| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner!Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
26.07.2014, 14:21
| #1 | ||
| |  Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! Hallo liebe Community, erstmal finde ich es Super was ihr für User tut. Jetzt zu meinem Problem: Ich hatte vor einigen Tagen, an dem ich eine Videodatei umformatieren wollte, einnem Befund eines Trojanes, welchen ich mir über das Formatierungsprogramm geladen habe. Ich habe die Anti-Vieren Software Norten. Erstmal wunderte es mich,dass Norten nach dem Download die Software als Vertrauenswürdig eingestuft hat. Innerhalb von wenigen Sekunden, nach der Instalation, kammen diese Meldungen von Norten: Zitat:
Ich hatte aber immer noch den Verdacht das Etwas infiziert ist. Also scannte ich meinen PC mit Trojaner Remover(hxxp://www.chip.de/downloads/Trojan-Remover_13015091.html), Norten, Secruity TaskManager(hxxp://www.chip.de/downloads/Security-Task-Manager_18274692.html), und Mit der Kaspersky Rescue Disk 10. Keins dieser Software erkannte bis jetzt eine Bedrohung. Denoch abe ich den Verdacht, da zum Beispiel der Secruity-Service von Windows deaktiviert war. (habe es jetzt wieder Aktiviert) Was soll ich eurer Meinung nach tun? Ich habe die aktuelste Windows Version und mein Norten ist auch auf dem aktuelsten Stand. Villeicht Könntet ihr mir auch nach Behebung des Problems eine Backup Software empfehlen, da die von Windows (Systemabbild), bei anderen Viren nicht funktionierte. Vielen Dank im Vorraus! fdl, Fabian Ich zeige euch mal die Logfiles vom Farbar Recovery! HAbe ich in einem anderen ähnlichen Beitrag gesehen: Addition.txt: Zitat:
Geändert von fdl (26.07.2014 um 14:22 Uhr) Grund: Ergänzung |
|
26.07.2014, 14:23
| #2 |
| | Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! Und die Frst.txt:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-07-2014
Ran by Fabian (administrator) on FABIAN-PC on 26-07-2014 15:18:11
Running from C:\Users\Fabian\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(VMware, Inc.) D:\Programme\VMWare\vmware-authd.exe
() C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
() C:\Windows\system\3DG4me.exe
(Spotify Ltd) C:\Users\Fabian\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
() D:\Programme\RocketDock\RocketDock.exe
(TeamSpeak Systems GmbH) D:\Programme\Teamspeak 3\ts3client_win64.exe
(Valve Corporation) D:\Programme\Steam\Steam.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(SteelSeries ApS) D:\Programme\SteelSeries Engine\SteelSeriesEngine.exe
() C:\Program Files\Rainmeter\Rainmeter.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.)
HKLM\...\Run: [3DG4me] => C:\Windows\System\3DG4me.exe [151552 2013-05-28] ()
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5263504 2012-08-09] (VIA)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [TrojanScanner] => D:\Programme\Trojan Remover\Trjscan.exe [1666432 2014-07-25] (Simply Super Software)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [40960 2012-07-09] ()
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Spotify Web Helper] => C:\Users\Fabian\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-28] (Spotify Ltd)
HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-06-24] (Raptr, Inc)
HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [RocketDock] => D:\Programme\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [TeamSpeak 3 Client] => D:\Programme\Teamspeak 3\ts3client_win64.exe [10762696 2014-03-12] (TeamSpeak Systems GmbH)
HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Steam] => D:\Programme\Steam\steam.exe [1753280 2014-07-16] (Valve Corporation)
HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [SteelSeries Engine] => D:\Programme\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-06-26] (SteelSeries ApS)
HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\MountPoints2: {1c91139b-ee7c-11e3-b48b-806e6f6e6963} - E:\SETUP.EXE
Startup: C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programme\Java\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Programme\Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\ofcara1s.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - D:\Programme\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - D:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - D:\PROGRA~1\Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - D:\PROGRA~1\Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: NoScript - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\ofcara1s.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-06-08]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\coFFPlgn [2014-07-26]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\IPSFF [2014-07-10]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-06-08] () [File not signed]
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-06-10] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-15] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-03] (VIA Technologies, Inc.)
R2 VMAuthdService; D:\Programme\VMWare\vmware-authd.exe [86744 2014-06-12] (VMware, Inc.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\BASHDefs\20140718.001_e68\BHDrvx64.sys [1530160 2014-07-18] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-08] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142128 2014-07-08] (Symantec Corporation)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-07-26] ()
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\IPSDefs\20140725.001\IDSvia64.sys [525016 2014-07-23] (Symantec Corporation)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [110744 2012-07-19] (Qualcomm Atheros Co., Ltd.)
S3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20140725.008\ENG64.SYS [126040 2014-07-24] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20140725.008\EX64.SYS [2099288 2014-07-24] (Symantec Corporation)
R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [39168 2014-05-27] (SteelSeries Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-13] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-10-30] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-10-30] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-08] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-10-30] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-18] (Symantec Corporation)
R3 USBADVAU; C:\Windows\System32\drivers\cm11264.sys [1308160 2009-11-25] (C-Media Electronics Inc)
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [32472 2014-06-12] (VMware, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-07-26 15:18 - 2014-07-26 15:18 - 00016457 _____ () C:\Users\Fabian\Downloads\FRST.txt
2014-07-26 15:17 - 2014-07-26 15:18 - 00000000 ____D () C:\FRST
2014-07-26 15:16 - 2014-07-26 15:16 - 02093568 _____ (Farbar) C:\Users\Fabian\Downloads\FRST64.exe
2014-07-26 14:47 - 2014-07-26 14:47 - 00002850 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.txt
2014-07-26 14:38 - 2014-07-26 14:38 - 09612114 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.mcf
2014-07-26 14:22 - 2014-07-26 14:22 - 00002634 _____ () C:\Users\Fabian\Downloads\Winmgmt.reg
2014-07-26 11:44 - 2014-07-26 14:27 - 00000000 ____D () C:\ProgramData\SecTaskMan
2014-07-26 11:44 - 2014-07-26 11:44 - 00000766 _____ () C:\Users\Fabian\Desktop\Security Task Manager.lnk
2014-07-26 11:44 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager
2014-07-26 11:43 - 2014-07-26 11:43 - 02365840 _____ () C:\Users\Fabian\Downloads\SecurityTaskManager_Setup-1.8g.exe
2014-07-26 11:36 - 2014-03-06 23:53 - 02925760 _____ (Sysinternals - www.sysinternals.com) C:\Users\Fabian\Desktop\procexp.exe
2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SteelSeries
2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SteelSeries_ApS
2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\ProgramData\SteelSeries
2014-07-25 20:51 - 2014-07-25 20:52 - 53001320 _____ () C:\Users\Fabian\Downloads\SteelSeriesEngine_2.8.0450.exe
2014-07-25 14:49 - 2014-07-25 14:55 - 412172288 _____ () C:\Users\Fabian\Downloads\kav_rescue_10.iso
2014-07-25 14:09 - 2014-07-25 14:09 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Simply Super Software
2014-07-25 14:06 - 2014-07-26 14:27 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\Users\Fabian\Documents\Simply Super Software
2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\Licenses
2014-07-25 14:04 - 2014-07-25 14:04 - 00000782 _____ () C:\Users\Public\Desktop\Trojan Remover.lnk
2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Simply Super Software
2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
2014-07-25 14:02 - 2014-07-25 14:02 - 21407864 _____ (Simply Super Software ) C:\Users\Fabian\Downloads\trjsetup690.exe
2014-07-25 13:52 - 2014-07-25 21:02 - 00000776 _____ () C:\Windows\LkmdfCoInst.log
2014-07-25 09:20 - 2014-07-26 14:24 - 00001898 _____ () C:\Windows\setupact.log
2014-07-25 09:20 - 2014-07-25 09:20 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-24 23:31 - 2014-07-25 00:12 - 1017118720 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-i386.iso
2014-07-24 23:01 - 2014-07-24 23:01 - 00000038 _____ () C:\Users\Fabian\Desktop\Neues Textdokument.txt
2014-07-24 22:57 - 2014-07-24 23:25 - 1010827264 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-amd64.iso
2014-07-24 22:56 - 2014-07-26 14:24 - 00000000 ____D () C:\ProgramData\VMware
2014-07-24 22:56 - 2014-07-25 15:04 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VMware
2014-07-24 22:56 - 2014-07-25 15:03 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\VMware
2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\Program Files\Common Files\VMware
2014-07-24 22:56 - 2014-06-12 18:23 - 00359128 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2014-07-24 22:56 - 2014-06-12 18:23 - 00064728 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2014-07-24 22:56 - 2014-06-12 18:22 - 00931032 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2014-07-24 22:56 - 2014-06-12 18:22 - 00437976 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2014-07-24 22:56 - 2014-06-12 18:22 - 00032472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMparport.sys
2014-07-24 22:56 - 2014-06-12 18:22 - 00031448 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2014-07-24 22:56 - 2014-06-12 18:21 - 00033496 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys
2014-07-24 22:56 - 2014-02-27 18:40 - 00054464 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2014-07-24 22:56 - 2013-10-08 18:21 - 00073296 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2014-07-24 22:56 - 2013-10-08 18:21 - 00067664 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2014-07-24 22:56 - 2013-10-08 18:21 - 00063568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2014-07-24 22:50 - 2014-07-24 22:53 - 98900000 _____ (VMware, Inc.) C:\Users\Fabian\Downloads\VMware-player-6.0.3-1895310.exe
2014-07-24 22:30 - 2014-07-24 22:30 - 03736040 _____ (Piriform Ltd) C:\Users\Fabian\Downloads\ccsetup415_slim.exe
2014-07-24 22:30 - 2014-07-24 22:30 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-24 22:30 - 2014-07-24 22:30 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-07-24 21:50 - 2014-07-24 22:30 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-24 21:50 - 2014-07-24 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-24 21:11 - 2014-07-24 22:27 - 00000000 ____D () C:\NPE
2014-07-24 21:10 - 2014-07-24 22:28 - 00000000 ____D () C:\Users\Fabian\AppData\Local\NPE
2014-07-24 20:37 - 2014-07-24 20:37 - 01243655 _____ () C:\Users\Fabian\Downloads\ProcessExplorer.zip
2014-07-24 20:24 - 2014-07-24 22:06 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-07-24 20:24 - 2014-07-24 20:56 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-07-24 20:24 - 2014-07-24 20:24 - 00000000 ____D () C:\Users\Fabian\AppData\Local\TuneUp Software
2014-07-24 20:22 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\OpenCandy
2014-07-24 20:20 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\DVDVideoSoft
2014-07-24 19:28 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder
2014-07-24 19:28 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Mediatronic
2014-07-24 14:30 - 2014-07-24 14:30 - 00458649 _____ () C:\Users\Fabian\Downloads\imagetomp3_22632.zip
2014-07-24 14:09 - 2014-07-24 14:09 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-07-24 14:01 - 2014-07-24 14:01 - 04264137 _____ () C:\Users\Fabian\Downloads\acfpc71.zip
2014-07-24 13:52 - 2014-07-24 13:52 - 05001832 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part5.rar
2014-07-24 13:48 - 2014-07-24 13:52 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part4.rar
2014-07-24 13:43 - 2014-07-24 13:47 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part3.rar
2014-07-24 13:39 - 2014-07-24 13:42 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part2.rar
2014-07-24 13:34 - 2014-07-24 13:38 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part1.rar
2014-07-24 13:10 - 2014-07-24 13:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CyberGhost
2014-07-24 13:09 - 2014-07-24 22:06 - 00000000 ____D () C:\Program Files\TAP-Windows
2014-07-24 13:09 - 2014-07-24 22:06 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-07-23 22:45 - 2014-07-23 22:46 - 40153667 _____ () C:\Users\Fabian\Downloads\BladeSlapSND-v11.zip
2014-07-23 21:43 - 2014-07-23 21:45 - 44357952 _____ () C:\Users\Fabian\Downloads\Zeppelin_NT_FSX.zip
2014-07-23 21:42 - 2014-07-23 21:49 - 282762749 _____ () C:\Users\Fabian\Downloads\H_S_Design_EC135_X.zip
2014-07-22 16:07 - 2014-07-22 16:08 - 45031920 _____ () C:\Users\Fabian\Downloads\HC075DI_AS332L2_FSX_ACCELERATION.zip
2014-07-21 23:25 - 2014-07-21 23:25 - 00000000 ____D () C:\ProgramData\newrestore
2014-07-21 23:24 - 2014-07-21 23:24 - 00000000 ____D () C:\ProgramData\logsaver
2014-07-21 23:23 - 2014-07-21 23:23 - 00000000 ____D () C:\ProgramData\managecapsule
2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\newbackup
2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\launcher
2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\ibackupvhd
2014-07-21 18:51 - 2014-07-21 18:51 - 00000000 ____D () C:\ProgramData\rmbwizard
2014-07-21 18:49 - 2014-07-21 18:49 - 00000000 ____D () C:\ProgramData\explauncher
2014-07-21 17:53 - 2014-07-21 17:56 - 156439928 _____ () C:\Users\Fabian\Downloads\FSX Concorde 2011 FULL collection.zip
2014-07-21 17:33 - 2014-07-21 17:35 - 18635685 _____ () C:\Users\Fabian\Downloads\edgley_optica_fsx_p3d.zip
2014-07-21 17:26 - 2014-07-21 17:30 - 24181036 _____ () C:\Users\Fabian\Downloads\fsnd_citationx_ultra_package_fsx_p3d.zip
2014-07-21 17:20 - 2014-07-21 17:22 - 12016313 _____ () C:\Users\Fabian\Downloads\bombardier_canadair_cl-215_v3.0x_fsx_p3d.zip
2014-07-21 17:17 - 2014-07-21 17:20 - 22743374 _____ () C:\Users\Fabian\Downloads\icon_aircraft_a5_fsx_sp2_acc_p3d.zip
2014-07-21 17:04 - 2014-07-21 17:16 - 83022300 _____ () C:\Users\Fabian\Downloads\raf_hawker_siddeley_nimrod_package_for_fsx.zip
2014-07-21 16:45 - 2014-07-21 17:04 - 127624268 _____ () C:\Users\Fabian\Downloads\lufthansa_pack_fsx_p3d.zip
2014-07-21 16:43 - 2014-07-21 16:45 - 11509540 _____ () C:\Users\Fabian\Downloads\northrop_b-2a_spirit_alphasim_fsx_p3d.zip
2014-07-21 16:36 - 2014-07-21 17:39 - 00000000 ____D () C:\ProgramData\InstallMate
2014-07-21 16:35 - 2014-07-21 16:41 - 43827756 _____ () C:\Users\Fabian\Downloads\hughes_oh-6_series_fsx.zip
2014-07-21 16:26 - 2014-07-21 16:34 - 52576126 _____ () C:\Users\Fabian\Downloads\enstrom_280fx_fsx.zip
2014-07-21 16:24 - 2014-07-21 16:26 - 15873135 _____ () C:\Users\Fabian\Downloads\ukmil_boeing_chinook_hc2_fsx_p3d.zip
2014-07-21 15:36 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons
2014-07-21 15:31 - 2014-07-21 15:35 - 28344613 _____ () C:\Users\Fabian\Downloads\tom_airbus_a300-beluga_fsx.zip
2014-07-21 12:31 - 2014-07-21 12:31 - 16573534 _____ () C:\Users\Fabian\Downloads\Piaggio P-180 Avanti.zip
2014-07-21 12:29 - 2014-07-21 12:30 - 26477706 _____ () C:\Users\Fabian\Downloads\Antonov AN-124.zip
2014-07-21 12:19 - 2014-07-21 12:19 - 27097674 _____ () C:\Users\Fabian\Downloads\dhc8-q400_x.zip
2014-07-21 12:11 - 2014-07-21 12:11 - 03042305 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Qantas Link.zip
2014-07-21 12:10 - 2014-07-21 12:11 - 21014993 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Basepack.zip
2014-07-20 21:30 - 2014-07-20 21:31 - 00166078 _____ () C:\Users\Fabian\Downloads\FPS_Limiter_0.2.rar
2014-07-20 21:10 - 2014-07-20 21:13 - 174078464 _____ () C:\Users\Fabian\Downloads\fsx_sp2_DEU.msi
2014-07-20 16:02 - 2014-07-20 16:03 - 09006434 _____ () C:\Users\Fabian\Downloads\texture.sunexpress.zip
2014-07-20 12:57 - 2014-07-20 13:11 - 18273643 _____ () C:\Users\Fabian\Downloads\B737-500Lufthansa.zip
2014-07-20 12:56 - 2014-07-20 13:01 - 14699938 _____ () C:\Users\Fabian\Downloads\a321.zip
2014-07-19 14:36 - 2014-07-19 14:37 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Ubisoft Game Launcher
2014-07-19 14:36 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-07-19 14:35 - 2014-07-19 14:36 - 61513304 _____ (Ubisoft) C:\Users\Fabian\Downloads\UplayInstaller.exe
2014-07-19 14:31 - 2014-07-19 15:09 - 113183445 _____ () C:\Users\Fabian\Downloads\dlh737-700-FSX.zip
2014-07-19 14:00 - 2014-07-19 14:00 - 01099187 _____ () C:\Users\Fabian\Downloads\3repaints-SpruceGoose.zip
2014-07-19 13:56 - 2014-07-19 13:59 - 230008963 _____ () C:\Users\Fabian\Downloads\ACJ_AirbusA380MegaPackage.zip
2014-07-19 13:33 - 2014-07-19 13:33 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Game Studios
2014-07-19 13:25 - 2014-07-23 16:29 - 00000000 ____D () C:\Users\Fabian\Documents\Flight Simulator X-Dateien
2014-07-19 12:49 - 2014-07-19 12:49 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-07-18 16:25 - 2014-07-18 16:25 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-07-17 20:03 - 2014-07-17 20:03 - 00004251 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-17 20:03 - 2014-07-17 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-17 19:20 - 2014-07-17 19:20 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-15 20:53 - 2014-07-15 21:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Temporary Projects
2014-07-15 20:52 - 2014-07-15 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Deployment
2014-07-15 20:52 - 2014-07-15 20:52 - 00343896 _____ () C:\Users\Fabian\Downloads\publish.7z
2014-07-15 20:52 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Apps\2.0
2014-07-15 20:38 - 2014-07-15 20:38 - 00008377 _____ () C:\Users\Fabian\AppData\Local\recently-used.xbel
2014-07-15 20:13 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Angebot
2014-07-15 19:35 - 2014-07-15 19:35 - 00000000 ____D () C:\Windows\system32\RsFx
2014-07-15 19:35 - 2009-07-21 02:42 - 00111640 _____ (Microsoft Corporation) C:\Windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2014-07-15 19:35 - 2009-07-21 02:42 - 00079896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2014-07-15 19:35 - 2009-07-21 02:42 - 00078872 _____ (Microsoft Corporation) C:\Windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2014-07-15 19:35 - 2009-07-21 02:42 - 00050200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2014-07-15 19:34 - 2014-07-15 19:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2014-07-15 19:34 - 2014-07-15 19:35 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1033
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1031
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1033
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1031
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\AntMe
2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\AntMe!_Ltd
2014-07-14 22:24 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Website [HTML,CSS]
2014-07-14 22:24 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Taschenrechner 2
2014-07-14 22:23 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\C#
2014-07-14 22:23 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-07-14 22:22 - 2014-07-15 20:51 - 00000000 ____D () C:\Users\Fabian\Documents\Visual Studio 2010
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Windows\symbols
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-07-14 22:13 - 2014-07-14 22:13 - 03277648 _____ (Microsoft Corporation) C:\Users\Fabian\Downloads\vcRaute_web.exe
2014-07-14 22:12 - 2014-07-14 22:12 - 02182278 _____ () C:\Users\Fabian\Downloads\C#.7z
2014-07-14 22:12 - 2014-07-14 22:12 - 01754045 _____ () C:\Users\Fabian\Downloads\Website [HTML,CSS].7z
2014-07-14 22:12 - 2014-07-14 22:12 - 00023090 _____ () C:\Users\Fabian\Downloads\Taschenrechner 2.7z
2014-07-13 14:22 - 2014-07-13 14:22 - 00000678 _____ () C:\Users\Public\Desktop\PDFCreator.lnk
2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\pdfforge
