C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, In Quarantäne, [6038da7b3447df577204c7c629d9966a], PUP.Optional.Superfish.A, C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, In Quarantäne, [5b3dada84437e0563244226b6d95cd33], Physische Sektoren: 0 (No malicious items detected) (end) Code:
ATTFilter # AdwCleaner v3.210 - Bericht erstellt am 25/05/2014 um 19:51:47
# Aktualisiert 19/05/2014 von Xplode
# Betriebssystem : Windows 8.1 Enterprise (64 bits)
# Benutzername : Sebastian - SEBASTIAN
# Gestartet von : C:\Users\Sebastian\Downloads\adwcleaner_3.210.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
[!] Ordner Gelöscht : C:\Program Files (x86)\MSR
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17037
-\\ Google Chrome v35.0.1916.114
[ Datei : C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [3505 octets] - [24/05/2014 14:30:30]
AdwCleaner[R1].txt - [1206 octets] - [24/05/2014 14:33:38]
AdwCleaner[R2].txt - [1090 octets] - [25/05/2014 19:51:16]
AdwCleaner[S0].txt - [3260 octets] - [24/05/2014 14:31:08]
AdwCleaner[S1].txt - [1225 octets] - [24/05/2014 14:34:00]
AdwCleaner[S2].txt - [1016 octets] - [25/05/2014 19:51:47]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1076 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 Enterprise x64
Ran by Sebastian on 25.05.2014 at 19:53:51,78
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 25.05.2014 at 19:56:52,53
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
25.05.2014, 19:00
| #8 |
| | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Ich denke mit "frisches" FRST war ein Log nach den o.a. Maßnahmen gemeint oder? dann nun hier FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-05-2014 01 Ran by Sebastian (administrator) on SEBASTIAN on 25-05-2014 19:57:14 Running from C:\Users\Sebastian\Downloads Platform: Windows 8.1 Enterprise (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe (The Privoxy team - www.privoxy.org) C:\Program Files (x86)\MSR\Privoxy\privoxy.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe (FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe () C:\Program Files (x86)\Opera\21.0.1432.67\opera_crashreporter.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] (cFos Software GmbH) HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2014-05-22] (FNet Co., Ltd.) HKU\S-1-5-21-1790611383-523093245-3542951716-1001\...\Run: [ASRockXTU] => [X] ==================== Internet (Whitelisted) ==================== ProxyEnable: Internet Explorer proxy is enabled. ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) Chrome: ======= CHR HomePage: CHR Extension: (Google Docs) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-25] CHR Extension: (Google Drive) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-25] CHR Extension: (YouTube) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-25] CHR Extension: (Google-Suche) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-25] CHR Extension: (Google Wallet) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-25] CHR Extension: (Google Mail) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-25] ==================== Services (Whitelisted) ================= S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-01-08] () R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation) R2 SystemUpdatekb70007; C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe [18944 2014-05-08] () R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [59624 2014-01-08] (Advanced Micro Devices) R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-05-22] (FNet Co., Ltd.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation) S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2014-03-18] (Microsoft Corporation) S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-03-18] (Microsoft Corporation) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-04-19] (Microsoft Corporation) R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-05-25 19:56 - 2014-05-25 19:57 - 00000629 _____ () C:\Users\Sebastian\Desktop\JRT.txt 2014-05-25 19:53 - 2014-05-25 19:53 - 00001156 _____ () C:\Users\Sebastian\Desktop\AdwCleaner[S2].txt 2014-05-25 19:52 - 2014-05-25 19:52 - 00000000 ____D () C:\Program Files (x86)\MSR 2014-05-25 19:50 - 2014-05-25 19:50 - 00001673 _____ () C:\Users\Sebastian\Desktop\MBAM.txt 2014-05-25 19:42 - 2014-05-25 19:42 - 01326389 _____ () C:\Users\Sebastian\Downloads\adwcleaner_3.210.exe 2014-05-25 19:39 - 2014-05-25 19:57 - 00008546 _____ () C:\Users\Sebastian\Downloads\FRST.txt 2014-05-25 19:39 - 2014-05-25 19:39 - 00000000 ____D () C:\Users\Sebastian\Downloads\FRST-OlderVersion 2014-05-25 13:40 - 2014-05-25 13:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Chromium 2014-05-25 13:37 - 2014-05-25 13:37 - 00000000 ____D () C:\Users\Sebastian\Downloads\lnc 2014-05-25 12:18 - 2014-05-25 12:18 - 00000202 _____ () C:\Users\Sebastian\Desktop\Football Manager 2014.url 2014-05-25 12:16 - 2014-05-25 12:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\Microsoft.Windows.8.1.All-in-One.Integrated.Mai.2014.German-rahab 2014-05-25 12:14 - 2014-05-25 12:14 - 00000198 _____ () C:\Users\Sebastian\Desktop\Counter-Strike.url 2014-05-25 12:11 - 2014-05-25 12:11 - 00000525 _____ () C:\Users\Public\Desktop\Steam.lnk 2014-05-25 12:11 - 2014-05-25 12:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2014-05-25 12:09 - 2014-05-25 13:09 - 00000000 ____D () C:\Users\Sebastian\Documents\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\Users\Public\Desktop\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-05-25 11:56 - 2014-05-25 11:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Google 2014-05-24 19:36 - 2014-05-25 19:57 - 00000000 ____D () C:\FRST 2014-05-24 19:35 - 2014-05-24 19:35 - 00000000 _____ () C:\Users\Sebastian\defogger_reenable 2014-05-24 18:13 - 2014-05-24 18:13 - 00380416 _____ () C:\Users\Sebastian\Downloads\Gmer-19357.exe 2014-05-24 18:12 - 2014-05-25 19:39 - 02066944 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST64.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 00050477 _____ () C:\Users\Sebastian\Downloads\Defogger.exe 2014-05-24 18:05 - 2014-05-24 18:05 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-05-24 15:04 - 2014-05-24 18:56 - 00000000 ____D () C:\Users\Sebastian\Downloads\kis14.0.0.4651 2014-05-24 15:04 - 2014-01-19 09:38 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-05-24 15:02 - 2014-05-24 18:56 - 00000000 ____D () C:\Users\Sebastian\Downloads\kaspersky 2014-05-24 14:49 - 2014-05-24 14:49 - 01016261 _____ (Thisisu) C:\Users\Sebastian\Downloads\JRT.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 00000000 ____D () C:\Windows\ERUNT 2014-05-24 14:30 - 2014-05-25 19:52 - 00000000 ____D () C:\AdwCleaner 2014-05-24 14:30 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-05-24 14:26 - 2014-05-25 19:54 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-05-24 14:26 - 2014-05-24 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-05-24 11:47 - 2014-05-24 11:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Macromedia 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieUserList 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieSiteList 2014-05-24 11:45 - 2014-05-24 11:45 - 00003092 _____ () C:\Windows\System32\Tasks\fsupdate 2014-05-24 11:38 - 2014-05-24 11:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW 2014-05-23 18:22 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E13.Der.neue.Vizepraesident.German.BDRip.XviD-GZCrew 2014-05-23 18:21 - 2014-05-23 18:21 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E11.Erloesung.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E12.Der.Wunschkandidat.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E10.Im.freien.Fall.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:17 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E08.Die.gute.alte.Zeit.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E09.Gewissensentscheidung.German.BDRip.XviD-GZCrew 2014-05-23 18:15 - 2014-05-23 18:15 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E07.Neustart.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E05.Die.Spendengala.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E04.Die.Intrige.German.BDRip.XviD-GZCrew 2014-05-23 18:11 - 2014-05-23 18:11 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E06.Der.Streik.German.BDRip.XviD-GZCrew 2014-05-23 18:08 - 2014-05-23 18:08 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E01.Das.Spiel.beginnt.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-25 19:49 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-05-23 18:07 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E03.Der.Wasserturm.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E02.Der.Gesetzesentwurf.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:06 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-05-23 18:06 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-05-23 18:06 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-05-23 18:01 - 2014-05-23 18:01 - 00002215 _____ () C:\Users\Sebastian\Desktop\JDownloader 2.lnk 2014-05-23 18:01 - 2014-05-23 18:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2014-05-23 18:00 - 2014-05-25 12:53 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\JDownloader v2.0 2014-05-23 14:11 - 2014-05-25 19:49 - 00000000 ____D () C:\Windows\LastGood 2014-05-23 14:11 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2014-05-23 14:11 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2014-05-22 23:55 - 2014-05-22 23:56 - 00000000 ____D () C:\Users\Sebastian\Documents\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Steam 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Bohemia Interactive 2014-05-22 20:59 - 2014-05-22 20:59 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\WinRAR 2014-05-22 20:46 - 2014-05-22 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD 2014-05-22 20:43 - 2014-05-22 20:43 - 00000000 ____D () C:\Users\Public\Symantec 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Cyberlink 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\ProgramData\CyberLink 2014-05-22 20:40 - 2014-05-22 20:40 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\FNET 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files\ASRock 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files (x86)\XFastUSB 2014-05-22 20:39 - 2011-05-10 16:28 - 00017192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\AsrAppCharger.sys 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Windows\LastGood.Tmp 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Program Files (x86)\Etron Technology 2014-05-22 20:38 - 2011-09-11 08:41 - 00088832 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronXHCI.sys 2014-05-22 20:37 - 2014-05-22 20:45 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files\Realtek 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-05-22 20:37 - 2012-08-07 12:51 - 04102928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2014-05-22 20:37 - 2012-08-07 09:11 - 00329737 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-05-22 20:37 - 2012-08-06 09:44 - 01561744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2014-05-22 20:37 - 2012-08-06 05:49 - 02743440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2014-05-22 20:37 - 2012-08-03 12:18 - 01706640 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2014-05-22 20:37 - 2012-08-01 12:29 - 00109200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2014-05-22 20:37 - 2012-07-30 18:04 - 00690832 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys 2014-05-22 20:37 - 2012-07-30 18:04 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2014-05-22 20:37 - 2012-07-23 16:02 - 00626304 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll 2014-05-22 20:37 - 2012-07-23 16:02 - 00561792 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll 2014-05-22 20:37 - 2012-07-20 08:41 - 00880784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2014-05-22 20:37 - 2012-07-19 10:52 - 02028920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2014-05-22 20:37 - 2012-07-19 10:51 - 02080120 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2014-05-22 20:37 - 2012-07-19 10:51 - 00834936 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2014-05-22 20:37 - 2012-07-16 08:16 - 03643024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2014-05-22 20:37 - 2012-07-02 09:39 - 01264272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2014-05-22 20:37 - 2012-06-20 11:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-05-22 20:37 - 2012-06-08 10:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2014-05-22 20:37 - 2012-06-08 10:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll 2014-05-22 20:37 - 2012-06-08 10:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll 2014-05-22 20:37 - 2012-04-10 08:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2014-05-22 20:37 - 2012-03-08 05:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2014-05-22 20:37 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2014-05-22 20:37 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2014-05-22 20:37 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2014-05-22 20:37 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2014-05-22 20:37 - 2010-10-15 13:20 - 02261764 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-05-22 20:37 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2014-05-22 20:37 - 2009-11-18 01:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys 2014-05-22 20:32 - 2014-05-22 20:32 - 00000000 ____D () C:\Program Files\ATI 2014-05-22 20:32 - 2012-06-19 00:07 - 00057000 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys 2014-05-22 20:31 - 2014-05-22 20:46 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Downloaded Installations 2014-05-22 20:31 - 2014-05-22 20:40 - 00001246 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk 2014-05-22 20:31 - 2014-05-22 20:40 - 00000003 _____ () C:\Users\Sebastian\AppData\Local\user_data.ini 2014-05-22 20:31 - 2014-05-22 20:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:39 - 00000000 ____D () C:\Program Files\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\cFos 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-05-22 20:31 - 2012-08-09 17:03 - 00034640 _____ (ASRock Inc.) C:\Windows\system32\Drivers\AsrRamDisk.sys 2014-05-22 20:31 - 2011-07-04 15:19 - 01632128 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys 2014-05-22 20:30 - 2014-05-22 20:30 - 00000000 ____D () C:\ProgramData\cFos 2014-05-22 18:02 - 2014-05-22 21:47 - 00000000 ____D () C:\Program Files (x86)\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00001019 _____ () C:\Users\Sebastian\Desktop\SpeedFan.lnk 2014-05-22 18:02 - 2014-05-22 18:02 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 01:35 - 2014-05-22 00:40 - 00000000 ____D () C:\Windows\Panther 2014-05-22 00:52 - 2014-05-25 19:54 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\TS3Client 2014-05-22 00:52 - 2014-05-23 14:12 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA Corporation 2014-05-22 00:51 - 2014-05-23 14:10 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA 2014-05-22 00:51 - 2014-04-30 20:29 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-05-22 00:51 - 2014-04-30 20:29 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2014-05-22 00:50 - 2014-05-22 00:50 - 00000885 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-05-22 00:50 - 2014-05-21 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-05-22 00:50 - 2014-03-04 13:32 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2014-05-22 