| |
| |||||||
Log-Analyse und Auswertung: Extrem Langsames Internet nur an 1 Rechner!Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
30.07.2014, 11:39
| #11 |
 |  Extrem Langsames Internet nur an 1 Rechner! Wie schon 2 mal erwähne mir ist inzwischen auch klar das es illegal und gefährlich ist deswegen mach ichs auch nicht mehr. Hab nebenbei ein bisschen durch geputzt und 360 Gb ungenutztes zeug vom pc entfernt. Hier die Logs: FRST: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-07-2014
Ran by Sasha (administrator) on SASHAS-PC on 30-07-2014 12:31:30
Running from C:\Users\Sasha\Desktop
Platform: Windows 8 Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ArcSoft, Inc.) C:\Users\Sasha\AppData\Local\ArcSoft\esinter\Delete\eservutil.exe0
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(Infowatch) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Perforce Software Inc.) D:\Program Files\Perforce\Server\p4s.exe
(Perforce Software Inc.) D:\Program Files\Perforce\Proxy\p4ps.exe
(Razer Inc.) D:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(O&O Software GmbH) C:\Program Files\OO Software\DiskImage\oodiag.exe
(VMware, Inc.) D:\Program Files (x86)\VMware\VMware player\vmware-authd.exe
(Microsoft Corporation) C:\Windows\System32\vdsldr.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
() D:\Program Files (x86)\RocketDock\RocketDock.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
() D:\Program Files (x86)\Opera\23.0.1522.60\opera_crashreporter.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Opera Software) D:\Program Files (x86)\Opera\23.0.1522.60\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7203032 2013-10-22] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (IvoSoft)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AVP] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\runner_avp.exe [24256 2013-10-16] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-852994989-324450782-3891972763-1001\...\Run: [DisplayFusion] => D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [7952224 2013-11-27] (Binary Fortress Software)
HKU\S-1-5-21-852994989-324450782-3891972763-1001\...\Run: [RocketDock] => D:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-852994989-324450782-3891972763-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [466656 2014-05-23] (Sony)
HKU\S-1-5-21-852994989-324450782-3891972763-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Sasha\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Sasha\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Sasha\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Sasha\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Sasha\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Sasha\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Sasha\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: KAVOverlayIcon -> {dd230880-495a-11d1-b064-008048ec2fc5} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\shellex.dll (Kaspersky Lab ZAO)
ShellIconOverlayIdentifiers: OODIIcon -> {14A94384-BBED-47ed-86C0-6BF63FD892D0} => C:\Program Files\OO Software\DiskImage\oodishi.dll (O&O Software GmbH)
ShellIconOverlayIdentifiers: P4EXPCheckoutOverlay -> {80E008A4-EAE7-4867-AEB0-1A245F070F25} => D:\Program Files\Perforce\p4exp64.dll (Perforce Software Inc.)
ShellIconOverlayIdentifiers: P4EXPSyncdOverlay -> {ADF262C1-E8FE-49BE-AD63-F77CD4A6CCD9} => D:\Program Files\Perforce\p4exp64.dll (Perforce Software Inc.)
ShellIconOverlayIdentifiers: P4EXPUpdateOverlay -> {C550CDA2-37D7-4838-A9D7-65ECB1EB5AB2} => D:\Program Files\Perforce\p4exp64.dll (Perforce Software Inc.)
ShellIconOverlayIdentifiers: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Sasha\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\SkyDriveShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Sasha\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\SkyDriveShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Sasha\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\SkyDriveShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Sasha\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Sasha\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Sasha\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: KAVOverlayIcon -> {dd230880-495a-11d1-b064-008048ec2fc5} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\shellex.dll (Kaspersky Lab ZAO)
ShellIconOverlayIdentifiers-x32: P4EXPCheckoutOverlay -> {80E008A4-EAE7-4867-AEB0-1A245F070F25} => D:\Program Files\Perforce\p4exp.dll (Perforce Software Inc.)
ShellIconOverlayIdentifiers-x32: P4EXPSyncdOverlay -> {ADF262C1-E8FE-49BE-AD63-F77CD4A6CCD9} => D:\Program Files\Perforce\p4exp.dll (Perforce Software Inc.)
ShellIconOverlayIdentifiers-x32: P4EXPUpdateOverlay -> {C550CDA2-37D7-4838-A9D7-65ECB1EB5AB2} => D:\Program Files\Perforce\p4exp.dll (Perforce Software Inc.)
