| |
| |||||||
Log-Analyse und Auswertung: Browser von download protect 2.2.7/2.2.8 befallenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
10.07.2015, 20:03
| #1 |
 |  Browser von download protect 2.2.7/2.2.8 befallen Thema: Maleware: "Download Protect 2.2.7" beim Installieren von Freeware eingefangen Das Addon "Download Protect" erscheint in allen meinen Browsern (Mozilla Firefox, google Chrome, MS Internet Explorer) Es lässt sich nicht wie andere Addons deinstallieren. Löscht man die im Browser angegebenen Pfade zu relevanten Files, verschwindet das Addon zwar vorübergehend, ist aber nach dem nächsten Reboot des Rechners wieder da. Malewarebites AntiMaleware habe ich bereits ausgeführt. Es wurden zwar über 100 verdächtige files gefunden und in Quarantäne verschoben, das Addon "Download Protect" blieb jedoch erhalten. Des weiteren lässt sich das Addon "Download Protect" zwar im Browser für die aktuelle Sitzung deaktivieren, schaltet sich nach einem Reboot aber ebenfalls selbsttätig wieder aktiv. Unternommen Schritte (gemäß Trojanerboard Checkliste): Defogger: Ausführen: Problemlos. REsultat: Keine Fehlermeldung für Defogg FRST: Ausgeführt logfiles erstellt GMER Beim Start von GMER kommt folgende Fehlermeldung c:\windows\system32\config\system: Der Prozess kann nocht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. Nach Start des Scans kommt nochmal eine Fehlermeldung: c:\user\dietmar\ntuser.dat Der Prozess kann nocht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. Danach meldet gmer: The scan finished susscessfully. Logfiles: 1. defogger: Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 03:04 on 26/06/2015 (dietmar)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:24-06-2015
Ran by dietmar (administrator) on LENOVO-PC on 26-06-2015 03:18:50
Running from C:\Users\dietmar\Desktop\trojanerboard\FRST
Loaded Profiles: dietmar & MSSQL$SQLEXPRESS2014 (Available Profiles: dietmar & MSSQL$SQLEXPRESS2014 & DefaultAppPool)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Windows\System32\DnsBlockUpdateSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\MDM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\sqlservr.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
() C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\extapsup.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Xmarks.com) C:\Program Files (x86)\Xmarks\IE Extension\xmarkssync.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\DnsBlock\DnsBlockTray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Lenovo\Lenovo Transition\TransitionServer.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenUSB.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 4\program\swriter.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 4\program\soffice.exe
(The Document Foundation) C:\Program Files (x86)\LibreOffice 4\program\soffice.bin
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
() C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
Failed to access process -> plugin-container.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\E046963F.LenovoCompanion_2.2.16.0_x86__k1h2ywk1493x8\Lenovo.Discovery.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2776816 2014-02-06] (Synaptics Incorporated)
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [255480 2013-06-20] (Lenovo Group Limited)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [TpShocks] => C:\WINDOWS\system32\TpShocks.exe [384296 2013-10-28] (Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [600568 2013-11-05] (Lenovo Corporation)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163520 2015-04-09] (IvoSoft)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [909016 2013-10-21] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [552960 2013-05-14] (Vimicro)
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [750320 2014-02-28] (Lenovo)
HKLM-x32\...\Run: [PWMTRV] => rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [DnsBlock] => C:\Program Files (x86)\DnsBlock\DnsBlockTray.exe [788000 2015-06-20] ()
HKLM\...\RunOnce: [WinSat] => winsat dwm -xml results.xml
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\Run: [Xmarks] => C:\Program Files (x86)\Xmarks\IE Extension\xmarkssync.exe [1178680 2014-11-06] (Xmarks.com)
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\MountPoints2: F - "F:\AutoRun.exe"
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\MountPoints2: {164435bc-095b-11e5-8287-0c8bfdd19371} - "F:\ViewHtml.exe"
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\MountPoints2: {164451e8-095b-11e5-8287-0c8bfdd19371} - "F:\AutoRun.exe"
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\MountPoints2: {3aba170a-f4a8-11e4-8279-0c8bfdd19371} - "F:\.\Setup.exe"
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\MountPoints2: {51d6b9b2-0fdc-11e5-828b-0050b66f480d} - "G:\AutoRun.exe"
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\MountPoints2: {51d6b9c8-0fdc-11e5-828b-0050b66f480d} - "F:\AutoRun.exe"
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\MountPoints2: {51d6b9f3-0fdc-11e5-828b-0050b66f480d} - "F:\AutoRun.exe"
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\...\MountPoints2: {ab98e2d6-0702-11e5-8286-0c8bfdd19371} - "F:\ViewHtml.exe"
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web.de/
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-1349822815-2598862020-373602666-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.bing.com/
URLSearchHook: [S-1-5-80-74102703-195227291-2601699642-576852742-3294486561] ATTENTION ==> Default URLSearchHook is missing
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1349822815-2598862020-373602666-1001 -> DefaultScope {620017E4-B96A-4FD3-9EA9-BC52D05EC63D} URL =
SearchScopes: HKU\S-1-5-21-1349822815-2598862020-373602666-1001 -> {620017E4-B96A-4FD3-9EA9-BC52D05EC63D} URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-03] (Oracle Corporation)
