Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Ich glaube, dass ich beobachtet werde.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 05.01.2016, 02:12   #1
DavidHergert
 
Ich glaube, dass ich beobachtet werde. - Ausrufezeichen

Ich glaube, dass ich beobachtet werde.



Es gibt einige Leute, die mich in Skype anrufen und mir erzählen, was ich auf meinem Rechner so tue oder erlauben sich einen anderen Spaß. Ich habe keine Datein angenommen oder angeklickt, die von ihnen stammen.

Letztens habe ich zusammen mit einem Freund etwas programmiert, daraufhin rufte dieser Unbekannte in Skype an und erzählte, was er da so schönes entworfen hatte und es hatte sich herausgestellt, dass es so ziemlich das gleiche war, was mich geschockt und verwundert hatte, da ich mit einem Kumpel auch gescreen-shared habe und er es nicht sein konnte. Ich habe das Gefühl, eine RAT auf dem PC zu haben, die sich nicht finden lässt und mache mir große Sorgen. Könntet ihr mir helfen? Was soll ich machen?

Gestern war ich nicht zuhause und es war jemand auf meinem Skype Account.
PS: Ich habe kein Smart-Phone

Alt 05.01.2016, 12:43   #2
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Ich glaube, dass ich beobachtet werde. - Standard

Ich glaube, dass ich beobachtet werde.





Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
  • Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
  • Bitte kein Crossposting (posten in mehreren Foren).
  • Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
  • Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
  • Poste die Logfiles direkt in Deinen Thread in Code-Tags.
  • Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.



Los geht's:

Schritt 1


Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)




Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 05.01.2016, 14:42   #3
DavidHergert
 
Ich glaube, dass ich beobachtet werde. - Standard

Scan



FRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
durchgeführt von Garkolym (Administrator) auf GARKOLYM-PC (05-01-2016 14:38:03)
Gestartet von C:\Users\Garkolym\Downloads
Geladene Profile: Garkolym (Verfügbare Profile: Garkolym)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(The Within Network, LLC) C:\Windows\UnsignedThemesSvc.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(FileZilla Project) C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Perfect Privacy) C:\Program Files (x86)\Perfect Privacy VPN Manager\VPNManagerService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(hxxp://www.VirtualAudioStreaming.net/) C:\Program Files (x86)\ShiningMorning\VirtualAudioStreaming\VirtualAudioStreaming.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(ManyCam LLC) C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(FileZilla Project) C:\Program Files (x86)\FileZilla Server\FileZilla Server Interface.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\slui.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4867784 2015-12-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [FileZilla Server Interface] => C:\Program Files (x86)\FileZilla Server\FileZilla Server Interface.exe [2462680 2015-06-12] (FileZilla Project)
HKLM-x32\...\Run: [RoccatKonePure] => C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE [561152 2014-01-20] (ROCCAT GmbH)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2015-10-08] (Power Software Ltd)
HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-06-23] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation)
HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\Run: [Virtual Audio Streaming(Sound Card Switch)] => C:\Program Files (x86)\ShiningMorning\VirtualAudioStreaming\VirtualAudioStreaming.exe [6859696 2015-07-21] (hxxp://www.VirtualAudioStreaming.net/)
HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)
HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [55100016 2015-08-26] (Skype Technologies S.A.)
HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe [2160024 2012-06-28] (ManyCam LLC)
HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\Run: [GoogleChromeAutoLaunch_7ACC85F818B3ED048587A36EDC66147B] => C:\Users\Garkolym\AppData\Local\Chromium\Application\chrome.exe [667136 2015-08-11] (The Chromium Authors)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

ProxyServer: [S-1-5-21-3824249904-2607471167-1544741369-1000] => 200.75.51.151:8080
Hosts: 127.0.0.1 unitedclient.de
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{5A1CBCD9-8ACB-4ECD-8DA5-EA26F1B45905}: [NameServer] 5.135.143.84,81.95.5.34
Tcpip\..\Interfaces\{60D219C9-4BF1-4378-BE6C-9FF78871CB76}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKLM -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3824249904-2607471167-1544741369-1000 -> DefaultScope {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3824249904-2607471167-1544741369-1000 -> {0A40D960-5D86-4A48-9F65-C246AF283EB3} URL = hxxps://www.google.de/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3824249904-2607471167-1544741369-1000 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://www.bing.com/search?FORM=U218DF&PC=U218&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3824249904-2607471167-1544741369-1000 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
BHO: Kein Name -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> Keine Datei
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-06] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-06] (Oracle Corporation)
BHO-x32: Kein Name -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-06] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-06] (Oracle Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

FireFox:
========
FF ProfilePath: C:\Users\Garkolym\AppData\Roaming\Mozilla\Firefox\Profiles\PkuGE3LI.default
FF NewTab: about:blank
FF DefaultSearchEngine: Search Provided by Yahoo
FF SelectedSearchEngine: Google
FF Homepage: hxxps://de.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D1%26b%3DFirefox%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-29] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-06] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-29] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-06] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF SearchPlugin: C:\Users\Garkolym\AppData\Roaming\Mozilla\Firefox\Profiles\PkuGE3LI.default\searchplugins\google-lavasoft.xml [2015-09-14]
FF SearchPlugin: C:\Users\Garkolym\AppData\Roaming\Mozilla\Firefox\Profiles\PkuGE3LI.default\searchplugins\search-provided-by-yahoo.xml [2015-12-22]
FF Extension: Modify Headers - C:\Users\Garkolym\AppData\Roaming\Mozilla\Firefox\Profiles\PkuGE3LI.default\extensions\{b749fc7c-e949-447f-926c-3f4eed6accfe}.xpi [2015-11-03]
FF Extension: Edit Cookies - C:\Users\Garkolym\AppData\Roaming\Mozilla\Firefox\Profiles\PkuGE3LI.default\extensions\{ea2b95c2-9be8-48ed-bdd1-5fcd2ad0ff99}.xpi [2015-11-07]
FF Extension: Greasemonkey - C:\Users\Garkolym\AppData\Roaming\Mozilla\Firefox\Profiles\PkuGE3LI.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-22]
FF Extension: Avira Browser Safety - C:\Users\Garkolym\AppData\Roaming\Mozilla\Firefox\Profiles\PkuGE3LI.default\Extensions\abs@avira.com [2015-12-31]
FF Extension: Kein Name - C:\Users\Garkolym\AppData\Roaming\Mozilla\Firefox\Profiles\PkuGE3LI.default\Extensions\safesearchplus@avira.com.xpi [2015-12-30] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-10-01] [ist nicht signiert]