ShellIconOverlayIdentifiers-x32: ShareOverlay -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab
DPF: HKLM-x32 {A672558F-A878-4D5A-A921-627C091CEB6A} hxxp://download.flatcast.net/objects/NpFp530.dll
DPF: HKLM-x32 {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} https://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.96.0.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{EF50FB12-8FE7-49B4-8BBC-E2045BA799CC}: [NameServer]192.168.137.1
FireFox:
========
FF ProfilePath: C:\Users\Sasha\AppData\Roaming\Mozilla\Firefox\Profiles\zntnjtxn.default
FF NewTab: chrome://quick_start/content/index.html
FF NetworkProxy: "gopher", ""
FF NetworkProxy: "gopher_port", 0
FF NetworkProxy: "http", "www-proxy.t-online.de"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks_version", 4
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.65.2 - D:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.65.2 - D:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin: @videolan.org/vlc,version=2.1.0 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin-x32: @nielsen/FirefoxTracker - C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\FirefoxAddOns\npfirefoxtracker.dll No File
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @TrendMicro.com/FFExtension - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @kaspersky.com/Kaspersky PURE - C:\PROGRA~2\KASPER~1\KASPER~1.0\KASPER~2\npkpmAutofill.dll (Kaspersky Lab)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Sasha\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Sasha\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Sasha\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Sasha\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Sasha\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Sasha\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Sasha\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: sony.com/MediaGoDetector - D:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
FF Plugin HKCU: ubisoft.com/uplaypc - D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFp530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Users\Sasha\AppData\Roaming\mozilla\plugins\NpFp530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Users\Sasha\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Sasha\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\omiga-plus.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Firefox Old Version Update Hotfix - C:\Users\Sasha\AppData\Roaming\Mozilla\Firefox\Profiles\zntnjtxn.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-27]
FF Extension: MySpass Adblocker - C:\Users\Sasha\AppData\Roaming\Mozilla\Firefox\Profiles\zntnjtxn.default\Extensions\jid1-g6ZyfXJSgAF3Iw@jetpack.xpi [2014-06-30]
FF Extension: Adblock Plus - C:\Users\Sasha\AppData\Roaming\Mozilla\Firefox\Profiles\zntnjtxn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-30]
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com [2013-06-11]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com [2013-06-11]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com [2013-06-11]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com [2013-06-11]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com [2013-06-11]
FF HKLM-x32\...\Firefox\Extensions: [netsight@nielsen.com] - C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\FirefoxAddOns\netsight@nielsen.xpi
FF HKCU\...\Firefox\Extensions: [{72CA2996-F580-47DF-98FF-0B853D09CEC8}] - C:\Users\Sasha\AppData\Roaming\Kaspersky Lab\Password Manager\kpmAutofill
FF Extension: Password Manager plugin - C:\Users\Sasha\AppData\Roaming\Kaspersky Lab\Password Manager\kpmAutofill [2013-06-11]
FF HKCU\...\Thunderbird\Extensions: [{72CA2996-F580-47DF-98FF-0B853D09CEC8}] - C:\Users\Sasha\AppData\Roaming\Kaspersky Lab\Password Manager\kpmAutofill
Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-30]
CHR Extension: (Google Drive) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-30]
CHR Extension: (YouTube) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-30]
CHR Extension: (Google-Suche) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-30]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-07-30]
CHR Extension: (AdBlock) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-06-30]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-07-30]
CHR Extension: (Content Blocker) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-07-30]
CHR Extension: (Virtual Keyboard) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-07-30]
CHR Extension: (MySpass Adblocker) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljjdpiilfcgggfhpgboiebimccnbebcj [2014-06-30]
CHR Extension: (Google Wallet) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-01]
CHR Extension: (Google Mail) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-30]
CHR Extension: (Anti-Banner) - C:\Users\Sasha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-07-30]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\urladvisor.crx [2013-01-11]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\online_banking_chrome.crx [2013-01-11]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\content_blocker_chrome.crx [2013-01-11]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\virtkbd.crx [2013-01-11]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\ab.crx [2013-01-11]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-08-16] (ASUSTeK Computer Inc.)
S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-10-16] (Kaspersky Lab ZAO)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-27] () [File not signed]
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [398096 2013-11-18] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2013-11-18] (BlueStack Systems, Inc.)
R2 CSObjectsSrv; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [819040 2012-12-21] (Infowatch)
S3 DfSdkS; D:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany) [File not signed]
R2 DisplayFusionService; D:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [1375600 2013-11-27] (Binary Fortress Software)
R2 hasplms; C:\Windows\system32\hasplms.exe [4412872 2012-08-23] (SafeNet Inc.)
R2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-08-16] (Intel Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-14] (LogMeIn, Inc.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5110192 2012-10-24] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 OO DiskImage; C:\Program Files\OO Software\DiskImage\oodiag.exe [6258480 2013-09-09] (O&O Software GmbH)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [976672 2014-06-10] (Overwolf LTD)
R2 Perforce; D:\Program Files\Perforce\Server\p4s.exe [3455104 2012-11-09] (Perforce Software Inc.)
R2 Perforce Proxy; D:\Program Files\Perforce\Proxy\p4ps.exe [1801344 2012-11-09] (Perforce Software Inc.)
R2 RzKLService; D:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R2 RzMaelstromVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe [4249088 2014-03-06] (A-Volute) [File not signed]
R2 VMAuthdService; D:\Program Files (x86)\VMware\VMware player\vmware-authd.exe [86744 2014-04-14] (VMware, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
S3 WO_LiveService; D:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe [885096 2013-10-08] ()
S2 楗敳潂瑯獁楳瑳湡tN"; 㩄停潲牧浡䘠汩獥⠠㡸⤶坜獩履楗敳䌠牡㘳尵潂瑯楔敭攮數 [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2012-04-19] (ASUSTek Computer Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310984 2013-04-11] ()
S3 AU8168; C:\Windows\system32\DRIVERS\au630x64.sys [792648 2013-09-23] (Realtek )
R3 BEHRINGER_2902; C:\Windows\System32\Drivers\BUSB2902.sys [460864 2009-10-30] (BEHRINGER)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [77584 2013-11-18] (BlueStack Systems)
R3 bthav; C:\Windows\system32\drivers\bthav.sys [40448 2008-07-10] (CSR, plc)
S3 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [24032 2013-10-08] (IVT Corporation.)