BHO: DownloadProtect Extension -> {C654F3FE-8E84-4BB7-87CF-8D9171FC3C73} -> C:\Program Files\{787A4207-5990-4A59-8A6D-BF165DA52682}\{25F6BB40-D1E0-429F-896E-4565933F586D}.bin [2015-06-25] (Download Protect)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-03] (Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-04-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
BHO-x32: DownloadProtect Extension -> {C654F3FE-8E84-4BB7-87CF-8D9171FC3C73} -> C:\Program Files (x86)\{6451D48D-9C43-4A3C-BA5C-D17F7F9DB6AD}\{B6305D84-AE27-49A2-BAF9-510DABA89CFE}.bin [2015-06-25] (Download Protect)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-04-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
DPF: HKLM-x32 {A6616B31-4860-41E2-98E3-CA7649AF172F} file:///F:/launch.ocx
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\DnsBlockA.dll [343584 2015-06-20] (DnsBlock)
Winsock: Catalog5 09 C:\WINDOWS\SysWOW64\DnsBlockB.dll [343584 2015-06-20] (DnsBlock)
Winsock: Catalog5-x64 05 C:\WINDOWS\system32\DnsBlockA.dll [434208 2015-06-20] (DnsBlock)
Winsock: Catalog5-x64 09 C:\WINDOWS\system32\DnsBlockB.dll [433696 2015-06-20] (DnsBlock)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6DCF1004-DED2-485B-88BB-064FB73CCE52}: [NameServer] 10.74.210.210 10.74.210.211
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\dietmar\AppData\Roaming\Mozilla\Firefox\Profiles\g8w01yf3.default
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_160.dll [2015-06-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @hola.org/vlc,version=1.8.328 -> C:\Users\dietmar\AppData\Local\Hola\firefox_hola\app\vlc No File
FF Plugin HKU\S-1-5-21-1349822815-2598862020-373602666-1001: @hola.org/vlc,version=1.8.204 -> C:\Users\dietmar\AppData\Local\Hola\firefox\app\vlc No File
FF HKLM-x32\...\Firefox\Extensions: [{F1E2DF0C-8EAB-4AAF-878E-853E98BCAB5A}] - C:\WINDOWS\Installer\{45F9147F-489F-46DC-A5CE-27F358C92A32}\{F1E2DF0C-8EAB-4AAF-878E-853E98BCAB5A}.xpi
FF Extension: Download Protect - C:\WINDOWS\Installer\{45F9147F-489F-46DC-A5CE-27F358C92A32}\{F1E2DF0C-8EAB-4AAF-878E-853E98BCAB5A}.xpi [2015-06-22]
FF HKLM-x32\...\Firefox\Extensions: [{EFA5F30A-020C-4385-94B0-981865214E9C}] - C:\WINDOWS\Installer\{3FD540D9-C72D-4FD9-BB7C-191DD129C7D8}\{EFA5F30A-020C-4385-94B0-981865214E9C}.xpi
FF Extension: Download Protect - C:\WINDOWS\Installer\{3FD540D9-C72D-4FD9-BB7C-191DD129C7D8}\{EFA5F30A-020C-4385-94B0-981865214E9C}.xpi [2015-06-22]
FF HKLM-x32\...\Firefox\Extensions: [{3E4405C6-6452-47C6-91AC-34450BF93D1A}] - C:\WINDOWS\Installer\{1ACC8B11-B31F-4667-8D03-FAD30AD05B2D}\{3E4405C6-6452-47C6-91AC-34450BF93D1A}.xpi
FF Extension: Download Protect - C:\WINDOWS\Installer\{1ACC8B11-B31F-4667-8D03-FAD30AD05B2D}\{3E4405C6-6452-47C6-91AC-34450BF93D1A}.xpi [2015-06-22]
FF HKLM-x32\...\Firefox\Extensions: [{B0EA8140-E063-426F-8BBD-B9682B08B5C6}] - C:\WINDOWS\Installer\{3EF4BBD8-EE10-4A91-9471-761FFEE3FD5C}\{B0EA8140-E063-426F-8BBD-B9682B08B5C6}.xpi
FF Extension: Download Protect - C:\WINDOWS\Installer\{3EF4BBD8-EE10-4A91-9471-761FFEE3FD5C}\{B0EA8140-E063-426F-8BBD-B9682B08B5C6}.xpi [2015-06-25]
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
StartMenuInternet: Google Chrome - chrome.exe
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [573432 2013-11-05] (Lenovo Corporation)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [9281840 2013-10-11] (DisplayLink Corp.)
R2 DnsBlockUpdateSvc; C:\WINDOWS\system32\DnsBlockUpdateSvc.exe [149024 2015-06-20] ()
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [140016 2014-02-28] (Lenovo)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [558592 2010-11-03] (Hauppauge Computer Works) [File not signed]
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315352 2014-07-29] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-08-29] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-08-01] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2083592 2013-11-06] (Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584632 2015-03-06] (LENOVO INCORPORATED.)
R3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [695800 2013-11-05] (Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-10] (Lenovo Group Limited)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [467720 2013-11-01] ()
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272440 2015-03-09] (Lenovo)
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1872152 2015-05-09] (Maxthon)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 MSSQL$SQLEXPRESS2014; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\sqlservr.exe [370368 2014-02-21] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4466688 2007-11-08] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-10-11] ()
S4 SQLAgent$SQLEXPRESS2014; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\SQLAGENT.EXE [613056 2014-02-21] (Microsoft Corporation)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [49136 2015-05-15] ()
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2015-04-29] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2015-04-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3671792 2013-10-11] (Intel® Corporation)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AX88772; C:\Windows\system32\DRIVERS\ax88772.sys [113864 2013-07-18] (ASIX Electronics Corp.)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132920 2013-04-23] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1386296 2013-08-19] (Motorola Solutions, Inc.)
R3 DisplayLinkUsbIo_x64; C:\Windows\System32\drivers\DisplayLinkUsbIo_x64_7.4.48800.0.sys [44944 2013-10-07] ()
R3 dlcdcncm6_x64; C:\Windows\system32\DRIVERS\dlcdcncm6_x64.sys [80688 2013-10-11] (DisplayLink Corp.)
R3 dlusbaudio; C:\Windows\system32\DRIVERS\dlusbaudio_x64.sys [203152 2013-10-11] (DisplayLink Corp.)
S3 ewusbnet; C:\Windows\system32\DRIVERS\ewusbnet.sys [246224 2009-12-07] (Huawei Technologies Co., Ltd.)
R0 Fastboot; C:\Windows\System32\DRIVERS\fastboot.sys [65928 2014-02-28] (Windows (R) Win 7 DDK provider)
R3 hcw17bda; C:\Windows\system32\drivers\hcw17bda.sys [67456 2010-01-27] (Hauppauge Computer Works, Inc.)