2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-07-13 14:22 - 2014-04-25 17:44 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX
2014-07-13 14:22 - 2014-04-25 17:44 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX
2014-07-13 14:22 - 2014-04-25 17:44 - 00110264 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2014-07-13 14:22 - 2014-04-25 17:44 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL
2014-07-13 14:22 - 1998-07-06 18:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6DE.DLL
2014-07-13 14:22 - 1998-07-06 18:55 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCMCDE.DLL
2014-07-13 14:22 - 1998-07-06 18:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCC2DE.DLL
2014-07-13 14:20 - 2014-07-21 23:20 - 00000000 ____D () C:\Users\Fabian\Desktop\Bewerbungen+Lebensläufe Nach der Schule
2014-07-13 14:20 - 2014-07-13 14:21 - 27843432 _____ (pdfforge ) C:\Users\Fabian\Downloads\PDFCreator-1_7_3_setup.exe
2014-07-10 22:34 - 2014-07-18 17:43 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SpinTires
2014-07-10 22:34 - 2014-06-30 04:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-10 22:34 - 2014-06-30 04:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-10 22:34 - 2014-06-20 22:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-10 22:34 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-10 22:34 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-10 22:34 - 2014-06-19 03:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-10 22:34 - 2014-06-19 03:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-10 22:34 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-10 22:34 - 2014-06-19 02:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-10 22:34 - 2014-06-19 02:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-10 22:34 - 2014-06-19 02:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-10 22:34 - 2014-06-19 02:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-10 22:34 - 2014-06-19 02:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-10 22:34 - 2014-06-19 02:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-10 22:34 - 2014-06-19 02:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-10 22:34 - 2014-06-19 02:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-10 22:34 - 2014-06-19 02:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-10 22:34 - 2014-06-19 02:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-10 22:34 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-10 22:34 - 2014-06-19 02:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-10 22:34 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-10 22:34 - 2014-06-19 01:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-10 22:34 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-10 22:34 - 2014-06-19 01:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-10 22:34 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-10 22:34 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-10 22:34 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-10 22:34 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-10 22:34 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-10 22:34 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-10 22:34 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-10 22:34 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-10 22:34 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-10 22:34 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-10 22:34 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-10 22:34 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-10 22:34 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-10 22:34 - 2014-06-19 01:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-10 22:34 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-10 22:34 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-10 22:34 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-10 22:34 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-10 22:34 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-10 22:34 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-10 22:34 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-10 22:34 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-10 22:34 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-10 22:34 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-10 22:34 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-10 22:34 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-10 22:34 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-10 22:34 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-10 22:34 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-10 22:34 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-10 22:34 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-10 22:34 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-10 22:34 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-10 22:34 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-10 22:34 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-10 22:34 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-10 22:34 - 2014-06-18 03:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-10 22:34 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-10 22:34 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-10 22:34 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-10 22:34 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-07-10 22:34 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-07-10 22:34 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-10 22:34 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-10 22:34 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-10 22:34 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-07-10 22:34 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-10 22:34 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-10 22:34 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-10 22:34 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-07-10 22:34 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-07-10 22:34 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-07-10 22:34 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-07-10 22:34 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-07-10 22:34 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-07-10 22:34 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-07-10 22:34 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-10 22:22 - 2014-07-18 16:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-07-08 20:02 - 2014-07-18 16:20 - 00002501 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2014-07-08 19:31 - 2014-07-08 19:31 - 05659136 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-07-05 23:00 - 2014-07-15 20:38 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gtk-2.0
2014-07-05 21:58 - 2014-07-15 20:38 - 00000000 ____D () C:\Users\Fabian\.gimp-2.8
2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gegl-0.2
2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.thumbnails
2014-07-05 14:11 - 2014-07-05 14:11 - 00000736 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-07-05 14:07 - 2014-07-05 14:09 - 90396104 _____ (The GIMP Team ) C:\Users\Fabian\Downloads\gimp-2.8.10-setup.exe
2014-07-04 22:43 - 2014-07-04 22:43 - 00000000 ____H () C:\Users\Fabian\Documents\Default.rdp
2014-07-02 19:22 - 2014-07-02 19:22 - 00000000 ____D () C:\Users\Fabian\Documents\SniperEliteV2_Benchmark
2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TERA
2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TERA
2014-07-01 18:35 - 2014-07-01 18:35 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Fabian\Downloads\TERASetup.exe
2014-06-30 16:36 - 2014-06-30 16:38 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Notepad++
2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-30 16:35 - 2014-06-30 16:35 - 07674224 _____ () C:\Users\Fabian\Downloads\npp.6.6.7.Installer.exe
2014-06-29 18:03 - 2014-06-29 18:03 - 00004932 _____ () C:\Users\Fabian\Downloads\bibanator_csgo_gaming_cfg_13-06-2014.rar
2014-06-28 17:09 - 2014-06-28 17:09 - 00000286 _____ () C:\Windows\Cm112.ini.imi
2014-06-28 17:09 - 2014-06-28 17:09 - 00000235 _____ () C:\Windows\system\Cm112.ini
2014-06-28 17:09 - 2014-06-28 17:09 - 00000185 _____ () C:\Windows\Cm112.ini.cfl
2014-06-28 17:09 - 2014-06-28 17:09 - 00000137 _____ () C:\Windows\system\Dlap.pfx
2014-06-28 17:09 - 2013-05-28 16:56 - 00151552 _____ () C:\Windows\system\3DG4me.exe
2014-06-28 17:09 - 2012-06-06 09:56 - 00143360 _____ () C:\Windows\system\3DG4me.dll
2014-06-28 17:09 - 2012-01-31 10:26 - 00122096 _____ (HID Dll) C:\Windows\system\CM_HID3.dll
2014-06-28 17:09 - 2010-03-23 14:33 - 00001198 _____ () C:\Windows\Cm112.ini.cfg
2014-06-28 17:09 - 2009-12-15 13:58 - 00000678 _____ () C:\Windows\cm112.ini
2014-06-28 17:09 - 2009-07-07 12:02 - 00779776 _____ () C:\Windows\system32\Cmeau112.exe
2014-06-28 17:09 - 2009-04-08 14:22 - 00354304 _____ () C:\Windows\system32\CmiInstallResAll64.dll
2014-06-28 17:09 - 2007-10-22 14:18 - 00004608 ___SH () C:\Windows\Thumbs.db
2014-06-28 17:08 - 2014-06-28 17:08 - 16873491 _____ () C:\Users\Fabian\Downloads\3D_G4ME_1_Driver_V1_4.zip
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-07-26 15:18 - 2014-07-26 15:18 - 00016457 _____ () C:\Users\Fabian\Downloads\FRST.txt
2014-07-26 15:18 - 2014-07-26 15:17 - 00000000 ____D () C:\FRST
2014-07-26 15:16 - 2014-07-26 15:16 - 02093568 _____ (Farbar) C:\Users\Fabian\Downloads\FRST64.exe
2014-07-26 15:08 - 2014-06-07 21:49 - 01159163 _____ () C:\Windows\WindowsUpdate.log
2014-07-26 14:47 - 2014-07-26 14:47 - 00002850 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.txt
2014-07-26 14:38 - 2014-07-26 14:38 - 09612114 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.mcf
2014-07-26 14:32 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-26 14:32 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-26 14:31 - 2014-06-08 00:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-26 14:30 - 2011-04-12 09:43 - 00768310 _____ () C:\Windows\system32\perfh007.dat
2014-07-26 14:30 - 2011-04-12 09:43 - 00176066 _____ () C:\Windows\system32\perfc007.dat
2014-07-26 14:30 - 2009-07-14 07:13 - 01815616 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-26 14:28 - 2014-06-08 00:53 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-07-26 14:27 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\SecTaskMan
2014-07-26 14:27 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-26 14:25 - 2014-06-09 13:27 - 00000004 _____ () C:\Windows\SysWOW64\GVTunner.ref
2014-07-26 14:25 - 2014-06-08 10:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CrashDumps
2014-07-26 14:25 - 2014-06-08 00:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Raptr
2014-07-26 14:25 - 2014-06-07 23:41 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TS3Client
2014-07-26 14:25 - 2014-06-07 23:28 - 00030528 _____ () C:\Windows\GVTDrv64.sys
2014-07-26 14:25 - 2014-06-07 23:28 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2014-07-26 14:24 - 2014-07-25 09:20 - 00001898 _____ () C:\Windows\setupact.log
2014-07-26 14:24 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\VMware
2014-07-26 14:24 - 2014-06-07 22:31 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-07-26 14:24 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-26 14:22 - 2014-07-26 14:22 - 00002634 _____ () C:\Users\Fabian\Downloads\Winmgmt.reg
2014-07-26 11:44 - 2014-07-26 11:44 - 00000766 _____ () C:\Users\Fabian\Desktop\Security Task Manager.lnk
2014-07-26 11:44 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager
2014-07-26 11:43 - 2014-07-26 11:43 - 02365840 _____ () C:\Users\Fabian\Downloads\SecurityTaskManager_Setup-1.8g.exe
2014-07-25 21:02 - 2014-07-25 13:52 - 00000776 _____ () C:\Windows\LkmdfCoInst.log
2014-07-25 21:02 - 2014-06-08 00:27 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SteelSeries
2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SteelSeries_ApS
2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\ProgramData\SteelSeries
2014-07-25 20:52 - 2014-07-25 20:51 - 53001320 _____ () C:\Users\Fabian\Downloads\SteelSeriesEngine_2.8.0450.exe
2014-07-25 20:49 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-25 15:04 - 2014-07-24 22:56 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VMware
2014-07-25 15:03 - 2014-07-24 22:56 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\VMware
2014-07-25 14:55 - 2014-07-25 14:49 - 412172288 _____ () C:\Users\Fabian\Downloads\kav_rescue_10.iso
2014-07-25 14:09 - 2014-07-25 14:09 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Simply Super Software
2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\Users\Fabian\Documents\Simply Super Software
2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\Licenses
2014-07-25 14:04 - 2014-07-25 14:04 - 00000782 _____ () C:\Users\Public\Desktop\Trojan Remover.lnk
2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Simply Super Software
2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
2014-07-25 14:02 - 2014-07-25 14:02 - 21407864 _____ (Simply Super Software ) C:\Users\Fabian\Downloads\trjsetup690.exe
2014-07-25 09:20 - 2014-07-25 09:20 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-25 00:12 - 2014-07-24 23:31 - 1017118720 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-i386.iso
2014-07-24 23:25 - 2014-07-24 22:57 - 1010827264 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-amd64.iso
2014-07-24 23:01 - 2014-07-24 23:01 - 00000038 _____ () C:\Users\Fabian\Desktop\Neues Textdokument.txt
2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\Program Files\Common Files\VMware
2014-07-24 22:56 - 2014-06-07 21:53 - 01835572 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-24 22:53 - 2014-07-24 22:50 - 98900000 _____ (VMware, Inc.) C:\Users\Fabian\Downloads\VMware-player-6.0.3-1895310.exe
2014-07-24 22:30 - 2014-07-24 22:30 - 03736040 _____ (Piriform Ltd) C:\Users\Fabian\Downloads\ccsetup415_slim.exe
2014-07-24 22:30 - 2014-07-24 22:30 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-24 22:30 - 2014-07-24 22:30 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-07-24 22:30 - 2014-07-24 21:50 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-24 22:28 - 2014-07-24 21:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\NPE
2014-07-24 22:27 - 2014-07-24 21:11 - 00000000 ____D () C:\NPE
2014-07-24 22:06 - 2014-07-24 20:24 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-07-24 22:06 - 2014-07-24 20:22 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\OpenCandy
2014-07-24 22:06 - 2014-07-24 20:20 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\DVDVideoSoft
2014-07-24 22:06 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder
2014-07-24 22:06 - 2014-07-24 13:09 - 00000000 ____D () C:\Program Files\TAP-Windows
2014-07-24 22:06 - 2014-07-24 13:09 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-07-24 22:06 - 2014-07-21 15:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons
2014-07-24 22:06 - 2014-07-15 20:13 - 00000000 ____D () C:\Users\Fabian\Desktop\Angebot
2014-07-24 22:06 - 2014-07-14 22:24 - 00000000 ____D () C:\Users\Fabian\Desktop\Website [HTML,CSS]
2014-07-24 22:06 - 2014-07-14 22:24 - 00000000 ____D () C:\Users\Fabian\Desktop\Taschenrechner 2
2014-07-24 22:06 - 2014-07-14 22:23 - 00000000 ____D () C:\Users\Fabian\Desktop\C#
2014-07-24 22:06 - 2014-06-18 16:26 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Rainmeter
2014-07-24 22:06 - 2014-06-12 21:10 - 00000000 __RHD () C:\MSOCache
2014-07-24 22:06 - 2014-06-08 00:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
2014-07-24 22:06 - 2014-06-07 23:43 - 00000000 ____D () C:\ProgramData\Origin
2014-07-24 22:06 - 2014-06-07 23:32 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Mozilla
2014-07-24 22:06 - 2014-06-07 22:12 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Help
2014-07-24 22:06 - 2014-06-07 22:00 - 00000000 ____D () C:\ProgramData\Norton
2014-07-24 22:06 - 2014-06-07 21:49 - 00000000 ____D () C:\Users\Fabian
2014-07-24 22:06 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-07-24 22:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-07-24 21:51 - 2014-06-07 22:44 - 00000000 ____D () C:\Windows\Panther
2014-07-24 21:50 - 2014-07-24 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-24 20:56 - 2014-07-24 20:24 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-07-24 20:37 - 2014-07-24 20:37 - 01243655 _____ () C:\Users\Fabian\Downloads\ProcessExplorer.zip
2014-07-24 20:24 - 2014-07-24 20:24 - 00000000 ____D () C:\Users\Fabian\AppData\Local\TuneUp Software
2014-07-24 19:28 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Mediatronic
2014-07-24 14:30 - 2014-07-24 14:30 - 00458649 _____ () C:\Users\Fabian\Downloads\imagetomp3_22632.zip
2014-07-24 14:09 - 2014-07-24 14:09 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-07-24 14:01 - 2014-07-24 14:01 - 04264137 _____ () C:\Users\Fabian\Downloads\acfpc71.zip
2014-07-24 13:52 - 2014-07-24 13:52 - 05001832 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part5.rar
2014-07-24 13:52 - 2014-07-24 13:48 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part4.rar
2014-07-24 13:47 - 2014-07-24 13:43 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part3.rar
2014-07-24 13:42 - 2014-07-24 13:39 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part2.rar
2014-07-24 13:38 - 2014-07-24 13:34 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part1.rar
2014-07-24 13:10 - 2014-07-24 13:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CyberGhost
2014-07-24 13:10 - 2014-06-07 21:49 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VirtualStore
2014-07-23 22:46 - 2014-07-23 22:45 - 40153667 _____ () C:\Users\Fabian\Downloads\BladeSlapSND-v11.zip
2014-07-23 21:49 - 2014-07-23 21:42 - 282762749 _____ () C:\Users\Fabian\Downloads\H_S_Design_EC135_X.zip
2014-07-23 21:45 - 2014-07-23 21:43 - 44357952 _____ () C:\Users\Fabian\Downloads\Zeppelin_NT_FSX.zip
2014-07-23 16:29 - 2014-07-19 13:25 - 00000000 ____D () C:\Users\Fabian\Documents\Flight Simulator X-Dateien
2014-07-22 16:08 - 2014-07-22 16:07 - 45031920 _____ () C:\Users\Fabian\Downloads\HC075DI_AS332L2_FSX_ACCELERATION.zip
2014-07-21 23:25 - 2014-07-21 23:25 - 00000000 ____D () C:\ProgramData\newrestore
2014-07-21 23:24 - 2014-07-21 23:24 - 00000000 ____D () C:\ProgramData\logsaver
2014-07-21 23:23 - 2014-07-21 23:23 - 00000000 ____D () C:\ProgramData\managecapsule
2014-07-21 23:20 - 2014-07-13 14:20 - 00000000 ____D () C:\Users\Fabian\Desktop\Bewerbungen+Lebensläufe Nach der Schule
2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\newbackup
2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\launcher
2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\ibackupvhd
2014-07-21 18:51 - 2014-07-21 18:51 - 00000000 ____D () C:\ProgramData\rmbwizard
2014-07-21 18:49 - 2014-07-21 18:49 - 00000000 ____D () C:\ProgramData\explauncher
2014-07-21 17:56 - 2014-07-21 17:53 - 156439928 _____ () C:\Users\Fabian\Downloads\FSX Concorde 2011 FULL collection.zip
2014-07-21 17:39 - 2014-07-21 16:36 - 00000000 ____D () C:\ProgramData\InstallMate
2014-07-21 17:35 - 2014-07-21 17:33 - 18635685 _____ () C:\Users\Fabian\Downloads\edgley_optica_fsx_p3d.zip
2014-07-21 17:30 - 2014-07-21 17:26 - 24181036 _____ () C:\Users\Fabian\Downloads\fsnd_citationx_ultra_package_fsx_p3d.zip
2014-07-21 17:22 - 2014-07-21 17:20 - 12016313 _____ () C:\Users\Fabian\Downloads\bombardier_canadair_cl-215_v3.0x_fsx_p3d.zip
2014-07-21 17:20 - 2014-07-21 17:17 - 22743374 _____ () C:\Users\Fabian\Downloads\icon_aircraft_a5_fsx_sp2_acc_p3d.zip
2014-07-21 17:16 - 2014-07-21 17:04 - 83022300 _____ () C:\Users\Fabian\Downloads\raf_hawker_siddeley_nimrod_package_for_fsx.zip
2014-07-21 17:04 - 2014-07-21 16:45 - 127624268 _____ () C:\Users\Fabian\Downloads\lufthansa_pack_fsx_p3d.zip
2014-07-21 16:45 - 2014-07-21 16:43 - 11509540 _____ () C:\Users\Fabian\Downloads\northrop_b-2a_spirit_alphasim_fsx_p3d.zip
2014-07-21 16:41 - 2014-07-21 16:35 - 43827756 _____ () C:\Users\Fabian\Downloads\hughes_oh-6_series_fsx.zip
2014-07-21 16:34 - 2014-07-21 16:26 - 52576126 _____ () C:\Users\Fabian\Downloads\enstrom_280fx_fsx.zip
2014-07-21 16:26 - 2014-07-21 16:24 - 15873135 _____ () C:\Users\Fabian\Downloads\ukmil_boeing_chinook_hc2_fsx_p3d.zip
2014-07-21 15:35 - 2014-07-21 15:31 - 28344613 _____ () C:\Users\Fabian\Downloads\tom_airbus_a300-beluga_fsx.zip
2014-07-21 12:31 - 2014-07-21 12:31 - 16573534 _____ () C:\Users\Fabian\Downloads\Piaggio P-180 Avanti.zip
2014-07-21 12:30 - 2014-07-21 12:29 - 26477706 _____ () C:\Users\Fabian\Downloads\Antonov AN-124.zip
2014-07-21 12:19 - 2014-07-21 12:19 - 27097674 _____ () C:\Users\Fabian\Downloads\dhc8-q400_x.zip