R3 BUSB_AUDIO_WDM; C:\Windows\system32\drivers\busbwdm.sys [49728 2009-10-30] (BEHRINGER)
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [98064 2012-12-10] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys [67344 2012-12-10] (Infowatch)
R3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-15] (LogMeIn Inc.)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [323584 2012-10-06] (SafeNet Inc.)
S3 IvtAudioBusSrv; C:\Windows\System32\Drivers\IvtBtBus.sys [27256 2012-12-24] (IVT Corporation.)
S3 IvtPanBusSrv; C:\Windows\System32\Drivers\btnetBus.sys [31480 2012-12-24] (IVT Corporation.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-04-02] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2013-11-13] (Kaspersky Lab)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [90208 2013-10-16] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625760 2013-10-16] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2014-04-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2013-10-16] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-10-16] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [50448 2013-07-15] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178448 2013-07-15] (Kaspersky Lab ZAO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2012-12-31] ()
R2 LiveTunerPM; D:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor64.sys [12824 2011-03-08] ()
S3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [44544 2013-01-15] (ManyCam LLC)
S3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
S3 NdisImPlatformMp; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [126464 2012-07-26] (Microsoft Corporation)
S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.) [File not signed]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 oodisr; C:\Windows\System32\DRIVERS\oodisr.sys [116936 2013-09-09] (O&O Software GmbH)
R0 oodisrh; C:\Windows\System32\DRIVERS\oodisrh.sys [41160 2013-09-09] (O&O Software GmbH)
R0 oodivd; C:\Windows\System32\DRIVERS\oodivd.sys [255688 2013-09-09] (O&O Software GmbH)
R0 oodivdh; C:\Windows\System32\DRIVERS\oodivdh.sys [44744 2013-09-09] (O&O Software GmbH)
S3 PGUSBWDM_AQVOX; C:\Windows\System32\Drivers\aqvoxusb.sys [466496 2010-10-09] (Ploytec GmbH)
R3 RZMAELSTROMVADService; C:\Windows\system32\drivers\RzMaelstromVAD.sys [40696 2014-03-06] (Windows (R) Win 7 DDK provider)
S3 SNPSTD3; C:\Windows\system32\DRIVERS\snpstd3.sys [10550272 2007-03-27] (Sonix Co. Ltd.)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2013-02-12] (Anchorfree Inc.)
R3 vmkbd2; C:\Windows\system32\drivers\VMkbd.sys [33496 2014-04-14] (VMware, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
S3 xb1usb; C:\Windows\System32\drivers\xb1usb.sys [34016 2014-05-27] (Microsoft Corporation)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S3 AppObserver; \??\C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter2\appobserver64.sys [X]
S3 BT; \SystemRoot\system32\DRIVERS\btnetdrv.sys [X]
S3 BTCOM; \SystemRoot\system32\DRIVERS\btcomport.sys [X]
S3 Btcsrusb; \SystemRoot\System32\Drivers\btcusb.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 dump_wmimmc; \??\D:\AeriaGames\Wolfteam-DE\GameGuard\dump_wmimmc.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S3 IvtComBusSrv; \SystemRoot\System32\Drivers\btcombus.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-07-30 12:31 - 2014-07-30 12:31 - 00034344 _____ () C:\Users\Sasha\Desktop\FRST.txt
2014-07-30 12:08 - 2014-07-30 12:08 - 02093568 _____ (Farbar) C:\Users\Sasha\Desktop\FRST64.exe
2014-07-30 11:25 - 2014-07-30 11:35 - 00036239 _____ () C:\Windows\WindowsUpdate.log
2014-07-30 10:45 - 2014-07-30 10:45 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-30 10:45 - 2014-07-30 10:45 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-30 10:45 - 2014-07-30 10:45 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-30 10:45 - 2014-07-30 10:45 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-07-30 10:45 - 2014-07-30 10:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-30 10:23 - 2014-07-30 10:23 - 00000000 ____D () C:\Users\Sasha\AppData\Local\cFos
2014-07-30 10:17 - 2014-07-30 10:17 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-07-29 23:49 - 2014-07-30 00:18 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-29 23:49 - 2014-07-29 23:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-07-29 23:49 - 2014-07-29 23:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-29 23:49 - 2014-07-29 23:49 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-07-29 23:49 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-29 23:49 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-29 23:49 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-29 23:16 - 2014-07-29 23:16 - 00000000 ____D () C:\Windows\ERUNT
2014-07-29 22:42 - 2014-07-29 22:42 - 05120240 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-29 22:35 - 2014-07-29 22:48 - 00000000 ____D () C:\Qoobox
2014-07-29 22:35 - 2014-07-29 22:45 - 00000000 ____D () C:\Windows\erdnt
2014-07-29 22:35 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-07-29 22:35 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-07-29 22:35 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-07-29 22:35 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-07-29 22:35 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-07-29 22:35 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\Windows\SWXCACLS.exe
2014-07-29 22:35 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-07-29 22:35 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-07-29 22:35 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-07-29 20:53 - 2014-07-30 12:31 - 00000000 ____D () C:\FRST
2014-07-29 16:42 - 2014-07-25 14:50 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-07-29 16:42 - 2014-07-25 14:50 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-07-29 11:30 - 2014-07-29 16:56 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Synthesia