R3 hwusbdev; C:\Windows\system32\DRIVERS\ewusbdev.sys [114304 2009-10-12] (Huawei Technologies Co., Ltd.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [117192 2013-08-29] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-01] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-01] ()
R3 INETMON; C:\WINDOWS\System32\Drivers\INETMON.sys [29088 2013-08-01] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-01] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3607520 2013-10-14] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
S4 RsFx0300; C:\Windows\System32\DRIVERS\RsFx0300.sys [247488 2014-02-21] (Microsoft Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [508120 2014-08-18] (Realsil Semiconductor Corporation)
R3 SensorsHIDClassDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2014-02-06] (Synaptics Incorporated)
R3 VBAudioVACMME; C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2015-06-21] (Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\Windows\system32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2015-06-21] (Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1065344 2013-09-11] (Vimicro Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-26 03:03 - 2015-06-26 03:13 - 00000000 ____D C:\Users\dietmar\Desktop\trojanerboard
2015-06-26 03:01 - 2015-06-26 03:01 - 04718584 _____ (Avira Operations GmbH & Co. KG) C:\Users\dietmar\Downloads\avira_de_av_558ca44ee5bc3__ws.exe
2015-06-26 01:37 - 2015-06-26 01:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-06-26 01:37 - 2015-06-26 01:37 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2015-06-26 01:36 - 2015-06-26 01:36 - 00000000 ____D C:\Users\Public\Documents\Conexant
2015-06-26 01:36 - 2013-07-02 09:10 - 00004712 _____ C:\WINDOWS\system32\Drivers\SamSfPa.dat
2015-06-26 01:36 - 2011-09-01 14:23 - 00447104 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\SASrv.exe
2015-06-26 01:35 - 2013-07-25 13:39 - 00206552 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2015-06-26 01:32 - 2013-10-18 12:47 - 01387200 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\Drivers\CHDRT64.sys
2015-06-26 01:32 - 2013-09-09 12:02 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-06-26 01:32 - 2013-09-09 12:02 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-06-26 01:32 - 2013-09-09 12:01 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-06-26 01:32 - 2013-09-09 12:01 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-06-26 01:32 - 2013-09-03 17:16 - 00936640 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64BP06.dll
2015-06-26 01:32 - 2013-08-20 12:28 - 02832088 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\UCI64A40.DLL
2015-06-26 01:32 - 2013-08-05 17:11 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-06-26 01:32 - 2013-05-15 14:27 - 00406208 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CSpkExt64.dll
2015-06-26 01:32 - 2012-06-29 12:04 - 00050848 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxPageMaster64.dll
2015-06-26 01:32 - 2012-01-16 09:42 - 00666240 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\C3DHPExt64.dll
2015-06-26 01:32 - 2011-01-18 07:35 - 00030893 _____ C:\WINDOWS\system32\Drivers\Mixer.ini
2015-06-26 01:28 - 2014-07-29 12:57 - 23048704 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 18033152 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 10942144 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 08461824 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 06625280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 04348888 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 04345304 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 03818864 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-06-26 01:28 - 2014-07-29 12:57 - 02478384 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 02023936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 01756160 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 01673216 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 01552896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 01455776 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 01137080 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 01132960 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00930264 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00792736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00734720 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00657920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00646304 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00603296 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00544216 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00543704 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00501720 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00446424 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00444408 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00397272 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00373248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00358912 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00352232 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00330240 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00315352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00294912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00291328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00272384 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00254976 _____ C:\WINDOWS\system32\igfxCPL.cpl
2015-06-26 01:28 - 2014-07-29 12:57 - 00250368 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00244184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00223744 _____ C:\WINDOWS\system32\igdde64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00218808 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00214016 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00191448 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00188456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00187508 _____ C:\WINDOWS\system32\resTHA.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00184320 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00183808 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00183800 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3855.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00180324 _____ C:\WINDOWS\system32\resELL.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00176180 _____ C:\WINDOWS\system32\resRUS.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00162036 _____ C:\WINDOWS\system32\resARA.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00161492 _____ C:\WINDOWS\system32\resHEB.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00161428 _____ C:\WINDOWS\system32\resJPN.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00159056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00156852 _____ C:\WINDOWS\system32\resFRA.