2014-07-21 12:11 - 2014-07-21 12:11 - 03042305 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Qantas Link.zip
2014-07-21 12:11 - 2014-07-21 12:10 - 21014993 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Basepack.zip
2014-07-20 21:31 - 2014-07-20 21:30 - 00166078 _____ () C:\Users\Fabian\Downloads\FPS_Limiter_0.2.rar
2014-07-20 21:13 - 2014-07-20 21:10 - 174078464 _____ () C:\Users\Fabian\Downloads\fsx_sp2_DEU.msi
2014-07-20 16:03 - 2014-07-20 16:02 - 09006434 _____ () C:\Users\Fabian\Downloads\texture.sunexpress.zip
2014-07-20 13:11 - 2014-07-20 12:57 - 18273643 _____ () C:\Users\Fabian\Downloads\B737-500Lufthansa.zip
2014-07-20 13:01 - 2014-07-20 12:56 - 14699938 _____ () C:\Users\Fabian\Downloads\a321.zip
2014-07-20 12:45 - 2009-07-14 06:45 - 00420568 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-19 15:09 - 2014-07-19 14:31 - 113183445 _____ () C:\Users\Fabian\Downloads\dlh737-700-FSX.zip
2014-07-19 14:37 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Ubisoft Game Launcher
2014-07-19 14:36 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-07-19 14:36 - 2014-07-19 14:35 - 61513304 _____ (Ubisoft) C:\Users\Fabian\Downloads\UplayInstaller.exe
2014-07-19 14:02 - 2014-06-07 23:29 - 00110904 _____ () C:\Users\Fabian\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-19 14:00 - 2014-07-19 14:00 - 01099187 _____ () C:\Users\Fabian\Downloads\3repaints-SpruceGoose.zip
2014-07-19 13:59 - 2014-07-19 13:56 - 230008963 _____ () C:\Users\Fabian\Downloads\ACJ_AirbusA380MegaPackage.zip
2014-07-19 13:33 - 2014-07-19 13:33 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Game Studios
2014-07-19 12:49 - 2014-07-19 12:49 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-07-19 12:49 - 2014-06-07 21:53 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-18 17:43 - 2014-07-10 22:34 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SpinTires
2014-07-18 16:33 - 2014-06-08 00:37 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Arma 3
2014-07-18 16:25 - 2014-07-18 16:25 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-07-18 16:20 - 2014-07-10 22:22 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-07-18 16:20 - 2014-07-08 20:02 - 00002501 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2014-07-18 16:20 - 2014-06-07 22:00 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-07-18 16:20 - 2014-06-07 22:00 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-07-17 20:04 - 2014-06-08 00:28 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-17 20:03 - 2014-07-17 20:03 - 00004251 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-17 20:03 - 2014-07-17 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-17 19:20 - 2014-07-17 19:20 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-15 21:10 - 2014-07-15 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Temporary Projects
2014-07-15 20:53 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Deployment
2014-07-15 20:52 - 2014-07-15 20:52 - 00343896 _____ () C:\Users\Fabian\Downloads\publish.7z
2014-07-15 20:52 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Apps\2.0
2014-07-15 20:51 - 2014-07-14 22:22 - 00000000 ____D () C:\Users\Fabian\Documents\Visual Studio 2010
2014-07-15 20:38 - 2014-07-15 20:38 - 00008377 _____ () C:\Users\Fabian\AppData\Local\recently-used.xbel
2014-07-15 20:38 - 2014-07-05 23:00 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gtk-2.0
2014-07-15 20:38 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.gimp-2.8
2014-07-15 19:35 - 2014-07-15 19:35 - 00000000 ____D () C:\Windows\system32\RsFx
2014-07-15 19:35 - 2014-07-15 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2014-07-15 19:35 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1033
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1031
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1033
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1031
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-07-15 19:34 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-07-15 19:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\AntMe
2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\AntMe!_Ltd
2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Windows\symbols
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-07-14 22:13 - 2014-07-14 22:13 - 03277648 _____ (Microsoft Corporation) C:\Users\Fabian\Downloads\vcRaute_web.exe
2014-07-14 22:12 - 2014-07-14 22:12 - 02182278 _____ () C:\Users\Fabian\Downloads\C#.7z
2014-07-14 22:12 - 2014-07-14 22:12 - 01754045 _____ () C:\Users\Fabian\Downloads\Website [HTML,CSS].7z
2014-07-14 22:12 - 2014-07-14 22:12 - 00023090 _____ () C:\Users\Fabian\Downloads\Taschenrechner 2.7z
2014-07-13 14:22 - 2014-07-13 14:22 - 00000678 _____ () C:\Users\Public\Desktop\PDFCreator.lnk
2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\pdfforge
2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-07-13 14:21 - 2014-07-13 14:20 - 27843432 _____ (pdfforge ) C:\Users\Fabian\Downloads\PDFCreator-1_7_3_setup.exe
2014-07-12 22:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-07-11 18:58 - 2014-06-07 23:23 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-11 18:58 - 2011-04-12 09:55 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-11 18:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-07-11 18:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-07-11 03:02 - 2014-06-08 00:28 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-06-08 00:28 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-06-08 00:28 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-06-08 00:28 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-10 22:57 - 2014-06-07 22:37 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-10 22:57 - 2014-06-07 22:37 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-08 20:02 - 2014-06-07 22:00 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2014-07-08 20:02 - 2014-06-07 22:00 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2014-07-08 20:02 - 2014-06-07 22:00 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2014-07-08 19:31 - 2014-07-08 19:31 - 05659136 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-07-08 19:31 - 2014-06-08 00:36 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-08 19:31 - 2014-06-08 00:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-08 19:31 - 2014-06-08 00:36 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-06 20:43 - 2014-06-08 00:33 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Spotify
2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gegl-0.2
2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.thumbnails
2014-07-05 14:11 - 2014-07-05 14:11 - 00000736 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-07-05 14:09 - 2014-07-05 14:07 - 90396104 _____ (The GIMP Team ) C:\Users\Fabian\Downloads\gimp-2.8.10-setup.exe
2014-07-04 22:43 - 2014-07-04 22:43 - 00000000 ____H () C:\Users\Fabian\Documents\Default.rdp
2014-07-03 17:17 - 2014-06-08 00:34 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Spotify
2014-07-02 19:22 - 2014-07-02 19:22 - 00000000 ____D () C:\Users\Fabian\Documents\SniperEliteV2_Benchmark
2014-07-02 18:04 - 2014-06-08 18:22 - 00000000 ____D () C:\Users\Fabian\Documents\Euro Truck Simulator 2
2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TERA
2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TERA
2014-07-01 18:35 - 2014-07-01 18:35 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Fabian\Downloads\TERASetup.exe
2014-06-30 16:38 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Notepad++
2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-06-30 16:35 - 2014-06-30 16:35 - 07674224 _____ () C:\Users\Fabian\Downloads\npp.6.6.7.Installer.exe
2014-06-30 04:09 - 2014-07-10 22:34 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-30 04:04 - 2014-07-10 22:34 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-29 18:03 - 2014-06-29 18:03 - 00004932 _____ () C:\Users\Fabian\Downloads\bibanator_csgo_gaming_cfg_13-06-2014.rar
2014-06-29 17:19 - 2014-06-25 19:22 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SniperV2
2014-06-28 17:09 - 2014-06-28 17:09 - 00000286 _____ () C:\Windows\Cm112.ini.imi
2014-06-28 17:09 - 2014-06-28 17:09 - 00000235 _____ () C:\Windows\system\Cm112.ini
2014-06-28 17:09 - 2014-06-28 17:09 - 00000185 _____ () C:\Windows\Cm112.ini.cfl
2014-06-28 17:09 - 2014-06-28 17:09 - 00000137 _____ () C:\Windows\system\Dlap.pfx
2014-06-28 17:09 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system
2014-06-28 17:08 - 2014-06-28 17:08 - 16873491 _____ () C:\Users\Fabian\Downloads\3D_G4ME_1_Driver_V1_4.zip
2014-06-26 19:04 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\LiveKernelReports
Some content of TEMP:
====================
C:\Users\Fabian\AppData\Local\Temp\x2blapi.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-18 18:06
==================== End Of Log ============================
|
|
27.07.2014, 12:49
| #3 |
| /// the machine /// TB-Ausbilder    | Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! hi,
__________________Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ |
|
27.07.2014, 18:15
| #4 |
| | Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! So habe meine Aufgaben erfüllt folgend sind die Angeforderten Logs: Mbam.txt Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 27.07.2014 Scan Time: 17:36:24 Logfile: mbam.txt Administrator: Yes Version: 2.00.2.1012 Malware Database: v2014.07.27.05 Rootkit Database: v2014.07.17.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: Fabian Scan Type: Threat Scan Result: Completed Objects Scanned: 304034 Time Elapsed: 3 min, 37 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 0 (No malicious items detected) Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 2 PUP.Optional.OpenCandy, C:\Users\Fabian\AppData\Roaming\OpenCandy, Quarantined, [f68b5d475724db5b4d9eb7f135cdf907], PUP.Optional.OpenCandy, C:\Users\Fabian\AppData\Roaming\OpenCandy\22DFC069F6F9477597DCF6BD1E632A55, Quarantined, [f68b5d475724db5b4d9eb7f135cdf907], Files: 0 (No malicious items detected) Physical Sectors: 0 (No malicious items detected) (end) Code:
ATTFilter # AdwCleaner v3.216 - Bericht erstellt am 27/07/2014 um 17:42:48
# Aktualisiert 17/07/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Fabian - FABIAN-PC
# Gestartet von : C:\Users\Fabian\Downloads\adwcleaner_3.216.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Tarma Installer
Ordner Gelöscht : C:\Users\Fabian\AppData\Roaming\pdfforge
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17207
-\\ Mozilla Firefox v30.0 (de)
[ Datei : C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\ofcara1s.default\prefs.js ]
*************************
AdwCleaner[R0].txt - [925 octets] - [27/07/2014 17:41:40]
AdwCleaner[S0].txt - [847 octets] - [27/07/2014 17:42:48]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [906 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Fabian on 27.07.2014 at 17:46:19,95
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ FireFox
Emptied folder: C:\Users\Fabian\AppData\Roaming\mozilla\firefox\profiles\ofcara1s.default\minidumps [23 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27.07.2014 at 17:51:15,40
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-07-2014 Ran by Fabian (administrator) on FABIAN-PC on 27-07-2014 17:55:10 Running from C:\Users\Fabian\Desktop Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.) D:\Programme\VMWare\vmware-authd.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Spotify Ltd) C:\Users\Fabian\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe () D:\Programme\RocketDock\RocketDock.exe (Valve Corporation) D:\Programme\Steam\Steam.exe (SteelSeries ApS) D:\Programme\SteelSeries Engine\SteelSeriesEngine.exe () C:\Program Files\Rainmeter\Rainmeter.exe (VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe (Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.) HKLM\...\Run: [3DG4me] => C:\Windows\System\3DG4me.exe [151552 2013-05-28] () HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5263504 2012-08-09] (VIA) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation) HKLM-x32\...\Run: [TrojanScanner] => D:\Programme\Trojan Remover\Trjscan.exe [1666432 2014-07-25] (Simply Super Software) HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Spotify Web Helper] => C:\Users\Fabian\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-28] (Spotify Ltd) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-06-24] (Raptr, Inc) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [RocketDock] => D:\Programme\RocketDock\RocketDock.exe [495616 2007-09-02] () HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [TeamSpeak 3 Client] => D:\Programme\Teamspeak 3\ts3client_win64.exe [10762696 2014-03-12] (TeamSpeak Systems GmbH) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Steam] => D:\Programme\Steam\steam.exe [1753280 2014-07-16] (Valve Corporation) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [SteelSeries Engine] => D:\Programme\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-06-26] (SteelSeries ApS) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\MountPoints2: {1c91139b-ee7c-11e3-b48b-806e6f6e6963} - E:\SETUP.EXE Startup: C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) SearchScopes: HKLM-x32 - DefaultScope value is missing. BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation) BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation) BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programme\Java\bin\ssv.dll (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Programme\Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\ofcara1s.default FF Homepage: about:home FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL No File FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - D:\Programme\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - D:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - D:\PROGRA~1\Office\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - D:\PROGRA~1\Office\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: NoScript - C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\ofcara1s.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-06-08] FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\coFFPlgn FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\coFFPlgn [2014-07-27] FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\IPSFF FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\IPSFF [2014-07-10] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-06-08] () [File not signed] S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed] S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed] S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation) R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-06-10] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-15] () S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation) R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-03] (VIA Technologies, Inc.) R2 VMAuthdService; D:\Programme\VMWare\vmware-authd.exe [86744 2014-06-12] (VMware, Inc.) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] () R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\BASHDefs\20140718.001_e68\BHDrvx64.sys [1530160 2014-07-18] (Symantec Corporation) R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-08] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142128 2014-07-08] (Symantec Corporation) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-07-26] () R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\IPSDefs\20140725.001\IDSvia64.sys [525016 2014-07-23] (Symantec Corporation) R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [110744 2012-07-19] (Qualcomm Atheros Co., Ltd.) S3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.) R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-27] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation) R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20140725.008\ENG64.SYS [126040 2014-07-24] (Symantec Corporation) R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20140725.008\EX64.SYS [2099288 2014-07-24] (Symantec Corporation) R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [39168 2014-05-27] (SteelSeries Corporation) R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-13] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-10-30] (Symantec Corporation) R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-10-30] (Symantec Corporation) R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-08] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-10-30] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-18] (Symantec Corporation) R3 USBADVAU; C:\Windows\System32\drivers\cm11264.sys [1308160 2009-11-25] (C-Media Electronics Inc) R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [32472 2014-06-12] (VMware, Inc.) R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-07-27 17:51 - 2014-07-27 17:51 - 00000759 _____ () C:\Users\Fabian\Desktop\JRT.txt 2014-07-27 17:46 - 2014-07-27 17:46 - 00000000 ____D () C:\Windows\ERUNT 2014-07-27 17:44 - 2014-07-27 17:44 - 00000985 _____ () C:\Users\Fabian\Desktop\AdwCleaner[S0].txt 2014-07-27 17:43 - 2014-07-27 17:43 - 00000314 _____ () C:\Windows\PFRO.log 2014-07-27 17:41 - 2014-07-27 17:42 - 00000000 ____D () C:\AdwCleaner 2014-07-27 17:40 - 2014-07-27 17:40 - 00001293 _____ () C:\Users\Fabian\Desktop\mbam.txt 2014-07-27 17:38 - 2014-07-27 17:38 - 01354223 _____ () C:\Users\Fabian\Desktop\adwcleaner_3.216.exe 2014-07-27 17:38 - 2014-07-27 17:38 - 01016261 _____ (Thisisu) C:\Users\Fabian\Downloads\JRT.exe 2014-07-27 17:35 - 2014-07-27 17:44 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-07-27 17:35 - 2014-07-27 17:35 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Fabian\Downloads\mbam-setup-2.0.2.1012.exe 2014-07-27 17:35 - 2014-07-27 17:35 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-07-27 17:35 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-07-27 17:35 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-07-27 17:35 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-07-26 16:24 - 2014-07-27 17:55 - 00016705 _____ () C:\Users\Fabian\Desktop\FRST.txt 2014-07-26 16:24 - 2014-07-26 15:18 - 00047970 _____ () C:\Users\Fabian\Desktop\Addition.txt 2014-07-26 15:18 - 2014-07-26 15:18 - 00073370 _____ () C:\Users\Fabian\Downloads\FRST.txt 2014-07-26 15:18 - 2014-07-26 15:18 - 00047970 _____ () C:\Users\Fabian\Downloads\Addition.txt 2014-07-26 15:17 - 2014-07-27 17:55 - 00000000 ____D () C:\FRST 2014-07-26 15:16 - 2014-07-26 15:16 - 02093568 _____ (Farbar) C:\Users\Fabian\Desktop\FRST64.exe 2014-07-26 14:47 - 2014-07-26 14:47 - 00002850 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.txt 2014-07-26 14:38 - 2014-07-26 14:38 - 09612114 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.mcf 2014-07-26 14:22 - 2014-07-26 14:22 - 00002634 _____ () C:\Users\Fabian\Downloads\Winmgmt.reg 2014-07-26 11:44 - 2014-07-26 14:27 - 00000000 ____D () C:\ProgramData\SecTaskMan 2014-07-26 11:44 - 2014-07-26 11:44 - 00000766 _____ () C:\Users\Fabian\Desktop\Security Task Manager.lnk 2014-07-26 11:44 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager 2014-07-26 11:43 - 2014-07-26 11:43 - 02365840 _____ () C:\Users\Fabian\Downloads\SecurityTaskManager_Setup-1.8g.exe 2014-07-26 11:36 - 2014-03-06 23:53 - 02925760 _____ (Sysinternals - www.sysinternals.com) C:\Users\Fabian\Desktop\procexp.exe 2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SteelSeries 2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SteelSeries_ApS 2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries 2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\ProgramData\SteelSeries 2014-07-25 20:51 - 2014-07-25 20:52 - 53001320 _____ () C:\Users\Fabian\Downloads\SteelSeriesEngine_2.8.0450.exe 2014-07-25 14:49 - 2014-07-25 14:55 - 412172288 _____ () C:\Users\Fabian\Downloads\kav_rescue_10.iso 2014-07-25 14:09 - 2014-07-25 14:09 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Simply Super Software 2014-07-25 14:06 - 2014-07-26 14:27 - 00000000 ____D () C:\ProgramData\TEMP 2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\Users\Fabian\Documents\Simply Super Software 2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\Licenses 2014-07-25 14:04 - 2014-07-25 14:04 - 00000782 _____ () C:\Users\Public\Desktop\Trojan Remover.lnk 2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Simply Super Software 2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover 2014-07-25 14:02 - 2014-07-25 14:02 - 21407864 _____ (Simply Super Software ) C:\Users\Fabian\Downloads\trjsetup690.exe 2014-07-25 13:52 - 2014-07-25 21:02 - 00000776 _____ () C:\Windows\LkmdfCoInst.log 2014-07-25 09:20 - 2014-07-27 17:44 - 00002066 _____ () C:\Windows\setupact.log 