2014-07-29 11:24 - 2014-07-29 11:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia
2014-07-29 10:57 - 2014-07-29 10:57 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Spiritsoft
2014-07-28 18:53 - 2014-07-28 18:53 - 00001406 _____ () C:\Users\Sasha\AppData\Roaming\BreakingPoint_Options.ini
2014-07-28 15:47 - 2014-07-28 15:47 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\BitTorrent Sync
2014-07-25 14:05 - 2014-07-25 14:05 - 00000000 ____D () C:\Windows\rescache
2014-07-24 12:30 - 2014-07-28 18:00 - 00000297 _____ () C:\Users\Sasha\AppData\Roaming\BreakingPoint_Login.ini
2014-07-24 11:53 - 2014-07-24 11:53 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Bohemia_Interactive
2014-07-24 11:53 - 2014-07-24 11:53 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Arma 3 Launcher
2014-07-23 04:07 - 2014-04-29 23:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-07-23 04:07 - 2014-04-29 23:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-07-23 04:05 - 2014-05-03 06:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-07-23 04:05 - 2014-05-03 04:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-07-23 04:04 - 2014-06-18 00:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-23 04:04 - 2014-06-18 00:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-23 04:04 - 2014-06-11 05:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-23 04:04 - 2014-06-02 23:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-23 04:04 - 2014-05-30 00:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-23 04:04 - 2014-05-30 00:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-23 04:04 - 2014-05-30 00:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-23 04:04 - 2014-05-30 00:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-23 04:04 - 2014-04-03 12:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-07-23 04:04 - 2014-04-03 04:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-07-23 04:04 - 2014-03-31 23:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml
2014-07-23 04:04 - 2014-03-28 09:23 - 19759104 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-07-23 04:04 - 2014-03-28 07:18 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-07-23 04:04 - 2014-03-25 00:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-07-23 04:04 - 2014-03-24 23:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-07-23 04:03 - 2014-06-19 03:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-23 04:03 - 2014-06-19 03:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-23 04:03 - 2014-06-19 03:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-23 04:03 - 2014-06-19 03:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-23 04:03 - 2014-06-19 03:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-23 04:03 - 2014-06-19 03:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-23 04:03 - 2014-06-19 03:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-23 04:03 - 2014-06-19 03:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-23 04:03 - 2014-06-19 03:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-23 04:03 - 2014-06-19 01:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-23 04:03 - 2014-06-19 01:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-23 04:03 - 2014-06-19 01:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-23 04:03 - 2014-06-19 01:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-23 04:03 - 2014-06-19 01:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-23 04:03 - 2014-06-19 01:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-23 04:03 - 2014-06-19 01:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-23 04:03 - 2014-06-19 01:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-23 04:03 - 2014-06-19 01:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-23 04:03 - 2014-06-19 01:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-23 04:03 - 2014-06-19 01:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-23 04:03 - 2014-06-19 01:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-23 04:03 - 2014-06-18 23:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-23 04:03 - 2014-04-12 10:27 - 00172888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-07-23 04:03 - 2014-04-12 10:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-07-23 04:03 - 2014-04-12 10:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-07-23 04:03 - 2014-04-12 10:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-23 04:03 - 2014-04-12 10:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-23 04:03 - 2014-04-12 10:08 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-23 04:03 - 2014-04-12 10:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-23 04:03 - 2014-04-12 10:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-23 04:03 - 2014-04-12 08:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-07-23 04:03 - 2014-04-12 08:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-07-23 04:03 - 2014-04-12 08:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-07-23 04:03 - 2014-04-12 08:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-07-23 04:03 - 2014-04-12 08:22 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-07-23 04:03 - 2014-04-12 08:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-07-23 04:03 - 2014-04-12 07:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2014-07-23 04:03 - 2014-03-28 20:19 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-07-23 04:03 - 2014-03-23 23:11 - 00269592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-07-23 04:03 - 2014-03-11 04:32 - 06987096 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-23 04:03 - 2014-03-11 04:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-07-23 04:03 - 2014-03-11 01:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-07-23 04:03 - 2014-03-11 01:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-07-23 04:03 - 2014-03-11 01:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-07-23 