Chrome: 
=======
CHR HomePage: Default -> hxxps://de.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D1%26b%3DChrome%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional
CHR StartupUrls: Default -> "hxxps://de.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D7%26b%3DChrome%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_pwrisofs_15_52&param1=1&param2=f%3D4%26b%3DChrome%26cc%3Dde%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0A0CtBtBtD0ByE0C0CyDtC0B0B0C0EyEtN0D0Tzu0StCyEyDtDtN1L2XzutAtFtCyCtFtCtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0FtByCyC0CyC0AtGyEzzzy0EtGtAtC0B0CtGtD0F0FzztG0A0ByDtCyC0E0B0DyD0EzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0A0F0E0A0AyBtGtAyCyDyCtGyE0AtBtCtG0B0FtCtBtGtDzy0E0FtDzztDtDyEyD0Fzy2QtN0A0LzutB%26cr%3D1220119162%26a%3Dwncy_pwrisofs_15_52%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
CHR DefaultSearchKeyword: Default -> search provided by yahoo.com
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR Profile: C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-06]
CHR Extension: (Google Docs) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-06]
CHR Extension: (Google Drive) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Adblock Plus) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-26]
CHR Extension: (Google-Suche) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (iMacros for Chrome) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\cplklnmnlbnpmjogncfgfijoopmnlemp [2015-10-30]
CHR Extension: (Google Tabellen) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-06]
CHR Extension: (Postman) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2015-12-25]
CHR Extension: (Avira Browserschutz) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-12-15]
CHR Extension: (Google Docs Offline) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-06]
CHR Extension: (Google Mail) - C:\Users\Garkolym\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-06]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-03] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2015-12-04] (Advanced Micro Devices) [Datei ist nicht signiert]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-09-15] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-09-15] (Dropbox, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2521080 2015-11-19] (ESET)
R2 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [794584 2015-06-12] (FileZilla Project)
R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [350208 2010-11-21] (Microsoft Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [175752 2015-06-23] (Sandboxie Holdings, LLC)
R3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [836176 2015-12-14] (Valve Corporation) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6887696 2015-11-30] (TeamViewer GmbH)
R2 UnsignedThemes; C:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC)
S3 vncserver; C:\Program Files\RealVNC\VNC Server\vncservice.exe [639808 2015-01-28] (RealVNC Ltd)
R2 VPNManager; C:\Program Files (x86)\Perfect Privacy VPN Manager\VPNManagerService.exe [19456 2015-09-08] (Perfect Privacy) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 WMSVC; C:\Windows\system32\inetsrv\wmsvc.exe [10752 2009-07-14] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [296648 2015-12-04] (Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [83792 2015-06-17] (Asmedia Technology)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [263528 2015-12-08] (ESET)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [186784 2015-11-27] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [170792 2015-11-27] (ESET)
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [34304 2012-01-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2012-02-22] (ManyCam LLC)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 RDID1034; C:\Windows\System32\Drivers\rdwm1034.sys [234112 2009-09-18] (Roland Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [190088 2015-06-23] (Sandboxie Holdings, LLC)
R2 uxpatch; C:\Windows\system32\drivers\uxpatch.sys [30568 2009-07-13] ()
R3 VASDeviceDrm; C:\Windows\System32\drivers\vasdDev.sys [1454896 2015-07-21] (ShiningMorning Inc.)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [146072 2015-09-08] (Oracle Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-05 14:38 - 2016-01-05 14:38 - 00027682 _____ C:\Users\Garkolym\Downloads\FRST.txt
2016-01-05 14:37 - 2016-01-05 14:38 - 00000000 ____D C:\FRST
2016-01-05 14:37 - 2016-01-05 14:37 - 02370560 _____ (Farbar) C:\Users\Garkolym\Downloads\FRST64.exe
2016-01-05 02:57 - 2016-01-03 21:44 - 00003561 _____ C:\Users\Garkolym\Desktop\Shop.java
2016-01-05 01:44 - 2016-01-05 01:44 - 01186640 _____ C:\Users\Garkolym\Downloads\ProcessExplorer.zip
2016-01-05 01:37 - 2016-01-05 01:37 - 00000000 ____D C:\Users\Garkolym\AppData\Local\ESET
2016-01-05 01:34 - 2016-01-05 01:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-01-05 01:34 - 2016-01-05 01:34 - 00000000 ____D C:\ProgramData\ESET
2016-01-05 01:34 - 2016-01-05 01:34 - 00000000 ____D C:\Program Files\ESET
2016-01-05 01:33 - 2016-01-05 01:33 - 02836168 _____ (ESET) C:\Users\Garkolym\Downloads\eset_nod32_antivirus_live_installer.exe
2016-01-04 17:42 - 2016-01-04 17:42 - 01145928 _____ C:\Users\Garkolym\Downloads\LobbyStudio.jar
2016-01-04 00:40 - 2016-01-04 00:40 - 00215450 _____ C:\Users\Garkolym\Downloads\Vocaroo_s0Z44ksxkIRS(1).wav
2016-01-04 00:34 - 2016-01-04 00:34 - 00215450 _____ C:\Users\Garkolym\Downloads\Vocaroo_s0Z44ksxkIRS.wav
2016-01-03 02:52 - 2016-01-03 02:53 - 31071183 _____ C:\Users\Garkolym\Downloads\01 - Trap Party Sample Pack.zip
2016-01-03 00:56 - 2016-01-03 00:59 - 08810649 _____ C:\Users\Garkolym\Downloads\VanillaBDcraft  64x MC18.zip
2016-01-02 22:59 - 2016-01-02 22:59 - 00086406 _____ C:\Users\Garkolym\Downloads\bhCsfPgR.jpeg
2016-01-02 18:01 - 2016-01-02 17:58 - 00543509 _____ C:\Users\Garkolym\Desktop\^3F5ACEDE6847FE361CD537A48206371232EB65FC772301CC6B^pimgpsh_fullsize_distr.jpg
2016-01-02 17:41 - 2016-01-02 17:46 - 00001510 _____ C:\Users\Garkolym\Desktop\Skype.exe.lnk
2016-01-02 17:32 - 2016-01-02 17:32 - 00020197 _____ C:\Users\Garkolym\Desktop\Engine.jar
2016-01-02 02:28 - 2016-01-02 02:28 - 07477733 _____ C:\Users\Garkolym\Downloads\eZDustMC.zip
2016-01-02 02:28 - 2016-01-01 23:20 - 08635309 _____ C:\Users\Garkolym\Desktop\eZDustMC.jar
2016-01-01 23:52 - 2016-01-01 23:52 - 00034224 _____ C:\Users\Garkolym\Documents\dustmlol.veg
2016-01-01 22:17 - 2016-01-01 22:21 - 00000000 ____D C:\Users\Garkolym\Desktop\a
2016-01-01 22:11 - 2016-01-01 22:16 - 00000000 ____D C:\Users\Garkolym\Desktop\lib
2016-01-01 21:21 - 2016-01-01 21:21 - 04861297 _____ C:\Users\Garkolym\Downloads\OptifineSrc.zip
2016-01-01 01:16 - 2016-01-01 01:16 - 07571453 _____ C:\Users\Garkolym\Downloads\mcp910.zip
2015-12-31 21:23 - 2016-01-01 00:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-31 07:41 - 2015-12-31 07:41 - 00000000 ____D C:\Users\Garkolym\Desktop\railer
2015-12-31 07:31 - 2015-12-31 07:32 - 00111440 _____ C:\Users\Garkolym\Documents\grieffff.veg
2015-12-31 07:31 - 2015-12-31 07:31 - 00109840 _____ C:\Users\Garkolym\Documents\grieffff.veg.bak
2015-12-31 01:06 - 2015-12-31 01:07 - 01250200 _____ C:\Users\Garkolym\Downloads\Team Fortress 2- Soldier Theme Extended.mp3.sfk
2015-12-30 21:33 - 2016-01-03 21:12 - 00023348 _____ C:\Users\Garkolym\Desktop\GrieferEscape.jar
2015-12-30 20:26 - 2015-09-07 21:40 - 19555175 _____ C:\spigot.jar
2015-12-30 16:48 - 2015-12-30 16:48 - 00046012 _____ C:\Users\Garkolym\Desktop\^02FC43A1B87EA07B338D01F94F10A1A87567C97E5FD33CAEF5^pimgpsh_fullsize_distr.jpg
2015-12-30 07:01 - 2015-12-30 07:01 - 10595122 _____ C:\Users\Garkolym\Downloads\DezztroyzClient by GraxCode.rar
2015-12-30 03:45 - 2015-12-30 03:45 - 00011104 _____ C:\Users\Garkolym\Downloads\Intro   Garkolym.mp4.sfk
2015-12-30 03:43 - 2015-12-30 03:43 - 01561767 _____ C:\Users\Garkolym\Downloads\Intro   Garkolym.mp4
2015-12-30 00:54 - 2015-12-30 00:55 - 00000000 ____D C:\Users\Garkolym\Desktop\q
2015-12-30 00:54 - 2015-12-30 00:54 - 01647033 _____ C:\Users\Garkolym\Downloads\Multiverse-Core-2.5.jar
2015-12-30 00:54 - 2015-12-30 00:54 - 00450486 _____ C:\Users\Garkolym\Downloads\PlotMe.zip
2015-12-29 23:12 - 2015-12-29 23:11 - 01251921 _____ C:\Users\Garkolym\Desktop\OptiFine_1.8.8_HD_U_G9(3).jar
2015-12-29 22:44 - 2015-12-29 22:15 - 00000880 _____ C:\Users\Garkolym\Desktop\bind.php
2015-12-29 21:56 - 2015-12-29 21:56 - 01967534 _____ C:\Users\Garkolym\Downloads\Bind_1451422592585.jar
2015-12-29 21:52 - 2015-12-29 21:52 - 01967090 _____ C:\Users\Garkolym\Downloads\Bind_1451422371546.jar
2015-12-29 21:49 - 2015-12-29 21:49 - 01966908 _____ C:\Users\Garkolym\Downloads\Bind_1451422180002.jar
2015-12-29 21:48 - 2015-12-29 21:48 - 00999748 _____ C:\Users\Garkolym\Downloads\NoCheatPlus (2).jar
2015-12-29 21:48 - 2015-12-29 21:48 - 00999748 _____ C:\Users\Garkolym\Desktop\NoCheatPlus.jar
2015-12-29 21:47 - 2015-12-29 21:47 - 01145925 _____ C:\Users\Garkolym\Downloads\CashPloit3_1451422075487.jar
2015-12-29 21:47 - 2015-12-29 21:47 - 01145925 _____ C:\Users\Garkolym\Desktop\CashPloit.jar
2015-12-29 21:30 - 2015-12-29 21:30 - 02069501 _____ C:\Users\Garkolym\Downloads\Bind_1451421022758.jar
2015-12-29 21:29 - 2015-12-29 21:29 - 01316185 _____ C:\Users\Garkolym\Downloads\worldguard-6.1.jar
2015-12-29 21:29 - 2015-12-29 21:29 - 00999748 _____ C:\Users\Garkolym\Downloads\NoCheatPlus (1).jar
2015-12-29 21:28 - 2015-12-29 21:28 - 01948901 _____ C:\Users\Garkolym\Downloads\Bind_1451420887559.jar
2015-12-29 21:26 - 2015-12-29 21:26 - 01948900 _____ C:\Users\Garkolym\Downloads\Bind_1451420801479.jar
2015-12-29 21:26 - 2015-12-29 21:26 - 00000000 ____D C:\plugins
2015-12-29 21:23 - 2015-12-29 21:23 - 01948556 _____ C:\Users\Garkolym\Downloads\Bind_1451420635367.jar
2015-12-29 21:17 - 2015-12-29 21:17 - 01948814 _____ C:\Users\Garkolym\Downloads\Bind_1451420238241.jar
2015-12-29 21:13 - 2015-12-29 21:13 - 01947550 _____ C:\Users\Garkolym\Downloads\Bind_1451420027508.jar
2015-12-29 21:10 - 2015-12-29 21:10 - 01947551 _____ C:\Users\Garkolym\Downloads\Bind_1451419851405.jar
2015-12-29 21:09 - 2015-12-29 21:09 - 00999748 _____ C:\Users\Garkolym\Downloads\NoCheatPlus.jar
2015-12-28 02:21 - 2015-12-28 02:21 - 01525913 _____ C:\Users\Garkolym\Downloads\jboss-javassist-javassist-rel_3_20_0_ga-22-gccddf79.zip
2015-12-28 00:54 - 2015-12-29 21:47 - 00000000 ____D C:\Users\Garkolym\Desktop\OBF
2015-12-27 21:44 - 2015-12-27 22:00 - 00120448 _____ C:\Users\Garkolym\Downloads\Kevin MacLeod - Amazing Plan.mp3.sfk
2015-12-27 21:36 - 2015-12-27 21:41 - 00011552 _____ C:\Users\Garkolym\Downloads\Garkolym Intro (my own version) 100 likes.züüsch(Opinions )   by CrispFX [60FPS].mp4.sfk
2015-12-27 21:29 - 2015-12-27 21:49 - 00099728 _____ C:\Users\Garkolym\Documents\asd.veg
2015-12-27 21:29 - 2015-12-27 21:30 - 00083616 _____ C:\Users\Garkolym\Documents\asd.veg.bak
2015-12-27 20:59 - 2015-12-27 21:23 - 00006272 _____ C:\Users\Garkolym\Downloads\Free Effect TV Error Just Say to me and i will give u!.mp4.sfk
2015-12-27 20:59 - 2015-12-27 20:59 - 01801953 _____ C:\Users\Garkolym\Downloads\Free Effect TV Error Just Say to me and i will give u!.mp4
2015-12-27 19:47 - 2015-12-27 19:47 - 01145939 _____ C:\Users\Garkolym\Downloads\aaaa.jar
2015-12-27 18:31 - 2015-12-27 18:31 - 01145933 _____ C:\Users\Garkolym\Downloads\CashPloit3_1451237490904.jar
2015-12-27 18:25 - 2015-12-27 18:25 - 00003366 _____ C:\Users\Garkolym\Downloads\Demotroll.jar
2015-12-27 08:40 - 2015-12-27 08:40 - 00000670 ____N C:\Users\Garkolym\Desktop\download.php
2015-12-27 07:43 - 2015-12-27 07:43 - 01145915 _____ C:\Users\Garkolym\Downloads\CashPloit3_1451198601587.jar
2015-12-27 07:40 - 2015-12-27 07:40 - 01145925 _____ C:\Users\Garkolym\Downloads\CashPloit3_1451198451820.jar
2015-12-27 07:25 - 2015-12-27 07:25 - 02398226 _____ C:\Users\Garkolym\Downloads\Garkolym Intro (my own version) 100 likes.züüsch(Opinions )   by CrispFX [60FPS].mp4
2015-12-27 07:14 - 2015-12-27 07:14 - 01145925 _____ C:\Users\Garkolym\Downloads\CashPloit3_+abc.jar
2015-12-27 07:09 - 2015-12-27 07:09 - 01145913 _____ C:\Users\Garkolym\Downloads\CashPloit3_hexhex.jar
2015-12-27 06:57 - 2015-12-27 06:58 - 01146073 _____ C:\Users\Garkolym\Downloads\CashPloit3_ficken.jar
2015-12-27 06:17 - 2015-12-27 06:17 - 00997532 _____ C:\Users\Garkolym\Downloads\jfuscator.zip
2015-12-27 06:15 - 2015-12-27 06:15 - 00013717 _____ C:\Users\Garkolym\Downloads\de.bb.product.bb_mug-1.7.1.jar
2015-12-27 06:14 - 2015-12-27 06:14 - 00652880 _____ C:\Users\Garkolym\Downloads\bloat-1.0.jar
2015-12-27 06:13 - 2015-12-27 06:13 - 00273166 _____ C:\Users\Garkolym\Downloads\jarg-0.9.14.zip
2015-12-27 06:13 - 2015-12-27 06:13 - 00039517 _____ C:\Users\Garkolym\Downloads\GenJar-1.0.2.zip
2015-12-27 05:03 - 2015-12-27 05:21 - 01646168 _____ C:\Users\Garkolym\Downloads\SKIDDER.MP3.sfk
2015-12-27 05:02 - 2015-12-27 05:21 - 00318560 _____ C:\Users\Garkolym\Downloads\▶[DUBSTEP]▶Wubbaduck & Dead Critic - Duck Hunt▶[NO COPYRIGHT SONG]▶.mp3.sfk
2015-12-26 09:32 - 2015-12-26 09:32 - 00546433 _____ C:\Users\Garkolym\Downloads\jShrinker0.3.2-testing.jar
2015-12-26 09:28 - 2015-12-26 09:28 - 00325742 _____ C:\Users\Garkolym\Downloads\jshrink.zip
2015-12-26 09:28 - 2015-12-26 09:28 - 00032693 _____ C:\Users\Garkolym\Downloads\JShrink-master.zip
2015-12-26 08:46 - 2015-12-26 08:49 - 00311536 _____ C:\Users\Garkolym\Downloads\Vidya Vidya - Safari Fruits [NCS Release].mp3.sfk
2015-12-26 06:30 - 2015-12-26 06:30 - 00456978 _____ C:\Users\Garkolym\Downloads\UglyCraft.zip
2015-12-26 06:30 - 2015-12-26 06:30 - 00456978 _____ C:\Users\Garkolym\Downloads\fuck (1).zip
2015-12-26 06:26 - 2015-12-26 06:26 - 00026671 _____ C:\Users\Garkolym\Downloads\xray.zip
2015-12-26 06:26 - 2015-12-26 06:26 - 00026671 _____ C:\Users\Garkolym\Downloads\fuck.zip
2015-12-25 06:37 - 2015-12-25 06:37 - 14953858 _____ C:\Users\Garkolym\Downloads\Poltergeist (1).zip
2015-12-25 06:28 - 2015-12-25 06:29 - 14953858 _____ C:\Users\Garkolym\Downloads\Poltergeist.zip
2015-12-25 02:30 - 2015-12-29 21:08 - 01957366 _____ C:\Users\Garkolym\Downloads\Allatori-5.6-Demo.zip
2015-12-24 22:20 - 2015-12-24 22:20 - 00299556 _____ C:\Users\Garkolym\Downloads\NBTExplorer-2.7.1.zip
2015-12-24 20:11 - 2015-12-29 21:47 - 00000000 ____D C:\Users\Garkolym\Desktop\Dummes Zeug
2015-12-24 03:25 - 2015-12-24 03:25 - 16114993 _____ C:\Users\Garkolym\Downloads\AgentClient.jar
2015-12-23 01:54 - 2015-12-23 01:54 - 00064048 _____ C:\Users\Garkolym\Documents\lawdlawldlawd.veg
2015-12-23 01:43 - 2015-12-23 01:45 - 00166424 _____ C:\Users\Garkolym\Downloads\Kevin MacLeod - Merry Go.mp3.sfk
2015-12-23 01:32 - 2015-12-23 01:34 - 00003008 _____ C:\Users\Garkolym\Downloads\FACE PALM.mp4.sfk
2015-12-23 01:32 - 2015-12-23 01:32 - 00096929 _____ C:\Users\Garkolym\Downloads\FACE PALM.mp4
2015-12-23 01:20 - 2015-12-23 01:29 - 00008024 _____ C:\Users\Garkolym\Downloads\126 Shock Horror.mp3.sfk
2015-12-22 00:52 - 2015-12-22 00:52 - 16803226 _____ C:\Users\Garkolym\Downloads\craftbukkit_server.jar
2015-12-22 00:46 - 2015-12-22 00:46 - 08764679 _____ C:\Users\Garkolym\Downloads\jd-gui-1.4.0.jar
2015-12-21 17:01 - 2016-01-05 06:26 - 00001098 _____ C:\Users\Garkolym\Downloads\nativelog.txt
2015-12-21 17:01 - 2015-12-21 17:01 - 01247112 _____ (Mojang) C:\Users\Garkolym\Downloads\Minecraft.exe
2015-12-21 17:01 - 2015-12-21 17:01 - 00000000 ____D C:\Users\Garkolym\Downloads\runtime
2015-12-21 17:01 - 2015-12-21 17:01 - 00000000 ____D C:\Users\Garkolym\Downloads\game