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00156836 _____ C:\WINDOWS\system32\resHUN.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00155140 _____ C:\WINDOWS\system32\resKOR.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00155044 _____ C:\WINDOWS\system32\resITA.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00155044 _____ C:\WINDOWS\system32\resDEU.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00154884 _____ C:\WINDOWS\system32\resROM.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00154772 _____ C:\WINDOWS\system32\resESN.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00154624 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00154340 _____ C:\WINDOWS\system32\resPLK.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00154196 _____ C:\WINDOWS\system32\resSKY.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00154004 _____ C:\WINDOWS\system32\resNLD.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00153444 _____ C:\WINDOWS\system32\resPTB.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00153300 _____ C:\WINDOWS\system32\resTRK.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00153268 _____ C:\WINDOWS\system32\resCSY.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00153140 _____ C:\WINDOWS\system32\resPTG.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-06-26 01:28 - 2014-07-29 12:57 - 00152724 _____ C:\WINDOWS\system32\resFIN.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00152292 _____ C:\WINDOWS\system32\resHRV.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00151844 _____ C:\WINDOWS\system32\resSVE.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00151668 _____ C:\WINDOWS\system32\resSLV.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00150740 _____ C:\WINDOWS\system32\resNOR.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00150228 _____ C:\WINDOWS\system32\resDAN.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00148916 _____ C:\WINDOWS\system32\resENU.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00147140 _____ C:\WINDOWS\system32\resCHT.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00146308 _____ C:\WINDOWS\system32\resCHS.cui
2015-06-26 01:28 - 2014-07-29 12:57 - 00143360 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00070144 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00069632 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00058880 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00030720 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00010752 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00010240 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00005120 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00005120 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-06-26 01:28 - 2014-07-29 12:57 - 00002568 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-06-25 22:32 - 2015-06-25 23:51 - 00000101 ____H C:\Users\dietmar\Desktop\.~lock.install.lenovo.odt#
2015-06-25 19:03 - 2015-06-25 19:04 - 00001251 _____ C:\Users\dietmar\Desktop\SPEEDPORT.lnk
2015-06-25 17:18 - 2015-06-25 17:18 - 00000000 ____D C:\Program Files\{787A4207-5990-4A59-8A6D-BF165DA52682}
2015-06-25 17:18 - 2015-06-25 17:18 - 00000000 ____D C:\Program Files (x86)\{6451D48D-9C43-4A3C-BA5C-D17F7F9DB6AD}
2015-06-25 01:41 - 2015-06-25 01:41 - 00003372 _____ C:\Users\dietmar\Desktop\email-Fernuni.txt
2015-06-25 00:10 - 2015-06-25 00:10 - 00000000 ____D C:\Program Files (x86)\ImageWriter
2015-06-24 23:15 - 2015-06-24 23:32 - 00000000 ____D C:\Users\dietmar\Desktop\dfk-data-Trancend
2015-06-24 22:08 - 2015-06-24 22:08 - 00000000 ____D C:\Program Files\VueScan
2015-06-24 02:24 - 2015-06-24 02:24 - 00000000 ____D C:\Program Files\{655F2B7C-2874-4524-83E1-6F5FBABEBD9E}
2015-06-24 02:24 - 2015-06-24 02:24 - 00000000 ____D C:\Program Files (x86)\{4C83E701-12E1-40A0-9B93-8EE6F5F1C9C6}
2015-06-23 21:55 - 2015-06-24 17:02 - 00000000 ____D C:\Users\dietmar\Desktop\Telefonie
2015-06-23 21:54 - 2015-06-23 22:20 - 00013208 _____ C:\Users\dietmar\Desktop\Tätigkeitsbericht.D.KremerBeiINASchaeffler.odt
2015-06-23 19:23 - 2015-06-23 19:23 - 00001877 _____ C:\Users\dietmar\Desktop\Luna.lnk
2015-06-23 02:14 - 2015-06-25 21:26 - 00000985 _____ C:\Users\dietmar\Desktop\trojanerboard.txt
2015-06-23 01:19 - 2015-06-26 03:18 - 00000000 ____D C:\FRST
2015-06-23 00:45 - 2015-06-23 00:45 - 00000000 _____ C:\Users\dietmar\defogger_reenable
2015-06-22 22:53 - 2015-06-22 22:53 - 00015360 _____ C:\Users\dietmar\Desktop\LinsenTests.xls
2015-06-22 05:08 - 2015-06-22 05:08 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\Mozilla
2015-06-22 05:08 - 2015-06-22 05:08 - 00000000 ____D C:\Users\dietmar\AppData\Local\Mozilla
2015-06-22 05:08 - 2015-06-22 05:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-22 05:08 - 2015-06-22 05:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-22 03:08 - 2015-06-22 03:08 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-06-22 03:08 - 2015-06-22 03:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-22 03:08 - 2015-06-22 03:08 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2015-06-22 03:08 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-06-22 03:08 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-06-22 03:08 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-06-22 02:15 - 2015-06-22 02:15 - 00001201 _____ C:\Users\dietmar\Desktop\downloadProtect.txt
2015-06-22 00:52 - 2015-06-22 00:55 - 00000000 ____D C:\Program Files\AVAST Software
2015-06-22 00:49 - 2015-06-22 00:49 - 05683024 _____ (Avast Software s.r.o.) C:\Users\dietmar\Downloads\avastclear.exe
2015-06-21 03:54 - 2015-06-24 02:21 - 00002866 _____ C:\Users\dietmar\AppData\Roaming\VoiceMeeterDefault.xml
2015-06-21 03:20 - 2015-06-21 03:20 - 00041192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vbaudio_vmvaio64_win7.sys
2015-06-21 03:20 - 2015-06-21 03:20 - 00000000 ____D C:\Program Files (x86)\VB
2015-06-21 02:52 - 2015-06-21 03:21 - 00000000 ____D C:\Program Files\VB
2015-06-20 22:29 - 2015-06-20 22:59 - 00159744 _____ C:\Users\dietmar\Documents\Studium.mdb
2015-06-20 04:06 - 2015-06-21 01:07 - 00000356 _____ C:\WINDOWS\Tasks\Chromium.job
2015-06-20 04:06 - 2015-06-20 04:06 - 00002694 _____ C:\WINDOWS\System32\Tasks\Chromium
2015-06-20 04:05 - 2015-06-22 04:15 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\Opera Software
2015-06-20 04:05 - 2015-06-22 04:15 - 00000000 ____D C:\Users\dietmar\AppData\Local\Opera Software
2015-06-20 04:05 - 2015-06-22 04:15 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-20 04:05 - 2015-06-20 14:39 - 00000000 ____D C:\Program Files (x86)\PC Speed Maximizer
2015-06-20 04:05 - 2015-06-20 04:05 - 00003260 _____ C:\WINDOWS\System32\Tasks\Opera N Sunday
2015-06-20 04:05 - 2015-06-20 04:05 - 00003260 _____ C:\WINDOWS\System32\Tasks\Opera N Saturday
2015-06-20 04:05 - 2015-06-20 04:05 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\Shortcut