04:03 - 2014-03-11 01:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-07-23 04:03 - 2014-03-11 01:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-07-23 04:03 - 2014-03-11 01:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-07-23 04:03 - 2014-03-11 01:38 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-23 04:03 - 2014-03-11 01:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-07-23 04:03 - 2014-03-11 01:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-07-23 04:03 - 2014-03-11 01:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-07-23 04:03 - 2014-03-11 01:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-07-23 04:03 - 2014-03-10 04:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-07-23 04:03 - 2014-03-10 02:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-07-23 04:03 - 2014-03-04 00:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-07-23 04:02 - 2014-06-19 03:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-23 04:02 - 2014-06-19 03:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-23 04:02 - 2014-06-19 03:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-23 04:02 - 2014-06-19 03:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-23 04:02 - 2014-06-19 03:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-23 04:02 - 2014-06-19 03:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-23 04:02 - 2014-06-19 03:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-23 04:02 - 2014-06-19 03:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-23 04:02 - 2014-06-19 03:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-23 04:02 - 2014-06-19 03:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-23 04:02 - 2014-06-19 03:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-23 04:02 - 2014-06-19 03:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-23 04:02 - 2014-06-19 01:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-23 04:02 - 2014-06-19 01:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-23 04:02 - 2014-06-19 01:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-23 04:02 - 2014-06-19 01:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-23 04:02 - 2014-06-19 01:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-23 04:02 - 2014-06-19 01:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-23 04:02 - 2014-06-19 01:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-23 04:02 - 2014-06-19 01:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-23 04:02 - 2014-06-19 01:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-23 04:01 - 2014-06-06 15:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-23 04:01 - 2014-06-06 11:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-23 04:01 - 2014-05-29 23:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-23 04:01 - 2014-04-03 12:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-07-23 04:01 - 2014-03-07 01:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-07-23 04:01 - 2014-03-07 01:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-07-23 04:01 - 2014-03-01 10:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-07-23 04:01 - 2014-03-01 10:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-07-23 04:01 - 2014-03-01 09:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-07-23 04:01 - 2014-03-01 07:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-07-23 04:01 - 2014-02-27 00:18 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-07-23 04:01 - 2014-02-27 00:18 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-07-23 04:01 - 2014-02-27 00:18 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-07-23 04:01 - 2014-02-15 05:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-07-22 16:38 - 2014-07-30 11:59 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\.minecraft
2014-07-22 08:49 - 2014-07-22 08:50 - 00000000 ____D () C:\Users\Sasha\Desktop\Sicherheit
2014-07-21 00:49 - 2014-07-21 00:49 - 00000000 ____D () C:\Users\Sasha\AVM_Driver
2014-07-20 20:54 - 2014-07-20 20:54 - 00004096 _____ () C:\Windows\d3dx.dat
2014-07-20 20:46 - 2014-07-20 20:46 - 00001081 _____ () C:\Users\Gast\Desktop\Gothic II spielen.lnk
2014-07-20 20:46 - 2014-07-20 20:46 - 00001081 _____ () C:\Users\Administrator\Desktop\Gothic II spielen.lnk
2014-07-20 20:46 - 2014-07-20 20:46 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-07-20 20:04 - 2014-07-20 20:04 - 00000000 ____D () C:\Users\Sasha\.SquashOccurrences
2014-07-18 12:48 - 2014-07-18 12:48 - 00000000 ____D () C:\Program Files\Microsoft Xbox One Controller for Windows
2014-07-17 20:25 - 2014-07-17 20:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-17 20:25 - 2014-07-17 20:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-16 17:29 - 2014-07-30 10:09 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\DarkWave Studio
2014-07-16 17:25 - 2014-07-30 10:09 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DarkWave Studio
2014-07-16 14:36 - 2014-07-25 15:20 - 00000000 ____D () C:\Users\Sasha\Desktop\asdf_data
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 06:58 - 2014-07-14 06:58 - 00009769 _____ () C:\Users\Sasha\AppData\Local\recently-used.xbel
2014-07-13 03:03 - 2014-07-15 08:27 - 00000000 ____D () C:\Users\Sasha\Desktop\Neuer Ordner (2)
2014-07-12 23:24 - 2014-07-12 23:24 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Arktos Entertainment
2014-07-11 22:30 - 2014-07-11 22:30 - 00000000 ____D () C:\Users\Sasha\.MCTranscodingSDK
2014-07-11 18:59 - 2014-07-12 19:37 - 00000000 ____D () C:\Users\Public\Documents\Lightworks
2014-07-11 18:59 - 2014-07-11 18:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightworks
2014-07-09 17:32 - 2014-07-26 22:27 - 00009972 _____ () C:\Users\Sasha\Desktop\Schulden.ods
2014-07-09 15:24 - 2014-07-26 22:26 - 00000000 ____D () C:\Users\Sasha\Desktop\Die Stämme
2014-07-02 16:21 - 2014-07-02 16:21 - 00000000 ____D () C:\Program Files (x86)\Sony Media Go Install