2015-12-21 16:28 - 2015-12-24 00:28 - 00000095 _____ C:\Users\Garkolym\AppData\Roaming\WB.CFG
2015-12-21 16:25 - 2015-12-21 16:25 - 00000000 ____D C:\Users\Garkolym\Documents\Native Instruments
2015-12-21 16:25 - 2015-12-21 16:25 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Native Instruments
2015-12-21 16:25 - 2015-12-21 16:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2015-12-21 16:25 - 2015-12-21 16:25 - 00000000 ____D C:\Program Files (x86)\Native Instruments
2015-12-21 16:24 - 2015-12-21 16:24 - 96059216 _____ C:\Users\Garkolym\Downloads\MASS1V31.5 BY NU3VO VID3OS (1).rar
2015-12-21 16:21 - 2015-12-21 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reFX
2015-12-21 16:20 - 2015-12-21 16:20 - 05896117 _____ C:\Users\Garkolym\Downloads\REFX VANGUARD BY NU3VO VID3OS.rar
2015-12-21 16:19 - 2015-12-21 16:20 - 10152576 _____ (MEGA Limited) C:\Users\Garkolym\Downloads\MEGAsyncSetup.exe
2015-12-21 16:13 - 2015-12-21 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sylenth1
2015-12-21 16:12 - 2015-12-21 16:12 - 82154628 _____ C:\Users\Garkolym\Downloads\VST SYLENTH FULL BY. NU3VO VID3OS.rar
2015-12-21 16:10 - 2015-12-21 16:10 - 96059216 _____ C:\Users\Garkolym\Downloads\MASS1V31.5 BY NU3VO VID3OS.rar
2015-12-21 15:58 - 2015-12-21 15:58 - 00000000 ____D C:\Users\Garkolym\Documents\Image-Line
2015-12-21 15:58 - 2015-12-21 15:58 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-12-21 15:58 - 2015-12-21 15:58 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2015-12-21 15:58 - 2015-12-21 15:58 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Image-Line
2015-12-21 15:58 - 2015-12-21 15:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-12-21 15:58 - 2015-12-21 15:58 - 00000000 ____D C:\Program Files\Image-Line
2015-12-21 15:58 - 2015-12-21 15:58 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2015-12-21 15:58 - 2015-12-21 15:58 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2015-12-21 15:56 - 2015-12-21 15:58 - 00000000 ____D C:\Program Files (x86)\Image-Line
2015-12-21 15:56 - 2015-12-21 15:56 - 00000000 ____D C:\Users\Garkolym\FL
2015-12-21 15:53 - 2015-12-21 15:53 - 517064770 _____ C:\Users\Garkolym\Downloads\Image-Line FL Studio 12.1.2 Producer Edition.rar
2015-12-21 15:44 - 2015-12-21 15:44 - 05798794 _____ C:\Users\Garkolym\Downloads\power iso (1).rar
2015-12-21 15:42 - 2015-12-21 15:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2015-12-21 15:41 - 2015-12-21 15:41 - 05798794 _____ C:\Users\Garkolym\Downloads\power iso.rar
2015-12-21 15:35 - 2015-12-21 15:35 - 06767807 _____ C:\Users\Garkolym\Downloads\myCOM - PowerISO v6.2 S+C.rar
2015-12-21 15:30 - 2015-12-21 15:43 - 00000000 ____D C:\Users\Garkolym\Downloads\Mac OS X Yosemite Niresh Intel and AMD Images
2015-12-21 15:29 - 2015-12-21 15:29 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\PowerISO
2015-12-21 15:28 - 2016-01-05 14:28 - 00000282 _____ C:\Windows\Tasks\UpdateTask.job
2015-12-21 15:28 - 2015-12-21 16:28 - 00000000 ____D C:\Users\Garkolym\AppData\Local\{08303E6C-2C98-52D4-4100-773C65688BA4}
2015-12-21 15:28 - 2015-12-21 15:28 - 00003234 _____ C:\Windows\System32\Tasks\UpdateTask
2015-12-21 15:28 - 2015-12-21 15:28 - 00002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
2015-12-21 15:28 - 2015-12-21 15:28 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium
2015-12-21 15:28 - 2015-12-21 15:28 - 00000000 ____D C:\Users\Garkolym\AppData\Local\Chromium
2015-12-21 15:27 - 2015-12-22 16:38 - 00000000 ____D C:\Program Files\PowerISO
2015-12-21 15:27 - 2015-10-08 08:00 - 00127760 _____ (Power Software Ltd) C:\Windows\system32\Drivers\scdemu.sys
2015-12-21 05:44 - 2015-12-21 05:45 - 2203325158 _____ C:\Users\Garkolym\Downloads\Mac OS X Yosemite Niresh Intel and AMD Images.rar
2015-12-21 00:27 - 2015-12-21 00:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Writer
2015-12-21 00:27 - 2015-12-21 00:27 - 00000000 ____D C:\Program Files (x86)\ImageWriter
2015-12-20 22:30 - 2015-12-20 22:38 - 00046968 _____ C:\Users\Garkolym\Documents\ausraster rocketleague.veg
2015-12-20 22:30 - 2015-12-20 22:33 - 00042568 _____ C:\Users\Garkolym\Documents\ausraster rocketleague.veg.bak
2015-12-19 23:13 - 2015-12-19 23:13 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\VST3 Presets
2015-12-19 22:56 - 2015-12-19 22:56 - 00000000 ____D C:\ProgramData\Steinberg
2015-12-19 22:55 - 2009-10-11 21:58 - 01177600 _____ (AD) C:\Windows\SysWOW64\SYNSOEMU.DLL
2015-12-19 22:55 - 2007-08-24 14:24 - 16138240 _____ (Steinberg Media Technologies) C:\HALionOne.dll
2015-12-19 22:54 - 2015-12-19 22:56 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Steinberg
2015-12-19 22:54 - 2015-12-19 22:54 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 5
2015-12-19 22:54 - 2015-12-19 22:54 - 00000000 ____D C:\Program Files (x86)\Steinberg
2015-12-19 14:54 - 2015-12-19 14:54 - 00004230 _____ C:\Windows\System32\Tasks\AMD Updater
2015-12-19 14:52 - 2015-12-19 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2015-12-19 00:29 - 2015-12-07 07:28 - 00725035 _____ C:\javassist.jar
2015-12-18 21:37 - 2015-12-18 21:44 - 00070112 _____ C:\Users\Garkolym\Documents\asozialerowner.veg
2015-12-18 21:37 - 2015-12-18 21:37 - 00063480 _____ C:\Users\Garkolym\Documents\asozialerowner.veg.bak
2015-12-18 15:05 - 2015-12-19 14:58 - 00000000 ____D C:\Users\Garkolym\AppData\Local\Ubisoft Game Launcher
2015-12-18 15:05 - 2015-12-18 15:05 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-12-18 15:05 - 2015-12-18 15:05 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2015-12-14 20:27 - 2015-12-15 01:27 - 00002267 _____ C:\Users\Garkolym\Documents\Neue Datenbank.odb
2015-12-14 20:26 - 2015-12-14 20:26 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\OpenOffice
2015-12-14 20:24 - 2015-12-14 20:24 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2015-12-14 20:24 - 2015-12-14 20:24 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2015-12-13 16:53 - 2015-12-13 16:56 - 00058544 _____ C:\Users\Garkolym\Documents\streich.veg
2015-12-13 16:53 - 2015-12-13 16:55 - 00058544 _____ C:\Users\Garkolym\Documents\streich.veg.bak
2015-12-12 23:09 - 2015-12-12 23:16 - 00030600 _____ C:\Users\Garkolym\Documents\werbung.veg
2015-12-12 23:09 - 2015-12-12 23:12 - 00021640 _____ C:\Users\Garkolym\Documents\werbung.veg.bak
2015-12-12 20:14 - 2015-12-12 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-12-12 17:04 - 2015-12-12 17:09 - 00028336 _____ C:\Users\Garkolym\Documents\telefon.veg
2015-12-12 17:04 - 2015-12-12 17:04 - 00026280 _____ C:\Users\Garkolym\Documents\telefon.veg.bak
2015-12-10 21:04 - 2015-12-10 21:04 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\MAXON
2015-12-10 21:04 - 2015-12-10 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cinema 4D R12
2015-12-10 18:03 - 2015-12-10 18:03 - 00000000 ____D C:\Users\Garkolym\AppData\Local\fabi.me
2015-12-08 15:25 - 2015-12-08 15:25 - 00263528 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys
2015-12-07 00:10 - 2015-12-07 00:10 - 00000000 ___HD C:\Windows\msdownld.tmp
2015-12-07 00:10 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2015-12-07 00:07 - 2015-12-07 00:07 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-12-07 00:07 - 2015-12-07 00:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-12-07 00:07 - 2015-12-07 00:07 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-12-07 00:07 - 2015-12-07 00:07 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-12-07 00:07 - 2015-12-07 00:07 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-12-07 00:07 - 2015-12-07 00:07 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2015-12-07 00:07 - 2015-12-07 00:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-12-07 00:07 - 2015-12-07 00:07 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-12-07 00:07 - 2015-12-07 00:07 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-12-07 00:07 - 2015-12-07 00:07 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-12-07 00:07 - 2015-12-07 00:07 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-12-07 00:07 - 2015-12-07 00:07 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-12-07 00:07 - 2015-12-07 00:07 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-12-07 00:07 - 2015-12-07 00:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-12-07 00:07 - 2015-12-07 00:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-12-07 00:07 - 2015-12-07 00:07 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-12-07 00:07 - 2015-12-07 00:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-12-07 00:06 - 2015-12-07 00:06 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-12-07 00:06 - 2015-12-07 00:06 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-12-06 17:43 - 2015-12-06 17:43 - 00000600 _____ C:\Users\Garkolym\Documents\a4.PTR
2015-12-06 17:43 - 2015-12-06 17:43 - 00000264 _____ C:\Users\Garkolym\Documents\a4.PTR.7
2015-12-06 17:43 - 2015-12-06 17:43 - 00000224 _____ C:\Users\Garkolym\Documents\a4.PTR.6
2015-12-06 17:43 - 2015-12-06 17:43 - 00000224 _____ C:\Users\Garkolym\Documents\a4.PTR.5
2015-12-06 17:43 - 2015-12-06 17:43 - 00000224 _____ C:\Users\Garkolym\Documents\a4.PTR.4
2015-12-06 17:43 - 2015-12-06 17:43 - 00000224 _____ C:\Users\Garkolym\Documents\a4.PTR.3
2015-12-06 17:43 - 2015-12-06 17:43 - 00000224 _____ C:\Users\Garkolym\Documents\a4.PTR.2
2015-12-06 17:43 - 2015-12-06 17:43 - 00000224 _____ C:\Users\Garkolym\Documents\a4.PTR.1
2015-12-06 17:43 - 2015-12-06 17:43 - 00000224 _____ C:\Users\Garkolym\Documents\a4.PTR.0
2015-12-06 17:42 - 2015-12-06 17:42 - 00000600 _____ C:\Users\Garkolym\Documents\a3.PTR
2015-12-06 17:42 - 2015-12-06 17:42 - 00000600 _____ C:\Users\Garkolym\Documents\a2.PTR
2015-12-06 17:42 - 2015-12-06 17:42 - 00000368 _____ C:\Users\Garkolym\Documents\a2.PTR.7
2015-12-06 17:42 - 2015-12-06 17:42 - 00000352 _____ C:\Users\Garkolym\Documents\a2.PTR.6
2015-12-06 17:42 - 2015-12-06 17:42 - 00000320 _____ C:\Users\Garkolym\Documents\a2.PTR.5
2015-12-06 17:42 - 2015-12-06 17:42 - 00000264 _____ C:\Users\Garkolym\Documents\a3.PTR.7
2015-12-06 17:42 - 2015-12-06 17:42 - 00000256 _____ C:\Users\Garkolym\Documents\a2.PTR.1
2015-12-06 17:42 - 2015-12-06 17:42 - 00000224 _____ C:\Users\Garkolym\Documents\a3.PTR.6
2015-12-06 17:42 - 2015-12-06 17:42 - 00000224 _____ C:\Users\Garkolym\Documents\a3.PTR.5
2015-12-06 17:42 - 2015-12-06 17:42 - 00000224 _____ C:\Users\Garkolym\Documents\a3.PTR.4
2015-12-06 17:42 - 2015-12-06 17:42 - 00000224 _____ C:\Users\Garkolym\Documents\a3.PTR.3
2015-12-06 17:42 - 2015-12-06 17:42 - 00000224 _____ C:\Users\Garkolym\Documents\a3.PTR.2
2015-12-06 17:42 - 2015-12-06 17:42 - 00000224 _____ C:\Users\Garkolym\Documents\a3.PTR.1
2015-12-06 17:42 - 2015-12-06 17:42 - 00000224 _____ C:\Users\Garkolym\Documents\a3.PTR.0
2015-12-06 17:42 - 2015-12-06 17:42 - 00000168 _____ C:\Users\Garkolym\Documents\a2.PTR.3
2015-12-06 17:42 - 2015-12-06 17:42 - 00000136 _____ C:\Users\Garkolym\Documents\a2.PTR.2
2015-12-06 17:42 - 2015-12-06 17:42 - 00000120 _____ C:\Users\Garkolym\Documents\a2.PTR.4
2015-12-06 17:42 - 2015-12-06 17:42 - 00000112 _____ C:\Users\Garkolym\Documents\a2.PTR.0
2015-12-06 17:38 - 2015-12-06 17:38 - 00011464 _____ C:\Users\Garkolym\Documents\a1.PTR.0
2015-12-06 17:38 - 2015-12-06 17:38 - 00000552 _____ C:\Users\Garkolym\Documents\a1.PTR
2015-12-06 17:38 - 2015-12-06 17:38 - 00000000 _____ C:\Users\Garkolym\Documents\a1.PTR.3
2015-12-06 17:38 - 2015-12-06 17:38 - 00000000 _____ C:\Users\Garkolym\Documents\a1.PTR.2
2015-12-06 17:38 - 2015-12-06 17:38 - 00000000 _____ C:\Users\Garkolym\Documents\a1.PTR.1
2015-12-06 17:35 - 2015-12-06 17:35 - 01569150 _____ C:\Users\Garkolym\Documents\4.PTR.4
2015-12-06 17:35 - 2015-12-06 17:35 - 01569150 _____ C:\Users\Garkolym\Documents\4.PTR.3
2015-12-06 17:35 - 2015-12-06 17:35 - 01569150 _____ C:\Users\Garkolym\Documents\4.PTR.1
2015-12-06 17:35 - 2015-12-06 17:35 - 01569040 _____ C:\Users\Garkolym\Documents\4.PTR.2
2015-12-06 17:35 - 2015-12-06 17:35 - 01568732 _____ C:\Users\Garkolym\Documents\4.PTR.7
2015-12-06 17:35 - 2015-12-06 17:35 - 01568611 _____ C:\Users\Garkolym\Documents\4.PTR.6
2015-12-06 17:35 - 2015-12-06 17:35 - 01567654 _____ C:\Users\Garkolym\Documents\4.PTR.0
2015-12-06 17:35 - 2015-12-06 17:35 - 01564684 _____ C:\Users\Garkolym\Documents\4.PTR.5
2015-12-06 17:35 - 2015-12-06 17:35 - 00000592 _____ C:\Users\Garkolym\Documents\4.PTR
2015-12-06 17:32 - 2015-12-06 17:32 - 01789832 _____ C:\Users\Garkolym\Documents\3.PTR.5
2015-12-06 17:32 - 2015-12-06 17:32 - 01750320 _____ C:\Users\Garkolym\Documents\3.PTR.6
2015-12-06 17:32 - 2015-12-06 17:32 - 01701766 _____ C:\Users\Garkolym\Documents\3.PTR.2
2015-12-06 17:32 - 2015-12-06 17:32 - 01629551 _____ C:\Users\Garkolym\Documents\3.PTR.0
2015-12-06 17:32 - 2015-12-06 17:32 - 01589973 _____ C:\Users\Garkolym\Documents\3.PTR.7
2015-12-06 17:32 - 2015-12-06 17:32 - 01576542 _____ C:\Users\Garkolym\Documents\3.PTR.3
2015-12-06 17:32 - 2015-12-06 17:32 - 01425787 _____ C:\Users\Garkolym\Documents\3.PTR.4
2015-12-06 17:32 - 2015-12-06 17:32 - 01089451 _____ C:\Users\Garkolym\Documents\3.PTR.1
2015-12-06 17:32 - 2015-12-06 17:32 - 00000592 _____ C:\Users\Garkolym\Documents\3.PTR
2015-12-06 17:31 - 2015-12-06 17:31 - 02261127 _____ C:\Users\Garkolym\Documents\2.PTR.1
2015-12-06 17:31 - 2015-12-06 17:31 - 02146738 _____ C:\Users\Garkolym\Documents\2.PTR.5
2015-12-06 17:31 - 2015-12-06 17:31 - 02138015 _____ C:\Users\Garkolym\Documents\2.PTR.6
2015-12-06 17:31 - 2015-12-06 17:31 - 02027465 _____ C:\Users\Garkolym\Documents\2.PTR.7
2015-12-06 17:31 - 2015-12-06 17:31 - 02017939 _____ C:\Users\Garkolym\Documents\2.PTR.0
2015-12-06 17:31 - 2015-12-06 17:31 - 01965117 _____ C:\Users\Garkolym\Documents\2.PTR.3
2015-12-06 17:31 - 2015-12-06 17:31 - 01905717 _____ C:\Users\Garkolym\Documents\2.PTR.2
2015-12-06 17:31 - 2015-12-06 17:31 - 01859649 _____ C:\Users\Garkolym\Documents\2.PTR.4
2015-12-06 17:31 - 2015-12-06 17:31 - 00000592 _____ C:\Users\Garkolym\Documents\2.PTR
2015-12-06 17:26 - 2015-12-06 17:26 - 03881394 _____ C:\Users\Garkolym\Documents\scan.PTR.1
2015-12-06 17:26 - 2015-12-06 17:26 - 03101648 _____ C:\Users\Garkolym\Documents\scan.PTR.2
2015-12-06 17:26 - 2015-12-06 17:26 - 02797454 _____ C:\Users\Garkolym\Documents\scan.PTR.7
2015-12-06 17:26 - 2015-12-06 17:26 - 02735348 _____ C:\Users\Garkolym\Documents\scan.PTR.4
2015-12-06 17:26 - 2015-12-06 17:26 - 02623423 _____ C:\Users\Garkolym\Documents\scan.PTR.0
2015-12-06 17:26 - 2015-12-06 17:26 - 02586606 _____ C:\Users\Garkolym\Documents\scan.PTR.3
2015-12-06 17:26 - 2015-12-06 17:26 - 02451779 _____ C:\Users\Garkolym\Documents\scan.PTR.5
2015-12-06 17:26 - 2015-12-06 17:26 - 01369192 _____ C:\Users\Garkolym\Documents\scan.PTR.6
2015-12-06 17:26 - 2015-12-06 17:26 - 00971553 _____ C:\Users\Garkolym\Documents\scan.PTR.8
2015-12-06 17:26 - 2015-12-06 17:26 - 00000734 _____ C:\Users\Garkolym\Documents\scan.PTR
2015-12-06 17:26 - 2015-12-06 17:26 - 00000000 _____ C:\Users\Garkolym\Documents\scan.PTR.9
2015-12-06 17:26 - 2015-12-06 17:26 - 00000000 _____ C:\Users\Garkolym\Documents\scan.PTR.15
2015-12-06 17:26 - 2015-12-06 17:26 - 00000000 _____ C:\Users\Garkolym\Documents\scan.PTR.14
2015-12-06 17:26 - 2015-12-06 17:26 - 00000000 _____ C:\Users\Garkolym\Documents\scan.PTR.13
2015-12-06 17:26 - 2015-12-06 17:26 - 00000000 _____ C:\Users\Garkolym\Documents\scan.PTR.12
2015-12-06 17:26 - 2015-12-06 17:26 - 00000000 _____ C:\Users\Garkolym\Documents\scan.PTR.11
2015-12-06 17:26 - 2015-12-06 17:26 - 00000000 _____ C:\Users\Garkolym\Documents\scan.PTR.10