00:49 - 2014-05-22 00:49 - 00000979 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-05-22 00:48 - 2014-05-22 00:48 - 00002110 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\ProgramData\Mozilla 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-05-22 00:48 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2014-05-22 00:48 - 2013-11-28 15:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2014-05-22 00:48 - 2013-11-28 15:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2014-05-22 00:48 - 2013-11-22 10:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2014-05-22 00:47 - 2014-05-22 00:47 - 00000000 ____D () C:\NVIDIA 2014-05-22 00:46 - 2014-05-25 19:52 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-05-22 00:46 - 2014-05-25 15:09 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1790611383-523093245-3542951716-1001 2014-05-22 00:45 - 2014-05-23 14:11 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-05-22 00:45 - 2014-05-23 14:11 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-05-22 00:45 - 2014-05-22 00:51 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-05-22 00:45 - 2014-03-20 23:03 - 00062408 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2014-05-22 00:45 - 2014-03-20 23:03 - 00054216 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2014-05-22 00:45 - 2014-03-04 15:06 - 06714312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2014-05-22 00:45 - 2014-03-04 15:06 - 03497816 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 03649185 _____ () C:\Windows\system32\nvcoproc.bin 2014-05-22 00:45 - 2014-03-04 15:05 - 02558808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 00922968 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2014-05-22 00:45 - 2014-03-04 15:05 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2014-05-22 00:44 - 2014-05-25 19:53 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-05-22 00:44 - 2014-05-25 19:31 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-05-22 00:44 - 2014-05-24 14:26 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-22 00:44 - 2014-05-24 14:26 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Deployment 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Program Files (x86)\Google 2014-05-22 00:44 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Apps\2.0 2014-05-22 00:41 - 2014-05-25 19:53 - 00000000 __RDO () C:\Users\Sebastian\OneDrive 2014-05-22 00:41 - 2014-04-19 10:01 - 00002143 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk 2014-05-22 00:40 - 2014-05-22 00:41 - 00003560 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-05-22 00:40 - 2014-05-22 00:40 - 00002583 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log 2014-05-22 00:40 - 2014-05-22 00:40 - 00001450 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Adobe 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\VirtualStore 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\PackageStaging 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Packages 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Program Files\WinRAR 2014-05-22 00:40 - 2014-05-21 20:32 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-22 00:40 - 2014-05-21 20:32 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-05-22 00:39 - 2014-05-24 19:35 - 00000000 ____D () C:\Users\Sebastian 2014-05-22 00:39 - 2014-05-22 00:39 - 00000020 ___SH () C:\Users\Sebastian\ntuser.ini 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Vorlagen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Startmenü 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Netzwerkumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Lokale Einstellungen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Eigene Dateien 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Druckumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Musik 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Bilder 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Verlauf 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Anwendungsdaten 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Anwendungsdaten 2014-05-22 00:39 - 2014-04-19 10:01 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-22 00:39 - 2014-03-18 12:31 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-05-22 00:39 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk 2014-05-22 00:39 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk 2014-05-22 00:39 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-05-22 00:39 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-05-22 00:38 - 2014-05-25 14:15 - 02078064 _____ () C:\Windows\WindowsUpdate.log 2014-05-22 00:38 - 2014-05-22 00:38 - 00000000 ____D () C:\Windows\CSC 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-05-22 00:36 - 2014-05-22 00:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2014-05-21 20:47 - 2014-05-21 20:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\2K Sports 2014-05-21 20:42 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NVIDIA 2014-05-21 20:34 - 2014-05-25 12:21 - 00027750 _____ () C:\Windows\DirectX.log 2014-05-21 20:34 - 2014-05-21 20:34 - 00000000 ____D () C:\DirectX 2014-05-21 20:34 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2014-05-21 20:34 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2014-05-21 20:34 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2014-05-21 20:34 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2014-05-21 20:34 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2014-05-21 20:34 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2014-05-21 20:34 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2014-05-21 20:34 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2014-05-21 20:34 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2014-05-21 20:34 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2014-05-21 20:34 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2014-05-21 20:34 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2014-05-21 20:34 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2014-05-21 20:34 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2014-05-21 20:34 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2014-05-21 20:34 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2014-05-21 20:34 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2014-05-21 20:34 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2014-05-21 20:34 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2014-05-21 20:34 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2014-05-21 20:34 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2014-05-21 20:34 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2014-05-21 20:34 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2014-05-21 20:34 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2014-05-21 20:34 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2014-05-21 20:34 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2014-05-21 20:34 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2014-05-21 20:34 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2014-05-21 20:34 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2014-05-21 20:34 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2014-05-21 20:34 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2014-05-21 20:34 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2014-05-21 20:34 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2014-05-21 20:34 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2014-05-21 20:34 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2014-05-21 20:34 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2014-05-21 20:34 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2014-05-21 20:34 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2014-05-21 20:34 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2014-05-21 20:34 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2014-05-21 20:34 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2014-05-21 20:34 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2014-05-21 20:34 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2014-05-21 20:34 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2014-05-21 20:34 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2014-05-21 20:34 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2014-05-21 20:34 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2014-05-21 20:34 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2014-05-21 20:34 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2014-05-21 20:34 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2014-05-21 20:34 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2014-05-21 20:34 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2014-05-21 20:34 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2014-05-21 20:34 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2014-05-21 20:34 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2014-05-21 20:34 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2014-05-21 20:34 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2014-05-21 20:34 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2014-05-21 20:34 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2014-05-21 20:21 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\vlc 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-05-21 20:18 - 2014-05-21 20:18 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-21 20:18 - 2014-05-04 17:12 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-21 20:17 - 2014-05-25 12:08 - 00000000 ____D () C:\Users\Sebastian\Desktop\Spiele 2014-05-21 20:14 - 2014-04-18 16:57 - 00032600 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll 2014-05-21 20:14 - 2014-04-18 16:44 - 01466856 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll 2014-05-21 20:14 - 2014-04-18 15:29 - 01200288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll 2014-05-21 20:14 - 2014-04-18 11:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll 2014-05-21 20:14 - 2014-04-18 11:32 - 13287936 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-05-21 20:14 - 2014-04-18 10:58 - 11792384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2014-05-21 20:14 - 2014-04-18 10:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2014-05-21 20:14 - 2014-04-18 10:21 - 01126912 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll 2014-05-21 20:14 - 2014-04-18 10:09 - 08652800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll 2014-05-21 20:14 - 2014-04-18 09:51 - 00836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll 2014-05-21 20:14 - 2014-04-18 09:49 - 05833216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll 2014-05-21 20:14 - 2014-04-14 11:20 - 00324888 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2014-05-21 20:14 - 2014-04-14 10:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2014-05-21 20:14 - 2014-04-11 06:51 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2014-05-21 20:14 - 2014-04-11 06:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll 2014-05-21 20:14 - 2014-04-11 05:30 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll 2014-05-21 20:14 - 2014-04-09 13:53 - 00337240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2014-05-21 20:14 - 2014-04-09 08:39 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2014-05-21 20:14 - 2014-04-09 07:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2014-05-21 20:14 - 2014-04-09 06:35 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-05-21 20:14 - 2014-04-09 05:33 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2014-05-21 20:14 - 2014-04-08 04:01 - 00589656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2014-05-21 20:14 - 2014-04-06 18:34 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-05-21 20:14 - 2014-04-06 18:34 - 00275800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2014-05-21 20:14 - 2014-04-06 18:32 - 00125496 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2014-05-21 20:14 - 2014-04-06 18:31 - 21268952 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-05-21 20:14 - 2014-04-06 18:30 - 00201920 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll 2014-05-21 20:14 - 2014-04-06 18:24 - 00360792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2014-05-21 20:14 - 2014-04-06 18:20 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 01403856 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 01379064 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00881616 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00765408 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00609448 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00491744 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00467496 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00463256 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00244880 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-05-21 20:14 - 2014-04-06 18:20 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00028408 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2014-05-21 20:14 - 2014-04-06 17:23 - 00098584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll 2014-05-21 20:14 - 2014-04-06 17:22 - 18755672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-05-21 20:14 - 2014-04-06 17:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00707048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00406504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-05-21 20:14 - 2014-04-06 16:10 - 04190720 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-05-21 20:14 - 2014-04-06 14:58 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-05-21 20:14 - 2014-04-06 14:51 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-05-21 20:14 - 2014-04-06 14:33 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe 2014-05-21 20:14 - 2014-04-06 14:24 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-05-21 20:14 - 2014-04-06 14:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2014-05-21 20:14 - 2014-04-06 13:55 - 16872448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-05-21 20:14 - 2014-04-06 13:54 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-05-21 20:14 - 2014-04-06 13:26 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll 2014-05-21 20:14 - 2014-04-06 13:20 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2014-05-21 20:14 - 2014-04-06 13:01 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-05-21 20:14 - 2014-04-06 12:52 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2014-05-21 20:14 - 2014-04-06 12:51 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2014-05-21 20:14 - 2014-04-06 12:37 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2014-05-21 20:14 - 2014-04-06 12:36 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2014-05-21 20:14 - 2014-04-06 12:05 - 01222656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll 2014-05-21 20:14 - 2014-04-06 11:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 02124840 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 00307304 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 00130144 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2014-05-21 20:14 - 2014-04-03 06:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-05-21 20:14 - 2014-04-03 06:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll 2014-05-21 20:14 - 2014-04-03 05:53 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2014-05-21 20:14 - 2014-04-03 04:53 - 04269056 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-05-21 20:14 - 2014-04-03 04:53 