2014-07-02 16:20 - 2014-07-02 16:20 - 00000000 ____D () C:\Users\Sasha\Podcasts
2014-07-02 16:18 - 2014-07-02 16:18 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-07-02 16:07 - 2014-07-02 16:07 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\IsolatedStorage
2014-07-02 16:07 - 2014-07-02 16:07 - 00000000 ____D () C:\Users\Sasha\AppData\Local\FileViewPro
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-07-30 12:31 - 2014-07-30 12:31 - 00034344 _____ () C:\Users\Sasha\Desktop\FRST.txt
2014-07-30 12:31 - 2014-07-29 20:53 - 00000000 ____D () C:\FRST
2014-07-30 12:29 - 2013-07-03 10:46 - 00001138 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-30 12:15 - 2013-10-30 23:52 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\ClassicShell
2014-07-30 12:08 - 2014-07-30 12:08 - 02093568 _____ (Farbar) C:\Users\Sasha\Desktop\FRST64.exe
2014-07-30 12:02 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-30 11:59 - 2014-07-22 16:38 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\.minecraft
2014-07-30 11:57 - 2013-06-23 17:38 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-30 11:45 - 2013-10-31 00:13 - 00000948 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-852994989-324450782-3891972763-1001UA.job
2014-07-30 11:35 - 2014-07-30 11:25 - 00036239 _____ () C:\Windows\WindowsUpdate.log
2014-07-30 11:13 - 2013-12-24 18:03 - 00000000 ____D () C:\Users\Sasha\Documents\My Games
2014-07-30 11:12 - 2012-12-30 06:13 - 00000000 ____D () C:\Users\Sasha
2014-07-30 11:04 - 2013-05-04 00:41 - 00000000 ____D () C:\ProgramData\Unity
2014-07-30 11:04 - 2012-12-31 21:29 - 00000000 ____D () C:\ProgramData\TechSmith
2014-07-30 10:45 - 2014-07-30 10:45 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-30 10:45 - 2014-07-30 10:45 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-30 10:45 - 2014-07-30 10:45 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-30 10:45 - 2014-07-30 10:45 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-07-30 10:45 - 2014-07-30 10:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-30 10:45 - 2012-11-27 21:46 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-30 10:41 - 2014-03-05 17:30 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\vlc
2014-07-30 10:40 - 2013-10-02 03:24 - 04028416 ___SH () C:\Users\Sasha\Desktop\Thumbs.db
2014-07-30 10:40 - 2012-12-30 01:27 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eFusion
2014-07-30 10:34 - 2014-04-05 22:58 - 00000000 ____D () C:\Users\Sasha\AppData\Local\LogMeIn Hamachi
2014-07-30 10:34 - 2013-08-01 12:42 - 00000000 ____D () C:\Users\Sasha\AppData\Local\CrashDumps
2014-07-30 10:34 - 2013-05-19 12:18 - 00000000 ____D () C:\Users\Sasha\Desktop\Programme
2014-07-30 10:32 - 2013-05-19 12:18 - 00000000 ____D () C:\Users\Sasha\Desktop\Games
2014-07-30 10:27 - 2013-01-10 20:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefly Studios
2014-07-30 10:23 - 2014-07-30 10:23 - 00000000 ____D () C:\Users\Sasha\AppData\Local\cFos
2014-07-30 10:23 - 2014-02-01 02:12 - 00000000 ____D () C:\Users\Sasha\AppData\Local\My Games
2014-07-30 10:23 - 2012-11-27 21:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2014-07-30 10:23 - 2012-11-27 21:51 - 00000000 ____D () C:\Program Files\ASUS
2014-07-30 10:22 - 2014-05-11 08:19 - 00000000 ____D () C:\Users\Sasha\Documents\RCT3
2014-07-30 10:22 - 2013-04-27 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari
2014-07-30 10:17 - 2014-07-30 10:17 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-07-30 10:16 - 2014-02-04 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWood
2014-07-30 10:13 - 2013-12-24 16:14 - 00000000 ____D () C:\Users\Sasha\Documents\onlineTV 8
2014-07-30 10:13 - 2013-07-03 00:07 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\concept design
2014-07-30 10:10 - 2013-09-15 14:58 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-07-30 10:09 - 2014-07-16 17:29 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\DarkWave Studio
2014-07-30 10:09 - 2014-07-16 17:25 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DarkWave Studio
2014-07-30 10:07 - 2014-02-02 04:37 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Clone2Go Video Converter Free Version
2014-07-30 10:07 - 2013-03-24 14:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
2014-07-30 10:06 - 2013-04-14 12:09 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-30 09:56 - 2013-06-10 22:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Allegorithmic
2014-07-30 09:56 - 2012-11-27 21:52 - 00000000 ____D () C:\ProgramData\Adobe
2014-07-30 09:56 - 2012-11-27 21:52 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-07-30 09:55 - 2013-03-14 21:34 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\uTorrent
2014-07-30 00:39 - 2013-06-10 23:57 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-852994989-324450782-3891972763-1001
2014-07-30 00:24 - 2013-01-17 14:08 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\FileZilla
2014-07-30 00:18 - 2014-07-29 23:49 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-29 23:59 - 2013-12-03 16:36 - 00013312 _____ () C:\Users\Sasha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-29 23:57 - 2013-10-02 18:00 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\miner
2014-07-29 23:49 - 2014-07-29 23:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-07-29 23:49 - 2014-07-29 23:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-29 23:49 - 2014-07-29 23:49 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-07-29 23:42 - 2012-11-27 20:52 - 00765620 _____ () C:\Windows\system32\perfh007.dat
2014-07-29 23:42 - 2012-11-27 20:52 - 00161774 _____ () C:\Windows\system32\perfc007.dat
2014-07-29 23:42 - 2012-07-26 08:28 - 01784194 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-29 23:37 - 2013-06-11 18:09 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-07-29 23:36 - 2013-07-03 10:46 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-29 23:36 - 2013-01-31 16:55 - 00000000 ____D () C:\ProgramData\VMware