2014-07-25 09:20 - 2014-07-25 09:20 - 00000000 _____ () C:\Windows\setuperr.log 2014-07-24 23:31 - 2014-07-25 00:12 - 1017118720 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-i386.iso 2014-07-24 23:01 - 2014-07-24 23:01 - 00000038 _____ () C:\Users\Fabian\Desktop\Neues Textdokument.txt 2014-07-24 22:57 - 2014-07-24 23:25 - 1010827264 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-amd64.iso 2014-07-24 22:56 - 2014-07-27 17:44 - 00000000 ____D () C:\ProgramData\VMware 2014-07-24 22:56 - 2014-07-25 15:04 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VMware 2014-07-24 22:56 - 2014-07-25 15:03 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\VMware 2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware 2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-07-24 22:56 - 2014-06-12 18:23 - 00359128 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe 2014-07-24 22:56 - 2014-06-12 18:23 - 00064728 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys 2014-07-24 22:56 - 2014-06-12 18:22 - 00931032 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll 2014-07-24 22:56 - 2014-06-12 18:22 - 00437976 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe 2014-07-24 22:56 - 2014-06-12 18:22 - 00032472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMparport.sys 2014-07-24 22:56 - 2014-06-12 18:22 - 00031448 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys 2014-07-24 22:56 - 2014-06-12 18:21 - 00033496 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys 2014-07-24 22:56 - 2014-02-27 18:40 - 00054464 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys 2014-07-24 22:56 - 2013-10-08 18:21 - 00073296 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys 2014-07-24 22:56 - 2013-10-08 18:21 - 00067664 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll 2014-07-24 22:56 - 2013-10-08 18:21 - 00063568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll 2014-07-24 22:50 - 2014-07-24 22:53 - 98900000 _____ (VMware, Inc.) C:\Users\Fabian\Downloads\VMware-player-6.0.3-1895310.exe 2014-07-24 22:30 - 2014-07-24 22:30 - 03736040 _____ (Piriform Ltd) C:\Users\Fabian\Downloads\ccsetup415_slim.exe 2014-07-24 22:30 - 2014-07-24 22:30 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-07-24 22:30 - 2014-07-24 22:30 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-07-24 21:50 - 2014-07-24 22:30 - 00000000 ____D () C:\Program Files\CCleaner 2014-07-24 21:50 - 2014-07-24 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-07-24 21:11 - 2014-07-24 22:27 - 00000000 ____D () C:\NPE 2014-07-24 21:10 - 2014-07-24 22:28 - 00000000 ____D () C:\Users\Fabian\AppData\Local\NPE 2014-07-24 20:37 - 2014-07-24 20:37 - 01243655 _____ () C:\Users\Fabian\Downloads\ProcessExplorer.zip 2014-07-24 20:24 - 2014-07-24 22:06 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} 2014-07-24 20:24 - 2014-07-24 20:56 - 00000000 ____D () C:\ProgramData\TuneUp Software 2014-07-24 20:24 - 2014-07-24 20:24 - 00000000 ____D () C:\Users\Fabian\AppData\Local\TuneUp Software 2014-07-24 20:20 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\DVDVideoSoft 2014-07-24 19:28 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder 2014-07-24 19:28 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Mediatronic 2014-07-24 14:30 - 2014-07-24 14:30 - 00458649 _____ () C:\Users\Fabian\Downloads\imagetomp3_22632.zip 2014-07-24 14:09 - 2014-07-24 14:09 - 00000000 ____D () C:\ProgramData\Ashampoo 2014-07-24 14:01 - 2014-07-24 14:01 - 04264137 _____ () C:\Users\Fabian\Downloads\acfpc71.zip 2014-07-24 13:52 - 2014-07-24 13:52 - 05001832 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part5.rar 2014-07-24 13:48 - 2014-07-24 13:52 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part4.rar 2014-07-24 13:43 - 2014-07-24 13:47 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part3.rar 2014-07-24 13:39 - 2014-07-24 13:42 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part2.rar 2014-07-24 13:34 - 2014-07-24 13:38 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part1.rar 2014-07-24 13:10 - 2014-07-24 13:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CyberGhost 2014-07-24 13:09 - 2014-07-24 22:06 - 00000000 ____D () C:\Program Files\TAP-Windows 2014-07-24 13:09 - 2014-07-24 22:06 - 00000000 ____D () C:\Program Files\CyberGhost 5 2014-07-23 22:45 - 2014-07-23 22:46 - 40153667 _____ () C:\Users\Fabian\Downloads\BladeSlapSND-v11.zip 2014-07-23 21:43 - 2014-07-23 21:45 - 44357952 _____ () C:\Users\Fabian\Downloads\Zeppelin_NT_FSX.zip 2014-07-23 21:42 - 2014-07-23 21:49 - 282762749 _____ () C:\Users\Fabian\Downloads\H_S_Design_EC135_X.zip 2014-07-22 16:07 - 2014-07-22 16:08 - 45031920 _____ () C:\Users\Fabian\Downloads\HC075DI_AS332L2_FSX_ACCELERATION.zip 2014-07-21 23:25 - 2014-07-21 23:25 - 00000000 ____D () C:\ProgramData\newrestore 2014-07-21 23:24 - 2014-07-21 23:24 - 00000000 ____D () C:\ProgramData\logsaver 2014-07-21 23:23 - 2014-07-21 23:23 - 00000000 ____D () C:\ProgramData\managecapsule 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\newbackup 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\launcher 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\ibackupvhd 2014-07-21 18:51 - 2014-07-21 18:51 - 00000000 ____D () C:\ProgramData\rmbwizard 2014-07-21 18:49 - 2014-07-21 18:49 - 00000000 ____D () C:\ProgramData\explauncher 2014-07-21 17:53 - 2014-07-21 17:56 - 156439928 _____ () C:\Users\Fabian\Downloads\FSX Concorde 2011 FULL collection.zip 2014-07-21 17:33 - 2014-07-21 17:35 - 18635685 _____ () C:\Users\Fabian\Downloads\edgley_optica_fsx_p3d.zip 2014-07-21 17:26 - 2014-07-21 17:30 - 24181036 _____ () C:\Users\Fabian\Downloads\fsnd_citationx_ultra_package_fsx_p3d.zip 2014-07-21 17:20 - 2014-07-21 17:22 - 12016313 _____ () C:\Users\Fabian\Downloads\bombardier_canadair_cl-215_v3.0x_fsx_p3d.zip 2014-07-21 17:17 - 2014-07-21 17:20 - 22743374 _____ () C:\Users\Fabian\Downloads\icon_aircraft_a5_fsx_sp2_acc_p3d.zip 2014-07-21 17:04 - 2014-07-21 17:16 - 83022300 _____ () C:\Users\Fabian\Downloads\raf_hawker_siddeley_nimrod_package_for_fsx.zip 2014-07-21 16:45 - 2014-07-21 17:04 - 127624268 _____ () C:\Users\Fabian\Downloads\lufthansa_pack_fsx_p3d.zip 2014-07-21 16:43 - 2014-07-21 16:45 - 11509540 _____ () C:\Users\Fabian\Downloads\northrop_b-2a_spirit_alphasim_fsx_p3d.zip 2014-07-21 16:36 - 2014-07-21 17:39 - 00000000 ____D () C:\ProgramData\InstallMate 2014-07-21 16:35 - 2014-07-21 16:41 - 43827756 _____ () C:\Users\Fabian\Downloads\hughes_oh-6_series_fsx.zip 2014-07-21 16:26 - 2014-07-21 16:34 - 52576126 _____ () C:\Users\Fabian\Downloads\enstrom_280fx_fsx.zip 2014-07-21 16:24 - 2014-07-21 16:26 - 15873135 _____ () C:\Users\Fabian\Downloads\ukmil_boeing_chinook_hc2_fsx_p3d.zip 2014-07-21 15:36 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons 2014-07-21 15:31 - 2014-07-21 15:35 - 28344613 _____ () C:\Users\Fabian\Downloads\tom_airbus_a300-beluga_fsx.zip 2014-07-21 12:31 - 2014-07-21 12:31 - 16573534 _____ () C:\Users\Fabian\Downloads\Piaggio P-180 Avanti.zip 2014-07-21 12:29 - 2014-07-21 12:30 - 26477706 _____ () C:\Users\Fabian\Downloads\Antonov AN-124.zip 2014-07-21 12:19 - 2014-07-21 12:19 - 27097674 _____ () C:\Users\Fabian\Downloads\dhc8-q400_x.zip 2014-07-21 12:11 - 2014-07-21 12:11 - 03042305 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Qantas Link.zip 2014-07-21 12:10 - 2014-07-21 12:11 - 21014993 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Basepack.zip 2014-07-20 21:30 - 2014-07-20 21:31 - 00166078 _____ () C:\Users\Fabian\Downloads\FPS_Limiter_0.2.rar 2014-07-20 21:10 - 2014-07-20 21:13 - 174078464 _____ () C:\Users\Fabian\Downloads\fsx_sp2_DEU.msi 2014-07-20 16:02 - 2014-07-20 16:03 - 09006434 _____ () C:\Users\Fabian\Downloads\texture.sunexpress.zip 2014-07-20 12:57 - 2014-07-20 13:11 - 18273643 _____ () C:\Users\Fabian\Downloads\B737-500Lufthansa.zip 2014-07-20 12:56 - 2014-07-20 13:01 - 14699938 _____ () C:\Users\Fabian\Downloads\a321.zip 2014-07-19 14:36 - 2014-07-19 14:37 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Ubisoft Game Launcher 2014-07-19 14:36 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2014-07-19 14:35 - 2014-07-19 14:36 - 61513304 _____ (Ubisoft) C:\Users\Fabian\Downloads\UplayInstaller.exe 2014-07-19 14:31 - 2014-07-19 15:09 - 113183445 _____ () C:\Users\Fabian\Downloads\dlh737-700-FSX.zip 2014-07-19 14:00 - 2014-07-19 14:00 - 01099187 _____ () C:\Users\Fabian\Downloads\3repaints-SpruceGoose.zip 2014-07-19 13:56 - 2014-07-19 13:59 - 230008963 _____ () C:\Users\Fabian\Downloads\ACJ_AirbusA380MegaPackage.zip 2014-07-19 13:33 - 2014-07-19 13:33 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Game Studios 2014-07-19 13:25 - 2014-07-23 16:29 - 00000000 ____D () C:\Users\Fabian\Documents\Flight Simulator X-Dateien 2014-07-19 12:49 - 2014-07-19 12:49 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0 2014-07-18 16:25 - 2014-07-18 16:25 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security 2014-07-17 20:03 - 2014-07-17 20:03 - 00004251 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log 2014-07-17 20:03 - 2014-07-17 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-07-17 19:20 - 2014-07-17 19:20 - 00000000 ____D () C:\ProgramData\Riot Games 2014-07-15 20:53 - 2014-07-15 21:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Temporary Projects 2014-07-15 20:52 - 2014-07-15 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Deployment 2014-07-15 20:52 - 2014-07-15 20:52 - 00343896 _____ () C:\Users\Fabian\Downloads\publish.7z 2014-07-15 20:52 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Apps\2.0 2014-07-15 20:38 - 2014-07-15 20:38 - 00008377 _____ () C:\Users\Fabian\AppData\Local\recently-used.xbel 2014-07-15 20:13 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Angebot 2014-07-15 19:35 - 2014-07-15 19:35 - 00000000 ____D () C:\Windows\system32\RsFx 2014-07-15 19:35 - 2009-07-21 02:42 - 00111640 _____ (Microsoft Corporation) C:\Windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll 2014-07-15 19:35 - 2009-07-21 02:42 - 00079896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll 2014-07-15 19:35 - 2009-07-21 02:42 - 00078872 _____ (Microsoft Corporation) C:\Windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll 2014-07-15 19:35 - 2009-07-21 02:42 - 00050200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll 2014-07-15 19:34 - 2014-07-15 19:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 2014-07-15 19:34 - 2014-07-15 19:35 - 00000000 ____D () C:\Program Files\Microsoft SQL Server 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1033 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1031 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1033 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1031 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0 2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\AntMe 2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\AntMe!_Ltd 2014-07-14 22:24 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Website [HTML,CSS] 2014-07-14 22:24 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Taschenrechner 2 2014-07-14 22:23 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\C# 2014-07-14 22:23 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-07-14 22:22 - 2014-07-15 20:51 - 00000000 ____D () C:\Users\Fabian\Documents\Visual Studio 2010 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Windows\symbols 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs 2014-07-14 22:13 - 2014-07-14 22:13 - 03277648 _____ (Microsoft Corporation) C:\Users\Fabian\Downloads\vcRaute_web.exe 2014-07-14 22:12 - 2014-07-14 22:12 - 02182278 _____ () C:\Users\Fabian\Downloads\C#.7z 2014-07-14 22:12 - 2014-07-14 22:12 - 01754045 _____ () C:\Users\Fabian\Downloads\Website [HTML,CSS].7z 2014-07-14 22:12 - 2014-07-14 22:12 - 00023090 _____ () C:\Users\Fabian\Downloads\Taschenrechner 2.7z 2014-07-13 14:22 - 2014-07-13 14:22 - 00000678 _____ () C:\Users\Public\Desktop\PDFCreator.lnk 2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\PDF Architect 2 2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2014-07-13 14:22 - 2014-04-25 17:44 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX 2014-07-13 14:22 - 2014-04-25 17:44 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX 2014-07-13 14:22 - 2014-04-25 17:44 - 00110264 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll 2014-07-13 14:22 - 2014-04-25 17:44 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL 2014-07-13 14:22 - 1998-07-06 18:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6DE.DLL 2014-07-13 14:22 - 1998-07-06 18:55 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCMCDE.DLL 2014-07-13 14:22 - 1998-07-06 18:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCC2DE.DLL 2014-07-13 14:20 - 2014-07-21 23:20 - 00000000 ____D () C:\Users\Fabian\Desktop\Bewerbungen+Lebensläufe Nach der Schule 2014-07-13 14:20 - 2014-07-13 14:21 - 27843432 _____ (pdfforge ) C:\Users\Fabian\Downloads\PDFCreator-1_7_3_setup.exe 2014-07-10 22:34 - 2014-07-18 17:43 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SpinTires 2014-07-10 22:34 - 2014-06-30 04:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-07-10 22:34 - 2014-06-30 04:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-07-10 22:34 - 2014-06-20 22:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-07-10 22:34 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-07-10 22:34 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-07-10 22:34 - 2014-06-19 03:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-07-10 22:34 - 2014-06-19 03:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-07-10 22:34 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-07-10 22:34 - 2014-06-19 02:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-07-10 22:34 - 2014-06-19 02:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-07-10 22:34 - 2014-06-19 02:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-07-10 22:34 - 2014-06-19 02:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-07-10 22:34 - 2014-06-19 02:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-07-10 22:34 - 2014-06-19 02:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-07-10 22:34 - 2014-06-19 02:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-07-10 22:34 - 2014-06-19 02:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-07-10 22:34 - 2014-06-19 02:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-07-10 22:34 - 2014-06-19 02:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-07-10 22:34 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-07-10 22:34 - 2014-06-19 02:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-07-10 22:34 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-07-10 22:34 - 2014-06-19 01:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-07-10 22:34 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-07-10 22:34 - 2014-06-19 01:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-07-10 22:34 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-07-10 22:34 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-07-10 22:34 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-07-10 22:34 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-07-10 22:34 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-07-10 22:34 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-07-10 22:34 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-07-10 22:34 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-07-10 22:34 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-07-10 22:34 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-07-10 22:34 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-07-10 22:34 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-07-10 22:34 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-07-10 22:34 - 2014-06-19 01:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-07-10 22:34 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-07-10 22:34 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-07-10 22:34 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-07-10 22:34 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-07-10 22:34 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-07-10 22:34 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-07-10 22:34 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-07-10 22:34 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-07-10 22:34 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-07-10 22:34 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-07-10 22:34 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-07-10 22:34 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-07-10 22:34 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-07-10 22:34 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-07-10 22:34 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-07-10 22:34 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-07-10 22:34 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-07-10 22:34 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-07-10 22:34 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-07-10 22:34 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-07-10 22:34 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe 2014-07-10 22:34 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe 2014-07-10 22:34 - 2014-06-18 03:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-07-10 22:34 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2014-07-10 22:34 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2014-07-10 22:34 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-07-10 22:34 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-07-10 22:34 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-07-10 22:34 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-07-10 22:22 - 2014-07-18 16:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security 2014-07-08 20:02 - 2014-07-18 16:20 - 00002501 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk 2014-07-08 19:31 - 2014-07-08 19:31 - 05659136 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2014-07-05 23:00 - 2014-07-15 20:38 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gtk-2.0 2014-07-05 21:58 - 2014-07-15 20:38 - 00000000 ____D () C:\Users\Fabian\.gimp-2.8 2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gegl-0.2 2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.thumbnails 2014-07-05 14:11 - 2014-07-05 14:11 - 00000736 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk 2014-07-05 14:07 - 2014-07-05 14:09 - 90396104 _____ (The GIMP Team ) C:\Users\Fabian\Downloads\gimp-2.8.10-setup.exe 2014-07-04 22:43 - 2014-07-04 22:43 - 00000000 ____H () C:\Users\Fabian\Documents\Default.rdp 2014-07-02 19:22 - 2014-07-02 19:22 - 00000000 ____D () C:\Users\Fabian\Documents\SniperEliteV2_Benchmark 2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TERA 2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TERA 2014-07-01 18:35 - 2014-07-01 18:35 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Fabian\Downloads\TERASetup.exe 2014-06-30 16:36 - 2014-06-30 16:38 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Notepad++ 2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-06-30 16:35 - 2014-06-30 16:35 - 07674224 _____ () C:\Users\Fabian\Downloads\npp.6.6.7.Installer.exe 2014-06-29 18:03 - 2014-06-29 18:03 - 00004932 _____ () C:\Users\Fabian\Downloads\bibanator_csgo_gaming_cfg_13-06-2014.rar 2014-06-28 17:09 - 2014-06-28 17:09 - 00000286 _____ () C:\Windows\Cm112.ini.imi 2014-06-28 17:09 - 2014-06-28 17:09 - 00000235 _____ () C:\Windows\system\Cm112.ini 2014-06-28 17:09 - 2014-06-28 17:09 - 00000185 _____ () C:\Windows\Cm112.ini.cfl 2014-06-28 17:09 - 2014-06-28 17:09 - 00000137 _____ () C:\Windows\system\Dlap.pfx 2014-06-28 17:09 - 2013-05-28 16:56 - 00151552 _____ () C:\Windows\system\3DG4me.exe 2014-06-28 17:09 - 2012-06-06 09:56 - 00143360 _____ () C:\Windows\system\3DG4me.dll 2014-06-28 17:09 - 2012-01-31 10:26 - 00122096 _____ (HID Dll) C:\Windows\system\CM_HID3.dll 2014-06-28 17:09 - 2010-03-23 14:33 - 00001198 _____ () C:\Windows\Cm112.ini.cfg 2014-06-28 17:09 - 2009-12-15 13:58 - 00000678 _____ () C:\Windows\cm112.ini 2014-06-28 17:09 - 2009-07-07 12:02 - 00779776 _____ () C:\Windows\system32\Cmeau112.exe 2014-06-28 17:09 - 2009-04-08 14:22 - 00354304 _____ () C:\Windows\system32\CmiInstallResAll64.dll 2014-06-28 17:09 - 2007-10-22 14:18 - 00004608 ___SH () C:\Windows\Thumbs.db 2014-06-28 17:08 - 2014-06-28 17:08 - 16873491 _____ () C:\Users\Fabian\Downloads\3D_G4ME_1_Driver_V1_4.zip ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-07-27 17:55 - 2014-07-26 16:24 - 00016705 _____ () C:\Users\Fabian\Desktop\FRST.txt 2014-07-27 17:55 - 2014-07-26 15:17 - 00000000 ____D () C:\FRST 2014-07-27 17:51 - 2014-07-27 17:51 - 00000759 _____ () C:\Users\Fabian\Desktop\JRT.txt 2014-07-27 17:51 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-07-27 17:51 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-07-27 17:50 - 2011-04-12 09:43 - 00768310 _____ () C:\Windows\system32\perfh007.dat 2014-07-27 17:50 - 2011-04-12 09:43 - 00176066 _____ () C:\Windows\system32\perfc007.dat 2014-07-27 17:50 - 2009-07-14 07:13 - 01815616 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-07-27 17:46 - 2014-07-27 17:46 - 00000000 ____D () C:\Windows\ERUNT 2014-07-27 17:44 - 2014-07-27 17:44 - 00000985 _____ () C:\Users\Fabian\Desktop\AdwCleaner[S0].txt 2014-07-27 17:44 - 2014-07-27 17:35 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-07-27 17:44 - 2014-07-25 09:20 - 00002066 _____ () C:\Windows\setupact.log 2014-07-27 17:44 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\VMware 2014-07-27 17:44 - 2014-06-08 00:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Raptr 2014-07-27 17:44 - 2014-06-07 23:41 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TS3Client 2014-07-27 17:44 - 2014-06-07 22:31 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs 2014-07-27 17:44 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-07-27 17:43 - 2014-07-27 17:43 - 00000314 _____ () C:\Windows\PFRO.log 2014-07-27 17:43 - 2014-06-07 21:49 - 01185408 _____ () C:\Windows\WindowsUpdate.log 2014-07-27 17:42 - 2014-07-27 17:41 - 00000000 ____D () C:\AdwCleaner 2014-07-27 17:40 - 2014-07-27 17:40 - 00001293 _____ () C:\Users\Fabian\Desktop\mbam.txt 2014-07-27 17:38 - 2014-07-27 17:38 - 01354223 _____ () C:\Users\Fabian\Desktop\adwcleaner_3.216.exe 2014-07-27 17:38 - 2014-07-27 17:38 - 01016261 _____ (Thisisu) C:\Users\Fabian\Downloads\JRT.exe 2014-07-27 17:35 - 2014-07-27 17:35 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Fabian\Downloads\mbam-setup-2.0.2.1012.exe 2014-07-27 17:35 - 2014-07-27 17:35 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-07-27 17:34 - 2014-06-08 10:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CrashDumps 2014-07-27 17:34 - 2014-06-07 23:28 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys 2014-07-26 19:54 - 2014-06-09 13:27 - 00000004 _____ () C:\Windows\SysWOW64\GVTunner.ref 2014-07-26 19:54 - 2014-06-07 23:28 - 00030528 _____ () C:\Windows\GVTDrv64.sys 2014-07-26 17:31 - 2014-06-08 00:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-07-26 15:18 - 2014-07-26 16:24 - 00047970 _____ () C:\Users\Fabian\Desktop\Addition.txt 2014-07-26 15:18 - 2014-07-26 15:18 - 00073370 _____ () C:\Users\Fabian\Downloads\FRST.txt 2014-07-26 15:18 - 2014-07-26 15:18 - 00047970 _____ () C:\Users\Fabian\Downloads\Addition.txt 2014-07-26 15:16 - 2014-07-26 15:16 - 02093568 _____ (Farbar) C:\Users\Fabian\Desktop\FRST64.exe 2014-07-26 14:47 - 2014-07-26 14:47 - 00002850 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.txt 2014-07-26 14:38 - 2014-07-26 14:38 - 09612114 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.mcf 2014-07-26 14:28 - 2014-06-08 00:53 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-07-26 14:27 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\SecTaskMan 2014-07-26 14:27 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\TEMP 2014-07-26 14:22 - 2014-07-26 14:22 - 00002634 _____ () C:\Users\Fabian\Downloads\Winmgmt.reg 2014-07-26 11:44 - 2014-07-26 11:44 - 00000766 _____ () C:\Users\Fabian\Desktop\Security Task Manager.lnk 2014-07-26 11:44 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager 2014-07-26 11:43 - 2014-07-26 11:43 - 02365840 _____ () C:\Users\Fabian\Downloads\SecurityTaskManager_Setup-1.8g.exe 2014-07-25 21:02 - 2014-07-25 13:52 - 00000776 _____ () C:\Windows\LkmdfCoInst.log 2014-07-25 21:02 - 2014-06-08 00:27 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SteelSeries 2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SteelSeries_ApS 2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries 2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\ProgramData\SteelSeries 2014-07-25 20:52 - 2014-07-25 20:51 - 53001320 _____ () C:\Users\Fabian\Downloads\SteelSeriesEngine_2.8.0450.exe 2014-07-25 20:49 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-07-25 15:04 - 2014-07-24 22:56 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VMware 2014-07-25 15:03 - 2014-07-24 22:56 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\VMware 2014-07-25 14:55 - 2014-07-25 14:49 - 412172288 _____ () C:\Users\Fabian\Downloads\kav_rescue_10.iso 2014-07-25 14:09 - 2014-07-25 14:09 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Simply Super Software 2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\Users\Fabian\Documents\Simply Super Software 2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\Licenses 2014-07-25 14:04 - 2014-07-25 14:04 - 00000782 _____ () C:\Users\Public\Desktop\Trojan Remover.lnk 2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Simply Super Software 2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover 2014-07-25 14:02 - 2014-07-25 14:02 - 21407864 _____ (Simply Super Software ) C:\Users\Fabian\Downloads\trjsetup690.exe 2014-07-25 09:20 - 2014-07-25 09:20 - 00000000 _____ () C:\Windows\setuperr.log 2014-07-25 00:12 - 2014-07-24 23:31 - 1017118720 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-i386.iso 2014-07-24 23:25 - 2014-07-24 22:57 - 1010827264 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-amd64.iso 2014-07-24 23:01 - 2014-07-24 23:01 - 00000038 _____ () C:\Users\Fabian\Desktop\Neues Textdokument.txt 2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware 2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-07-24 22:56 - 2014-06-07 21:53 - 01835572 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-07-24 22:53 - 2014-07-24 22:50 - 98900000 _____ (VMware, Inc.) C:\Users\Fabian\Downloads\VMware-player-6.0.3-1895310.exe 2014-07-24 22:30 - 2014-07-24 22:30 - 03736040 _____ (Piriform Ltd) C:\Users\Fabian\Downloads\ccsetup415_slim.exe 2014-07-24 22:30 - 2014-07-24 22:30 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-07-24 22:30 - 2014-07-24 22:30 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-07-24 22:30 - 2014-07-24 21:50 - 00000000 ____D () C:\Program Files\CCleaner 2014-07-24 22:28 - 2014-07-24 21:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\NPE 2014-07-24 22:27 - 2014-07-24 21:11 - 00000000 ____D () C:\NPE 2014-07-24 22:06 - 2014-07-24 20:24 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} 2014-07-24 22:06 - 2014-07-24 20:20 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\DVDVideoSoft 2014-07-24 22:06 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder 2014-07-24 22:06 - 2014-07-24 13:09 - 00000000 ____D () C:\Program Files\TAP-Windows 2014-07-24 22:06 - 2014-07-24 13:09 - 00000000 ____D () C:\Program Files\CyberGhost 5 2014-07-24 22:06 - 2014-07-21 15:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons 2014-07-24 22:06 - 2014-07-15 20:13 - 00000000 ____D () C:\Users\Fabian\Desktop\Angebot 2014-07-24 22:06 - 2014-07-14 22:24 - 00000000 ____D () C:\Users\Fabian\Desktop\Website [HTML,CSS] 2014-07-24 22:06 - 2014-07-14 22:24 - 00000000 ____D () C:\Users\Fabian\Desktop\Taschenrechner 2 2014-07-24 22:06 - 2014-07-14 22:23 - 00000000 ____D () C:\Users\Fabian\Desktop\C# 2014-07-24 22:06 - 2014-06-18 16:26 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Rainmeter 2014-07-24 22:06 - 2014-06-12 21:10 - 00000000 __RHD () C:\MSOCache 2014-07-24 22:06 - 2014-06-08 00:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4 2014-07-24 22:06 - 2014-06-07 23:43 - 00000000 ____D () C:\ProgramData\Origin 2014-07-24 22:06 - 2014-06-07 23:32 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Mozilla 2014-07-24 22:06 - 2014-06-07 22:12 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Help 2014-07-24 22:06 - 2014-06-07 22:00 - 00000000 ____D () C:\ProgramData\Norton 2014-07-24 22:06 - 2014-06-07 21:49 - 00000000 ____D () C:\Users\Fabian 2014-07-24 22:06 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-07-24 22:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-07-24 21:51 - 2014-06-07 22:44 - 00000000 ____D () C:\Windows\Panther 2014-07-24 21:50 - 2014-07-24 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-07-24 20:56 - 2014-07-24 20:24 - 00000000 ____D () C:\ProgramData\TuneUp Software 2014-07-24 20:37 - 2014-07-24 20:37 - 01243655 _____ () C:\Users\Fabian\Downloads\ProcessExplorer.zip 2014-07-24 20:24 - 2014-07-24 20:24 - 00000000 ____D () C:\Users\Fabian\AppData\Local\TuneUp Software 2014-07-24 19:28 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Mediatronic 2014-07-24 14:30 - 2014-07-24 14:30 - 00458649 _____ () C:\Users\Fabian\Downloads\imagetomp3_22632.zip 2014-07-24 14:09 - 2014-07-24 14:09 - 00000000 ____D () C:\ProgramData\Ashampoo 2014-07-24 14:01 - 2014-07-24 14:01 - 04264137 _____ () C:\Users\Fabian\Downloads\acfpc71.zip 2014-07-24 13:52 - 2014-07-24 13:52 - 05001832 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part5.rar 2014-07-24 13:52 - 2014-07-24 13:48 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part4.rar 2014-07-24 13:47 - 2014-07-24 13:43 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part3.rar 2014-07-24 13:42 - 2014-07-24 13:39 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part2.rar 2014-07-24 13:38 - 2014-07-24 13:34 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part1.rar 2014-07-24 13:10 - 2014-07-24 13:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CyberGhost 2014-07-24 13:10 - 2014-06-07 21:49 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VirtualStore 2014-07-23 22:46 - 2014-07-23 22:45 - 40153667 _____ () C:\Users\Fabian\Downloads\BladeSlapSND-v11.zip 2014-07-23 21:49 - 2014-07-23 21:42 - 282762749 _____ () C:\Users\Fabian\Downloads\H_S_Design_EC135_X.zip 2014-07-23 21:45 - 2014-07-23 21:43 - 44357952 _____ () C:\Users\Fabian\Downloads\Zeppelin_NT_FSX.zip 2014-07-23 16:29 - 2014-07-19 13:25 - 00000000 ____D () C:\Users\Fabian\Documents\Flight Simulator X-Dateien 2014-07-22 16:08 - 2014-07-22 16:07 - 45031920 _____ () C:\Users\Fabian\Downloads\HC075DI_AS332L2_FSX_ACCELERATION.zip 2014-07-21 23:25 - 2014-07-21 23:25 - 00000000 ____D () C:\ProgramData\newrestore 2014-07-21 23:24 - 2014-07-21 23:24 - 00000000 ____D () C:\ProgramData\logsaver 2014-07-21 23:23 - 2014-07-21 23:23 - 00000000 ____D () C:\ProgramData\managecapsule 2014-07-21 23:20 - 2014-07-13 14:20 - 00000000 ____D () C:\Users\Fabian\Desktop\Bewerbungen+Lebensläufe Nach der Schule 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\newbackup 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\launcher 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\ibackupvhd 2014-07-21 18:51 - 2014-07-21 18:51 - 00000000 ____D () C:\ProgramData\rmbwizard 2014-07-21 18:49 - 2014-07-21 18:49 - 00000000 ____D () C:\ProgramData\explauncher 2014-07-21 17:56 - 2014-07-21 17:53 - 156439928 _____ () C:\Users\Fabian\Downloads\FSX Concorde 2011 FULL collection.zip 2014-07-21 17:39 - 2014-07-21 16:36 - 00000000 ____D () C:\ProgramData\InstallMate 2014-07-21 17:35 - 2014-07-21 17:33 - 18635685 _____ () C:\Users\Fabian\Downloads\edgley_optica_fsx_p3d.zip 2014-07-21 17:30 - 2014-07-21 17:26 - 24181036 _____ () C:\Users\Fabian\Downloads\fsnd_citationx_ultra_package_fsx_p3d.zip 2014-07-21 17:22 - 2014-07-21 17:20 - 12016313 _____ () C:\Users\Fabian\Downloads\bombardier_canadair_cl-215_v3.0x_fsx_p3d.zip 2014-07-21 17:20 - 2014-07-21 17:17 - 22743374 _____ () C:\Users\Fabian\Downloads\icon_aircraft_a5_fsx_sp2_acc_p3d.zip 2014-07-21 17:16 - 2014-07-21 17:04 - 83022300 _____ () C:\Users\Fabian\Downloads\raf_hawker_siddeley_nimrod_package_for_fsx.zip 2014-07-21 17:04 - 2014-07-21 16:45 - 127624268 _____ () C:\Users\Fabian\Downloads\lufthansa_pack_fsx_p3d.zip 2014-07-21 16:45 - 2014-07-21 16:43 - 11509540 _____ () C:\Users\Fabian\Downloads\northrop_b-2a_spirit_alphasim_fsx_p3d.zip 2014-07-21 16:41 - 2014-07-21 16:35 - 43827756 _____ () C:\Users\Fabian\Downloads\hughes_oh-6_series_fsx.zip 2014-07-21 16:34 - 2014-07-21 16:26 - 52576126 _____ () C:\Users\Fabian\Downloads\enstrom_280fx_fsx.zip 2014-07-21 16:26 - 2014-07-21 16:24 - 15873135 _____ () C:\Users\Fabian\Downloads\ukmil_boeing_chinook_hc2_fsx_p3d.zip 2014-07-21 15:35 - 2014-07-21 15:31 - 28344613 _____ () C:\Users\Fabian\Downloads\tom_airbus_a300-beluga_fsx.zip 2014-07-21 12:31 - 2014-07-21 12:31 - 16573534 _____ () C:\Users\Fabian\Downloads\Piaggio P-180 Avanti.zip 2014-07-21 12:30 - 2014-07-21 12:29 - 26477706 _____ () C:\Users\Fabian\Downloads\Antonov AN-124.zip 2014-07-21 12:19 - 2014-07-21 12:19 - 27097674 _____ () C:\Users\Fabian\Downloads\dhc8-q400_x.zip 2014-07-21 12:11 - 2014-07-21 12:11 - 03042305 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Qantas Link.zip 2014-07-21 12:11 - 2014-07-21 12:10 - 21014993 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Basepack.zip 2014-07-20 21:31 - 2014-07-20 21:30 - 00166078 _____ () C:\Users\Fabian\Downloads\FPS_Limiter_0.2.rar 2014-07-20 21:13 - 2014-07-20 21:10 - 174078464 _____ () C:\Users\Fabian\Downloads\fsx_sp2_DEU.msi 2014-07-20 16:03 - 2014-07-20 16:02 - 09006434 _____ () C:\Users\Fabian\Downloads\texture.sunexpress.zip 2014-07-20 13:11 - 2014-07-20 12:57 - 18273643 _____ () C:\Users\Fabian\Downloads\B737-500Lufthansa.zip 2014-07-20 13:01 - 2014-07-20 12:56 - 14699938 _____ () C:\Users\Fabian\Downloads\a321.zip 2014-07-20 12:45 - 2009-07-14 06:45 - 00420568 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-07-19 15:09 - 2014-07-19 14:31 - 113183445 _____ () C:\Users\Fabian\Downloads\dlh737-700-FSX.zip 2014-07-19 14:37 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Ubisoft Game Launcher 2014-07-19 14:36 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2014-07-19 14:36 - 2014-07-19 14:35 - 61513304 _____ (Ubisoft) C:\Users\Fabian\Downloads\UplayInstaller.exe 2014-07-19 14:02 - 2014-06-07 23:29 - 00110904 _____ () C:\Users\Fabian\AppData\Local\GDIPFONTCACHEV1.DAT 2014-07-19 14:00 - 2014-07-19 14:00 - 01099187 _____ () C:\Users\Fabian\Downloads\3repaints-SpruceGoose.zip 2014-07-19 13:59 - 2014-07-19 13:56 - 230008963 _____ () C:\Users\Fabian\Downloads\ACJ_AirbusA380MegaPackage.zip 2014-07-19 13:33 - 2014-07-19 13:33 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Game Studios 2014-07-19 12:49 - 2014-07-19 12:49 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0 2014-07-19 12:49 - 2014-06-07 21:53 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-07-18 17:43 - 2014-07-10 22:34 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SpinTires 2014-07-18 16:33 - 2014-06-08 00:37 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Arma 3 2014-07-18 16:25 - 2014-07-18 16:25 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security 2014-07-18 16:20 - 2014-07-10 22:22 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security 2014-07-18 16:20 - 2014-07-08 20:02 - 00002501 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk 2014-07-18 16:20 - 2014-06-07 22:00 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration 2014-07-18 16:20 - 2014-06-07 22:00 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64 2014-07-17 20:04 - 2014-06-08 00:28 - 00000000 ____D () C:\ProgramData\Oracle 2014-07-17 20:03 - 2014-07-17 20:03 - 00004251 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log 2014-07-17 20:03 - 2014-07-17 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-07-17 19:20 - 2014-07-17 19:20 - 00000000 ____D () C:\ProgramData\Riot Games 2014-07-15 21:10 - 2014-07-15 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Temporary Projects 2014-07-15 20:53 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Deployment 2014-07-15 20:52 - 2014-07-15 20:52 - 00343896 _____ () C:\Users\Fabian\Downloads\publish.7z 2014-07-15 20:52 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Apps\2.0 2014-07-15 20:51 - 2014-07-14 22:22 - 00000000 ____D () C:\Users\Fabian\Documents\Visual Studio 2010 2014-07-15 20:38 - 2014-07-15 20:38 - 00008377 _____ () C:\Users\Fabian\AppData\Local\recently-used.xbel 2014-07-15 20:38 - 2014-07-05 23:00 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gtk-2.0 2014-07-15 20:38 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.gimp-2.8 2014-07-15 19:35 - 2014-07-15 19:35 - 00000000 ____D () C:\Windows\system32\RsFx 2014-07-15 19:35 - 2014-07-15 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 2014-07-15 19:35 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft SQL Server 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1033 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1031 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1033 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1031 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0 2014-07-15 19:34 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server 2014-07-15 19:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\AntMe 2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\AntMe!_Ltd 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Windows\symbols 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs 2014-07-14 22:13 - 2014-07-14 22:13 - 03277648 _____ (Microsoft Corporation) C:\Users\Fabian\Downloads\vcRaute_web.exe 2014-07-14 22:12 - 2014-07-14 22:12 - 02182278 _____ () C:\Users\Fabian\Downloads\C#.7z 2014-07-14 22:12 - 2014-07-14 22:12 - 01754045 _____ () C:\Users\Fabian\Downloads\Website [HTML,CSS].7z 2014-07-14 22:12 - 2014-07-14 22:12 - 00023090 _____ () C:\Users\Fabian\Downloads\Taschenrechner 2.7z 2014-07-13 14:22 - 2014-07-13 14:22 - 00000678 _____ () C:\Users\Public\Desktop\PDFCreator.lnk 2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\PDF Architect 2 2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2014-07-13 14:21 - 2014-07-13 14:20 - 27843432 _____ (pdfforge ) C:\Users\Fabian\Downloads\PDFCreator-1_7_3_setup.exe 2014-07-12 22:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-07-11 18:58 - 2014-06-07 23:23 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-07-11 18:58 - 2011-04-12 09:55 - 00000000 ____D () C:\Program Files\Windows Journal 2014-07-11 18:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism 2014-07-11 18:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism 2014-07-11 03:02 - 2014-06-08 00:28 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-07-11 02:56 - 2014-06-08 00:28 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-07-11 02:56 - 2014-06-08 00:28 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-07-11 02:55 - 2014-06-08 00:28 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-07-10 22:57 - 2014-06-07 22:37 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-07-10 22:57 - 2014-06-07 22:37 - 00000000 ____D () C:\Windows\system32\MRT 2014-07-08 20:02 - 2014-06-07 22:00 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 2014-07-08 20:02 - 2014-06-07 22:00 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT 2014-07-08 20:02 - 2014-06-07 22:00 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security 2014-07-08 19:31 - 2014-07-08 19:31 - 05659136 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2014-07-08 19:31 - 2014-06-08 00:36 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-07-08 19:31 - 2014-06-08 00:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-07-08 19:31 - 2014-06-08 00:36 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-07-06 20:43 - 2014-06-08 00:33 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Spotify 2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gegl-0.2 2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.thumbnails 2014-07-05 14:11 - 2014-07-05 14:11 - 00000736 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk 2014-07-05 14:09 - 2014-07-05 14:07 - 90396104 _____ (The GIMP Team ) C:\Users\Fabian\Downloads\gimp-2.8.10-setup.exe 2014-07-04 22:43 - 2014-07-04 22:43 - 00000000 ____H () C:\Users\Fabian\Documents\Default.rdp 2014-07-03 17:17 - 2014-06-08 00:34 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Spotify 2014-07-02 19:22 - 2014-07-02 19:22 - 00000000 ____D () C:\Users\Fabian\Documents\SniperEliteV2_Benchmark 2014-07-02 18:04 - 2014-06-08 18:22 - 00000000 ____D () C:\Users\Fabian\Documents\Euro Truck Simulator 2 2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TERA 2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TERA 2014-07-01 18:35 - 2014-07-01 18:35 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Fabian\Downloads\TERASetup.exe 2014-06-30 16:38 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Notepad++ 2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-06-30 16:35 - 2014-06-30 16:35 - 07674224 _____ () C:\Users\Fabian\Downloads\npp.6.6.7.Installer.exe 2014-06-30 04:09 - 2014-07-10 22:34 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-06-30 04:04 - 2014-07-10 22:34 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-06-29 18:03 - 2014-06-29 18:03 - 00004932 _____ () C:\Users\Fabian\Downloads\bibanator_csgo_gaming_cfg_13-06-2014.rar 2014-06-29 17:19 - 2014-06-25 19:22 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SniperV2 2014-06-28 17:09 - 2014-06-28 17:09 - 00000286 _____ () C:\Windows\Cm112.ini.imi 2014-06-28 17:09 - 2014-06-28 17:09 - 00000235 _____ () C:\Windows\system\Cm112.ini 2014-06-28 17:09 - 2014-06-28 17:09 - 00000185 _____ () C:\Windows\Cm112.ini.cfl 2014-06-28 17:09 - 2014-06-28 17:09 - 00000137 _____ () C:\Windows\system\Dlap.pfx 2014-06-28 17:09 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system 2014-06-28 17:08 - 2014-06-28 17:08 - 16873491 _____ () C:\Users\Fabian\Downloads\3D_G4ME_1_Driver_V1_4.zip Some content of TEMP: ==================== C:\Users\Fabian\AppData\Local\Temp\Quarantine.exe C:\Users\Fabian\AppData\Local\Temp\x2blapi.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-07-18 18:06 ==================== End Of Log ============================ --- --- --- MIr fällt gerade auf, nachdem ich den AdwCleaner nochaml laufen gelassen hab, dass Eine bestimmt Sache im Firefox immer noch gefunden wird. Ich habe den Firefox zurückgesetzt leider ohne Erfolg der Eintrag ist immer noch da. Die Log Datei folgt: Code:
ATTFilter # AdwCleaner v3.216 - Bericht erstellt am 27/07/2014 um 19:13:17
# Aktualisiert 17/07/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Fabian - FABIAN-PC
# Gestartet von : C:\Users\Fabian\Desktop\adwcleaner_3.216.exe
# Option : Suchen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Datei Gefunden : C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\lrx9igff.default-1406481139719\searchplugins\safesearch.xml
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17207
-\\ Mozilla Firefox v30.0 (de)
[ Datei : C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\lrx9igff.default-1406481139719\prefs.js ]
*************************
AdwCleaner[R0].txt - [925 octets] - [27/07/2014 17:41:40]
AdwCleaner[R1].txt - [931 octets] - [27/07/2014 19:05:58]
AdwCleaner[R2].txt - [1049 octets] - [27/07/2014 19:07:58]
AdwCleaner[R3].txt - [1002 octets] - [27/07/2014 19:13:17]
AdwCleaner[S0].txt - [985 octets] - [27/07/2014 17:42:48]
AdwCleaner[S1].txt - [991 octets] - [27/07/2014 19:06:21]
########## EOF - C:\AdwCleaner\AdwCleaner[R3].txt - [1180 octets] ##########
|
|
27.07.2014, 20:34
| #5 |
| /// the machine /// TB-Ausbilder | Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! Revo Uninstaller - Download - Filepony damit Firefox deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren. Dann: https://support.mozilla.org/de/kb/fi...einfach-loesen ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.07.2014, 23:15
| #6 |
| | Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! So auch erledigt: Eset log file: Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=7ac00d26a46b544c8b587b09b2ecaddf
# engine=19373
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-07-27 09:09:40
# local_time=2014-07-27 11:09:40 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Norton Internet Security'
# compatibility_mode=3597 16777213 100 100 167743 169091965 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 4319147 158125230 0 0
# scanned=505410
# found=1
# cleaned=0
# scan_time=4639
sh=E2C028A886AA7352539DEE32CBB38770C529A76E ft=1 fh=d2aeb2930bcba9f7 vn="Win32/InstallMonetizer.AQ potentially unwanted application" ac=I fn="C:\Users\Fabian\Downloads\PDFCreator-1_7_3_setup.exe"
Code:
ATTFilter ke Results of screen317's Security Check version 0.99.85 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Norton Internet Security WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Trojan Remover 6.9.1.2931 Java 7 Update 60 Adobe Flash Player 14.0.0.145 Adobe Reader XI Mozilla Firefox (31.0) Mozilla Thunderbird (24.5.0) ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbam.exe Malwarebytes Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-07-2014 Ran by Fabian (administrator) on FABIAN-PC on 27-07-2014 23:17:59 Running from C:\Users\Fabian\Desktop Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.) D:\Programme\VMWare\vmware-authd.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe () C:\Windows\system\3DG4me.exe (Spotify Ltd) C:\Users\Fabian\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe () D:\Programme\RocketDock\RocketDock.exe (TeamSpeak Systems GmbH) D:\Programme\Teamspeak 3\ts3client_win64.exe (Valve Corporation) D:\Programme\Steam\Steam.exe (SteelSeries ApS) D:\Programme\SteelSeries Engine\SteelSeriesEngine.exe () C:\Program Files\Rainmeter\Rainmeter.exe (VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe (Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Microsoft Corporation) C:\Windows\System32\prevhost.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmprph.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.) HKLM\...\Run: [3DG4me] => C:\Windows\System\3DG4me.exe [151552 2013-05-28] () HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5263504 2012-08-09] (VIA) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation) HKLM-x32\...\Run: [TrojanScanner] => D:\Programme\Trojan Remover\Trjscan.exe [1666432 2014-07-25] (Simply Super Software) HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Spotify Web Helper] => C:\Users\Fabian\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-28] (Spotify Ltd) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-06-24] (Raptr, Inc) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [RocketDock] => D:\Programme\RocketDock\RocketDock.exe [495616 2007-09-02] () HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [TeamSpeak 3 Client] => D:\Programme\Teamspeak 3\ts3client_win64.exe [10762696 2014-03-12] (TeamSpeak Systems GmbH) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [Steam] => D:\Programme\Steam\steam.exe [1753280 2014-07-16] (Valve Corporation) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\Run: [SteelSeries Engine] => D:\Programme\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-06-26] (SteelSeries ApS) HKU\S-1-5-21-3541832501-104971692-278002161-1000\...\MountPoints2: {1c91139b-ee7c-11e3-b48b-806e6f6e6963} - E:\SETUP.EXE Startup: C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) SearchScopes: HKLM-x32 - DefaultScope value is missing. BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation) BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation) BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programme\Java\bin\ssv.dll (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Programme\Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\665qva7w.default-1406490486418 FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL No File FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll () FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - D:\Programme\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - D:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - D:\PROGRA~1\Office\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - D:\PROGRA~1\Office\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\IPSFF FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\IPSFF [2014-07-10] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-06-08] () [File not signed] S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed] S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed] S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation) R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-06-10] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-15] () S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation) R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-03] (VIA Technologies, Inc.) R2 VMAuthdService; D:\Programme\VMWare\vmware-authd.exe [86744 2014-06-12] (VMware, Inc.) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] () R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\BASHDefs\20140718.001_e68\BHDrvx64.sys [1530160 2014-07-18] (Symantec Corporation) R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-08] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142128 2014-07-08] (Symantec Corporation) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-07-26] () R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\IPSDefs\20140725.001\IDSvia64.sys [525016 2014-07-23] (Symantec Corporation) R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [110744 2012-07-19] (Qualcomm Atheros Co., Ltd.) S3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.) R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-27] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation) R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20140727.002\ENG64.SYS [126040 2014-07-24] (Symantec Corporation) R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20140727.002\EX64.SYS [2099288 2014-07-24] (Symantec Corporation) R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [39168 2014-05-27] (SteelSeries Corporation) R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-13] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-10-30] (Symantec Corporation) R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-10-30] (Symantec Corporation) R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-08] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-10-30] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-18] (Symantec Corporation) R3 USBADVAU; C:\Windows\System32\drivers\cm11264.sys [1308160 2009-11-25] (C-Media Electronics Inc) R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [32472 2014-06-12] (VMware, Inc.) R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-07-27 21:47 - 2014-07-27 21:47 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-07-27 21:47 - 2014-07-27 21:47 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-07-27 21:47 - 2014-07-27 21:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-07-27 21:45 - 2014-07-27 21:45 - 00244408 _____ () C:\Users\Fabian\Downloads\Firefox Setup Stub 31.0.exe 2014-07-27 21:41 - 2014-07-27 21:41 - 00854390 _____ () C:\Users\Fabian\Desktop\SecurityCheck.exe 2014-07-27 21:40 - 2014-07-27 21:40 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Fabian\Downloads\revosetup95.exe 2014-07-27 21:40 - 2014-07-27 21:40 - 00000723 _____ () C:\Users\Fabian\Desktop\Revo Uninstaller.lnk 2014-07-27 19:35 - 2014-07-27 19:35 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-07-27 19:34 - 2014-07-27 19:34 - 02347384 _____ (ESET) C:\Users\Fabian\Desktop\esetsmartinstaller_enu.exe 2014-07-27 19:33 - 2014-07-27 19:33 - 00001802 _____ () C:\sc-cleaner.txt 2014-07-27 19:32 - 2014-07-27 19:32 - 00441592 _____ (Bleeping Computer, LLC) C:\Users\Fabian\Downloads\sc-cleaner.exe 2014-07-27 17:51 - 2014-07-27 17:51 - 00000759 _____ () C:\Users\Fabian\Desktop\JRT.txt 2014-07-27 17:46 - 2014-07-27 17:46 - 00000000 ____D () C:\Windows\ERUNT 2014-07-27 17:44 - 2014-07-27 17:44 - 00000985 _____ () C:\Users\Fabian\Desktop\AdwCleaner[S0].txt 2014-07-27 17:43 - 2014-07-27 19:16 - 00000938 _____ () C:\Windows\PFRO.log 2014-07-27 17:41 - 2014-07-27 19:17 - 00000000 ____D () C:\AdwCleaner 2014-07-27 17:40 - 2014-07-27 17:40 - 00001293 _____ () C:\Users\Fabian\Desktop\mbam.txt 2014-07-27 17:38 - 2014-07-27 17:38 - 01354223 _____ () C:\Users\Fabian\Desktop\adwcleaner_3.216.exe 2014-07-27 17:38 - 2014-07-27 17:38 - 01016261 _____ (Thisisu) C:\Users\Fabian\Downloads\JRT.exe 2014-07-27 17:35 - 2014-07-27 21:14 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-07-27 17:35 - 2014-07-27 19:17 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-07-27 17:35 - 2014-07-27 17:35 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Fabian\Downloads\mbam-setup-2.0.2.1012.exe 2014-07-27 17:35 - 2014-07-27 17:35 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-07-27 17:35 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-07-27 17:35 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-07-27 17:35 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-07-26 16:24 - 2014-07-27 23:17 - 00079108 _____ () C:\Users\Fabian\Desktop\iFRST.txt 2014-07-26 16:24 - 2014-07-27 23:17 - 00016641 _____ () C:\Users\Fabian\Desktop\FRST.txt 2014-07-26 16:24 - 2014-07-27 17:55 - 00076908 _____ () C:\Users\Fabian\Desktop\alt FRST.txt 2014-07-26 16:24 - 2014-07-26 15:18 - 00047970 _____ () C:\Users\Fabian\Desktop\Addition.txt 2014-07-26 15:18 - 2014-07-26 15:18 - 00073370 _____ () C:\Users\Fabian\Downloads\FRST.txt 2014-07-26 15:18 - 2014-07-26 15:18 - 00047970 _____ () C:\Users\Fabian\Downloads\Addition.txt 2014-07-26 15:17 - 2014-07-27 23:17 - 00000000 ____D () C:\FRST 2014-07-26 15:16 - 2014-07-26 15:16 - 02093568 _____ (Farbar) C:\Users\Fabian\Desktop\FRST64.exe 2014-07-26 14:47 - 2014-07-26 14:47 - 00002850 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.txt 2014-07-26 14:38 - 2014-07-26 14:38 - 09612114 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.mcf 2014-07-26 14:22 - 2014-07-26 14:22 - 00002634 _____ () C:\Users\Fabian\Downloads\Winmgmt.reg 2014-07-26 11:44 - 2014-07-26 14:27 - 00000000 ____D () C:\ProgramData\SecTaskMan 2014-07-26 11:44 - 2014-07-26 11:44 - 00000766 _____ () C:\Users\Fabian\Desktop\Security Task Manager.lnk 2014-07-26 11:44 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager 2014-07-26 11:43 - 2014-07-26 11:43 - 02365840 _____ () C:\Users\Fabian\Downloads\SecurityTaskManager_Setup-1.8g.exe 2014-07-26 11:36 - 2014-03-06 23:53 - 02925760 _____ (Sysinternals - www.sysinternals.com) C:\Users\Fabian\Desktop\procexp.exe 2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SteelSeries 2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SteelSeries_ApS 2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries 2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\ProgramData\SteelSeries 2014-07-25 20:51 - 2014-07-25 20:52 - 53001320 _____ () C:\Users\Fabian\Downloads\SteelSeriesEngine_2.8.0450.exe 2014-07-25 14:49 - 2014-07-25 14:55 - 412172288 _____ () C:\Users\Fabian\Downloads\kav_rescue_10.iso 2014-07-25 14:09 - 2014-07-25 14:09 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Simply Super Software 2014-07-25 14:06 - 2014-07-26 14:27 - 00000000 ____D () C:\ProgramData\TEMP 2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\Users\Fabian\Documents\Simply Super Software 2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\Licenses 2014-07-25 14:04 - 2014-07-25 14:04 - 00000782 _____ () C:\Users\Public\Desktop\Trojan Remover.lnk 2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Simply Super Software 2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover 2014-07-25 14:02 - 2014-07-25 14:02 - 21407864 _____ (Simply Super Software ) C:\Users\Fabian\Downloads\trjsetup690.exe 2014-07-25 13:52 - 2014-07-25 21:02 - 00000776 _____ () C:\Windows\LkmdfCoInst.log 2014-07-25 09:20 - 2014-07-27 19:17 - 00002178 _____ () C:\Windows\setupact.log 2014-07-25 09:20 - 2014-07-25 09:20 - 00000000 _____ () C:\Windows\setuperr.log 2014-07-24 23:31 - 2014-07-25 00:12 - 1017118720 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-i386.iso 2014-07-24 23:01 - 2014-07-27 21:44 - 00001867 _____ () C:\Users\Fabian\Desktop\Neues Textdokument.txt 2014-07-24 22:57 - 2014-07-24 23:25 - 1010827264 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-amd64.iso 2014-07-24 22:56 - 2014-07-27 19:17 - 00000000 ____D () C:\ProgramData\VMware 2014-07-24 22:56 - 2014-07-25 15:04 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VMware 2014-07-24 22:56 - 2014-07-25 15:03 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\VMware 2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware 2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-07-24 22:56 - 2014-06-12 18:23 - 00359128 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe 2014-07-24 22:56 - 2014-06-12 18:23 - 00064728 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys 2014-07-24 22:56 - 2014-06-12 18:22 - 00931032 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll 2014-07-24 22:56 - 2014-06-12 18:22 - 00437976 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe 2014-07-24 22:56 - 2014-06-12 18:22 - 00032472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMparport.sys 2014-07-24 22:56 - 2014-06-12 18:22 - 00031448 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys 2014-07-24 22:56 - 2014-06-12 18:21 - 00033496 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys 2014-07-24 22:56 - 2014-02-27 18:40 - 00054464 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys 2014-07-24 22:56 - 2013-10-08 18:21 - 00073296 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys 2014-07-24 22:56 - 2013-10-08 18:21 - 00067664 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll 2014-07-24 22:56 - 2013-10-08 18:21 - 00063568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll 2014-07-24 22:50 - 2014-07-24 22:53 - 98900000 _____ (VMware, Inc.) C:\Users\Fabian\Downloads\VMware-player-6.0.3-1895310.exe 2014-07-24 22:30 - 2014-07-24 22:30 - 03736040 _____ (Piriform Ltd) C:\Users\Fabian\Downloads\ccsetup415_slim.exe 2014-07-24 22:30 - 2014-07-24 22:30 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-07-24 22:30 - 2014-07-24 22:30 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-07-24 21:50 - 2014-07-24 22:30 - 00000000 ____D () C:\Program Files\CCleaner 2014-07-24 21:50 - 2014-07-24 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-07-24 21:11 - 2014-07-24 22:27 - 00000000 ____D () C:\NPE 2014-07-24 21:10 - 2014-07-24 22:28 - 00000000 ____D () C:\Users\Fabian\AppData\Local\NPE 2014-07-24 20:37 - 2014-07-24 20:37 - 01243655 _____ () C:\Users\Fabian\Downloads\ProcessExplorer.zip 2014-07-24 20:24 - 2014-07-24 22:06 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} 2014-07-24 20:24 - 2014-07-24 20:56 - 00000000 ____D () C:\ProgramData\TuneUp Software 2014-07-24 20:24 - 2014-07-24 20:24 - 00000000 ____D () C:\Users\Fabian\AppData\Local\TuneUp Software 2014-07-24 20:20 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\DVDVideoSoft 2014-07-24 19:28 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder 2014-07-24 19:28 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Mediatronic 2014-07-24 14:30 - 2014-07-24 14:30 - 00458649 _____ () C:\Users\Fabian\Downloads\imagetomp3_22632.zip 2014-07-24 14:09 - 2014-07-24 14:09 - 00000000 ____D () C:\ProgramData\Ashampoo 2014-07-24 14:01 - 2014-07-24 14:01 - 04264137 _____ () C:\Users\Fabian\Downloads\acfpc71.zip 2014-07-24 13:52 - 2014-07-24 13:52 - 05001832 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part5.rar 2014-07-24 13:48 - 2014-07-24 13:52 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part4.rar 2014-07-24 13:43 - 2014-07-24 13:47 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part3.rar 2014-07-24 13:39 - 2014-07-24 13:42 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part2.rar 2014-07-24 13:34 - 2014-07-24 13:38 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part1.rar 2014-07-24 13:10 - 2014-07-24 13:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CyberGhost 2014-07-24 13:09 - 2014-07-24 22:06 - 00000000 ____D () C:\Program Files\TAP-Windows 2014-07-24 13:09 - 2014-07-24 22:06 - 00000000 ____D () C:\Program Files\CyberGhost 5 2014-07-23 22:45 - 2014-07-23 22:46 - 40153667 _____ () C:\Users\Fabian\Downloads\BladeSlapSND-v11.zip 2014-07-23 21:43 - 2014-07-23 21:45 - 44357952 _____ () C:\Users\Fabian\Downloads\Zeppelin_NT_FSX.zip 2014-07-23 21:42 - 2014-07-23 21:49 - 282762749 _____ () C:\Users\Fabian\Downloads\H_S_Design_EC135_X.zip 2014-07-22 16:07 - 2014-07-22 16:08 - 45031920 _____ () C:\Users\Fabian\Downloads\HC075DI_AS332L2_FSX_ACCELERATION.zip 2014-07-21 23:25 - 2014-07-21 23:25 - 00000000 ____D () C:\ProgramData\newrestore 2014-07-21 23:24 - 2014-07-21 23:24 - 00000000 ____D () C:\ProgramData\logsaver 2014-07-21 23:23 - 2014-07-21 23:23 - 00000000 ____D () C:\ProgramData\managecapsule 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\newbackup 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\launcher 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\ibackupvhd 2014-07-21 18:51 - 2014-07-21 18:51 - 00000000 ____D () C:\ProgramData\rmbwizard 2014-07-21 18:49 - 2014-07-21 18:49 - 00000000 ____D () C:\ProgramData\explauncher 2014-07-21 17:53 - 2014-07-21 17:56 - 156439928 _____ () C:\Users\Fabian\Downloads\FSX Concorde 2011 FULL collection.zip 2014-07-21 17:33 - 2014-07-21 17:35 - 18635685 _____ () C:\Users\Fabian\Downloads\edgley_optica_fsx_p3d.zip 2014-07-21 17:26 - 2014-07-21 17:30 - 24181036 _____ () C:\Users\Fabian\Downloads\fsnd_citationx_ultra_package_fsx_p3d.zip 2014-07-21 17:20 - 2014-07-21 17:22 - 12016313 _____ () C:\Users\Fabian\Downloads\bombardier_canadair_cl-215_v3.0x_fsx_p3d.zip 2014-07-21 17:17 - 2014-07-21 17:20 - 22743374 _____ () C:\Users\Fabian\Downloads\icon_aircraft_a5_fsx_sp2_acc_p3d.zip 2014-07-21 17:04 - 2014-07-21 17:16 - 83022300 _____ () C:\Users\Fabian\Downloads\raf_hawker_siddeley_nimrod_package_for_fsx.zip 2014-07-21 16:45 - 2014-07-21 17:04 - 127624268 _____ () C:\Users\Fabian\Downloads\lufthansa_pack_fsx_p3d.zip 2014-07-21 16:43 - 2014-07-21 16:45 - 11509540 _____ () C:\Users\Fabian\Downloads\northrop_b-2a_spirit_alphasim_fsx_p3d.zip 2014-07-21 16:36 - 2014-07-21 17:39 - 00000000 ____D () C:\ProgramData\InstallMate 2014-07-21 16:35 - 2014-07-21 16:41 - 43827756 _____ () C:\Users\Fabian\Downloads\hughes_oh-6_series_fsx.zip 2014-07-21 16:26 - 2014-07-21 16:34 - 52576126 _____ () C:\Users\Fabian\Downloads\enstrom_280fx_fsx.zip 2014-07-21 16:24 - 2014-07-21 16:26 - 15873135 _____ () C:\Users\Fabian\Downloads\ukmil_boeing_chinook_hc2_fsx_p3d.zip 2014-07-21 15:36 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons 2014-07-21 15:31 - 2014-07-21 15:35 - 28344613 _____ () C:\Users\Fabian\Downloads\tom_airbus_a300-beluga_fsx.zip 2014-07-21 12:31 - 2014-07-21 12:31 - 16573534 _____ () C:\Users\Fabian\Downloads\Piaggio P-180 Avanti.zip 2014-07-21 12:29 - 2014-07-21 12:30 - 26477706 _____ () C:\Users\Fabian\Downloads\Antonov AN-124.zip 2014-07-21 12:19 - 2014-07-21 12:19 - 27097674 _____ () C:\Users\Fabian\Downloads\dhc8-q400_x.zip 2014-07-21 12:11 - 2014-07-21 12:11 - 03042305 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Qantas Link.zip 2014-07-21 12:10 - 2014-07-21 12:11 - 21014993 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Basepack.zip 2014-07-20 21:30 - 2014-07-20 21:31 - 00166078 _____ () C:\Users\Fabian\Downloads\FPS_Limiter_0.2.rar 2014-07-20 21:10 - 2014-07-20 21:13 - 174078464 _____ () C:\Users\Fabian\Downloads\fsx_sp2_DEU.msi 2014-07-20 16:02 - 2014-07-20 16:03 - 09006434 _____ () C:\Users\Fabian\Downloads\texture.sunexpress.zip 2014-07-20 12:57 - 2014-07-20 13:11 - 18273643 _____ () C:\Users\Fabian\Downloads\B737-500Lufthansa.zip 2014-07-20 12:56 - 2014-07-20 13:01 - 14699938 _____ () C:\Users\Fabian\Downloads\a321.zip 2014-07-19 14:36 - 2014-07-19 14:37 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Ubisoft Game Launcher 2014-07-19 14:36 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2014-07-19 14:35 - 2014-07-19 14:36 - 61513304 _____ (Ubisoft) C:\Users\Fabian\Downloads\UplayInstaller.exe 2014-07-19 14:31 - 2014-07-19 15:09 - 113183445 _____ () C:\Users\Fabian\Downloads\dlh737-700-FSX.zip 2014-07-19 14:00 - 2014-07-19 14:00 - 01099187 _____ () C:\Users\Fabian\Downloads\3repaints-SpruceGoose.zip 2014-07-19 13:56 - 2014-07-19 13:59 - 230008963 _____ () C:\Users\Fabian\Downloads\ACJ_AirbusA380MegaPackage.zip 2014-07-19 13:33 - 2014-07-19 13:33 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Game Studios 2014-07-19 13:25 - 2014-07-23 16:29 - 00000000 ____D () C:\Users\Fabian\Documents\Flight Simulator X-Dateien 2014-07-19 12:49 - 2014-07-19 12:49 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0 2014-07-18 16:25 - 2014-07-18 16:25 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security 2014-07-17 20:03 - 2014-07-17 20:03 - 00004251 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log 2014-07-17 20:03 - 2014-07-17 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-07-17 19:20 - 2014-07-17 19:20 - 00000000 ____D () C:\ProgramData\Riot Games 2014-07-15 20:53 - 2014-07-15 21:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Temporary Projects 2014-07-15 20:52 - 2014-07-15 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Deployment 2014-07-15 20:52 - 2014-07-15 20:52 - 00343896 _____ () C:\Users\Fabian\Downloads\publish.7z 2014-07-15 20:52 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Apps\2.0 2014-07-15 20:38 - 2014-07-15 20:38 - 00008377 _____ () C:\Users\Fabian\AppData\Local\recently-used.xbel 2014-07-15 20:13 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Angebot 2014-07-15 19:35 - 2014-07-15 19:35 - 00000000 ____D () C:\Windows\system32\RsFx 2014-07-15 19:35 - 2009-07-21 02:42 - 00111640 _____ (Microsoft Corporation) C:\Windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll 2014-07-15 19:35 - 2009-07-21 02:42 - 00079896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll 2014-07-15 19:35 - 2009-07-21 02:42 - 00078872 _____ (Microsoft Corporation) C:\Windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll 2014-07-15 19:35 - 2009-07-21 02:42 - 00050200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll 2014-07-15 19:34 - 2014-07-15 19:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 2014-07-15 19:34 - 2014-07-15 19:35 - 00000000 ____D () C:\Program Files\Microsoft SQL Server 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1033 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1031 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1033 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1031 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0 2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\AntMe 2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\AntMe!_Ltd 2014-07-14 22:24 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Website [HTML,CSS] 2014-07-14 22:24 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\Taschenrechner 2 2014-07-14 22:23 - 2014-07-24 22:06 - 00000000 ____D () C:\Users\Fabian\Desktop\C# 2014-07-14 22:23 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-07-14 22:22 - 2014-07-15 20:51 - 00000000 ____D () C:\Users\Fabian\Documents\Visual Studio 2010 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Windows\symbols 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs 2014-07-14 22:13 - 2014-07-14 22:13 - 03277648 _____ (Microsoft Corporation) C:\Users\Fabian\Downloads\vcRaute_web.exe 2014-07-14 22:12 - 2014-07-14 22:12 - 02182278 _____ () C:\Users\Fabian\Downloads\C#.7z 2014-07-14 22:12 - 2014-07-14 22:12 - 01754045 _____ () C:\Users\Fabian\Downloads\Website [HTML,CSS].7z 2014-07-14 22:12 - 2014-07-14 22:12 - 00023090 _____ () C:\Users\Fabian\Downloads\Taschenrechner 2.7z 2014-07-13 14:22 - 2014-07-13 14:22 - 00000678 _____ () C:\Users\Public\Desktop\PDFCreator.lnk 2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\PDF Architect 2 2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2014-07-13 14:22 - 2014-04-25 17:44 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX 2014-07-13 14:22 - 2014-04-25 17:44 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX 2014-07-13 14:22 - 2014-04-25 17:44 - 00110264 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll 2014-07-13 14:22 - 2014-04-25 17:44 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL 2014-07-13 14:22 - 1998-07-06 18:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6DE.DLL 2014-07-13 14:22 - 1998-07-06 18:55 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCMCDE.DLL 2014-07-13 14:22 - 1998-07-06 18:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCC2DE.DLL 2014-07-13 14:20 - 2014-07-21 23:20 - 00000000 ____D () C:\Users\Fabian\Desktop\Bewerbungen+Lebensläufe Nach der Schule 2014-07-13 14:20 - 2014-07-13 14:21 - 27843432 _____ (pdfforge ) C:\Users\Fabian\Downloads\PDFCreator-1_7_3_setup.exe 2014-07-10 22:34 - 2014-07-27 23:10 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SpinTires 2014-07-10 22:34 - 2014-06-30 04:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-07-10 22:34 - 2014-06-30 04:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-07-10 22:34 - 2014-06-20 22:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-07-10 22:34 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-07-10 22:34 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-07-10 22:34 - 2014-06-19 03:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-07-10 22:34 - 2014-06-19 03:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-07-10 22:34 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-07-10 22:34 - 2014-06-19 02:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-07-10 22:34 - 2014-06-19 02:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-07-10 22:34 - 2014-06-19 02:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-07-10 22:34 - 2014-06-19 02:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-07-10 22:34 - 2014-06-19 02:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-07-10 22:34 - 2014-06-19 02:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-07-10 22:34 - 2014-06-19 02:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-07-10 22:34 - 2014-06-19 02:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-07-10 22:34 - 2014-06-19 02:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-07-10 22:34 - 2014-06-19 02:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-07-10 22:34 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-07-10 22:34 - 2014-06-19 02:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-07-10 22:34 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-07-10 22:34 - 2014-06-19 01:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-07-10 22:34 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-07-10 22:34 - 2014-06-19 01:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-07-10 22:34 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-07-10 22:34 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-07-10 22:34 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-07-10 22:34 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-07-10 22:34 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-07-10 22:34 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-07-10 22:34 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-07-10 22:34 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-07-10 22:34 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-07-10 22:34 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-07-10 22:34 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-07-10 22:34 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-07-10 22:34 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-07-10 22:34 - 2014-06-19 01:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-07-10 22:34 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-07-10 22:34 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-07-10 22:34 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-07-10 22:34 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-07-10 22:34 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-07-10 22:34 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-07-10 22:34 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-07-10 22:34 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-07-10 22:34 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-07-10 22:34 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-07-10 22:34 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-07-10 22:34 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-07-10 22:34 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-07-10 22:34 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-07-10 22:34 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-07-10 22:34 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-07-10 22:34 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-07-10 22:34 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-07-10 22:34 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-07-10 22:34 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-07-10 22:34 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe 2014-07-10 22:34 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe 2014-07-10 22:34 - 2014-06-18 03:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-07-10 22:34 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2014-07-10 22:34 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2014-07-10 22:34 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-07-10 22:34 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-07-10 22:34 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-07-10 22:34 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-07-10 22:34 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-07-10 22:34 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-07-10 22:22 - 2014-07-18 16:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security 2014-07-08 20:02 - 2014-07-18 16:20 - 00002501 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk 2014-07-08 19:31 - 2014-07-08 19:31 - 05659136 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2014-07-05 23:00 - 2014-07-15 20:38 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gtk-2.0 2014-07-05 21:58 - 2014-07-15 20:38 - 00000000 ____D () C:\Users\Fabian\.gimp-2.8 2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gegl-0.2 2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.thumbnails 2014-07-05 14:11 - 2014-07-05 14:11 - 00000736 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk 2014-07-05 14:07 - 2014-07-05 14:09 - 90396104 _____ (The GIMP Team ) C:\Users\Fabian\Downloads\gimp-2.8.10-setup.exe 2014-07-04 22:43 - 2014-07-04 22:43 - 00000000 ____H () C:\Users\Fabian\Documents\Default.rdp 2014-07-02 19:22 - 2014-07-02 19:22 - 00000000 ____D () C:\Users\Fabian\Documents\SniperEliteV2_Benchmark 2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TERA 2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TERA 2014-07-01 18:35 - 2014-07-01 18:35 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Fabian\Downloads\TERASetup.exe 2014-06-30 16:36 - 2014-06-30 16:38 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Notepad++ 2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-06-30 16:35 - 2014-06-30 16:35 - 07674224 _____ () C:\Users\Fabian\Downloads\npp.6.6.7.Installer.exe 2014-06-29 18:03 - 2014-06-29 18:03 - 00004932 _____ () C:\Users\Fabian\Downloads\bibanator_csgo_gaming_cfg_13-06-2014.rar 2014-06-28 17:09 - 2014-06-28 17:09 - 00000286 _____ () C:\Windows\Cm112.ini.imi 2014-06-28 17:09 - 2014-06-28 17:09 - 00000235 _____ () C:\Windows\system\Cm112.ini 2014-06-28 17:09 - 2014-06-28 17:09 - 00000185 _____ () C:\Windows\Cm112.ini.cfl 2014-06-28 17:09 - 2014-06-28 17:09 - 00000137 _____ () C:\Windows\system\Dlap.pfx 2014-06-28 17:09 - 2013-05-28 16:56 - 00151552 _____ () C:\Windows\system\3DG4me.exe 2014-06-28 17:09 - 2012-06-06 09:56 - 00143360 _____ () C:\Windows\system\3DG4me.dll 2014-06-28 17:09 - 2012-01-31 10:26 - 00122096 _____ (HID Dll) C:\Windows\system\CM_HID3.dll 2014-06-28 17:09 - 2010-03-23 14:33 - 00001198 _____ () C:\Windows\Cm112.ini.cfg 2014-06-28 17:09 - 2009-12-15 13:58 - 00000678 _____ () C:\Windows\cm112.ini 2014-06-28 17:09 - 2009-07-07 12:02 - 00779776 _____ () C:\Windows\system32\Cmeau112.exe 2014-06-28 17:09 - 2009-04-08 14:22 - 00354304 _____ () C:\Windows\system32\CmiInstallResAll64.dll 2014-06-28 17:09 - 2007-10-22 14:18 - 00004608 ___SH () C:\Windows\Thumbs.db 2014-06-28 17:08 - 2014-06-28 17:08 - 16873491 _____ () C:\Users\Fabian\Downloads\3D_G4ME_1_Driver_V1_4.zip ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-07-27 23:18 - 2014-07-26 16:24 - 00016641 _____ () C:\Users\Fabian\Desktop\FRST.txt 2014-07-27 23:17 - 2014-07-26 16:24 - 00079108 _____ () C:\Users\Fabian\Desktop\iFRST.txt 2014-07-27 23:17 - 2014-07-26 15:17 - 00000000 ____D () C:\FRST 2014-07-27 23:17 - 2014-06-08 00:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Raptr 2014-07-27 23:10 - 2014-07-10 22:34 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SpinTires 2014-07-27 22:31 - 2014-06-08 00:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-07-27 21:47 - 2014-07-27 21:47 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-07-27 21:47 - 2014-07-27 21:47 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-07-27 21:47 - 2014-07-27 21:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-07-27 21:47 - 2014-06-07 23:32 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Mozilla 2014-07-27 21:46 - 2014-06-08 10:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CrashDumps 2014-07-27 21:45 - 2014-07-27 21:45 - 00244408 _____ () C:\Users\Fabian\Downloads\Firefox Setup Stub 31.0.exe 2014-07-27 21:44 - 2014-07-24 23:01 - 00001867 _____ () C:\Users\Fabian\Desktop\Neues Textdokument.txt 2014-07-27 21:41 - 2014-07-27 21:41 - 00854390 _____ () C:\Users\Fabian\Desktop\SecurityCheck.exe 2014-07-27 21:40 - 2014-07-27 21:40 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Fabian\Downloads\revosetup95.exe 2014-07-27 21:40 - 2014-07-27 21:40 - 00000723 _____ () C:\Users\Fabian\Desktop\Revo Uninstaller.lnk 2014-07-27 21:14 - 2014-07-27 17:35 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-07-27 21:14 - 2014-06-08 00:53 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-07-27 19:35 - 2014-07-27 19:35 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-07-27 19:34 - 2014-07-27 19:34 - 02347384 _____ (ESET) C:\Users\Fabian\Desktop\esetsmartinstaller_enu.exe 2014-07-27 19:33 - 2014-07-27 19:33 - 00001802 _____ () C:\sc-cleaner.txt 2014-07-27 19:32 - 2014-07-27 19:32 - 00441592 _____ (Bleeping Computer, LLC) C:\Users\Fabian\Downloads\sc-cleaner.exe 2014-07-27 19:24 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-07-27 19:24 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-07-27 19:23 - 2011-04-12 09:43 - 00768310 _____ () C:\Windows\system32\perfh007.dat 2014-07-27 19:23 - 2011-04-12 09:43 - 00176066 _____ () C:\Windows\system32\perfc007.dat 2014-07-27 19:23 - 2009-07-14 07:13 - 01815616 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-07-27 19:20 - 2014-06-07 21:49 - 01198659 _____ () C:\Windows\WindowsUpdate.log 2014-07-27 19:17 - 2014-07-27 17:41 - 00000000 ____D () C:\AdwCleaner 2014-07-27 19:17 - 2014-07-27 17:35 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-07-27 19:17 - 2014-07-25 09:20 - 00002178 _____ () C:\Windows\setupact.log 2014-07-27 19:17 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\VMware 2014-07-27 19:17 - 2014-06-07 23:41 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TS3Client 2014-07-27 19:17 - 2014-06-07 22:31 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs 2014-07-27 19:17 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-07-27 19:16 - 2014-07-27 17:43 - 00000938 _____ () C:\Windows\PFRO.log 2014-07-27 17:55 - 2014-07-26 16:24 - 00076908 _____ () C:\Users\Fabian\Desktop\alt FRST.txt 2014-07-27 17:51 - 2014-07-27 17:51 - 00000759 _____ () C:\Users\Fabian\Desktop\JRT.txt 2014-07-27 17:46 - 2014-07-27 17:46 - 00000000 ____D () C:\Windows\ERUNT 2014-07-27 17:44 - 2014-07-27 17:44 - 00000985 _____ () C:\Users\Fabian\Desktop\AdwCleaner[S0].txt 2014-07-27 17:40 - 2014-07-27 17:40 - 00001293 _____ () C:\Users\Fabian\Desktop\mbam.txt 2014-07-27 17:38 - 2014-07-27 17:38 - 01354223 _____ () C:\Users\Fabian\Desktop\adwcleaner_3.216.exe 2014-07-27 17:38 - 2014-07-27 17:38 - 01016261 _____ (Thisisu) C:\Users\Fabian\Downloads\JRT.exe 2014-07-27 17:35 - 2014-07-27 17:35 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Fabian\Downloads\mbam-setup-2.0.2.1012.exe 2014-07-27 17:35 - 2014-07-27 17:35 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-07-27 17:35 - 2014-07-27 17:35 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-07-27 17:34 - 2014-06-07 23:28 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys 2014-07-26 19:54 - 2014-06-09 13:27 - 00000004 _____ () C:\Windows\SysWOW64\GVTunner.ref 2014-07-26 19:54 - 2014-06-07 23:28 - 00030528 _____ () C:\Windows\GVTDrv64.sys 2014-07-26 15:18 - 2014-07-26 16:24 - 00047970 _____ () C:\Users\Fabian\Desktop\Addition.txt 2014-07-26 15:18 - 2014-07-26 15:18 - 00073370 _____ () C:\Users\Fabian\Downloads\FRST.txt 2014-07-26 15:18 - 2014-07-26 15:18 - 00047970 _____ () C:\Users\Fabian\Downloads\Addition.txt 2014-07-26 15:16 - 2014-07-26 15:16 - 02093568 _____ (Farbar) C:\Users\Fabian\Desktop\FRST64.exe 2014-07-26 14:47 - 2014-07-26 14:47 - 00002850 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.txt 2014-07-26 14:38 - 2014-07-26 14:38 - 09612114 _____ () C:\Users\Fabian\Desktop\Behobene Sicherheitsrisiken.mcf 2014-07-26 14:27 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\SecTaskMan 2014-07-26 14:27 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\TEMP 2014-07-26 14:22 - 2014-07-26 14:22 - 00002634 _____ () C:\Users\Fabian\Downloads\Winmgmt.reg 2014-07-26 11:44 - 2014-07-26 11:44 - 00000766 _____ () C:\Users\Fabian\Desktop\Security Task Manager.lnk 2014-07-26 11:44 - 2014-07-26 11:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager 2014-07-26 11:43 - 2014-07-26 11:43 - 02365840 _____ () C:\Users\Fabian\Downloads\SecurityTaskManager_Setup-1.8g.exe 2014-07-25 21:02 - 2014-07-25 13:52 - 00000776 _____ () C:\Windows\LkmdfCoInst.log 2014-07-25 21:02 - 2014-06-08 00:27 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\SteelSeries 2014-07-25 20:54 - 2014-07-25 20:54 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SteelSeries_ApS 2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries 2014-07-25 