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2014-05-21 20:14 - 2014-04-03 04:51 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2014-05-21 20:14 - 2014-04-03 04:23 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-05-21 20:14 - 2014-04-03 04:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-05-21 20:14 - 2014-04-03 04:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll 2014-05-21 20:14 - 2014-04-03 04:22 - 03359744 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-05-21 20:14 - 2014-04-03 04:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll 2014-05-21 20:14 - 2014-04-01 08:23 - 00384856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2014-05-21 20:14 - 2014-03-31 07:42 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-05-21 20:14 - 2014-03-31 07:35 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-05-21 20:14 - 2014-03-31 07:35 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-05-21 20:14 - 2014-03-31 02:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2014-05-21 20:14 - 2014-03-31 02:01 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll 2014-05-21 20:14 - 2014-03-31 01:43 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll 2014-05-21 20:14 - 2014-03-31 00:54 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2014-05-21 20:14 - 2014-03-31 00:49 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2014-05-21 20:14 - 2014-03-31 00:35 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll 2014-05-21 20:14 - 2014-03-31 00:11 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-05-21 20:14 - 2014-03-30 23:47 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-05-21 20:14 - 2014-03-28 17:58 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2014-05-21 20:14 - 2014-03-27 08:16 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2014-05-21 20:14 - 2014-03-27 07:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll 2014-05-21 20:14 - 2014-03-27 06:59 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll 2014-05-21 20:14 - 2014-03-27 06:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll 2014-05-21 20:14 - 2014-03-27 06:19 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll 2014-05-21 20:14 - 2014-03-27 05:46 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2014-05-21 20:14 - 2014-03-27 05:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll 2014-05-21 20:14 - 2014-03-27 05:10 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2014-05-21 20:14 - 2014-03-25 00:58 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-05-21 20:14 - 2014-03-22 11:09 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe 2014-05-21 20:14 - 2014-03-22 10:50 - 00329216 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe 2014-05-21 20:14 - 2014-03-21 06:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll 2014-05-21 20:14 - 2014-03-20 05:48 - 00263424 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2014-05-21 20:14 - 2014-03-20 02:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2014-05-21 20:14 - 2014-03-20 02:44 - 06645248 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-05-21 20:14 - 2014-03-20 01:38 - 00590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll 2014-05-21 20:14 - 2014-03-20 01:33 - 05774848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-05-21 20:14 - 2014-03-19 10:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll 2014-05-21 20:14 - 2014-03-19 10:07 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys 2014-05-21 20:14 - 2014-03-19 09:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-05-21 20:14 - 2014-03-19 09:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll 2014-05-21 20:14 - 2014-03-19 08:36 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2014-05-21 20:14 - 2014-03-19 07:56 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2014-05-21 20:14 - 2014-03-19 07:45 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll 2014-05-21 20:14 - 2014-03-19 07:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2014-05-21 20:14 - 2014-03-19 07:07 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2014-05-21 20:14 - 2014-03-19 07:02 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2014-05-21 20:14 - 2014-03-19 07:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll 2014-05-21 20:14 - 2014-03-19 06:51 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll 2014-05-21 20:14 - 2014-03-19 06:31 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll 2014-05-21 20:14 - 2014-03-19 06:18 - 02688000 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll 2014-05-21 20:14 - 2014-03-18 10:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2014-05-21 20:14 - 2014-03-18 10:18 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb22.sys 2014-05-21 20:14 - 2014-03-18 07:00 - 07173120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2014-05-21 20:14 - 2014-03-18 06:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2014-05-21 20:14 - 2014-03-17 07:09 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-05-21 20:14 - 2014-03-17 06:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2014-05-21 20:14 - 2014-03-17 05:01 - 00486912 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2014-05-21 20:14 - 2014-03-17 04:47 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-05-21 20:14 - 2014-03-17 04:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2014-05-21 20:14 - 2014-03-14 08:26 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll 2014-05-21 20:14 - 2014-03-14 08:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll 2014-05-21 20:14 - 2014-03-06 14:42 - 00310616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2014-05-21 20:14 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2014-05-21 20:13 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-21 20:13 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-21 20:13 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-21 20:13 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-21 20:13 - 2014-04-11 12:03 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2014-05-21 20:13 - 2014-04-11 12:03 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-05-21 20:13 - 2014-04-11 10:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll 2014-05-21 20:13 - 2014-04-11 08:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-05-21 20:13 - 2014-04-11 07:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe 2014-05-21 20:13 - 2014-04-11 07:22 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2014-05-21 20:13 - 2014-04-11 05:54 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2014-05-21 20:13 - 2014-04-11 05:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2014-05-21 20:13 - 2014-04-11 05:05 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-05-21 20:13 - 2014-04-11 05:05 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2014-05-21 20:13 - 2014-04-11 05:02 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-05-21 20:13 - 2014-04-11 05:02 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-05-21 20:13 - 2014-04-11 05:01 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-05-21 20:13 - 2014-04-11 05:00 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2014-05-21 20:13 - 2014-04-11 04:59 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2014-05-21 20:13 - 2014-04-11 04:57 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2014-05-21 20:13 - 2014-04-11 04:56 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2014-05-21 20:13 - 2014-04-11 04:55 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-05-21 20:13 - 2014-04-11 04:53 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-05-21 20:13 - 2014-04-11 04:52 - 03464192 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-05-21 20:13 - 2014-04-11 04:46 - 01705472 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-05-21 20:13 - 2014-04-11 04:36 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll 2014-05-21 20:13 - 2014-04-11 04:34 - 00754688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2014-05-21 20:13 - 2014-04-11 04:29 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2014-05-21 20:13 - 2014-04-11 04:25 - 00921088 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-05-21 20:13 - 2014-04-09 00:46 - 00086688 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll 2014-05-21 20:13 - 2014-04-09 00:46 - 00028320 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll 2014-05-21 20:13 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt_map.dll 2014-05-21 20:13 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt100.dll 2014-05-21 20:13 - 2014-03-24 04:30 - 00257880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2014-05-21 20:13 - 2014-03-24 04:30 - 00123224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2014-05-21 20:13 - 2014-03-24 04:27 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2014-05-21 20:13 - 2014-03-13 09:42 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe 2014-05-21 20:13 - 2014-03-13 08:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe 2014-05-21 20:13 - 2014-02-06 13:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-05-21 20:13 - 2014-02-06 12:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-05-21 20:11 - 2014-05-21 20:11 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Funcom 2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Thunderbird 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Mozilla 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Thunderbird 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2014-05-07 22:35 - 2014-05-07 22:35 - 00590715 _____ () C:\Users\Sebastian\Downloads\Praxis_Check_2011_Ergebnisliste.xlsx 2014-04-30 16:46 - 2014-05-21 20:25 - 00000000 ____D () C:\Users\Sebastian\Documents\The Secret Wotld ==================== One Month Modified Files and Folders ======= 2014-05-25 19:57 - 2014-05-25 19:56 - 00000629 _____ () C:\Users\Sebastian\Desktop\JRT.txt 2014-05-25 19:57 - 2014-05-25 19:39 - 00008546 _____ () C:\Users\Sebastian\Downloads\FRST.txt 2014-05-25 19:57 - 2014-05-24 19:36 - 00000000 ____D () C:\FRST 2014-05-25 19:54 - 2014-05-24 14:26 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-05-25 19:54 - 2014-05-22 00:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\TS3Client 2014-05-25 19:53 - 2014-05-25 19:53 - 00001156 _____ () C:\Users\Sebastian\Desktop\AdwCleaner[S2].txt 2014-05-25 19:53 - 2014-05-22 00:44 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-05-25 19:53 - 2014-05-22 00:41 - 00000000 __RDO () C:\Users\Sebastian\OneDrive 2014-05-25 19:52 - 2014-05-25 19:52 - 00000000 ____D () C:\Program Files (x86)\MSR 2014-05-25 19:52 - 2014-05-24 14:30 - 00000000 ____D () C:\AdwCleaner 2014-05-25 19:52 - 2014-05-22 00:46 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-05-25 19:52 - 2014-03-18 03:49 - 00116502 _____ () C:\Windows\PFRO.log 2014-05-25 19:52 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-05-25 19:52 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-05-25 19:50 - 2014-05-25 19:50 - 00001673 _____ () C:\Users\Sebastian\Desktop\MBAM.txt 2014-05-25 19:49 - 2014-05-23 18:07 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-05-25 19:49 - 2014-05-23 14:11 - 00000000 ____D () C:\Windows\LastGood 2014-05-25 19:42 - 2014-05-25 19:42 - 01326389 _____ () C:\Users\Sebastian\Downloads\adwcleaner_3.210.exe 2014-05-25 19:39 - 2014-05-25 19:39 - 00000000 ____D () C:\Users\Sebastian\Downloads\FRST-OlderVersion 2014-05-25 19:39 - 2014-05-24 18:12 - 02066944 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST64.exe 2014-05-25 19:31 - 2014-05-22 00:44 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-05-25 18:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-05-25 15:09 - 2014-05-22 00:46 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1790611383-523093245-3542951716-1001 2014-05-25 14:15 - 2014-05-22 00:38 - 02078064 _____ () C:\Windows\WindowsUpdate.log 2014-05-25 13:40 - 2014-05-25 13:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Chromium 2014-05-25 13:37 - 2014-05-25 13:37 - 00000000 ____D () C:\Users\Sebastian\Downloads\lnc 2014-05-25 13:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\Documents\Sports Interactive 2014-05-25 12:53 - 2014-05-23 18:00 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\JDownloader v2.0 2014-05-25 12:21 - 2014-05-21 20:34 - 00027750 _____ () C:\Windows\DirectX.log 2014-05-25 12:20 - 2014-05-25 12:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\Microsoft.Windows.8.1.All-in-One.Integrated.Mai.2014.German-rahab 2014-05-25 12:18 - 2014-05-25 12:18 - 00000202 _____ () C:\Users\Sebastian\Desktop\Football Manager 2014.url 2014-05-25 12:14 - 2014-05-25 12:14 - 00000198 _____ () C:\Users\Sebastian\Desktop\Counter-Strike.url 2014-05-25 12:11 - 2014-05-25 12:11 - 00000525 _____ () C:\Users\Public\Desktop\Steam.lnk 2014-05-25 12:11 - 2014-05-25 12:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive 2014-05-25 12:08 - 2014-05-21 20:17 - 00000000 ____D () C:\Users\Sebastian\Desktop\Spiele 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\Users\Public\Desktop\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-05-25 11:56 - 2014-05-25 11:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Google 2014-05-24 19:49 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP 2014-05-24 19:48 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-05-24 19:35 - 2014-05-24 19:35 - 00000000 _____ () C:\Users\Sebastian\defogger_reenable 2014-05-24 19:35 - 2014-05-22 00:39 - 00000000 ____D () C:\Users\Sebastian 2014-05-24 18:56 - 2014-05-24 15:04 - 00000000 ____D () C:\Users\Sebastian\Downloads\kis14.0.0.4651 2014-05-24 18:56 - 2014-05-24 15:02 - 00000000 ____D () C:\Users\Sebastian\Downloads\kaspersky 2014-05-24 18:13 - 2014-05-24 18:13 - 00380416 _____ () C:\Users\Sebastian\Downloads\Gmer-19357.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 00050477 _____ () C:\Users\Sebastian\Downloads\Defogger.exe 2014-05-24 18:05 - 2014-05-24 18:05 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-05-24 14:49 - 2014-05-24 14:49 - 01016261 _____ (Thisisu) C:\Users\Sebastian\Downloads\JRT.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 00000000 ____D () C:\Windows\ERUNT 2014-05-24 14:41 - 2014-03-18 12:02 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-05-24 14:41 - 2014-03-18 11:24 - 00764340 _____ () C:\Windows\system32\perfh007.dat 2014-05-24 14:41 - 2014-03-18 11:24 - 00159160 _____ () C:\Windows\system32\perfc007.dat 2014-05-24 14:32 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\SchCache 2014-05-24 14:26 - 2014-05-24 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-05-24 14:26 - 2014-05-22 00:44 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-24 14:26 - 2014-05-22 00:44 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Deployment 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Program Files (x86)\Google 2014-05-24 11:47 - 2014-05-24 11:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Macromedia 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieUserList 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieSiteList 2014-05-24 11:45 - 2014-05-24 11:45 - 00003092 _____ () C:\Windows\System32\Tasks\fsupdate 2014-05-24 11:38 - 2014-05-24 11:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW 2014-05-24 04:21 - 2013-08-22 15:25 - 00000194 _____ () C:\Windows\win.ini 2014-05-24 02:43 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache 2014-05-23 18:22 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E13.Der.neue.Vizepraesident.German.BDRip.XviD-GZCrew 2014-05-23 18:22 - 2014-05-21 20:21 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\vlc 2014-05-23 18:21 - 2014-05-23 18:21 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E11.Erloesung.