2014-07-29 23:36 - 2012-12-04 23:11 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-29 23:36 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-29 23:36 - 2012-07-26 06:26 - 00524288 ___SH () C:\Windows\system32\config\BBI
2014-07-29 23:16 - 2014-07-29 23:16 - 00000000 ____D () C:\Windows\ERUNT
2014-07-29 23:12 - 2014-06-01 00:43 - 00000000 ____D () C:\AdwCleaner
2014-07-29 22:48 - 2014-07-29 22:35 - 00000000 ____D () C:\Qoobox
2014-07-29 22:48 - 2012-07-26 06:37 - 00000000 __RHD () C:\Users\Default
2014-07-29 22:45 - 2014-07-29 22:35 - 00000000 ____D () C:\Windows\erdnt
2014-07-29 22:44 - 2012-07-26 06:26 - 00000215 _____ () C:\Windows\system.ini
2014-07-29 22:42 - 2014-07-29 22:42 - 05120240 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-29 22:42 - 2012-07-26 06:26 - 93585408 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-07-29 22:42 - 2012-07-26 06:26 - 21233664 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-07-29 22:42 - 2012-07-26 06:26 - 01835008 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-07-29 22:42 - 2012-07-26 06:26 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-07-29 22:42 - 2012-07-26 06:26 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-07-29 22:31 - 2012-12-29 23:25 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Skype
2014-07-29 22:14 - 2013-01-26 13:28 - 00000000 ____D () C:\Users\Sasha\.gimp-2.8
2014-07-29 22:11 - 2012-12-30 06:13 - 00000000 ___RD () C:\Users\Sasha\Eigene Bilder
2014-07-29 21:13 - 2013-01-29 22:12 - 00000000 ____D () C:\ProgramData\Origin
2014-07-29 16:56 - 2014-07-29 11:30 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Synthesia
2014-07-29 16:43 - 2013-12-17 23:00 - 00000000 ____D () C:\Users\Sasha\AppData\Local\NVIDIA Corporation
2014-07-29 16:42 - 2012-12-04 23:07 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-29 16:23 - 2014-06-02 21:55 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\ImgBurn
2014-07-29 16:21 - 2014-03-26 21:15 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Arma 3
2014-07-29 14:45 - 2013-10-31 00:13 - 00000926 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-852994989-324450782-3891972763-1001Core.job
2014-07-29 11:24 - 2014-07-29 11:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia
2014-07-29 10:57 - 2014-07-29 10:57 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Spiritsoft
2014-07-28 19:48 - 2014-04-11 07:58 - 00000000 ____D () C:\Users\Sasha\Documents\Visual Studio 2010
2014-07-28 18:53 - 2014-07-28 18:53 - 00001406 _____ () C:\Users\Sasha\AppData\Roaming\BreakingPoint_Options.ini
2014-07-28 18:00 - 2014-07-24 12:30 - 00000297 _____ () C:\Users\Sasha\AppData\Roaming\BreakingPoint_Login.ini
2014-07-28 17:37 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-07-28 17:30 - 2014-03-26 22:28 - 00000000 ____D () C:\Users\Sasha\Documents\FIFA 14
2014-07-28 15:47 - 2014-07-28 15:47 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\BitTorrent Sync
2014-07-27 16:17 - 2013-09-25 05:26 - 00497664 ___SH () C:\Users\Sasha\Downloads\Thumbs.db
2014-07-27 13:45 - 2012-12-30 04:55 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-07-27 12:27 - 2012-12-30 04:48 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-07-26 22:27 - 2014-07-09 17:32 - 00009972 _____ () C:\Users\Sasha\Desktop\Schulden.ods
2014-07-26 22:26 - 2014-07-09 15:24 - 00000000 ____D () C:\Users\Sasha\Desktop\Die Stämme
2014-07-25 21:22 - 2013-01-23 20:02 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Audacity
2014-07-25 21:19 - 2013-01-30 12:01 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\TS3Client
2014-07-25 18:27 - 2014-04-19 01:35 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Ubisoft
2014-07-25 15:20 - 2014-07-16 14:36 - 00000000 ____D () C:\Users\Sasha\Desktop\asdf_data
2014-07-25 14:50 - 2014-07-29 16:42 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-07-25 14:50 - 2014-07-29 16:42 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-07-25 14:50 - 2013-11-14 21:34 - 01283136 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-07-25 14:50 - 2013-11-14 21:34 - 01126480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-07-25 14:05 - 2014-07-25 14:05 - 00000000 ____D () C:\Windows\rescache
2014-07-25 08:03 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData
2014-07-25 08:03 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-25 08:03 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-25 08:03 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-25 08:03 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-25 08:03 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-07-25 08:03 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-07-24 11:54 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-24 11:53 - 2014-07-24 11:53 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Bohemia_Interactive
2014-07-24 11:53 - 2014-07-24 11:53 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Arma 3 Launcher
2014-07-24 11:53 - 2013-08-23 00:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-24 11:51 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-07-24 11:50 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-07-24 11:50 - 2012-07-26 08:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-24 06:06 - 2013-03-14 14:35 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-24 06:06 - 2013-03-14 14:35 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-24 01:06 - 2013-03-14 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-23 20:49 - 2013-11-21 23:21 - 00000000 ____D () C:\Users\Sasha\Desktop\Berwerbungen
2014-07-23 06:08 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-22 10:06 - 2014-06-03 16:55 - 00004034 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1382540714
2014-07-22 09:18 - 2014-02-16 10:19 - 00000000 ___RD () C:\Users\Sasha\Dropbox
2014-07-22 08:50 - 2014-07-22 08:49 - 00000000 ____D () C:\Users\Sasha\Desktop\Sicherheit