20:53 - 2014-07-25 20:53 - 00000000 ____D () C:\ProgramData\SteelSeries 2014-07-25 20:52 - 2014-07-25 20:51 - 53001320 _____ () C:\Users\Fabian\Downloads\SteelSeriesEngine_2.8.0450.exe 2014-07-25 20:49 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-07-25 15:04 - 2014-07-24 22:56 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VMware 2014-07-25 15:03 - 2014-07-24 22:56 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\VMware 2014-07-25 14:55 - 2014-07-25 14:49 - 412172288 _____ () C:\Users\Fabian\Downloads\kav_rescue_10.iso 2014-07-25 14:09 - 2014-07-25 14:09 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Simply Super Software 2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\Users\Fabian\Documents\Simply Super Software 2014-07-25 14:06 - 2014-07-25 14:06 - 00000000 ____D () C:\ProgramData\Licenses 2014-07-25 14:04 - 2014-07-25 14:04 - 00000782 _____ () C:\Users\Public\Desktop\Trojan Remover.lnk 2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Simply Super Software 2014-07-25 14:04 - 2014-07-25 14:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover 2014-07-25 14:02 - 2014-07-25 14:02 - 21407864 _____ (Simply Super Software ) C:\Users\Fabian\Downloads\trjsetup690.exe 2014-07-25 09:20 - 2014-07-25 09:20 - 00000000 _____ () C:\Windows\setuperr.log 2014-07-25 00:12 - 2014-07-24 23:31 - 1017118720 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-i386.iso 2014-07-24 23:25 - 2014-07-24 22:57 - 1010827264 _____ () C:\Users\Fabian\Downloads\ubuntu-14.04-desktop-amd64.iso 2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware 2014-07-24 22:56 - 2014-07-24 22:56 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-07-24 22:56 - 2014-06-07 21:53 - 01835572 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-07-24 22:53 - 2014-07-24 22:50 - 98900000 _____ (VMware, Inc.) C:\Users\Fabian\Downloads\VMware-player-6.0.3-1895310.exe 2014-07-24 22:30 - 2014-07-24 22:30 - 03736040 _____ (Piriform Ltd) C:\Users\Fabian\Downloads\ccsetup415_slim.exe 2014-07-24 22:30 - 2014-07-24 22:30 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-07-24 22:30 - 2014-07-24 22:30 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-07-24 22:30 - 2014-07-24 21:50 - 00000000 ____D () C:\Program Files\CCleaner 2014-07-24 22:28 - 2014-07-24 21:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\NPE 2014-07-24 22:27 - 2014-07-24 21:11 - 00000000 ____D () C:\NPE 2014-07-24 22:06 - 2014-07-24 20:24 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} 2014-07-24 22:06 - 2014-07-24 20:20 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\DVDVideoSoft 2014-07-24 22:06 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder 2014-07-24 22:06 - 2014-07-24 13:09 - 00000000 ____D () C:\Program Files\TAP-Windows 2014-07-24 22:06 - 2014-07-24 13:09 - 00000000 ____D () C:\Program Files\CyberGhost 5 2014-07-24 22:06 - 2014-07-21 15:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons 2014-07-24 22:06 - 2014-07-15 20:13 - 00000000 ____D () C:\Users\Fabian\Desktop\Angebot 2014-07-24 22:06 - 2014-07-14 22:24 - 00000000 ____D () C:\Users\Fabian\Desktop\Website [HTML,CSS] 2014-07-24 22:06 - 2014-07-14 22:24 - 00000000 ____D () C:\Users\Fabian\Desktop\Taschenrechner 2 2014-07-24 22:06 - 2014-07-14 22:23 - 00000000 ____D () C:\Users\Fabian\Desktop\C# 2014-07-24 22:06 - 2014-06-18 16:26 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Rainmeter 2014-07-24 22:06 - 2014-06-12 21:10 - 00000000 __RHD () C:\MSOCache 2014-07-24 22:06 - 2014-06-08 00:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4 2014-07-24 22:06 - 2014-06-07 23:43 - 00000000 ____D () C:\ProgramData\Origin 2014-07-24 22:06 - 2014-06-07 23:32 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Mozilla 2014-07-24 22:06 - 2014-06-07 22:12 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Help 2014-07-24 22:06 - 2014-06-07 22:00 - 00000000 ____D () C:\ProgramData\Norton 2014-07-24 22:06 - 2014-06-07 21:49 - 00000000 ____D () C:\Users\Fabian 2014-07-24 22:06 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-07-24 22:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-07-24 21:51 - 2014-06-07 22:44 - 00000000 ____D () C:\Windows\Panther 2014-07-24 21:50 - 2014-07-24 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-07-24 20:56 - 2014-07-24 20:24 - 00000000 ____D () C:\ProgramData\TuneUp Software 2014-07-24 20:37 - 2014-07-24 20:37 - 01243655 _____ () C:\Users\Fabian\Downloads\ProcessExplorer.zip 2014-07-24 20:24 - 2014-07-24 20:24 - 00000000 ____D () C:\Users\Fabian\AppData\Local\TuneUp Software 2014-07-24 19:28 - 2014-07-24 19:28 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Mediatronic 2014-07-24 14:30 - 2014-07-24 14:30 - 00458649 _____ () C:\Users\Fabian\Downloads\imagetomp3_22632.zip 2014-07-24 14:09 - 2014-07-24 14:09 - 00000000 ____D () C:\ProgramData\Ashampoo 2014-07-24 14:01 - 2014-07-24 14:01 - 04264137 _____ () C:\Users\Fabian\Downloads\acfpc71.zip 2014-07-24 13:52 - 2014-07-24 13:52 - 05001832 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part5.rar 2014-07-24 13:52 - 2014-07-24 13:48 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part4.rar 2014-07-24 13:47 - 2014-07-24 13:43 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part3.rar 2014-07-24 13:42 - 2014-07-24 13:39 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part2.rar 2014-07-24 13:38 - 2014-07-24 13:34 - 208666624 _____ () C:\Users\Fabian\Downloads\German_TOP100_Single_Charts_28_07_2014-NoGroup.part1.rar 2014-07-24 13:10 - 2014-07-24 13:10 - 00000000 ____D () C:\Users\Fabian\AppData\Local\CyberGhost 2014-07-24 13:10 - 2014-06-07 21:49 - 00000000 ____D () C:\Users\Fabian\AppData\Local\VirtualStore 2014-07-23 22:46 - 2014-07-23 22:45 - 40153667 _____ () C:\Users\Fabian\Downloads\BladeSlapSND-v11.zip 2014-07-23 21:49 - 2014-07-23 21:42 - 282762749 _____ () C:\Users\Fabian\Downloads\H_S_Design_EC135_X.zip 2014-07-23 21:45 - 2014-07-23 21:43 - 44357952 _____ () C:\Users\Fabian\Downloads\Zeppelin_NT_FSX.zip 2014-07-23 16:29 - 2014-07-19 13:25 - 00000000 ____D () C:\Users\Fabian\Documents\Flight Simulator X-Dateien 2014-07-22 16:08 - 2014-07-22 16:07 - 45031920 _____ () C:\Users\Fabian\Downloads\HC075DI_AS332L2_FSX_ACCELERATION.zip 2014-07-21 23:25 - 2014-07-21 23:25 - 00000000 ____D () C:\ProgramData\newrestore 2014-07-21 23:24 - 2014-07-21 23:24 - 00000000 ____D () C:\ProgramData\logsaver 2014-07-21 23:23 - 2014-07-21 23:23 - 00000000 ____D () C:\ProgramData\managecapsule 2014-07-21 23:20 - 2014-07-13 14:20 - 00000000 ____D () C:\Users\Fabian\Desktop\Bewerbungen+Lebensläufe Nach der Schule 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\newbackup 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\launcher 2014-07-21 18:52 - 2014-07-21 18:52 - 00000000 ____D () C:\ProgramData\ibackupvhd 2014-07-21 18:51 - 2014-07-21 18:51 - 00000000 ____D () C:\ProgramData\rmbwizard 2014-07-21 18:49 - 2014-07-21 18:49 - 00000000 ____D () C:\ProgramData\explauncher 2014-07-21 17:56 - 2014-07-21 17:53 - 156439928 _____ () C:\Users\Fabian\Downloads\FSX Concorde 2011 FULL collection.zip 2014-07-21 17:39 - 2014-07-21 16:36 - 00000000 ____D () C:\ProgramData\InstallMate 2014-07-21 17:35 - 2014-07-21 17:33 - 18635685 _____ () C:\Users\Fabian\Downloads\edgley_optica_fsx_p3d.zip 2014-07-21 17:30 - 2014-07-21 17:26 - 24181036 _____ () C:\Users\Fabian\Downloads\fsnd_citationx_ultra_package_fsx_p3d.zip 2014-07-21 17:22 - 2014-07-21 17:20 - 12016313 _____ () C:\Users\Fabian\Downloads\bombardier_canadair_cl-215_v3.0x_fsx_p3d.zip 2014-07-21 17:20 - 2014-07-21 17:17 - 22743374 _____ () C:\Users\Fabian\Downloads\icon_aircraft_a5_fsx_sp2_acc_p3d.zip 2014-07-21 17:16 - 2014-07-21 17:04 - 83022300 _____ () C:\Users\Fabian\Downloads\raf_hawker_siddeley_nimrod_package_for_fsx.zip 2014-07-21 17:04 - 2014-07-21 16:45 - 127624268 _____ () C:\Users\Fabian\Downloads\lufthansa_pack_fsx_p3d.zip 2014-07-21 16:45 - 2014-07-21 16:43 - 11509540 _____ () C:\Users\Fabian\Downloads\northrop_b-2a_spirit_alphasim_fsx_p3d.zip 2014-07-21 16:41 - 2014-07-21 16:35 - 43827756 _____ () C:\Users\Fabian\Downloads\hughes_oh-6_series_fsx.zip 2014-07-21 16:34 - 2014-07-21 16:26 - 52576126 _____ () C:\Users\Fabian\Downloads\enstrom_280fx_fsx.zip 2014-07-21 16:26 - 2014-07-21 16:24 - 15873135 _____ () C:\Users\Fabian\Downloads\ukmil_boeing_chinook_hc2_fsx_p3d.zip 2014-07-21 15:35 - 2014-07-21 15:31 - 28344613 _____ () C:\Users\Fabian\Downloads\tom_airbus_a300-beluga_fsx.zip 2014-07-21 12:31 - 2014-07-21 12:31 - 16573534 _____ () C:\Users\Fabian\Downloads\Piaggio P-180 Avanti.zip 2014-07-21 12:30 - 2014-07-21 12:29 - 26477706 _____ () C:\Users\Fabian\Downloads\Antonov AN-124.zip 2014-07-21 12:19 - 2014-07-21 12:19 - 27097674 _____ () C:\Users\Fabian\Downloads\dhc8-q400_x.zip 2014-07-21 12:11 - 2014-07-21 12:11 - 03042305 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Qantas Link.zip 2014-07-21 12:11 - 2014-07-21 12:10 - 21014993 _____ () C:\Users\Fabian\Downloads\Bombardier Dash 8-Q400 Basepack.zip 2014-07-20 21:31 - 2014-07-20 21:30 - 00166078 _____ () C:\Users\Fabian\Downloads\FPS_Limiter_0.2.rar 2014-07-20 21:13 - 2014-07-20 21:10 - 174078464 _____ () C:\Users\Fabian\Downloads\fsx_sp2_DEU.msi 2014-07-20 16:03 - 2014-07-20 16:02 - 09006434 _____ () C:\Users\Fabian\Downloads\texture.sunexpress.zip 2014-07-20 13:11 - 2014-07-20 12:57 - 18273643 _____ () C:\Users\Fabian\Downloads\B737-500Lufthansa.zip 2014-07-20 13:01 - 2014-07-20 12:56 - 14699938 _____ () C:\Users\Fabian\Downloads\a321.zip 2014-07-20 12:45 - 2009-07-14 06:45 - 00420568 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-07-19 15:09 - 2014-07-19 14:31 - 113183445 _____ () C:\Users\Fabian\Downloads\dlh737-700-FSX.zip 2014-07-19 14:37 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Ubisoft Game Launcher 2014-07-19 14:36 - 2014-07-19 14:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2014-07-19 14:36 - 2014-07-19 14:35 - 61513304 _____ (Ubisoft) C:\Users\Fabian\Downloads\UplayInstaller.exe 2014-07-19 14:02 - 2014-06-07 23:29 - 00110904 _____ () C:\Users\Fabian\AppData\Local\GDIPFONTCACHEV1.DAT 2014-07-19 14:00 - 2014-07-19 14:00 - 01099187 _____ () C:\Users\Fabian\Downloads\3repaints-SpruceGoose.zip 2014-07-19 13:59 - 2014-07-19 13:56 - 230008963 _____ () C:\Users\Fabian\Downloads\ACJ_AirbusA380MegaPackage.zip 2014-07-19 13:33 - 2014-07-19 13:33 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Microsoft Game Studios 2014-07-19 12:49 - 2014-07-19 12:49 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0 2014-07-19 12:49 - 2014-06-07 21:53 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-07-18 16:33 - 2014-06-08 00:37 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Arma 3 2014-07-18 16:25 - 2014-07-18 16:25 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security 2014-07-18 16:20 - 2014-07-10 22:22 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security 2014-07-18 16:20 - 2014-07-08 20:02 - 00002501 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk 2014-07-18 16:20 - 2014-06-07 22:00 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration 2014-07-18 16:20 - 2014-06-07 22:00 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64 2014-07-17 20:04 - 2014-06-08 00:28 - 00000000 ____D () C:\ProgramData\Oracle 2014-07-17 20:03 - 2014-07-17 20:03 - 00004251 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log 2014-07-17 20:03 - 2014-07-17 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-07-17 19:20 - 2014-07-17 19:20 - 00000000 ____D () C:\ProgramData\Riot Games 2014-07-15 21:10 - 2014-07-15 20:53 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Temporary Projects 2014-07-15 20:53 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Deployment 2014-07-15 20:52 - 2014-07-15 20:52 - 00343896 _____ () C:\Users\Fabian\Downloads\publish.7z 2014-07-15 20:52 - 2014-07-15 20:52 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Apps\2.0 2014-07-15 20:51 - 2014-07-14 22:22 - 00000000 ____D () C:\Users\Fabian\Documents\Visual Studio 2010 2014-07-15 20:38 - 2014-07-15 20:38 - 00008377 _____ () C:\Users\Fabian\AppData\Local\recently-used.xbel 2014-07-15 20:38 - 2014-07-05 23:00 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gtk-2.0 2014-07-15 20:38 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.gimp-2.8 2014-07-15 19:35 - 2014-07-15 19:35 - 00000000 ____D () C:\Windows\system32\RsFx 2014-07-15 19:35 - 2014-07-15 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 2014-07-15 19:35 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft SQL Server 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1033 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\SysWOW64\1031 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1033 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Windows\system32\1031 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0 2014-07-15 19:34 - 2014-07-15 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0 2014-07-15 19:34 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server 2014-07-15 19:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\AntMe 2014-07-14 22:30 - 2014-07-14 22:30 - 00000000 ____D () C:\Users\Fabian\AppData\Local\AntMe!_Ltd 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services 2014-07-14 22:23 - 2014-07-14 22:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Windows\symbols 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer 2014-07-14 22:22 - 2014-07-14 22:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs 2014-07-14 22:13 - 2014-07-14 22:13 - 03277648 _____ (Microsoft Corporation) C:\Users\Fabian\Downloads\vcRaute_web.exe 2014-07-14 22:12 - 2014-07-14 22:12 - 02182278 _____ () C:\Users\Fabian\Downloads\C#.7z 2014-07-14 22:12 - 2014-07-14 22:12 - 01754045 _____ () C:\Users\Fabian\Downloads\Website [HTML,CSS].7z 2014-07-14 22:12 - 2014-07-14 22:12 - 00023090 _____ () C:\Users\Fabian\Downloads\Taschenrechner 2.7z 2014-07-13 14:22 - 2014-07-13 14:22 - 00000678 _____ () C:\Users\Public\Desktop\PDFCreator.lnk 2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\PDF Architect 2 2014-07-13 14:22 - 2014-07-13 14:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2014-07-13 14:21 - 2014-07-13 14:20 - 27843432 _____ (pdfforge ) C:\Users\Fabian\Downloads\PDFCreator-1_7_3_setup.exe 2014-07-12 22:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-07-11 18:58 - 2014-06-07 23:23 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-07-11 18:58 - 2011-04-12 09:55 - 00000000 ____D () C:\Program Files\Windows Journal 2014-07-11 18:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism 2014-07-11 18:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism 2014-07-11 03:02 - 2014-06-08 00:28 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-07-11 02:56 - 2014-06-08 00:28 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-07-11 02:56 - 2014-06-08 00:28 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-07-11 02:55 - 2014-06-08 00:28 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-07-10 22:57 - 2014-06-07 22:37 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-07-10 22:57 - 2014-06-07 22:37 - 00000000 ____D () C:\Windows\system32\MRT 2014-07-08 20:02 - 2014-06-07 22:00 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 2014-07-08 20:02 - 2014-06-07 22:00 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT 2014-07-08 20:02 - 2014-06-07 22:00 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security 2014-07-08 19:31 - 2014-07-08 19:31 - 05659136 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2014-07-08 19:31 - 2014-06-08 00:36 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-07-08 19:31 - 2014-06-08 00:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-07-08 19:31 - 2014-06-08 00:36 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-07-06 20:43 - 2014-06-08 00:33 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Spotify 2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\AppData\Local\gegl-0.2 2014-07-05 21:58 - 2014-07-05 21:58 - 00000000 ____D () C:\Users\Fabian\.thumbnails 2014-07-05 14:11 - 2014-07-05 14:11 - 00000736 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk 2014-07-05 14:09 - 2014-07-05 14:07 - 90396104 _____ (The GIMP Team ) C:\Users\Fabian\Downloads\gimp-2.8.10-setup.exe 2014-07-04 22:43 - 2014-07-04 22:43 - 00000000 ____H () C:\Users\Fabian\Documents\Default.rdp 2014-07-03 17:17 - 2014-06-08 00:34 - 00000000 ____D () C:\Users\Fabian\AppData\Local\Spotify 2014-07-02 19:22 - 2014-07-02 19:22 - 00000000 ____D () C:\Users\Fabian\Documents\SniperEliteV2_Benchmark 2014-07-02 18:04 - 2014-06-08 18:22 - 00000000 ____D () C:\Users\Fabian\Documents\Euro Truck Simulator 2 2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\TERA 2014-07-01 18:37 - 2014-07-01 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TERA 2014-07-01 18:35 - 2014-07-01 18:35 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Fabian\Downloads\TERASetup.exe 2014-06-30 16:38 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Notepad++ 2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\Users\Fabian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-06-30 16:36 - 2014-06-30 16:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2014-06-30 16:35 - 2014-06-30 16:35 - 07674224 _____ () C:\Users\Fabian\Downloads\npp.6.6.7.Installer.exe 2014-06-30 04:09 - 2014-07-10 22:34 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-06-30 04:04 - 2014-07-10 22:34 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-06-29 18:03 - 2014-06-29 18:03 - 00004932 _____ () C:\Users\Fabian\Downloads\bibanator_csgo_gaming_cfg_13-06-2014.rar 2014-06-29 17:19 - 2014-06-25 19:22 - 00000000 ____D () C:\Users\Fabian\AppData\Local\SniperV2 2014-06-28 17:09 - 2014-06-28 17:09 - 00000286 _____ () C:\Windows\Cm112.ini.imi 2014-06-28 17:09 - 2014-06-28 17:09 - 00000235 _____ () C:\Windows\system\Cm112.ini 2014-06-28 17:09 - 2014-06-28 17:09 - 00000185 _____ () C:\Windows\Cm112.ini.cfl 2014-06-28 17:09 - 2014-06-28 17:09 - 00000137 _____ () C:\Windows\system\Dlap.pfx 2014-06-28 17:09 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system 2014-06-28 17:08 - 2014-06-28 17:08 - 16873491 _____ () C:\Users\Fabian\Downloads\3D_G4ME_1_Driver_V1_4.zip Some content of TEMP: ==================== C:\Users\Fabian\AppData\Local\Temp\x2blapi.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-07-18 18:06 ==================== End Of Log ============================ --- --- --- --- --- --- Der befund von eset macht mir Sorgen... Du hast sicher eine Lösung !Was mir leider auch noch zur späten Stunde auffält ist, dass der AdwCleaner nach der deinstalation WIEDER das Gleich gefunden aht  NAchdem ich es Lösche sit es wieder da:AdwCleaner log: Code:
ATTFilter # AdwCleaner v3.216 - Bericht erstellt am 28/07/2014 um 00:11:03
# Aktualisiert 17/07/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Fabian - FABIAN-PC
# Gestartet von : C:\Users\Fabian\Desktop\adwcleaner_3.216.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17207
-\\ Mozilla Firefox v31.0 (x86 de)
[ Datei : C:\Users\Fabian\AppData\Roaming\Mozilla\Firefox\Profiles\665qva7w.default-1406490486418\prefs.js ]
*************************
AdwCleaner[R0].txt - [925 octets] - [27/07/2014 17:41:40]
AdwCleaner[R1].txt - [931 octets] - [27/07/2014 19:05:58]
AdwCleaner[R2].txt - [1049 octets] - [27/07/2014 19:07:58]
AdwCleaner[R3].txt - [1260 octets] - [27/07/2014 19:13:17]
AdwCleaner[R4].txt - [1244 octets] - [27/07/2014 19:17:36]
AdwCleaner[R5].txt - [1308 octets] - [28/07/2014 00:10:21]
AdwCleaner[S0].txt - [985 octets] - [27/07/2014 17:42:48]
AdwCleaner[S1].txt - [991 octets] - [27/07/2014 19:06:21]
AdwCleaner[S2].txt - [1321 octets] - [27/07/2014 19:16:26]
AdwCleaner[S3].txt - [1230 octets] - [28/07/2014 00:11:03]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1290 octets] ##########
|
|
28.07.2014, 18:09
| #7 |
| /// the machine /// TB-Ausbilder | Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! schau dir den FUnd bei ESET mal genau an  Lösch einfach den Download. Adw wird das in tausend Jahren noch finden, das ist nur dein Firefox Profil was augelistet wird Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
28.07.2014, 18:27
| #8 |
| | Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! Vielen Dank für Deine Hilfe! Ich habe keine weiteren Fragen! Danke Danke !! |
|
29.07.2014, 10:09
| #9 |
| /// the machine /// TB-Ausbilder | Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Norten blockierte Trojan.ADH.2, immernoch verdach auf Trojaner! |
| appdata, blockiert, branding, deaktiviert, download, erkannt, firefox, fps, hilfe bei trojaner, infiziert, ip-hilfsdienst, kaspersky, meldungen, problem, remover, scan, scanner, sekunden, sicherheit, software, super, taskmanager, temp, tracking, trojaner, verdacht, version, virenscanner, windows |
Linear-Darstellung