2015-06-20 03:54 - 2015-06-20 03:54 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\dlg
2015-06-20 03:53 - 2015-06-25 17:18 - 00000306 __RSH C:\ProgramData\ntuser.pol
2015-06-20 03:53 - 2015-06-20 03:53 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\AVG
2015-06-20 03:52 - 2015-06-20 03:53 - 00000000 ____D C:\ProgramData\AVG
2015-06-20 03:52 - 2015-06-20 03:52 - 00471968 _____ C:\WINDOWS\SysWOW64\dns.block
2015-06-20 03:52 - 2015-06-20 03:52 - 00471968 _____ C:\WINDOWS\system32\dns.block
2015-06-20 03:52 - 2015-06-20 03:52 - 00000000 ____D C:\Users\dietmar\AppData\Local\DnsBlock
2015-06-20 03:52 - 2015-06-20 03:52 - 00000000 ____D C:\Users\dietmar\AppData\Local\Avg
2015-06-20 03:52 - 2015-06-20 03:52 - 00000000 ____D C:\Program Files (x86)\DnsBlock
2015-06-20 03:52 - 2015-06-20 03:52 - 00000000 ____D C:\Program Files (x86)\AVG
2015-06-20 03:51 - 2015-06-25 19:45 - 00000390 _____ C:\WINDOWS\Tasks\UEUEUFX1.job
2015-06-20 03:51 - 2015-06-20 03:51 - 00434208 _____ (DnsBlock) C:\WINDOWS\system32\DnsBlockA.dll
2015-06-20 03:51 - 2015-06-20 03:51 - 00433696 _____ (DnsBlock) C:\WINDOWS\system32\DnsBlockB.dll
2015-06-20 03:51 - 2015-06-20 03:51 - 00343584 _____ (DnsBlock) C:\WINDOWS\SysWOW64\DnsBlockB.dll
2015-06-20 03:51 - 2015-06-20 03:51 - 00343584 _____ (DnsBlock) C:\WINDOWS\SysWOW64\DnsBlockA.dll
2015-06-20 03:51 - 2015-06-20 03:51 - 00149024 _____ C:\WINDOWS\system32\DnsBlockUpdateSvc.exe
2015-06-20 03:51 - 2015-06-20 03:51 - 00002904 _____ C:\WINDOWS\System32\Tasks\UEUEUFX1
2015-06-20 03:51 - 2015-06-20 03:51 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\Browser-Security
2015-06-20 03:51 - 2015-06-20 03:51 - 00000000 ____D C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8
2015-06-20 03:51 - 2015-06-20 03:51 - 00000000 ____D C:\Program Files (x86)\WEB.DE MailCheck
2015-06-19 01:59 - 2015-06-19 01:59 - 08142207 _____ C:\Users\dietmar\Desktop\Bewerbung.D.Kremer.Hemmerbach.odt
2015-06-19 01:54 - 2015-06-20 22:59 - 00000411 _____ C:\Users\dietmar\Desktop\bewerbÜbers.txt
2015-06-18 20:41 - 2015-06-18 20:41 - 00000000 ____D C:\Users\dietmar\AppData\Local\Macromedia
2015-06-17 03:08 - 2015-06-17 03:08 - 00000000 ____D C:\Users\dietmar\AppData\Local\Conexant
2015-06-17 02:36 - 2015-06-17 03:11 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-06-17 02:06 - 2015-06-20 03:10 - 00006880 _____ C:\WINDOWS\SMinstall.log
2015-06-17 01:46 - 2015-06-17 01:46 - 00000000 ____D C:\Program Files (x86)\Spectrum
2015-06-16 15:53 - 2015-06-23 21:35 - 00002253 _____ C:\Users\dietmar\Desktop\Telefonie.lnk
2015-06-16 00:22 - 2015-06-16 00:22 - 00000000 ____D C:\Users\dietmar\AppData\Local\Apple Computer
2015-06-15 22:25 - 2015-06-25 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anwendungen
2015-06-15 20:30 - 2015-06-15 20:30 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\Apple Computer
2015-06-15 14:53 - 2015-06-20 19:52 - 00000677 _____ C:\Users\dietmar\Desktop\DiDo.txt
2015-06-15 13:04 - 2015-06-15 13:04 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2015-06-15 13:04 - 2015-06-15 13:04 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2015-06-15 02:38 - 2015-06-15 02:38 - 00000000 ___SD C:\Users\dietmar\Documents\Meine Shapes
2015-06-15 02:34 - 2015-06-15 02:35 - 00000000 ____D C:\Program Files (x86)\QuickTime
2015-06-15 02:34 - 2015-06-15 02:34 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2015-06-15 02:34 - 2015-06-15 02:34 - 00000000 ____D C:\Users\dietmar\AppData\Local\Apple
2015-06-15 02:34 - 2015-06-15 02:34 - 00000000 ____D C:\ProgramData\Apple Computer
2015-06-15 02:34 - 2015-06-15 02:34 - 00000000 ____D C:\ProgramData\Apple
2015-06-15 02:34 - 2015-06-15 02:34 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-06-15 02:32 - 2015-06-15 02:32 - 00000293 ____H C:\ProgramData\wb764821reg.bin
2015-06-15 01:43 - 2015-06-17 02:10 - 00000039 _____ C:\WINDOWS\vbaddin.ini
2015-06-15 01:40 - 2015-06-15 01:40 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-14 13:42 - 2015-06-14 13:42 - 00000000 ____D C:\ProgramData\Kestner
2015-06-14 13:42 - 2015-06-14 13:42 - 00000000 ____D C:\Program Files (x86)\Kestner
2015-06-14 01:47 - 2015-06-14 01:47 - 00000000 ____D C:\Meine Webseiten
2015-06-14 01:23 - 2015-06-14 01:23 - 00000000 ____D C:\Program Files\WinHTTrack
2015-06-13 22:04 - 2015-06-14 01:42 - 00000000 ____D C:\Users\dietmar\Documents\SQL Server Management Studio
2015-06-13 22:04 - 2015-06-13 22:04 - 00000020 ___SH C:\Users\MSSQL$SQLEXPRESS2014\ntuser.ini
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Vorlagen
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Startmenü
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Netzwerkumgebung
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Lokale Einstellungen
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Eigene Dateien
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Druckumgebung
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Documents\Eigene Musik
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Documents\Eigene Bilder
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\AppData\Local\Verlauf
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\AppData\Local\Anwendungsdaten
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS2014\Anwendungsdaten
2015-06-13 22:04 - 2015-06-13 22:04 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS2014
2015-06-13 22:04 - 2015-06-13 00:12 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS2014\AppData\Local\Microsoft Help
2015-06-13 22:04 - 2015-06-10 22:23 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS2014\Documents\Visual Studio 2008
2015-06-13 22:04 - 2015-05-09 14:13 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS2014\Documents\Visual Studio 2013
2015-06-13 22:04 - 2015-05-03 02:12 - 00000000 ___RD C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-13 22:04 - 2015-05-03 02:12 - 00000000 ___RD C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-06-13 22:04 - 2014-02-28 00:00 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Macromedia
2015-06-13 22:04 - 2014-02-22 06:37 - 00000369 _____ C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-06-13 22:04 - 2014-02-22 06:37 - 00000369 _____ C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-06-13 22:04 - 2014-02-21 05:27 - 00172224 _____ (Microsoft Corporation) C:\WINDOWS\system32\hadrres.dll
2015-06-13 22:04 - 2014-02-21 05:27 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fssres.dll
2015-06-13 22:04 - 2014-02-21 05:20 - 00103104 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-MSSQL$SQLEXPRESS2014-sqlctr12.0.2000.8.dll
2015-06-13 22:04 - 2014-02-21 05:20 - 00088768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf-MSSQL$SQLEXPRESS2014-sqlctr12.0.2000.8.dll
2015-06-13 22:04 - 2014-02-21 05:20 - 00056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-MSSQL12.SQLEXPRESS2014-sqlagtctr.dll
2015-06-13 22:04 - 2014-02-21 05:20 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf-MSSQL12.SQLEXPRESS2014-sqlagtctr.dll