2014-07-22 08:29 - 2013-05-03 20:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unreal Development Kit
2014-07-22 08:29 - 2012-12-30 00:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2014-07-22 08:28 - 2013-12-07 15:39 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-07-22 08:28 - 2013-09-01 16:57 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Samsung
2014-07-22 08:28 - 2013-06-21 13:57 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Samsung
2014-07-22 08:27 - 2012-11-27 21:51 - 00000000 ____D () C:\Windows\System32\Tasks\ASUS
2014-07-22 08:24 - 2012-11-27 22:00 - 00000000 ____D () C:\ProgramData\Nero
2014-07-22 08:23 - 2013-02-03 15:30 - 00000000 ____D () C:\ProgramData\MTA San Andreas All
2014-07-22 08:22 - 2013-12-08 00:06 - 00000000 ____D () C:\Program Files (x86)\MAGIX
2014-07-22 08:22 - 2012-12-04 23:08 - 00000000 ____D () C:\ProgramData\MAGIX
2014-07-22 08:21 - 2013-05-28 09:00 - 00000000 ____D () C:\Windows\SysWOW64\MAGIX
2014-07-22 08:21 - 2013-05-28 09:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2014-07-22 08:20 - 2013-12-03 16:29 - 00000000 ____D () C:\Users\Public\Documents\Reallusion
2014-07-22 08:20 - 2013-12-02 00:45 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\JAM Software
2014-07-22 08:18 - 2014-03-06 15:27 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\GameRanger
2014-07-22 08:17 - 2014-05-11 08:39 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\DAEMON Tools Lite
2014-07-22 06:26 - 2014-02-16 10:18 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\DropboxMaster
2014-07-22 06:26 - 2014-02-16 10:18 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Dropbox
2014-07-22 06:26 - 2013-09-28 22:53 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Overwolf
2014-07-21 17:48 - 2012-12-31 16:11 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Spotify
2014-07-21 17:44 - 2013-08-01 13:29 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Spotify
2014-07-21 00:49 - 2014-07-21 00:49 - 00000000 ____D () C:\Users\Sasha\AVM_Driver
2014-07-20 20:54 - 2014-07-20 20:54 - 00004096 _____ () C:\Windows\d3dx.dat
2014-07-20 20:46 - 2014-07-20 20:46 - 00001081 _____ () C:\Users\Gast\Desktop\Gothic II spielen.lnk
2014-07-20 20:46 - 2014-07-20 20:46 - 00001081 _____ () C:\Users\Administrator\Desktop\Gothic II spielen.lnk
2014-07-20 20:46 - 2014-07-20 20:46 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-07-20 20:04 - 2014-07-20 20:04 - 00000000 ____D () C:\Users\Sasha\.SquashOccurrences
2014-07-20 17:29 - 2013-10-08 17:13 - 00000000 ____D () C:\Users\Sasha\AppData\Local\SKIDROW
2014-07-20 15:05 - 2013-05-10 00:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-20 15:05 - 2012-12-30 06:13 - 00001002 _____ () C:\Users\Sasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-18 12:48 - 2014-07-18 12:48 - 00000000 ____D () C:\Program Files\Microsoft Xbox One Controller for Windows
2014-07-17 20:25 - 2014-07-17 20:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-17 20:25 - 2014-07-17 20:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-15 08:27 - 2014-07-13 03:03 - 00000000 ____D () C:\Users\Sasha\Desktop\Neuer Ordner (2)
2014-07-15 08:00 - 2013-10-23 18:51 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Deployment
2014-07-14 06:58 - 2014-07-14 06:58 - 00009769 _____ () C:\Users\Sasha\AppData\Local\recently-used.xbel
2014-07-14 06:57 - 2013-12-05 22:51 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Paint.NET
2014-07-13 10:40 - 2013-10-06 21:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Infestation Survivor Stories
2014-07-12 23:24 - 2014-07-12 23:24 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Arktos Entertainment
2014-07-12 21:06 - 2013-01-01 19:40 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-07-12 19:37 - 2014-07-11 18:59 - 00000000 ____D () C:\Users\Public\Documents\Lightworks
2014-07-11 22:30 - 2014-07-11 22:30 - 00000000 ____D () C:\Users\Sasha\.MCTranscodingSDK
2014-07-11 18:59 - 2014-07-11 18:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightworks
2014-07-08 19:57 - 2013-06-23 17:38 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-08 13:42 - 2013-09-21 19:02 - 00617984 ___SH () C:\Users\Sasha\Documents\Thumbs.db
2014-07-06 14:18 - 2013-09-15 15:23 - 00000000 ____D () C:\Users\Sasha\AppData\Local\VMware
2014-07-06 14:18 - 2013-01-31 16:55 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\VMware
2014-07-05 13:13 - 2013-11-21 23:20 - 00000000 ____D () C:\Users\Sasha\Desktop\Mama
2014-07-03 22:09 - 2013-10-01 20:03 - 00000000 ____D () C:\Users\Sasha\AppData\Local\DayZ
2014-07-02 16:22 - 2013-05-12 23:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-07-02 16:22 - 2013-05-12 23:43 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-07-02 16:21 - 2014-07-02 16:21 - 00000000 ____D () C:\Program Files (x86)\Sony Media Go Install
2014-07-02 16:20 - 2014-07-02 16:20 - 00000000 ____D () C:\Users\Sasha\Podcasts
2014-07-02 16:20 - 2013-08-02 01:10 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Sony
2014-07-02 16:20 - 2013-01-02 22:33 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\Sony
2014-07-02 16:18 - 2014-07-02 16:18 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-07-02 16:17 - 2013-09-02 08:51 - 00000000 ____D () C:\Users\Sasha\AppData\Local\Downloaded Installations
2014-07-02 16:07 - 2014-07-02 16:07 - 00000000 ____D () C:\Users\Sasha\AppData\Roaming\IsolatedStorage
2014-07-02 16:07 - 2014-07-02 16:07 - 00000000 ____D () C:\Users\Sasha\AppData\Local\FileViewPro
2014-06-30 03:54 - 2013-09-01 21:20 - 00000000 ____D () C:\ProgramData\Apple Computer
Some content of TEMP:
====================
C:\Users\Sasha\AppData\Local\Temp\DELFFE2.EXE
C:\Users\Sasha\AppData\Local\Temp\GLB1A2B.EXE
C:\Users\Sasha\AppData\Local\Temp\Quarantine.exe
C:\Users\Sasha\AppData\Local\Temp\_is221E.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-27 05:51
==================== End Of Log ============================
|
Baum-Darstellung