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E12.Der.Wunschkandidat.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E10.Im.freien.Fall.German.BDRip.XviD-GZCrew 2014-05-23 18:17 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E08.Die.gute.alte.Zeit.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E09.Gewissensentscheidung.German.BDRip.XviD-GZCrew 2014-05-23 18:15 - 2014-05-23 18:15 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E07.Neustart.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E05.Die.Spendengala.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E04.Die.Intrige.German.BDRip.XviD-GZCrew 2014-05-23 18:11 - 2014-05-23 18:11 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E06.Der.Streik.German.BDRip.XviD-GZCrew 2014-05-23 18:08 - 2014-05-23 18:08 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E01.Das.Spiel.beginnt.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E03.Der.Wasserturm.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-23 18:06 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E02.Der.Gesetzesentwurf.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:06 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-05-23 18:01 - 2014-05-23 18:01 - 00002215 _____ () C:\Users\Sebastian\Desktop\JDownloader 2.lnk 2014-05-23 18:01 - 2014-05-23 18:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2014-05-23 17:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-05-23 14:12 - 2014-05-22 00:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA Corporation 2014-05-23 14:11 - 2014-05-22 00:45 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-05-23 14:11 - 2014-05-22 00:45 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-05-23 14:11 - 2013-08-22 16:46 - 00013737 _____ () C:\Windows\setupact.log 2014-05-23 14:10 - 2014-05-22 00:51 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA 2014-05-22 23:56 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\Documents\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Steam 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Bohemia Interactive 2014-05-22 21:47 - 2014-05-22 18:02 - 00000000 ____D () C:\Program Files (x86)\SpeedFan 2014-05-22 20:59 - 2014-05-22 20:59 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\WinRAR 2014-05-22 20:46 - 2014-05-22 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD 2014-05-22 20:46 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Downloaded Installations 2014-05-22 20:45 - 2014-05-22 20:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-05-22 20:43 - 2014-05-22 20:43 - 00000000 ____D () C:\Users\Public\Symantec 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Cyberlink 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\ProgramData\CyberLink 2014-05-22 20:40 - 2014-05-22 20:40 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\FNET 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files\ASRock 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files (x86)\XFastUSB 2014-05-22 20:40 - 2014-05-22 20:31 - 00001246 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk 2014-05-22 20:40 - 2014-05-22 20:31 - 00000003 _____ () C:\Users\Sebastian\AppData\Local\user_data.ini 2014-05-22 20:39 - 2014-05-22 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility 2014-05-22 20:39 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files\ASRock Utility 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Windows\LastGood.Tmp 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Program Files (x86)\Etron Technology 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files\Realtek 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-05-22 20:33 - 2013-08-22 16:44 - 00336024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-05-22 20:32 - 2014-05-22 20:32 - 00000000 ____D () C:\Program Files\ATI 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\cFos 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-05-22 20:30 - 2014-05-22 20:30 - 00000000 ____D () C:\ProgramData\cFos 2014-05-22 18:02 - 2014-05-22 18:02 - 00001019 _____ () C:\Users\Sebastian\Desktop\SpeedFan.lnk 2014-05-22 18:02 - 2014-05-22 18:02 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 01:35 - 2013-08-22 17:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template 2014-05-22 00:51 - 2014-05-22 00:45 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-05-22 00:51 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore 2014-05-22 00:50 - 2014-05-22 00:50 - 00000885 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-05-22 00:49 - 2014-05-22 00:49 - 00000979 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-05-22 00:48 - 2014-05-22 00:48 - 00002110 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\ProgramData\Mozilla 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-05-22 00:47 - 2014-05-22 00:47 - 00000000 ____D () C:\NVIDIA 2014-05-22 00:45 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help 2014-05-22 00:44 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Apps\2.0 2014-05-22 00:41 - 2014-05-22 00:40 - 00003560 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-05-22 00:40 - 2014-05-22 01:35 - 00000000 ____D () C:\Windows\Panther 2014-05-22 00:40 - 2014-05-22 00:40 - 00002583 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log 2014-05-22 00:40 - 2014-05-22 00:40 - 00001450 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Adobe 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\VirtualStore 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\PackageStaging 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Packages 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Program Files\WinRAR 2014-05-22 00:40 - 2014-04-19 10:01 - 00000000 ___RD () C:\Windows\BrowserChoice 2014-05-22 00:39 - 2014-05-22 00:39 - 00000020 ___SH () C:\Users\Sebastian\ntuser.ini 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Vorlagen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Startmenü 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Netzwerkumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Lokale Einstellungen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Eigene Dateien 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Druckumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Musik 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Bilder 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Verlauf 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Anwendungsdaten 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Anwendungsdaten 2014-05-22 00:38 - 2014-05-22 00:38 - 00000000 ____D () C:\Windows\CSC 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-05-22 00:37 - 2013-08-22 17:37 - 00002664 _____ () C:\Windows\DtcInstall.log 2014-05-22 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\Recovery 2014-05-22 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT 2014-05-22 00:37 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default 2014-05-22 00:36 - 2014-05-22 00:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2014-05-21 20:47 - 2014-05-21 20:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\2K Sports 2014-05-21 20:46 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-05-21 20:42 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NVIDIA 2014-05-21 20:36 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-05-21 20:34 - 2014-05-21 20:34 - 00000000 ____D () C:\DirectX 2014-05-21 20:32 - 2014-05-22 00:40 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-21 20:32 - 2014-05-22 00:40 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\WinStore 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-05-21 20:31 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\oobe 2014-05-21 20:25 - 2014-04-30 16:46 - 00000000 ____D () C:\Users\Sebastian\Documents\The Secret Wotld 2014-05-21 20:24 - 2013-08-20 20:27 - 00000000 ____D () C:\Users\Sebastian\Documents\Steuer-Sparbuch 2014-05-21 20:24 - 2013-05-12 21:02 - 00000000 ____D () C:\Users\Sebastian\Documents\Studium 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-05-21 20:18 - 2014-05-21 20:18 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-21 20:11 - 2014-05-21 20:11 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Funcom 2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Thunderbird 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Mozilla 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Thunderbird 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2014-05-21 19:55 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-05-12 07:26 - 2014-05-23 18:06 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-05-12 07:26 - 2014-05-23 18:06 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-05-12 07:25 - 2014-05-23 18:06 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-05-07 22:35 - 2014-05-07 22:35 - 00590715 _____ () C:\Users\Sebastian\Downloads\Praxis_Check_2011_Ergebnisliste.xlsx 2014-05-06 06:40 - 2014-05-21 20:13 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-06 05:25 - 2014-05-21 20:13 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-06 05:00 - 2014-05-21 20:13 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-06 04:10 - 2014-05-21 20:13 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-04 17:12 - 2014-05-21 20:18 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-01 22:30 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-05-01 22:30 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-04-30 20:29 - 2014-05-22 00:51 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-04-30 20:29 - 2014-05-22 00:51 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll Some content of TEMP: ==================== C:\Users\Sebastian\AppData\Local\Temp\proxy_vole3918920829721361988.dll C:\Users\Sebastian\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe [2014-05-21 20:14] - [2014-03-28 17:58] - 0407016 ____A (Microsoft Corporation) 067CB90C277DB4A737D5DEABA3055972 C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-05-21 20:14] - [2014-03-06 14:42] - 0310616 ____A (Microsoft Corporation) 4BB9BC49DEE1A319EC58274A7BBED663 LastRegBack: 2014-05-22 00:36 ==================== End Of Log ============================ |
|
26.05.2014, 12:49
| #9 |
| /// the machine /// TB-Ausbilder | Windows 8.1 64 Bit; unerwünschte Popups im Chrome BrowserESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
26.05.2014, 15:44
| #10 |
| | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Hier die log.txt Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=b697e138c1957944b1770ca10670a98c
# engine=18396
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-05-24 04:57:15
# local_time=2014-05-24 06:57:15 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode=1797 16774142 0 5 14630 1323617 0 0
# compatibility_mode=5893 16776574 100 94 13966 5334156 0 0
# scanned=658755
# found=16
# cleaned=16
# scan_time=3022
sh=C7C0F42A23562AA6DCCD60326FD8CC2AA41B5448 ft=1 fh=c053642cee9f3def vn="Win32/Thinknice.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir"
sh=6043D1ACD51FD373472020FBB748C405AAF22397 ft=1 fh=4c716dbbae6c21b9 vn="Win32/Thinknice.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect32.dll.vir"
sh=9DC13DB9C123270C2356ED410128E11D5ADF7C6E ft=1 fh=023ab782f0a9b07d vn="Win32/Thinknice.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupTab.dll.vir"
sh=31CE21FE36C11E107A6E315EFE1875743809B4CC ft=1 fh=48abcfa6ce4a4014 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\SEBAST~1\AppData\Local\Temp\OCS\ocs_v71b.exe.vir"
sh=51A67C1E4010DAF8AC66DA10AE083E6F759F9C13 ft=1 fh=9d218d08b3d98f83 vn="Variante von Win32/InstallCore.LN evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sebastian\AppData\Local\Microsoft\Windows\INetCache\IE\AIC0XLLW\JDownloader2Setup[1].exe"
sh=51A67C1E4010DAF8AC66DA10AE083E6F759F9C13 ft=1 fh=9d218d08b3d98f83 vn="Variante von Win32/InstallCore.LN evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sebastian\AppData\Local\Temp\JDSetup130453344092845987.exe"
sh=897197EF2EEBB0C548BF58EE45F230CC848F2557 ft=1 fh=10fa1a5ae27351a1 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sebastian\Downloads\AdwCleaner - CHIP-Installer.exe"
sh=59D55643D85497EDA9DA1BE0B05A0E0E8C3EA15B ft=0 fh=0000000000000000 vn="Win32/RiskWare.HackAV.NR Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sebastian\Downloads\kas.rar"
sh=F556FD7A7C8E13C3445CA2078EF14B16682C0320 ft=0 fh=0000000000000000 vn="Win32/RiskWare.HackAV.NR Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sebastian\Downloads\kis14.0.0.4651.rar"
sh=894026A96D33253303392C78317C41877DCF676C ft=1 fh=d2adbc428751fa30 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sebastian\Downloads\Norman Malware Cleaner - CHIP-Installer.exe"
sh=EBDECA3578768B333D60962716D76DEA4AC93457 ft=0 fh=0000000000000000 vn="Win32/RiskWare.HackAV.NR Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sebastian\Downloads\kaspersky\Reset.Trial.2.1.Supports.KAV.KIS.2014.with.Instructions.rar"
sh=63AFB0192F412EF4E05655112C60DB5A5F4C98AE ft=0 fh=0000000000000000 vn="Win32/RiskWare.HackAV.NR Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sebastian\Downloads\kis14.0.0.4651\Kasper14Act.rar"
sh=2A08558E08B08E1908C67921DA973E189957A81D ft=1 fh=7e472336237c038e vn="Variante von Win32/HackTool.Crack.BL potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Arma 3\steam_api.dll"
sh=A32AA942597786B380ABDA361918B5E6BF4F26D1 ft=1 fh=e10233d53431d7f2 vn="Variante von Win32/Packed.VMProtect.AAH Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="F:\FIFA 13\Game\rld.dll"
sh=3BC1350D35966417F9E7C1F3C374F46A249569D2 ft=1 fh=ff060da645b635a4 vn="Win32/Toolbar.Conduit evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\The Secret World\xfire_installer.TheSecretWorld.exe"
sh=0F09FAD95A4098B345D9BCE2CEE36E8C99B2AF38 ft=1 fh=3a4f1d5fdb6ba0d2 vn="Variante von Win32/HackTool.Crack.BQ potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\XCOM - Enemy Unknown\Binaries\Win32\steam_api.dll"
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=b697e138c1957944b1770ca10670a98c
# engine=18417
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-05-26 02:40:51
# local_time=2014-05-26 04:40:51 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode=5893 16776573 100 94 3548 5498772 0 0
# scanned=664554
# found=14
# cleaned=0
# scan_time=3355
sh=2D832ADA2829BA05B45460CAC7AC02E906479018 ft=1 fh=89936f7f2be81fe6 vn="Variante von Win32/SoftPulse.B evtl. unerwünschte Anwendung" ac=I fn="C:\$Recycle.Bin\S-1-5-21-1790611383-523093245-3542951716-1001\$RLH3H58.exe"
sh=E12820C3C449E8DF12132666647822B9FE266BA3 ft=1 fh=661cdf041cef5cb3 vn="MSIL/Adware.Proxomoto.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\MSR\backup\System Update kb70007\Installer.dll.vir"
sh=E99D65BD24FAF328D7314F02B98EE8C3BD793B77 ft=1 fh=8661b13c20727ec0 vn="MSIL/Adware.Proxomoto.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\MSR\backup\System Update kb70007\InstallerLibrary.dll.vir"
sh=B11B91F706EA1AFD3D4D625201192EAB850FD3CE ft=1 fh=04b2478a5da86198 vn="MSIL/Adware.Proxomoto.B Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\MSR\backup\System Update kb70007\InstallFirefoxExtension.dll.vir"
sh=5BD97BEAE0E1E79B233B821DA6813A831B5075FB ft=1 fh=5310de0062903084 vn="MSIL/Adware.Proxomoto.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\MSR\backup\System Update kb70007\NewVersionUploader.exe.vir"
sh=49DEEED4E6B0E6134D47A582E209511FCBFD2B72 ft=1 fh=14e2fb72d7f3d82c vn="MSIL/Adware.Proxomoto.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\MSR\backup\System Update kb70007\WindowsUpdater.exe.vir"