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-05 14:37 - 2015-09-06 16:19 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Skype
2016-01-05 14:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-05 14:26 - 2015-12-01 15:42 - 00000000 ____D C:\Users\Garkolym\AppData\Local\LogMeIn Hamachi
2016-01-05 14:21 - 2011-04-12 08:43 - 00769024 _____ C:\Windows\system32\perfh007.dat
2016-01-05 14:21 - 2011-04-12 08:43 - 00173342 _____ C:\Windows\system32\perfc007.dat
2016-01-05 14:21 - 2009-07-14 06:13 - 01793536 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-05 14:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-05 14:20 - 2015-09-06 15:41 - 00004196 _____ C:\Windows\System32\Tasks\Software Updater
2016-01-05 14:16 - 2015-09-15 15:45 - 00001214 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-05 14:16 - 2015-09-11 17:59 - 00000000 ____D C:\Program Files (x86)\Steam
2016-01-05 14:16 - 2015-09-06 15:40 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-05 14:15 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-05 06:51 - 2015-09-06 17:57 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\TS3Client
2016-01-05 06:51 - 2015-09-06 15:52 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-01-05 06:51 - 2009-07-14 05:45 - 00016656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-05 06:51 - 2009-07-14 05:45 - 00016656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-05 06:50 - 2015-09-15 15:45 - 00001218 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-05 06:04 - 2015-10-24 01:28 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-05 05:59 - 2015-09-06 15:40 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-05 04:30 - 2015-09-06 17:49 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\.minecraft
2016-01-05 04:01 - 2015-09-15 01:32 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\vlc
2016-01-05 02:56 - 2015-09-06 17:52 - 00000000 ____D C:\Users\Garkolym\AppData\Local\Eclipse
2016-01-05 02:56 - 2015-09-06 17:52 - 00000000 ____D C:\Users\Garkolym\.p2
2016-01-05 02:56 - 2015-09-06 17:51 - 00000000 ____D C:\Users\Garkolym\Documents\eclipse
2016-01-05 01:54 - 2015-09-06 15:41 - 00000000 ____D C:\Users\Garkolym\AppData\Local\DownloadGuide
2016-01-05 01:35 - 2015-09-06 17:08 - 00001870 _____ C:\Windows\Sandboxie.ini
2016-01-03 21:26 - 2015-12-03 21:46 - 00000000 ____D C:\Users\Garkolym\Desktop\Minecraft Server
2016-01-03 19:33 - 2015-09-07 17:18 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Audacity
2016-01-02 22:05 - 2015-09-16 19:46 - 00000000 ____D C:\Users\Garkolym\AppData\Local\SymbolSourceSymbols
2016-01-02 03:54 - 2015-09-08 17:40 - 00002300 _____ C:\Users\Garkolym\AppData\Roaming\jd-gui.cfg
2016-01-01 00:47 - 2015-10-24 01:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-01 00:47 - 2015-09-14 16:30 - 00000000 ____D C:\Users\Garkolym\AppData\Local\CrashDumps
2015-12-30 21:16 - 2015-10-24 19:20 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\OBS
2015-12-30 06:23 - 2015-09-08 16:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-12-29 21:20 - 2015-09-07 13:26 - 00000000 ____D C:\Users\Garkolym\Documents\Visual Studio 2010
2015-12-29 18:04 - 2015-10-24 01:28 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-12-29 18:04 - 2015-10-24 01:28 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-29 18:04 - 2015-10-24 01:28 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-12-27 06:35 - 2015-09-16 18:10 - 00000228 _____ C:\Users\Garkolym\jshrink.ini
2015-12-24 22:45 - 2015-10-23 05:36 - 00000000 ____D C:\Users\Garkolym\AppData\Local\NBTExplorer
2015-12-24 01:00 - 2015-09-20 14:27 - 00000000 ____D C:\Users\Garkolym\.VirtualBox
2015-12-22 17:52 - 2015-09-12 16:42 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\TeamViewer
2015-12-22 17:51 - 2015-09-06 10:01 - 00000000 ____D C:\Windows\Panther
2015-12-21 15:56 - 2015-09-05 13:04 - 00000000 ____D C:\Users\Garkolym
2015-12-20 17:38 - 2015-09-06 15:49 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\Raptr
2015-12-20 17:38 - 2015-09-06 15:49 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-12-19 16:28 - 2015-09-06 15:52 - 00000000 ____D C:\Users\Garkolym\AppData\Local\AMD
2015-12-19 14:52 - 2015-09-06 15:48 - 00000000 ____D C:\Program Files (x86)\AMD
2015-12-19 14:52 - 2015-09-06 15:46 - 00000000 ____D C:\Program Files\AMD
2015-12-19 14:49 - 2015-09-06 15:46 - 00000000 ____D C:\AMD
2015-12-19 14:49 - 2015-09-06 15:41 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-19 14:45 - 2015-09-11 18:21 - 00000000 ____D C:\Users\Garkolym\Documents\My Games
2015-12-15 07:14 - 2009-07-14 05:45 - 00294432 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-14 21:09 - 2015-09-05 13:04 - 00063568 _____ C:\Users\Garkolym\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-13 14:19 - 2015-09-06 15:40 - 00000000 ____D C:\Users\Garkolym\AppData\Local\Deployment
2015-12-12 20:14 - 2015-09-15 15:45 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-12-07 14:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2015-12-07 00:12 - 2015-09-05 13:04 - 00001413 _____ C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-12-07 00:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-12-07 00:04 - 2015-10-11 23:45 - 00000000 ____D C:\Users\Garkolym\AppData\Roaming\FileZilla
2015-12-06 18:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-12-06 15:19 - 2015-12-01 15:58 - 00000000 ____D C:\Users\Garkolym\.zenmap
2015-12-06 01:10 - 2015-09-13 22:40 - 00000000 ____D C:\Users\Garkolym\Documents\Camtasia Studio