2015-06-13 22:04 - 2013-12-11 18:40 - 00002092 _____ C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Update Search.lnk
2015-06-13 22:04 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-13 22:04 - 2013-08-22 17:36 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS2014\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-06-13 22:03 - 2015-06-13 22:03 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2015-06-13 22:02 - 2015-06-13 22:02 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2015-06-13 22:00 - 2015-06-13 22:00 - 00000000 ____D C:\WINDOWS\system32\RsFx
2015-06-13 21:57 - 2015-06-13 21:57 - 00000000 ____D C:\Users\dietmar\Documents\Visual Studio 2010
2015-06-13 21:56 - 2015-06-13 21:58 - 00000000 ____D C:\WINDOWS\SysWOW64\1031
2015-06-13 21:56 - 2015-06-13 21:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2015-06-13 21:54 - 2015-06-13 21:58 - 00000000 ____D C:\WINDOWS\system32\1031
2015-06-13 21:54 - 2015-06-13 21:54 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 10.0
2015-06-13 21:54 - 2015-06-13 21:54 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2015-06-13 21:48 - 2015-06-13 21:48 - 00000931 _____ C:\Users\dietmar\Desktop\Downloads.lnk
2015-06-13 19:46 - 2015-06-20 22:59 - 00012337 _____ C:\Users\dietmar\Desktop\Lernen-Orte.odt
2015-06-13 13:26 - 2015-06-14 01:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet
2015-06-13 13:26 - 2015-06-13 13:26 - 00001062 _____ C:\Users\Public\Desktop\Mobile Partner.lnk
2015-06-13 13:26 - 2009-12-07 19:53 - 00117504 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbmdm.sys
2015-06-13 13:26 - 2009-12-07 19:36 - 00246224 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbnet.sys
2015-06-13 13:26 - 2009-10-12 15:23 - 00114304 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbdev.sys
2015-06-13 13:26 - 2007-08-09 04:10 - 00029696 _____ (Huawei Tech. Co., Ltd.) C:\WINDOWS\system32\Drivers\ewdcsc.sys
2015-06-13 00:12 - 2015-06-13 00:12 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-06-13 00:12 - 2015-06-13 00:12 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-06-11 23:47 - 2015-06-11 23:47 - 00000000 ____D C:\Users\dietmar\AppData\Local\Microsoft_Corporation
2015-06-11 03:53 - 2015-06-14 20:23 - 00000000 ____D C:\Hola
2015-06-10 22:23 - 2015-06-10 22:23 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2008
2015-06-10 22:23 - 2015-06-10 22:23 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2008
2015-06-10 12:54 - 2015-05-25 15:23 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-06-10 12:54 - 2015-05-25 15:07 - 01430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-06-10 12:54 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-06-10 12:54 - 2015-04-09 00:07 - 00410336 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-06-10 12:54 - 2015-04-02 00:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-06-10 12:54 - 2015-04-02 00:30 - 02483712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-06-10 12:54 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-06-10 12:54 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-06-10 12:54 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-06-10 12:54 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-06-10 12:54 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-06-10 12:54 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-06-10 12:53 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-06-10 12:53 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-06-10 12:53 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-06-10 12:53 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-06-10 12:53 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-06-10 12:53 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-06-10 12:53 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-06-10 12:53 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-06-10 12:53 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-06-10 12:53 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-06-10 12:53 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-06-10 12:53 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-06-10 12:53 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-06-10 12:53 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-06-10 12:53 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-06-10 12:53 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-06-10 12:53 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-06-10 12:53 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-06-10 12:53 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-06-10 12:53 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-06-10 12:53 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-06-10 12:53 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-06-10 12:53 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-06-10 12:53 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-06-10 12:53 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-06-10 12:53 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-06-10 12:53 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-06-10 12:53 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-06-10 12:53 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-06-10 12:53 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-06-10 12:53 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-06-10 12:53 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-06-10 12:53 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-06-10 12:53 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-06-10 12:53 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-06-10 12:53 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-06-10 12:53 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-06-10 12:53 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-06-10 12:53 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-06-10 12:53 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-06-10 12:53 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-06-10 12:53 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-06-10 12:53 - 2015-04-16 08:17 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-06-10 12:53 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-06-10 12:53 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-06-10 12:53 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-06-10 12:53 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-06-10 12:53 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-06-10 12:53 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-06-10 12:53 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-06-10 12:53 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-06-10 12:53 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-06-10 12:53 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-06-10 12:53 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-06-10 12:53 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-06-10 12:53 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-06-10 12:53 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-06-10 12:53 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-06-10 12:53 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-06-10 12:53 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-06-10 12:52 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-06-10 01:25 - 2015-06-15 22:27 - 00000000 ___RD C:\Users\dietmar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Multimedia