sh=E99D65BD24FAF328D7314F02B98EE8C3BD793B77 ft=1 fh=8661b13c20727ec0 vn="MSIL/Adware.Proxomoto.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\MSR\backup\System Update kb70007\backup\InstallerLibrary.dll.vir"
sh=2D832ADA2829BA05B45460CAC7AC02E906479018 ft=1 fh=89936f7f2be81fe6 vn="Variante von Win32/SoftPulse.B evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000000"
sh=78E9A61EEFA503534C6C915BEE54A9DF0F2D95DD ft=1 fh=c4ceac639ad97a1d vn="Win32/RiskWare.HackAV.NR Anwendung" ac=I fn="C:\Users\Sebastian\Downloads\kaspersky\Reset Trial 2.1 (Supports KAV & KIS 2014) with Instructions\KRT_2.1.exe"
sh=78E9A61EEFA503534C6C915BEE54A9DF0F2D95DD ft=1 fh=c4ceac639ad97a1d vn="Win32/RiskWare.HackAV.NR Anwendung" ac=I fn="C:\Users\Sebastian\Downloads\kis14.0.0.4651\Kasper14Act\KRT_2.1.exe"
sh=ECE633D288A0E81CCB096BB7C019142FAAF45B80 ft=0 fh=0000000000000000 vn="MSIL/Adware.Proxomoto.D Anwendung" ac=I fn="C:\Windows\Installer\2a16d.msi"
sh=E12820C3C449E8DF12132666647822B9FE266BA3 ft=1 fh=661cdf041cef5cb3 vn="MSIL/Adware.Proxomoto.A Anwendung" ac=I fn="C:\Windows\Microsoft\SystemUpdatekb70007\Installer.dll"
sh=E99D65BD24FAF328D7314F02B98EE8C3BD793B77 ft=1 fh=8661b13c20727ec0 vn="MSIL/Adware.Proxomoto.A Anwendung" ac=I fn="C:\Windows\Microsoft\SystemUpdatekb70007\InstallerLibrary.dll"
sh=49DEEED4E6B0E6134D47A582E209511FCBFD2B72 ft=1 fh=14e2fb72d7f3d82c vn="MSIL/Adware.Proxomoto.A Anwendung" ac=I fn="C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe"
Code:
ATTFilter Results of screen317's Security Check version 0.99.83
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Defender
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Mozilla Thunderbird (24.5.0)
Google Chrome 35.0.1916.114
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-05-2014 01 Ran by Sebastian (administrator) on SEBASTIAN on 26-05-2014 16:42:52 Running from C:\Users\Sebastian\Downloads Platform: Windows 8.1 Enterprise (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (The Privoxy team - www.privoxy.org) C:\Program Files (x86)\MSR\Privoxy\privoxy.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe (FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\livecomm.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] (cFos Software GmbH) HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2014-05-22] (FNet Co., Ltd.) HKU\S-1-5-21-1790611383-523093245-3542951716-1001\...\Run: [ASRockXTU] => [X] ==================== Internet (Whitelisted) ==================== ProxyEnable: Internet Explorer proxy is enabled. ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) Chrome: ======= CHR HomePage: CHR Extension: (Google Docs) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-25] CHR Extension: (Google Drive) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-25] CHR Extension: (YouTube) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-25] CHR Extension: (Google-Suche) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-25] CHR Extension: (Google Wallet) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-25] CHR Extension: (Google Mail) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-25] ==================== Services (Whitelisted) ================= S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-01-08] () R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation) R2 SystemUpdatekb70007; C:\Windows\Microsoft\SystemUpdatekb70007\WindowsUpdater.exe [18944 2014-05-08] () R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [59624 2014-01-08] (Advanced Micro Devices) R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-05-22] (FNet Co., Ltd.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation) S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2014-03-18] (Microsoft Corporation) S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-03-18] (Microsoft Corporation) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-04-19] (Microsoft Corporation) S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-05-26 16:42 - 2014-05-26 16:42 - 00000701 _____ () C:\Users\Sebastian\Desktop\checkup.txt 2014-05-26 15:43 - 2014-05-26 15:43 - 02347384 _____ (ESET) C:\Users\Sebastian\Downloads\esetsmartinstaller_deu.exe 2014-05-26 15:43 - 2014-05-26 15:43 - 00854367 _____ () C:\Users\Sebastian\Downloads\SecurityCheck.exe 2014-05-25 19:52 - 2014-05-25 19:52 - 00000000 ____D () C:\Program Files (x86)\MSR 2014-05-25 19:42 - 2014-05-25 19:42 - 01326389 _____ () C:\Users\Sebastian\Downloads\adwcleaner_3.210.exe 2014-05-25 19:39 - 2014-05-26 16:42 - 00008259 _____ () C:\Users\Sebastian\Downloads\FRST.txt 2014-05-25 19:39 - 2014-05-25 19:39 - 00000000 ____D () C:\Users\Sebastian\Downloads\FRST-OlderVersion 2014-05-25 13:40 - 2014-05-25 13:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Chromium 2014-05-25 13:37 - 2014-05-25 13:37 - 00000000 ____D () C:\Users\Sebastian\Downloads\lnc 2014-05-25 12:18 - 2014-05-25 12:18 - 00000202 _____ () C:\Users\Sebastian\Desktop\Football Manager 2014.url 2014-05-25 12:16 - 2014-05-25 12:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\Microsoft.Windows.8.1.All-in-One.Integrated.Mai.2014.German-rahab 2014-05-25 12:14 - 2014-05-25 12:14 - 00000198 _____ () C:\Users\Sebastian\Desktop\Counter-Strike.url 2014-05-25 12:11 - 2014-05-25 12:11 - 00000525 _____ () C:\Users\Public\Desktop\Steam.lnk 2014-05-25 12:11 - 2014-05-25 12:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2014-05-25 12:09 - 2014-05-25 13:09 - 00000000 ____D () C:\Users\Sebastian\Documents\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\Users\Public\Desktop\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-05-25 11:56 - 2014-05-25 11:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Google 2014-05-24 19:36 - 2014-05-26 16:42 - 00000000 ____D () C:\FRST 2014-05-24 19:35 - 2014-05-24 19:35 - 00000000 _____ () C:\Users\Sebastian\defogger_reenable 2014-05-24 18:13 - 2014-05-24 18:13 - 00380416 _____ () C:\Users\Sebastian\Downloads\Gmer-19357.exe 2014-05-24 18:12 - 2014-05-25 19:39 - 02066944 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST64.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 00050477 _____ () C:\Users\Sebastian\Downloads\Defogger.exe 2014-05-24 15:04 - 2014-05-24 18:56 - 00000000 ____D () C:\Users\Sebastian\Downloads\kis14.0.0.4651 2014-05-24 15:04 - 2014-01-19 09:38 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-05-24 15:02 - 2014-05-24 18:56 - 00000000 ____D () C:\Users\Sebastian\Downloads\kaspersky 2014-05-24 14:49 - 2014-05-24 14:49 - 01016261 _____ (Thisisu) C:\Users\Sebastian\Downloads\JRT.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 00000000 ____D () C:\Windows\ERUNT 2014-05-24 14:30 - 2014-05-25 19:52 - 00000000 ____D () C:\AdwCleaner 2014-05-24 14:30 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-05-24 14:26 - 2014-05-26 15:41 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-05-24 14:26 - 2014-05-24 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-05-24 11:47 - 2014-05-24 11:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Macromedia 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieUserList 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieSiteList 2014-05-24 11:45 - 2014-05-24 11:45 - 00003092 _____ () C:\Windows\System32\Tasks\fsupdate 2014-05-24 11:38 - 2014-05-24 11:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW 2014-05-23 18:22 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E13.Der.neue.Vizepraesident.German.BDRip.XviD-GZCrew 2014-05-23 18:21 - 2014-05-23 18:21 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E11.Erloesung.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E12.Der.Wunschkandidat.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E10.Im.freien.Fall.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:17 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E08.Die.gute.alte.Zeit.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E09.Gewissensentscheidung.German.BDRip.XviD-GZCrew 2014-05-23 18:15 - 2014-05-23 18:15 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E07.Neustart.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E05.Die.Spendengala.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E04.Die.Intrige.German.BDRip.XviD-GZCrew 2014-05-23 18:11 - 2014-05-23 18:11 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E06.Der.Streik.German.BDRip.XviD-GZCrew 2014-05-23 18:08 - 2014-05-23 18:08 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E01.Das.Spiel.beginnt.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-25 19:49 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-05-23 18:07 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E03.Der.Wasserturm.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E02.Der.Gesetzesentwurf.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:06 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-05-23 18:06 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-05-23 18:06 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-05-23 18:01 - 2014-05-23 18:01 - 00002215 _____ () C:\Users\Sebastian\Desktop\JDownloader 2.lnk 2014-05-23 18:01 - 2014-05-23 18:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2014-05-23 18:00 - 2014-05-25 12:53 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\JDownloader v2.0 2014-05-23 14:11 - 2014-05-25 19:49 - 00000000 ____D () C:\Windows\LastGood 2014-05-23 14:11 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2014-05-23 14:11 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2014-05-22 23:55 - 2014-05-22 23:56 - 00000000 ____D () C:\Users\Sebastian\Documents\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Steam 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Bohemia Interactive 2014-05-22 20:59 - 2014-05-22 20:59 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\WinRAR 2014-05-22 20:46 - 2014-05-22 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD 2014-05-22 20:43 - 2014-05-22 20:43 - 00000000 ____D () C:\Users\Public\Symantec 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Cyberlink 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\ProgramData\CyberLink 2014-05-22 20:40 - 2014-05-22 20:40 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\FNET 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files\ASRock 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files (x86)\XFastUSB 2014-05-22 20:39 - 2011-05-10 16:28 - 00017192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\AsrAppCharger.sys 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Windows\LastGood.Tmp 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Program Files (x86)\Etron Technology 2014-05-22 20:38 - 2011-09-11 08:41 - 00088832 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronXHCI.sys 2014-05-22 20:37 - 2014-05-22 20:45 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files\Realtek 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-05-22 20:37 - 2012-08-07 12:51 - 04102928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2014-05-22 20:37 - 2012-08-07 09:11 - 00329737 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2014-05-22 20:37 - 2012-08-06 09:44 - 01561744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2014-05-22 20:37 - 2012-08-06 05:49 - 02743440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2014-05-22 20:37 - 2012-08-03 12:18 - 01706640 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2014-05-22 20:37 - 2012-08-01 12:29 - 00109200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2014-05-22 20:37 - 2012-07-30 18:04 - 00690832 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys 2014-05-22 20:37 - 2012-07-30 18:04 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2014-05-22 20:37 - 2012-07-23 16:02 - 00626304 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll 2014-05-22 20:37 - 2012-07-23 16:02 - 00561792 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll 2014-05-22 20:37 - 2012-07-20 08:41 - 00880784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2014-05-22 20:37 - 2012-07-19 10:52 - 02028920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2014-05-22 20:37 - 2012-07-19 10:51 - 02080120 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2014-05-22 20:37 - 2012-07-19 10:51 - 00834936 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2014-05-22 20:37 - 2012-07-16 08:16 - 03643024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2014-05-22 20:37 - 2012-07-02 09:39 - 01264272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2014-05-22 20:37 - 2012-06-20 11:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-05-22 20:37 - 2012-06-08 10:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2014-05-22 20:37 - 2012-06-08 10:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll 2014-05-22 20:37 - 2012-06-08 10:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll 2014-05-22 20:37 - 2012-04-10 08:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2014-05-22 20:37 - 2012-03-08 05:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2014-05-22 20:37 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2014-05-22 20:37 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2014-05-22 20:37 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2014-05-22 20:37 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2014-05-22 20:37 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2014-05-22 20:37 - 2010-10-15 13:20 - 02261764 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2014-05-22 20:37 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2014-05-22 20:37 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2014-05-22 20:37 - 2009-11-18 01:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys 2014-05-22 20:32 - 2014-05-22 20:32 - 00000000 ____D () C:\Program Files\ATI 2014-05-22 20:32 - 2012-06-19 00:07 - 00057000 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys 2014-05-22 20:31 - 2014-05-22 20:46 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Downloaded Installations 2014-05-22 20:31 - 2014-05-22 20:40 - 00001246 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk 2014-05-22 20:31 - 2014-05-22 20:40 - 00000003 _____ () C:\Users\Sebastian\AppData\Local\user_data.ini 2014-05-22 20:31 - 2014-05-22 20:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:39 - 00000000 ____D () C:\Program Files\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\cFos 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-05-22 20:31 - 2012-08-09 17:03 - 00034640 _____ (ASRock Inc.) C:\Windows\system32\Drivers\AsrRamDisk.sys 2014-05-22 20:31 - 2011-07-04 15:19 - 01632128 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys 2014-05-22 20:30 - 2014-05-22 20:30 - 00000000 ____D () C:\ProgramData\cFos 2014-05-22 18:02 - 2014-05-22 21:47 - 00000000 ____D () C:\Program Files (x86)\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00001019 _____ () C:\Users\Sebastian\Desktop\SpeedFan.lnk 2014-05-22 18:02 - 2014-05-22 18:02 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 01:35 - 2014-05-22 00:40 - 00000000 ____D () C:\Windows\Panther 2014-05-22 00:52 - 2014-05-25 20:46 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\TS3Client 2014-05-22 00:52 - 2014-05-23 14:12 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA Corporation 2014-05-22 00:51 - 2014-05-23 14:10 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA 2014-05-22 00:51 - 2014-04-30 20:29 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-05-22 00:51 - 2014-04-30 20:29 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2014-05-22 00:51 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2014-05-22 00:50 - 2014-05-22 00:50 - 00000885 