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-09-28 23:42 - 2015-11-08 03:24 - 0000132 _____ () C:\Users\Garkolym\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-09-08 17:40 - 2016-01-02 03:54 - 0002300 _____ () C:\Users\Garkolym\AppData\Roaming\jd-gui.cfg
2015-12-21 16:28 - 2015-12-24 00:28 - 0000095 _____ () C:\Users\Garkolym\AppData\Roaming\WB.CFG
2015-10-13 13:37 - 2015-10-13 13:37 - 0000600 _____ () C:\Users\Garkolym\AppData\Roaming\winscp.rnd
2015-09-12 15:50 - 2015-09-12 15:50 - 0224237 _____ () C:\ProgramData\1442069380.bdinstall.bin
2015-09-12 15:50 - 2015-09-12 15:50 - 0025238 _____ () C:\ProgramData\1442069415.bdinstall.bin
2015-10-24 21:19 - 2015-10-24 21:19 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Garkolym\AppData\Local\Temp\jansi-32-git-Spigot-fdc1440-53fac9f-2533694608005146791.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-32-git-Spigot-fdc1440-53fac9f-5509919772658672430.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-32-git-Spigot-fdc1440-53fac9f-7587114638313479655.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-64-git-Spigot-fdc1440-53fac9f-1858093794489730502.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-64-git-Spigot-fdc1440-53fac9f-2275048282726218372.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-64-git-Spigot-fdc1440-53fac9f-4285035291465384710.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-64-git-Spigot-fdc1440-53fac9f-52757365189900577.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-64-git-Spigot-fdc1440-53fac9f-6352373393629623554.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-64-git-Spigot-fdc1440-53fac9f-7533198559931931138.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-64-git-Spigot-fdc1440-53fac9f-7830074436487899932.dll
C:\Users\Garkolym\AppData\Local\Temp\jansi-64-git-Spigot-fdc1440-53fac9f-8556441942605410564.dll
C:\Users\Garkolym\AppData\Local\Temp\procexp64.exe
C:\Users\Garkolym\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-12-30 15:56