2015-06-09 22:50 - 2015-06-09 22:50 - 00000000 ____D C:\Users\dietmar\Documents\MPC-HC Capture
2015-06-09 22:50 - 2015-06-09 22:50 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\MPC-HC
2015-06-09 22:43 - 2015-06-09 22:43 - 00000000 ____D C:\Program Files\MPC-HC
2015-06-09 18:54 - 2015-06-09 18:54 - 00000000 ____D C:\Program Files\Microsoft SDKs
2015-06-09 18:53 - 2015-06-09 18:53 - 00000000 ____D C:\Program Files\Business Objects
2015-06-09 18:52 - 2015-06-09 18:52 - 00000000 ____D C:\Program Files (x86)\Business Objects
2015-06-09 18:24 - 2015-06-09 18:24 - 00000000 ____D C:\Program Files\Microsoft Device Emulator
2015-06-09 18:24 - 2015-06-09 18:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Device Emulator
2015-06-09 18:23 - 2015-06-09 18:23 - 00000000 ____D C:\Program Files (x86)\Windows Mobile 5.0 SDK R2
2015-06-09 18:23 - 2015-06-09 18:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2015-06-09 18:16 - 2015-06-09 18:52 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2015-06-09 18:16 - 2015-06-09 18:16 - 00000000 ____D C:\Program Files (x86)\CE Remote Tools
2015-06-09 18:07 - 2015-06-09 18:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Designer Tools
2015-06-09 18:07 - 2015-06-09 18:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2015-06-09 18:06 - 2015-06-17 02:14 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-09 18:06 - 2015-06-10 16:45 - 00000000 ____D C:\Users\dietmar\Documents\Visual Studio 2008
2015-06-09 18:06 - 2015-06-10 16:45 - 00000000 ____D C:\Users\dietmar\AppData\Local\Microsoft Help
2015-06-09 18:06 - 2015-06-09 18:52 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 9.0
2015-06-09 18:01 - 2015-06-13 00:22 - 00002635 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Office-Dokument öffnen.lnk
2015-06-09 18:01 - 2015-06-13 00:22 - 00002631 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Neues Office-Dokument.lnk
2015-06-09 18:00 - 2015-06-15 13:02 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2015-06-09 18:00 - 2015-06-09 18:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2015-06-09 17:58 - 2015-06-09 17:58 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-06-09 17:54 - 2015-06-09 17:54 - 00000000 __RHD C:\MSOCache
2015-06-09 15:00 - 2015-06-09 15:13 - 00000000 ____D C:\AdwCleaner
2015-06-09 14:59 - 2015-06-09 14:59 - 02231296 _____ C:\Users\dietmar\Downloads\adwcleaner_4.206.exe
2015-06-07 23:10 - 2015-06-07 23:10 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-06 15:39 - 2015-06-06 15:39 - 00000000 ____D C:\WINDOWS\SysWOW64\X86
2015-06-06 15:39 - 2015-06-06 15:39 - 00000000 ____D C:\WINDOWS\SysWOW64\AMD64
2015-06-06 15:38 - 2015-06-22 04:04 - 00000000 ____D C:\Program Files (x86)\TampaInit
2015-06-06 15:29 - 2015-06-06 15:38 - 00000000 ____D C:\Program Files (x86)\RelaySoft
2015-06-05 18:12 - 2015-06-13 13:27 - 00000000 ____D C:\Program Files (x86)\Mobile Partner
2015-06-05 16:28 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-06-05 16:28 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-06-05 16:28 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-06-05 16:28 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-06-05 16:28 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-06-05 16:28 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-06-05 16:28 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-06-05 16:28 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-06-03 14:20 - 2015-06-03 14:20 - 00000000 ____D C:\Users\dietmar\AppData\Local\GWX
2015-06-03 14:16 - 2015-06-15 20:26 - 00024575 _____ C:\Users\dietmar\Desktop\ikh-strelle.odt
2015-06-03 13:23 - 2015-06-03 13:23 - 00000000 ____D C:\Users\Public\Documents\sun
2015-06-02 21:08 - 2015-06-02 21:08 - 00000000 ____D C:\Program Files\Lenovo USB Graphics
2015-06-02 21:08 - 2015-06-02 21:08 - 00000000 ____D C:\Program Files\DisplayLink Core Software
2015-06-02 21:07 - 2015-06-17 02:06 - 00000000 ____D C:\SWTOOLS
2015-06-02 21:04 - 2015-06-02 21:16 - 00000000 ____D C:\temp
2015-05-29 02:20 - 2015-06-22 23:44 - 00001213 _____ C:\Users\dietmar\Desktop\Android Studio.lnk
2015-05-29 02:20 - 2015-05-03 14:32 - 00001358 _____ C:\Users\dietmar\Desktop\eclipse.lnk
2015-05-29 02:18 - 2015-05-29 02:20 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4
2015-05-27 15:41 - 2015-06-23 19:22 - 00002111 _____ C:\Users\dietmar\Desktop\Organsisation.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-26 03:15 - 2014-02-27 23:25 - 01710943 _____ C:\WINDOWS\WindowsUpdate.log
2015-06-26 03:04 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-06-26 03:03 - 2015-04-27 17:49 - 00000000 ____D C:\Users\dietmar
2015-06-26 03:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-06-26 02:32 - 2015-05-02 23:26 - 00000000 ____D C:\Users\dietmar\AppData\Local\Xmarks
2015-06-26 01:51 - 2015-05-05 22:03 - 00000000 ____D C:\Users\dietmar\AppData\Local\CrashDumps
2015-06-26 01:35 - 2014-02-27 23:37 - 04904526 _____ C:\Users\Public\CAFADEBUG.log
2015-06-26 01:35 - 2013-08-22 16:46 - 00109620 _____ C:\WINDOWS\setupact.log
2015-06-26 01:33 - 2014-02-27 23:36 - 00000000 ____D C:\ProgramData\Conexant
2015-06-26 01:31 - 2015-04-27 17:50 - 00117248 _____ C:\WINDOWS\SysWOW64\Xui.trf
2015-06-26 01:27 - 2015-04-27 23:39 - 00000000 ____D C:\Users\dietmar\AppData\Local\ClassicShell
2015-06-26 00:44 - 2015-04-27 17:55 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1349822815-2598862020-373602666-1001
2015-06-26 00:40 - 2014-02-27 23:59 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2015-06-26 00:40 - 2014-02-27 23:34 - 00000000 ____D C:\Program Files\Lenovo
2015-06-26 00:39 - 2015-05-01 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System
2015-06-26 00:00 - 2014-02-27 23:33 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-06-25 23:51 - 2015-05-03 15:57 - 00016874 _____ C:\Users\dietmar\Desktop\install.lenovo.odt
2015-06-25 23:51 - 2015-05-02 22:46 - 00440320 ___SH C:\Users\dietmar\Desktop\Thumbs.db
2015-06-25 21:57 - 2014-02-28 08:16 - 00964858 _____ C:\WINDOWS\system32\perfh007.dat
2015-06-25 21:57 - 2014-02-28 08:16 - 00238724 _____ C:\WINDOWS\system32\perfc007.dat
2015-06-25 21:57 - 2013-10-07 20:27 - 02286860 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-25 21:55 - 2015-04-27 17:55 - 00003942 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ED136814-2FF4-44F4-9697-51514347B07F}