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-05-22 00:50 - 2014-05-21 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-05-22 00:50 - 2014-03-04 13:32 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2014-05-22 00:49 - 2014-05-22 00:49 - 00000979 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-05-22 00:48 - 2014-05-22 00:48 - 00002110 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\ProgramData\Mozilla 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-05-22 00:48 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2014-05-22 00:48 - 2013-11-28 15:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2014-05-22 00:48 - 2013-11-28 15:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2014-05-22 00:48 - 2013-11-22 10:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2014-05-22 00:47 - 2014-05-22 00:47 - 00000000 ____D () C:\NVIDIA 2014-05-22 00:46 - 2014-05-26 15:47 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1790611383-523093245-3542951716-1001 2014-05-22 00:46 - 2014-05-25 19:52 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-05-22 00:45 - 2014-05-23 14:11 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-05-22 00:45 - 2014-05-23 14:11 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-05-22 00:45 - 2014-05-22 00:51 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-05-22 00:45 - 2014-03-20 23:03 - 00062408 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2014-05-22 00:45 - 2014-03-20 23:03 - 00054216 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2014-05-22 00:45 - 2014-03-04 15:06 - 06714312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2014-05-22 00:45 - 2014-03-04 15:06 - 03497816 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 03649185 _____ () C:\Windows\system32\nvcoproc.bin 2014-05-22 00:45 - 2014-03-04 15:05 - 02558808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 00922968 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2014-05-22 00:45 - 2014-03-04 15:05 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2014-05-22 00:45 - 2014-03-04 15:05 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2014-05-22 00:44 - 2014-05-26 16:31 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-05-22 00:44 - 2014-05-26 15:41 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-05-22 00:44 - 2014-05-24 14:26 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-22 00:44 - 2014-05-24 14:26 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Deployment 2014-05-22 00:44 - 2014-05-24 14:26 - 00000000 ____D () C:\Program Files (x86)\Google 2014-05-22 00:44 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Apps\2.0 2014-05-22 00:41 - 2014-05-26 15:41 - 00000000 __RDO () C:\Users\Sebastian\OneDrive 2014-05-22 00:41 - 2014-04-19 10:01 - 00002143 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk 2014-05-22 00:40 - 2014-05-22 00:41 - 00003560 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-05-22 00:40 - 2014-05-22 00:40 - 00002583 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log 2014-05-22 00:40 - 2014-05-22 00:40 - 00001450 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Adobe 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\VirtualStore 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\PackageStaging 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Packages 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Program Files\WinRAR 2014-05-22 00:40 - 2014-05-21 20:32 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-22 00:40 - 2014-05-21 20:32 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-05-22 00:39 - 2014-05-24 19:35 - 00000000 ____D () C:\Users\Sebastian 2014-05-22 00:39 - 2014-05-22 00:39 - 00000020 ___SH () C:\Users\Sebastian\ntuser.ini 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Vorlagen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Startmenü 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Netzwerkumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Lokale Einstellungen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Eigene Dateien 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Druckumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Musik 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Bilder 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Verlauf 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Anwendungsdaten 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Anwendungsdaten 2014-05-22 00:39 - 2014-04-19 10:01 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-22 00:39 - 2014-03-18 12:31 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-05-22 00:39 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk 2014-05-22 00:39 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk 2014-05-22 00:39 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-05-22 00:39 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-05-22 00:38 - 2014-05-26 16:01 - 01088473 _____ () C:\Windows\WindowsUpdate.log 2014-05-22 00:38 - 2014-05-22 00:38 - 00000000 ____D () C:\Windows\CSC 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-05-22 00:36 - 2014-05-22 00:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2014-05-21 20:47 - 2014-05-21 20:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\2K Sports 2014-05-21 20:42 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NVIDIA 2014-05-21 20:34 - 2014-05-25 12:21 - 00027750 _____ () C:\Windows\DirectX.log 2014-05-21 20:34 - 2014-05-21 20:34 - 00000000 ____D () C:\DirectX 2014-05-21 20:34 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2014-05-21 20:34 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2014-05-21 20:34 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2014-05-21 20:34 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2014-05-21 20:34 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2014-05-21 20:34 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2014-05-21 20:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2014-05-21 20:34 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2014-05-21 20:34 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-05-21 20:34 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2014-05-21 20:34 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2014-05-21 20:34 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2014-05-21 20:34 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2014-05-21 20:34 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2014-05-21 20:34 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2014-05-21 20:34 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2014-05-21 20:34 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2014-05-21 20:34 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2014-05-21 20:34 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2014-05-21 20:34 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2014-05-21 20:34 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2014-05-21 20:34 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2014-05-21 20:34 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2014-05-21 20:34 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2014-05-21 20:34 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2014-05-21 20:34 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2014-05-21 20:34 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2014-05-21 20:34 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2014-05-21 20:34 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2014-05-21 20:34 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2014-05-21 20:34 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2014-05-21 20:34 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2014-05-21 20:34 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2014-05-21 20:34 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2014-05-21 20:34 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2014-05-21 20:34 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2014-05-21 20:34 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2014-05-21 20:34 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2014-05-21 20:34 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2014-05-21 20:34 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2014-05-21 20:34 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2014-05-21 20:34 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2014-05-21 20:34 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2014-05-21 20:34 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2014-05-21 20:34 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2014-05-21 20:34 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2014-05-21 20:34 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2014-05-21 20:34 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2014-05-21 20:34 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2014-05-21 20:34 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2014-05-21 20:34 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2014-05-21 20:34 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2014-05-21 20:34 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2014-05-21 20:34 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2014-05-21 20:34 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2014-05-21 20:34 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2014-05-21 20:34 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2014-05-21 20:34 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2014-05-21 20:34 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2014-05-21 20:34 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2014-05-21 20:34 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2014-05-21 20:34 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2014-05-21 20:34 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2014-05-21 20:34 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2014-05-21 20:34 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2014-05-21 20:34 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2014-05-21 20:34 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2014-05-21 20:34 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2014-05-21 20:34 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2014-05-21 20:34 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2014-05-21 20:34 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2014-05-21 20:34 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2014-05-21 20:34 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2014-05-21 20:34 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2014-05-21 20:34 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2014-05-21 20:34 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2014-05-21 20:34 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2014-05-21 20:34 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2014-05-21 20:34 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2014-05-21 20:34 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2014-05-21 20:34 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2014-05-21 20:34 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2014-05-21 20:21 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\vlc 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-05-21 20:18 - 2014-05-21 20:18 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-21 20:18 - 2014-05-04 17:12 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-21 20:17 - 2014-05-25 12:08 - 00000000 ____D () C:\Users\Sebastian\Desktop\Spiele 2014-05-21 20:14 - 2014-04-18 16:57 - 00032600 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll 2014-05-21 20:14 - 2014-04-18 16:44 - 01466856 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll 2014-05-21 20:14 - 2014-04-18 15:29 - 01200288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll 2014-05-21 20:14 - 2014-04-18 11:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll 2014-05-21 20:14 - 2014-04-18 11:32 - 13287936 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-05-21 20:14 - 2014-04-18 10:58 - 11792384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2014-05-21 20:14 - 2014-04-18 10:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2014-05-21 20:14 - 2014-04-18 10:21 - 01126912 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll 2014-05-21 20:14 - 2014-04-18 10:09 - 08652800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll 2014-05-21 20:14 - 2014-04-18 09:51 - 00836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll 2014-05-21 20:14 - 2014-04-18 09:49 - 05833216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll 2014-05-21 20:14 - 2014-04-14 11:20 - 00324888 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2014-05-21 20:14 - 2014-04-14 10:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2014-05-21 20:14 - 2014-04-11 06:51 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2014-05-21 20:14 - 2014-04-11 06:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll 2014-05-21 20:14 - 2014-04-11 05:30 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll 2014-05-21 20:14 - 2014-04-09 13:53 - 00337240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2014-05-21 20:14 - 2014-04-09 08:39 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2014-05-21 20:14 - 2014-04-09 07:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2014-05-21 20:14 - 2014-04-09 06:35 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-05-21 20:14 - 2014-04-09 05:33 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2014-05-21 20:14 - 2014-04-08 04:01 - 00589656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2014-05-21 20:14 - 2014-04-06 18:34 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-05-21 20:14 - 2014-04-06 18:34 - 00275800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2014-05-21 20:14 - 2014-04-06 18:32 - 00125496 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2014-05-21 20:14 - 2014-04-06 18:31 - 21268952 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-05-21 20:14 - 2014-04-06 18:30 - 00201920 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll 2014-05-21 20:14 - 2014-04-06 18:24 - 00360792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2014-05-21 20:14 - 2014-04-06 18:20 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 01403856 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 01379064 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00881616 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00765408 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00609448 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00491744 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00467496 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00463256 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00244880 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-05-21 20:14 - 2014-04-06 18:20 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-05-21 20:14 - 2014-04-06 18:20 - 00028408 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2014-05-21 20:14 - 2014-04-06 17:23 - 00098584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll 2014-05-21 20:14 - 2014-04-06 17:22 - 18755672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-05-21 20:14 - 2014-04-06 17:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00707048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00406504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-05-21 20:14 - 2014-04-06 17:16 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-05-21 20:14 - 2014-04-06 16:10 - 04190720 