==================== Ende von FRST.txt ============================
         
__________________

Alt 05.01.2016, 14:44   #4
DavidHergert
 
Ich glaube, dass ich beobachtet werde. - Standard

Scan 2



Addition.txt

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Garkolym (2016-01-05 14:38:36)
Gestartet von C:\Users\Garkolym\Downloads
Windows 7 Professional Service Pack 1 (X64) (2015-09-05 12:03:59)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3824249904-2607471167-1544741369-500 - Administrator - Disabled)
Garkolym (S-1-5-21-3824249904-2607471167-1544741369-1000 - Administrator - Enabled) => C:\Users\Garkolym
Gast (S-1-5-21-3824249904-2607471167-1544741369-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: ESET NOD32 Antivirus 9.0.349.15 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 9.0.349.15 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

ACP Application (Version: 2015.1204.1152.59 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 5.00 - Advanced Micro Devices, Inc.)
Angry IP Scanner (HKLM-x32\...\Angry IP Scanner) (Version: 3.4 - Angry IP Scanner)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.24.0 - Asmedia Technology)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Bat To Exe Converter Version 2.3.2 (HKLM\...\{60C29EC2-33E8-45EE-87E4-31FA3E35C539}_is1) (Version: 2.3.2 - Fatih Kodak)
Camtasia Studio 8 (HKLM-x32\...\{E7AFA156-D5CB-4B8C-843D-E7CA58D36B0A}) (Version: 8.6.0.2054 - TechSmith Corporation)
Catalyst Control Center Next Localization BR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Chromium (HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\Chromium) (Version: 46.0.2480.0 - Chromium)
Cinema 4D version R12 (HKLM-x32\...\{7D9D8134-9FA3-4FFF-ADA1-BF609F29997A}_is1) (Version: R12 - Salat Production)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
DJ Intro version 1.2.6 (HKLM-x32\...\{36625871-9D4B-4046-A837-677974F51CAC}_is1) (Version: 1.2.6 - Serato Audio Research)
DriversCloud.com (64 bits) (HKLM\...\{9C6E6F03-5DF7-4116-896B-DE38AF60080B}) (Version: 8.0.1.0 - Cybelsoft)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
ESET NOD32 Antivirus (HKLM\...\{FAF6D391-32E3-4A1F-978A-50882937344E}) (Version: 9.0.349.15 - ESET, spol. s r.o.)
Fiddler (HKLM-x32\...\Fiddler2) (Version: 2.6.0.2 - Telerik)
FileZilla Client 3.14.0 (HKLM-x32\...\FileZilla Client) (Version: 3.14.0 - Tim Kosse)
FileZilla Server (HKLM-x32\...\FileZilla Server) (Version: beta 0.9.53 - FileZilla Project)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Driver Scout (HKLM-x32\...\{b6b3a45e-c698-4c14-aa3b-c9a64b7903de}) (Version: 1.0.0.0 - Covus Freemium)
Free Driver Scout (Version: 1.0.0.0 - Covus Freemium) Hidden
Geometry Dash (HKLM-x32\...\Steam App 322170) (Version:  - RobTop Games)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
HeidiSQL (HKLM\...\HeidiSQL_is1) (Version:  - Ansgar Becker)
HxD Hex Editor Version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel(R) Network Connections 20.3.48.0 (HKLM\...\PROSetDX) (Version: 20.3.48.0 - Intel)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java SE Development Kit 8 Update 60 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180600}) (Version: 8.0.600.27 - Oracle Corporation)
JetBrains dotPeek 1.5 (HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\{b9fd1dad-df10-51be-92cb-0c2c418d8a46}) (Version: 2015.2 - JetBrains s.r.o.)
JPEXS Free Flash Decompiler (HKLM-x32\...\{E618D276-6596-41F4-8A98-447D442A77DB}_is1) (Version: 6.1.1 - JPEXS)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.410 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.410 - LogMeIn, Inc.) Hidden
ManyCam 3.0.80 (remove only) (HKLM-x32\...\ManyCam) (Version: 3.0.80 - ManyCam LLC)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{A106D33E-6B43-42C0-9BFC-D03303261FA7}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{5A08C9D1-37AD-4A8D-90D3-33F92C578AA5}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - DEU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C# 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
MorphVOX Pro (HKLM-x32\...\{DE289787-7ECA-4BED-9D8C-99FAC407E3D6}) (Version: 4.3.13 - Screaming Bee)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 43.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 de)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version:  - )
Nmap 7.00 (HKLM-x32\...\Nmap) (Version:  - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.3 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Oracle VM VirtualBox 5.0.4 (HKLM\...\{FC191F32-1A67-4231-91D0-0059A57C99A8}) (Version: 5.0.4 - Oracle Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.4 - Power Software Ltd)
psynetic® Gif-X 3.00 (HKLM-x32\...\psynetic® Gif-X) (Version: 3.00 - Robert Mundt)
Python 2.7.1 (HKLM-x32\...\{32939827-d8e5-470a-b126-870db3c69fdf}) (Version: 2.7.1150 - Python Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
reFX Vanguard VSTi RTAS v1.8.0 (HKLM-x32\...\reFX Vanguard_is1) (Version:  - )
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
ROCCAT Kone Pure Mouse Driver (HKLM-x32\...\{4905245D-56E7-4176-BE68-962728B803D6}) (Version:  - Roccat GmbH)
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
Ruby 1.9.3-p286 (HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\{17E73B15-62D2-43FD-B851-ACF86A8C9D25}_is1) (Version: 1.9.3-p286 - RubyInstaller Team)
Ruby 2.2.3-p173 (HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\{F4249FFD-42CD-4404-9534-170D074544F4}_is1) (Version: 2.2.3-p173 - RubyInstaller Team)
Sandboxie 4.20 (64-bit) (HKLM\...\Sandboxie) (Version: 4.20 - Sandboxie Holdings, LLC)
SilentEye (HKLM-x32\...\SilentEye 0.4.1) (Version: 0.4.1 - SilentEye)
Skype Quote Creator (HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\ad08ab58bc77059a) (Version: 1.0.6.0 - MKing)
Skype™ 7.9 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.9.103 - Skype Technologies S.A.)
SOMA (HKLM-x32\...\Steam App 282140) (Version:  - Frictional Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Cubase 5 (HKLM-x32\...\{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}) (Version: 5.1.0 - Steinberg Media Technologies GmbH)
Sylenth1 v2.20 (HKLM\...\Sylenth1_is1) (Version:  - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.52465 - TeamViewer)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft)
UA-1000-Treiber (HKLM\...\RolandRDID0034) (Version:  - Roland Corporation)
Ulead GIF Animator Lite Edition 1.0 (HKLM-x32\...\Ulead GIF Animator Lite Edition 1.0) (Version:  - )
Uplay (HKLM-x32\...\Uplay) (Version: 15.0 - Ubisoft)
UxStyle Core Beta (HKLM\...\{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}) (Version: 0.2.1.1 - The Within Network, LLC)
Vegas Pro 12.0 (64-bit) (HKLM\...\{A1A75F4F-9C9F-11E2-8FCB-F04DA23A5C58}) (Version: 12.0.563 - Sony)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
Virtual Audio Streaming 4.0 (HKLM-x32\...\{B9FDEDF1-DD77-42BD-B2BD-ABCB30655C73}_is1) (Version: 4.0 - ShiningMorning LLC.)
VirtualDJ 8 (HKLM-x32\...\{5A89A21C-6391-4AFC-8502-66F6F7250125}) (Version: 8.0.2325.0 - Atomix Productions)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{CFCB8616-A5D1-4281-80E8-389F685BFAE2}) (Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VNC Server 5.2.3 (HKLM\...\{0D2201F0-2E7B-4C89-8C5D-03D3F5BB5042}) (Version: 5.2.3 - RealVNC Ltd)
VNC Viewer 5.2.3 (HKLM\...\{8824CB84-60DF-4CBC-AB3A-7C5AB2A41F31}) (Version: 5.2.3 - RealVNC Ltd)
VPN Manager 1.7.28.7 (HKLM-x32\...\VPN Manager) (Version: 1.7.28.7 - Perfect-Privacy)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Wireshark 1.12.7 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.7 - The Wireshark developer community, hxxp://www.wireshark.org)
Worms Ultimate Mayhem (HKLM-x32\...\Steam App 70600) (Version:  - Team17 Software Ltd.)
XAMPP (HKLM-x32\...\xampp) (Version: 5.6.11-1 - Bitnami)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0EEF62D7-15D1-4D5C-ABCB-F1FADA5E1190} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2015-12-04] (Advanced Micro Devices, Inc.)
Task: {1070E000-46D7-4065-A941-290544E236A4} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2014-01-16] () <==== ACHTUNG
Task: {1B236EFE-6B39-4B9F-A9B0-3099FD166E29} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-06] (Google Inc.)
Task: {2EADA121-88DC-406F-98FE-23AB5F4F8870} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29] (Adobe Systems Incorporated)
Task: {341644CC-67AC-4ACA-A9EF-F06751D5C08E} - System32\Tasks\{8B7392B9-37A6-4E32-8065-85AD84591D08} => Chrome.exe hxxp://ui.skype.com/ui/0/7.10.0.101/de/abandoninstall?page=tsProgressBar
Task: {5434531F-A4BE-4C5E-A0D6-798C689EF707} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {7783832B-B60F-4F83-96A3-8FAE928F794A} - System32\Tasks\{708DF652-8A63-4D40-8013-17F57CC8B607} => pcalua.exe -a "C:\Program Files (x86)\TeamSpeak 3 Client\package_inst.exe" -d C:\Users\Garkolym\Desktop -c "C:\Users\Garkolym\Desktop\AvRape-x86.ts3_plugin"
Task: {8A470D74-244A-42F9-91CE-476B73E4F1E2} - System32\Tasks\FreeDriverScout => C:\Program Files\Covus Freemium\Free Driver Scout\1Click.exe [2014-01-16] ()
Task: {A21F833C-0F7D-4785-B8B5-26D63FA73B17} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-09-15] (Dropbox, Inc.)
Task: {D4CD2B97-D175-4527-8A1F-75E0E94DD1B6} - System32\Tasks\UpdateTask => C:\Users\Garkolym\AppData\Local\{08303~1\UNINST~1.EXE [2015-12-21] ()
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {E7E64E2C-6975-45DA-B0AB-84D8ABDBF514} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-09-15] (Dropbox, Inc.)
Task: {FF5C0EDA-8071-4095-BBF7-40B56A24C314} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-06] (Google Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\UpdateTask.job => C:\Users\Garkolym\AppData\Local\{08303~1\UNINST~1.EXE