2015-06-25 19:46 - 2015-04-27 17:51 - 00000000 ___DO C:\Users\dietmar\SkyDrive
2015-06-25 17:16 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-06-25 17:16 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-06-24 22:45 - 2015-05-01 13:59 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Büro
2015-06-24 22:09 - 2014-02-27 23:24 - 00118640 _____ C:\WINDOWS\DPINST.LOG
2015-06-24 21:39 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-06-24 14:47 - 2015-05-15 14:00 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-06-23 19:27 - 2015-05-02 23:11 - 00002224 _____ C:\Users\dietmar\Desktop\Musik.lnk
2015-06-23 19:21 - 2015-05-02 22:46 - 00001838 _____ C:\Users\dietmar\Desktop\Amalthea.lnk
2015-06-22 04:16 - 2013-10-07 20:23 - 00849662 _____ C:\WINDOWS\PFRO.log
2015-06-22 04:09 - 2015-05-03 22:31 - 00000000 ____D C:\Users\dietmar\AppData\Local\Google
2015-06-22 04:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Resources
2015-06-22 02:01 - 2015-05-03 22:31 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-22 00:50 - 2015-05-15 14:00 - 00000000 ____D C:\Program Files\Google
2015-06-21 02:51 - 2013-07-11 08:57 - 00041192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vbaudio_cable64_win7.sys
2015-06-21 01:33 - 2015-04-27 17:50 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\Nitro PDF
2015-06-20 05:02 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-06-20 05:02 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-20 03:53 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-06-18 19:24 - 2015-04-27 17:52 - 00000000 ____D C:\Users\dietmar\AppData\Local\Adobe
2015-06-17 02:37 - 2014-02-27 23:33 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-06-15 22:27 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-15 20:26 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-06-15 01:45 - 2015-05-01 14:13 - 00000000 ____D C:\Users\dietmar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Entwicklung
2015-06-15 01:42 - 2014-02-28 00:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-06-15 01:42 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-06-15 01:41 - 2015-05-07 21:13 - 00000929 _____ C:\WINDOWS\ODBC.INI
2015-06-14 14:44 - 2015-04-27 17:50 - 00000000 ____D C:\Users\dietmar\AppData\Local\VirtualStore
2015-06-13 22:01 - 2015-05-01 23:35 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-06-13 21:58 - 2015-05-01 23:35 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2015-06-13 21:58 - 2015-05-01 23:35 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-06-13 21:58 - 2015-05-01 23:18 - 00000000 ____D C:\WINDOWS\system32\1033
2015-06-13 19:52 - 2015-04-27 17:50 - 00000000 ____D C:\Users\dietmar\AppData\Local\Packages
2015-06-13 15:29 - 2015-05-01 14:00 - 00000000 ___RD C:\Users\dietmar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet
2015-06-13 00:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-06-13 00:24 - 2013-08-22 15:25 - 00000290 _____ C:\WINDOWS\win.ini
2015-06-11 21:12 - 2015-05-03 09:34 - 00000000 __SHD C:\Users\dietmar\AppData\Local\EmieBrowserModeList
2015-06-11 21:12 - 2015-05-02 22:34 - 00000000 __SHD C:\Users\dietmar\AppData\Local\EmieUserList
2015-06-11 21:12 - 2015-05-02 22:34 - 00000000 __SHD C:\Users\dietmar\AppData\Local\EmieSiteList
2015-06-11 03:52 - 2013-08-22 16:44 - 00529296 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-06-11 03:48 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-06-11 03:48 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-06-10 23:13 - 2015-04-29 18:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-06-10 23:10 - 2015-04-29 18:58 - 140135120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-06-09 18:23 - 2015-05-02 00:13 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-06-09 18:17 - 2013-10-07 20:29 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-06-09 18:01 - 2013-08-22 21:12 - 00000000 ____D C:\WINDOWS\ShellNew
2015-06-09 18:01 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2015-06-09 18:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2015-06-09 17:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\System
2015-06-07 23:42 - 2014-02-28 00:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-06-07 22:38 - 2014-02-28 00:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2015-06-07 22:38 - 2014-02-27 15:44 - 00000000 ____D C:\ProgramData\Lenovo
2015-06-05 18:29 - 2015-05-03 01:47 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-06-05 18:29 - 2015-05-03 01:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-06-05 17:40 - 2015-05-02 00:18 - 00000000 ____D C:\Users\dietmar\Documents\Visual Studio 2013
==================== Files in the root of some directories =======
2015-04-27 17:51 - 2015-05-02 01:38 - 0001516 _____ () C:\Users\dietmar\AppData\Roaming\AbsoluteReminder.xml
2015-06-21 03:54 - 2015-06-24 02:21 - 0002866 _____ () C:\Users\dietmar\AppData\Roaming\VoiceMeeterDefault.xml
2015-04-27 17:50 - 2015-04-27 17:50 - 0000193 _____ () C:\Users\dietmar\AppData\Local\RegisteredPackageInformation.xml
2014-02-27 23:36 - 2014-02-27 23:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-06-15 02:32 - 2015-06-15 02:32 - 0000293 ____H () C:\ProgramData\wb764821reg.bin
Some files in TEMP:
====================
C:\Users\dietmar\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\dietmar\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\dietmar\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\dietmar\AppData\Local\Temp\hcwclear.exe
C:\Users\dietmar\AppData\Local\Temp\Hola-Setup-Plugin-x64-1.8.204.exe
C:\Users\dietmar\AppData\Local\Temp\IR32.exe
C:\Users\dietmar\AppData\Local\Temp\KUIU.EXE
C:\Users\dietmar\AppData\Local\Temp\npp.6.7.8.2.Installer.exe
C:\Users\dietmar\AppData\Local\Temp\pyl2B2A.tmp.exe
C:\Users\dietmar\AppData\Local\Temp\pylF3F7.tmp.exe
C:\Users\dietmar\AppData\Local\Temp\Quarantine.exe
C:\Users\dietmar\AppData\Local\Temp\Remove.exe
C:\Users\dietmar\AppData\Local\Temp\ResetDevice.exe
C:\Users\dietmar\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\dietmar\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\dietmar\AppData\Local\Temp\sqlite3.dll
C:\Users\dietmar\AppData\Local\Temp\xmlUpdater.exe
Some zero byte size files/folders:
==========================
C:\Windows\SysWOW64\dlumd10.dll
C:\Windows\SysWOW64\dlumd11.dll
C:\Windows\SysWOW64\dlumd9.dll
C:\Windows\System32\dlumd10.dll
C:\Windows\System32\dlumd11.dll
C:\Windows\System32\dlumd9.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-06-23 05:12
==================== End of log ============================
|
| Themen zu Browser von download protect 2.2.7/2.2.8 befallen |
| add on, avast, avira, browser, computer, defender, desktop, downloadprotect, explorer, fehlermeldung, firefox, google, iexplore.exe, installation, internet, internet explorer, maleware, mozilla, nicht entfernbar, prozess, registry, rundll, selbsttätig, software, svchost.exe, system, taskmanager, windows, windowsapps, winlogon.exe |
Baum-Darstellung