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-05-21 20:14 - 2014-04-06 14:58 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-05-21 20:14 - 2014-04-06 14:51 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-05-21 20:14 - 2014-04-06 14:33 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe 2014-05-21 20:14 - 2014-04-06 14:24 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-05-21 20:14 - 2014-04-06 14:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2014-05-21 20:14 - 2014-04-06 13:55 - 16872448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-05-21 20:14 - 2014-04-06 13:54 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-05-21 20:14 - 2014-04-06 13:26 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll 2014-05-21 20:14 - 2014-04-06 13:20 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2014-05-21 20:14 - 2014-04-06 13:01 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-05-21 20:14 - 2014-04-06 12:52 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2014-05-21 20:14 - 2014-04-06 12:51 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2014-05-21 20:14 - 2014-04-06 12:37 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2014-05-21 20:14 - 2014-04-06 12:36 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2014-05-21 20:14 - 2014-04-06 12:05 - 01222656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll 2014-05-21 20:14 - 2014-04-06 11:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 02124840 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 00307304 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-05-21 20:14 - 2014-04-03 10:12 - 00130144 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2014-05-21 20:14 - 2014-04-03 06:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-05-21 20:14 - 2014-04-03 06:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll 2014-05-21 20:14 - 2014-04-03 05:53 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2014-05-21 20:14 - 2014-04-03 04:53 - 04269056 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-05-21 20:14 - 2014-04-03 04:53 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2014-05-21 20:14 - 2014-04-03 04:51 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2014-05-21 20:14 - 2014-04-03 04:23 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-05-21 20:14 - 2014-04-03 04:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-05-21 20:14 - 2014-04-03 04:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll 2014-05-21 20:14 - 2014-04-03 04:22 - 03359744 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-05-21 20:14 - 2014-04-03 04:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll 2014-05-21 20:14 - 2014-04-01 08:23 - 00384856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2014-05-21 20:14 - 2014-03-31 07:42 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-05-21 20:14 - 2014-03-31 07:35 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-05-21 20:14 - 2014-03-31 07:35 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-05-21 20:14 - 2014-03-31 02:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll 2014-05-21 20:14 - 2014-03-31 02:01 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll 2014-05-21 20:14 - 2014-03-31 01:43 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll 2014-05-21 20:14 - 2014-03-31 00:54 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2014-05-21 20:14 - 2014-03-31 00:49 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2014-05-21 20:14 - 2014-03-31 00:35 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll 2014-05-21 20:14 - 2014-03-31 00:11 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-05-21 20:14 - 2014-03-30 23:47 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-05-21 20:14 - 2014-03-28 17:58 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2014-05-21 20:14 - 2014-03-27 08:16 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2014-05-21 20:14 - 2014-03-27 07:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll 2014-05-21 20:14 - 2014-03-27 06:59 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll 2014-05-21 20:14 - 2014-03-27 06:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll 2014-05-21 20:14 - 2014-03-27 06:19 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll 2014-05-21 20:14 - 2014-03-27 05:46 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2014-05-21 20:14 - 2014-03-27 05:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll 2014-05-21 20:14 - 2014-03-27 05:10 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2014-05-21 20:14 - 2014-03-25 00:58 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-05-21 20:14 - 2014-03-22 11:09 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe 2014-05-21 20:14 - 2014-03-22 10:50 - 00329216 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe 2014-05-21 20:14 - 2014-03-21 06:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll 2014-05-21 20:14 - 2014-03-20 05:48 - 00263424 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2014-05-21 20:14 - 2014-03-20 02:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2014-05-21 20:14 - 2014-03-20 02:44 - 06645248 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-05-21 20:14 - 2014-03-20 01:38 - 00590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll 2014-05-21 20:14 - 2014-03-20 01:33 - 05774848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-05-21 20:14 - 2014-03-19 10:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll 2014-05-21 20:14 - 2014-03-19 10:07 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys 2014-05-21 20:14 - 2014-03-19 09:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-05-21 20:14 - 2014-03-19 09:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll 2014-05-21 20:14 - 2014-03-19 08:36 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2014-05-21 20:14 - 2014-03-19 07:56 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2014-05-21 20:14 - 2014-03-19 07:45 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll 2014-05-21 20:14 - 2014-03-19 07:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2014-05-21 20:14 - 2014-03-19 07:07 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2014-05-21 20:14 - 2014-03-19 07:02 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2014-05-21 20:14 - 2014-03-19 07:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll 2014-05-21 20:14 - 2014-03-19 06:51 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll 2014-05-21 20:14 - 2014-03-19 06:31 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll 2014-05-21 20:14 - 2014-03-19 06:18 - 02688000 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll 2014-05-21 20:14 - 2014-03-18 10:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2014-05-21 20:14 - 2014-03-18 10:18 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb22.sys 2014-05-21 20:14 - 2014-03-18 07:00 - 07173120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2014-05-21 20:14 - 2014-03-18 06:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2014-05-21 20:14 - 2014-03-17 07:09 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-05-21 20:14 - 2014-03-17 06:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2014-05-21 20:14 - 2014-03-17 05:01 - 00486912 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2014-05-21 20:14 - 2014-03-17 04:47 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-05-21 20:14 - 2014-03-17 04:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2014-05-21 20:14 - 2014-03-14 08:26 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll 2014-05-21 20:14 - 2014-03-14 08:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll 2014-05-21 20:14 - 2014-03-06 14:42 - 00310616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2014-05-21 20:14 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2014-05-21 20:13 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-21 20:13 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-21 20:13 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-21 20:13 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-21 20:13 - 2014-04-11 12:03 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2014-05-21 20:13 - 2014-04-11 12:03 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-05-21 20:13 - 2014-04-11 10:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll 2014-05-21 20:13 - 2014-04-11 08:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-05-21 20:13 - 2014-04-11 07:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe 2014-05-21 20:13 - 2014-04-11 07:22 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2014-05-21 20:13 - 2014-04-11 05:54 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2014-05-21 20:13 - 2014-04-11 05:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2014-05-21 20:13 - 2014-04-11 05:05 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-05-21 20:13 - 2014-04-11 05:05 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2014-05-21 20:13 - 2014-04-11 05:02 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-05-21 20:13 - 2014-04-11 05:02 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-05-21 20:13 - 2014-04-11 05:01 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-05-21 20:13 - 2014-04-11 05:00 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2014-05-21 20:13 - 2014-04-11 04:59 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2014-05-21 20:13 - 2014-04-11 04:57 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2014-05-21 20:13 - 2014-04-11 04:56 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2014-05-21 20:13 - 2014-04-11 04:55 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-05-21 20:13 - 2014-04-11 04:53 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-05-21 20:13 - 2014-04-11 04:52 - 03464192 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-05-21 20:13 - 2014-04-11 04:46 - 01705472 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-05-21 20:13 - 2014-04-11 04:36 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll 2014-05-21 20:13 - 2014-04-11 04:34 - 00754688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2014-05-21 20:13 - 2014-04-11 04:29 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2014-05-21 20:13 - 2014-04-11 04:25 - 00921088 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-05-21 20:13 - 2014-04-09 00:46 - 00086688 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll 2014-05-21 20:13 - 2014-04-09 00:46 - 00028320 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll 2014-05-21 20:13 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt_map.dll 2014-05-21 20:13 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt100.dll 2014-05-21 20:13 - 2014-03-24 04:30 - 00257880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2014-05-21 20:13 - 2014-03-24 04:30 - 00123224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2014-05-21 20:13 - 2014-03-24 04:27 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2014-05-21 20:13 - 2014-03-13 09:42 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe 2014-05-21 20:13 - 2014-03-13 08:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe 2014-05-21 20:13 - 2014-02-06 13:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-05-21 20:13 - 2014-02-06 12:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-05-21 20:11 - 2014-05-21 20:11 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Funcom 2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Thunderbird 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Mozilla 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Thunderbird 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2014-05-07 22:35 - 2014-05-07 22:35 - 00590715 _____ () C:\Users\Sebastian\Downloads\Praxis_Check_2011_Ergebnisliste.xlsx 2014-04-30 16:46 - 2014-05-21 20:25 - 00000000 ____D () C:\Users\Sebastian\Documents\The Secret Wotld ==================== One Month Modified Files and Folders ======= 2014-05-26 16:42 - 2014-05-26 16:42 - 00000701 _____ () C:\Users\Sebastian\Desktop\checkup.txt 2014-05-26 16:42 - 2014-05-25 19:39 - 00008259 _____ () C:\Users\Sebastian\Downloads\FRST.txt 2014-05-26 16:42 - 2014-05-24 19:36 - 00000000 ____D () C:\FRST 2014-05-26 16:31 - 2014-05-22 00:44 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-05-26 16:01 - 2014-05-22 00:38 - 01088473 _____ () C:\Windows\WindowsUpdate.log 2014-05-26 16:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-05-26 15:47 - 2014-05-22 00:46 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1790611383-523093245-3542951716-1001 2014-05-26 15:43 - 2014-05-26 15:43 - 02347384 _____ (ESET) C:\Users\Sebastian\Downloads\esetsmartinstaller_deu.exe 2014-05-26 15:43 - 2014-05-26 15:43 - 00854367 _____ () C:\Users\Sebastian\Downloads\SecurityCheck.exe 2014-05-26 15:41 - 2014-05-24 14:26 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-05-26 15:41 - 2014-05-22 00:44 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-05-26 15:41 - 2014-05-22 00:41 - 00000000 __RDO () C:\Users\Sebastian\OneDrive 2014-05-25 20:46 - 2014-05-22 00:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\TS3Client 2014-05-25 19:58 - 2014-03-18 12:02 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-05-25 19:58 - 2014-03-18 11:24 - 00764340 _____ () C:\Windows\system32\perfh007.dat 2014-05-25 19:58 - 2014-03-18 11:24 - 00159160 _____ () C:\Windows\system32\perfc007.dat 2014-05-25 19:52 - 2014-05-25 19:52 - 00000000 ____D () C:\Program Files (x86)\MSR 2014-05-25 19:52 - 2014-05-24 14:30 - 00000000 ____D () C:\AdwCleaner 2014-05-25 19:52 - 2014-05-22 00:46 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-05-25 19:52 - 2014-03-18 03:49 - 00116502 _____ () C:\Windows\PFRO.log 2014-05-25 19:52 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-05-25 19:52 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-05-25 19:49 - 2014-05-23 18:07 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-05-25 19:49 - 2014-05-23 14:11 - 00000000 ____D () C:\Windows\LastGood 2014-05-25 19:42 - 2014-05-25 19:42 - 01326389 _____ () C:\Users\Sebastian\Downloads\adwcleaner_3.210.exe 2014-05-25 19:39 - 2014-05-25 19:39 - 00000000 ____D () C:\Users\Sebastian\Downloads\FRST-OlderVersion 2014-05-25 19:39 - 2014-05-24 18:12 - 02066944 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST64.exe 2014-05-25 13:40 - 2014-05-25 13:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Chromium 2014-05-25 13:37 - 2014-05-25 13:37 - 00000000 ____D () C:\Users\Sebastian\Downloads\lnc 2014-05-25 13:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\Documents\Sports Interactive 2014-05-25 12:53 - 2014-05-23 18:00 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\JDownloader v2.0 2014-05-25 12:21 - 2014-05-21 20:34 - 00027750 _____ () C:\Windows\DirectX.log 2014-05-25 12:20 - 2014-05-25 12:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\Microsoft.Windows.8.1.All-in-One.Integrated.Mai.2014.German-rahab 2014-05-25 12:18 - 2014-05-25 12:18 - 00000202 _____ () C:\Users\Sebastian\Desktop\Football Manager 2014.url 2014-05-25 12:14 - 2014-05-25 12:14 - 00000198 _____ () C:\Users\Sebastian\Desktop\Counter-Strike.url 2014-05-25 12:11 - 2014-05-25 12:11 - 00000525 _____ () C:\Users\Public\Desktop\Steam.lnk 2014-05-25 12:11 - 2014-05-25 12:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Sports Interactive 2014-05-25 12:09 - 2014-05-25 12:09 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive 2014-05-25 12:08 - 2014-05-21 20:17 - 00000000 ____D () C:\Users\Sebastian\Desktop\Spiele 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\Users\Public\Desktop\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Opera Software 2014-05-25 12:01 - 2014-05-25 12:01 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-05-25 11:56 - 2014-05-25 11:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Google 2014-05-24 19:49 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP 2014-05-24 19:48 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-05-24 19:35 - 2014-05-24 19:35 - 00000000 _____ () C:\Users\Sebastian\defogger_reenable 2014-05-24 19:35 - 2014-05-22 00:39 - 00000000 ____D () C:\Users\Sebastian 2014-05-24 18:56 - 2014-05-24 15:04 - 00000000 ____D () C:\Users\Sebastian\Downloads\kis14.0.0.4651 2014-05-24 18:56 - 2014-05-24 15:02 - 00000000 ____D () C:\Users\Sebastian\Downloads\kaspersky 2014-05-24 18:13 - 2014-05-24 18:13 - 00380416 _____ () C:\Users\Sebastian\Downloads\Gmer-19357.exe 2014-05-24 18:12 - 2014-05-24 18:12 - 00050477 _____ () C:\Users\Sebastian\Downloads\Defogger.