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ruby 2.2.3-p173\Interactive Ruby.lnk -> C:\Ruby22\bin\irb.bat ()
Shortcut: C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ruby 1.9.3-p551\Interactive Ruby.lnk -> C:\Ruby193\bin\irb.bat ()

ShortcutWithArgument: C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ruby 2.2.3-p173\Start Command Prompt with Ruby.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /E:ON /K C:\Ruby22\bin\setrbvars.bat
ShortcutWithArgument: C:\Users\Garkolym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ruby 1.9.3-p551\Start Command Prompt with Ruby.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /E:ON /K C:\Ruby193\bin\setrbvars.bat

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-03 23:25 - 2015-08-03 23:25 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2015-09-16 13:12 - 2015-09-16 13:12 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2015-06-25 16:34 - 2015-06-25 16:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 16:37 - 2015-06-25 16:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 16:35 - 2015-06-25 16:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 16:38 - 2015-06-25 16:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 15:53 - 2015-06-25 15:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 15:51 - 2015-06-25 15:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-09-11 18:00 - 2015-11-10 20:55 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-09-11 18:00 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-09-11 18:00 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-09-11 18:00 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-09-11 18:00 - 2015-12-14 21:01 - 02547280 _____ () C:\Program Files (x86)\Steam\video.dll
2015-09-11 18:00 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-09-11 18:00 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-09-11 18:00 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-09-11 18:00 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-09-11 18:00 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-09-11 18:00 - 2015-12-14 21:01 - 00804432 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-09-11 18:00 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-09-14 20:58 - 2015-07-21 11:59 - 00311808 _____ () C:\Program Files (x86)\ShiningMorning\VirtualAudioStreaming\help.dll
2010-12-05 03:38 - 2010-12-05 03:38 - 01242112 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll
2010-12-05 03:38 - 2010-12-05 03:38 - 02010624 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll
2010-12-05 03:38 - 2010-12-05 03:38 - 00776192 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_highgui220.dll
2012-06-28 10:05 - 2012-06-28 10:05 - 00124312 _____ () C:\Program Files (x86)\ManyCam\Bin\CrashRpt.dll
2010-12-05 03:38 - 2010-12-05 03:38 - 00201216 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_video220.dll
2010-12-05 03:38 - 2010-12-05 03:38 - 00241152 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_objdetect220.dll
2015-09-16 13:12 - 2015-09-16 13:12 - 00039384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME5BC.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00056320 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME5BE.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00055296 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME5CF.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00068608 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME5E1.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME5E3.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME5E5.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME5F7.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00056832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME608.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME60A.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME60C.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME61E.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00056320 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME620.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME631.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00075776 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME633.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00053760 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME645.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00064000 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME657.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00053760 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME659.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00057344 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME66A.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00072192 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME67C.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00072704 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME67E.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00072192 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME68F.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00072192 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME691.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME6B3.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME6D5.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME6E6.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME708.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME719.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME72B.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME74C.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME75E.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME77F.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME7A0.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME7B2.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME7D3.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME7F4.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME815.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME836.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME858.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME869.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME88A.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME89C.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME8BD.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00120832 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME8CF.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME911.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME932.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME934.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME946.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME948.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME969.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME97B.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME98C.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME9AE.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME9CF.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEME9E0.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEMEA29.tmp
2016-01-05 14:16 - 2016-01-05 14:16 - 00085504 _____ () C:\Users\Garkolym\AppData\Local\Temp\XTMP1MC3VE\DEMEA3A.tmp
2015-12-12 20:14 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-12 20:14 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-12 20:14 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-12 20:14 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-12 20:14 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-12 20:14 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-12 20:14 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-12 20:14 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-12 20:14 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-12 20:14 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-12 20:14 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-12 20:14 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-12 20:14 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-10-15 14:19 - 2012-06-23 13:54 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\hiddriver.dll
2015-09-11 18:00 - 2015-11-17 01:31 - 47846176 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-12-17 15:00 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 15:00 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-09-21 22:58 - 2016-01-01 00:55 - 00000025 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 unitedclient.de

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3824249904-2607471167-1544741369-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{D1F37E56-0E29-4BA1-825E-DEAAC50E5CAA}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{86890373-C580-4E5F-9FD8-0537D182C63B}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{2479AE2F-3EEA-43E8-B652-8E3B7B56B91A}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{70B158E5-24CD-471B-8848-39513522CA1B}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{87AEC8C2-4A00-4A6A-9100-EAC15B3526B2}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{9629C94C-9FA1-48C3-9BE3-3233EFA28657}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [TCP Query User{B7C3CBE1-B7D8-41EA-91F6-DDC902601300}C:\users\garkolym\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\garkolym\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{2C0E43B2-9DC7-40A3-BC76-D39E6A47C22F}C:\users\garkolym\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\garkolym\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{7F7E4E35-5528-41AB-8FA7-77DF0979B539}C:\program files\java\jre1.8.0_60\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\java.exe
FirewallRules: [UDP Query User{A6691A05-F1C2-4F1B-83B9-68EE2FCEF66F}C:\program files\java\jre1.8.0_60\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\java.exe
FirewallRules: [TCP Query User{B0A48C1B-759B-45A7-A627-09782CD02E97}C:\users\garkolym\documents\eclipse\eclipse.exe] => (Allow) C:\users\garkolym\documents\eclipse\eclipse.exe
FirewallRules: [UDP Query User{CCA2FDE1-9D44-4817-9438-B894468ABAF3}C:\users\garkolym\documents\eclipse\eclipse.exe] => (Allow) C:\users\garkolym\documents\eclipse\eclipse.exe
FirewallRules: [TCP Query User{69555092-723F-4356-A8DB-F7564EB03283}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{84622D76-6AC5-4035-9FB6-5FA8F5F5B385}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{25B72BDB-7E73-410D-9406-102FA40A844D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{63BEA661-1C09-4C56-8F9C-68EB1A3415D8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8177D38A-DF29-4265-8E70-442D9F7F1F4F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7EBE56DE-0FF4-4ED1-8DB1-FAF03A5C4797}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{0661F540-2898-4B78-B331-A3969A7BF2AD}] => (Allow) LPort=8317
FirewallRules: [TCP Query User{2B893A8A-8292-4159-B39F-8C701C611F9B}C:\users\garkolym\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\garkolym\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{90048515-13E9-401A-9E07-3E262B85DA44}C:\users\garkolym\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\garkolym\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{E4B283E2-EFA8-46E3-8A48-2BDED57711DE}] => (Allow) LPort=48113
FirewallRules: [{0D76146F-459F-4337-9B0A-0F955F20C695}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{B130AECF-7CE6-4FF4-8C4A-542F20725CAF}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{E153CCA4-04E1-4474-A95D-F26FFB3631D9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{12FF82D2-F149-428B-A66B-D5E4D8681BD1}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{2AD3C485-37F7-4096-A57B-A48562394471}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [{7D5908C3-41D3-4D58-A334-BB2AB79FEC1C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8CE56554-E5C8-447F-9981-0C2F87C28C56}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{EE745512-649A-4B55-9F2D-A406B241BF76}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3A451959-EEDC-40A7-B336-5A4E9EE30DCA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{42F8CE8A-3D3D-4013-BB4F-D2E43895B59C}] => (Allow) C:\Program Files (x86)\Fiddler2\Fiddler.exe
FirewallRules: [{2B71DE87-CD6A-4847-8E89-86BD040C8E95}] => (Allow) C:\Program Files\RealVNC\VNC Server\vncserver.exe
FirewallRules: [{EFCC2676-B73F-47D5-B72A-6C07BF1BD01C}] => (Allow) C:\Program Files\RealVNC\VNC Server\vncserver.exe
FirewallRules: [TCP Query User{F4F1608C-9DD3-47D9-8CE8-946F71D2A99C}C:\users\garkolym\desktop\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\garkolym\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{65FC6342-C56E-4E78-8DDC-E8FB784D8A59}C:\users\garkolym\desktop\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\garkolym\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{121D9007-FB47-46B5-A567-F65D7A85565D}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [UDP Query User{0D012243-A3C6-4721-AA17-20D1508E494C}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [{0B38EB49-7061-42DA-A8E5-C85505B873F3}] => (Allow) D:\Steam Library\steamapps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{3448B13E-0C0E-4BF6-A3AC-4C6B9E0B1B4F}] => (Allow) D:\Steam Library\steamapps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{88249BA2-2F91-4274-ACA6-8CDD70A4416B}] => (Allow) D:\Steam Library\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8F668284-9F51-4228-8E42-55F1AE67A146}] => (Allow) D:\Steam Library\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{6E553528-D322-43FA-8CD6-3D540E099C1C}] => (Allow) D:\Steam Library\steamapps\common\WormsXHD\Launcher.exe
FirewallRules: [{B03BF043-963A-4A85-A70A-936B5A06E45C}] => (Allow) D:\Steam Library\steamapps\common\WormsXHD\Launcher.exe
FirewallRules: [{82C34435-5AAA-4A4E-B698-CEB48D291953}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3C75A802-AF46-4E70-8BFA-F0C9737A53EE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A9CDA8C3-6F4F-41F8-8C6C-A24AB2D0EF0B}] => (Allow) D:\Steam Library\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{39490E5C-7920-4E7D-8F61-69AEB4D952E0}] => (Allow) D:\Steam Library\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{6278B551-88AC-4C30-B4C2-5832F027AF90}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D00CB0B3-E2C4-41FD-BDB0-20D895CE22FF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{310C7BCB-3D93-4D13-9B4F-3DF2C5D3AEBD}C:\users\garkolym\desktop\teamspeak3-server_win32\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\garkolym\desktop\teamspeak3-server_win32\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{56A8093D-6D15-4B52-AA3F-1398ED4FFC80}C:\users\garkolym\desktop\teamspeak3-server_win32\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\garkolym\desktop\teamspeak3-server_win32\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{5ABF855B-F0A8-48B0-B657-2984B5E0E07D}] => (Allow) D:\Steam Library\steamapps\common\SOMA\Soma.exe
FirewallRules: [{D6707A07-2246-4AB2-B4AE-B10D6850A910}] => (Allow) D:\Steam Library\steamapps\common\SOMA\Soma.exe
FirewallRules: [{4A434D8D-4CD7-4342-B482-DF61265EE59A}] => (Allow) D:\Steam Library\steamapps\common\SOMA\ModLauncher.exe
FirewallRules: [{D9C692E6-2722-4C3F-86DC-2FFC0062B0BB}] => (Allow) D:\Steam Library\steamapps\common\SOMA\ModLauncher.exe
FirewallRules: [{169C5899-1048-46CF-9666-03F14997E69E}] => (Allow) D:\Steam Library\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{F1E19C79-E4B4-4692-858E-B5C12D980ED6}] => (Allow) D:\Steam Library\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{906335CB-9B4C-4F96-973F-3484861B5FFE}] => (Allow) D:\Steam Library\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{9DA8CECE-47F2-42C8-9C94-B049685DE42A}] => (Allow) D:\Steam Library\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{06EED508-6EAF-45BC-96FD-5602F6641371}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BC188733-4B34-4D33-9839-06432D600CB4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A53D024A-7B7F-4C7A-A35C-D6BAE05658CE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1EC30EFD-7CEE-4706-93A9-FEAAE04587FF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B9CA1AC3-4629-479C-A2A9-AFAEF043A75C}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{D9DABB2E-74E9-49A2-BF3A-E6FDB255385D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{26E96C63-8901-403B-8D08-022AD10E0DFD}] => (Allow) D:\www\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{57E646A2-DDA3-453E-8674-95C3FCCC2CD5}] => (Allow) D:\www\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{1B282154-18E7-4FD7-B0ED-72FAE8646CC0}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{64EF94CB-3DB6-484E-8EA7-03779AC4AFD8}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{D54FBA5F-6E0C-43E7-A224-A281DA6DDF06}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{525D31B2-C22D-4C1B-866B-11A99E8A594D}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{81C31635-D42E-4508-87AA-2B91B5FD989E}] => (Allow) C:\Users\Garkolym\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{9DE2981C-B0D3-48B4-AB9C-12FC6C98162F}] => (Allow) E:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{DE00AD93-9C0D-4525-B9A4-415E49FA2127}] => (Allow) E:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe

==================== Wiederherstellungspunkte =========================

03-01-2016 19:29:12 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Netzwerkcontroller
Description: Netzwerkcontroller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/05/2016 02:17:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/05/2016 12:41:47 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2016 05:05:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2016 01:55:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2016 06:16:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/03/2016 07:06:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/03/2016 05:27:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/03/2016 05:26:18 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Der Index kann nicht initialisiert werden.

Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/03/2016 05:26:18 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung

Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/03/2016 05:26:18 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog

Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)


Systemfehler:
=============
Error: (01/05/2016 01:34:34 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "ESET Service" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (01/03/2016 05:26:48 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (01/03/2016 05:26:18 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/03/2016 05:26:18 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

Error: (01/02/2016 03:54:52 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/01/2016 11:38:46 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (01/01/2016 04:43:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎01.‎01.‎2016 um 16:42:37 unerwartet heruntergefahren.

Error: (01/01/2016 09:02:53 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (12/31/2015 08:49:54 AM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.

Error: (12/31/2015 08:49:54 AM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.


==================== Speicherinformationen =========================== 

Prozessor: AMD FX(tm)-9590 Eight-Core Processor 
Prozentuale Nutzung des RAM: 36%
Installierter physikalischer RAM: 16296.89 MB
Verfügbarer physikalischer RAM: 10413.14 MB
Summe virtueller Speicher: 32591.96 MB
Verfügbarer virtueller Speicher: 26412.7 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:111.3 GB) (Free:9.79 GB) NTFS
Drive d: (Volume) (Fixed) (Total:232.88 GB) (Free:54.38 GB) NTFS
Drive e: (Volume) (Fixed) (Total:931.51 GB) (Free:437.6 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 17EB7348)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 17EB7CBE)

Partition: GPT.

========================================================
Disk: 2 (Size: 232.9 GB) (Disk ID: 17EB73EA)

Partition: GPT.

==================== Ende von Addition.txt ============================
         

Alt 05.01.2016, 21:43   #5
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Ich glaube, dass ich beobachtet werde. - Standard

Ich glaube, dass ich beobachtet werde.



Naja, Du lädst ja auch jeden Sch.... äh viel herunter.

Schritt 1
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 06.01.2016, 14:08   #6
DavidHergert
 
Ich glaube, dass ich beobachtet werde. - Standard

Ich glaube, dass ich beobachtet werde.



Also, ich habe die Log Files im C:\ Ordner nicht gefunden und habe deswegen einen Screenshot gemacht. Ich wollte mich für die Hilfe bedanken.


Alt 06.01.2016, 14:45   #7
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Ich glaube, dass ich beobachtet werde. - Standard

Ich glaube, dass ich beobachtet werde.



Ich brauche trotzdem das Log. Anleitung genau lesen, notfalls Scan wiederholen.
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Antwort

Themen zu Ich glaube, dass ich beobachtet werde.
andere, anderen, angeklickt, anrufen, bekannte, datei, datein, freund, geklickt, glaube, große, kumpel, könntet, leute, meinem, nicht, programmier, rechner, skype, sorge, unbekannte, verdacht, was soll ich machen, ziemlich, zusammen




Ähnliche Themen: Ich glaube, dass ich beobachtet werde.


  1. Ich werde das Gefühl nicht los dass mit meinem Rechner etwas nicht stimmt .. (einfrieren, langsam,..)
    Log-Analyse und Auswertung - 04.05.2014 (1)
  2. Ich glaube ich hab nen Virus .....
    Plagegeister aller Art und deren Bekämpfung - 29.10.2011 (10)
  3. Mein PC wird beobachtet?
    Überwachung, Datenschutz und Spam - 29.06.2011 (8)
  4. Ich Glaube ich bin Infeziert...
    Plagegeister aller Art und deren Bekämpfung - 03.05.2009 (71)
  5. Ich glaube ich bin dick infieziert..
    Mülltonne - 15.12.2008 (0)
  6. glaube ich hab ein trojan
    Plagegeister aller Art und deren Bekämpfung - 25.11.2008 (2)
  7. Datei sorgt dafür dass ich rausgeworfen werde
    Plagegeister aller Art und deren Bekämpfung - 04.11.2008 (1)
  8. Ich Glaube es ist ein Wurm
    Mülltonne - 04.05.2008 (0)
  9. Fühle mich beobachtet - kleinere "Unregelmäßigkeiten"
    Log-Analyse und Auswertung - 21.10.2007 (3)
  10. ich glaube hab was abbekommen.
    Log-Analyse und Auswertung - 03.06.2007 (3)
  11. glaube hab nen trojaner
    Log-Analyse und Auswertung - 18.05.2007 (34)
  12. Glaube es ist ein Trojaner
    Log-Analyse und Auswertung - 01.02.2007 (2)
  13. Ich glaube ich habe ein Trojaner
    Log-Analyse und Auswertung - 11.09.2004 (8)
  14. hab glaube trojaner
    Plagegeister aller Art und deren Bekämpfung - 08.08.2004 (6)
  15. ich glaube, ich bin verloren
    Log-Analyse und Auswertung - 04.07.2004 (4)

Zum Thema Ich glaube, dass ich beobachtet werde. - Es gibt einige Leute, die mich in Skype anrufen und mir erzählen, was ich auf meinem Rechner so tue oder erlauben sich einen anderen Spaß. Ich habe keine Datein angenommen - Ich glaube, dass ich beobachtet werde....
Archiv
Du betrachtest: Ich glaube, dass ich beobachtet werde. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.