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 01016261 _____ (Thisisu) C:\Users\Sebastian\Downloads\JRT.exe 2014-05-24 14:49 - 2014-05-24 14:49 - 00000000 ____D () C:\Windows\ERUNT 2014-05-24 14:32 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\SchCache 2014-05-24 14:26 - 2014-05-24 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-05-24 14:26 - 2014-05-22 00:44 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-24 14:26 - 2014-05-22 00:44 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Deployment 2014-05-24 14:26 - 2014-05-22 00:44 - 00000000 ____D () C:\Program Files (x86)\Google 2014-05-24 11:47 - 2014-05-24 11:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Macromedia 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieUserList 2014-05-24 11:46 - 2014-05-24 11:46 - 00000000 __SHD () C:\Users\Sebastian\AppData\Local\EmieSiteList 2014-05-24 11:45 - 2014-05-24 11:45 - 00003092 _____ () C:\Windows\System32\Tasks\fsupdate 2014-05-24 11:38 - 2014-05-24 11:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\WAU.2014.v2.0-DDLW 2014-05-24 04:21 - 2013-08-22 15:25 - 00000194 _____ () C:\Windows\win.ini 2014-05-24 02:43 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache 2014-05-23 18:22 - 2014-05-23 18:22 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E13.Der.neue.Vizepraesident.German.BDRip.XviD-GZCrew 2014-05-23 18:22 - 2014-05-21 20:21 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\vlc 2014-05-23 18:21 - 2014-05-23 18:21 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E11.Erloesung.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E12.Der.Wunschkandidat.German.BDRip.XviD-GZCrew 2014-05-23 18:20 - 2014-05-23 18:20 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E10.Im.freien.Fall.German.BDRip.XviD-GZCrew 2014-05-23 18:17 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E08.Die.gute.alte.Zeit.German.BDRip.XviD-GZCrew 2014-05-23 18:16 - 2014-05-23 18:16 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E09.Gewissensentscheidung.German.BDRip.XviD-GZCrew 2014-05-23 18:15 - 2014-05-23 18:15 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E07.Neustart.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E05.Die.Spendengala.German.BDRip.XviD-GZCrew 2014-05-23 18:12 - 2014-05-23 18:12 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E04.Die.Intrige.German.BDRip.XviD-GZCrew 2014-05-23 18:11 - 2014-05-23 18:11 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E06.Der.Streik.German.BDRip.XviD-GZCrew 2014-05-23 18:08 - 2014-05-23 18:08 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E01.Das.Spiel.beginnt.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-23 18:07 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E03.Der.Wasserturm.German.BDRip.XviD-GZCrew 2014-05-23 18:07 - 2014-05-23 18:06 - 00000000 ____D () C:\Users\Sebastian\Downloads\House.of.Cards.S01E02.Der.Gesetzesentwurf.German.BDRip.XviD-GZCrew 2014-05-23 18:06 - 2014-05-23 18:06 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-05-23 18:06 - 2014-05-23 18:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-05-23 18:01 - 2014-05-23 18:01 - 00002215 _____ () C:\Users\Sebastian\Desktop\JDownloader 2.lnk 2014-05-23 18:01 - 2014-05-23 18:01 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader 2014-05-23 17:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-05-23 14:12 - 2014-05-22 00:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA Corporation 2014-05-23 14:11 - 2014-05-22 00:45 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-05-23 14:11 - 2014-05-22 00:45 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-05-23 14:11 - 2013-08-22 16:46 - 00013737 _____ () C:\Windows\setupact.log 2014-05-23 14:10 - 2014-05-22 00:51 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NVIDIA 2014-05-22 23:56 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\Documents\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Arma 3 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Steam 2014-05-22 23:55 - 2014-05-22 23:55 - 00000000 ____D () C:\ProgramData\Bohemia Interactive 2014-05-22 21:47 - 2014-05-22 18:02 - 00000000 ____D () C:\Program Files (x86)\SpeedFan 2014-05-22 20:59 - 2014-05-22 20:59 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\WinRAR 2014-05-22 20:46 - 2014-05-22 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD 2014-05-22 20:46 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Downloaded Installations 2014-05-22 20:45 - 2014-05-22 20:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-05-22 20:43 - 2014-05-22 20:43 - 00000000 ____D () C:\Users\Public\Symantec 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Cyberlink 2014-05-22 20:42 - 2014-05-22 20:42 - 00000000 ____D () C:\ProgramData\CyberLink 2014-05-22 20:40 - 2014-05-22 20:40 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\ProgramData\FNET 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files\ASRock 2014-05-22 20:40 - 2014-05-22 20:40 - 00000000 ____D () C:\Program Files (x86)\XFastUSB 2014-05-22 20:40 - 2014-05-22 20:31 - 00001246 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk 2014-05-22 20:40 - 2014-05-22 20:31 - 00000003 _____ () C:\Users\Sebastian\AppData\Local\user_data.ini 2014-05-22 20:39 - 2014-05-22 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility 2014-05-22 20:39 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files\ASRock Utility 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Windows\LastGood.Tmp 2014-05-22 20:38 - 2014-05-22 20:38 - 00000000 ____D () C:\Program Files (x86)\Etron Technology 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files\Realtek 2014-05-22 20:37 - 2014-05-22 20:37 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-05-22 20:33 - 2013-08-22 16:44 - 00336024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-05-22 20:32 - 2014-05-22 20:32 - 00000000 ____D () C:\Program Files\ATI 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\cFos 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility 2014-05-22 20:31 - 2014-05-22 20:31 - 00000000 ____D () C:\Program Files (x86)\AMD 2014-05-22 20:30 - 2014-05-22 20:30 - 00000000 ____D () C:\ProgramData\cFos 2014-05-22 18:02 - 2014-05-22 18:02 - 00001019 _____ () C:\Users\Sebastian\Desktop\SpeedFan.lnk 2014-05-22 18:02 - 2014-05-22 18:02 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan 2014-05-22 01:35 - 2013-08-22 17:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template 2014-05-22 00:51 - 2014-05-22 00:45 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-05-22 00:51 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore 2014-05-22 00:50 - 2014-05-22 00:50 - 00000885 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files\CPUID 2014-05-22 00:50 - 2014-05-22 00:50 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies 2014-05-22 00:49 - 2014-05-22 00:49 - 00000979 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2014-05-22 00:49 - 2014-05-22 00:49 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client 2014-05-22 00:48 - 2014-05-22 00:48 - 00002110 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\ProgramData\Mozilla 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-05-22 00:48 - 2014-05-22 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-05-22 00:47 - 2014-05-22 00:47 - 00000000 ____D () C:\NVIDIA 2014-05-22 00:45 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help 2014-05-22 00:44 - 2014-05-22 00:44 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Apps\2.0 2014-05-22 00:41 - 2014-05-22 00:40 - 00003560 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask 2014-05-22 00:40 - 2014-05-22 01:35 - 00000000 ____D () C:\Windows\Panther 2014-05-22 00:40 - 2014-05-22 00:40 - 00002583 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log 2014-05-22 00:40 - 2014-05-22 00:40 - 00001450 _____ () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Adobe 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\VirtualStore 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\PackageStaging 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Packages 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-22 00:40 - 2014-05-22 00:40 - 00000000 ____D () C:\Program Files\WinRAR 2014-05-22 00:40 - 2014-04-19 10:01 - 00000000 ___RD () C:\Windows\BrowserChoice 2014-05-22 00:39 - 2014-05-22 00:39 - 00000020 ___SH () C:\Users\Sebastian\ntuser.ini 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Vorlagen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Startmenü 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Netzwerkumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Lokale Einstellungen 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Eigene Dateien 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Druckumgebung 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Musik 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Documents\Eigene Bilder 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Verlauf 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\AppData\Local\Anwendungsdaten 2014-05-22 00:39 - 2014-05-22 00:39 - 00000000 _SHDL () C:\Users\Sebastian\Anwendungsdaten 2014-05-22 00:38 - 2014-05-22 00:38 - 00000000 ____D () C:\Windows\CSC 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-05-22 00:37 - 2014-05-22 00:37 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-05-22 00:37 - 2013-08-22 17:37 - 00002664 _____ () C:\Windows\DtcInstall.log 2014-05-22 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\Recovery 2014-05-22 00:37 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT 2014-05-22 00:37 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default 2014-05-22 00:36 - 2014-05-22 00:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2014-05-21 20:47 - 2014-05-21 20:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\2K Sports 2014-05-21 20:46 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-05-21 20:42 - 2014-05-21 20:42 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NVIDIA 2014-05-21 20:36 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-05-21 20:34 - 2014-05-21 20:34 - 00000000 ____D () C:\DirectX 2014-05-21 20:32 - 2014-05-22 00:40 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-21 20:32 - 2014-05-22 00:40 - 00000000 ___RD () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\WinStore 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-05-21 20:31 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-05-21 20:31 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\oobe 2014-05-21 20:25 - 2014-04-30 16:46 - 00000000 ____D () C:\Users\Sebastian\Documents\The Secret Wotld 2014-05-21 20:24 - 2013-08-20 20:27 - 00000000 ____D () C:\Users\Sebastian\Documents\Steuer-Sparbuch 2014-05-21 20:24 - 2013-05-12 21:02 - 00000000 ____D () C:\Users\Sebastian\Documents\Studium 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-05-21 20:21 - 2014-05-21 20:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2014-05-21 20:18 - 2014-05-21 20:18 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-21 20:11 - 2014-05-21 20:11 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Funcom 2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Thunderbird 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Mozilla 2014-05-21 19:57 - 2014-05-21 19:57 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\Thunderbird 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\NCSOFT 2014-05-21 19:56 - 2014-05-21 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2014-05-21 19:55 - 2014-05-22 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-05-12 07:26 - 2014-05-23 18:06 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-05-12 07:26 - 2014-05-23 18:06 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-05-12 07:25 - 2014-05-23 18:06 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-05-07 22:35 - 2014-05-07 22:35 - 00590715 _____ () C:\Users\Sebastian\Downloads\Praxis_Check_2011_Ergebnisliste.xlsx 2014-05-06 06:40 - 2014-05-21 20:13 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-06 05:25 - 2014-05-21 20:13 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-06 05:00 - 2014-05-21 20:13 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-06 04:10 - 2014-05-21 20:13 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-04 17:12 - 2014-05-21 20:18 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-01 22:30 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-05-01 22:30 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-04-30 20:29 - 2014-05-22 00:51 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2014-04-30 20:29 - 2014-05-22 00:51 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll Some content of TEMP: ==================== C:\Users\Sebastian\AppData\Local\Temp\proxy_vole3918920829721361988.dll C:\Users\Sebastian\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe [2014-05-21 20:14] - [2014-03-28 17:58] - 0407016 ____A (Microsoft Corporation) 067CB90C277DB4A737D5DEABA3055972 C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-05-21 20:14] - [2014-03-06 14:42] - 0310616 ____A (Microsoft Corporation) 4BB9BC49DEE1A319EC58274A7BBED663 LastRegBack: 2014-05-22 00:36 ==================== End Of Log ============================ --- --- --- Ja die Probleme sind immer noch vorhanden. |
|
27.05.2014, 12:21
| #11 |
| /// the machine /// TB-Ausbilder | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Revo Uninstaller - Download - Filepony damit Chrome deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren. Dann: https://support.google.com/chrome/answer/3296214?hl=de
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.05.2014, 15:22
| #12 |
| | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Hallo, hier die Fixlog.txt Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-05-2014 01
Ran by Sebastian at 2014-05-27 16:22:16 Run:1
Running from C:\Users\Sebastian\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118
*****************
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => Value deleted successfully.
==== End of Fixlog ====
Geändert von jose87 (27.05.2014 um 15:30 Uhr) |
|
28.05.2014, 11:20
| #13 |
| /// the machine /// TB-Ausbilder | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Du hast immer noch Popups in Chrome? und nur in Chrome?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
30.05.2014, 13:05
| #14 |
| | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Ich habe immernoch Popups in Chrome, Opera und Microsoft Internet Explorer. Grüße |
|
31.05.2014, 10:37
| #15 |
| /// the machine /// TB-Ausbilder | Windows 8.1 64 Bit; unerwünschte Popups im Chrome Browser Router auf WErkseinstellungen zurück setzen, FRST öffnen, Haken setzen bei Addition und scannen, poste bitte beide Logfiles.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
Linear-Darstellung
